Fedora 15 updates-testing report
updates at fedoraproject.org
updates at fedoraproject.org
Tue Jan 24 01:46:10 UTC 2012
The following Fedora 15 Security updates need testing:
https://admin.fedoraproject.org/updates/FEDORA-2012-0623/openttd-1.1.5-1.fc15
https://admin.fedoraproject.org/updates/FEDORA-2012-0857/znc-0.204-1.fc15
https://admin.fedoraproject.org/updates/FEDORA-2012-0626/rubygem-actionpack-3.0.5-5.fc15
https://admin.fedoraproject.org/updates/FEDORA-2011-15560/nss-3.12.10-7.fc15
https://admin.fedoraproject.org/updates/FEDORA-2012-0440/wireshark-1.4.11-1.fc15
https://admin.fedoraproject.org/updates/FEDORA-2011-16284/krb5-1.9.2-4.fc15
https://admin.fedoraproject.org/updates/FEDORA-2012-0752/jetty-6.1.26-7.fc15
https://admin.fedoraproject.org/updates/FEDORA-2012-0813/smokeping-2.4.2-13.fc15
https://admin.fedoraproject.org/updates/FEDORA-2012-0861/kernel-2.6.41.10-3.fc15
https://admin.fedoraproject.org/updates/FEDORA-2012-0826/BackupPC-3.2.1-7.fc15
https://admin.fedoraproject.org/updates/FEDORA-2012-0849/polipo-1.0.4.1-6.fc15
https://admin.fedoraproject.org/updates/FEDORA-2012-0420/php-5.3.9-1.fc15,maniadrive-1.2-32.fc15.1,php-eaccelerator-0.9.6.1-9.fc15.1
https://admin.fedoraproject.org/updates/FEDORA-2011-17565/qt-4.7.4-10.fc15
https://admin.fedoraproject.org/updates/FEDORA-2011-17233/tor-0.2.1.32-1500.fc15
https://admin.fedoraproject.org/updates/FEDORA-2012-0353/pdns-2.9.22.5-1.fc15
https://admin.fedoraproject.org/updates/FEDORA-2012-0266/t1lib-5.1.2-9.fc15
https://admin.fedoraproject.org/updates/FEDORA-2011-16980/asterisk-1.8.7.2-1.fc15
The following Fedora 15 Critical Path updates have yet to be approved:
https://admin.fedoraproject.org/updates/FEDORA-2012-0861/kernel-2.6.41.10-3.fc15
https://admin.fedoraproject.org/updates/FEDORA-2012-0844/dnsperf-1.0.1.0-26.fc15,bind-9.8.2-0.2.rc1.fc15,bind-dyndb-ldap-1.1.0-0.6.a1.fc15
https://admin.fedoraproject.org/updates/FEDORA-2012-0762/redhat-rpm-config-9.1.0-16.fc15
https://admin.fedoraproject.org/updates/FEDORA-2012-0659/virtuoso-opensource-6.1.4-4.fc15
https://admin.fedoraproject.org/updates/FEDORA-2012-0475/python-kitchen-1.1.0-1.fc15
https://admin.fedoraproject.org/updates/FEDORA-2012-0433/mdadm-3.2.3-3.fc15
https://admin.fedoraproject.org/updates/FEDORA-2011-17565/qt-4.7.4-10.fc15
https://admin.fedoraproject.org/updates/FEDORA-2011-13190/phonon-backend-gstreamer-4.5.90-2.fc15,phonon-4.5.57-1.20110914.fc15
https://admin.fedoraproject.org/updates/FEDORA-2011-11955/evolution-mapi-3.0.3-2.fc15,evolution-exchange-3.0.3-1.fc15,evolution-3.0.3-1.fc15,evolution-data-server-3.0.3-1.fc15,gtkhtml3-4.0.2-1.fc15
The following builds have been pushed to Fedora 15 updates-testing
389-ds-base-1.2.10-0.8.a7.fc15
TnL-071111-18.fc15
ckeditor-3.6.2-2.fc15
kernel-2.6.41.10-3.fc15
mimedefang-2.73-1.fc15
rubygem-session-3.1.0-1.fc15
stage-4.1.1-1.fc15
starcal-1.9.4-3.fc15
unison240-2.40.63-6.fc15
znc-0.204-1.fc15
Details about builds:
================================================================================
389-ds-base-1.2.10-0.8.a7.fc15 (FEDORA-2012-0875)
389 Directory Server (base)
--------------------------------------------------------------------------------
Update Information:
the 389-ds-base 1.2.10.a7 release - several bug fixes - fixes for systemd
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 23 2012 Rich Megginson <rmeggins at redhat.com> - 1.2.10-0.8.a7
- fixes for systemd - remove .pid files after shutting down servers
- Ticket #263 - add systemd include directive
- Ticket #264 - upgrade needs better check for "server is running"
* Fri Jan 20 2012 Rich Megginson <rmeggins at redhat.com> - 1.2.10-0.7.a7
- Ticket #262 - pid file not removed with systemd
- Ticket #50 - server should not call a plugin after the plugin close function is called
- Ticket #18 - Data inconsitency during replication
- Ticket #49 - better handling for server shutdown while long running tasks are active
- Ticket #15 - Get rid of rwlock.h/rwlock.c and just use slapi_rwlock instead
- Ticket #257 - repl-monitor doesn't work if leftmost hostnames are the same
- Ticket #12 - 389 DS DNA Plugin / Replication failing on GSSAPI
- 6aaeb77 add a hack to disable sasl hostname canonicalization
- Ticket 168 - minssf should not apply to rootdse
- Ticket #177 - logconv.pl doesn't detect restarts
- Ticket #159 - Managed Entry Plugin runs against managed entries upon any update without validating
- Ticket 75 - Unconfigure plugin opperations are being called.
