The following builds have been pushed to Fedora EPEL 5 updates-testing
bzr-2.1.1-3.el5 bzr-gtk-0.98.0-2.el5 bzrtools-2.1.0-3.el5 flashrom-0.9.1-4.svn995.el5 glite-security-util-java-2.5.5-1.el5 hivex-1.2.2-1.el5 ldns-1.6.4-4.el5 lighttpd-1.4.26-2.el5 loggerhead-1.17-6.el5 mirrormanager-1.3.4-1.el5 mod_security-2.5.12-2.el5 openslide-3.1.1-1.el5 python-hwdata-1.2-1.el5 pytz-2010h-1.el5 qbzr-0.19-0.1.b1.el5 s3cmd-0.9.9.91-1.el5.1 spawn-fcgi-1.6.2-1.el5.1 trac-bazaar-plugin-0.3.3-1.el5 xar-1.5.2-6.el5
Details about builds:
================================================================================ bzr-2.1.1-3.el5 (FEDORA-EPEL-2010-2620) Friendly distributed version control system -------------------------------------------------------------------------------- Update Information:
This update contains API incompatibility from the 1.13 version previously shipped but is compatible with the repositories hosted on launchpad and with the bzr client in Fedora 13. It is also API compatible with qbzr and loggerhead so those can now be provided in EPEL-5. -------------------------------------------------------------------------------- ChangeLog:
* Mon Apr 12 2010 Toshio Kuratomi toshio@fedoraproject.org - 2.1.1-3 - Clean up some rpmlint warnings * Mon Apr 12 2010 Toshio Kuratomi toshio@fedoraproject.org - 2.1.1-2 - Fixes so this spec file will also build on EL-5 - define => global * Tue Mar 30 2010 Henrik Nordstrom henrik@henriknordstrom.net - 2.1.1-1 - Upstream 2.1.1 bugfix release -------------------------------------------------------------------------------- References:
[ 1 ] Bug #579214 - Error when checking out python-fedora anonymously https://bugzilla.redhat.com/show_bug.cgi?id=579214 [ 2 ] Bug #567727 - Update bzr to a more recent release https://bugzilla.redhat.com/show_bug.cgi?id=567727 --------------------------------------------------------------------------------
================================================================================ bzr-gtk-0.98.0-2.el5 (FEDORA-EPEL-2010-2620) Bazaar plugin for GTK+ interfaces to most Bazaar operations -------------------------------------------------------------------------------- Update Information:
This update contains API incompatibility from the 1.13 version previously shipped but is compatible with the repositories hosted on launchpad and with the bzr client in Fedora 13. It is also API compatible with qbzr and loggerhead so those can now be provided in EPEL-5. -------------------------------------------------------------------------------- ChangeLog:
* Mon Apr 12 2010 Toshio Kuratomi toshio@fedoraproject.org - 0.98.0-2 - Update patch for .desktop files on EL5 - Add patch for setup.py 2.5ism * Wed Mar 3 2010 Toshio Kuratomi toshio@fedoraproject.org - 0.98.0-1 - Update devel banches to 0.98.0 bz#570129. * Sun Feb 21 2010 Toshio Kuratomi toshio@fedoraproject.org - 0.97.0-4 - Readd %python_sitelib definition on F-12 as we do use it in the %install section * Sun Feb 21 2010 Toshio Kuratomi toshio@fedoraproject.org - 0.97.0-3 - Obsolete old nautilus-bzr package - Update some minor things for new guidelines * Thu Nov 12 2009 Toshio Kuratomi toshio@fedoraproject.org - 0.97.0-2 - Disable nautilus plugin on F13+ as nautilus-python is orphaned, broken, and not active upstream. - Add a patch to fix error handling in bzr-patch-handler * Tue Aug 25 2009 Toshio Kuratomi toshio@fedoraproject.org - 0.97.0-1 - Update to latest bugfix release. * Fri Jul 24 2009 Fedora Release Engineering rel-eng@lists.fedoraproject.org - 0.96.2-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild * Fri Jul 10 2009 Toshio Kuratomi toshio@fedoraproject.org - 0.96.2-1 - Update to work with bzr-1.16 - Update rhel version reqs * Wed May 27 2009 Toshio Kuratomi toshio@fedoraproject.org - 0.95.0-5 - Upstream patch to work around: bz#498138 * Mon Feb 23 2009 Fedora Release Engineering rel-eng@lists.fedoraproject.org - 0.95.0-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_11_Mass_Rebuild * Sat Nov 29 2008 Ignacio Vazquez-Abrams ivazqueznet+rpm@gmail.com - 0.95.0-3 - Rebuild for Python 2.6 * Thu Sep 25 2008 Toshio Kuratomi toshio@fedoraproject.org 0.95.0-2 - Update for fixed nautilus-python package. * Wed Sep 3 2008 Toshio Kuratomi toshio@fedoraproject.org 0.95.0-1 - New Upstream release for use with bzr >= 1.6. -------------------------------------------------------------------------------- References:
[ 1 ] Bug #579214 - Error when checking out python-fedora anonymously https://bugzilla.redhat.com/show_bug.cgi?id=579214 [ 2 ] Bug #567727 - Update bzr to a more recent release https://bugzilla.redhat.com/show_bug.cgi?id=567727 --------------------------------------------------------------------------------
================================================================================ bzrtools-2.1.0-3.el5 (FEDORA-EPEL-2010-2620) A collection of utilities and plugins for Bazaar-NG -------------------------------------------------------------------------------- Update Information:
This update contains API incompatibility from the 1.13 version previously shipped but is compatible with the repositories hosted on launchpad and with the bzr client in Fedora 13. It is also API compatible with qbzr and loggerhead so those can now be provided in EPEL-5. -------------------------------------------------------------------------------- ChangeLog:
* Mon Apr 12 2010 Toshio Kuratomi toshio@fedoraproject.org - 2.2.0-3 - spec cleanups for new python guidelines * Wed Apr 7 2010 Henrik Nordstrom henrik@henriknordstrom.net - 2.2.0-2 - Update to 2.2.0 * Wed Feb 17 2010 Henrik Nordstrom henrik@henriknordstrom.net - 2.1.0-2 - Rebuild due to dependency changes * Fri Feb 5 2010 Henrik Nordstrom henrik@henriknordstrom.net - 2.1.0-1 - Update to 2.1.0 * Thu Oct 29 2009 Henrik Nordstrom henrik@henriknordstrom.net - 2.1.0-0.1.b1 - Update to 2.1.0b1 for bzr 2.1.0b1 * Sat Sep 26 2009 Henrik Nordstrom henrik@henriknordstrom.net - 2.0.1-1 - Update to 2.0.1 * Thu Sep 10 2009 Henrik Nordstrom henrik@henriknordstrom.net 2.0.0-1 - Update to 2.0.0 for bzr 2.0 * Thu Aug 20 2009 Henrik Nordstrom henrik@henriknordstrom.net - 1.18.0-2 - Update to 1.18.0 * Fri Jul 24 2009 Fedora Release Engineering rel-eng@lists.fedoraproject.org - 1.17.0-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild * Tue Jul 14 2009 Henrik Nordstrom henrik@henriknordstrom.net - 1.17.0-1 - Update to 1.17.0 * Sat Jun 13 2009 Henrik Nordstrom henrik@henriknordstrom.net 1.16.0-1 - Update to 1.16.0 * Fri Jun 12 2009 Henrik Nordstorm henrik@henriknordstrom.net 1.15.0-3 - Relax dependencies slightly to accept bzr 1.16rc1 * Thu May 28 2009 Henrik Nordstrom henrik@henriknordstrom.net - 1.15.0-2 - Update to 1.15.0 * Sat May 23 2009 Henrik Nordstrom henrik@henriknordstrom.net - 1.14.0-2 - Relax dependencies slightly as 1.14.0 works with bzr-1.15 * Sat Apr 11 2009 Henrik Nordstrom henrik@henriknordstrom.net - 1.14.0-1 - Update to 1.14.0 * Wed Mar 11 2009 Henrik Nordstrom henrik@henriknordstrom.net - 1.13.0-1 - Update to 1.13.0 * Mon Feb 23 2009 Fedora Release Engineering rel-eng@lists.fedoraproject.org - 1.12.0-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_11_Mass_Rebuild * Tue Feb 10 2009 Henrik Nordstrom henrik@henriknordstrom.net - 1.12.0-1 - Update to 1.12.0 * Mon Jan 19 2009 Henrik Nordstrom henrik@henriknordstrom.net - 1.11.0-1 - Update to 1.11.0 * Fri Dec 12 2008 Henrik Nordstrom henrik@henriknordstrom.net 1.10.0-3 - correct changelog * Thu Dec 11 2008 Henrik Nordstrom henrik@henriknordstrom.net - 1.10.0-2 - Minor packaging bugfix * Wed Dec 10 2008 Toshio Kuratomi toshio@fedoraproject.org - 1.10.0-1 - Update to 1.10.0 * Sat Nov 29 2008 Ignacio Vazquez-Abrams ivazqueznet+rpm@gmail.com - 1.9.1-2 - Rebuild for Python 2.6 * Thu Nov 13 2008 Toshio Kuratomi toshio@fedoraproject.org 1.9.1-1 - Update to 1.9.1 * Thu Sep 18 2008 Toshio Kuratomi toshio@fedoraproject.org 1.7.0-1 - Update to 1.7.0 * Wed Sep 3 2008 Toshio Kuratomi toshio@fedoraproject.org 1.6.0-1 - Update to 1.6.0 * Wed May 21 2008 Toshio Kuratomi toshio@fedoraproject.org 1.5.0-1 - Update to 1.5.0 * Mon May 5 2008 Toshio Kuratomi toshio@fedoraproject.org 1.4.0-1 - Update to 1.4.0 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #579214 - Error when checking out python-fedora anonymously https://bugzilla.redhat.com/show_bug.cgi?id=579214 [ 2 ] Bug #567727 - Update bzr to a more recent release https://bugzilla.redhat.com/show_bug.cgi?id=567727 --------------------------------------------------------------------------------
