The following Fedora 13 Security updates need testing:
https://admin.fedoraproject.org/updates/libwmf-0.2.8.4-22.fc13 https://admin.fedoraproject.org/updates/opensc-0.11.13-6.fc13 https://admin.fedoraproject.org/updates/wordpress-2.8.6-3.fc13 https://admin.fedoraproject.org/updates/dbus-1.2.24-2.fc13 https://admin.fedoraproject.org/updates/git-1.7.3.4-1.fc13 https://admin.fedoraproject.org/updates/drupal-views-6.x.2.12-1.fc13 https://admin.fedoraproject.org/updates/pidgin-2.7.9-1.fc13 https://admin.fedoraproject.org/updates/wordpress-mu-2.9.2-2.fc13 https://admin.fedoraproject.org/updates/php-5.3.4-1.fc13.1,php-eaccelerator-... https://admin.fedoraproject.org/updates/pyfribidi-0.10.0-1.fc13 https://admin.fedoraproject.org/updates/perl-CGI-Simple-1.112-2.fc13
The following Fedora 13 Critical Path updates have yet to be approved:
https://admin.fedoraproject.org/updates/livecd-tools-13.1-1.fc13 https://admin.fedoraproject.org/updates/less-436-7.fc13 https://admin.fedoraproject.org/updates/dbus-1.2.24-2.fc13 https://admin.fedoraproject.org/updates/selinux-policy-3.7.19-80.fc13 https://admin.fedoraproject.org/updates/libical-0.46-2.fc13 https://admin.fedoraproject.org/updates/koji-1.6.0-1.fc13 https://admin.fedoraproject.org/updates/pm-utils-1.2.6.1-4.fc13 https://admin.fedoraproject.org/updates/mingetty-1.08-6.fc13 https://admin.fedoraproject.org/updates/mash-0.5.20-1.fc13 https://admin.fedoraproject.org/updates/openldap-2.4.21-11.fc13 https://admin.fedoraproject.org/updates/nss-3.12.7-4.fc13,nss-util-3.12.7-2.... https://admin.fedoraproject.org/updates/xorg-x11-drv-openchrome-0.2.904-7.fc...
The following builds have been pushed to Fedora 13 updates-testing
erlang-pgsql-0-6.20101203svn.fc13 lzop-1.03-2.fc13 pyfribidi-0.10.0-1.fc13 qbittorrent-2.5.3-1.fc13 qlandkartegt-1.0.0-1.fc13 selinux-policy-3.7.19-80.fc13
Details about builds:
================================================================================ erlang-pgsql-0-6.20101203svn.fc13 (FEDORA-2010-19309) Erlang PostgreSQL interface -------------------------------------------------------------------------------- Update Information:
- Upgrade to SVN 20101203 and some spec file cleanup - Narrowed explicit requires (thanks to Peter Lemenkov) - Dropped -devel subpackage (thanks to Peter Lemenkov) - Corrected wrong subpackage obsolete (thanks to Michael Schwendt)
SVN 20101203 contains the following upstream changes:
- Support PostgreSQL 9.0 (EJAB-1359) (thanks to Stephen Gibberd and Konstantin Nikiforov) - Support for NULL type (thanks to UJvu) - Replace TYPE/1 with is_TYPE/1 (EJAB-922) -------------------------------------------------------------------------------- ChangeLog:
* Sat Jan 1 2011 Robert Scheck robert@fedoraproject.org 0-6.20101203svn - Corrected wrong subpackage obsolete (thanks to Michael Schwendt) * Thu Dec 30 2010 Robert Scheck robert@fedoraproject.org 0-5.20101203svn - Upgrade to SVN 20101203 and some spec file cleanup - Narrowed explicit requires (thanks to Peter Lemenkov) - Dropped -devel subpackage (thanks to Peter Lemenkov) --------------------------------------------------------------------------------
================================================================================ lzop-1.03-2.fc13 (FEDORA-2011-0008) Real-time file compressor -------------------------------------------------------------------------------- Update Information:
- Update to 1.03 - Minor spec file cleanups - Corrected %description -------------------------------------------------------------------------------- ChangeLog:
* Fri Dec 31 2010 Robert Scheck robert@fedoraproject.org 1.03-2 - Minor spec file cleanups and updated %description * Tue Dec 7 2010 Kamil Dudka kdudka@redhat.com - 1.03-1 - update to 1.03 * Wed Mar 3 2010 Kamil Dudka kdudka@redhat.com - 1.02-0.9.rc1 - license changed to GPLv2+ - added -q option to %setup --------------------------------------------------------------------------------
================================================================================ pyfribidi-0.10.0-1.fc13 (FEDORA-2011-0010) A Python binding for GNU FriBidi -------------------------------------------------------------------------------- Update Information:
- Update to 0.10.0 - Fix CVE-2010-3444: buffer overflow when processing Arabic UTF-8 strings - Run the included tests
-------------------------------------------------------------------------------- ChangeLog:
* Fri Dec 31 2010 Hans de Goede hdegoede@redhat.com - 0.10.0-1 - Update to 0.10.0 (rhbz#539493) - Fix CVE-2010-3444: buffer overflow when processing Arabic UTF-8 strings (rhbz#565997, rhbz#565998) - Run the included tests * Wed Jul 21 2010 David Malcolm dmalcolm@redhat.com - 0.6.0-9 - Rebuilt for https://fedoraproject.org/wiki/Features/Python_2.7/MassRebuild -------------------------------------------------------------------------------- References:
[ 1 ] Bug #539493 - request for update to pyfribidi2 (spec included) https://bugzilla.redhat.com/show_bug.cgi?id=539493 --------------------------------------------------------------------------------
================================================================================ qbittorrent-2.5.3-1.fc13 (FEDORA-2011-0003) A Bittorrent Client -------------------------------------------------------------------------------- Update Information:
* Sat Jan 1 2010 - Christophe Dumez chris@qbittorrent.org - v2.5.3 - BUGFIX: Fix priority up/down for multiple torrents at the same time (closes #692184) - BUGFIX: Make sure the number of torrents is properly set on startup (closes #694135) - BUGFIX: Fix scan directories saving (closes #694768) - BUGFIX: Remove empty folders on torrent soft deletion (closes #695174) - BUGFIX: Make sure the main window has focus on startup - BUGFIX: Fix ampersand display in search tabs (closes #695715) -------------------------------------------------------------------------------- ChangeLog:
* Sat Jan 1 2011 leigh scott leigh123linux@googlemail.com - 1:2.5.3-1 - update to 2.5.3 --------------------------------------------------------------------------------
================================================================================ qlandkartegt-1.0.0-1.fc13 (FEDORA-2011-0006) GPS device mapping tool -------------------------------------------------------------------------------- Update Information:
update to stable release 1.0.0 -------------------------------------------------------------------------------- ChangeLog:
* Sat Jan 1 2011 Dan Horák <dan[at]danny.cz> 1.0.0-1 - update to 1.0.0 * Wed Dec 8 2010 Dan Horák <dan[at]danny.cz> 0.20.3-1 - update to 0.20.3 * Fri Nov 19 2010 Dan Horák <dan[at]danny.cz> 0.20.2-1 - update to 0.20.2 * Wed Nov 3 2010 Dan Horák <dan[at]danny.cz> 0.20.1-1 - update to 0.20.1 --------------------------------------------------------------------------------
================================================================================ selinux-policy-3.7.19-80.fc13 (FEDORA-2010-19170) SELinux policy configuration -------------------------------------------------------------------------------- Update Information:
- Fix label for munin plugins - Allow apache to read cobbler lib files - Fixes for certmonger - Backport passenger policy - Allow run_init to read console_device - Add label for /var/lib/dkim-milter - Fixes for munin policy -------------------------------------------------------------------------------- ChangeLog:
* Wed Dec 22 2010 Miroslav Grepl mgrepl@redhat.com 3.7.19-80 - Allow apache to read cobbler lib files * Tue Dec 21 2010 Miroslav Grepl mgrepl@redhat.com 3.7.19-79 - Fix label for passenger log files * Tue Dec 21 2010 Miroslav Grepl mgrepl@redhat.com 3.7.19-78 - Fixes for passenger policy * Mon Dec 20 2010 Miroslav Grepl mgrepl@redhat.com 3.7.19-77 - Fixes for certmonger - Backport passenger policy - Allow run_init to read console_device - Add label for /var/lib/dkim-milter - Fixes for munin policy -------------------------------------------------------------------------------- References:
[ 1 ] Bug #662149 - SELinux is preventing /usr/sbin/certmonger "dac_override" access . https://bugzilla.redhat.com/show_bug.cgi?id=662149 [ 2 ] Bug #662143 - SELinux is preventing /usr/sbin/certmonger "read write" access to /etc/httpd/alias/cert8.db. https://bugzilla.redhat.com/show_bug.cgi?id=662143 [ 3 ] Bug #659443 - SELinux is preventing /usr/sbin/nagios (deleted) "read" access on mdstat. https://bugzilla.redhat.com/show_bug.cgi?id=659443 [ 4 ] Bug #645068 - SELinux is preventing /usr/sbin/dkim-filter "read" access on /var/lib/dkim-milter/internalhosts. https://bugzilla.redhat.com/show_bug.cgi?id=645068 [ 5 ] Bug #664087 - guestfish-related commands fail with permission denied https://bugzilla.redhat.com/show_bug.cgi?id=664087 --------------------------------------------------------------------------------