Fedora 16 updates-testing report
updates at fedoraproject.org
updates at fedoraproject.org
Sun Apr 22 03:49:35 UTC 2012
The following Fedora 16 Security updates need testing:
https://admin.fedoraproject.org/updates/FEDORA-2012-6365/openstack-nova-2011.3.1-8.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-6368/bugzilla-4.0.6-1.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-5624/phpMyAdmin-3.5.0-1.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-6403/openssl-1.0.0i-1.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-6386/kernel-3.3.2-6.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-6375/cifs-utils-5.4-1.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-6411/nginx-1.0.15-1.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-6409/rubygems-1.8.11-3.fc16.1
https://admin.fedoraproject.org/updates/FEDORA-2012-5058/expat-2.1.0-1.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-5833/python3-3.2.3-1.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-5919/kde-partitionmanager-1.0.3-7.20120205svn.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-5924/python-2.7.3-1.fc16,python-docs-2.7.3-1.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-5909/wicd-1.7.0-13.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-5999/puppet-2.6.16-1.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-6061/gajim-0.15-2.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-6179/gridengine-6.2u5p2-7.fc16.3
https://admin.fedoraproject.org/updates/FEDORA-2011-14691/tomcat6-6.0.32-19.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-5518/libpng-1.2.49-1.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-6382/samba4-4.0.0-38.alpha16.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-6350/gdb-7.3.50.20110722-15.fc16
The following Fedora 16 Critical Path updates have yet to be approved:
https://admin.fedoraproject.org/updates/FEDORA-2012-6389/taglib-1.7.2-1.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-6386/kernel-3.3.2-6.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-6355/NetworkManager-0.9.4-3.git20120403.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-6403/openssl-1.0.0i-1.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-6367/pcre-8.12-8.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-6416/fuse-2.8.7-1.fc16.1
https://admin.fedoraproject.org/updates/FEDORA-2012-6350/gdb-7.3.50.20110722-15.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-6188/gnome-color-manager-3.2.3-2.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-6204/libdrm-2.4.33-1.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-6209/xorg-x11-drv-ati-6.14.3-5.20120201git36c190671.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-6040/util-linux-2.20.1-2.3.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-6004/sane-backends-1.0.22-10.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-6039/systemd-37-19.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-6062/livecd-tools-16.12-1.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-5924/python-2.7.3-1.fc16,python-docs-2.7.3-1.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-5906/rsyslog-5.8.10-1.fc16
https://admin.fedoraproject.org/updates/FEDORA-2012-3319/GConf2-3.2.3-4.fc16
The following builds have been pushed to Fedora 16 updates-testing
NetworkManager-0.9.4-3.git20120403.fc16
RackTables-0.19.12-1.fc16
apper-0.7.1-3.fc16
at-3.1.13-6.fc16
bugzilla-4.0.6-1.fc16
cifs-utils-5.4-1.fc16
clamtk-4.39-1.fc16
cmake-2.8.8-1.fc16
drupal7-calendar-3.2-1.fc16
drupal7-date-2.5-1.fc16
dvd+rw-tools-7.1-9.fc16
fabric-1.4.1-1.fc16
fuse-2.8.7-1.fc16.1
fuse-sshfs-2.4-1.fc16
fvwm-2.6.4-1.fc16
gdb-7.3.50.20110722-15.fc16
gnome-shell-extension-cpu-temperature-0-0.7.gite1777e6.fc16
gnome-shell-extension-noripple-2.0-1.fc16
gnome-shell-extension-remove-bluetooth-icon-0.3.0-1.fc16
gnome-shell-extension-remove-volume-icon-0.4.0-1.fc16
kernel-3.3.2-6.fc16
lftp-4.3.6-1.fc16
liquibase-2.0.3-6.fc16
microcode_ctl-1.17-24.fc16
mpop-1.0.26-2.fc16
mspdebug-0.19-1.fc16
nautilus-sound-converter-3.0.2-1.fc16
nginx-1.0.15-1.fc16
openconnect-3.17-1.fc16
opensips-1.7.2-1.fc16
openssl-1.0.0i-1.fc16
openstack-nova-2011.3.1-8.fc16
openttd-opengfx-0.4.4-1.fc16
pcre-8.12-8.fc16
perl-MetaCPAN-API-0.43-1.fc16
perl-Net-STOMP-Client-1.5-1.fc16
python-sphinx-1.0.8-2.fc16
rubygems-1.8.11-3.fc16.1
samba4-4.0.0-38.alpha16.fc16
sems-1.4.2-5.fc16
sugar-visualmatch-36-1.fc16
sugar-visualmatch-37-1.fc16
taglib-1.7.2-1.fc16
uget-1.8.1-1.fc16
why3-0.71-2.fc16
xl2tpd-1.3.1-5.fc16
youtube-dl-2012.02.27-1.fc16
zanata-util-0.2.6-1.fc16
Details about builds:
================================================================================
NetworkManager-0.9.4-3.git20120403.fc16 (FEDORA-2012-6355)
Network connection manager and user applications
--------------------------------------------------------------------------------
Update Information:
Fix IPv6 connectivity problems
--------------------------------------------------------------------------------
ChangeLog:
* Thu Apr 19 2012 Dan Winship <danw at redhat.com> - 0.9.4-3.git20120403
- Fix IPv6 connectivity problems (rh #785772)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #785772 - Logs filled by ICMPv6 RA: ndisc_router_discovery() failed to add default route
https://bugzilla.redhat.com/show_bug.cgi?id=785772
--------------------------------------------------------------------------------
================================================================================
RackTables-0.19.12-1.fc16 (FEDORA-2012-6370)
A data-center asset management system
--------------------------------------------------------------------------------
Update Information:
Rebase to v0.19.12
Rebase to v0.19.11
--------------------------------------------------------------------------------
ChangeLog:
* Fri Apr 13 2012 Colin Coe <colin.coe at gmail.com> - 0.19.12-1
- Rebase to v0.19.12
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #812305 - RackTables-0.19.12 is available
https://bugzilla.redhat.com/show_bug.cgi?id=812305
[ 2 ] Bug #746944 - RackTables-0.19.11 is available
https://bugzilla.redhat.com/show_bug.cgi?id=746944
--------------------------------------------------------------------------------
================================================================================
apper-0.7.1-3.fc16 (FEDORA-2012-6029)
KDE interface for PackageKit
--------------------------------------------------------------------------------
Update Information:
Pulls in a couple upstream patches to fix issues related to installing unsigned packages and too-frequent wakeups.
