From cickumqt at gmail.com Fri Feb 1 00:57:21 2013 From: cickumqt at gmail.com (Christopher Meng) Date: Fri, 1 Feb 2013 08:57:21 +0800 Subject: Fixed but buggy - Re: [CentOS] More on amavis/clam permission errors on Centos 6.3 In-Reply-To: <510A7BDF.7000108@htt-consult.com> References: <51098EB9.5030900@htt-consult.com> <51099122.9010006@imag.fr> <5109991F.8030803@htt-consult.com> <510A1DAB.2030304@ew3d.com> <510A52D1.5000009@htt-consult.com> <510A5E01.3040008@unixmail.co.uk> <510A7BDF.7000108@htt-consult.com> Message-ID: Please file a bug at bugzilla about this component, thx. -------------- next part -------------- An HTML attachment was scrubbed... URL: From rgm at htt-consult.com Fri Feb 1 01:11:57 2013 From: rgm at htt-consult.com (Robert Moskowitz) Date: Thu, 31 Jan 2013 20:11:57 -0500 Subject: Fixed but buggy - Re: [CentOS] More on amavis/clam permission errors on Centos 6.3 In-Reply-To: References: <51098EB9.5030900@htt-consult.com> <51099122.9010006@imag.fr> <5109991F.8030803@htt-consult.com> <510A1DAB.2030304@ew3d.com> <510A52D1.5000009@htt-consult.com> <510A5E01.3040008@unixmail.co.uk> <510A7BDF.7000108@htt-consult.com> Message-ID: <510B165D.5040109@htt-consult.com> On 01/31/2013 07:57 PM, Christopher Meng wrote: > > Please file a bug at bugzilla about this component, thx. > bug 906396 -------------- next part -------------- An HTML attachment was scrubbed... URL: From updates at fedoraproject.org Fri Feb 1 13:21:29 2013 From: updates at fedoraproject.org (updates at fedoraproject.org) Date: Fri, 01 Feb 2013 13:21:29 +0000 Subject: Fedora EPEL 6 updates-testing report Message-ID: <20130201132129.8700F211EF@bastion01.phx2.fedoraproject.org> The following Fedora EPEL 6 Security updates need testing: Age URL 285 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5620/bugzilla-3.4.14-2.el6 8 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0174/tinymce-spellchecker-2.0.5-6.el6 8 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0193/couchdb-1.0.4-2.el6 8 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0194/seamonkey-2.15.1-1.el6 62 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-13610/drupal6-ctools-1.10-1.el6 207 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-6348/bcfg2-1.2.3-1.el6 473 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2011-4701/supybot-gribble-0.83.4.1-10.el6 10 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0123/python-tw2-jquery-2.0.3-5.el6 10 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0128/php-symfony2-Yaml-2.1.7-1.el6 10 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0157/proftpd-1.3.3g-2.el6 10 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0144/zabbix-1.8.16-1.el6 10 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0170/asterisk-1.8.20.0-1.el6 10 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0155/zabbix20-2.0.4-3.el6 10 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0141/drupal7-7.19-1.el6 0 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0233/wordpress-3.5.1-1.el6 The following builds have been pushed to Fedora EPEL 6 updates-testing drupal7-date_ical-2.3-1.el6 gdb-heap-0.5-9.1.el6 guacd-0.7.0-3.el6 jglobus-2.0.5-0.1.rc2.el6 librcc-0.2.10-2.el6 ovirt-engine-sdk-3.2.0.8-1.el6 php-horde-Horde-Cli-2.0.3-1.el6 php-horde-Horde-Date-2.0.3-1.el6 php-horde-Horde-Support-2.0.3-1.el6 php-horde-Horde-Url-2.1.0-1.el6 vtk-5.8.0-6.el6.1 wordpress-3.5.1-1.el6 Details about builds: ================================================================================ drupal7-date_ical-2.3-1.el6 (FEDORA-EPEL-2013-0228) Allows creation of an iCal feed in Views -------------------------------------------------------------------------------- Update Information: Update to upstream 2.3 release Update to upstream 2.2 release -------------------------------------------------------------------------------- ChangeLog: -------------------------------------------------------------------------------- References: [ 1 ] Bug #904736 - drupal7-date_ical-2.3 is available https://bugzilla.redhat.com/show_bug.cgi?id=904736 [ 2 ] Bug #903583 - drupal7-date_ical-2.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=903583 -------------------------------------------------------------------------------- ================================================================================ gdb-heap-0.5-9.1.el6 (FEDORA-EPEL-2012-6797) Extensions to gdb for debugging dynamic memory allocation -------------------------------------------------------------------------------- Update Information: gdb-heap built for EPEL 6 -------------------------------------------------------------------------------- References: [ 1 ] Bug #828169 - [RFE:EPEL] Request to add gdb-heap to EPEL https://bugzilla.redhat.com/show_bug.cgi?id=828169 -------------------------------------------------------------------------------- ================================================================================ guacd-0.7.0-3.el6 (FEDORA-EPEL-2013-0235) Proxy daemon for Guacamole -------------------------------------------------------------------------------- Update Information: Enable guacd user/group for daemon -------------------------------------------------------------------------------- ChangeLog: * Wed Jan 30 2013 Simone Caronni - 0.7.0-3 - User creations is for all supported distributions. * Wed Jan 30 2013 Simone Caronni - 0.7.0-2 - Updated init script according to Fedora template. https://fedoraproject.org/wiki/Packaging:SysVInitScript?rd=Packaging/SysVInitScript - Run daemon as guacd user/group. - Make sure $HOME is set before starting the daemon or the child crashes. -------------------------------------------------------------------------------- ================================================================================ jglobus-2.0.5-0.1.rc2.el6 (FEDORA-EPEL-2013-0231) Globus Java client libraries -------------------------------------------------------------------------------- Update Information: JGlobus version 2.0.5 release candidate 2. New packages jglobus-myproxy and jglobus-axisg -------------------------------------------------------------------------------- ChangeLog: * Tue Jan 29 2013 Mattias Ellert - 2.0.5-0.1.rc2 - 2.0.5 release candidate 2 - New jglobus-myproxy package - New jglobus-axisg package -------------------------------------------------------------------------------- ================================================================================ librcc-0.2.10-2.el6 (FEDORA-EPEL-2013-0234) RusXMMS Charset Conversion Library -------------------------------------------------------------------------------- Update Information: new version upstream -------------------------------------------------------------------------------- ChangeLog: * Wed Jan 30 2013 Ivan Romanov - 0.2.10-2 - el6 hasn't gtk3 * Wed Jan 30 2013 Ivan Romanov - 0.2.10-1 - updated to 0.2.10 - dropped patches (applied by upstream) - new -gkt+ and -gtk3 subpackage -------------------------------------------------------------------------------- ================================================================================ ovirt-engine-sdk-3.2.0.8-1.el6 (FEDORA-EPEL-2013-0230) oVirt Engine Software Development Kit -------------------------------------------------------------------------------- Update Information: Update to upstream 3.2.0.8 -------------------------------------------------------------------------------- ChangeLog: * Wed Jan 30 2013 Juan Hernandez - 3.2.0.8-1 - Update to upstream 3.2.0.8 - Fix for #905359 -------------------------------------------------------------------------------- ================================================================================ php-horde-Horde-Cli-2.0.3-1.el6 (FEDORA-EPEL-2013-0238) Horde Command Line Interface API -------------------------------------------------------------------------------- Update Information: Horde_CLI 2.0.3: * [jan] Update French translation (Paul De Vlieger). Horde_Date 2.0.3: * [jan] Update French translation (Paul De Vlieger). * [jan] Fix error: DateTime::__construct(): Failed to parse time string (-001-11-01). * [jan] Catch DateTime exception in Horde_Date_Utils:daysInMonth() (Bug #11916). Horde_Support 2.0.3: * [mms] Fix detection of sys_getloadavg() on Windows (Bug #11972). Horde_Url 2.1.0: * [mms] Add Horde_Url_Data class. -------------------------------------------------------------------------------- ChangeLog: * Wed Jan 30 2013 Remi Collet - 2.0.3-1 - Update to 2.0.3 - fix files listed twice -------------------------------------------------------------------------------- ================================================================================ php-horde-Horde-Date-2.0.3-1.el6 (FEDORA-EPEL-2013-0238) Horde Date package -------------------------------------------------------------------------------- Update Information: Horde_CLI 2.0.3: * [jan] Update French translation (Paul De Vlieger). Horde_Date 2.0.3: * [jan] Update French translation (Paul De Vlieger). * [jan] Fix error: DateTime::__construct(): Failed to parse time string (-001-11-01). * [jan] Catch DateTime exception in Horde_Date_Utils:daysInMonth() (Bug #11916). Horde_Support 2.0.3: * [mms] Fix detection of sys_getloadavg() on Windows (Bug #11972). Horde_Url 2.1.0: * [mms] Add Horde_Url_Data class. -------------------------------------------------------------------------------- ChangeLog: * Wed Jan 30 2013 Remi Collet - 2.0.3-1 - Update to 2.0.3 - add option to run tests - install only locales from upstream list -------------------------------------------------------------------------------- ================================================================================ php-horde-Horde-Support-2.0.3-1.el6 (FEDORA-EPEL-2013-0238) Horde support package -------------------------------------------------------------------------------- Update Information: Horde_CLI 2.0.3: * [jan] Update French translation (Paul De Vlieger). Horde_Date 2.0.3: * [jan] Update French translation (Paul De Vlieger). * [jan] Fix error: DateTime::__construct(): Failed to parse time string (-001-11-01). * [jan] Catch DateTime exception in Horde_Date_Utils:daysInMonth() (Bug #11916). Horde_Support 2.0.3: * [mms] Fix detection of sys_getloadavg() on Windows (Bug #11972). Horde_Url 2.1.0: * [mms] Add Horde_Url_Data class. -------------------------------------------------------------------------------- ChangeLog: * Wed Jan 30 2013 Remi Collet - 2.0.3-1 - Update to 2.0.3 - add option to run tests -------------------------------------------------------------------------------- ================================================================================ php-horde-Horde-Url-2.1.0-1.el6 (FEDORA-EPEL-2013-0238) Horde Url class -------------------------------------------------------------------------------- Update Information: Horde_CLI 2.0.3: * [jan] Update French translation (Paul De Vlieger). Horde_Date 2.0.3: * [jan] Update French translation (Paul De Vlieger). * [jan] Fix error: DateTime::__construct(): Failed to parse time string (-001-11-01). * [jan] Catch DateTime exception in Horde_Date_Utils:daysInMonth() (Bug #11916). Horde_Support 2.0.3: * [mms] Fix detection of sys_getloadavg() on Windows (Bug #11972). Horde_Url 2.1.0: * [mms] Add Horde_Url_Data class. -------------------------------------------------------------------------------- ChangeLog: * Wed Jan 30 2013 Remi Collet - 2.1.0-1 - Update to 2.1.0 - add option to run tests -------------------------------------------------------------------------------- ================================================================================ vtk-5.8.0-6.el6.1 (FEDORA-EPEL-2013-0232) The Visualization Toolkit - A high level 3D visualization library -------------------------------------------------------------------------------- Update Information: Make vtk not require vtk-devel -------------------------------------------------------------------------------- ChangeLog: * Tue Jan 29 2013 Orion Poplawski - 5.8.0-6.1 - Add patch to add soname to libvtkNetCDF_cxx -------------------------------------------------------------------------------- References: [ 1 ] Bug #905399 - vtk pulls in vtk-devel as a dependency