Fedora 16 updates-testing report

Sat Mar 10 21:56:40 UTC 2012

The following Fedora 16 Security updates need testing:

    https://admin.fedoraproject.org/updates/FEDORA-2012-3412/python-sqlalchemy0.5-0.5.8-9.fc16
    https://admin.fedoraproject.org/updates/FEDORA-2012-3321/rubygem-actionpack-3.0.10-3.fc16,rubygem-activesupport-3.0.10-2.fc16
    https://admin.fedoraproject.org/updates/FEDORA-2012-3537/pyfribidi-0.11.0-1.fc16
    https://admin.fedoraproject.org/updates/FEDORA-2012-3008/iproute-2.6.39-5.fc16
    https://admin.fedoraproject.org/updates/FEDORA-2012-2994/python-mwlib-0.13.5-1.fc16
    https://admin.fedoraproject.org/updates/FEDORA-2012-0730/jetty-6.1.26-8.fc16
    https://admin.fedoraproject.org/updates/FEDORA-2012-3545/libpng10-1.0.58-1.fc16
    https://admin.fedoraproject.org/updates/FEDORA-2012-3312/notmuch-0.6.1-2.fc16
    https://admin.fedoraproject.org/updates/FEDORA-2012-3341/condor-7.7.5-0.2.fc16
    https://admin.fedoraproject.org/updates/FEDORA-2012-2359/seamonkey-2.7.1-2.fc16
    https://admin.fedoraproject.org/updates/FEDORA-2012-2557/systemd-37-15.fc16
    https://admin.fedoraproject.org/updates/FEDORA-2011-14691/tomcat6-6.0.32-19.fc16

The following Fedora 16 Critical Path updates have yet to be approved:

    https://admin.fedoraproject.org/updates/FEDORA-2012-3488/initscripts-9.34.1-1.fc16
    https://admin.fedoraproject.org/updates/FEDORA-2012-3471/xorg-x11-server-1.11.4-2.fc16
    https://admin.fedoraproject.org/updates/FEDORA-2012-3477/krb5-1.9.3-1.fc16
    https://admin.fedoraproject.org/updates/FEDORA-2012-3474/akonadi-1.7.1-1.fc16,analitza-4.8.1-1.fc16,ark-4.8.1-1.fc16,blinken-4.8.1-1.fc16,cantor-4.8.1-1.fc16,digikam-2.5.0-3.fc16,filelight-4.8.1-1.fc16,gwenview-4.8.1-1.fc16,jovie-4.8.1-1.fc16,kaccessible-4.8.1-1.fc16,kactivities-4.8.1-1.fc16,kalgebra-4.8.1-1.fc16,kalzium-4.8.1-1.fc16,kamera-4.8.1-1.fc16,kanagram-4.8.1-1.fc16,kate-4.8.1-1.fc16,kbruch-4.8.1-1.fc16,kcalc-4.8.1-1.fc16,kcharselect-4.8.1-1.fc16,kcolorchooser-4.8.1-1.fc16,kde-baseapps-4.8.1-1.fc16,kde-l10n-4.8.1-2.fc16,kde-printer-applet-4.8.1-1.fc16,kde-runtime-4.8.1-2.fc16,kde-wallpapers-4.8.1-1.fc16,kde-workspace-4.8.1-2.fc16,kdeaccessibility-4.8.1-1.fc16,kdeadmin-4.8.1-1.fc16,kdeartwork-4.8.1-1.fc16,kdebindings-4.8.1-1.fc16,kdeedu-4.8.1-1.fc16,kdegames-4.8.1-1.fc16,kdegraphics-4.8.1-1.fc16,kdegraphics-mobipocket-4.8.1-1.fc16,kdegraphics-strigi-analyzer-4.8.1-1.fc16,kdegraphics-thumbnailers-4.8.1-1.fc16,kdelibs-4.8.1-1.fc16,kdemultimedia-4.8.1-1.fc16,kdenetwork-4.8.1-1.fc16.1,kdepim-4.8.1-2.fc16,kdepim-runtime-4.8.1-1.fc16,kdepimlibs-4.8.1-1.fc16,kdeplasma-addons-4.8.1-1.fc16,kdesdk-4.8.1-1.fc16,kdetoys-4.8.1-1.fc16,kdeutils-4.8.1-1.fc16,kdevelop-4.2.3-5.fc16,kdf-4.8.1-1.fc16,kfloppy-4.8.1-1.fc16,kgamma-4.8.1-1.fc16,kgeography-4.8.1-1.fc16,kgpg-4.8.1-1.fc16,khangman-4.8.1-1.fc16,kig-4.8.1-1.fc16,kimono-4.8.1-1.fc16,kiten-4.8.1-1.fc16,klettres-4.8.1-1.fc16,kmag-4.8.1-1.fc16,kmousetool-4.8.1-1.fc16,kmouth-4.8.1-1.fc16,kmplot-4.8.1-1.fc16,kolourpaint-4.8.1-1.fc16,konsole-4.8.1-1.fc16,kremotecontrol-4.8.1-1.fc16,kross-interpreters-4.8.1-1.fc16,kruler-4.8.1-1.fc16,ksaneplugin-4.8.1-1.fc16,ksecrets-4.8.1-1.fc16,ksnapshot-4.8.1-1.fc16,kstars-4.8.1-1.fc16,ktimer-4.8.1-1.fc16,ktorrent-4.2.0-1.fc16,ktouch-4.8.1-1.fc16,kturtle-4.8.1-1.fc16,kwallet-4.8.1-1.fc16,kwordquiz-4.8.1-1.fc16,libkdcraw-4.8.1-1.fc16,libkdeedu-4.8.1-1.fc16,libkexiv2-4.8.1-1.fc16,libkipi-4.8.1-1.fc16,libksane-4.8.1-1.fc16,libktorrent-1.2.0-1.fc16,marble-4.8.1-1.fc16,okular-4.8.1-1.fc16,oxygen-gtk-1.2.0-2.fc16,oxygen-gtk2-1.2.1-1.fc16,oxygen-icon-theme-4.8.1-1.fc16,parley-4.8.1-1.fc16,pykde4-4.8.1-1.fc16,qyoto-4.8.1-1.fc16,rocs-4.8.1-1.fc16,ruby-korundum-4.8.1-1.fc16,ruby-qt-4.8.1-1.fc16,smokegen-4.8.1-1.fc16,smokekde-4.8.1-1.fc16,smokeqt-4.8.1-1.fc16,step-4.8.1-1.fc16,superkaramba-4.8.1-1.fc16,svgpart-4.8.1-1.fc16,sweeper-4.8.1-1.fc16,xsettings-kde-0.12.3-2.fc16.1
    https://admin.fedoraproject.org/updates/FEDORA-2012-3398/libjpeg-turbo-1.2.0-1.fc16
    https://admin.fedoraproject.org/updates/FEDORA-2012-3400/lorax-16.4.8-2.fc16
    https://admin.fedoraproject.org/updates/FEDORA-2012-3340/chkconfig-1.3.59-1.fc16
    https://admin.fedoraproject.org/updates/FEDORA-2012-3348/evolution-3.2.3-2.fc16
    https://admin.fedoraproject.org/updates/FEDORA-2012-3370/gcc-4.6.3-2.fc16,libtool-2.4-9.fc16,gcc-python-plugin-0.9-1.fc16
    https://admin.fedoraproject.org/updates/FEDORA-2012-3319/GConf2-3.2.3-4.fc16
    https://admin.fedoraproject.org/updates/FEDORA-2012-3322/lorax-16.4.8-1.fc16
    https://admin.fedoraproject.org/updates/FEDORA-2012-3281/mod_perl-2.0.5-8.fc16
    https://admin.fedoraproject.org/updates/FEDORA-2012-3001/httpd-2.2.22-2.fc16
    https://admin.fedoraproject.org/updates/FEDORA-2012-2988/dash-0.5.7-1.fc16
    https://admin.fedoraproject.org/updates/FEDORA-2012-3075/xorg-x11-drv-synaptics-1.5.0-3.fc16
    https://admin.fedoraproject.org/updates/FEDORA-2012-3071/audit-2.2-1.fc16
    https://admin.fedoraproject.org/updates/FEDORA-2012-3016/gdb-7.3.50.20110722-12.fc16
    https://admin.fedoraproject.org/updates/FEDORA-2012-3066/livecd-tools-16.11-1.fc16
    https://admin.fedoraproject.org/updates/FEDORA-2012-3031/libuser-0.57.4-1.fc16
    https://admin.fedoraproject.org/updates/FEDORA-2012-3008/iproute-2.6.39-5.fc16
    https://admin.fedoraproject.org/updates/FEDORA-2012-2733/selinux-policy-3.10.0-78.fc16
    https://admin.fedoraproject.org/updates/FEDORA-2012-2718/gd-2.0.35-14.fc16
    https://admin.fedoraproject.org/updates/FEDORA-2012-2744/mysql-5.5.21-1.fc16
    https://admin.fedoraproject.org/updates/FEDORA-2012-2593/pixman-0.24.2-1.fc16
    https://admin.fedoraproject.org/updates/qrencode-3.2.0-2.fc16
    https://admin.fedoraproject.org/updates/FEDORA-2012-1523/dnsmasq-2.59-4.fc16

