The following Fedora 14 Security updates need testing:
https://admin.fedoraproject.org/updates/feh-1.14.1-1.fc14
https://admin.fedoraproject.org/updates/drupal7-7.4-1.fc14
https://admin.fedoraproject.org/updates/wordpress-3.1.4-1.fc14
https://admin.fedoraproject.org/updates/scsi-target-utils-1.0.18-1.fc14
https://admin.fedoraproject.org/updates/pidgin-2.9.0-1.fc14
https://admin.fedoraproject.org/updates/fabric-0.9.7-1.fc14
https://admin.fedoraproject.org/updates/dokuwiki-0-0.8.20110525.a.fc14
https://admin.fedoraproject.org/updates/NetworkManager-0.8.4-2.git2011062...
https://admin.fedoraproject.org/updates/mingw32-libpng-1.4.3-2.fc14
https://admin.fedoraproject.org/updates/libpng10-1.0.54-3.fc14
https://admin.fedoraproject.org/updates/asterisk-1.6.2.19-1.fc14
https://admin.fedoraproject.org/updates/tomcat6-6.0.26-21.fc14
https://admin.fedoraproject.org/updates/openldap-2.4.23-10.fc14
https://admin.fedoraproject.org/updates/oprofile-0.9.6-21.fc14
https://admin.fedoraproject.org/updates/blender-2.49b-14.fc14
https://admin.fedoraproject.org/updates/curl-7.21.0-8.fc14
https://admin.fedoraproject.org/updates/weechat-0.3.5-1.fc14
https://admin.fedoraproject.org/updates/libxml-1.8.17-27.fc14
https://admin.fedoraproject.org/updates/xulrunner-1.9.2.18-1.fc14,firefox...
https://admin.fedoraproject.org/updates/gdk-pixbuf2-2.22.0-2.fc14
The following Fedora 14 Critical Path updates have yet to be approved:
https://admin.fedoraproject.org/updates/cronie-1.4.8-2.fc14
https://admin.fedoraproject.org/updates/mash-0.5.22-1.fc14
https://admin.fedoraproject.org/updates/tzdata-2011h-1.fc14
https://admin.fedoraproject.org/updates/python-slip-0.2.17-1.fc14
https://admin.fedoraproject.org/updates/gdk-pixbuf2-2.22.0-2.fc14
https://admin.fedoraproject.org/updates/NetworkManager-0.8.4-2.git2011062...
https://admin.fedoraproject.org/updates/bash-4.1.7-4.fc14
https://admin.fedoraproject.org/updates/perl-5.12.4-146.fc14
https://admin.fedoraproject.org/updates/policycoreutils-2.0.85-30.1.fc14
https://admin.fedoraproject.org/updates/system-config-keyboard-1.3.1-5.fc14
https://admin.fedoraproject.org/updates/fedora-logos-14.0.2-1.fc14
https://admin.fedoraproject.org/updates/xorg-x11-drv-openchrome-0.2.904-8...
https://admin.fedoraproject.org/updates/pygobject2-2.21.5-4.fc14
https://admin.fedoraproject.org/updates/pcre-8.10-2.fc14
https://admin.fedoraproject.org/updates/libpcap-1.1.1-3.fc14
https://admin.fedoraproject.org/updates/xorg-x11-drv-qxl-0.0.21-3.fc14
https://admin.fedoraproject.org/updates/evolution-exchange-2.32.3-1.fc14,...
https://admin.fedoraproject.org/updates/xorg-x11-drv-nouveau-0.0.16-14.20...
https://admin.fedoraproject.org/updates/libconcord-0.23-5.fc14,udev-161-9...