https://bugzilla.redhat.com/show_bug.cgi?id=905399 -------------------------------------------------------------------------------- ================================================================================ wordpress-3.5.1-1.el6 (FEDORA-EPEL-2013-0233) Blog tool and publishing platform -------------------------------------------------------------------------------- Update Information: WordPress 3.5.1 is now available. Version 3.5.1 is the first maintenance release of 3.5, fixing 37 bugs. It is also a security release for all previous WordPress versions. Which include: * Editor: Prevent certain HTML elements from being unexpectedly removed or modified in rare cases. * Media: Fix a collection of minor workflow and compatibility issues in the new media manager. * Networks: Suggest proper rewrite rules when creating a new network. * Prevent scheduled posts from being stripped of certain HTML, such as video embeds, when they are published. * Work around some misconfigurations that may have caused some JavaScript in the WordPress admin area to fail. * Suppress some warnings that could occur when a plugin misused the database or user APIs. WordPress 3.5.1 also addresses the following security issues: * A server-side request forgery vulnerability and remote port scanning using pingbacks. This vulnerability, which could potentially be used to expose information and compromise a site, affects all previous WordPress versions. This was fixed by the WordPress security team. We?d like to thank security researchers Gennady Kovshenin and Ryan Dewhurst for reviewing our work. * Two instances of cross-site scripting via shortcodes and post content. These issues were discovered by Jon Cave of the WordPress security team. * A cross-site scripting vulnerability in the external library Plupload. Thanks to the Moxiecode team for working with us on this, and for releasing Plupload 1.5.5 to address this issue. -------------------------------------------------------------------------------- ChangeLog: * Wed Jan 30 2013 Remi Collet - 3.5.1-1 - version 3.5.1, various bug and security fixes: CVE-2013-0235, CVE-2013-0236 and CVE-2013-0237 - drop -f option from rm to break build if upstream archive content change - protect akismet content (from upstream .htaccess) -------------------------------------------------------------------------------- References: [ 1 ] Bug #904120 - CVE-2013-0235 wordpress: Server-side request forgery and remote port scanning using pingbacks https://bugzilla.redhat.com/show_bug.cgi?id=904120 [ 2 ] Bug #904121 - wordpress: XSS flaws via shortcodes and HTTP POST content https://bugzilla.redhat.com/show_bug.cgi?id=904121 [ 3 ] Bug #904122 - wordpress: XSS in the external Plupload library https://bugzilla.redhat.com/show_bug.cgi?id=904122 -------------------------------------------------------------------------------- From updates at fedoraproject.org Fri Feb 1 13:21:30 2013 From: updates at fedoraproject.org (updates at fedoraproject.org) Date: Fri, 01 Feb 2013 13:21:30 +0000 Subject: Fedora EPEL 5 updates-testing report Message-ID: <20130201132130.C81DD211F3@bastion01.phx2.fedoraproject.org> The following Fedora EPEL 5 Security updates need testing: Age URL 10 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0148/drupal7-7.19-1.el5 285 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5630/bugzilla-3.2.10-5.el5 180 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-6608/Django-1.1.4-2.el5 62 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-13612/drupal6-ctools-1.10-1.el5 8 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0171/moodle-1.9.19-5.el5 8 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0173/couchdb-1.0.4-2.el5.1 10 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0116/drupal6-6.28-1.el5 10 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0139/proftpd-1.3.3g-2.el5 0 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0237/wordpress-3.5.1-1.el5.1 The following builds have been pushed to Fedora EPEL 5 updates-testing drupal7-date_ical-2.3-1.el5 jglobus-2.0.5-0.1.rc2.el5 wordpress-3.5.1-1.el5.1 Details about builds: ================================================================================ drupal7-date_ical-2.3-1.el5 (FEDORA-EPEL-2013-0229) Allows creation of an iCal feed in Views -------------------------------------------------------------------------------- Update Information: Update to upstream 2.3 release Update to upstream 2.2 release -------------------------------------------------------------------------------- ChangeLog: -------------------------------------------------------------------------------- References: [ 1 ] Bug #904736 - drupal7-date_ical-2.3 is available https://bugzilla.redhat.com/show_bug.cgi?id=904736 [ 2 ] Bug #903583 - drupal7-date_ical-2.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=903583 -------------------------------------------------------------------------------- ================================================================================ jglobus-2.0.5-0.1.rc2.el5 (FEDORA-EPEL-2013-0236) Globus Java client libraries -------------------------------------------------------------------------------- Update Information: JGlobus version 2.0.5 release candidate 2. New packages jglobus-myproxy and jglobus-axisg -------------------------------------------------------------------------------- ChangeLog: * Tue Jan 29 2013 Mattias Ellert - 2.0.5-0.1.rc2 - 2.0.5 release candidate 2 - New jglobus-myproxy package - New jglobus-axisg package -------------------------------------------------------------------------------- ================================================================================ wordpress-3.5.1-1.el5.1 (FEDORA-EPEL-2013-0237) Blog tool and publishing platform -------------------------------------------------------------------------------- Update Information: WordPress 3.5.1 is now available. Version 3.5.1 is the first maintenance release of 3.5, fixing 37 bugs. It is also a security release for all previous WordPress versions. Which include: * Editor: Prevent certain HTML elements from being