--------------------------------------------------------------------------------
ChangeLog:
* Sat Apr 21 2012 Rex Dieter <rdieter at fedoraproject.org> 0.7.1-3
- more work on wakeups, kudos to Martin Kho (#752564)
* Mon Apr 16 2012 Rex Dieter <rdieter at fedoraproject.org> 0.7.1-2
- "Unsigned packages" popup constantly reappears (#806508)
- Apper wakes up yumBackend.py every 5 to 10 minutes (#752564)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #806508 - "Unsigned packages" popup constantly reappears
https://bugzilla.redhat.com/show_bug.cgi?id=806508
[ 2 ] Bug #752564 - Apper wakes up yumBackend.py every 5 minutes
https://bugzilla.redhat.com/show_bug.cgi?id=752564
--------------------------------------------------------------------------------
================================================================================
at-3.1.13-6.fc16 (FEDORA-2012-6420)
Job spooling tools
--------------------------------------------------------------------------------
Update Information:
This update contain serious bug fix and some improvements:
* at now send email with hostname of computer
* help now mention all options
* systemd-user-sessions.service is used in unit file and pm-utils hack is not used anymore. It can be tested by sleep/hibernation and check if atd is running after that.
* 812682 pam support work with new systemd defaults. Test by creating job as a regular user.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Apr 17 2012 Marcela Mašláňová <mmaslano at redhat.com> - 3.1.13-6
- at-3.1.13-mailwithhostname.patch in email mention also hostname address
- at-3.1.13-usePOSIXtimers.patch use POSIX timers, so we won't need
pm-utils hack anymore
- at-3.1.13-help.patch update usage
- systemd-user-sessions.service is used in unit file, so the atd should be
started after almost all services are up and running
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #785104 - missing options in --help
https://bugzilla.redhat.com/show_bug.cgi?id=785104
[ 2 ] Bug #464393 - at daemon sleeps too long after a resume from S3 standby/suspend
https://bugzilla.redhat.com/show_bug.cgi?id=464393
--------------------------------------------------------------------------------
================================================================================
bugzilla-4.0.6-1.fc16 (FEDORA-2012-6368)
Bug tracking system
--------------------------------------------------------------------------------
Update Information:
The following security issues have been discovered
in Bugzilla:
* When abusing the X-FORWARDED-FOR header, an attacker could bypass the lockout policy allowing a possible brute-force discovery of a valid user password.
* An attacker can get access to some bug information using the victim's credentials using a specially crafted HTML page.
References: https://bugzilla.mozilla.org/show_bug.cgi?id=745397
CVE Number: CVE-2012-0466
References: https://bugzilla.mozilla.org/show_bug.cgi?id=728639
CVE Number: CVE-2012-0465
--------------------------------------------------------------------------------
ChangeLog:
* Fri Apr 20 2012 Emmanuel Seyman <emmanuel.seyman at club-internet.fr> - 4.0.6-1
- Update to 4.0.6
--------------------------------------------------------------------------------
================================================================================
cifs-utils-5.4-1.fc16 (FEDORA-2012-6375)
Utilities for mounting and managing CIFS mounts
--------------------------------------------------------------------------------
Update Information:
This updates the cifs-utils package to version 5.4, which contains a number of bugfixes and enhancements. Highlights include:
* mount.cifs now supports the -s option by passing "sloppy" to the kernel in the options string
* cifs.upcall now properly respects the domain_realm section in krb5.conf
* unprivileged users can no longer mount onto dirs into which they can't chdir (fixes CVE-2012-1586)
--------------------------------------------------------------------------------
ChangeLog:
* Wed Apr 18 2012 Jeff Layton <jlayton at redhat.com> 5.4-1
- update to 5.4
- add patch to fix up more warnings
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #807252 - CVE-2012-1586 samba, samba3x, cifs-utils: mount.cifs file existence disclosure vulnerability
https://bugzilla.redhat.com/show_bug.cgi?id=807252
--------------------------------------------------------------------------------
================================================================================
clamtk-4.39-1.fc16 (FEDORA-2012-6402)
Easy to use graphical user interface for Clam anti virus
--------------------------------------------------------------------------------
Update Information:
Update to 4.39
--------------------------------------------------------------------------------
ChangeLog:
* Sat Apr 21 2012 Dave M. <dave.nerd at gmail.com> - 4.39-1
- Updated to release 4.39.
