I've to updated opencv to 2.3.1 in f16 and rawhide today.
This will involve an ABI change so a rebuild of the dependent packages
I've submitted a build override that should be available in 20minutes
from now for f16:
that until tuesday.
This is something I got in my mail box today.
As I don't have a valid answer for this, maybe someone else can answer for me?
the url of the blog of the guy: http://www.krisbuytaert.be/blog/
== the mail ==
Over the course of the day I recieved 22^3 mails from your friendly Bug Zapper.
Most of those bugs where bugs I had reported upon crashes using
bug-buddy. Bugs on different desktop tools such as .. synergy,
evolution, gwibber , gnome-settings and probably some others
I do understand that I development goes on and on .. and your fancy
devs don't care anymore about
bugs I reported on Fedora 12 as they are all hacking on Fedora 15.
But what I don't get is that non of these bugs was ever touched,
they've been automatically created , and automatically closed
<a href="http://tieguy.org/blog/2004/09/">Luis</a> already told us
ages ago .. that every project needs a bugmaster apparently Fedora
replaced that bugmaster with a Bug Zapper.
So can someone please explain my why I should continue to try to
improve Fedora by reporting bugs ?
Hey, it's been a quiet week so far...
I'm intending to update glibc for F16 using provenpackager privileges
tomorrow to fix https://bugzilla.redhat.com/show_bug.cgi?id=730856 using
the patch submitted upstream at
http://sourceware.org/bugzilla/show_bug.cgi?id=13013 , if the glibc
upstream developers and/or Fedora maintainers do not respond to the bug
I raised the issue on this list on 08-08 and filed the bug on 08-15. The
patch was submitted upstream on 07-21. Andreas Schwab is very active on
this list, so it seems unlikely that he would not be aware of the issue,
yet there has been no response at all. It's downright absurd for there
to be a known and understood crasher bug, affecting all users, in such a
critical component for so long without any acknowledgement or response
by upstream or the Fedora maintainers. This and the Flash audio
corruption mess make it fairly clear that glibc maintenance is not what
it should be for such a crucial package. Given that, the only sensible
approach seems to be to go ahead and Just Fix It. Myself and Kevin Fenzi
have been using the patch for a while, so it's not untested.
glibc maintainers / developers, if you don't want me to do this, please
start giving a crap about your bugs.
Fedora QA Community Monkey
IRC: adamw | Twitter: AdamW_Fedora | identi.ca: adamwfedora
Is anyone interested in some review swaps? These packages should be
(improved syntax, lots of convenience features -- from
for-comprehensions to OOP)
You need to recompile lua-filesystem and lua-lpeg from Rawhide, but
that should be straightforward. They'll be built for F-16 as well, but
probably not going to build them for F-15 unless requested
lua-alt-getopt -- an alternative getopt module, modeled after BSD's
getopt_long (needed by moonscript)
lua-inotify -- inotify bindings for Lua (optional requirement for moonscript)
Michel Alexandre Salim
Fedora Project Contributor: http://fedoraproject.org/
Email: salimma(a)fedoraproject.org | GPG key ID: 78884778
Jabber: hircus(a)jabber.ccc.de | IRC: hircus(a)irc.freenode.net
() ascii ribbon campaign - against html e-mail
/\ www.asciiribbon.org - against proprietary attachments
I'd like to remove:
ddate - converts Gregorian dates to Discordian dates
command from rawhide (F17). IMHO this crazy command is used by very
very small minority of Fedora users.
Karel Zak <kzak(a)redhat.com>
Hey, all. So, I'm looking at packaging tt-rss - an RSS reader
implemented as a PHP webapp - for Fedora, since I run it on my own
server. It became rapidly clear that it's a landmine of bundled PHP
libraries and snippets and uncertain licensing. I'm unsure which of the
things it bundles would be likely to qualify as copylibs, and also a few
of the things it bundles seem to raise wider questions, so I thought I'd
post my 'deps list' here and raise some of the issues:
* dojo/dijit - F/OSS, packaged
* simplepie - F/OSS, packaged
* CheckBoxTree.js - requires formal license, unpackaged -
http://www.thejekels.com/blog/dojo/dijit-tree-with-multi-state-checkboxes... . not entirely sure whether this would count as a copylib.
* htmlpurifier - F/OSS, unpackaged but its PEAR channel is packaged as
php-channel-htmlpurifier, review at
* iui - F/OSS, unpackaged - https://code.google.com/p/iui/
* MiniTemplator - F/OSS, unpackaged -
* phpmailer - F/OSS, packaged
* position.js - comprises http://codesnippets.joyent.com/posts/show/835
and http://codesnippets.joyent.com/posts/show/836 - unlicensed, author
contacted - these are probably copylibs?