- Ticket 26 - Please support setting defaultNamingContext in the rootdse.
- Ticket #71 - unable to delete managed entry config
- Ticket #167 - Mixing transaction and non-transaction plugins can cause deadlock
- Ticket #256 - debug build assertion in ACL_EvalDestroy()
- Ticket #4 - bak2db gets stuck in infinite loop
- Ticket #162 - Infinite loop / spin inside strcmpi_fast, acl_read_access_allowed_on_attr, server DoS
- Ticket #3: acl cache overflown problem
- Ticket 1 - pre-normalize filter and pre-compile substring regex - and other optimizations
- Ticket 2 - If node entries are tombstone'd, subordinate entries fail to get the full DN.
* Thu Dec 15 2011 Rich Megginson <rmeggins at redhat.com> - 1.2.10-0.6.a6
- Bug 755725 - 389 programs linked against openldap crash during shutdown
- Bug 755754 - Unable to start dirsrv service using systemd
- Bug 745259 - Incorrect entryUSN index under high load in replicated environment
- d439e3a use slapi_hexchar2int and slapi_str_to_u8 everywhere
- 5910551 csn_init_as_string should not use sscanf
- b53ba00 reduce calls to csn_as_string and slapi_log_error
- c897267 fix member variable name error in slapi_uniqueIDFormat
- 66808e5 uniqueid formatting - use slapi_u8_to_hex instead of sprintf
- 580a875 csn_as_string - use slapi_uN_to_hex instead of sprintf
- Bug 751645 - crash when simple paged fails to send entry to client
- Bug 752155 - Use restorecon after creating init script lock file
* Fri Nov 4 2011 Rich Megginson <rmeggins at redhat.com> - 1.2.10-0.5.a5
- Bug 751495 - 'setup-ds.pl -u' fails with undefined routine 'updateSystemD'
- Bug 750625 750624 750622 744946 Coverity issues
- Bug 748575 - part 2 - rhds81 modrdn operation and 100% cpu use in replication
- Bug 748575 - rhds81 modrn operation and 100% cpu use in replication
- Bug 745259 - Incorrect entryUSN index under high load in replicated environment
- f639711 Reduce the number of DN normalization
- c06a8fa Keep unhashed password psuedo-attribute in the adding entry
- Bug 744945 - nsslapd-counters attribute value cannot be set to "off"
- 8d3b921 Use new PLUGIN_CONFIG_ENTRY feature to allow switching between txn and regular
- d316a67 Change referential integrity to be a betxnpostoperation plugin
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #759183 - Mixing transaction and non-transaction plugins can cause deadlock
https://bugzilla.redhat.com/show_bug.cgi?id=759183
--------------------------------------------------------------------------------
================================================================================
TnL-071111-18.fc15 (FEDORA-2012-0867)
Thunder & Lightning - A futuristic action flight simulator game
--------------------------------------------------------------------------------
Update Information:
Rebuild against compat-cegui06.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 23 2012 Jon Ciesla <limburgher at gmail.com> - 071111-18
- FTBFS fix.
* Thu Jan 12 2012 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 071111-17
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
* Tue Dec 6 2011 Adam Jackson <ajax at redhat.com> - 071111-16
- Rebuild for new libpng
* Tue Apr 5 2011 Jon Ciesla <limb at jcomserv.net> - 071111-15
- Patch for new cegui.