--------------------------------------------------------------------------------
================================================================================
cmake-2.8.8-1.fc16 (FEDORA-2012-6410)
Cross-platform make system
--------------------------------------------------------------------------------
Update Information:
Update to cmake 2.8.8 final, for details see http://www.kitware.com/news/home/browse/CMake?2012_04_19&CMake+2.8.8+is+Now+Available
--------------------------------------------------------------------------------
ChangeLog:
* Fri Apr 20 2012 Lukas Tinkl <ltinkl at redhat.com> - 2.8.8-1
- Update to 2.8.8 final
* Sat Apr 14 2012 Rex Dieter <rdieter at fedoraproject.org> 2.8.8-0.4.rc2
- adjust pkgconfig patch (#812188)
* Fri Apr 13 2012 Orion Poplawski <orion at cora.nwra.com> - 2.8.8-0.3.rc2
- Add upstream patch to set PKG_CONFIG_FOUND (bug #812188)
* Mon Apr 9 2012 Orion Poplawski <orion at cora.nwra.com> - 2.8.8-0.2.rc2
- Update to 2.8.8 RC 2
* Fri Mar 23 2012 Orion Poplawski <orion at cora.nwra.com> - 2.8.8-0.1.rc1
- Update to 2.8.8 RC 1
* Tue Feb 21 2012 Orion Poplawski <orion at cora.nwra.com> - 2.8.7-6
- Just strip CMAKE_INSTALL_LIBDIR from %cmake macro
* Tue Feb 21 2012 Orion Poplawski <orion at cora.nwra.com> - 2.8.7-5
- Strip CMAKE_INSTALL_LIBDIR and others from %cmake macro (bug 795542)
--------------------------------------------------------------------------------
================================================================================
drupal7-calendar-3.2-1.fc16 (FEDORA-2012-6348)
This module will display any Views date field in calendar formats
--------------------------------------------------------------------------------
Update Information:
Updated to 3.2, http://drupal.org/node/1540864.
--------------------------------------------------------------------------------
ChangeLog:
* Sat Apr 21 2012 Peter Borsa <peter.borsa at gmail.com> - 3.2-1
- New upstream version.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #814632 - drupal7-calendar-3.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=814632
--------------------------------------------------------------------------------
================================================================================
drupal7-date-2.5-1.fc16 (FEDORA-2012-6357)
This package contains both the Date module and a Date API module
--------------------------------------------------------------------------------
Update Information:
Update to upstream 2.5 release
--------------------------------------------------------------------------------
ChangeLog:
* Thu Apr 19 2012 Jared Smith <jsmith at fedoraproject.org> - 2.5-1
- Update to upstream release 2.5
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #814147 - drupal7-date-2.4 is available
https://bugzilla.redhat.com/show_bug.cgi?id=814147
--------------------------------------------------------------------------------
================================================================================
dvd+rw-tools-7.1-9.fc16 (FEDORA-2012-5504)
Toolchain to master DVD+RW/+R media
--------------------------------------------------------------------------------
Update Information:
This is an update that fixes problems with writing a media with a Teac drive and wrong blocks count in DAO mode.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Apr 16 2012 Honza Horak <hhorak at redhat.com> - 7.1-9
- Allow buffer length of the block to be shorter than multiple of 16,
even in case of DAO writing (replaces the previous fix)
Resolves: #810483
* Fri Apr 6 2012 Honza Horak <hhorak at redhat.com> - 7.1-8
- Align blocks count to multiple of 16 also in case of DAO writing
Resolves: #810483
* Wed Mar 7 2012 Honza Horak <hhorak at redhat.com> - 7.1-7
- applied patch from Petr Sumbera to handle Teac DVD drive timeout issue
Resolves: #799299
* Fri Jan 13 2012 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 7.1-6
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #799299 - growisofs cannot write twice to a TEAC DV-W28SS-R (fix = apply specified patch)
https://bugzilla.redhat.com/show_bug.cgi?id=799299
[ 2 ] Bug #810483 - Burning DVD media using growisofs sometimes fails
https://bugzilla.redhat.com/show_bug.cgi?id=810483
--------------------------------------------------------------------------------
================================================================================
fabric-1.4.1-1.fc16 (FEDORA-2012-6361)
A simple Pythonic remote deployment tool
--------------------------------------------------------------------------------
Update Information:
Update to 1.4.1
--------------------------------------------------------------------------------
ChangeLog:
* Thu Apr 19 2012 Silas Sewell <silas at sewell.org> - 1.4.1-1
- Update to 1.4.1
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #814035 - 1.4.1 is released with a couple of bugfixes
https://bugzilla.redhat.com/show_bug.cgi?id=814035
--------------------------------------------------------------------------------
================================================================================
fuse-2.8.7-1.fc16.1 (FEDORA-2012-6416)
File System in Userspace (FUSE) utilities
--------------------------------------------------------------------------------
Update Information:
* Ver. 2.8.7
* Ver. 2.8.7
Delete needless udev rule in /etc.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Apr 19 2012 Peter Lemenkov <lemenkov at gmail.com> - 2.8.7-1
- Ver. 2.8.7
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #784823 - fuse-2.8.7 is available
https://bugzilla.redhat.com/show_bug.cgi?id=784823
[ 2 ] Bug #748204 - fuse: please drop needless udev rules file
https://bugzilla.redhat.com/show_bug.cgi?id=748204
--------------------------------------------------------------------------------
================================================================================
fuse-sshfs-2.4-1.fc16 (FEDORA-2012-6379)
FUSE-Filesystem to access remote filesystems via SSH
--------------------------------------------------------------------------------
Update Information:
* Ver. 2.4
--------------------------------------------------------------------------------
ChangeLog:
* Thu Apr 19 2012 Peter Lemenkov <lemenkov at gmail.com> - 2.4-1
- Ver. 2.4
* Fri Jan 13 2012 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 2.3-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
fvwm-2.6.4-1.fc16 (FEDORA-2012-6393)
Highly configurable multiple virtual desktop window manager
--------------------------------------------------------------------------------
Update Information:
* Ver. 2.6.4 (latest supported release)
--------------------------------------------------------------------------------
ChangeLog:
* Thu Apr 19 2012 Peter Lemenkov <lemenkov at gmail.com> - 2.6.4-1
- Ver. 2.6.4
* Fri Jan 13 2012 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 2.5.30-6
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
* Tue Dec 6 2011 Adam Jackson <ajax at redhat.com> - 2.5.30-5
- Rebuild for new libpng
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #709899 - fvwn 2.6.1 is released
https://bugzilla.redhat.com/show_bug.cgi?id=709899
[ 2 ] Bug #741132 - RFE: need fvwm update to stable version
https://bugzilla.redhat.com/show_bug.cgi?id=741132
[ 3 ] Bug #799348 - RFE: fvwm needs an update to stable version
https://bugzilla.redhat.com/show_bug.cgi?id=799348
--------------------------------------------------------------------------------
================================================================================
gdb-7.3.50.20110722-15.fc16 (FEDORA-2012-6350)
A GNU source-level debugger for C, C++, Java and other languages
--------------------------------------------------------------------------------
Update Information:
Security fix for loading untrusted inferiors, see "set auto-load".
