Fedora EPEL 6 updates-testing report
updates at fedoraproject.org
updates at fedoraproject.org
Sat Mar 10 17:33:20 UTC 2012
The following Fedora EPEL 6 Security updates need testing:
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-0423/fail2ban-0.8.4-28.el6
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-0728/libpng10-1.0.58-1.el6
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-0349/bugzilla-3.4.14-1.el6
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2011-4701/supybot-gribble-0.83.4.1-10.el6
The following builds have been pushed to Fedora EPEL 6 updates-testing
emacs-color-theme-6.6.0-5.el6
gccxml-0.9.0-0.10.20120309.el6
libpng10-1.0.58-1.el6
muParser-2.2.2-1.el6
php-pecl-gmagick-1.1.0-0.2.RC2.el6
racoon2-20100526a-17.el6
Details about builds:
================================================================================
emacs-color-theme-6.6.0-5.el6 (FEDORA-EPEL-2012-0731)
Color themes for Emacs
--------------------------------------------------------------------------------
Update Information:
emacs-color-theme doesn't need emacs-X11
--------------------------------------------------------------------------------
ChangeLog:
* Sat Jan 21 2012 Arun SAG <sagarun at gmail.com> - 6.6.0-5
- Fix Bug rhbz#783003: emacs-color-theme requires emacs-x11 won't settle for emacs-nox
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #783003 - emacs-color-them requires emacs, won't settle for emacs-nox
https://bugzilla.redhat.com/show_bug.cgi?id=783003
--------------------------------------------------------------------------------
================================================================================
gccxml-0.9.0-0.10.20120309.el6 (FEDORA-EPEL-2012-0730)
XML output extension to GCC
--------------------------------------------------------------------------------
Update Information:
Update to new cvs snapshot. Adds support files fro gcc 4.7.
--------------------------------------------------------------------------------
ChangeLog:
* Sat Mar 10 2012 Mattias Ellert <mattias.ellert at fysast.uu.se> - 0.9.0-0.10.20120309
- Updated cvs snapshot
- Now contains support files for gcc 4.7
* Tue Feb 28 2012 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 0.9.0-0.9.20111218
- Rebuilt for c++ ABI breakage
* Fri Jan 13 2012 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 0.9.0-0.8.20111218
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
libpng10-1.0.58-1.el6 (FEDORA-EPEL-2012-0728)
Old version of libpng, needed to run old binaries
--------------------------------------------------------------------------------
Update Information:
A type conversion flaw leading to an out-of-bounds heap buffer read was found in the way libpng10, a library of functions for manipulation PNG image format files, performed expansion of certain iCCP, iTXt, and zTXt PNG image file chunks.
A remote attacker could provide a specially-crafted Portable Network Graphics (PNG) image file, which once opened in an application, linked against libpng10, could lead to denial of service or in some cases, execution of arbitrary code without permission of the user running such an application.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Mar 9 2012 Paul Howarth <paul at city-fan.org> 1.0.58-1
- update to 1.0.58
- fix bug with png_handle_hIST with odd chunk length
- fix incorrect type (int copy should be png_size_t copy) in png_inflate()
(CVE-2011-3045)
- fix off-by-one bug in png_handle_sCAL() when using fixed point arithmetic,
causing out-of-bounds read in png_set_sCAL() because of failure to copy
the string terminators
- remove the png_free() of unused png_ptr->current_text from pngread.c
- remove all of the assembler code from pnggccrd.c and just "return 2;"
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #799000 - CVE-2011-3045 libpng: buffer overflow in png_inflate caused by invalid type conversions
https://bugzilla.redhat.com/show_bug.cgi?id=799000
--------------------------------------------------------------------------------
================================================================================
muParser-2.2.2-1.el6 (FEDORA-EPEL-2012-0729)
A fast math parser library
--------------------------------------------------------------------------------
Update Information:
Updated muParser to latest upstream release.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Mar 9 2012 Eric Smith <eric at brouhaha.com> - 2.2.2-1
- Update to 2.2.2
- Upstream source distribution is now a .zip file
- Upstream version number policy is now that the release version matches
the .so versioning
- Clean up spec to modern standards (no clean section or BuildRoot tag, etc.)
--------------------------------------------------------------------------------
================================================================================
php-pecl-gmagick-1.1.0-0.2.RC2.el6 (FEDORA-EPEL-2012-0734)
Provides a wrapper to the GraphicsMagick library
--------------------------------------------------------------------------------
Update Information:
Update to 1.1.0RC2 by request bz#751376
--------------------------------------------------------------------------------
ChangeLog:
* Sat Mar 10 2012 Pavel Alexeev <Pahan at Hubbitus.info> - 1.1.0-0.2.RC2
- Skip %check on epel5.
* Sat Mar 10 2012 Pavel Alexeev <Pahan at Hubbitus.info> - 1.1.0-0.1.RC2
- Update to 1.1.0RC2 by request bz#751376
* Thu Jan 19 2012 Remi Collet <remi at fedoraproject.org> - 1.0.10-0.1.b1
- update to 1.0.10b1 for php 5.4
- add filter to avoid private-shared-object-provides
* Sat Jan 14 2012 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 1.0.7b1-10
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
* Mon Sep 12 2011 Pavel Alexeev <Pahan at Hubbitus.info> - 1.0.7b1-9
- Fix FBFS f16-17. Bz#716217
* Wed Feb 9 2011 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 1.0.7b1-8
- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
* Tue Aug 10 2010 Pavel Alexeev <Pahan at Hubbitus.info> - 1.0.7b1-7
- Update to 1.0.7b1 version due to previous mentioned bug.
* Tue Aug 10 2010 Pavel Alexeev <Pahan at Hubbitus.info> - 1.0.5b1-6
- Add simple %check section by suggestion from Remi Collet (http://pecl.php.net/bugs/17991).
* Mon Jul 26 2010 Pavel Alexeev <Pahan at Hubbitus.info> - 1.0.5b1-5
- Update to 1.0.5b1
- Add Conflicts: php-pecl-imagick - BZ#559675
* Sun Jan 31 2010 Pavel Alexeev <Pahan at Hubbitus.info> - 1.0.3b3-4
- Update to 1.0.3b3
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #751376 - magick/semaphore.c:525: LockSemaphoreInfo: Assertion `semaphore_info != (SemaphoreInfo *)
https://bugzilla.redhat.com/show_bug.cgi?id=751376
--------------------------------------------------------------------------------
================================================================================
racoon2-20100526a-17.el6 (FEDORA-EPEL-2012-0735)
An implementation of key management system for IPsec
--------------------------------------------------------------------------------
Update Information:
Fix conflict with ike package.
An implementation of IKEv1 and IKEv2 for IPsec
Racoon2 now uses only one initscript.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #797810 - racoon2 : Conflicts with ike
https://bugzilla.redhat.com/show_bug.cgi?id=797810
[ 2 ] Bug #752223 - Review Request: racoon2 - an implementation of key management system for IPsec
https://bugzilla.redhat.com/show_bug.cgi?id=752223
--------------------------------------------------------------------------------
More information about the epel-devel-list
mailing list