The following builds have been pushed to Fedora 16 updates-testing

    chmsee-1.99-0.10.8.git339d2c3.fc16
    esc-1.1.0-15.fc16
    fsarchiver-0.6.13-1.fc16
    gccxml-0.9.0-0.10.20120309.fc16
    liblouis-2.4.1-1.fc16
    libpng10-1.0.58-1.fc16
    muParser-2.2.2-1.fc16
    nautilus-actions-3.2.2-1.fc16
    perl-Devel-Cover-0.78-3.fc16
    php-pecl-gmagick-1.1.0-0.2.RC2.fc16
    pyfribidi-0.11.0-1.fc16
    python-biopython-1.59-1.fc16
    python-django-tables2-0.9.4-2.fc16
    racoon2-20100526a-17.fc16

Details about builds:

================================================================================
 chmsee-1.99-0.10.8.git339d2c3.fc16 (FEDORA-2012-3542)
 HTML Help viewer for Unix/Linux
--------------------------------------------------------------------------------
Update Information:

rebuild for xulrunner 10
--------------------------------------------------------------------------------
ChangeLog:

* Sat Mar 10 2012 bbbush <bbbush.yuan at gmail.com> - 1.99-0.10.8.git339d2c3
- rebuild for xulrunner 10
* Thu Jan 12 2012 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 1.99-0.10.6.git67a1b5f
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
--------------------------------------------------------------------------------

================================================================================
 esc-1.1.0-15.fc16 (FEDORA-2012-3535)
 Enterprise Security Client Smart Card Client
--------------------------------------------------------------------------------
Update Information:

Here is where you give an explanation of your update.
Fix minor build problem, related to Gecko 2.0 issue #688361.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Feb 20 2012 Jack Magne <jmagne at redhat.com>= 1.1.0-15
- Related #688361 - Get ESC to run on Gecko 2.0.
* Sat Nov 19 2011 Jack Magne <jmagne at redhat.com>= 1.1.0-14
- Related #688361 - Get ESC to run on Gecko 2.0.
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #688361 - esc fails to start
        https://bugzilla.redhat.com/show_bug.cgi?id=688361
  [ 2 ] Bug #496410 - Problems launching ESC with token already plugged in
        https://bugzilla.redhat.com/show_bug.cgi?id=496410
  [ 3 ] Bug #469202 - View Certificates does not show your certificates by default; you have to click the single tab that shows up in order to see them
        https://bugzilla.redhat.com/show_bug.cgi?id=469202
  [ 4 ] Bug #471923 - ESC can crash when connecting to an invalid or down TPS
        https://bugzilla.redhat.com/show_bug.cgi?id=471923
  [ 5 ] Bug #467126 - Authentication window for Enrollment is blank
        https://bugzilla.redhat.com/show_bug.cgi?id=467126
--------------------------------------------------------------------------------

================================================================================
 fsarchiver-0.6.13-1.fc16 (FEDORA-2012-3539)
 Safe and flexible file-system backup/deployment tool
--------------------------------------------------------------------------------
Update Information:

New upstream version with the following fixes: 
* Fixed detection of the root filesystem using "/proc/self/mountinfo" instead of "/proc/mounts"
* Fix: get correct mount info for root device when not listed in /proc/mounts (eg: missing "/dev/root")
--------------------------------------------------------------------------------
ChangeLog:

* Fri Mar  9 2012 Adel Gadllah <adel.gadllah at gmail.com> - 0.6.13-1
- Update to 0.6.13
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #801939 - fsarchiver should be updated to the latest version (0.6.13)
        https://bugzilla.redhat.com/show_bug.cgi?id=801939
--------------------------------------------------------------------------------

================================================================================
 gccxml-0.9.0-0.10.20120309.fc16 (FEDORA-2012-3554)
 XML output extension to GCC
--------------------------------------------------------------------------------
Update Information:

Update to new cvs snapshot. Adds support files fro gcc 4.7.
--------------------------------------------------------------------------------
ChangeLog:

* Sat Mar 10 2012 Mattias Ellert <mattias.ellert at fysast.uu.se> - 0.9.0-0.10.20120309
- Updated cvs snapshot
- Now contains support files for gcc 4.7
* Tue Feb 28 2012 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 0.9.0-0.9.20111218
- Rebuilt for c++ ABI breakage
* Fri Jan 13 2012 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 0.9.0-0.8.20111218
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
--------------------------------------------------------------------------------

================================================================================
 liblouis-2.4.1-1.fc16 (FEDORA-2012-3548)
 Braille translation and back-translation library
--------------------------------------------------------------------------------
Update Information:

New features
* Czech hyphenation table
* Spanish grade 1 table
* New tamil table

Braille Table Improvements
* Improvements to the Portuguese grade1 braille tables
* Updates and additions to Icelandic 8-dot braille table.
* Improvements to the uncontracted Spanish computer braille table.
* Improvements to the Norwegian braille table. 

--------------------------------------------------------------------------------
ChangeLog:

* Sat Mar 10 2012 Martin Gieseking <martin.gieseking at uos.de> 2.4.1-1
- Updated to upstream release 2.4.1.
- Made the devel package's dependency on the base package arch specific.
* Fri Jan 13 2012 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 2.4.0-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
--------------------------------------------------------------------------------

================================================================================
 libpng10-1.0.58-1.fc16 (FEDORA-2012-3545)
 Old version of libpng, needed to run old binaries
--------------------------------------------------------------------------------
Update Information:

A type conversion flaw leading to an out-of-bounds heap buffer read was found in the way libpng10, a library of functions for manipulation PNG image format files, performed expansion of certain iCCP, iTXt, and zTXt PNG image file chunks.

A remote attacker could provide a specially-crafted Portable Network Graphics (PNG) image file, which once opened in an application, linked against libpng10, could lead to denial of service or in some cases, execution of arbitrary code without permission of the user running such an application.
--------------------------------------------------------------------------------
ChangeLog:

* Fri Mar  9 2012 Paul Howarth <paul at city-fan.org> 1.0.58-1
- update to 1.0.58
  - fix bug with png_handle_hIST with odd chunk length
  - fix incorrect type (int copy should be png_size_t copy) in png_inflate()
    (CVE-2011-3045)
  - fix off-by-one bug in png_handle_sCAL() when using fixed point arithmetic,
    causing out-of-bounds read in png_set_sCAL() because of failure to copy
    the string terminators
  - remove the png_free() of unused png_ptr->current_text from pngread.c
  - remove all of the assembler code from pnggccrd.c and just "return 2;"
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #799000 - CVE-2011-3045 libpng: buffer overflow in png_inflate caused by invalid type conversions
        https://bugzilla.redhat.com/show_bug.cgi?id=799000
--------------------------------------------------------------------------------

================================================================================
 muParser-2.2.2-1.fc16 (FEDORA-2012-3534)
 A fast math parser library
--------------------------------------------------------------------------------
Update Information:

Updated muParser to latest upstream release.
--------------------------------------------------------------------------------
ChangeLog:

* Fri Mar  9 2012 Eric Smith <eric at brouhaha.com> - 2.2.2-1
- Update to 2.2.2
- Upstream source distribution is now a .zip file
- Upstream version number policy is now that the release version matches
  the .so versioning
- Clean up spec to modern standards (no clean section or BuildRoot tag, etc.)
* Tue Feb 28 2012 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 1.34-3
- Rebuilt for c++ ABI breakage
* Fri Jan 13 2012 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 1.34-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
--------------------------------------------------------------------------------

================================================================================
 nautilus-actions-3.2.2-1.fc16 (FEDORA-2012-3541)
 Nautilus extension for customizing the context menu
--------------------------------------------------------------------------------
Update Information:

Update to 3.2.2 release
--------------------------------------------------------------------------------
ChangeLog:

* Fri Mar  9 2012 Deji Akingunola <dakingun at gmail.com> - 3.2.2-1
- Update to 3.2.2
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #757262 - [abrt] nautilus-actions-3.1.3-1.fc16: gtk_box_pack: Process /usr/bin/nautilus-actions-config-tool was killed by signal 11 (SIGSEGV)
        https://bugzilla.redhat.com/show_bug.cgi?id=757262
--------------------------------------------------------------------------------