Workaround crashes from stale frame_info pointer (BZ 804256).
--------------------------------------------------------------------------------
ChangeLog:
* Thu Apr 19 2012 Jan Kratochvil <jan.kratochvil at redhat.com> - 7.3.50.20110722-15.fc16
- Security fix for loading untrusted inferiors, see "set auto-load" (BZ 756117).
* Wed Apr 4 2012 Jan Kratochvil <jan.kratochvil at redhat.com> - 7.3.50.20110722-14.fc16
- Workaround crashes from stale frame_info pointer (BZ 804256).
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #756117 - CVE-2011-4355 gdb: arbitrary code execution via .debug_gdb_scripts [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=756117
[ 2 ] Bug #804256 - gdb: until command segfaults in amd64_sigtramp_frame_sniffer
https://bugzilla.redhat.com/show_bug.cgi?id=804256
--------------------------------------------------------------------------------
================================================================================
gnome-shell-extension-cpu-temperature-0-0.7.gite1777e6.fc16 (FEDORA-2012-6354)
A gnome-shell extension to show the current temperature of CPU
--------------------------------------------------------------------------------
Update Information:
* Fri Apr 13 2012 Fabian Affolter <mail at fabian-affolter.ch> - 0-0.7.gite1777e6
- Make it work with Gnome Shell 3.4
--------------------------------------------------------------------------------
ChangeLog:
* Fri Apr 13 2012 Fabian Affolter <mail at fabian-affolter.ch> - 0-0.7.gite1777e6
- Wrong command fixed
* Fri Apr 13 2012 Fabian Affolter <mail at fabian-affolter.ch> - 0-0.6.gite1777e6
- Make it work with Gnome Shell 3.4
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #808827 - update gnome-shell-extension-cpu-temperature to gnome 3.4
https://bugzilla.redhat.com/show_bug.cgi?id=808827
--------------------------------------------------------------------------------
================================================================================
gnome-shell-extension-noripple-2.0-1.fc16 (FEDORA-2012-6407)
A gnome-shell extension to disable hot corner ripple effects
--------------------------------------------------------------------------------
Update Information:
* Fri Apr 13 2012 Fabian Affolter <mail at fabian-affolter.ch> - 2.0-2
- Make it work with Gnome Shell 3.4
--------------------------------------------------------------------------------
ChangeLog:
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #808834 - update gnome-shell-extension-noripple to gnome 3.4
https://bugzilla.redhat.com/show_bug.cgi?id=808834
--------------------------------------------------------------------------------
================================================================================
gnome-shell-extension-remove-bluetooth-icon-0.3.0-1.fc16 (FEDORA-2012-6415)
A gnome-shell extension for removing the bluetooth icon
--------------------------------------------------------------------------------
Update Information:
* Fri Apr 13 2012 Fabian Affolter <mail at fabian-affolter.ch> - 0.3.0-1
- Updated to new upstream release 0.3.0
--------------------------------------------------------------------------------
ChangeLog:
* Fri Apr 13 2012 Fabian Affolter <mail at fabian-affolter.ch> - 0.3-1
- Updated to new upstream release 0.3
* Fri Jan 13 2012 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 0.2.1-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
* Mon Jan 2 2012 Fabian Affolter <mail at fabian-affolter.ch> - 0.2.1-1
- Updated to new upstream release 0.2.1
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #808844 - upgrade gnome-shell-extension-remove-bluetooth-icon to gnome 3.4
https://bugzilla.redhat.com/show_bug.cgi?id=808844
--------------------------------------------------------------------------------
================================================================================
gnome-shell-extension-remove-volume-icon-0.4.0-1.fc16 (FEDORA-2012-6351)
A gnome-shell extension for removing the volume icon
--------------------------------------------------------------------------------
Update Information:
* Fri Apr 13 2012 Fabian Affolter <mail at fabian-affolter.ch> - 0.4.0-1
- Updated to new upstream release 0.4.0
--------------------------------------------------------------------------------
ChangeLog:
* Fri Apr 13 2012 Fabian Affolter <mail at fabian-affolter.ch> - 0.4.0-1
- Updated to new upstream release 0.4.0
* Mon Jan 2 2012 Fabian Affolter <mail at fabian-affolter.ch> - 0.3.1-1
- Updated to new upstream release 0.3.1
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #808857 - upgrade gnome-shell-extension-remove-volume-icon to gnome 3.4
https://bugzilla.redhat.com/show_bug.cgi?id=808857
--------------------------------------------------------------------------------
================================================================================
kernel-3.3.2-6.fc16 (FEDORA-2012-6386)
The Linux kernel
--------------------------------------------------------------------------------
Update Information:
Fixes CVEs:
CVE-2012-2123
CVE-2012-2121
CVE-2012-2119
Also fixes a boot regression on some Dell machines.