* prototypejs - F/OSS, unpackaged, already embedded in many other
packages - https://bugzilla.redhat.com/show_bug.cgi?id=523277
* php-pubsubhubbub - F/OSS, unpackaged:
https://code.google.com/p/pubsubhubbub-php/ , merged into upstream)
* scriptaculous - F/OSS, mostly unpackaged, but part of
http://pypi.python.org/pypi/Scriptaculous , which is a python wrapper
with old versions of scriptaculous and prototype embedded in it
* sphinxapi.php - F/OSS, packaged (sphinx-php)
* tmhoauth - F/OSS, unpackaged -
* xsl_mop-up.js - public domain, unpackaged -
http://www.fadshop.net/xsl_mop-up.js but link is dead, ref
https://bugzilla.mozilla.org/show_bug.cgi?id=98168 . probably a copylib
So the major issues that come up: prototypejs seems to be embedded into
an awful lot of Fedora packages, if you look at
https://bugzilla.redhat.com/show_bug.cgi?id=523277 as a reference.
mediatomb has a copy, wordpress has a copy, python-webhelpers has a copy
(actually it seems it's not there any more), python-Scriptaculous has a
copy, asterisk has a copy. Isn't this a major issue? Should I file a bug
for this and try to split prototypejs out into a single package which
all those other packages could depend on, or am I missing something? Has
it been declared a copylib? wordpress review request does not appear to
have dealt with it, stating "* no shared libraries are present: okay" -
I don't know if it was missed, or wasn't present in wordpress at the
time of review. mediatomb review similarly didn't catch it.
python-Scriptaculous seems to be a python (TurboGears) wrapper for
scriptaculous, and it has scriptaculous and prototypejs embedded in it.
the review request doesn't seem to have dealt with this at all, it
simply states "+ no headers or static libraries.", which seems to be,
well, a bit of a porky. =)
https://bugzilla.redhat.com/show_bug.cgi?id=508510 . should I raise this
as a bug, or again, am I missing something?
If anyone clueful has thoughts on the prototypejs and
python-scriptaculous issues, or on which of the tt-rss deps are likely
copylibs and don't need to be packaged separately, that'd be really
Fedora QA Community Monkey
IRC: adamw | Twitter: AdamW_Fedora | identi.ca: adamwfedora
this update should be really fast pushed out
the demo-exploit brings down a 4x2.50GHz machine with 8 GB
RAM in some seconds without having the known workarounds
or explicit mod_security-Rules in front
-------- Original-Nachricht --------
Betreff: [ANNOUNCEMENT] Apache HTTP Server 2.2.20 Released
Datum: Wed, 31 Aug 2011 07:21:33 -0400
Von: Jim Jagielski <jim(a)jaguNET.com>
Antwort an: dev(a)httpd.apache.org
Apache HTTP Server 2.2.20 Released
The Apache Software Foundation and the Apache HTTP Server Project are
pleased to announce the release of version 2.2.20 of the Apache HTTP
Server ("Apache"). This version of Apache is principally a security
and bug fix release:
* SECURITY: CVE-2011-3192 (cve.mitre.org)
core: Fix handling of byte-range requests to use less memory, to avoid
denial of service. If the sum of all ranges in a request is larger than
the original file, ignore the ranges and send the complete file.
We consider this release to be the best version of Apache available, and
encourage users of all prior versions to upgrade.
Apache HTTP Server 2.2.20 is available for download from:
Please see the CHANGES_2.2 file, linked from the download page, for a
full list of changes. A condensed list, CHANGES_2.2.20 provides the
complete list of changes since 2.2.19. A summary of all of the security
vulnerabilities addressed in this and earlier releases is available:
This release includes the Apache Portable Runtime (APR) version 1.4.5
and APR Utility Library (APR-util) version 1.3.12, bundled with the tar
and zip distributions. The APR libraries libapr and libaprutil (and
on Win32, libapriconv version 1.2.1) must all be updated to ensure
binary compatibility and address many known security and platform bugs.
Apache 2.2 offers numerous enhancements, improvements, and performance
boosts over the 2.0 codebase. For an overview of new features
introduced since 2.0 please see:
This release builds on and extends the Apache 2.0 API. Modules written
for Apache 2.0 will need to be recompiled in order to run with Apache
2.2, and require minimal or no source code changes.
When upgrading or installing this version of Apache, please bear in mind
that if you intend to use Apache with one of the threaded MPMs (other
than the Prefork MPM), you must ensure that any modules you will be
using (and the libraries they depend on) are thread-safe.
Mit besten Grüßen, Reindl Harald
the lounge interactive design GmbH
A-1060 Vienna, Hofmühlgasse 17
CTO / software-development / cms-solutions
p: +43 (1) 595 3999 33, m: +43 (676) 40 221 40
icq: 154546673, http://www.thelounge.net/http://www.thelounge.net/signature.asc.what.htm
Until today, kde-settings' License tag was declared as "Public Domain".
This made sense when all it contained was configuration settings such as
foo=false, which are clearly not a form of creative expression, but these
days kde-settings is growing some code snippets, e.g.:
* RPM dependency extractors
* possibly a Plasma initialization script
Those code snippets are probably copyrightable, and it is not legal for us
European contributors to just declare them Public Domain.
I have discussed this issue with the other contributors, and we agreed to
put kde-settings under the MIT License, in particular this variant:
which is the default license for Code contributions to Fedora, and which is
effectively as permissive as Public Domain, but legally sound worldwide.
As a result, the License tag in kde-settings-4.7-6.fc17 has changed to:
Please note that the kde-settings-pulseaudio subpackage is still Public
Domain because it contains literally nothing to copyright and license. (It
is an empty metapackage.)