* Mon Feb 7 2011 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 071111-14
- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #741812 - TnL crashes
https://bugzilla.redhat.com/show_bug.cgi?id=741812
--------------------------------------------------------------------------------
================================================================================
ckeditor-3.6.2-2.fc15 (FEDORA-2012-0859)
WYSIWYG text editor to be used inside web pages
--------------------------------------------------------------------------------
Update Information:
CKEditor is a text editor to be used inside web pages. It's a WYSIWYG editor, which means that the text being edited on it looks as similar as possible to the results users have when publishing it. It brings to the web common editing features found on desktop editing applications like Microsoft Word and OpenOffice.
--------------------------------------------------------------------------------
================================================================================
kernel-2.6.41.10-3.fc15 (FEDORA-2012-0861)
The Linux kernel
--------------------------------------------------------------------------------
Update Information:
Update to the 3.1.10 stable release (Fedora 2.6.41.10). Also fixes CVEs:
- CVE-2012-0056
- CVE-2011-4127
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 23 2012 Josh Boyer <jwboyer at redhat.com> 2.6.41.10-3
- Fix NULL pointer dereference in sym53c8xx module (rhbz 781625)
* Fri Jan 20 2012 Josh Boyer <jwboyer at redhat.com>
- Add mac80211 deauth fix pointed out by Stanislaw Gruszka
* Wed Jan 18 2012 Josh Boyer <jwboyer at redhat.com> 2.6.41.10-2
- Fix broken procfs backport (rhbz 782961)
* Wed Jan 18 2012 Josh Boyer <jwboyer at redhat.com> 2.6.41.10-1
- Linux 3.1.10
- /proc/pid/* information leak (rhbz 782686)
* Wed Jan 18 2012 Dennis Gilmore <dennis at ausil.us>
- build perf on armv7hl
* Wed Jan 18 2012 Josh Boyer <jwboyer at redhat.com>
- CVE-2012-0056 proc: clean up and fix /proc/<pid>/mem (rhbz 782681)
- loop: prevent information leak after failed read (rhbz 782687)
* Tue Jan 17 2012 Josh Boyer <jwboyer at redhat.com>
- CVE-2011-4127 possible privilege escalation via SG_IO ioctl (rhbz 769911)
* Sun Jan 15 2012 Josh Boyer <jwboyer at redhat.com>
- Avoid packaging symlinks for kernel-doc files (rhbz 767351)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #781625 - kernel-3.1.7 crash due to sym53c8xx module
https://bugzilla.redhat.com/show_bug.cgi?id=781625
[ 2 ] Bug #782961 - Kernel panic: kernel-3.1.10-1.fc16.x86_64
https://bugzilla.redhat.com/show_bug.cgi?id=782961
[ 3 ] Bug #782686 - kernel: /proc/pid/* information leak [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=782686
[ 4 ] Bug #782681 - CVE-2012-0056 kernel: proc: /proc/<pid>/mem mem_write insufficient permission checking [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=782681
[ 5 ] Bug #782687 - kernel: loop: prevent information leak after failed read [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=782687
[ 6 ] Bug #769911 - CVE-2011-4127 kernel: possible privilege escalation via SG_IO ioctl [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=769911
[ 7 ] Bug #767351 - kernel-doc contains /builddir/ symlinks
https://bugzilla.redhat.com/show_bug.cgi?id=767351
[ 8 ] Bug #728740 - Constant Logging Of rtl8192c Notice To Console & /var/log/messages
https://bugzilla.redhat.com/show_bug.cgi?id=728740
--------------------------------------------------------------------------------
================================================================================
mimedefang-2.73-1.fc15 (FEDORA-2012-0873)
E-Mail filtering framework using Sendmail's Milter interface
--------------------------------------------------------------------------------
Update Information:
Upstream changes for MIMEDefang 2.73:
* Create /var/spool/MIMEDefang with mode 0750 by default.
* Make the -G option cause files created by mimedefang to be group-readable. Add the new MD_ALLOW_GROUP_ACCESS init script variable.
* Make the multiplexor snoop in on communications and save the Sendmail queue-ID for logging purposes. It logs the queue ID when logging a slave's STDERR.
* Make configure.in check whether or not libmilter requires -lldap.
* Fix Graphdefang to handle new md_syslog output style.
* Always check return code from chdir() in mimedefang.pl. In certain cases on large and heavily-loaded servers, if the chdir() failed MIMEDefang would end up working in the wrong directory with attendant chaos.
