Fedora 18 updates-testing report
updates at fedoraproject.org
updates at fedoraproject.org
Sun Apr 21 03:27:31 UTC 2013
The following Fedora 18 Security updates need testing:
Age URL
102 https://admin.fedoraproject.org/updates/FEDORA-2013-0416/fedora-business-cards-1-0.1.beta1.fc18
71 https://admin.fedoraproject.org/updates/FEDORA-2013-2131/rubygem-rdoc-3.12-6.fc18
67 https://admin.fedoraproject.org/updates/FEDORA-2013-2306/rubygem-rack-1.4.0-5.fc18
36 https://admin.fedoraproject.org/updates/FEDORA-2013-3935/puppet-3.1.1-1.fc18
29 https://admin.fedoraproject.org/updates/FEDORA-2013-4243/stunnel-4.55-1.fc18
21 https://admin.fedoraproject.org/updates/FEDORA-2013-4589/tomcat6-6.0.36-2.fc18
16 https://admin.fedoraproject.org/updates/FEDORA-2013-4807/haproxy-1.4.23-1.fc18
16 https://admin.fedoraproject.org/updates/FEDORA-2013-4823/microcode_ctl-2.0-3.fc18
9 https://admin.fedoraproject.org/updates/FEDORA-2013-5472/php-geshi-1.0.8.11-3.fc18
8 https://admin.fedoraproject.org/updates/FEDORA-2013-5548/plexus-archiver-2.3-1.fc18
7 https://admin.fedoraproject.org/updates/FEDORA-2013-5626/owncloud-4.5.9-1.fc18
7 https://admin.fedoraproject.org/updates/FEDORA-2013-5620/phpMyAdmin-3.5.8-1.fc18
5 https://admin.fedoraproject.org/updates/FEDORA-2013-5748/pdns-recursor-3.5-1.fc18
4 https://admin.fedoraproject.org/updates/FEDORA-2013-5829/mantis-1.2.15-1.fc18
1 https://admin.fedoraproject.org/updates/FEDORA-2013-6110/libxml2-2.9.1-1.fc18
1 https://admin.fedoraproject.org/updates/FEDORA-2013-6117/eucalyptus-3.2.2-1.fc18
1 https://admin.fedoraproject.org/updates/FEDORA-2013-6114/php-twig-Twig-1.12.3-1.fc18
0 https://admin.fedoraproject.org/updates/FEDORA-2013-6171/mediawiki-1.19.5-1.fc18
The following Fedora 18 Critical Path updates have yet to be approved:
Age URL
188 https://admin.fedoraproject.org/updates/FEDORA-2012-16107/xorg-x11-drv-qxl-0.1.0-1.fc18
186 https://admin.fedoraproject.org/updates/FEDORA-2012-16207/thunderbird-lightning-1.8-1.fc18,thunderbird-16.0.1-2.fc18
101 https://admin.fedoraproject.org/updates/FEDORA-2013-0541/mdadm-3.2.6-11.fc18
70 https://admin.fedoraproject.org/updates/FEDORA-2013-2192/nautilus-3.6.3-5.fc18
46 https://admin.fedoraproject.org/updates/FEDORA-2013-3458/iproute-3.6.0-7.fc18,iptables-1.4.18-1.fc18
11 https://admin.fedoraproject.org/updates/FEDORA-2013-5276/libogg-1.3.0-5.fc18
11 https://admin.fedoraproject.org/updates/FEDORA-2013-5265/python-pycurl-7.19.0-13.1.fc18
9 https://admin.fedoraproject.org/updates/FEDORA-2013-5468/hardlink-1.0-16.fc18
9 https://admin.fedoraproject.org/updates/FEDORA-2013-5350/abrt-2.1.3-2.fc18,libreport-2.1.3-1.fc18
8 https://admin.fedoraproject.org/updates/FEDORA-2013-5562/gdb-7.5.1-38.fc18
5 https://admin.fedoraproject.org/updates/FEDORA-2013-5743/ncurses-5.9-10.20130413.fc18
5 https://admin.fedoraproject.org/updates/FEDORA-2013-5758/openldap-2.4.35-3.fc18
4 https://admin.fedoraproject.org/updates/FEDORA-2013-5824/libwacom-0.7.1-1.fc18
4 https://admin.fedoraproject.org/updates/FEDORA-2013-5842/procps-ng-3.3.3-4.20120807git.fc18
3 https://admin.fedoraproject.org/updates/FEDORA-2013-5918/openssh-6.1p1-7.fc18
3 https://admin.fedoraproject.org/updates/FEDORA-2013-5943/GConf2-3.2.6-2.fc18
1 https://admin.fedoraproject.org/updates/FEDORA-2013-6110/libxml2-2.9.1-1.fc18
1 https://admin.fedoraproject.org/updates/FEDORA-2013-6132/kmod-12-3.fc18
1 https://admin.fedoraproject.org/updates/FEDORA-2013-6053/network-manager-applet-0.9.8.1-2.git20130327.fc18
1 https://admin.fedoraproject.org/updates/FEDORA-2013-6016/krb5-1.10.3-16.fc18
1 https://admin.fedoraproject.org/updates/FEDORA-2013-6048/dmidecode-2.12-1.fc18
1 https://admin.fedoraproject.org/updates/FEDORA-2013-6024/parted-3.1-12.fc18
The following builds have been pushed to Fedora 18 updates-testing
389-adminutil-1.1.17-1.fc18
Cython-0.19-1.fc18
drumkv1-0.3.2-1.fc18
gimp-2.8.4-3.fc18
mediawiki-1.19.5-1.fc18
mingw-libxml2-2.9.1-1.fc18
nagios-3.5.0-2.fc18
perl-Devel-PatchPerl-0.84-1.fc18
perl-ElasticSearch-0.64-2.fc18
php-pear-PHP-CodeSniffer-1.4.5-1.fc18
php-pear-phing-2.5.0-2.fc18
php-swift-Swift-4.3.1-1.fc18
salt-0.14.1-1.fc18
samplv1-0.3.2-1.fc18
synthv1-0.3.2-1.fc18
syslog-ng-3.3.9-1.fc18
ultimaker-marlin-firmware-12.12-0.5.RC1.fc18
xscreensaver-5.21-3.fc18
Details about builds:
================================================================================
389-adminutil-1.1.17-1.fc18 (FEDORA-2013-6166)
Utility library for 389 administration
--------------------------------------------------------------------------------
Update Information:
This relase fixes 2 bugs in login and bind.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Apr 19 2013 Noriko Hosoi <nhosoi at redhat.com> - 1.1.17-1
