[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

Fedora EPEL 5 updates-testing report



The following Fedora EPEL 5 Security updates need testing:

    https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-6072/lighttpd-1.4.31-1.el5
    https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5630/bugzilla-3.2.10-5.el5
    https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-6223/gajim-0.12.5-1.el5.2
    https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-6229/mosh-1.2.2-1.el5


The following builds have been pushed to Fedora EPEL 5 updates-testing

    NetworkManager-openconnect-0.8.6.0-2.el5
    gajim-0.12.5-1.el5.2
    jna-3.4.0-4.el5
    lis-1.2.66-1.el5
    mosh-1.2.2-1.el5
    myproxy-5.8-1.el5
    openconnect-4.00-3.el5
    pcp-3.6.3-1.el5.2
    python-httplib2-0.7.4-4.el5
    salt-0.10.1-1.el5

Details about builds:


================================================================================
 NetworkManager-openconnect-0.8.6.0-2.el5 (FEDORA-EPEL-2012-6231)
 NetworkManager VPN integration for openconnect
--------------------------------------------------------------------------------
Update Information:

This new package adds support for the Cisco AnyConnect VPN protocol in NetworkManager.

Note that due to bug #489114 you will need to reboot before NetworkManager will see the new plugin.
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #821514 - Package NetworkManager-openconnect for epel 6
        https://bugzilla.redhat.com/show_bug.cgi?id=821514
--------------------------------------------------------------------------------


================================================================================
 gajim-0.12.5-1.el5.2 (FEDORA-EPEL-2012-6223)
 Jabber client written in PyGTK
--------------------------------------------------------------------------------
Update Information:

Fixes two security bugs. Avoids a third bug by disabling the latex plugin.
--------------------------------------------------------------------------------
ChangeLog:

* Wed Jun 20 2012 Michal Schmidt <mschmidt redhat com> 0.12.5-1.el5.2
- Two security fixes picked from el6:
- CVE-2012-2085
- CVE-2012-2086
- disabled latex plugin to avoid CVE-2012-2093
* Tue Oct 27 2009 Michal Schmidt <mschmidt redhat com> 0.12.5-1.el5.1
- Fix NetworkManager feature (+ gajim-dbus-python-0.7-compat.diff)
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #833483 - CVE-2012-2085 gajim: Execute command helper improperly sanitizing 'command' argument, leading to remote code execution
        https://bugzilla.redhat.com/show_bug.cgi?id=833483
  [ 2 ] Bug #833484 - CVE-2012-2086 gajim: SQL injection due improper sanitization of conversation logs
        https://bugzilla.redhat.com/show_bug.cgi?id=833484
--------------------------------------------------------------------------------


================================================================================
 jna-3.4.0-4.el5 (FEDORA-EPEL-2012-6222)
 Pure Java access to native libraries
--------------------------------------------------------------------------------
Update Information:

maven bugfix
--------------------------------------------------------------------------------
ChangeLog:

* Wed Jun 20 2012 Levente Farkas <lfarkas lfarkas org> - 3.4.0-4
- fix #833786 by Mary Ellen Foster
* Wed Mar 14 2012 Juan Hernandez <juan hernandez redhat com> - 3.4.0-3
- Generate correctly the maven dependencies map (#)
* Sun Mar 11 2012 Ville Skyttä <ville skytta iki fi> - 3.4.0-2
- Don't strip binaries too early, build with $RPM_LD_FLAGS (#802020).
* Wed Mar  7 2012 Levente Farkas <lfarkas lfarkas org> - 3.4.0-1
- Update to 3.4.0
* Fri Jan 13 2012 Fedora Release Engineering <rel-eng lists fedoraproject org> - 3.2.7-13
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
* Wed Feb  9 2011 Fedora Release Engineering <rel-eng lists fedoraproject org> - 3.2.7-12
- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
* Thu Dec  9 2010 Ville Skyttä <ville skytta iki fi> - 3.2.7-11
- Drop dependency on main package from -javadoc.
- Add license to -javadoc, and OTHERS and TODO to main package docs.
- Install javadocs and jars unversioned.
- Fix release-notes.html permissions.
- Make -javadoc and -contrib noarch where available.
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #833786 - Update maven depmap usage (patch included)
        https://bugzilla.redhat.com/show_bug.cgi?id=833786
--------------------------------------------------------------------------------


================================================================================
 lis-1.2.66-1.el5 (FEDORA-EPEL-2012-6227)
 A library for solving linear equations and eigenvalue problems
--------------------------------------------------------------------------------
Update Information:

Update to 1.2.66.
--------------------------------------------------------------------------------
ChangeLog:

* Wed Jun 20 2012 Jussi Lehtola <jussilehtola fedoraproject org> - 1.2.66-1
- Update to 1.2.66.
* Fri Jan 13 2012 Fedora Release Engineering <rel-eng lists fedoraproject org> - 1.2.58-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
* Tue Nov 22 2011 Jussi Lehtola <jussilehtola fedoraproject org> - 1.2.58-1
- Update to 1.2.58.
* Tue Nov  8 2011 Jussi Lehtola <jussilehtola fedoraproject org> - 1.2.56-1
- Update to 1.2.56.
* Wed Nov  2 2011 Jussi Lehtola <jussilehtola fedoraproject org> - 1.2.54-1
- Update to 1.2.54.
--------------------------------------------------------------------------------


================================================================================
 mosh-1.2.2-1.el5 (FEDORA-EPEL-2012-6229)
 Mobile shell that supports roaming and intelligent local echo
--------------------------------------------------------------------------------
Update Information:

Update to mosh 1.2.2
--------------------------------------------------------------------------------
ChangeLog:

* Wed Jun 13 2012 Alexander Chernyakhovsky <achernya mit edu> - 1.2.2-1
- Update to mosh 1.2.2
* Sat Apr 28 2012 Alexander Chernyakhovsky <achernya mit edu> - 1.2-2
- Add -g and -O2 CFLAGS
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #823943 - CVE-2012-2385 mosh: mosh server DoS (long loop) due improper parsing of terminal parameters in terminal dispatcher
        https://bugzilla.redhat.com/show_bug.cgi?id=823943
--------------------------------------------------------------------------------


================================================================================
 myproxy-5.8-1.el5 (FEDORA-EPEL-2012-6208)
 Manage X.509 Public Key Infrastructure (PKI) security credentials
--------------------------------------------------------------------------------
Update Information:


Version 5.8:
* fixes for myproxy-server VOMS attribute support: API updates for libvomsapi, fixes for FQAN regex matching
* fix for myproxy-server "Failed to load sub-CA certs from file" error when using certificate_issuer_subca_certfile (https://bugzilla.mcs.anl.gov/globus/show_bug.cgi?id=7259)
* update $GLOBUS_LOCATION paths for GT 5.2 in etc.init.d.myproxy

Version 5.7:
* add IPv6 support (https://bugzilla.mcs.anl.gov/globus/show_bug.cgi?id=7252)
* update configure script for platforms where pidfile_open is defined in libbsd
* support limited proxy certificates in myproxy-logon -voms by passing -limited option to voms-proxy-init as needed (https://bugzilla.mcs.anl.gov/globus/show_bug.cgi?id=7250)
* add support for TLS 1.1 and TLS 1.2 using OpenSSL 1.0.1 and later

--------------------------------------------------------------------------------
ChangeLog:

* Thu Jun 21 2012 Steve Traylen <steve traylen cern ch> - 5.8-1
- Update to 5.8, source tar ball name change, drop 
  myproxy-ssl1-tls.patch and myproxy-ssl1-2048bits.patch
  since upstream now.
* Tue May 15 2012 Steve Traylen <steve traylen cern ch> - 5.6-4
- Add myproxy-ssl1-tls.patch and myproxy-ssl1-2048bits.patch.
--------------------------------------------------------------------------------


================================================================================
 openconnect-4.00-3.el5 (FEDORA-EPEL-2012-6220)
 Open client for Cisco AnyConnect VPN
--------------------------------------------------------------------------------
Update Information:

OpenConnect is a Linux cient for the Cisco Anyconnect VPN
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #821512 - Package openconnect for epel6
        https://bugzilla.redhat.com/show_bug.cgi?id=821512
--------------------------------------------------------------------------------


================================================================================
 pcp-3.6.3-1.el5.2 (FEDORA-EPEL-2012-6207)
 System-level performance monitoring and performance management
--------------------------------------------------------------------------------
Update Information:

Remove pcp-import-sheet2pcp subpackage due to missing dependencies and fix build for s390x.
--------------------------------------------------------------------------------
ChangeLog:

* Thu Jun 21 2012 Mark Goodwin <mgoodwin redhat com>
- remove pcp-import-sheet2pcp subpackage due to missing deps (BZ 830923) - 3.6.3-1.2
* Fri May 18 2012 Dan Horák <dan[at]danny.cz> - 3.6.3-1.1
- fix build on s390x
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #754678 - f16 pcp-import-sheet2pcp requires perl(Spreadsheet::Read)
        https://bugzilla.redhat.com/show_bug.cgi?id=754678
--------------------------------------------------------------------------------


================================================================================
 python-httplib2-0.7.4-4.el5 (FEDORA-EPEL-2012-6221)
 A comprehensive HTTP client library
--------------------------------------------------------------------------------
Update Information:

Fixed: 
 + Bug 804879 - python-httplib2 0.7.0 should switch to use system cacerts
 + Bug 832344 - Certification validation fails due to multiple 'dns' entries in subjectAltName (which is also google issue 208)
--------------------------------------------------------------------------------
ChangeLog:

* Fri Jun 22 2012 Ding-Yi Chen <dchen at redhat.com> - 0.7.4-4
- Unify the spec file between EPEL and Fedora.
* Thu Jun 21 2012 Ding-Yi Chen <dchen at redhat.com> - 0.7.4-3
- Applied patch suggested by richardfearn gmail com regarding issue 208
- Fixed: Bug 832344 - Certification validation fails due to multiple 'dns' entries in subjectAltName
* Fri Jun  1 2012 Ding-Yi Chen <dchen at redhat.com> - 0.7.4-2
- Upstream update for Fedora
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #804879 - python-httplib2 0.7.0 should switch to use system cacerts
        https://bugzilla.redhat.com/show_bug.cgi?id=804879
  [ 2 ] Bug #832344 - Certification validation fails due to multiple 'dns' entries in subjectAltName
        https://bugzilla.redhat.com/show_bug.cgi?id=832344
--------------------------------------------------------------------------------


================================================================================
 salt-0.10.1-1.el5 (FEDORA-EPEL-2012-6226)
 A parallel remote execution system
--------------------------------------------------------------------------------
Update Information:

Update to 0.10.1
--------------------------------------------------------------------------------
ChangeLog:

* Sat Jun 16 2012 Clint Savage <herlo1 gmail com> - 0.10.1-1
- Moved to upstream release 0.10.1
--------------------------------------------------------------------------------



[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]