https://admin.fedoraproject.org/updates/openldap-2.4.23-10.fc14
The following builds have been pushed to Fedora 14 updates-testing
389-admin-1.1.19-2.fc14
389-dsgw-1.1.7-2.fc14
cuetools-1.4.0-0.7.svn305.fc14
fabric-0.9.7-1.fc14
gdata-java-1.45.0-1.fc14
ghc-hamlet-0.8.2.1-2.fc14
jettison-1.3-1.fc14
nitrogen-1.5.2-1.fc14
opencsv-2.3-1.fc14
perl-Perl-MinimumVersion-1.28-1.fc14
petit-1.1.1-1.fc14
pidgin-2.9.0-1.fc14
portreserve-0.0.5-2.fc14
qlandkartegt-1.2.1-1.fc14
resource-agents-3.9.2-1.fc14
scsi-target-utils-1.0.18-1.fc14
sssd-1.5.10-1.fc14
supybot-gribble-0.83.4.1-5.fc14
toothchart-0.02.0-0.1beta.fc14
wlmproxy-0.1.3-1.fc14
Details about builds:
================================================================================
389-admin-1.1.19-2.fc14 (FEDORA-2011-8946)
389 Administration Server (admin)
--------------------------------------------------------------------------------
Update Information:
Rebuild with 389-adminutil-1.1.14
look for separate openldap ldif library
skip rebranding current brand - add support for different skins
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jun 30 2011 Rich Megginson <rmeggins(a)redhat.com> - 1.1.19-2
- bump rev to rebuild with 389-adminutil-1.1.14
* Tue Jun 28 2011 Rich Megginson <rmeggins(a)redhat.com> - 1.1.19-1
- look for separate openldap ldif library
* Tue Jun 21 2011 Rich Megginson <rmeggins(a)redhat.com> - 1.1.18-1
- skip rebranding current brand
- support for skins
* Fri May 13 2011 Rich Megginson <rmeggins(a)redhat.com> - 1.1.17-1
- 1.1.17
- support "in-place" upgrade and rebranding from Red Hat to 389
- many fixes for coverity issues
--------------------------------------------------------------------------------
================================================================================
389-dsgw-1.1.7-2.fc14 (FEDORA-2011-8925)
389 Directory Server Gateway (dsgw)
--------------------------------------------------------------------------------
Update Information:
Rebuild with 389-adminutil-1.1.14
look for separate openldap ldif library
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jun 30 2011 Rich Megginson <rmeggins(a)redhat.com> - 1.1.7-2
- bump rel to rebuild with 389-adminutil-1.1.14
* Tue Jun 28 2011 Rich Megginson <rmeggins(a)redhat.com> - 1.1.7-1
- look for separate openldap ldif library
- remove old fedora-ds cruft
--------------------------------------------------------------------------------
================================================================================
cuetools-1.4.0-0.7.svn305.fc14 (FEDORA-2011-8965)
Utilities to work with cue and TOC files
--------------------------------------------------------------------------------
Update Information:
Fix F15FTBFS, F16FTBFS
--------------------------------------------------------------------------------
ChangeLog:
* Fri Jul 1 2011 Ralf Corsépius <corsepiu(a)fedoraproject.org> - 1.4.0-0.7.svn305
- Fix up timestamps on pre-generated sources (Fix FTBFS BZ#716187, BZ#660830).
--------------------------------------------------------------------------------
================================================================================
fabric-0.9.7-1.fc14 (FEDORA-2011-8964)
A simple Pythonic remote deployment tool
--------------------------------------------------------------------------------
Update Information:
Fix CVE-2011-2185
--------------------------------------------------------------------------------
ChangeLog:
* Fri Jul 1 2011 Silas Sewell <silas(a)sewell.ch> - 0.9.7-1
- Update to 0.9.7
- Fix CVE-2011-2185
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #710462 - CVE-2011-2185 fabric: Use of insecure temporary file by uploading
templates and projects to remote hosts
https://bugzilla.redhat.com/show_bug.cgi?id=710462
--------------------------------------------------------------------------------
================================================================================
gdata-java-1.45.0-1.fc14 (FEDORA-2011-8945)
Client libraries to write Google Data API client applications in Java
--------------------------------------------------------------------------------
Update Information:
- New upstream version 1.45.0
- Added Export-Package data to manifest files (OSGi)
--------------------------------------------------------------------------------
ChangeLog:
* Fri Jul 1 2011 Sandro Mathys <red at fedoraproject.org> - 1.45.0-1
- New upstream version 1.45.0
- Added Export-Package data to manifest files (OSGi)
* Wed Mar 16 2011 Alexander Kurtakov <akurtako(a)redhat.com> 1.41.2-3
- Build against servlet25.
