Fedora EPEL 6 updates-testing report

updates at fedoraproject.org updates at fedoraproject.org
Fri Aug 5 08:33:36 UTC 2011 

The following Fedora EPEL 6 Security updates need testing:

    https://admin.fedoraproject.org/updates/bugzilla-3.4.11-1.el6
    https://admin.fedoraproject.org/updates/rt3-3.8.10-2.el6.1
    https://admin.fedoraproject.org/updates/clamav-0.97.2-5.el6
    https://admin.fedoraproject.org/updates/drupal7-7.6-1.el6
    https://admin.fedoraproject.org/updates/cgit-0.9.0.2-2.el6
    https://admin.fedoraproject.org/updates/glpi-0.78.5-2.svn14966.el6
    https://admin.fedoraproject.org/updates/phpMyAdmin-3.4.3.2-1.el6
    https://admin.fedoraproject.org/updates/p7zip-9.20.1-2.el6
    https://admin.fedoraproject.org/updates/erlang-R14B-02.1.el6


The following builds have been pushed to Fedora EPEL 6 updates-testing

    389-admin-1.1.21-1.el6
    askbot-0.7.14-1.el6
    be-1.0.1-2.el6
    clamav-0.97.2-5.el6
    django-avatar-2.0a1-5.20110709git097ed8.el6
    jemalloc-2.2.2-1.el6
    orbited-0.7.10-6.el6
    pam_afs_session-2.5-1.el6
    python-confparser-1.0.1-5.el6
    python-taboot-0.3.1-1.el6
    spatialindex-1.6.1-3.el6

Details about builds:


================================================================================
 389-admin-1.1.21-1.el6 (FEDORA-EPEL-2011-4031)
 389 Administration Server (admin)
--------------------------------------------------------------------------------
Update Information:

bugfix
several tls/ssl and migration bug fixes
look for separate openldap ldif library
skip rebranding current brand - add support for different skins
The 1.1.17 release
--------------------------------------------------------------------------------
ChangeLog:

* Tue Aug  2 2011 Rich Megginson <rmeggins at redhat.com> - 1.1.21-1
- Bug 476925 - Admin Server: Do not allow 8-bit passwords for the admin user
* Tue Jul  5 2011 Rich Megginson <rmeggins at redhat.com> - 1.1.20-1
- Bug 719056 - migrate-ds-admin.pl needs to update SELinux policy
- Bug 718285 - AdminServer should use "service" command instead of start/stop/restart scripts
- Bug 718079 - Perl errors when running migrate-ds-admin.pl
- Bug 713000 - Migration stops if old admin server cannot be stopped
- added tests for the security cgi
- fix typo in NSS_Shutdown warning message
- better NSS error handling - reduce memory leaks
- Bug 710372 - Not able to open the Manage Certificate from DS-console
* Tue Jun 28 2011 Rich Megginson <rmeggins at redhat.com> - 1.1.19-1
- look for separate openldap ldif library
* Tue Jun 21 2011 Rich Megginson <rmeggins at redhat.com> - 1.1.18-1
- skip rebranding current brand
- support for skins
* Fri May 13 2011 Rich Megginson <rmeggins at redhat.com> - 1.1.17-1
- 1.1.17
- support "in-place" upgrade and rebranding from Red Hat to 389
- many fixes for coverity issues
* Tue Mar 29 2011 Rich Megginson <rmeggins at redhat.com> - 1.1.16-1
- 389-admin-1.1.16
- Bug 476925 - Admin Server: Do not allow 8-bit passwords for the admin user
- Bug 614690 - Don't use exec to call genrb
- Bug 158926 - Unable to install CA certificate when using
-     hardware token ( LunaSA )
- Bug 211296 - Clean up all HTML pages (Admin Express, Repl Monitor, etc)
* Wed Feb 23 2011 Rich Megginson <rmeggins at redhat.com> - 1.1.15-1
- 1.1.15 release - git tag 389-admin-1.1.15
- Bug 493424 - remove unneeded modules for admin server apache config
- Bug 618897 - Wrong permissions when creating instance from Console
- Bug 672468 - Don't use empty path elements in LD_LIBRARY_PATH
- Bug 245278 - Changing to a password with a single quote does not work
- Bug 604881 - admin server log files have incorrect permissions/ownerships
- Bug 387981 - plain files can be chosen on the Restore Directory dialog
- Bug 668950 - Add posix group support to Console
- Bug 618858 - move start-ds-admin env file into main admin server config path
- Bug 616260 - libds-admin-serv linking fails due to unresolved link-time depe
ndencies
- start-ds-admin.in -- replaced "return 1" with "exit 1"
- Bug 151705 - Need to update Console Cipher Preferences with new ciphers
- Bug 470576 - Migration could do addition checks before commiting actions
* Wed Jan  5 2011 Rich Megginson <rmeggins at redhat.com> - 1.1.14-1
- 1.1.14 release
- Bug 664671 - Admin server segfault when full SSL access (http+ldap+console) 
required
- Bug 638511 - dirsrv-admin crashes at startup with SELinux enabled
* Mon Nov 29 2010 Rich Megginson <rmeggins at redhat.com> - 1.1.13-2
- fix Conflicts for selinux policy
* Tue Nov 23 2010 Rich Megginson <rmeggins at redhat.com> - 1.1.13-1
- This is the final 1.1.13 release
- git tag 389-admin-1.1.13
- Bug 656441 - Missing library path entry causes LD_PRELOAD error
- setup-ds-admin.pl -u exits with ServerAdminID and as_uid related error
* Thu Nov 18 2010 Nathan Kinder <nkinder at redhat.com> - 1.1.12-2
- This is the final 1.1.12 release
- git tag 389-admin-1.1.12
- Corrected conflict version for selinux-policy
* Fri Nov 12 2010 Nathan Kinder <nkinder at redhat.com> - 1.1.1.12-1
- This is the final 1.1.12 release
- git tag 389-admin-1.1.12
* Fri Nov 12 2010 Nathan Kinder <nkinder at redhat.com> - 1.1.1.12-1
- Bug 648949 - Merge dirsrv and dirsrv-admin policy modules into base policy
* Tue Oct 26 2010 Rich Megginson <rmeggins at redhat.com> - 1.1.12-0.2.a2
- fix mozldap build breakage
* Tue Sep 28 2010 Rich Megginson <rmeggins at redhat.com> - 1.1.12-0.1.a1
- This is the 1.1.12 alpha 1 release - with openldap support
* Thu Aug 26 2010 Rich Megginson <rmeggins at redhat.com> - 1.1.11-1
- This is the final 1.1.11 release
* Wed Aug  4 2010 Rich Megginson <rmeggins at redhat.com> - 1.1.11-0.6.rc2
- 1.1.11.rc2 release
- git tag 389-admin-1.1.11.rc2
- Bug 594745 - Get rid of dirsrv_lib_t label
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #476925 - Admin Server: Do not allow 8-bit passwords for the admin user
        https://bugzilla.redhat.com/show_bug.cgi?id=476925
  [ 2 ] Bug #719056 - migrate-ds-admin.pl needs to update SELinux policy
        https://bugzilla.redhat.com/show_bug.cgi?id=719056
  [ 3 ] Bug #718285 - AdminServer should use "service" command instead of start/stop/restart scripts
        https://bugzilla.redhat.com/show_bug.cgi?id=718285
  [ 4 ] Bug #718079 - Perl errors when running migrate-ds-admin.pl
        https://bugzilla.redhat.com/show_bug.cgi?id=718079
  [ 5 ] Bug #713000 - Migration stops if old admin server cannot be stopped
        https://bugzilla.redhat.com/show_bug.cgi?id=713000
  [ 6 ] Bug #710372 - Not able to open the Manage Certificate from DS-console
        https://bugzilla.redhat.com/show_bug.cgi?id=710372
--------------------------------------------------------------------------------


================================================================================
 askbot-0.7.14-1.el6 (FEDORA-EPEL-2011-4030)
 Question and Answer forum
--------------------------------------------------------------------------------
Update Information:

Askbot is a question and answer forum
--------------------------------------------------------------------------------


================================================================================
 be-1.0.1-2.el6 (FEDORA-EPEL-2011-4024)
 Bugs Everywhere, a distributed bug tracker
--------------------------------------------------------------------------------
Update Information:

- Remove currently broken support for arch, hg and monotone
- Improve bzr module's version comparison
- Fix version string
- Partially enable tests

--------------------------------------------------------------------------------
ChangeLog:

* Thu Aug  4 2011 Michel Salim <salimma at fedoraproject.org> - 1.0.1-2
- Remove currently broken support for arch, hg and monotone
- Improve bzr module's version comparison
- Fix version string
- Partially enable tests
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #726637 - crash on 'be init' in mercurial repo
        https://bugzilla.redhat.com/show_bug.cgi?id=726637
--------------------------------------------------------------------------------


================================================================================
 clamav-0.97.2-5.el6 (FEDORA-EPEL-2011-4034)
 Anti-virus software
--------------------------------------------------------------------------------
Update Information:

Configure MilterSocket, PidFile and MilterSocket in clamav-milter.conf.

