Fedora EPEL 5 updates-testing report

updates at fedoraproject.org updates at fedoraproject.org
Wed Aug 31 22:58:51 UTC 2011 

The following Fedora EPEL 5 Security updates need testing:

    https://admin.fedoraproject.org/updates/bugzilla-3.2.10-1.el5
    https://admin.fedoraproject.org/updates/couchdb-1.0.2-8.el5,erlang-ibrowse-2.2.0-3.el5
    https://admin.fedoraproject.org/updates/nginx-0.8.55-1.el5
    https://admin.fedoraproject.org/updates/rt3-3.6.11-2.el5
    https://admin.fedoraproject.org/updates/mongoose-2.8-7.el5
    https://admin.fedoraproject.org/updates/pam_ssh-1.97-7.el5
    https://admin.fedoraproject.org/updates/phpMyAdmin3-3.4.4-1.el5


The following builds have been pushed to Fedora EPEL 5 updates-testing

    389-ds-base-1.2.9.8-1.el5
    glue-schema-2.0.7-1.el5
    mongoose-2.8-7.el5
    myproxy-5.4-3.el5
    pam_ssh-1.97-7.el5
    perl-Directory-Queue-1.2-1.el5
    phpMyAdmin3-3.4.4-1.el5
    python-mtTkinter-0.4-3.el5
    torque-2.5.7-2.el5.1
    zanata-python-client-1.3.1-1.el5

Details about builds:


================================================================================
 389-ds-base-1.2.9.8-1.el5 (FEDORA-EPEL-2011-4293)
 389 Directory Server (base)
--------------------------------------------------------------------------------
Update Information:

Couple of bug fixes
a handful of bug fixes and a new feature to allow the server to start with an expired cert
Fixes for update, winsync, ruv/counters
Fix another coverity NULL deref in previous patch
Fix coverity NULL deref defect in 1.2.9.3
A few bug fixes
The 1.2.9.0 release - several bug fixes found during alpha testing
389-ds-base-1.2.9.a2 - several bug fixes - automember improvements
look for separate openldap ldif library
Split automember regex rules into separate entries
writing Inf file shows SchemaFile = ARRAY(0xhexnum)
add support for ldif files with changetype: add
Auto Membership
More Coverity fixes
--------------------------------------------------------------------------------
ChangeLog:

* Wed Aug 31 2011 Rich Megginson <rmeggins at redhat.com> - 1.2.9.8-1
- Bug 732153 - subtree and user account lockout policies implemented?
- Bug 722292 - Entries in DS are not updated properly when using WinSync API
* Wed Aug 24 2011 Rich Megginson <rmeggins at redhat.com> - 1.2.9.7-1
- Bug 733103 - large targetattr list with syntax errors cause server to crash or hang
- Bug 633803 - passwordisglobalpolicy attribute brakes TLS chaining
- Bug 732541 - Ignore error 32 when adding automember config
- Bug 728592 - Allow ns-slapd to start with an invalid server cert
* Wed Aug 10 2011 Rich Megginson <rmeggins at redhat.com> - 1.2.9.6-1
- Bug 728510 - Run dirsync after sending updates to AD
- Bug 729717 - Fatal error messages when syncing deletes from AD
- Bug 729369 - upgrade DB to upgrade from entrydn to entryrdn format is not working.
- Bug 729378 - delete user subtree container in AD + modify password in DS == DS crash
- Bug 723937 - Slapi_Counter API broken on  32-bit F15
-   fixed again - separate tests for atomic ops and atomic bool cas
* Mon Aug  8 2011 Rich Megginson <rmeggins at redhat.com> - 1.2.9.5-1
- Bug 727511 - ldclt SSL search requests are failing with "illegal error number -1" error
-  Fix another coverity NULL deref in previous patch
* Thu Aug  4 2011 Rich Megginson <rmeggins at redhat.com> - 1.2.9.4-1
- Bug 727511 - ldclt SSL search requests are failing with "illegal error number -1" error
-  Fix coverity NULL deref in previous patch
* Wed Aug  3 2011 Rich Megginson <rmeggins at redhat.com> - 1.2.9.3-1
- Bug 727511 - ldclt SSL search requests are failing with "illegal error number -1" error
-  previous patch broke build on el5
* Wed Aug  3 2011 Rich Megginson <rmeggins at redhat.com> - 1.2.9.2-1
- Bug 727511 - ldclt SSL search requests are failing with "illegal error number -1" error
* Tue Aug  2 2011 Rich Megginson <rmeggins at redhat.com> - 1.2.9.1-2
- Bug 723937 - Slapi_Counter API broken on  32-bit F15
-   fixed to use configure test for GCC provided 64-bit atomic functions
* Wed Jul 27 2011 Rich Megginson <rmeggins at redhat.com> - 1.2.9.1-1
- Bug 663752 - Cert renewal for attrcrypt and encchangelog
-   this was "re-fixed" due to a deadlock condition with cl2ldif task cancel
- Bug 725953 - Winsync: DS entries fail to sync to AD, if the User's CN entry contains a comma
- Bug 725743 - Make memberOf use PRMonitor for it's operation lock
- Bug 725542 - Instance upgrade fails when upgrading 389-ds-base package
- Bug 723937 - Slapi_Counter API broken on  32-bit F15
* Fri Jul 15 2011 Rich Megginson <rmeggins at redhat.com> - 1.2.9.0-1
- Bug 720059 - RDN with % can cause crashes or missing entries
- Bug 709468 - RSA Authentication Server timeouts when using simple paged results on RHDS 8.2.
- Bug 691313 - Need TLS/SSL error messages in repl status and errors log
- Bug 712855 - Directory Server 8.2 logs "Netscape Portable Runtime error -5961 (TCP connection reset by peer.)" to error log whereas Directory Server 8.1 did not
- Bug 713209 - Update sudo schema
- Bug 719069 - clean up compiler warnings in 389-ds-base 1.2.9
- Bug 718303 - Intensive updates on masters could break the consumer's cache
- Bug 711679 - unresponsive LDAP service when deleting vlv on replica
* Mon Jun 27 2011 Rich Megginson <rmeggins at redhat.com> - 1.2.9-0.2.a2
- 389-ds-base-1.2.9.a2
- look for separate openldap ldif library
- Split automember regex rules into separate entries
- writing Inf file shows SchemaFile = ARRAY(0xhexnum)
- add support for ldif files with changetype: add
- Bug 716980 - winsync uses old AD entry if new one not found
- Bug 697694 - rhds82 - incr update state stop_fatal_error "requires administrator action", with extop_result: 9
- bump console version to 1.2.6
- Bug 711679 - unresponsive LDAP service when deleting vlv on replica
- Bug 703703 - setup-ds-admin.pl asks for legal agreement to a non-existant file
- Bug 706209 - LEGAL: RHEL6.1 License issue for 389-ds-base package
- Bug 663752 - Cert renewal for attrcrypt and encchangelog
- Bug 706179 - DS can not restart after create a new objectClass has entryusn attribute
- Bug 711906 - ns-slapd segfaults using suffix referrals
- Bug 707384 - only allow FIPS approved cipher suites in FIPS mode
- Bug 710377 - Import with chain-on-update crashes ns-slapd
- Bug 709826 - Memory leak: when extra referrals configured
* Thu May 26 2011 Rich Megginson <rmeggins at redhat.com> - 1.2.9-0.1.a1
- 389-ds-base-1.2.9.a1
- Auto Membership
- More Coverity fixes
--------------------------------------------------------------------------------


================================================================================
 glue-schema-2.0.7-1.el5 (FEDORA-EPEL-2011-4299)
 LDAP schema files for the GLUE Schema
--------------------------------------------------------------------------------
Update Information:

Update to latest version of the GLUE schema.
--------------------------------------------------------------------------------
ChangeLog:

* Tue Aug 30 2011 Mattias Ellert <mattias.ellert at fysast.uu.se> - 2.0.7-1
- Update to release 2.0.7
* Tue Feb  8 2011 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 2.0.6-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
--------------------------------------------------------------------------------


================================================================================
 mongoose-2.8-7.el5 (FEDORA-EPEL-2011-4316)
 An easy-to-use self-sufficient web server
--------------------------------------------------------------------------------
Update Information:

Add backport patch to fix CVE-2011-2900 (729146)
--------------------------------------------------------------------------------
ChangeLog:

* Wed Aug 31 2011 Rafael Azenha Aquini <aquini at linux dot com> - 2.8-7
- Add backport patch to fix CVE-2011-2900 (729146)
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #729145 - CVE-2011-2900 mongoose: stack-based buffer overflow flaw in put_dir()
        https://bugzilla.redhat.com/show_bug.cgi?id=729145
--------------------------------------------------------------------------------