--------------------------------------------------------------------------------
ChangeLog:
* Sat Apr 21 2012 Josh Boyer <jwboyer at redhat.com> - 3.3.2-6
- Fix error check in memblock that prevented boot on various Dells (rhbz 811225)
* Fri Apr 20 2012 Josh Boyer <jwboyer at redhat.com>
- CVE-2012-2123 fcaps: clear the same personality flags as suid when fcaps
are used (rhbz 814523 806722)
* Thu Apr 19 2012 Justin M. Forbes <jforbes at redhat.com> - 3.3.2-4
- CVE-2012-2119 macvtap: zerocopy: vector length is not validated before
pinning user pages (rhbz 814278 814289)
* Thu Apr 19 2012 Justin M. Forbes <jforbes at redhat.com>
- Fix KVM device assignment page leak (rhbz 814149 814155)
* Wed Apr 18 2012 Josh Boyer <jwboyer at redhat.com>
- Change patch to resolve libata hotplug (rhbz 807632)
- Disable CONFIG_HID_BATTERY_STRENGTH (rhbz 806295)
* Tue Apr 17 2012 Mauro Carvalho Chehab <mchehab at redhat.com>
- Fix DVB-S2->DVB-S switch regression (rhbz 812895)
* Tue Apr 17 2012 Josh Boyer <jwboyer at redhat.com>
- Fix oops in nfs_have_delegation (rhbz 811138)
- Fix oops on invalid AMD microcode load (rhbz 797559)
* Sat Apr 14 2012 Josh Boyer <jwboyer at redhat.com>
- Add ALSA quirk for MacPro 5,1 machines (rhbz 808559)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #806722 - CVE-2012-2123 kernel: fcaps: clear the same personality flags as suid when fcaps are used
https://bugzilla.redhat.com/show_bug.cgi?id=806722
[ 2 ] Bug #814278 - CVE-2012-2119 kernel: macvtap: zerocopy: vector length is not validated before pinning user pages
https://bugzilla.redhat.com/show_bug.cgi?id=814278
[ 3 ] Bug #814149 - CVE-2012-2121 kvm: device assignment page leak
https://bugzilla.redhat.com/show_bug.cgi?id=814149
--------------------------------------------------------------------------------
================================================================================
lftp-4.3.6-1.fc16 (FEDORA-2012-6356)
A sophisticated file transfer program
--------------------------------------------------------------------------------
Update Information:
update to latest upstream lftp-4.3.6
--------------------------------------------------------------------------------
ChangeLog:
* Thu Apr 19 2012 Jiri Skala <jskala at redhat.com> - 4.3.6-1
- updated to latest upstream 4.3.6
--------------------------------------------------------------------------------
================================================================================
liquibase-2.0.3-6.fc16 (FEDORA-2012-6392)
Database Refactoring Tool
--------------------------------------------------------------------------------
Update Information:
First Fedora release of the liquibase database refactoring tool.
--------------------------------------------------------------------------------
================================================================================
microcode_ctl-1.17-24.fc16 (FEDORA-2012-6363)
Tool to update x86/x86-64 CPU microcode.
--------------------------------------------------------------------------------
Update Information:
Fixes weirdness on AMD systems.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Feb 7 2012 Anton Arapov <anton at redhat.com> 1.17-24
- Update to amd-ucode-2012-01-17.tar
* Fri Jan 13 2012 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 1:1.17-22
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
* Thu Dec 22 2011 Anton Arapov <anton at redhat.com> 1.17-21
- Fix a segfault that may be triggered by very long parameter [#768803]
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #814101 - [RFE] microcode_ctl doesn't have microcode for AMD FX CPUs
https://bugzilla.redhat.com/show_bug.cgi?id=814101
--------------------------------------------------------------------------------
================================================================================
mpop-1.0.26-2.fc16 (FEDORA-2012-6381)
POP3 client for recieving mail from POP3 mailboxes
--------------------------------------------------------------------------------
Update Information:
* Sat Apr 21 2012 Fabian Affolter <mail at fabian-affolter.ch> - 1.0.26-2
- Rebuild
--------------------------------------------------------------------------------
ChangeLog:
* Sat Apr 21 2012 Fabian Affolter <mail at fabian-affolter.ch> - 1.0.26-2
- Rebuild
* Sun Jan 8 2012 Fabian Affolter <mail at fabian-affolter.ch> - 1.0.26-1
- Updated to new upstream version 1.0.26
--------------------------------------------------------------------------------
================================================================================
mspdebug-0.19-1.fc16 (FEDORA-2012-6369)
Debugger and gdb proxy for MSP430 MCUs
--------------------------------------------------------------------------------
Update Information:
Update to 0.19
--------------------------------------------------------------------------------
ChangeLog:
* Wed Mar 21 2012 Rob Spanton <rspanton at zepler.net> - 0.19-1
- Bump up to 0.19
* Fri Jan 13 2012 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 0.18-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
nautilus-sound-converter-3.0.2-1.fc16 (FEDORA-2012-6417)
Nautilus extension to convert audio files
--------------------------------------------------------------------------------
Update Information:
Latest stable update.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Mar 22 2012 Brian Pepple <bpepple at fedoraproject.org> - 3.0.2-1
- Update to 3.0.2.