* Tue Feb 8 2011 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
1.41.2-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
ghc-hamlet-0.8.2.1-2.fc14 (FEDORA-2011-8918)
Haml-like template files that are compile-time checked
--------------------------------------------------------------------------------
Update Information:
Update to hamlet-0.8.2.1
--------------------------------------------------------------------------------
ChangeLog:
* Tue Jun 21 2011 Jens Petersen <petersen(a)redhat.com> - 0.8.2.1-2
- ghc_arches replaces ghc_excluded_archs (cabal2spec-0.23.2)
* Mon Jun 20 2011 Jens Petersen <petersen(a)redhat.com> - 0.8.2.1-1
- update to 0.8.2.1
- use ghc_exclude_archs
- cabal2spec-0.23
* Wed Apr 20 2011 Jens Petersen <petersen(a)redhat.com> - 0.6.1.2-4
- allow to build with blaze-builder-0.3
* Thu Mar 10 2011 Fabio M. Di Nitto <fdinitto(a)redhat.com> - 0.6.1.2-3
- Enable build on sparcv9
* Tue Feb 8 2011 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
0.6.1.2-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
jettison-1.3-1.fc14 (FEDORA-2011-8952)
A JSON StAX implementation
--------------------------------------------------------------------------------
Update Information:
- New upstream version 1.3
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jun 30 2011 Sandro Mathys <red at fedoraproject.org> - 1.3-1
- New upstream version
* Wed Feb 9 2011 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
1.2-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
nitrogen-1.5.2-1.fc14 (FEDORA-2011-8936)
Background browser and setter for X windows
--------------------------------------------------------------------------------
Update Information:
- New upstream version 1.5.2
- DSO fix fixed
--------------------------------------------------------------------------------
ChangeLog:
* Fri Jul 1 2011 Sandro Mathys <red at fedoraproject.org> - 1.5.2-1
- New upstream version 1.5.2
* Tue Feb 8 2011 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
1.5.1-4
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #715764 - FTBFS nitrogen-1.5.1-3.fc14
https://bugzilla.redhat.com/show_bug.cgi?id=715764
--------------------------------------------------------------------------------
================================================================================
opencsv-2.3-1.fc14 (FEDORA-2011-8949)
A very simple csv (comma-separated values) parser library for Java
--------------------------------------------------------------------------------
Update Information:
- New upstream version 2.3
--------------------------------------------------------------------------------
ChangeLog:
* Fri Jul 1 2011 Sandro Mathys <red at fedoraproject.org> - 2.3-1
- New upstream version 2.3
* Tue Feb 8 2011 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
2.2-3
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
perl-Perl-MinimumVersion-1.28-1.fc14 (FEDORA-2011-8940)
Find a minimum required version of perl for Perl code
--------------------------------------------------------------------------------
Update Information:
--------------------------------------------------------------------------------
ChangeLog:
* Fri Jun 17 2011 Ralf Corsépius <ralf.corsepius(a)fedoraproject.org> - 1.28-1
- Upstream update.
- Remove maintainer test (Upstream doesn't want us to find his bugs).
- Update BR's.