================================================================================
 perl-Devel-Cover-0.78-3.fc16 (FEDORA-2012-3555)
 Code coverage metrics for Perl
--------------------------------------------------------------------------------
Update Information:

This is rebuilt version of the package to accompany the perl 5.14.2 update in Fedora 16.
--------------------------------------------------------------------------------
ChangeLog:

* Fri Jan 13 2012 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 0.78-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #801898 - Rebuild required to work correctly with perl 5.14.2
        https://bugzilla.redhat.com/show_bug.cgi?id=801898
--------------------------------------------------------------------------------

================================================================================
 php-pecl-gmagick-1.1.0-0.2.RC2.fc16 (FEDORA-2012-3533)
 Provides a wrapper to the GraphicsMagick library
--------------------------------------------------------------------------------
Update Information:

Update to 1.1.0RC2 by request bz#751376
--------------------------------------------------------------------------------
ChangeLog:

* Sat Mar 10 2012 Pavel Alexeev <Pahan at Hubbitus.info> - 1.1.0-0.2.RC2
- Skip %check on epel5.
* Sat Mar 10 2012 Pavel Alexeev <Pahan at Hubbitus.info> - 1.1.0-0.1.RC2
- Update to 1.1.0RC2 by request bz#751376
* Thu Jan 19 2012 Remi Collet <remi at fedoraproject.org> - 1.0.10-0.1.b1
- update to 1.0.10b1 for php 5.4
- add filter to avoid private-shared-object-provides
* Sat Jan 14 2012 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 1.0.7b1-10
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
* Mon Sep 12 2011 Pavel Alexeev <Pahan at Hubbitus.info> - 1.0.7b1-9
- Fix FBFS f16-17. Bz#716217
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #751376 - magick/semaphore.c:525: LockSemaphoreInfo: Assertion `semaphore_info != (SemaphoreInfo *)
        https://bugzilla.redhat.com/show_bug.cgi?id=751376
--------------------------------------------------------------------------------

================================================================================
 pyfribidi-0.11.0-1.fc16 (FEDORA-2012-3537)
 A Python binding for GNU FriBidi
--------------------------------------------------------------------------------
Update Information:

Fix for buffer overflow.
--------------------------------------------------------------------------------
ChangeLog:

* Thu Mar  1 2012 Jon Ciesla <limburgher at gmail.com> - 0.11.0-1
- Update to 0.11.0, BZ 801897.
- Both patches upstreamed.
* Sat Jan 14 2012 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 0.10.0-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #801897 - pyfribidi: buffer overflow when handling 4-byte utf-8 sequences [fedora-all]
        https://bugzilla.redhat.com/show_bug.cgi?id=801897
--------------------------------------------------------------------------------

================================================================================
 python-biopython-1.59-1.fc16 (FEDORA-2012-3546)
 Python tools for computational molecular biology
--------------------------------------------------------------------------------
Update Information:

Update to latest upstream 1.59, fixes some bugs, for more details see: http://news.open-bio.org/news/2012/02/biopython-1-59-released/
--------------------------------------------------------------------------------
ChangeLog:

* Fri Mar  9 2012 Alex Lancaster <alexlan[AT]fedoraproject org> - 1.59-1
- Update to latest upstream (1.59) (#797872)
* Sat Jan 14 2012 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 1.58-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #797872 - python-biopython-1.59 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=797872
--------------------------------------------------------------------------------

================================================================================
 python-django-tables2-0.9.4-2.fc16 (FEDORA-2012-3544)
 Table framework for Django
--------------------------------------------------------------------------------
Update Information:

Initial packaging for fedora
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #799649 - Review Request: python-django-tables2 -  Table framework for Django
        https://bugzilla.redhat.com/show_bug.cgi?id=799649
--------------------------------------------------------------------------------

================================================================================
 racoon2-20100526a-17.fc16 (FEDORA-2012-3540)
 An implementation of key management system for IPsec
--------------------------------------------------------------------------------
Update Information:

Fixed conflict with ike package
Racoon2 now only uses one initscript
Racoon2: An implementation of key management system for IPsec
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #797810 - racoon2 : Conflicts with ike
        https://bugzilla.redhat.com/show_bug.cgi?id=797810
  [ 2 ] Bug #752223 - Review Request: racoon2 - an implementation of key management system for IPsec
        https://bugzilla.redhat.com/show_bug.cgi?id=752223
--------------------------------------------------------------------------------