* Add "-G" option to mimedefang and mimedefang-multiplexor. This makes their sockets group-readable and group-writable.
* Pass along the client port number, server IP address and server port number to all filter functions. This feature was sponsored by Scayl.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 23 2012 Robert Scheck <robert at fedoraproject.org> 2.73-1
- Upgrade to 2.73 (#759805, thanks to Philip Prindeville)
* Fri Jan 13 2012 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 2.72-4
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
* Mon Dec 26 2011 Robert Scheck <robert at fedoraproject.org> 2.72-3
- Removed requirement on sendmail-cf for postfix (#754847)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #754847 - Incorrect dependency for mimedefang on sendmail-cf
https://bugzilla.redhat.com/show_bug.cgi?id=754847
[ 2 ] Bug #759805 - Mimedefang doesn't create mimedefang.sock with correct permissions
https://bugzilla.redhat.com/show_bug.cgi?id=759805
--------------------------------------------------------------------------------
================================================================================
rubygem-session-3.1.0-1.fc15 (FEDORA-2012-0872)
Session drives external programs
--------------------------------------------------------------------------------
Update Information:
Initial package
--------------------------------------------------------------------------------
================================================================================
stage-4.1.1-1.fc15 (FEDORA-2012-0877)
A 2.5D multi-robot simulator
--------------------------------------------------------------------------------
Update Information:
Update to Stage 4.1.1.
Stage 4.1.1 contains several performance improvements, as well as a cleaned up libstage api. Stage controller programs that use the stage API may require small changes.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 16 2012 Rich Mattes <richmattes at gmail.com> - 4.1.1-1
- Update to release 4.1.1
- Cleanup old patches
* Wed May 4 2011 Dan Horák <dan[at]danny.cz> - 4.0.0-3
- Fix typos causing s390x build to fail
--------------------------------------------------------------------------------
================================================================================
starcal-1.9.4-3.fc15 (FEDORA-2012-0855)
A full-featured international calendar written in Python
--------------------------------------------------------------------------------
Update Information:
It containse fix for two bugs: calculating asr time and it removes broken Qt ui for now.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 23 2012 Hedayat Vatankhah <hedayat.fwd+rpmchlog at gmail.com> - 1.9.4-3
- Add patch to fix bug #759600
- Remove Qt gui as it doesn't work now, fix for bug #751553
* Thu Oct 20 2011 Hedayat Vatankhah <hedayat.fwd+rpmchlog at gmail.com> - 1.9.4-2
- Add support gnome-shell 3.2 by starcal integration extention
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #759600 - Erronus calculation of Asr time
https://bugzilla.redhat.com/show_bug.cgi?id=759600
[ 2 ] Bug #751553 - [abrt] starcal-1.9.4-1.fc15: preferences.py:450:__init__:RuntimeError: bad option type "Tune Hijri Monthes"
https://bugzilla.redhat.com/show_bug.cgi?id=751553
--------------------------------------------------------------------------------
================================================================================
unison240-2.40.63-6.fc15 (FEDORA-2012-0854)
Multi-master File synchronization tool
--------------------------------------------------------------------------------
Update Information:
Add built-in documentation and manual.
--------------------------------------------------------------------------------
ChangeLog:
* Sun Jan 22 2012 Gregor Tätzner <brummbq at fedoraproject.com> - 2.40.63-6
- Patch built-in documentation.
* Sat Jan 21 2012 Gregor Tätzner <brummbq at fedoraproject.org> - 2.40.63-5
- Add unison-manual.html.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #529805 - Package the manual
https://bugzilla.redhat.com/show_bug.cgi?id=529805
--------------------------------------------------------------------------------
================================================================================
znc-0.204-1.fc15 (FEDORA-2012-0857)
An advanced IRC bouncer
--------------------------------------------------------------------------------
Update Information:
Update to 0.204 to fix CVE-2012-0033
--------------------------------------------------------------------------------
ChangeLog:
* Mon Jan 23 2012 Nick Bebout <nb at fedoraproject.org> - 0.204-1
- Update to 0.204 to fix security issue CVE-2012-0033
* Mon Jan 9 2012 Nick Bebout <nb at fedoraproject.org> - 0.202-2
- Add glibc-devel, openssl-devel, c-ares-devel to requires for
- znc-devel so znc-buildmod will work
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #772757 - CVE-2012-0033 znc: denial of service flaw
https://bugzilla.redhat.com/show_bug.cgi?id=772757
--------------------------------------------------------------------------------
More information about the test
mailing list