Fedora 15 updates-testing report

Sat Mar 24 23:22:30 UTC 2012

The following Fedora 15 Security updates need testing:

    https://admin.fedoraproject.org/updates/FEDORA-2012-3414/python-sqlalchemy0.5-0.5.8-9.fc15
    https://admin.fedoraproject.org/updates/FEDORA-2012-4417/mingw-libtasn1-2.12-1.fc15
    https://admin.fedoraproject.org/updates/FEDORA-2012-4308/libtasn1-2.12-1.fc15
    https://admin.fedoraproject.org/updates/FEDORA-2012-4259/asterisk-1.8.10.1-1.fc15
    https://admin.fedoraproject.org/updates/FEDORA-2012-4268/taglib-1.7.1-1.fc15
    https://admin.fedoraproject.org/updates/FEDORA-2012-3705/libpng-1.2.48-1.fc15
    https://admin.fedoraproject.org/updates/FEDORA-2012-1838/thunderbird-10.0.1-2.fc15
    https://admin.fedoraproject.org/updates/FEDORA-2012-4616/drupal6-date-2.8-1.fc15
    https://admin.fedoraproject.org/updates/FEDORA-2012-4006/nginx-1.0.14-1.fc15
    https://admin.fedoraproject.org/updates/FEDORA-2012-4569/gnutls-2.10.5-3.fc15
    https://admin.fedoraproject.org/updates/FEDORA-2012-4024/systemd-26-18.fc15
    https://admin.fedoraproject.org/updates/FEDORA-2012-4659/openssl-1.0.0h-1.fc15
    https://admin.fedoraproject.org/updates/FEDORA-2012-4600/pidgin-2.10.2-1.fc15
    https://admin.fedoraproject.org/updates/FEDORA-2012-2413/python-paste-script-1.7.5-4.fc15
    https://admin.fedoraproject.org/updates/FEDORA-2012-4070/gnash-0.8.10-2.fc15
    https://admin.fedoraproject.org/updates/FEDORA-2012-4077/php-pear-CAS-1.3.0-2.fc15
    https://admin.fedoraproject.org/updates/FEDORA-2011-17233/tor-0.2.1.32-1500.fc15

The following Fedora 15 Critical Path updates have yet to be approved:

    https://admin.fedoraproject.org/updates/FEDORA-2012-4659/openssl-1.0.0h-1.fc15
    https://admin.fedoraproject.org/updates/FEDORA-2012-4569/gnutls-2.10.5-3.fc15
    https://admin.fedoraproject.org/updates/FEDORA-2012-4570/audit-2.2.1-1.fc15
    https://admin.fedoraproject.org/updates/FEDORA-2012-4308/libtasn1-2.12-1.fc15
    https://admin.fedoraproject.org/updates/FEDORA-2012-4075/gdb-7.3.1-48.fc15
    https://admin.fedoraproject.org/updates/FEDORA-2012-4052/phonon-4.5.1-3.fc15
    https://admin.fedoraproject.org/updates/lm_sensors-3.3.2-1.fc15
    https://admin.fedoraproject.org/updates/FEDORA-2012-4026/thunderbird-11.0-5.fc15,thunderbird-lightning-1.3-3.fc15
    https://admin.fedoraproject.org/updates/FEDORA-2012-4286/selinux-policy-3.9.16-52.fc15
    https://admin.fedoraproject.org/updates/FEDORA-2012-3754/libssh2-1.2.7-3.fc15
    https://admin.fedoraproject.org/updates/FEDORA-2012-3705/libpng-1.2.48-1.fc15
    https://admin.fedoraproject.org/updates/FEDORA-2012-4571/llvm-2.8-15.fc15
    https://admin.fedoraproject.org/updates/FEDORA-2011-13190/phonon-backend-gstreamer-4.5.90-2.fc15,phonon-4.5.57-1.20110914.fc15

The following builds have been pushed to Fedora 15 updates-testing

    gtk-murrine-engine-0.98.2-1.fc15
    leechcraft-0.5.60-5.fc15
    openssl-1.0.0h-1.fc15
    oxygen-gtk3-1.0.2.1-1.fc15
    rubygem-kgio-2.7.3-1.fc15
    trafficserver-3.0.4-2.fc15
    wavemon-0.7.4-1.fc15

Details about builds:

================================================================================
 gtk-murrine-engine-0.98.2-1.fc15 (FEDORA-2012-4671)
 Murrine GTK2 engine
--------------------------------------------------------------------------------
Update Information:

Update to latest release. Fixes a couple of bugs and build with newer glib.
--------------------------------------------------------------------------------
ChangeLog:

* Wed Mar 21 2012 Martin Sourada <mso at fedoraproject.org> - 0.98.2-1
- Update to new upstream release (bugfix release)
- Fix build with newer glib
* Fri Jan 13 2012 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 0.98.1.1-4
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
* Tue Dec  6 2011 Adam Jackson <ajax at redhat.com> - 0.98.1.1-3
- Rebuild for new libpng
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #784826 - gtk-murrine-engine-0.98.2 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=784826
--------------------------------------------------------------------------------

================================================================================
 leechcraft-0.5.60-5.fc15 (FEDORA-2012-4668)
 A Cross-Platform Modular Internet-Client
--------------------------------------------------------------------------------
Update Information:

leechcraft
Leechcraft
Leechcraft Internet Client
Leechcraft Internet Client
Leechcraft
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #781260 - Review Request: leechcraft - A Free Open Source Cross-Platform Modular Internet-Client
        https://bugzilla.redhat.com/show_bug.cgi?id=781260
--------------------------------------------------------------------------------

================================================================================
 openssl-1.0.0h-1.fc15 (FEDORA-2012-4659)
 A general purpose cryptography library with TLS implementation
--------------------------------------------------------------------------------
Update Information:

This minor update from upstream fixes two security vulnerabilities with moderate and low impact.

--------------------------------------------------------------------------------
ChangeLog:

* Fri Mar 23 2012 Tomas Mraz <tmraz at redhat.com> 1.0.0h-1
- new upstream release fixing CVE-2012-0884 - Bleichenbacher attack
  against PKCS#7 and CMS (#802725) and CVE-2012-1165 mime_param_cmp
  NULL dereference (#802489)
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #802489 - CVE-2012-1165 openssl: mime_param_cmp NULL dereference crash
        https://bugzilla.redhat.com/show_bug.cgi?id=802489
  [ 2 ] Bug #802725 - CVE-2012-0884 openssl: CMS and PKCS#7 Bleichenbacher attack
        https://bugzilla.redhat.com/show_bug.cgi?id=802725
--------------------------------------------------------------------------------

================================================================================
 oxygen-gtk3-1.0.2.1-1.fc15 (FEDORA-2012-4667)
 Oxygen GTK+3 theme
--------------------------------------------------------------------------------
Update Information:

oxygen-gtk3-1.0.2-1

Fixed application list in gpk-application (kde bug 295831)
--------------------------------------------------------------------------------
ChangeLog:

* Sat Mar 24 2012 Alexey Kurov <nucleo at fedoraproject.org> - 1:1.0.2.1-1
- oxygen-gtk3-1.0.2-1
- drop -DENABLE_INNER_SHADOWS_HACK=0
--------------------------------------------------------------------------------

================================================================================
 rubygem-kgio-2.7.3-1.fc15 (FEDORA-2012-4669)
 Kinder, gentler I/O for Ruby
--------------------------------------------------------------------------------
Update Information:

Updated version 0.7.3
--------------------------------------------------------------------------------
ChangeLog:

* Fri Mar 23 2012 Guillermo Gómez <guillermo.gomez at gmail.com> - 2.7.3-1
- Updated version 0.7.3
- Removed unnecesary patch to run tests
* Sun Feb 12 2012 Guillermo Gómez <guillermo.gomez at gmail.com> - 2.7.0-5
- Proper use of new macros for Ruby 1.9 packaging
- irb added as build require
* Sat Jan  7 2012 Guillermo Gómez <guillermo.gomez at gmail.com> - 2.7.0-4
- Requires fixed for Ruby 1.9
--------------------------------------------------------------------------------

================================================================================
 trafficserver-3.0.4-2.fc15 (FEDORA-2012-4661)
 Fast, scalable and extensible HTTP/1.1 compliant caching proxy server
--------------------------------------------------------------------------------
Update Information:

Apache Traffic Server is a fast, scalable and extensible HTTP/1.1 compliant caching proxy server. Formerly a commercial product, Yahoo! donated it to the Apache Foundation, and is now an Apache TLP.

v3.0.4 fixes a security issue that was just announced for v3.0.3, CVE-2012-0256.

New in 3.0.4-2 is that it now uses tmpfiles.d to create /var/run/trafficserver on f15+.

--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #787020 - Review Request: trafficserver - Apache Traffic Server
        https://bugzilla.redhat.com/show_bug.cgi?id=787020
--------------------------------------------------------------------------------

================================================================================
 wavemon-0.7.4-1.fc15 (FEDORA-2012-4670)
 Ncurses-based monitoring application for wireless network devices
--------------------------------------------------------------------------------
Update Information:

* Sat Mar 24 2012 Fabian Affolter <mail at fabian-affolter.ch> - 0.7.4-1
- Updated to new upstream 0.7.4
--------------------------------------------------------------------------------
ChangeLog:

* Sat Mar 24 2012 Fabian Affolter <mail at fabian-affolter.ch> - 0.7.4-1
- Updated to new upstream 0.7.4
--------------------------------------------------------------------------------