- updated to 0.97.2
- Build-require xz
- Handle tar.xz SOURCE0 on RHEL < 6
- CVE-2011-2721 Off-by-one error by scanning message hashes (#725694)
- include updated clamd-wrapper which get the PidFile setting from the service configuration file. 

--------------------------------------------------------------------------------
ChangeLog:

* Thu Aug  4 2011 Jan-Frode Myklebuust <janfrode at tanso.net> - 0.97.2-5
- Configure MilterSocket, PidFile and MilterSocket in clamav-milter.conf.
  (bz#727894)
* Wed Jul 27 2011 Jan-Frode Myklebuust <janfrode at tanso.net> - 0.97.2-3
- include updated clamd-wrapper which get the PidFile setting from the
  service configuration file. 
- updated to 0.97.2
- Build-require xz
- CVE-2011-2721 Off-by-one error by scanning message hashes (#725694)
* Wed Jun 29 2011 Nick Bebout <nb at fedoraproject.org> - 0.97-14
- Require /usr/sbin/sendmail instead of sendmail
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #727894 - Broken config for clamav-milter
        https://bugzilla.redhat.com/show_bug.cgi?id=727894
  [ 2 ] Bug #725695 - Clam AntiVirus: Off-by-one error by scanning message hashes [epel-all]
        https://bugzilla.redhat.com/show_bug.cgi?id=725695
--------------------------------------------------------------------------------


================================================================================
 django-avatar-2.0a1-5.20110709git097ed8.el6 (FEDORA-EPEL-2011-4025)
 A django module for handling user avatars
--------------------------------------------------------------------------------
Update Information:

requires python-imaging
A django module for handling user avatars
--------------------------------------------------------------------------------


================================================================================
 jemalloc-2.2.2-1.el6 (FEDORA-EPEL-2011-4017)
 General-purpose scalable concurrent malloc implementation
--------------------------------------------------------------------------------
Update Information:

**New upstream release**

>From the upstream announcement:

jemalloc 2.2.2 is now available, with the following changes:

Bug fixes:
* Fix a build error for --disable-tcache.
* Fix assertions in arena_purge() (for real this time).
* Add the --with-private-namespace option.  This is a workaround for symbol conflicts that can inadvertently arise when using static libraries.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Aug  1 2011 Ingvar Hagelund <ingvar at redpill-linpro.com> - 2.2.2-1
- New upstream release, closes #727103
- Updated no_pprof patch for 2.2.2
* Thu Mar 31 2011 Ingvar Hagelund <ingvar at redpill-linpro.com> - 2.2.1-1
- New upstream release
* Sun Mar 27 2011 Ingvar Hagelund <ingvar at redpill-linpro.com> - 2.2.0-1
- New upstream release
- Updated no_pprof patch for 2.2.0
--------------------------------------------------------------------------------


================================================================================
 orbited-0.7.10-6.el6 (FEDORA-EPEL-2011-4023)
 A browser(javascript)->tcp bridge
--------------------------------------------------------------------------------
Update Information:

Initial release of orbited for EL6
--------------------------------------------------------------------------------


================================================================================
 pam_afs_session-2.5-1.el6 (FEDORA-EPEL-2011-4029)
 AFS PAG and AFS tokens on login
--------------------------------------------------------------------------------
Update Information:

New upstream release. From upstream's changelog:
* Reset the SIGCHLD handler while spawning an external aklog program so that the application SIGCHLD handler isn't invoked when aklog exits. This unfortunately still means that there's a race condition that can cause children to be incorrectly handled if they exit while aklog is running, if the application's SIGCHLD handler is required. There is unfortunately no good general solution to this other than building against Heimdal and using the libkafs interface to obtain tokens instead of an external program.
--------------------------------------------------------------------------------
ChangeLog:

* Tue Aug  2 2011 Ken Dreyer <ktdreyer at ktdreyer.com> - 2.5-1
- New upstream release.
--------------------------------------------------------------------------------


