[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

Fedora EPEL 6 updates-testing report



The following Fedora EPEL 6 Security updates need testing:

    https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-0423/fail2ban-0.8.4-28.el6
    https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-0728/libpng10-1.0.58-1.el6
    https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-0349/bugzilla-3.4.14-1.el6
    https://admin.fedoraproject.org/updates/FEDORA-EPEL-2011-4701/supybot-gribble-0.83.4.1-10.el6


The following builds have been pushed to Fedora EPEL 6 updates-testing

    emacs-color-theme-6.6.0-5.el6
    gccxml-0.9.0-0.10.20120309.el6
    libpng10-1.0.58-1.el6
    muParser-2.2.2-1.el6
    php-pecl-gmagick-1.1.0-0.2.RC2.el6
    racoon2-20100526a-17.el6

Details about builds:


================================================================================
 emacs-color-theme-6.6.0-5.el6 (FEDORA-EPEL-2012-0731)
 Color themes for Emacs
--------------------------------------------------------------------------------
Update Information:

emacs-color-theme doesn't need emacs-X11
--------------------------------------------------------------------------------
ChangeLog:

* Sat Jan 21 2012 Arun SAG <sagarun gmail com> - 6.6.0-5
- Fix Bug rhbz#783003: emacs-color-theme requires emacs-x11 won't settle for emacs-nox
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #783003 - emacs-color-them requires emacs, won't settle for emacs-nox
        https://bugzilla.redhat.com/show_bug.cgi?id=783003
--------------------------------------------------------------------------------


================================================================================
 gccxml-0.9.0-0.10.20120309.el6 (FEDORA-EPEL-2012-0730)
 XML output extension to GCC
--------------------------------------------------------------------------------
Update Information:

Update to new cvs snapshot. Adds support files fro gcc 4.7.
--------------------------------------------------------------------------------
ChangeLog:

* Sat Mar 10 2012 Mattias Ellert <mattias ellert fysast uu se> - 0.9.0-0.10.20120309
- Updated cvs snapshot
- Now contains support files for gcc 4.7
* Tue Feb 28 2012 Fedora Release Engineering <rel-eng lists fedoraproject org> - 0.9.0-0.9.20111218
- Rebuilt for c++ ABI breakage
* Fri Jan 13 2012 Fedora Release Engineering <rel-eng lists fedoraproject org> - 0.9.0-0.8.20111218
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
--------------------------------------------------------------------------------


================================================================================
 libpng10-1.0.58-1.el6 (FEDORA-EPEL-2012-0728)
 Old version of libpng, needed to run old binaries
--------------------------------------------------------------------------------
Update Information:

A type conversion flaw leading to an out-of-bounds heap buffer read was found in the way libpng10, a library of functions for manipulation PNG image format files, performed expansion of certain iCCP, iTXt, and zTXt PNG image file chunks.

A remote attacker could provide a specially-crafted Portable Network Graphics (PNG) image file, which once opened in an application, linked against libpng10, could lead to denial of service or in some cases, execution of arbitrary code without permission of the user running such an application.
--------------------------------------------------------------------------------
ChangeLog:

* Fri Mar  9 2012 Paul Howarth <paul city-fan org> 1.0.58-1
- update to 1.0.58
  - fix bug with png_handle_hIST with odd chunk length
  - fix incorrect type (int copy should be png_size_t copy) in png_inflate()
    (CVE-2011-3045)
  - fix off-by-one bug in png_handle_sCAL() when using fixed point arithmetic,
    causing out-of-bounds read in png_set_sCAL() because of failure to copy
    the string terminators
  - remove the png_free() of unused png_ptr->current_text from pngread.c
  - remove all of the assembler code from pnggccrd.c and just "return 2;"
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #799000 - CVE-2011-3045 libpng: buffer overflow in png_inflate caused by invalid type conversions
        https://bugzilla.redhat.com/show_bug.cgi?id=799000
--------------------------------------------------------------------------------


================================================================================
 muParser-2.2.2-1.el6 (FEDORA-EPEL-2012-0729)
 A fast math parser library
--------------------------------------------------------------------------------
Update Information:

Updated muParser to latest upstream release.
--------------------------------------------------------------------------------
ChangeLog:

* Fri Mar  9 2012 Eric Smith <eric brouhaha com> - 2.2.2-1
- Update to 2.2.2
- Upstream source distribution is now a .zip file
- Upstream version number policy is now that the release version matches
  the .so versioning
- Clean up spec to modern standards (no clean section or BuildRoot tag, etc.)
--------------------------------------------------------------------------------


================================================================================
 php-pecl-gmagick-1.1.0-0.2.RC2.el6 (FEDORA-EPEL-2012-0734)
 Provides a wrapper to the GraphicsMagick library
--------------------------------------------------------------------------------
Update Information:

Update to 1.1.0RC2 by request bz#751376
--------------------------------------------------------------------------------
ChangeLog:

* Sat Mar 10 2012 Pavel Alexeev <Pahan Hubbitus info> - 1.1.0-0.2.RC2
- Skip %check on epel5.
* Sat Mar 10 2012 Pavel Alexeev <Pahan Hubbitus info> - 1.1.0-0.1.RC2
- Update to 1.1.0RC2 by request bz#751376
* Thu Jan 19 2012 Remi Collet <remi fedoraproject org> - 1.0.10-0.1.b1
- update to 1.0.10b1 for php 5.4
- add filter to avoid private-shared-object-provides
* Sat Jan 14 2012 Fedora Release Engineering <rel-eng lists fedoraproject org> - 1.0.7b1-10
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
* Mon Sep 12 2011 Pavel Alexeev <Pahan Hubbitus info> - 1.0.7b1-9
- Fix FBFS f16-17. Bz#716217
* Wed Feb  9 2011 Fedora Release Engineering <rel-eng lists fedoraproject org> - 1.0.7b1-8
- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
* Tue Aug 10 2010 Pavel Alexeev <Pahan Hubbitus info> - 1.0.7b1-7
- Update to 1.0.7b1 version due to previous mentioned bug.
* Tue Aug 10 2010 Pavel Alexeev <Pahan Hubbitus info> - 1.0.5b1-6
- Add simple %check section by suggestion from Remi Collet (http://pecl.php.net/bugs/17991).
* Mon Jul 26 2010 Pavel Alexeev <Pahan Hubbitus info> - 1.0.5b1-5
- Update to 1.0.5b1
- Add Conflicts: php-pecl-imagick - BZ#559675
* Sun Jan 31 2010 Pavel Alexeev <Pahan Hubbitus info> - 1.0.3b3-4
- Update to 1.0.3b3
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #751376 - magick/semaphore.c:525: LockSemaphoreInfo: Assertion `semaphore_info != (SemaphoreInfo *)
        https://bugzilla.redhat.com/show_bug.cgi?id=751376
--------------------------------------------------------------------------------


================================================================================
 racoon2-20100526a-17.el6 (FEDORA-EPEL-2012-0735)
 An implementation of key management system for IPsec
--------------------------------------------------------------------------------
Update Information:

Fix conflict with ike package.
An implementation of IKEv1 and IKEv2 for IPsec
Racoon2 now uses only one initscript.
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #797810 - racoon2 : Conflicts with ike
        https://bugzilla.redhat.com/show_bug.cgi?id=797810
  [ 2 ] Bug #752223 - Review Request: racoon2 - an implementation of key management system for IPsec
        https://bugzilla.redhat.com/show_bug.cgi?id=752223
--------------------------------------------------------------------------------



[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]