unexpectedly removed or modified in rare cases. * Media: Fix a collection of minor workflow and compatibility issues in the new media manager. * Networks: Suggest proper rewrite rules when creating a new network. * Prevent scheduled posts from being stripped of certain HTML, such as video embeds, when they are published. * Work around some misconfigurations that may have caused some JavaScript in the WordPress admin area to fail. * Suppress some warnings that could occur when a plugin misused the database or user APIs. WordPress 3.5.1 also addresses the following security issues: * A server-side request forgery vulnerability and remote port scanning using pingbacks. This vulnerability, which could potentially be used to expose information and compromise a site, affects all previous WordPress versions. This was fixed by the WordPress security team. We?d like to thank security researchers Gennady Kovshenin and Ryan Dewhurst for reviewing our work. * Two instances of cross-site scripting via shortcodes and post content. These issues were discovered by Jon Cave of the WordPress security team. * A cross-site scripting vulnerability in the external library Plupload. Thanks to the Moxiecode team for working with us on this, and for releasing Plupload 1.5.5 to address this issue. -------------------------------------------------------------------------------- ChangeLog: * Wed Jan 30 2013 Remi Collet - 3.5.1-1.1 - fix simplepie links (for all branches) * Wed Jan 30 2013 Remi Collet - 3.5.1-1 - version 3.5.1, various bug and security fixes: CVE-2013-0235, CVE-2013-0236 and CVE-2013-0237 - drop -f option from rm to break build if upstream archive content change - protect akismet content (from upstream .htaccess) * Wed Jan 2 2013 Remi Collet - 3.5-3 - fix links to system PHPMailer library -------------------------------------------------------------------------------- References: [ 1 ] Bug #904120 - CVE-2013-0235 wordpress: Server-side request forgery and remote port scanning using pingbacks https://bugzilla.redhat.com/show_bug.cgi?id=904120 [ 2 ] Bug #904121 - wordpress: XSS flaws via shortcodes and HTTP POST content https://bugzilla.redhat.com/show_bug.cgi?id=904121 [ 3 ] Bug #904122 - wordpress: XSS in the external Plupload library https://bugzilla.redhat.com/show_bug.cgi?id=904122 -------------------------------------------------------------------------------- From updates at fedoraproject.org Sat Feb 2 19:42:21 2013 From: updates at fedoraproject.org (updates at fedoraproject.org) Date: Sat, 02 Feb 2013 19:42:21 +0000 Subject: Fedora EPEL 6 updates-testing report Message-ID: <20130202194221.D75EC20937@bastion01.phx2.fedoraproject.org> The following Fedora EPEL 6 Security updates need testing: Age URL 286 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5620/bugzilla-3.4.14-2.el6 9 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0174/tinymce-spellchecker-2.0.5-6.el6 9 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0193/couchdb-1.0.4-2.el6 9 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0194/seamonkey-2.15.1-1.el6 63 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-13610/drupal6-ctools-1.10-1.el6 209 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-6348/bcfg2-1.2.3-1.el6 474 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2011-4701/supybot-gribble-0.83.4.1-10.el6 11 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0123/python-tw2-jquery-2.0.3-5.el6 11 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0128/php-symfony2-Yaml-2.1.7-1.el6 11 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0157/proftpd-1.3.3g-2.el6 11 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0144/zabbix-1.8.16-1.el6 11 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0170/asterisk-1.8.20.0-1.el6 11 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0155/zabbix20-2.0.4-3.el6 11 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0141/drupal7-7.19-1.el6 1 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0233/wordpress-3.5.1-1.el6 The following builds have been pushed to Fedora EPEL 6 updates-testing atari++-1.71-1.el6 canl-c-2.0.7-1.el6 fedmsg-0.6.7-1.el6 perl-Mail-Box-2.107-1.el6 pypar-2.1.4_94-3.el6 python-fedmsg-meta-fedora-infrastructure-0.0.8-1.el6 python-fedmsg-meta-fedora-infrastructure-0.0.9-1.el6 python-requests-0.14.1-3.el6 salt-0.12.1-1.el6 Details about builds: ================================================================================ atari++-1.71-1.el6 (FEDORA-EPEL-2013-0247) Unix based emulator of the Atari eight bit computers -------------------------------------------------------------------------------- Update Information: - update to 1.71 - http://www.xl-project.com/Blog%20Posts/post3.html -------------------------------------------------------------------------------- ChangeLog: * Thu Jan 31 2013 Dan Hor?k 1.71-1 - updated to version 1.71 -------------------------------------------------------------------------------- ================================================================================ canl-c-2.0.7-1.el6 (FEDORA-EPEL-2013-0246) EMI Common Authentication library - bindings for C -------------------------------------------------------------------------------- Update Information: This is the C part of the EMI caNl -- the Common Authentication Library. -------------------------------------------------------------------------------- References: [ 1 ] Bug #867368 - Review Request: canl-c - Common Authentication Library for C https://bugzilla.redhat.com/show_bug.cgi?id=867368 -------------------------------------------------------------------------------- ================================================================================ fedmsg-0.6.7-1.el6 (FEDORA-EPEL-2013-0239) Tools for Fedora Infrastructure real-time messaging -------------------------------------------------------------------------------- Update Information: Fixups to irc and twitter services Latest upstream. Latest upstream. -------------------------------------------------------------------------------- ChangeLog: * Thu Jan 31 2013 Ralph