Fedora EPEL 5 updates-testing report

updates at fedoraproject.org updates at fedoraproject.org
Sat Jul 21 00:23:50 UTC 2012 

The following Fedora EPEL 5 Security updates need testing:

    https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-6477/dropbear-0.55-1.el5
    https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-6419/nsd-3.2.12-1.el5
    https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-6441/puppet-2.6.17-2.el5
    https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-6383/raptor-1.4.16-3.el5
    https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-6464/bacula-2.4.4-6.el5,bacula-docs-2.4.4-4.el5
    https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5630/bugzilla-3.2.10-5.el5


The following builds have been pushed to Fedora EPEL 5 updates-testing

    bacula-2.4.4-6.el5
    bacula-docs-2.4.4-4.el5
    cloud-init-0.6.3-0.9.bzr532.el5
    cmake-fedora-1.0.0-1.el5
    dropbear-0.55-1.el5
    unzoo-4.4-7.el5

Details about builds:


================================================================================
 bacula-2.4.4-6.el5 (FEDORA-EPEL-2012-6464)
 Cross platform network backup for Linux, Unix, Mac and Windows
--------------------------------------------------------------------------------
Update Information:

SPEC file changes and cleanup, removed useless manual and examples, split off docs subpackage making it noarch, SysV init scripts cleanup, build requirements fixed
--------------------------------------------------------------------------------
ChangeLog:

* Thu Jul 19 2012 Simone Caronni <negativo17 at gmail.com> 2.4.4-6
- Drop examples (rhbz#475469).
* Thu Jul 19 2012 Simone Caronni <negativo17 at gmail.com> 2.4.4-5
- Spool directory owned only by common subpackage (rhbz#718299).
- Backport patch from Bacula 3.0.2 to fix logwatch (rhbz#643932).
* Wed Jul 18 2012 Simone Caronni <negativo17 at gmail.com> 2.4.4-4
- Remove fedora-usermgmt entirely, see thread at:
  http://lists.fedoraproject.org/pipermail/packaging/2011-December/008034.html
- Add devel subpackage.
- Remove docs subpackage.
- Rename patches and delete unused ones from git.
- Remove conditionals for sqlite versions as this package will die with RHEL 5.
* Wed Jul 18 2012 Simone Caronni <negativo17 at gmail.com> 2.4.4-3
- Removed commented stuff that will never come back.
- Cleaned up init files.
- Get rid of useless defines.
- Spec file formatting.
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #475469 - CVE-2008-5373 bacula-common: Insecure temporary file use in autochangers (symlink attack)
        https://bugzilla.redhat.com/show_bug.cgi?id=475469
--------------------------------------------------------------------------------


================================================================================
 bacula-docs-2.4.4-4.el5 (FEDORA-EPEL-2012-6464)
 Bacula documentation
--------------------------------------------------------------------------------
Update Information:

SPEC file changes and cleanup, removed useless manual and examples, split off docs subpackage making it noarch, SysV init scripts cleanup, build requirements fixed
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #475469 - CVE-2008-5373 bacula-common: Insecure temporary file use in autochangers (symlink attack)
        https://bugzilla.redhat.com/show_bug.cgi?id=475469
--------------------------------------------------------------------------------


================================================================================
 cloud-init-0.6.3-0.9.bzr532.el5 (FEDORA-EPEL-2012-6478)
 Cloud instance init scripts
--------------------------------------------------------------------------------
Update Information:

Initial EPEL5 version
--------------------------------------------------------------------------------


================================================================================
 cmake-fedora-1.0.0-1.el5 (FEDORA-EPEL-2012-6475)
 CMake helper modules for fedora developers
--------------------------------------------------------------------------------
Update Information:

- Greatly simplified the modules design and usage.
- Release version are now defined in cmake-fedora.conf
for easy maintenance.
- Fix the MANAGE_MESSAGE_LEVEL
- koji scratch builds are run only once before tagging.
- CVS support is removed.
- New command: koji-build-scratch for scratch build on all supported
releases.
- New module: ManageTarget
- New function: SETTING_STRING_GET_VARIABLE
- New macro: ADD_CUSTOM_TARGET_COMMAND
- Macros changed behavior:
MANAGE_ZANATA: Arguments are changed.
- Target changed: changelog_update are now separate as:
+ changelog_prev_update: Update ChangeLog.prev
+ rpm_changelog_prev_update: Update RPM-ChangeLog.prev
- Command renamed:
+ cmake-fedora-newprj.sh to cmake-fedora-newprj
- Module renamed:
+ ManageReleaseOnFedora to ManageReleaseFedora
+ ManageMaintainerTargets to ManageUpload
+ PackSource to ManageArchive
+ PackRPM to ManageRPM
+ UseGConf to ManageGConf
+ UseDoxygen to ManageAPIDoc
- Function renamed:
+ LOAD_RELEASE_FILE to RELEASE_NOTES_READ_FILE
- Macro renamed:
+ PACK_SOURCE to PACK_SOURCE_ARCHIVE
+ USE_MOCK to RPM_MOCK_BUILD
+ USE_DOXYGEN to MANAGE_APIDOC_DOXYGEN
+ USE_GETTEXT to MANAGE_GETTEXT
+ USE_ZANATA to MANAGE_ZANATA
- Variable renamed: PACK_SOURCE_IGNORE_FILES to SOURCE_ARCHIVE_IGNORE_FILES
- RELEASE_ON_FEDORA: support new tags: "fedora" for current fedora,
and "epel" for current epel.
- ChangeLog generation rewritten, target version_check no longer need.
- Removed target: version_check
- Variable Removed:
FEDORA_NEXT_RELEASE
FEDORA_NEXT_RELEASE_TAGS
FEDORA_LATEST_RELEASE
FEDORA_PREVIOUS_RELEASE
--------------------------------------------------------------------------------
ChangeLog:

* Thu Jul 19 2012 Ding-Yi Chen <dchen at redhat.com> - 1.0.0-1
- Greatly simplified the modules design and usage.
- Release version are now defined in cmake-fedora.conf
  for easy maintenance.
- Fix the MANAGE_MESSAGE_LEVEL
- koji scratch builds are run only once before tagging.
- CVS support is removed.
- New command: koji-build-scratch for scratch build on all supported
  releases.
- New module: ManageTarget
- New function: SETTING_STRING_GET_VARIABLE
- New macro: ADD_CUSTOM_TARGET_COMMAND
- Macros changed behavior:
  MANAGE_ZANATA: Arguments are changed.
- Target changed: changelog_update are now separate as:
  + changelog_prev_update: Update ChangeLog.prev
  + rpm_changelog_prev_update: Update RPM-ChangeLog.prev
- Command renamed:
  + cmake-fedora-newprj.sh to cmake-fedora-newprj
- Module renamed:
  + ManageReleaseOnFedora to ManageReleaseFedora
  + ManageMaintainerTargets to ManageUpload
  + PackSource to ManageArchive
  + PackRPM to ManageRPM
  + UseGConf to ManageGConf
  + UseDoxygen to ManageAPIDoc
- Function renamed:
  + LOAD_RELEASE_FILE to RELEASE_NOTES_READ_FILE
- Macro renamed:
  + PACK_SOURCE to PACK_SOURCE_ARCHIVE
  + USE_MOCK to RPM_MOCK_BUILD
  + USE_DOXYGEN to MANAGE_APIDOC_DOXYGEN
  + USE_GETTEXT to MANAGE_GETTEXT
  + USE_ZANATA to MANAGE_ZANATA
- Variable renamed: PACK_SOURCE_IGNORE_FILES to SOURCE_ARCHIVE_IGNORE_FILES
- RELEASE_ON_FEDORA: support new tags: "fedora" for current fedora,
  and "epel" for current epel.
- ChangeLog generation rewritten, target version_check no longer need.
- Removed target: version_check
- Variable Removed:
  FEDORA_NEXT_RELEASE
  FEDORA_NEXT_RELEASE_TAGS
  FEDORA_LATEST_RELEASE
  FEDORA_PREVIOUS_RELEASE
--------------------------------------------------------------------------------


================================================================================
 dropbear-0.55-1.el5 (FEDORA-EPEL-2012-6477)
 SSH2 server and client
--------------------------------------------------------------------------------
Update Information:

Update to 0.55, fix CVE-2012-0920.
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #783776 - 2011.54 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=783776
  [ 2 ] Bug #800657 - CVE-2012-0920 dropbear: use-after-free vulnerability [epel-6]
        https://bugzilla.redhat.com/show_bug.cgi?id=800657
  [ 3 ] Bug #800656 - CVE-2012-0920 dropbear: use-after-free vulnerability [fedora-all]
        https://bugzilla.redhat.com/show_bug.cgi?id=800656
--------------------------------------------------------------------------------


================================================================================
 unzoo-4.4-7.el5 (FEDORA-EPEL-2012-6463)
 ZOO archive extractor
--------------------------------------------------------------------------------
Update Information:

Add unzoo to EPEL-6
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #837933 - Please build latest unzoo for EPEL 5 and 6
        https://bugzilla.redhat.com/show_bug.cgi?id=837933
--------------------------------------------------------------------------------

More information about the epel-devel-list mailing list