- Drop mp2 mime types patch. Fixed upstream.
* Mon Jan 9 2012 Brian Pepple <bpepple at fedoraproject.org> - 3.0.1-3
- Rebuild for new gcc.
--------------------------------------------------------------------------------
================================================================================
nginx-1.0.15-1.fc16 (FEDORA-2012-6411)
A high performance web server and reverse proxy server
--------------------------------------------------------------------------------
Update Information:
Update to 1.0.15
--------------------------------------------------------------------------------
ChangeLog:
* Thu Apr 19 2012 Jamie Nguyen <jamie at tomoyolinux.co.uk> - 1.0.15-1
- update to upstream release 1.0.15
- CVE-2012-2089 (#812093)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #812093 - CVE-2012-2089 nginx: arbitrary code execution in mp4 pseudo-streaming module
https://bugzilla.redhat.com/show_bug.cgi?id=812093
--------------------------------------------------------------------------------
================================================================================
openconnect-3.17-1.fc16 (FEDORA-2012-6387)
Open client for Cisco AnyConnect VPN
--------------------------------------------------------------------------------
Update Information:
This update fixes a potential crash when processing libproxy results, and introduces some performance improvement
--------------------------------------------------------------------------------
ChangeLog:
* Fri Apr 20 2012 David Woodhouse <David.Woodhouse at intel.com> - 3.17-1
- Update to 3.17.
* Sun Apr 8 2012 David Woodhouse <David.Woodhouse at intel.com> - 3.16-1
- Update to 3.16.
* Fri Jan 13 2012 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 3.15-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
* Fri Nov 25 2011 David Woodhouse <David.Woodhouse at intel.com> - 3.15-1
- Update to 3.15.
* Fri Sep 30 2011 David Woodhouse <David.Woodhouse at intel.com> - 3.14-1
- Update to 3.14.
* Fri Sep 30 2011 David Woodhouse <David.Woodhouse at intel.com> - 3.13-1
- Update to 3.13. (Add localisation support, --cert-expire-warning)
--------------------------------------------------------------------------------
================================================================================
opensips-1.7.2-1.fc16 (FEDORA-2012-6399)
Open Source SIP Server
--------------------------------------------------------------------------------
Update Information:
Ver. 1.7.2 (bugfix release)
--------------------------------------------------------------------------------
ChangeLog:
* Thu Apr 19 2012 Peter Lemenkov <lemenkov at gmail.com> - 1.7.2-1
- update to 1.7.2 (bugfix release).
- enable systemd support where possible
* Fri Apr 13 2012 Jindrich Novy <jnovy at redhat.com> - 1.7.1-6
- rebuild against new librpm and libdb
* Sat Mar 3 2012 Remi Collet <remi at fedoraproject.org> - 1.7.1-5
- rebuild against libmemcached.so.9
* Fri Feb 10 2012 Petr Pisar <ppisar at redhat.com> - 1.7.1-4
- Rebuild against PCRE 8.30
* Fri Jan 13 2012 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 1.7.1-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
openssl-1.0.0i-1.fc16 (FEDORA-2012-6403)
A general purpose cryptography library with TLS implementation
--------------------------------------------------------------------------------
Update Information:
Upstream security update fixing CVE-2012-2110 - memory corruption in when reading ASN.1 structures through BIO interface.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Apr 20 2012 Tomas Mraz <tmraz at redhat.com> 1.0.0i-1
- new upstream release fixing CVE-2012-2110 - memory corruption
when loading asn1 from BIO
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #814185 - CVE-2012-2110 openssl: asn1_d2i_read_bio integer errors leading to buffer overflow
https://bugzilla.redhat.com/show_bug.cgi?id=814185
--------------------------------------------------------------------------------
================================================================================
openstack-nova-2011.3.1-8.fc16 (FEDORA-2012-6365)
OpenStack Compute (nova)
--------------------------------------------------------------------------------
Update Information:
- Fix undefined glance_host in get_glance_client
- Implement quotas for security groups (CVE-2012-2101)
--------------------------------------------------------------------------------
ChangeLog:
* Thu Apr 19 2012 Pádraig Bradu <P at draigBrady.com> - 2011.3.1-8
- Fix undefined glance_host in get_glance_client
- Implement quotas for security groups (#814361, CVE-2012-2101)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #814361 - CVE-2012-2101 openstack-nova: No quota enforced on security group rules [fedora-16]
https://bugzilla.redhat.com/show_bug.cgi?id=814361
--------------------------------------------------------------------------------
================================================================================
openttd-opengfx-0.4.4-1.fc16 (FEDORA-2012-6404)
OpenGFX replacement graphics for OpenTTD
--------------------------------------------------------------------------------
Update Information:
Update to 0.4.4
Build Sprites from PNG Sources using GIMPscript
Update to 0.4.3
Update to 0.4.3
--------------------------------------------------------------------------------
ChangeLog:
* Thu Apr 19 2012 Felix Kaechele <heffer at fedoraproject.org> - 0.4.4-1
- update to 0.4.4
- use clean-gfx target to build completely from source
* Thu Mar 29 2012 Felix Kaechele <heffer at fedoraproject.org> - 0.4.3-1
- update to 0.4.3
* Fri Jan 13 2012 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 0.3.7-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
pcre-8.12-8.fc16 (FEDORA-2012-6367)
Perl-compatible regular expression library
--------------------------------------------------------------------------------
Update Information:
Fix matching \s*\R.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Apr 20 2012 Petr Pisar <ppisar at redhat.com> - 8.12-8
- Possesify \s*\R (bug #813237)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #813237 - \s*\R does not match
https://bugzilla.redhat.com/show_bug.cgi?id=813237
--------------------------------------------------------------------------------
================================================================================
perl-MetaCPAN-API-0.43-1.fc16 (FEDORA-2012-6376)
Comprehensive, DWIM-featured API to MetaCPAN
--------------------------------------------------------------------------------
Update Information:
New package perl-MetaCPAN-API
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #808881 - Review Request: perl-MetaCPAN-API - Comprehensive, DWIM-featured API to MetaCPAN
https://bugzilla.redhat.com/show_bug.cgi?id=808881
--------------------------------------------------------------------------------
================================================================================
perl-Net-STOMP-Client-1.5-1.fc16 (FEDORA-2012-6364)
STOMP object oriented client module
--------------------------------------------------------------------------------
Update Information:
1.5 Tue Feb 28 2012
* Improved the documentation wrt failover support id (RT#74738).