Bean - 0.6.7-1 - Configurable colors for fedmsg-irc - Better error checking in fedmsg-tweet - Enhanced docs. * Sun Jan 27 2013 Ralph Bean - 0.6.6-2 - Disable sysv %preun sections for Fedora * Mon Jan 21 2013 Ralph Bean - 0.6.6-1 - Typofix. - Support loading remote CA cert for end-user message validation. * Mon Jan 21 2013 Ralph Bean - 0.6.5-1 - Latest upstream - Fix JSON encoding between php and python - Stop fedmsg-tweet from falling over. - Improved logging. - Improved crl cache location; don't keep it in /tmp/ - Fix a crl permissions issue with fedmsg-tail. - Remove duplicate help strings for commands. - Added systemd service files. - Multiple outbound relay endpoints are now possible. - Removed old chkconfig statements. * Fri Dec 7 2012 Ralph Bean - 0.6.3-2 - Removed a file that shouldn't have been included. -------------------------------------------------------------------------------- ================================================================================ perl-Mail-Box-2.107-1.el6 (FEDORA-EPEL-2013-0242) Manage a mailbox, a folder with messages -------------------------------------------------------------------------------- Update Information: Update perl-Mail-Box to 2.107, fixes a lot of bugs. -------------------------------------------------------------------------------- ChangeLog: * Fri Feb 1 2013 Tom Callaway - 2.107-1 - update to 2.107 * Fri Jul 20 2012 Fedora Release Engineering - 2.102-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild * Tue Jul 10 2012 Petr Pisar - 2.102-3 - Perl 5.16 re-rebuild of bootstrapped packages * Sat Jun 23 2012 Petr Pisar - 2.102-2 - Perl 5.16 rebuild * Thu Apr 12 2012 Tom Callaway - 2.102-1 - update to 2.102 - conditionalize perl(Email::Abstract) BuildRequires so that it is only used if we're bootstrapping perl, works around a circular dependency (bz810724) * Fri Jan 13 2012 Fedora Release Engineering - 2.097-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild * Tue Jul 19 2011 Petr Sabata - 2.097-2 - Perl mass rebuild -------------------------------------------------------------------------------- ================================================================================ pypar-2.1.4_94-3.el6 (FEDORA-EPEL-2013-0241) Parallel programming with Python -------------------------------------------------------------------------------- Update Information: Rebuild against current version of OpenMPI in RHEL6. -------------------------------------------------------------------------------- ChangeLog: * Sat Feb 2 2013 Susi Lehtola - 2.1.4_94-3 - Rebuild against newer OpenMPI in RHEL6. -------------------------------------------------------------------------------- References: [ 1 ] Bug #906943 - pypar-openmpi installed in wrong directory https://bugzilla.redhat.com/show_bug.cgi?id=906943 -------------------------------------------------------------------------------- ================================================================================ python-fedmsg-meta-fedora-infrastructure-0.0.8-1.el6 (FEDORA-EPEL-2013-0249) Metadata providers for Fedora Infrastructure's fedmsg deployment -------------------------------------------------------------------------------- Update Information: Processors for koji and planet messages.. Changes to git/scm messages. pkgdb messages. Fixes to git/scm messages. -------------------------------------------------------------------------------- ChangeLog: -------------------------------------------------------------------------------- ================================================================================ python-fedmsg-meta-fedora-infrastructure-0.0.9-1.el6 (FEDORA-EPEL-2013-0240) Metadata providers for Fedora Infrastructure's fedmsg deployment -------------------------------------------------------------------------------- Update Information: Koji usernames and links; fas legacy compat -------------------------------------------------------------------------------- ChangeLog: -------------------------------------------------------------------------------- ================================================================================ python-requests-0.14.1-3.el6 (FEDORA-EPEL-2013-0244) HTTP library, written in Python, for human beings -------------------------------------------------------------------------------- Update Information: Backport of proper cookie handling More modern; cookie support. -------------------------------------------------------------------------------- ChangeLog: * Thu Jan 31 2013 Ralph Bean 0.14.1-3 - Introduced backport patch to support better cookie handling. * Mon Jan 28 2013 Ralph Bean 0.14.1-2 - Merged latest rawhide into el6. * Mon Oct 22 2012 Arun S A G 0.14.1-1 - Updated to latest upstream release * Sun Jun 10 2012 Arun S A G 0.13.1-1 - Updated to latest upstream release 0.13.1 - Use system provided ca-certificates - No more async requests use grrequests https://github.com/kennethreitz/grequests - Remove gevent as it is no longer required by requests -------------------------------------------------------------------------------- References: [ 1 ] Bug #904243 - Package newer python-requests https://bugzilla.redhat.com/show_bug.cgi?id=904243 -------------------------------------------------------------------------------- ================================================================================ salt-0.12.1-1.el6 (FEDORA-EPEL-2013-0248) A parallel remote execution system -------------------------------------------------------------------------------- Update Information: upstream release 0.12.1 update to upstream release 0.12.0 -------------------------------------------------------------------------------- ChangeLog: * Thu Jan 17 2013 Wendall Cada - 0.12.0-2 - Added unittest support * Wed Jan 16 2013 Clint Savage - 0.12.0-1 - Upstream release 0.12.0 -------------------------------------------------------------------------------- From updates at fedoraproject.org Sat Feb 2 19:42:23 2013 From: updates at fedoraproject.org (updates at fedoraproject.org) Date: Sat, 02 Feb 2013 19:42:23 +0000 Subject: Fedora EPEL 5 updates-testing