[SECURITY] Fedora EPEL 5 Update: phpMyAdmin-2.11.10-1.el5
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora EPEL Update Notification
FEDORA-EPEL-2010-0115
2010-01-22 19:25:23
--------------------------------------------------------------------------------
Name : phpMyAdmin
Product : Fedora EPEL 5
Version : 2.11.10
Release : 1.el5
URL : http://www.phpmyadmin.net/
Summary : Web based MySQL browser written in php
Description :
phpMyAdmin is a tool written in PHP intended to handle the administration of
MySQL over the Web. Currently it can create and drop databases,
create/drop/alter tables, delete/edit/add fields, execute any SQL statement,
manage keys on fields, manage privileges,export data into various formats and
is available in 50 languages
--------------------------------------------------------------------------------
Update Information:
Changes for 2.11.10.0 (2009-12-07) - [core] safer handling of temporary files
with open_basedir (thanks to Thijs Kinkhorst) - [core] do not automatically set
and create TempDir, it might lead to security issue (thanks to Thijs Kinkhorst)
- [setup] avoid usage of (un)serialize, what might be unsafe in some cases
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #557307 - CVE-2008-7251 CVE-2008-7252 CVE-2009-4605 phpMyAdmin 2.x multiple vulnerabilities
https://bugzilla.redhat.com/show_bug.cgi?id=557307
--------------------------------------------------------------------------------
This update can be installed with the "yum" update programs. Use
su -c 'yum update phpMyAdmin' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora EPEL GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
14 years, 2 months
[SECURITY] Fedora EPEL 4 Update: phpMyAdmin-2.11.10-1.el4
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora EPEL Update Notification
FEDORA-EPEL-2010-0111
2010-01-22 19:25:15
--------------------------------------------------------------------------------
Name : phpMyAdmin
Product : Fedora EPEL 4
Version : 2.11.10
Release : 1.el4
URL : http://www.phpmyadmin.net/
Summary : Web based MySQL browser written in php
Description :
phpMyAdmin is a tool written in PHP intended to handle the administration of
MySQL over the Web. Currently it can create and drop databases,
create/drop/alter tables, delete/edit/add fields, execute any SQL statement,
manage keys on fields, manage privileges,export data into various formats and
is available in 50 languages
--------------------------------------------------------------------------------
Update Information:
Changes for 2.11.10.0 (2009-12-07) - [core] safer handling of temporary files
with open_basedir (thanks to Thijs Kinkhorst) - [core] do not automatically set
and create TempDir, it might lead to security issue (thanks to Thijs Kinkhorst)
- [setup] avoid usage of (un)serialize, what might be unsafe in some cases
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #557307 - CVE-2008-7251 CVE-2008-7252 CVE-2009-4605 phpMyAdmin 2.x multiple vulnerabilities
https://bugzilla.redhat.com/show_bug.cgi?id=557307
--------------------------------------------------------------------------------
This update can be installed with the "yum" update programs. Use
su -c 'yum update phpMyAdmin' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora EPEL GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
14 years, 2 months
Fedora EPEL 5 Update: perl-Data-Report-0.10-4.el5
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora EPEL Update Notification
FEDORA-EPEL-2010-0088
2010-01-19 22:35:04
--------------------------------------------------------------------------------
Name : perl-Data-Report
Product : Fedora EPEL 5
Version : 0.10
Release : 4.el5
URL : http://search.cpan.org/dist/Data-Report/
Summary : A flexible plugin-driven reporting framework
Description :
Data::Report is a framework for report generation.
You define the columns, add the data row by row, and get reports in
text, HTML, CSV and so on. Textual ornaments like extra empty lines,
dashed lines, and cell lines can be added in a way similar to HTML
style sheets.
--------------------------------------------------------------------------------
Update Information:
Data::Report is a framework for report generation. You define the columns,
add the data row by row, and get reports in text, HTML, CSV and so on. Textual
ornaments like extra empty lines, dashed lines, and cell lines can be added in a
way similar to HTML style sheets.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #483286 - Review Request: perl-Data-Report - A flexible plugin-driven reporting framework
https://bugzilla.redhat.com/show_bug.cgi?id=483286
[ 2 ] Bug #550192 - mysql-zrm requires the not yet branched perl-data-report
https://bugzilla.redhat.com/show_bug.cgi?id=550192
--------------------------------------------------------------------------------
This update can be installed with the "yum" update programs. Use
su -c 'yum update perl-Data-Report' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora EPEL GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
14 years, 3 months
[SECURITY] Fedora EPEL 5 Update: dokuwiki-0-0.4.20091225.c.el5
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora EPEL Update Notification
FEDORA-EPEL-2010-0090
2010-01-19 22:35:08
--------------------------------------------------------------------------------
Name : dokuwiki
Product : Fedora EPEL 5
Version : 0
Release : 0.4.20091225.c.el5
URL : http://www.dokuwiki.org/dokuwiki
Summary : Standards compliant simple to use wiki
Description :
DokuWiki is a standards compliant, simple to use Wiki, mainly aimed at creating
documentation of any kind. It has a simple but powerful syntax which makes sure
the datafiles remain readable outside the Wiki and eases the creation of
structured texts.