--------------------------------------------------------------------------------
================================================================================
petit-1.1.1-1.fc14 (FEDORA-2011-8921)
Log analysis tool for syslog, Apache and raw log files
--------------------------------------------------------------------------------
Update Information:
New upstream version 1.1.1
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jun 30 2011 Sandro Mathys <red at fedoraproject.org> - 1.1.1-1
- New upstream version 1.1.1
--------------------------------------------------------------------------------
================================================================================
pidgin-2.9.0-1.fc14 (FEDORA-2011-8917)
A Gtk+ based multiprotocol instant messaging client
--------------------------------------------------------------------------------
Update Information:
New release 2.9.0
Full Upstream ChangeLog:
http://developer.pidgin.im/wiki/ChangeLog
New release 2.8.0
Full Upstream ChangeLog:
http://developer.pidgin.im/wiki/ChangeLog
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jun 30 2011 Stu Tomlinson <stu(a)nosnilmot.com> 2.8.0-3
- 2.9.0, includes security/DoS fix to work around gdk-pixbuf issue
CVE-2011-2485
* Mon Jun 20 2011 Milan Crha <mcrha(a)redhat.com> 2.8.0-3
- Rebuild against new evolution-data-server
* Fri Jun 17 2011 Marcela Mašláňová <mmaslano(a)redhat.com> - 2.8.0-2
- Perl mass rebuild
* Mon Jun 13 2011 Stu Tomlinson <stu(a)nosnilmot.com> 2.8.0-1
- 2.8.0
* Fri May 20 2011 Kalev Lember <kalev(a)smartlink.ee> 2.7.11-4
- Rebuilt for libcamel soname bump
* Tue Apr 26 2011 Dan Williams <dcbw(a)redhat.com> 2.7.11-3
- A few more NetworkManager 0.9 fixes
* Fri Mar 25 2011 Dan Williams <dcbw(a)redhat.com> 2.7.11-2
- Rebuild for NetworkManager 0.9
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #714754 - pidgin: DoS (excessive memory consumption) by processing certain GIF
images used as buddy icon
https://bugzilla.redhat.com/show_bug.cgi?id=714754
--------------------------------------------------------------------------------
================================================================================
portreserve-0.0.5-2.fc14 (FEDORA-2011-8696)
TCP port reservation utility
--------------------------------------------------------------------------------
Update Information:
This update fixes a problem that would cause the portreserve daemon to exit too early when
several services are registered.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Jul 1 2011 Tim Waugh <twaugh(a)redhat.com> 0.0.5-2
- Requires chkconfig (bug #718173).
* Fri Jun 24 2011 Tim Waugh <twaugh(a)redhat.com> 0.0.5-1
- 0.0.5 (bug #619089, bug #704567).
* Wed Feb 9 2011 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
0.0.4-8
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
* Thu Dec 2 2010 Tim Waugh <twaugh(a)redhat.com> 0.0.4-7
- /var/run changes for systemd (bug #656670).
* Thu Nov 18 2010 Tim Waugh <twaugh(a)redhat.com> 0.0.4-6
- Fixed initscript exit code for "status" action (bug #619089).
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #704567 - Possible problems found by static analysis of code
https://bugzilla.redhat.com/show_bug.cgi?id=704567
[ 2 ] Bug #718173 - portreserve should depend on chkconfig
https://bugzilla.redhat.com/show_bug.cgi?id=718173
--------------------------------------------------------------------------------
================================================================================
qlandkartegt-1.2.1-1.fc14 (FEDORA-2011-8920)
GPS device mapping tool
--------------------------------------------------------------------------------
Update Information:
update to bugfix release 1.2.1
- Fix: Projection compare (map/dem) still fails
- Take over waypoint description for routepoint
- Fix: Crash on Garmin maps with POI labels
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jun 30 2011 Dan Horák <dan[at]danny.cz> 1.2.1-1
- update to 1.2.1
--------------------------------------------------------------------------------
================================================================================
resource-agents-3.9.2-1.fc14 (FEDORA-2011-8933)
Open Source HA Reusable Cluster Resource Scripts
--------------------------------------------------------------------------------
Update Information:
This update addresses 2 regressions in openiscsi and pgsql agents for linux-ha/pacemaker
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jun 30 2011 Fabio M. Di Nitto <fdinitto(a)redhat.com> - 3.9.2-1
- new upstream release
- fix 2 regressions from 3.9.1
--------------------------------------------------------------------------------
================================================================================
scsi-target-utils-1.0.18-1.fc14 (FEDORA-2011-8930)
The SCSI target daemon and utility programs
--------------------------------------------------------------------------------
Update Information:
fix double-free vulnerability leads to pre-authenticated crash
fix iscsi target outgoing user binding broken unexpectedly
--------------------------------------------------------------------------------
ChangeLog:
* Wed Jun 29 2011 Andy Grover <agrover(a)redhat.com> - 1.0.18-1
- Update to new upstream release
- Remove git-sync patch
* Fri Apr 29 2011 Dan Horák <dan[at]danny.cz> - 1.0.14-3
- no InfiniBand on s390(x)
* Thu Mar 17 2011 Andy Grover <agrover(a)redhat.com> - 1.0.14-2
- Add git-sync patch to get up to 9c1cd78.