* Added a server() method to access the CONNECTED frame's server header.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Apr 20 2012 Steve Traylen <steve.traylen at cern.ch> - 1.5-1
- New upstream 1.5, rhbz#811862
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #811862 - Upgrade to new upstream version
https://bugzilla.redhat.com/show_bug.cgi?id=811862
--------------------------------------------------------------------------------
================================================================================
python-sphinx-1.0.8-2.fc16 (FEDORA-2012-6390)
Python documentation generator
--------------------------------------------------------------------------------
Update Information:
Update to latest 1.0.x Sphinx release
--------------------------------------------------------------------------------
ChangeLog:
* Thu Apr 5 2012 Michel Salim <salimma at fedoraproject.org> - 1.0.8-2
- BR on texlive-latex for LaTeX tests
* Thu Apr 5 2012 Michel Salim <salimma at fedoraproject.org> - 1.0.8-1
- Update to upstream 1.0.8
--------------------------------------------------------------------------------
================================================================================
rubygems-1.8.11-3.fc16.1 (FEDORA-2012-6409)
The Ruby standard for packaging ruby libraries
--------------------------------------------------------------------------------
Update Information:
With this new rubygems, HTTPS connection no longer redirects to HTTP. Also now rubygems verify SSL connection.
--------------------------------------------------------------------------------
ChangeLog:
* Sat Apr 21 2012 Mamoru Tasaka <mtasaka at fedoraproject.org> - 1.8.11-3
- Backport fix for insecure connection to SSL repository (bug 814718)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #814718 - rubygems: Two security fixes in v1.8.23
https://bugzilla.redhat.com/show_bug.cgi?id=814718
--------------------------------------------------------------------------------
================================================================================
samba4-4.0.0-38.alpha16.fc16 (FEDORA-2012-6382)
The Samba4 CIFS and AD client and server suite
--------------------------------------------------------------------------------
Update Information:
This update fixes CVE-2012-1182.
Rebuilt to run with pytalloc 2.0.6
New samba4 alpha release.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Apr 13 2012 Andreas Schneider <asn at redhat.com> - 4.0.0-38.alpha16
- Fixes CVE-2012-1182.
- Fix build with new talloc in F16.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #804093 - CVE-2012-1182 samba: Multiple heap-based buffer overflows in memory management based on NDR marshalling code output
https://bugzilla.redhat.com/show_bug.cgi?id=804093
--------------------------------------------------------------------------------
================================================================================
sems-1.4.2-5.fc16 (FEDORA-2012-6366)
SIP Express Media Server, an extensible SIP media server
--------------------------------------------------------------------------------
Update Information:
* Enabled iLBC ( https://bugzilla.redhat.com/728302#c26 )
--------------------------------------------------------------------------------
ChangeLog:
* Thu Apr 19 2012 Peter Lemenkov <lemenkov at gmail.com> - 1.4.2-5
- Enabled iLBC ( https://bugzilla.redhat.com/728302#c26 )
* Tue Feb 28 2012 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 1.4.2-4
- Rebuilt for c++ ABI breakage
* Sat Jan 14 2012 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 1.4.2-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
sugar-visualmatch-36-1.fc16 (FEDORA-2012-6394)
A visual matching game
--------------------------------------------------------------------------------
Update Information:
New version 36 release
--------------------------------------------------------------------------------
ChangeLog:
* Fri Apr 20 2012 Kalpa Welivitigoda <callkalpa at gmail.com> - 36-1
- New 36 release
--------------------------------------------------------------------------------
================================================================================
sugar-visualmatch-37-1.fc16 (FEDORA-2012-6401)
A visual matching game
--------------------------------------------------------------------------------
Update Information:
BUG FIX:
* Fixed typo that prevented help animation from terminating
ENHANCEMENT:
* Autoadvance levels when play improves
--------------------------------------------------------------------------------
ChangeLog:
* Sat Apr 21 2012 Kalpa Welivitigoda <callkalpa at gmail.com> - 37-1
- New 37 release
* Fri Apr 20 2012 Kalpa Welivitigoda <callkalpa at gmail.com> - 36-1
- New 36 release
--------------------------------------------------------------------------------
================================================================================
taglib-1.7.2-1.fc16 (FEDORA-2012-6389)
Audio Meta-Data Library
--------------------------------------------------------------------------------
Update Information:
New upstream stable bugfix release
--------------------------------------------------------------------------------
ChangeLog:
* Sat Apr 21 2012 Rex Dieter <rdieter at fedoraproject.org> 1.7.2-1
- taglib-1.7.2