All data is stored in plain text files no database is required.
--------------------------------------------------------------------------------
Update Information:
- Fix CSRF bug Secunia advisory SA38205, dokuwiki bug #1853
http://secunia.com/advisories/38205/3/ - Fix Security ACL bypass bug Secunia
advisory SA38183, dokuwiki bug #1847 http://secunia.com/advisories/38183/3/
- Upgrade to the latest upstream - Fix bugzilla bug #556494
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #556494 - dokuwiki CSRF vulnerability in ACL manager
https://bugzilla.redhat.com/show_bug.cgi?id=556494
--------------------------------------------------------------------------------
This update can be installed with the "yum" update programs. Use
su -c 'yum update dokuwiki' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora EPEL GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
14 years, 3 months
Fedora EPEL 4 Update: ocsinventory-agent-1.1.2-1.el4
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora EPEL Update Notification
FEDORA-EPEL-2010-0019
2010-01-05 21:56:35
--------------------------------------------------------------------------------
Name : ocsinventory-agent
Product : Fedora EPEL 4
Version : 1.1.2
Release : 1.el4
URL : http://www.ocsinventory-ng.org/
Summary : Open Computer and Software Inventory Next Generation client
Description :
Open Computer and Software Inventory Next Generation is an application
designed to help a network or system administrator keep track of computer
configuration and software installed on the network.
It also allows deploying softwares, commands or files on Windows and
Linux client computers.
ocsinventory-agent provides the client for Linux (Unified Unix Agent).
--------------------------------------------------------------------------------
Update Information:
Upstream Changelog: 1.1.2 Sun, 27 Dec 2009 17:24:43 +0100 * Avoid problem
with dmidecode -V output on RHEL3.9 (Remi COLLET) * Fix internal --delaytime
handling. That's seconds, not hours! * Download.pm: improve a error message
1.1.1 Mon, 21 Dec 2009 22:38:12 +0100 * NETWORKS/VIRTUALDEV should be 1 or 0 *
FreeBSD: Fix CPU detection (David DURIEUX) * Virtualization::Qemu, fix kvm
detection * Don't run brctl if it's not installed * Various wording fixes
(Vincent KNECHT) * LP: #494908 Agent fails to retrieve info file when a package
is activated only with the server name (Pascal DANEK) * LP: #495398 Fix RedHat
version detection (Stéphane URBANOVSKI) * LP: #490774 Fix PowerPC CPU detection
on Linux, thanks darkpep for the bug report
--------------------------------------------------------------------------------
This update can be installed with the "yum" update programs. Use
su -c 'yum update ocsinventory-agent' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora EPEL GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
14 years, 3 months
Fedora EPEL 4 Update: python-kid-0.9.6-6.el4
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora EPEL Update Notification
FEDORA-EPEL-2010-0044
2010-01-12 19:33:09
--------------------------------------------------------------------------------
Name : python-kid
Product : Fedora EPEL 4
Version : 0.9.6
Release : 6.el4
URL : http://www.kid-templating.org/
Summary : Kid - A simple and pythonic XML template language
Description :
Kid is a simple Python based template language for generating and
transforming XML vocabularies. Templates are compiled to native Python
byte-code and may be imported and used like normal Python modules.
--------------------------------------------------------------------------------
Update Information:
This update contains a patch to escape ]]> to ]]> in serialization.py as it
is required by the XML standard.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #528729 - python-kid: serialization.py does not escape > to >
https://bugzilla.redhat.com/show_bug.cgi?id=528729
--------------------------------------------------------------------------------
This update can be installed with the "yum" update programs. Use
su -c 'yum update python-kid' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora EPEL GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
14 years, 3 months
Fedora EPEL 5 Update: dogtag-pki-ca-ui-1.3.0-4.el5
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora EPEL Update Notification
FEDORA-EPEL-2010-0086
2010-01-18 22:56:47
--------------------------------------------------------------------------------
Name : dogtag-pki-ca-ui
Product : Fedora EPEL 5
Version : 1.3.0
Release : 4.el5
URL : http://pki.fedoraproject.org/
Summary : Dogtag Certificate System - Certificate Authority User Interface
Description :
Dogtag Certificate System is an enterprise software system designed
to manage enterprise Public Key Infrastructure (PKI) deployments.
