Fedora 16 updates-testing report

updates at fedoraproject.org updates at fedoraproject.org
Thu Jan 3 07:30:39 UTC 2013


The following Fedora 16 Security updates need testing:
 Age  URL
   0  https://admin.fedoraproject.org/updates/FEDORA-2013-0114/gnupg-1.4.13-1.fc16
   0  https://admin.fedoraproject.org/updates/FEDORA-2013-0110/tcl-snack-2.2.10-17.fc16
  22  https://admin.fedoraproject.org/updates/FEDORA-2012-20157/libproxy-0.4.11-1.fc16
  22  https://admin.fedoraproject.org/updates/FEDORA-2012-20156/389-ds-base-1.2.10.24-1.fc16
  22  https://admin.fedoraproject.org/updates/FEDORA-2012-20159/v8-3.13.7.5-1.fc16
 103  https://admin.fedoraproject.org/updates/FEDORA-2012-14452/bacula-5.0.3-33.fc16
  14  https://admin.fedoraproject.org/updates/FEDORA-2012-20621/inkscape-0.48.4-1.fc16
  14  https://admin.fedoraproject.org/updates/FEDORA-2012-20623/freeciv-2.3.3-1.fc16
   5  https://admin.fedoraproject.org/updates/FEDORA-2012-21069/php-symfony2-HttpKernel-2.0.21-1.fc16
  21  https://admin.fedoraproject.org/updates/FEDORA-2012-20236/rssh-2.3.4-1.fc16
  29  https://admin.fedoraproject.org/updates/FEDORA-2012-19347/cups-1.5.4-10.fc16
 181  https://admin.fedoraproject.org/updates/FEDORA-2012-10314/revelation-0.4.14-1.fc16
 101  https://admin.fedoraproject.org/updates/FEDORA-2012-14654/tor-0.2.2.39-1600.fc16
  64  https://admin.fedoraproject.org/updates/FEDORA-2012-17291/thunderbird-16.0.2-1.fc16
   1  https://admin.fedoraproject.org/updates/FEDORA-2013-0061/php-ZendFramework-1.12.1-1.fc16
  29  https://admin.fedoraproject.org/updates/FEDORA-2012-19752/dovecot-2.0.21-4.fc16
   3  https://admin.fedoraproject.org/updates/FEDORA-2012-21122/php-pear-CAS-1.3.2-1.fc16
  12  https://admin.fedoraproject.org/updates/FEDORA-2012-20794/drupal6-6.27-1.fc16,drupal7-7.18-1.fc16


The following Fedora 16 Critical Path updates have yet to be approved:
 Age URL
   0  https://admin.fedoraproject.org/updates/FEDORA-2013-0114/gnupg-1.4.13-1.fc16
  12  https://admin.fedoraproject.org/updates/FEDORA-2012-20787/iproute-2.6.39-8.fc16
  12  https://admin.fedoraproject.org/updates/FEDORA-2012-20768/system-config-users-1.3.3-1.fc16
   6  https://admin.fedoraproject.org/updates/FEDORA-2012-20795/nss-3.14.1-2.fc16,nss-softokn-3.14.1-3.fc16,nss-util-3.14.1-1.fc16,nspr-4.9.4-1.fc16
The following builds have been pushed to Fedora 16 updates-testing

    gnupg-1.4.13-1.fc16
    php-simplepie-1.3.1-3.fc16
    rubygem-inifile-2.0.2-2.fc16
    rubygem-ipaddress-0.8.0-3.fc16
    tcl-snack-2.2.10-17.fc16

Details about builds:


================================================================================
 gnupg-1.4.13-1.fc16 (FEDORA-2013-0114)
 A GNU utility for secure communication and data storage
--------------------------------------------------------------------------------
Update Information:

New upstream with CVE fix.
--------------------------------------------------------------------------------
ChangeLog:

* Wed Jan  2 2013 Brian C. Lane <bcl at redhat.com> 1.4.13-1
- New upstream v1.4.13
  fixes for CVE-2012-6085 (#891142)
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #891142 - CVE-2012-6085 GnuPG: read_block() corrupt key input validation
        https://bugzilla.redhat.com/show_bug.cgi?id=891142
--------------------------------------------------------------------------------


================================================================================
 php-simplepie-1.3.1-3.fc16 (FEDORA-2013-0103)
 Simple RSS Library in PHP
--------------------------------------------------------------------------------
Update Information:

fixing FTBFS on EPEL-5 and unification of .spec
--------------------------------------------------------------------------------
ChangeLog:

* Wed Jan  2 2013 Remi Collet <remi at fedoraproject.org> - 1.3.1-3
- fix for php 5.3.3 (RHEL-6)
- disable test suite on RHEL-5
- better fix for rpmlint warnings
  (version-control-internal-file and script-without-shebang)
--------------------------------------------------------------------------------


================================================================================
 rubygem-inifile-2.0.2-2.fc16 (FEDORA-2013-0116)
 INI file reader and writer
--------------------------------------------------------------------------------
Update Information:

First package for Fedora.
--------------------------------------------------------------------------------


================================================================================
 rubygem-ipaddress-0.8.0-3.fc16 (FEDORA-2013-0113)
 IPv4/IPv6 addresses manipulation library
--------------------------------------------------------------------------------
Update Information:

Rubygem abstraction for IPv4, IPv6 addresses
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #823340 - Review Request: rubygem-ipaddress - rubygem abstraction for ipv4, ipv6 addresses
        https://bugzilla.redhat.com/show_bug.cgi?id=823340
--------------------------------------------------------------------------------


================================================================================
 tcl-snack-2.2.10-17.fc16 (FEDORA-2013-0110)
 Sound toolkit
--------------------------------------------------------------------------------
Update Information:

Apply fix for CVE-2012-6303, where a crafted WAV file could cause a buffer overflow. Thanks to Michael Karcher for the patch.
--------------------------------------------------------------------------------
ChangeLog:

* Wed Jan  2 2013 Tom Callaway <spot at fedoraproject.org> - 2.2.10-17
- apply fix from Michael Karcher to fix CVE-2012-6303 (bz 885893)
* Sat Jul 21 2012 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 2.2.10-16
- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild
* Sat Jan 14 2012 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 2.2.10-15
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #885893 - CVE-2012-6303 tcl-snack: multiple buffer overflows
        https://bugzilla.redhat.com/show_bug.cgi?id=885893
--------------------------------------------------------------------------------



More information about the test mailing list