================================================================================
 python-confparser-1.0.1-5.el6 (FEDORA-EPEL-2011-4021)
 A KISS python module to parse *nix config files
--------------------------------------------------------------------------------
Update Information:

updating python-confparser-1.0.1
new package
updated spec to fix EPEL5 compilation
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #725552 - Review Request: python-confparser - A KISS parse to *nix config files
        https://bugzilla.redhat.com/show_bug.cgi?id=725552
--------------------------------------------------------------------------------


================================================================================
 python-taboot-0.3.1-1.el6 (FEDORA-EPEL-2011-4018)
 Client utility for scripted multi-system administration over Func
--------------------------------------------------------------------------------
Update Information:

- Spelling & grammar fixes all around (Fixes #23) (tbielawa at redhat.com)
- Added -E flag to edit script before running (Fixes #18) (jason.detiberus at redhat.com)
- Added -p flag (acts like -n in that it checks syntax, but also prints resulting yaml to be run onscreen) (Fixes #18) (jason.detiberus at redhat.com)
- Cleanup unnecessary documentation (tbielawa at redhat.com)
- Those are just bad ideas for a project with concurrency as a selling point (Remove user input modules) (tbielawa at redhat.com)
- Simplify a little example in the docs (tbielawa at redhat.com)
- Added -C flag for Concurrency, Fixed an error when -L wasn't specified and added CLIOutput when -L is specified and logging wasn't already set (Fixes #18) (jason.detiberus at redhat.com)
- Added command line flag to add logging (Fixes #18) (jason.detiberus at redhat.com)
- Add python utility to generate a graphviz dot file of the class inheritance graph of the python source codes. (tbielawa at redhat.com)
- Add conditional Requires on python-argparse. Update README and release notes. (tbielawa at redhat.com)
- Exit/continue the main load-loop sooner so we can validate YAML scripts and not blow up when not ran on a minion/overlord (like during testing...) (tbielawa at redhat.com)
- Switched argument parsing to use argparse (jason.detiberus at redhat.com)
- Fix nagios scheduling causing log-to-file to fail. (Fixes #24) (tbielawa at redhat.com)
--------------------------------------------------------------------------------
ChangeLog:

* Thu Aug  4 2011 Tim Bielawa <tbielawa at redhat.com> 0.3.1-1
- Spelling & grammar fixes all around (Fixes #23) (tbielawa at redhat.com)
- Added -E flag to edit script before running (Fixes #18)
  (jason.detiberus at redhat.com)
- Added -p flag (acts like -n in that it checks syntax, but also prints
  resulting yaml to be run onscreen) (Fixes #18) (jason.detiberus at redhat.com)
- Cleanup unnecessary documentation (tbielawa at redhat.com)
- Those are just bad ideas for a project with concurrency as a selling point
  (Remove user input modules) (tbielawa at redhat.com)
- Simplify a little example in the docs (tbielawa at redhat.com)
- Added -C flag for Concurrency, Fixed an error when -L wasn't specified and
  added CLIOutput when -L is specified and logging wasn't already set
  (Fixes #18) (jason.detiberus at redhat.com)
- Added command line flag to add logging (Fixes #18) (jason.detiberus at redhat.com)
- Add python utility to generate a graphviz dot file of the class inheritance
  graph of the python source codes. (tbielawa at redhat.com)
- Add conditional Requires on python-argparse. Update README and release notes.
  (tbielawa at redhat.com)
- Exit/continue the main load-loop sooner so we can validate YAML scripts and
  not blow up when not ran on a minion/overlord (like during testing...)
  (tbielawa at redhat.com)
- Switched argument parsing to use argparse (jason.detiberus at redhat.com)
- Fix nagios scheduling causing log-to-file to fail. (Fixes #24)
  (tbielawa at redhat.com)
--------------------------------------------------------------------------------


================================================================================
 spatialindex-1.6.1-3.el6 (FEDORA-EPEL-2011-4022)
 Spatial index library
--------------------------------------------------------------------------------
Update Information:

New package to Fedora

Spatialindex provides a general framework for developing spatial indices. Currently it defines generic interfaces, provides simple main memory and disk based storage managers and a robust implementation of an R*-tree, an MVR-tree and a TPR-tree.

See for details: http://trac.gispython.org/spatialindex
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #722790 - Review Request: spatialindex - Spatial index library
        https://bugzilla.redhat.com/show_bug.cgi?id=722790
--------------------------------------------------------------------------------

More information about the epel-devel-list mailing list