The Dogtag Certificate Authority User Interface contains the graphical
user interface for the Dogtag Certificate Authority.
--------------------------------------------------------------------------------
Update Information:
Dogtag Certificate System - Certificate Authority User Interface
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #522208 - New Package for Dogtag PKI: dogtag-pki-ca-ui
https://bugzilla.redhat.com/show_bug.cgi?id=522208
--------------------------------------------------------------------------------
This update can be installed with the "yum" update programs. Use
su -c 'yum update dogtag-pki-ca-ui' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora EPEL GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
14 years, 3 months
Fedora EPEL 4 Update: R-car-1.2-16.1.el4
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora EPEL Update Notification
FEDORA-EPEL-2010-0055
2010-01-12 19:33:34
--------------------------------------------------------------------------------
Name : R-car
Product : Fedora EPEL 4
Version : 1.2
Release : 16.1.el4
URL : http://cran.r-project.org/web/packages/car/index.html
Summary : Companion to Applied Regression package for R
Description :
This package accompanies J. Fox, An R and S-PLUS Companion to Applied
Regression, Sage, 2002. The package contains mostly functions for applied
regression, linear models, and generalized linear models, with an emphasis on
regression diagnostics, particularly graphical diagnostic methods. There are
also some utility functions. With some exceptions, it does not duplicate
capabilities in the basic distribution of R, nor in widely used packages.
Where relevant, the functions in car are consistent with na.action = na.omit
or na.exclude.
--------------------------------------------------------------------------------
Update Information:
* Update to 1.2-16. * Rebuild for R 2.10
--------------------------------------------------------------------------------
This update can be installed with the "yum" update programs. Use
su -c 'yum update R-car' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora EPEL GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
14 years, 3 months
Fedora EPEL 5 Update: ocsinventory-agent-1.1.2-1.el5
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora EPEL Update Notification
FEDORA-EPEL-2010-0018
2010-01-05 21:56:33
--------------------------------------------------------------------------------
Name : ocsinventory-agent
Product : Fedora EPEL 5
Version : 1.1.2
Release : 1.el5
URL : http://www.ocsinventory-ng.org/
Summary : Open Computer and Software Inventory Next Generation client
Description :
Open Computer and Software Inventory Next Generation is an application
designed to help a network or system administrator keep track of computer
configuration and software installed on the network.
It also allows deploying softwares, commands or files on Windows and
Linux client computers.
ocsinventory-agent provides the client for Linux (Unified Unix Agent).
--------------------------------------------------------------------------------
Update Information:
Upstream Changelog: 1.1.2 Sun, 27 Dec 2009 17:24:43 +0100 * Avoid problem
with dmidecode -V output on RHEL3.9 (Remi COLLET) * Fix internal --delaytime
handling. That's seconds, not hours! * Download.pm: improve a error message
1.1.1 Mon, 21 Dec 2009 22:38:12 +0100 * NETWORKS/VIRTUALDEV should be 1 or 0 *
FreeBSD: Fix CPU detection (David DURIEUX) * Virtualization::Qemu, fix kvm
detection * Don't run brctl if it's not installed * Various wording fixes
(Vincent KNECHT) * LP: #494908 Agent fails to retrieve info file when a package
is activated only with the server name (Pascal DANEK) * LP: #495398 Fix RedHat
version detection (Stéphane URBANOVSKI) * LP: #490774 Fix PowerPC CPU detection
on Linux, thanks darkpep for the bug report
--------------------------------------------------------------------------------
This update can be installed with the "yum" update programs. Use
su -c 'yum update ocsinventory-agent' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora EPEL GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
14 years, 3 months
Fedora EPEL 5 Update: qrupdate-1.1.0-2.el5
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora EPEL Update Notification
FEDORA-EPEL-2010-0048
2010-01-12 19:33:20
--------------------------------------------------------------------------------
Name : qrupdate
Product : Fedora EPEL 5
Version : 1.1.0
Release : 2.el5
URL : http://qrupdate.sourceforge.net/
Summary : A Fortran library for fast updates of QR and Cholesky decompositions
Description :
qrupdate is a Fortran library for fast updates of QR and Cholesky
decompositions.
--------------------------------------------------------------------------------
Update Information:
Update to 1.1.0.
--------------------------------------------------------------------------------
This update can be installed with the "yum" update programs. Use
su -c 'yum update qrupdate' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora EPEL GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
14 years, 3 months