================================================================================
 myproxy-5.4-3.el5 (FEDORA-EPEL-2011-4292)
 Manage X.509 Public Key Infrastructure (PKI) security credentials
--------------------------------------------------------------------------------
Update Information:

A bugfix in myproxy-server:

Fix abort when processing INFO response when the user has stored credentials both with and without a credential name; bug was introduced in myproxy-server v4.9 

 * http://bugzilla.globus.org/bugzilla/show_bug.cgi?id=7209
--------------------------------------------------------------------------------
ChangeLog:

* Wed Aug 31 2011 Steve Traylen <steve.traylen at cern.ch> - 5.4-3
- Add myproxy-globus-7129.patch patch.
* Tue May 31 2011 Steve Traylen <steve.traylen at cern.ch> - 5.4-2
- Rebuild for new voms api.
* Sun Apr 24 2011 Steve Traylen <steve.traylen at cern.ch> - 5.4-1
- Drop myproxy-vomsc-vomsapi.patch since upstream.
- Drop myproxy-test-non-inter.patch since not needed.
- Drop myproxy-double-free-globus-7135.patch since upstream.
- Drop myproxy-test-home2tmp.patch since upstream.
- Update to 5.4
* Tue Mar  1 2011 Steve Traylen <steve.traylen at cern.ch> - 5.3-7
- Add myproxy-test-home2tmp.patch to avoid %script
  writing in home.
* Mon Feb 28 2011 Steve Traylen <steve.traylen at cern.ch> - 5.3-6
- Remove myproxy-test-disables-globus-7135.patch since
  checks now run with a clean CA/grid-security  directory
  and work.
- Add myproxy-double-free-globus-7135.patch to
  remove double free in myproxy-creds.ch. globus bug #7135.
* Sat Feb 26 2011 Steve Traylen <steve.traylen at cern.ch> - 5.3-5
- Globus bug #7135 only applies to myproxy-test in .spec files so 
  patch private copy in RPM rather than eventual deployed
  myproxy-test.
* Thu Feb 24 2011 Steve Traylen <steve.traylen at cern.ch> - 5.3-4
- Remove useless gpt filelists check from %check.
- Add useful check myproxy-test to %check.
--------------------------------------------------------------------------------


================================================================================
 pam_ssh-1.97-7.el5 (FEDORA-EPEL-2011-4309)
 PAM module for use with SSH keys and ssh-agent
--------------------------------------------------------------------------------
Update Information:

Update to 1.97
--------------------------------------------------------------------------------
ChangeLog:

* Tue Jun  7 2011 Dmitry Butskoy <Dmitry at Butskoy.name> - 1.97-7
- Drop root group privileges properly before executing ssh-agent (#711170)
* Tue Feb  8 2011 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 1.97-6
- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
* Wed Jan  5 2011 Dmitry Butskoy <Dmitry at Butskoy.name> - 1.97-5
- export only pam_sm_* symbols from the module
  (else it could cause cross linking when used under sshd daemon)
* Mon Dec 13 2010 Dmitry Butskoy <Dmitry at Butskoy.name> - 1.97-4
- auto-create state dir under /var/run (#656657)
* Fri Aug 21 2009 Tomas Mraz <tmraz at redhat.com> - 1.97-3
- rebuilt with new openssl
* Sat Jul 25 2009 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 1.97-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild
* Wed Jul 15 2009 Dmitry Butskoy <Dmitry at Butskoy.name> - 1.97-1
- update to 1.97
- drop no more needed patches
- specfile cleanup
- run autoreconf to re-libtoolize properly
* Thu Mar 26 2009 Dmitry Butskoy <Dmitry at Butskoy.name> - 1.92-10
- Always use standard "Password:" prompt for the first password's inquire
  in a PAM chain (#492153)
* Thu Feb 26 2009 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 1.92-9.1
- Rebuilt for https://fedoraproject.org/wiki/Fedora_11_Mass_Rebuild
* Fri Jan 16 2009 Manuel "lonely wolf" Wolfshant <wolfy at nobugconsulting.ro> 1.92-8.1
- rebuild for newer openssl
* Tue Feb 19 2008 Fedora Release Engineering <rel-eng at fedoraproject.org> - 1.92-8
- Autorebuild for GCC 4.3
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #711171 - pam_ssh: Did not properly drop root privileges prior executing ssh-agent [epel-all]
        https://bugzilla.redhat.com/show_bug.cgi?id=711171
--------------------------------------------------------------------------------


================================================================================
 perl-Directory-Queue-1.2-1.el5 (FEDORA-EPEL-2011-4291)
 Object oriented interface to a directory based queue
--------------------------------------------------------------------------------
Update Information:

Changelog for Directory::Queue 1.2.