-bump version to 1.1.17
Resolves: Bug 856089 - slapi_ldap_bind() doesn't check bind results (Ticket 479 - Console logins fail intermittenly)
Resolves: Bug 905266 - BIND operation result not checked properly in admin server and adminutil
--------------------------------------------------------------------------------
================================================================================
Cython-0.19-1.fc18 (FEDORA-2013-6164)
A language for writing Python extension modules
--------------------------------------------------------------------------------
Update Information:
see: https://github.com/cython/cython/blob/master/CHANGES.rst
--------------------------------------------------------------------------------
ChangeLog:
* Fri Apr 19 2013 nbecker <ndbecker2 at gmail.com> - 0.19-1
- Update to 0.19
--------------------------------------------------------------------------------
================================================================================
drumkv1-0.3.2-1.fc18 (FEDORA-2013-6163)
An old-school drum-kit sampler
--------------------------------------------------------------------------------
Update Information:
Minor bugfix release 0.3.2 for the V1 suite of audio synth applications/LV2 plugins.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Mar 8 2013 Brendan Jones <brendan.jones.it at gmail.com> 0.3.2-1
- New upstream release
* Wed Feb 13 2013 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 0.3.0-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
gimp-2.8.4-3.fc18 (FEDORA-2013-6168)
GNU Image Manipulation Program
--------------------------------------------------------------------------------
Update Information:
Don't crash when deselecting tags.
--------------------------------------------------------------------------------
ChangeLog:
* Sat Apr 20 2013 Nils Philippsen <nils at redhat.com> - 2:2.8.4-3
- don't crash upon deleting tags in popup (#892828)
* Wed Mar 6 2013 Nils Philippsen <nils at redhat.com> - 2:2.8.4-2
- get rid of strict overflow warning
- don't have duplicate mime types in desktop file
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #892828 - [abrt] gimp-2.8.2-6.fc18: gimp_tag_get_name: Process /usr/bin/gimp-2.8 was killed by signal 11 (SIGSEGV)
https://bugzilla.redhat.com/show_bug.cgi?id=892828
--------------------------------------------------------------------------------
================================================================================
mediawiki-1.19.5-1.fc18 (FEDORA-2013-6171)
A wiki engine
--------------------------------------------------------------------------------
Update Information:
*An internal review discovered that specially crafted Lua function names could lead to XSS. https://bugzilla.wikimedia.org/show_bug.cgi?id=46084
*Daniel Franke reported that during SVG parsing, MediaWiki failed to prevent XML external entity (XXE) processing. This could lead to local file disclosure, or potentially remote command execution in environments that have enabled expect:// handling. https://bugzilla.wikimedia.org/show_bug.cgi?id=46859
*Internal review also discovered that Special:Import, and Extension:RSS failed to prevent XML external entity (XXE) processing. https://bugzilla.wikimedia.org/show_bug.cgi?id=47251
--------------------------------------------------------------------------------
ChangeLog:
* Wed Apr 17 2013 Michael Cronenworth <mike at cchtml.com> - 1.19.5-1
- New upstream release.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #953666 - CVE-2013-1951 mediawiki: security releases 1.20.4 and 1.19.5
https://bugzilla.redhat.com/show_bug.cgi?id=953666
--------------------------------------------------------------------------------
================================================================================
mingw-libxml2-2.9.1-1.fc18 (FEDORA-2013-6169)
MinGW Windows libxml2 XML processing library
--------------------------------------------------------------------------------
Update Information:
New upstream release 2.9.1
Fixes a couple of potential security issues and a number of bugs
--------------------------------------------------------------------------------
ChangeLog:
* Sat Apr 20 2013 Erik van Pienbroek <epienbro at fedoraproject.org> - 2.9.1-1
- Update to 2.9.1
* Fri Apr 12 2013 Nicola Fontana <ntd at entidi.it> - 2.9.0-3
- Throw off LDFLAGS and CFLAGS settings (#951472)
- Simplified static libraries installation
* Thu Feb 14 2013 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 2.9.0-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