* Thu Mar 17 2011 Andy Grover <agrover(a)redhat.com> - 1.0.14-1
- Update to new upstream release
* Tue Feb 22 2011 Andy Grover <agrover(a)redhat.com> - 1.0.13-1
- Update to new upstream release
- Drop merged snprintf-fix and fix-isns-of patches
- Update dynamic-link-iser patch for new iser module
- Small fixes to redhatify-docs
* Wed Feb 9 2011 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
1.0.1-5
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
* Tue Jun 29 2010 Mike Christie <mchristie(a)redhat.com> - 1.0.1-4
- Fix iSNS scn pdu overflows (CVE-2010-2221).
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #667261 - CVE-2011-0001 scsi-target-utils: double-free vulnerability leads to
pre-authenticated crash
https://bugzilla.redhat.com/show_bug.cgi?id=667261
--------------------------------------------------------------------------------
================================================================================
sssd-1.5.10-1.fc14 (FEDORA-2011-8960)
System Security Services Daemon
--------------------------------------------------------------------------------
Update Information:
* New Features
* Support for overriding home directory, shell and primary GID locally
* Properly honor TTL values from SRV record lookups
* Support non-POSIX groups in nested group chains (for RFC2307bis LDAP servers)
* Important Bugfixes
* Properly escape IPv6 addresses in the failover code
* Do not crash if inotify fails (e.g. resource exhaustion)
* Don't add multiple TGT renewal callbacks (too many log messages)
--------------------------------------------------------------------------------
ChangeLog:
* Fri Jul 1 2011 Stephen Gallagher <sgallagh(a)redhat.com> - 1.5.10-1
- New upstream release 1.5.10
-
https://fedorahosted.org/sssd/wiki/Releases/Notes-1.5.10
- Fixed a regression introduced in 1.5.9 that could result in blocking calls
- to LDAP
* Thu Jun 30 2011 Stephen Gallagher <sgallagh(a)redhat.com> - 1.5.9-1
- New upstream release 1.5.9
-
https://fedorahosted.org/sssd/wiki/Releases/Notes-1.5.9
- Support for overriding home directory, shell and primary GID locally
- Properly honor TTL values from SRV record lookups
- Support non-POSIX groups in nested group chains (for RFC2307bis LDAP
- servers)
- Properly escape IPv6 addresses in the failover code
- Do not crash if inotify fails (e.g. resource exhaustion)
- Don't add multiple TGT renewal callbacks (too many log messages)
--------------------------------------------------------------------------------
================================================================================
supybot-gribble-0.83.4.1-5.fc14 (FEDORA-2011-8968)
Cross-platform support bot based on supybot
--------------------------------------------------------------------------------
Update Information:
Here is where you
give an explanation of
your update.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #693664 - Review Request: supybot-gribble - Cross-platform support bot based
on supybot
https://bugzilla.redhat.com/show_bug.cgi?id=693664
--------------------------------------------------------------------------------
================================================================================
toothchart-0.02.0-0.1beta.fc14 (FEDORA-2011-8953)
A PHP script which graphically shows how a baby's primary teeth have erupted
--------------------------------------------------------------------------------
Update Information:
* New package: toothchart
- A PHP script which graphically shows how a baby's primary teeth have erupted
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #716352 - Review Request: toothchart - A PHP script which graphically shows
how a baby's primary teeth have erupted
https://bugzilla.redhat.com/show_bug.cgi?id=716352
--------------------------------------------------------------------------------
================================================================================
wlmproxy-0.1.3-1.fc14 (FEDORA-2011-8959)
An advanced proxy for the MSN Messenger protocol
--------------------------------------------------------------------------------
Update Information:
This release fixes a bug regarding use of strstr() on evbuffers.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jun 30 2011 William Lima <wlima(a)primate.com.br> - 0.1.3-1
- Update to 0.1.3
--------------------------------------------------------------------------------