--------------------------------------------------------------------------------
================================================================================
uget-1.8.1-1.fc16 (FEDORA-2012-6405)
Download manager using GTK+ and libcurl
--------------------------------------------------------------------------------
Update Information:
New version 1.8.1 is released.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Apr 19 2012 Mamoru Tasaka <mtasaka at fedoraproject.org> - 1.8.1-1
- 1.8.1
* Thu Jan 5 2012 Mamoru Tasaka <mtasaka at fedoraproject.org> - 1.8.0-4
- F-17: rebuild against gcc47
* Wed Nov 9 2011 Mamoru Tasaka <mtasaka at fedoraproject.org> - 1.8.0-3
- F-17: Use deprecated declaration in GTK 3 for now
* Wed Nov 9 2011 Mamoru Tasaka <mtasaka at fedoraproject.org> - 1.8.0-2
- Rebuild
--------------------------------------------------------------------------------
================================================================================
why3-0.71-2.fc16 (FEDORA-2012-6397)
Software verification platform
--------------------------------------------------------------------------------
Update Information:
This new package is a platform for software verification.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #768538 - Review Request: why3 - Software verification platform
https://bugzilla.redhat.com/show_bug.cgi?id=768538
--------------------------------------------------------------------------------
================================================================================
xl2tpd-1.3.1-5.fc16 (FEDORA-2012-6372)
Layer 2 Tunnelling Protocol Daemon (RFC 2661)
--------------------------------------------------------------------------------
Update Information:
Support for kernel mode L2TP that significantly reduces CPU usage
--------------------------------------------------------------------------------
ChangeLog:
* Wed Apr 18 2012 Paul Wouters <pwouters at redhat.com> - 1.3.1-5
- Added support for CONFIG_PPPOL2TP by sigwall <fionov at gmail.com>
- Require current ppp because some old versions lacked pppol2tp.so plugin
- Fix parse error on lines > 80 chars, rhbz#806963
* Tue Feb 28 2012 Paul Wouters <pwouters at redhat.com> - 1.3.1-3
- Converted to systemd
- Added -Wunused patch to fix two minor warnings
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #806963 - Comment lines that exceed ~80 characters cause an error in parsing the config
https://bugzilla.redhat.com/show_bug.cgi?id=806963
[ 2 ] Bug #670195 - Build xl2tpd with kernel support
https://bugzilla.redhat.com/show_bug.cgi?id=670195
--------------------------------------------------------------------------------
================================================================================
youtube-dl-2012.02.27-1.fc16 (FEDORA-2012-6362)
Small command-line program to download videos from YouTube
--------------------------------------------------------------------------------
Update Information:
New upstream release with various minor bugfixes.
Upstream changelog:
https://github.com/rg3/youtube-dl/commits/master
--------------------------------------------------------------------------------
ChangeLog:
* Sat Apr 21 2012 Till Maas <opensource at till.name> - 2012.02.27-1
- Update to new release
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #768623 - youtube-dl-2012.02.27 is available
https://bugzilla.redhat.com/show_bug.cgi?id=768623
--------------------------------------------------------------------------------
================================================================================
zanata-util-0.2.6-1.fc16 (FEDORA-2012-6400)
Helper scripts for using Zanata
--------------------------------------------------------------------------------
Update Information:
- zanata_zanata_xml_make: Fixed locale resource search for gettext project
- Fixed mistakenly update top <version> of pom.xml, for maven projects that have existing pom.xml
- Fixed Bug 812216 - zanata_zanata_xml_make found wrong locale resource
- Fixed Bug 813997 - Missing Dependency: perl-XML-Path
Zanata-util contains a collection of helper scripts that makes Zanata use easier
zanata-util - Helper scripts for using Zanata
--------------------------------------------------------------------------------
ChangeLog:
* Fri Apr 20 2012 Ding-Yi Chen <dchen at redhat.com> - 0.2.6-1
- zanata_zanata_xml_make: Fixed locale resource search for gettext project
* Thu Apr 19 2012 Ding-Yi Chen <dchen at redhat.com> - 0.2.5-1
- Fixed mistakenly update top <version> of pom.xml, for maven projects
that have existing pom.xml
* Thu Apr 19 2012 Ding-Yi Chen <dchen at redhat.com> - 0.2.4-1
- Fixed Bug 812216 - zanata_zanata_xml_make found wrong locale resource
- Fixed Bug 813997 - Missing Dependency: perl-XML-Path
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #812216 - zanata_zanata_xml_make found wrong locale resource
https://bugzilla.redhat.com/show_bug.cgi?id=812216
[ 2 ] Bug #813997 - Missing Dependency: perl-XML-Path
https://bugzilla.redhat.com/show_bug.cgi?id=813997
[ 3 ] Bug #807113 - Review Request: zanata-util - Helper scripts for using Zanata
https://bugzilla.redhat.com/show_bug.cgi?id=807113
--------------------------------------------------------------------------------
More information about the test
mailing list