 * Improved the speed of the purge() method for large queues.
 * Minimized the number of string copies required internally.
 * The get() and add() methods can now use a hash reference.
 * The schema can now define strings that are used by reference.
 * The modules $VERSION variables now contain the package version.
 * Added the touch() method.
 * Improved testing.
--------------------------------------------------------------------------------
ChangeLog:

* Tue Aug 30 2011 Steve Traylen <steve.traylen at cern.ch> - 1.2-1
- Update 1.2 rhbz#73941.
* Mon Jun 20 2011 Marcela Mašláňová <mmaslano at redhat.com> - 1.1-2
- Perl mass rebuild
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #734469 - Upgrade to new upstream version
        https://bugzilla.redhat.com/show_bug.cgi?id=734469
--------------------------------------------------------------------------------


================================================================================
 phpMyAdmin3-3.4.4-1.el5 (FEDORA-EPEL-2011-4296)
 Handle the administration of MySQL over the World Wide Web
--------------------------------------------------------------------------------
Update Information:

phpMyAdmin is a tool written in PHP intended to handle the administration of MySQL over the World Wide Web. Most frequently used operations are supported by the user interface (managing databases, tables, fields, relations, indexes, users, permissions), while you still have the ability to directly execute any SQL statement.

Features include an intuitive web interface, support for most MySQL features (browse and drop databases, tables, views, fields and indexes, create, copy, drop, rename and alter databases, tables, fields and indexes, maintenance server, databases and tables, with proposals on server configuration, execute, edit and bookmark any SQL-statement, even batch-queries, manage MySQL users and privileges, manage stored procedures and triggers), import data from CSV and SQL, export data to various formats: CSV, SQL, XML, PDF, OpenDocument Text and Spreadsheet, Word, Excel, LATEX and others, administering multiple servers, creating PDF graphics of your database layout, creating complex queries using Query-by-example (QBE), searching globally in a database or a subset of it, transforming stored data into any format using a set of predefined functions, like displaying BLOB-data as image or download-link and much more...
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #733475 - CVE-2011-3181 phpMyAdmin XSS flaw
        https://bugzilla.redhat.com/show_bug.cgi?id=733475
--------------------------------------------------------------------------------


================================================================================
 python-mtTkinter-0.4-3.el5 (FEDORA-EPEL-2011-4307)
 A thread-safe version of Tkinter
--------------------------------------------------------------------------------
Update Information:

Initial release.
--------------------------------------------------------------------------------


================================================================================
 torque-2.5.7-2.el5.1 (FEDORA-EPEL-2011-4313)
 Tera-scale Open-source Resource and QUEue manager
--------------------------------------------------------------------------------
Update Information:

The directory /var/torque/checkpoint has been relocated from the torque-mom package to the torque package. The directory is also required pbs_server in the torque-server as well as the pbs_mom in the torque-mom package.
--------------------------------------------------------------------------------
ChangeLog:

* Wed Aug 31 2011 Steve Traylen <steve.traylen at cern.ch> - 2.5.7-2 1
- Remove wrong configure messages from description.
* Wed Aug 31 2011 Steve Traylen <steve.traylen at cern.ch> - 2.5.7-2
- Move checkpoint directory from torque-mom to torque package. 
  rhbz#734878
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #734878 - pbs_init, unable to stat checkpoint directory /var/torque/checkpoint
        https://bugzilla.redhat.com/show_bug.cgi?id=734878
--------------------------------------------------------------------------------


================================================================================
 zanata-python-client-1.3.1-1.el5 (FEDORA-EPEL-2011-4302)
 Python Client for Zanata Server
--------------------------------------------------------------------------------
Update Information:

-Fix #rhbz734270 "Reinstate publican/po push '--import-po' option"
--------------------------------------------------------------------------------
ChangeLog:

* Wed Aug 31 2011 James Ni <jni at redhat.com> - 1.3.1-1
- Fix #rhbz734270 Reinstate publican/po push '--import-po' option
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #734270 - Reinstate publican/po push '--import-po' option
        https://bugzilla.redhat.com/show_bug.cgi?id=734270
--------------------------------------------------------------------------------

More information about the epel-devel-list mailing list