report Message-ID: <20130202194223.5987420D83@bastion01.phx2.fedoraproject.org> The following Fedora EPEL 5 Security updates need testing: Age URL 11 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0148/drupal7-7.19-1.el5 286 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5630/bugzilla-3.2.10-5.el5 181 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-6608/Django-1.1.4-2.el5 63 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-13612/drupal6-ctools-1.10-1.el5 9 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0171/moodle-1.9.19-5.el5 9 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0173/couchdb-1.0.4-2.el5.1 11 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0116/drupal6-6.28-1.el5 11 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0139/proftpd-1.3.3g-2.el5 1 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0237/wordpress-3.5.1-1.el5.1 The following builds have been pushed to Fedora EPEL 5 updates-testing libguestfs-1.19.37-5.el5 perl-Mail-Box-2.107-1.el5 salt-0.12.1-1.el5 Details about builds: ================================================================================ libguestfs-1.19.37-5.el5 (FEDORA-EPEL-2013-0243) Access and modify virtual machine disk images -------------------------------------------------------------------------------- Update Information: Rebuild against newer Augeas. -------------------------------------------------------------------------------- ChangeLog: * Thu Jan 31 2013 Richard W.M. Jones - 1:1.19.37-5 - Bump and rebuild. -------------------------------------------------------------------------------- References: [ 1 ] Bug #906361 - EPEL5: aug-init fail with "Augeas initialization failed" https://bugzilla.redhat.com/show_bug.cgi?id=906361 -------------------------------------------------------------------------------- ================================================================================ perl-Mail-Box-2.107-1.el5 (FEDORA-EPEL-2013-0250) Manage a mailbox, a folder with messages -------------------------------------------------------------------------------- Update Information: Update perl-Mail-Box to 2.107, fixes a lot of bugs. -------------------------------------------------------------------------------- ChangeLog: * Fri Feb 1 2013 Tom Callaway - 2.107-1 - update to 2.107 * Fri Jul 20 2012 Fedora Release Engineering - 2.102-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild * Tue Jul 10 2012 Petr Pisar - 2.102-3 - Perl 5.16 re-rebuild of bootstrapped packages * Sat Jun 23 2012 Petr Pisar - 2.102-2 - Perl 5.16 rebuild * Thu Apr 12 2012 Tom Callaway - 2.102-1 - update to 2.102 - conditionalize perl(Email::Abstract) BuildRequires so that it is only used if we're bootstrapping perl, works around a circular dependency (bz810724) * Fri Jan 13 2012 Fedora Release Engineering - 2.097-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild * Tue Jul 19 2011 Petr Sabata - 2.097-2 - Perl mass rebuild -------------------------------------------------------------------------------- ================================================================================ salt-0.12.1-1.el5 (FEDORA-EPEL-2013-0245) A parallel remote execution system -------------------------------------------------------------------------------- Update Information: upstream release 0.12.1 update to upstream release 0.12.0 -------------------------------------------------------------------------------- ChangeLog: * Thu Jan 17 2013 Wendall Cada - 0.12.0-2 - Added unittest support * Wed Jan 16 2013 Clint Savage - 0.12.0-1 - Upstream release 0.12.0 -------------------------------------------------------------------------------- From updates at fedoraproject.org Tue Feb 5 01:31:49 2013 From: updates at fedoraproject.org (updates at fedoraproject.org) Date: Tue, 05 Feb 2013 01:31:49 +0000 Subject: Fedora EPEL 6 updates-testing report Message-ID: <20130205013149.D5B7821025@bastion01.phx2.fedoraproject.org> The following Fedora EPEL 6 Security updates need testing: Age URL 289 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5620/bugzilla-3.4.14-2.el6 12 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0174/tinymce-spellchecker-2.0.5-6.el6 12 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0193/couchdb-1.0.4-2.el6 12 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0194/seamonkey-2.15.1-1.el6 66 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-13610/drupal6-ctools-1.10-1.el6 211 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-6348/bcfg2-1.2.3-1.el6 477 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2011-4701/supybot-gribble-0.83.4.1-10.el6 13 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0123/python-tw2-jquery-2.0.3-5.el6 13 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0128/php-symfony2-Yaml-2.1.7-1.el6 13 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0157/proftpd-1.3.3g-2.el6 13 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0144/zabbix-1.8.16-1.el6 13 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0170/asterisk-1.8.20.0-1.el6 13 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0155/zabbix20-2.0.4-3.el6 13 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0141/drupal7-7.19-1.el6 3 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0233/wordpress-3.5.1-1.el6 The following builds have been pushed to Fedora EPEL 6 updates-testing Xnee-3.15-1.el6 collectd-4.10.8-2.el6 fedora-review-0.4.0-2.el6 mozilla-adblockplus-2.2.2-1.el6 ngircd-20.1-1.el6 openstack-glance-2012.2.3-1.el6 perl-Regexp-Grammars-1.026-1.el6 php-JsonSchema-1.2.4-1.el6 python-askbot-fedmsg-0.0.4-1.el6 Details about builds: ================================================================================ Xnee-3.15-1.el6 (FEDORA-EPEL-2013-0257) X11 environment recorder -------------------------------------------------------------------------------- Update Information: Update to 3.15 -------------------------------------------------------------------------------- ChangeLog: * Mon Feb 4 2013 Matthieu Saulnier - 3.15-1 - Update to 3.15 - Fix devel subpackage requires - Cleanup in %install