================================================================================ flashrom-0.9.1-4.svn995.el5 (FEDORA-EPEL-2010-2688) Simple program for reading/writing BIOS chips content -------------------------------------------------------------------------------- Update Information:
New svn ver. 995 (with really lots of new chips and m/b added) -------------------------------------------------------------------------------- ChangeLog:
* Wed Apr 28 2010 Peter Lemenkov lemenkov@gmail.com 0.9.1-4.svn995 - Updated to latest svn ver. 995 - Lots of new chips and m/b --------------------------------------------------------------------------------
================================================================================ glite-security-util-java-2.5.5-1.el5 (FEDORA-EPEL-2010-2692) Java Utilities for GSI Credentials -------------------------------------------------------------------------------- Update Information:
glite-security-util-java together with glite-security-trustmanger is an implementation of the java TrustManager interface with implementation of cert path checking, grid namespace restrictions and dynamic loading of CA certs, credentials, CRLs and namespace restrictions. Also provided is integration into tomcat, axis and axis2. There are many utility classes and methods for certificate and proxy handling in util-java. It can be used both in the server side for the server ssl handler and on the client side for the opneing of ssl connections. -------------------------------------------------------------------------------- References:
[ 1 ] Bug #531051 - Review Request: glite-security-util-java - Java Utilities for GSI Credentials https://bugzilla.redhat.com/show_bug.cgi?id=531051 --------------------------------------------------------------------------------
================================================================================ hivex-1.2.2-1.el5 (FEDORA-EPEL-2010-2690) Read and write Windows Registry binary hive files -------------------------------------------------------------------------------- Update Information:
This contains an important fix for regedit importing. Upgrading is recommended. -------------------------------------------------------------------------------- ChangeLog:
* Wed Apr 28 2010 Richard W.M. Jones rjones@redhat.com - 1.2.2-1 - New upstream version 1.2.2. * Mon Apr 12 2010 Richard W.M. Jones rjones@redhat.com - 1.2.1-1 - New upstream version 1.2.1. -------------------------------------------------------------------------------- References:
[ 1 ] Bug #578347 - Russian translation of hivex https://bugzilla.redhat.com/show_bug.cgi?id=578347 --------------------------------------------------------------------------------
================================================================================ ldns-1.6.4-4.el5 (FEDORA-EPEL-2010-2691) Lowlevel DNS(SEC) library with API -------------------------------------------------------------------------------- Update Information:
The LOC fix in 1.6.4-3 had some debug output still present that would confuse automated use of ldns-read-zone. That was removed in this release. -------------------------------------------------------------------------------- ChangeLog:
* Mon Apr 26 2010 Paul Wouters paul@xelerance.com - 1.6.4-4 - Disable a debug line that was added to find the LOC issue that causes unexpected output for automated tools using ldns-read-zone * Thu Feb 11 2010 Paul Wouters paul@xelerance.com - 1.6.4-3 - Applied fix svn 3186 for LOC record parsing --------------------------------------------------------------------------------
================================================================================ lighttpd-1.4.26-2.el5 (FEDORA-EPEL-2010-2696) Lightning fast webserver with light system requirements -------------------------------------------------------------------------------- Update Information:
Update lighttpd to the latest version of the 1.4 branch, with the spawn-fcgi program split out for the first time on EL. This fixes CVE-2010-0295 and also includes a fix for upstream bug #2157 where SSL stopped working with RHEL 5.4. -------------------------------------------------------------------------------- ChangeLog:
* Fri Apr 16 2010 Matthias Saou http://freshrpms.net/ 1.4.26-2 - Update to 1.4.26. - Update the geoip patch. - Remove no longer provided ChangeLog from %doc. - Include patch to fix upstream SSL related bug #2157. * Thu Sep 3 2009 Matthias Saou http://freshrpms.net/ 1.4.23-1 - Update to 1.4.23. - Update defaultconf and mod_geoip patches. - Remove no longer shipped spawn-fcgi, it's a separate source package now. - Remove unused patch to the init script. * Fri Aug 21 2009 Tomas Mraz tmraz@redhat.com - 1.4.22-5 - rebuilt with new openssl * Sat Jul 25 2009 Fedora Release Engineering rel-eng@lists.fedoraproject.org - 1.4.22-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild * Sun Apr 12 2009 Matthias Saou http://freshrpms.net/ 1.4.22-3 - Update init script to new style. - No longer include a sysconfig file, though one can be set to override the default configuration file location. -------------------------------------------------------------------------------- References:
[ 1 ] Bug #561340 - CVE-2010-0295 lighttpd: Remote DoS (excessive memory use) by handling specially-crafted HTTP request https://bugzilla.redhat.com/show_bug.cgi?id=561340 --------------------------------------------------------------------------------
================================================================================ loggerhead-1.17-6.el5 (FEDORA-EPEL-2010-2620) Web viewer for the Bazaar version control system -------------------------------------------------------------------------------- Update Information:
This update contains API incompatibility from the 1.13 version previously shipped but is compatible with the repositories hosted on launchpad and with the bzr client in Fedora 13. It is also API compatible with qbzr and loggerhead so those can now be provided in EPEL-5. -------------------------------------------------------------------------------- References:
[ 1 ] Bug #579214 - Error when checking out python-fedora anonymously https://bugzilla.redhat.com/show_bug.cgi?id=579214 [ 2 ] Bug #567727 - Update bzr to a more recent release https://bugzilla.redhat.com/show_bug.cgi?id=567727 --------------------------------------------------------------------------------
================================================================================ mirrormanager-1.3.4-1.el5 (FEDORA-EPEL-2010-2687) Fedora mirror management system -------------------------------------------------------------------------------- Update Information:
- Adrian Reber: umdl: fix failure when updating from rsync listings. umdl: time.mktime() might return floats - BJ Dierkes: Fix confirm delete method in webui. - Matt Domsch: mrr: add --updates-only option controllers: add mirroradmins query umdl: fix crash in _get_version_from_path() umdl: avoid disappering files report_mirror: handle server HTTP 503 errors generate- worldmap: update for newer python-basemap autodetect development/13/ style directories and create appropriate Repositories umdl: recognize moving Repository objects from development/13 to releases/13/ mrr: genericize --from and --to version values get_internet2_netblocks: fix URL due to upstream directory change Put titles on publiclist pages expose crawler logs via apache directory listing add crawler log link on host page apache: ensure aliases to special areas come before the WSGI alias remove python-fedora deprecation warning add config option report_problems_to_email, display on publiclist footer. ageFileDetails(): account for propogation delays add max_propogation_days config option spec: require python-basemap > 0.99.4 so generate-worldmap works mirrorlist-server: use WSGIDaemonProcess for mirrorlist_client.wsgi mirrormanager.wsgi run 4 instances per app server (up from 2) -------------------------------------------------------------------------------- ChangeLog:
* Mon Apr 26 2010 Matt Domsch mdomsch@fedoraproject.org - 1.3.4-1 - Adrian Reber (2): umdl: fix failure when updating from rsync listings. umdl: time.mktime() might return floats - BJ Dierkes (1): Fix confirm delete method in webui. - Matt Domsch (34): mrr: add --updates-only option controllers: add mirroradmins query umdl: fix crash in _get_version_from_path() umdl: avoid disappering files report_mirror: handle server HTTP 503 errors generate-worldmap: update for newer python-basemap autodetect development/13/ style directories and create appropriate Repositories umdl: recognize moving Repository objects from development/13 to releases/13/ mrr: genericize --from and --to version values get_internet2_netblocks: fix URL due to upstream directory change Put titles on publiclist pages expose crawler logs via apache directory listing add crawler log link on host page apache: ensure aliases to special areas come before the WSGI alias remove python-fedora deprecation warning add config option report_problems_to_email, display on publiclist footer. ageFileDetails(): account for propogation delays add max_propogation_days config option spec: require python-basemap > 0.99.4 so generate-worldmap works mirrorlist-server: use WSGIDaemonProcess for mirrorlist_client.wsgi mirrormanager.wsgi run 4 instances per app server (up from 2) --------------------------------------------------------------------------------
================================================================================ mod_security-2.5.12-2.el5 (FEDORA-EPEL-2010-2685) Security module for the Apache HTTP Server -------------------------------------------------------------------------------- Update Information:
- Explicitly set SecDataDir (not configured in shipped config from upstream) - Add more directives in base config, based on config-minimal from upstream. -------------------------------------------------------------------------------- ChangeLog:
* Thu Apr 29 2010 Michael Fleming mfleming+rpm@thatfleminggent.com - 2.5.12-2 - Fix SecDatadir and minimal config per bz #569360 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #569360 - The default configuration in v2.5.12 is missing important settings https://bugzilla.redhat.com/show_bug.cgi?id=569360 --------------------------------------------------------------------------------
================================================================================ openslide-3.1.1-1.el5 (FEDORA-EPEL-2010-2695) C library for reading virtual slides -------------------------------------------------------------------------------- Update Information:
This updates fixes some bugs reading invalid VMS files. VMS files with multiple layers (`NoLayers` > 1) are also supported now, but the additional layers are ignored. -------------------------------------------------------------------------------- ChangeLog:
* Tue Apr 27 2010 Adam Goode adam@spicenitz.org - 3.1.1-1 - New upstream release + Don't crash or leak memory on some invalid VMS files + Ignore extra layers in VMS files --------------------------------------------------------------------------------
================================================================================ python-hwdata-1.2-1.el5 (FEDORA-EPEL-2010-2693) Python bindings to hwdata package -------------------------------------------------------------------------------- Update Information:
new package --------------------------------------------------------------------------------
================================================================================ pytz-2010h-1.el5 (FEDORA-EPEL-2010-2686) World Timezone Definitions for Python -------------------------------------------------------------------------------- Update Information:
Update to current upstream. -------------------------------------------------------------------------------- ChangeLog:
* Tue Apr 27 2010 Jon Ciesla limb@jcomserv.net - 2010h-1 - Update to current version, BZ 573252. * Mon Feb 1 2010 Jon Ciesla limb@jcomserv.net - 2009i-7 - Corrected Source0 URL, BZ 560168. * Sun Jul 26 2009 Fedora Release Engineering rel-eng@lists.fedoraproject.org - 2008i-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild * Thu Feb 26 2009 Fedora Release Engineering rel-eng@lists.fedoraproject.org - 2008i-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_11_Mass_Rebuild * Sat Nov 29 2008 Ignacio Vazquez-Abrams ivazqueznet+rpm@gmail.com - 2008i-4 - Rebuild for Python 2.6 * Tue Nov 18 2008 Jef Spaleta <jspaleta at fedoraproject dot org> 2008i-3 - Apply patch correctly. * Thu Nov 13 2008 Jef Spaleta <jspaleta at fedoraproject dot org> 2008i-2 - Updated tzdata patch from Petr Machata bug 471014 * Tue Nov 11 2008 Jef Spaleta <jspaleta at fedoraproject dot org> 2008i-1 - Update to latest, now using timezone files provided by tzdata package * Fri Jan 4 2008 Jef Spaleta jspaleta@gmail.com 2006p-3 - Fix for egg-info file creation * Mon Dec 11 2006 Jef Spaleta jspaleta@gmail.com 2006p-2 - Bump for rebuild against python 2.5 and change BR to python-devel accordingly -------------------------------------------------------------------------------- References:
[ 1 ] Bug #573252 - pytz: please update to latest upstream version (pytz 2010e) https://bugzilla.redhat.com/show_bug.cgi?id=573252 --------------------------------------------------------------------------------
================================================================================ qbzr-0.19-0.1.b1.el5 (FEDORA-EPEL-2010-2620) Bazaar plugin for Qt interface to most Bazaar operations -------------------------------------------------------------------------------- Update Information:
This update contains API incompatibility from the 1.13 version previously shipped but is compatible with the repositories hosted on launchpad and with the bzr client in Fedora 13. It is also API compatible with qbzr and loggerhead so those can now be provided in EPEL-5. -------------------------------------------------------------------------------- References:
[ 1 ] Bug #579214 - Error when checking out python-fedora anonymously https://bugzilla.redhat.com/show_bug.cgi?id=579214 [ 2 ] Bug #567727 - Update bzr to a more recent release https://bugzilla.redhat.com/show_bug.cgi?id=567727 --------------------------------------------------------------------------------
================================================================================ s3cmd-0.9.9.91-1.el5.1 (FEDORA-EPEL-2010-2697) Tool for accessing Amazon Simple Storage Service -------------------------------------------------------------------------------- Update Information:
Fixes a collision with EPEL hashlib -------------------------------------------------------------------------------- ChangeLog:
* Wed Apr 28 2010 Lubomir Rintel (GoodData) lubo.rintel@gooddata.com - 0.9.9.91-1.1 - Do not use sha1 from hashlib * Sun Feb 21 2010 Lubomir Rintel (Good Data) lubo.rintel@gooddata.com - 0.9.9.91-1 - New upstream release * Sun Jul 26 2009 Fedora Release Engineering rel-eng@lists.fedoraproject.org - 0.9.9-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild --------------------------------------------------------------------------------
================================================================================ spawn-fcgi-1.6.2-1.el5.1 (FEDORA-EPEL-2010-2696) Simple program for spawning FastCGI processes -------------------------------------------------------------------------------- Update Information:
Update lighttpd to the latest version of the 1.4 branch, with the spawn-fcgi program split out for the first time on EL. This fixes CVE-2010-0295 and also includes a fix for upstream bug #2157 where SSL stopped working with RHEL 5.4. -------------------------------------------------------------------------------- References:
[ 1 ] Bug #561340 - CVE-2010-0295 lighttpd: Remote DoS (excessive memory use) by handling specially-crafted HTTP request https://bugzilla.redhat.com/show_bug.cgi?id=561340 --------------------------------------------------------------------------------
================================================================================ trac-bazaar-plugin-0.3.3-1.el5 (FEDORA-EPEL-2010-2620) Bazaar plugin for Trac -------------------------------------------------------------------------------- Update Information:
This update contains API incompatibility from the 1.13 version previously shipped but is compatible with the repositories hosted on launchpad and with the bzr client in Fedora 13. It is also API compatible with qbzr and loggerhead so those can now be provided in EPEL-5. -------------------------------------------------------------------------------- ChangeLog:
* Mon Apr 12 2010 Toshio Kuratomi toshio@fedoraproject.org - 0.3.3-1 - Upstream bugfix release * Fri Apr 9 2010 Toshio Kuratomi toshio@fedoraproject.org - 0.3.2-1 - Upstream bugfix release * Fri Jan 22 2010 Toshio Kuratomi toshio@fedoraproject.org - 0.3.0-1 - Finally, a new upstream release. This release is only compatible with bzr-2.x and works best with trac-0.11 (but will work with trac-0.10). - Fixes many bugs, including the ones that we were patching around. * Sun Jul 26 2009 Fedora Release Engineering rel-eng@lists.fedoraproject.org - 0.2-10.20080925bzr49 - Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild * Wed Feb 25 2009 Fedora Release Engineering rel-eng@lists.fedoraproject.org - 0.2-9.20080925bzr49 - Rebuilt for https://fedoraproject.org/wiki/Fedora_11_Mass_Rebuild * Sat Nov 29 2008 Ignacio Vazquez-Abrams ivazqueznet+rpm@gmail.com - 0.2-8.20080925bzr49 - Rebuild for Python 2.6 * Fri Sep 26 2008 Toshio Kuratomi toshio@fedoraproject.org - 0.2-7.20080925bzr49 - Patches to fix: lp:274609, lp:263300, lp:267700 * Thu Sep 25 2008 Toshio Kuratomi toshio@fedoraproject.org - 0.2-6.20080925bzr49 - New upstream snapshot that includes our patches, fixes for bzr-1.6+ and trac-0.11. -------------------------------------------------------------------------------- References:
[ 1 ] Bug #579214 - Error when checking out python-fedora anonymously https://bugzilla.redhat.com/show_bug.cgi?id=579214 [ 2 ] Bug #567727 - Update bzr to a more recent release https://bugzilla.redhat.com/show_bug.cgi?id=567727 --------------------------------------------------------------------------------
================================================================================ xar-1.5.2-6.el5 (FEDORA-EPEL-2010-2689) The eXtensible ARchiver -------------------------------------------------------------------------------- Update Information:
This update fixes CVE-2010-0055, an issue where xar did not properly validate package signatures, which allows attackers to have an unspecified impact via a modified package. -------------------------------------------------------------------------------- ChangeLog:
* Wed Apr 28 2010 Matthias Saou http://freshrpms.net/ 1.5.2-6 - Include patch to fix CVE-2010-0055 (#570678). * Fri Aug 21 2009 Tomas Mraz tmraz@redhat.com - 1.5.2-5 - rebuilt with new openssl * Mon Jul 27 2009 Fedora Release Engineering rel-eng@lists.fedoraproject.org - 1.5.2-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild * Wed Feb 25 2009 Fedora Release Engineering rel-eng@lists.fedoraproject.org - 1.5.2-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_11_Mass_Rebuild * Sun Jan 18 2009 Tomas Mraz tmraz@redhat.com 1.5.2-2 - rebuild with new openssl * Tue Dec 23 2008 Matthias Saou http://freshrpms.net/ 1.5.2-1 - Update to 1.5.2. - Remove no longer needed install and memset patches. - Disable newly built-by-default static lib and remove useless .la file. * Tue Feb 19 2008 Fedora Release Engineering rel-eng@fedoraproject.org - Autorebuild for GCC 4.3 * Fri Dec 7 2007 Release Engineering <rel-eng at fedoraproject dot org> - Rebuild for deps * Thu Aug 23 2007 Matthias Saou http://freshrpms.net/ 1.5.1-4 - Rebuild for new BuildID feature. - Add /usr/bin/awk build requirement, needed for the libxml configure check. * Wed Aug 8 2007 Matthias Saou http://freshrpms.net/ 1.5.1-2 - Patch memset call with swapped arguments (Dave Jones). * Wed Jul 11 2007 Matthias Saou http://freshrpms.net/ 1.5.1-1 - Update to 1.5.1. -------------------------------------------------------------------------------- References:
[ 1 ] Bug #570678 - CVE-2010-0055 xar: signature bypass vulnerability https://bugzilla.redhat.com/show_bug.cgi?id=570678 --------------------------------------------------------------------------------
epel-devel@lists.fedoraproject.org