nagios-3.5.0-2.fc18 (FEDORA-2013-6175)
Nagios monitors hosts and services and yells if somethings breaks
--------------------------------------------------------------------------------
Update Information:
Update to 3.5.0; patch: plus signs instead of spaces
--------------------------------------------------------------------------------
ChangeLog:
* Sat Apr 20 2013 Jose Pedro Oliveira <jpo at di.uminho.pt> - 3.5.0-2
- Patch nagios-3.4.3-spaces-to-plus-signs.patch (#952139)
(upstream http://tracker.nagios.org/view.php?id=407)
* Sat Apr 20 2013 Jose Pedro Oliveira <jpo at di.uminho.pt> - 3.5.0-1
- Update to 3.5.0
* Thu Feb 14 2013 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 3.4.4-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild
* Mon Jan 21 2013 Adam Tkac <atkac redhat com> - 3.4.4-2
- rebuild due to "jpeg8-ABI" feature drop
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #952139 - Nagios notifications contains "+" signs instead of spaces.
https://bugzilla.redhat.com/show_bug.cgi?id=952139
--------------------------------------------------------------------------------
================================================================================
perl-Devel-PatchPerl-0.84-1.fc18 (FEDORA-2013-6157)
Patch perl source à la Devel::PPPort's buildperl.pl
--------------------------------------------------------------------------------
Update Information:
This update includes an updated linux hints file.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Apr 19 2013 Iain Arnell <iarnell at gmail.com> 0.84-1
- update to latest upstream version
- drop IPC::Cmd dependency
* Tue Feb 19 2013 Iain Arnell <iarnell at gmail.com> 0.78-1
- update to latest upstream version
* Thu Feb 14 2013 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 0.76-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
perl-ElasticSearch-0.64-2.fc18 (FEDORA-2013-6162)
API for communicating with ElasticSearch
--------------------------------------------------------------------------------
Update Information:
ElasticSearch is an Open Source (Apache 2 license), distributed, RESTful search engine based on Lucene, and built for the cloud, with a JSON API.
This perl module is a thin API which makes it easy to communicate with an ElasticSearch cluster.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #916679 - Review Request: perl-ElasticSearch - API for communicating with ElasticSearch
https://bugzilla.redhat.com/show_bug.cgi?id=916679
--------------------------------------------------------------------------------
================================================================================
php-pear-PHP-CodeSniffer-1.4.5-1.fc18 (FEDORA-2013-6161)
PHP coding standards enforcement tool
--------------------------------------------------------------------------------
Update Information:
upstream 1.4.5
--------------------------------------------------------------------------------
ChangeLog:
* Fri Apr 19 2013 Christof Damian <christof at damian.net> - 1.4.5-1
- upstream 1.4.5
--------------------------------------------------------------------------------
================================================================================
php-pear-phing-2.5.0-2.fc18 (FEDORA-2013-6174)
A project build system based on Apache Ant
--------------------------------------------------------------------------------
Update Information:
upstream 2.5.0, removal of non-free stuff
--------------------------------------------------------------------------------
ChangeLog:
* Sat Apr 20 2013 Christof Damian <christof at damian.net> - 2.5.0-2
- remove more mentions of non-free stuff
* Sat Apr 20 2013 Christof Damian <christof at damian.net> - 2.5.0-1
- upstream 2.5.0
- remove non-free stuff from defaults.properties (Remi Collet <fedora at famillecollet.com>)
* Thu Feb 14 2013 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 2.4.14-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
php-swift-Swift-4.3.1-1.fc18 (FEDORA-2013-6159)
Free Feature-rich PHP Mailer
--------------------------------------------------------------------------------
Update Information:
upstream 4.3.1
--------------------------------------------------------------------------------
ChangeLog:
* Thu Apr 18 2013 Christof Damian <christof at damian.net> - 4.3.1-1
- upstream 4.3.1
* Thu Feb 14 2013 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 4.3.0-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
salt-0.14.1-1.fc18 (FEDORA-2013-6158)
A parallel remote execution system
--------------------------------------------------------------------------------
Update Information:
upstream patch release 0.14.1 and unit test fixes
--------------------------------------------------------------------------------
ChangeLog:
* Fri Apr 19 2013 Clint Savage <herlo1 at gmail.com> - 0.14.1-1
- Update to upstream patch release 0.14.1
--------------------------------------------------------------------------------
================================================================================
samplv1-0.3.2-1.fc18 (FEDORA-2013-6163)
A polyphonic sampler synthesizer with stereo fx
--------------------------------------------------------------------------------
Update Information:
Minor bugfix release 0.3.2 for the V1 suite of audio synth applications/LV2 plugins.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Mar 8 2013 Brendan Jones <brendan.jones.it at gmail.com> 0.3.2-1
- Update to 0.3.2
* Fri Feb 22 2013 Karsten Hopp <karsten at redhat.com> 0.3.0-3
- add s390x and ppc64 to archs using lib64
* Thu Feb 14 2013 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 0.3.0-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
synthv1-0.3.2-1.fc18 (FEDORA-2013-6163)
A 4-oscillator subtractive polyphonic synthesizer
--------------------------------------------------------------------------------
Update Information:
Minor bugfix release 0.3.2 for the V1 suite of audio synth applications/LV2 plugins.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Mar 8 2013 Brendan Jones <brendan.jones.it at gmail.com> 0.3.2-1
- Update to 0.3.2
* Fri Feb 22 2013 Karsten Hopp <karsten at redhat.com> 0.3.0-3
- add s390x and ppc64 to archs using lib64
* Fri Feb 15 2013 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 0.3.0-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
syslog-ng-3.3.9-1.fc18 (FEDORA-2013-6172)
Next-generation syslog server
--------------------------------------------------------------------------------
Update Information:
Update to 3.3.9
--------------------------------------------------------------------------------
ChangeLog:
* Sat Apr 20 2013 Jose Pedro Oliveira <jpo at di.uminho.pt> - 3.3.9-1
- Update to 3.3.9
- Rebased the syslog-ng.service patch (syslog-ng-3.3.9-syslog-ng.service.patch)
* Sat Jan 19 2013 Jose Pedro Oliveira <jpo at di.uminho.pt> - 3.3.8-2
- Corrected bogus dates in the changelog section
--------------------------------------------------------------------------------
================================================================================
ultimaker-marlin-firmware-12.12-0.5.RC1.fc18 (FEDORA-2013-6173)
Ultimaker firmware for the 3D printer
--------------------------------------------------------------------------------
Update Information:
package now includes both boudrates
Ultimaker firmware for the 3D printer
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #905681 - Review Request: ultimaker-marlin-firmware - Ultimaker firmware for the 3D printer
https://bugzilla.redhat.com/show_bug.cgi?id=905681
--------------------------------------------------------------------------------
================================================================================
xscreensaver-5.21-3.fc18 (FEDORA-2013-6167)
X screen saver and locker
--------------------------------------------------------------------------------
Update Information:
Some issues are found on several hacks shipped in xscreensaver. Also an issue was reported that when installing gss rpms xscreensaver hacks appears in desktop entry.
This new rpm will fix these issues.
--------------------------------------------------------------------------------
ChangeLog:
* Sun Apr 21 2013 Mamoru TASAKA <mtasaka at fedoraproject.org> - 1:5.21-3
- Fix the iteration number for pentomino mode in polyominoes
(bug 954077)
- Convert maxlife option from 5.20- for fireworkx (bug 953916)
- Fix broken Name entry for desktop file of GL hacks (bug 953558)
- Add OnlyShownIn entry for desktop files (bug 953558)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #954077 - [abrt] xscreensaver-extras-5.21-2.fc19: make_one_sided_pentomino: Process /usr/libexec/xscreensaver/polyominoes was killed by signal 11 (SIGSEGV)
https://bugzilla.redhat.com/show_bug.cgi?id=954077
[ 2 ] Bug #953916 - [abrt] xscreensaver-extras-5.21-2.fc18: rnd: Process /usr/libexec/xscreensaver/fireworkx was killed by signal 8 (SIGFPE)
https://bugzilla.redhat.com/show_bug.cgi?id=953916
[ 3 ] Bug #953558 - Xfce-Panel adds Xscreensaver-Plugins into Panelsection 'Other' (German: Sonstiges)
https://bugzilla.redhat.com/show_bug.cgi?id=953558
--------------------------------------------------------------------------------
More information about the test
mailing list