section -------------------------------------------------------------------------------- ================================================================================ collectd-4.10.8-2.el6 (FEDORA-EPEL-2013-0255) Statistics collection daemon for filling RRD files -------------------------------------------------------------------------------- Update Information: Add curl_json plugin -------------------------------------------------------------------------------- ChangeLog: * Sat Feb 2 2013 Kevin Fenzi 4.10.8-2 - Add curl_json. Fixes bug #903866 - Thanks to Sarkis Varozian for patch. -------------------------------------------------------------------------------- References: [ 1 ] Bug #903866 - collectd package shipped with curl-json plugin disabled https://bugzilla.redhat.com/show_bug.cgi?id=903866 -------------------------------------------------------------------------------- ================================================================================ fedora-review-0.4.0-2.el6 (FEDORA-EPEL-2013-0259) Review tool for fedora rpm packages -------------------------------------------------------------------------------- Update Information: Update to 0.4.0 and incorporate patch from Ralf Bean fixing fedora-create-review. - The deprecated JSON api has been removed. - Patch-naming check not mandated by GL is removed (#179). - New checks: * Bundled gnulib check (#53). * Run phpci static analyzer on php packages (#63). * Various scriptlet checks (#152). * Tmpfiles.d check (#156). * Bundled fonts check (#155). * Improper %_sourcedir usage test (#154). * Test that sources could be downloaded from SourceX: tag (#198) - Improved report layout (#135). - Improved console output, notably invisible yellow text fixed. (#185). - The report has got a fixed name 'review.txt'. - It's now possible to create a python plugin with some tests which becomes part of an existing group e. g., a plugin with one new php test (#182). - Improved handling of mock build failures (#79). - Make used buildroot more visible (#147). - New Guidelines update (#161). - Various internal refactoring and clean-ups: #134, #140, #145, #172 and a lot of commits... - Improved unit tests, notably for plugins. Unit tests are now packaged (#146, #163, many commits). - Roughly 20 other bugs fixed. - The deprecated JSON api has been removed. - Patch-naming check not mandated by GL is removed (#179). - New checks: * Bundled gnulib check (#53). * Run phpci static analyzer on php packages (#63). * Various scriptlet checks (#152). * Tmpfiles.d check (#156). * Bundled fonts check (#155). * Improper %_sourcedir usage test (#154). * Test that sources could be downloaded from SourceX: tag (#198) - Improved report layout (#135). - Improved console output, notably invisible yellow text fixed. (#185). - The report has got a fixed name 'review.txt'. - It's now possible to create a python plugin with some tests which becomes part of an existing group e. g., a plugin with one new php test (#182). - Improved handling of mock build failures (#79). - Make used buildroot more visible (#147). - New Guidelines update (#161). - Various internal refactoring and clean-ups: #134, #140, #145, #172 and a lot of commits... - Improved unit tests, notably for plugins. Unit tests are now packaged (#146, #163, many commits). - Roughly 20 other bugs fixed. - The deprecated JSON api has been removed. - Patch-naming check not mandated by GL is removed (#179). - New checks: * Bundled gnulib check (#53). * Run phpci static analyzer on php packages (#63). * Various scriptlet checks (#152). * Tmpfiles.d check (#156). * Bundled fonts check (#155). * Improper %_sourcedir usage test (#154). * Test that sources could be downloaded from SourceX: tag (#198) - Improved report layout (#135). - Improved console output, notably invisible yellow text fixed. (#185). - The report has got a fixed name 'review.txt'. - It's now possible to create a python plugin with some tests which becomes part of an existing group e. g., a plugin with one new php test (#182). - Improved handling of mock build failures (#79). - Make used buildroot more visible (#147). - New Guidelines update (#161). - Various internal refactoring and clean-ups: #134, #140, #145, #172 and a lot of commits... - Improved unit tests, notably for plugins. Unit tests are now packaged (#146, #163, many commits). - Roughly 20 other bugs fixed. -------------------------------------------------------------------------------- ChangeLog: * Mon Feb 4 2013 Pierre-Yves Chibon - 0.4.0-2 - Add Patch0 (0001-Fix-syntax-error.patch) from Ralph Bean fixing fedora-create-review * Mon Jan 28 2013 Stanislav Ochotnicky - 0.4.0-1 - Updating to upstream 0.4.0 -------------------------------------------------------------------------------- References: [ 1 ] Bug #889087 - Unreadable colors in terminal with white background https://bugzilla.redhat.com/show_bug.cgi?id=889087 [ 2 ] Bug #881337 - AttributeError: 'GemCheckRequiresRubygems' object has no attribute 'spec_packages' https://bugzilla.redhat.com/show_bug.cgi?id=881337 [ 3 ] Bug #872898 - other Fatal error: Exception down the road https://bugzilla.redhat.com/show_bug.cgi?id=872898 [ 4 ] Bug #845651 - AttributeError: 'Source' object has no attribute 'filename' https://bugzilla.redhat.com/show_bug.cgi?id=845651 -------------------------------------------------------------------------------- ================================================================================ mozilla-adblockplus-2.2.2-1.el6 (FEDORA-EPEL-2013-0256) Adblocking extension for Mozilla Firefox, Thunderbird, and Seamonkey -------------------------------------------------------------------------------- Update Information: Worked around regression in Firefox 18 causing entries on the blockable items list to disappear and preventing context menu from working reliably. Issue reporter now encourages users to enter an email address when submitting issue reports. Fixed various compatibility problems with future Firefox releases. -------------------------------------------------------------------------------- ChangeLog: * Sat Feb 2 2013 Russell Golden - 2.2.2-1 - Worked around regression in Firefox 18 causing entries on the blockable items list to disappear and preventing context menu from working reliably. - Issue reporter now encourages users to enter an email address when submitting issue reports. - Fixed various compatibility problems with future Firefox releases. * Wed Dec 19 2012 Russell Golden - 2.2.1-3 - Fix typo in the license section * Wed Dec 19 2012 Russell Golden - 2.2.1-2 - Fix incorrect license information -------------------------------------------------------------------------------- ================================================================================ ngircd-20.1-1.el6 (FEDORA-EPEL-2013-0254) Next Generation IRC Daemon -------------------------------------------------------------------------------- Update Information: Update to 20.1 upstream version. http://ngircd.barton.de/doc/ChangeLog -------------------------------------------------------------------------------- ChangeLog: * Sat Feb 2 2013 Kevin Fenzi 20.1-1 - Update to 20.1 - Convert to systemd units for f19+ * Fri Jul 20 2012 Fedora Release Engineering - 18-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild * Fri Jan 13 2012 Fedora Release Engineering - 18-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #895307 - ngircd ignores SyslogFacility configuration option https://bugzilla.redhat.com/show_bug.cgi?id=895307 -------------------------------------------------------------------------------- ================================================================================ openstack-glance-2012.2.3-1.el6 (FEDORA-EPEL-2013-0252) OpenStack Image Service -------------------------------------------------------------------------------- Update Information: - Update to stable release 2012.2.3 -------------------------------------------------------------------------------- ChangeLog: * Fri Feb 1 2013 P?draig Brady

2012.2.3-1 - Update to stable release 2012.2.3 * Tue Jan 29 2013 Nikola ?ipanov 2012.2.1-2 - Fix backend password leak in Glance error message (CVE-2013-0212) * Wed Jan 23 2013 Martin Magr - 2012.2.1-1 - Added python-keystone requirement -------------------------------------------------------------------------------- ================================================================================ perl-Regexp-Grammars-1.026-1.el6 (FEDORA-EPEL-2013-0258) Add grammatical parsing features to perl regular expressions -------------------------------------------------------------------------------- Update Information: Update to version 1.026 -------------------------------------------------------------------------------- ChangeLog: * Mon Feb 4 2013 Bill Pemberton - 1.026-1 - update to version 1.026 -------------------------------------------------------------------------------- References: [ 1 ] Bug #907124 - perl-Regexp-Grammars-1.026 is available https://bugzilla.redhat.com/show_bug.cgi?id=907124 -------------------------------------------------------------------------------- ================================================================================ php-JsonSchema-1.2.4-1.el6 (FEDORA-EPEL-2013-0251) PHP implementation of JSON schema -------------------------------------------------------------------------------- Update Information: Updated to upstream version 1.2.4 1.2.2 to 1.2.4 diff: https://github.com/justinrainbow/json-schema/compare/1.2.2...1.2.4 -------------------------------------------------------------------------------- ChangeLog: * Mon Feb 4 2013 Shawn Iwinski 1.2.4-1 - Updated to upstream version 1.2.4 - Updates per new Fedora packaging guidelines for Git repos -------------------------------------------------------------------------------- References: [ 1 ] Bug #907127 - php-JsonSchema-1.2.4 is available https://bugzilla.redhat.com/show_bug.cgi?id=907127 -------------------------------------------------------------------------------- ================================================================================ python-askbot-fedmsg-0.0.4-1.el6 (FEDORA-EPEL-2013-0253) Askbot plugin for emitting events to the Fedora message bus -------------------------------------------------------------------------------- Update Information: Initial release -------------------------------------------------------------------------------- References: [ 1 ] Bug #907209 - Review Request: python-askbot-fedmsg - Askbot plugin for emitting events to the Fedora message bus https://bugzilla.redhat.com/show_bug.cgi?id=907209 -------------------------------------------------------------------------------- From updates at fedoraproject.org Tue Feb 5 21:27:53 2013 From: updates at fedoraproject.org (updates at fedoraproject.org) Date: Tue, 05 Feb 2013 21:27:53 +0000 Subject: Fedora EPEL 6 updates-testing report Message-ID: <20130205212753.D0FE4206A2@bastion01.phx2.fedoraproject.org> The following Fedora EPEL 6 Security updates need testing: Age URL 290 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5620/bugzilla-3.4.14-2.el6 12 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0174/tinymce-spellchecker-2.0.5-6.el6 12 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0193/couchdb-1.0.4-2.el6 66 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-13610/drupal6-ctools-1.10-1.el6 212 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-6348/bcfg2-1.2.3-1.el6 478 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2011-4701/supybot-gribble-0.83.4.1-10.el6 14 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0123/python-tw2-jquery-2.0.3-5.el6 14 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0170/asterisk-1.8.20.0-1.el6 4 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0233/wordpress-3.5.1-1.el6 The following builds have been pushed to Fedora EPEL 6 updates-testing mongodb-2.2.3-1.el6 nsd-3.2.15-2.el6 php-horde-Horde-Ldap-2.0.2-1.el6 php-horde-Horde-SpellChecker-2.1.0-1.el6 Details about builds: ================================================================================ mongodb-2.2.3-1.el6 (FEDORA-EPEL-2013-0262) High-performance, schema-free document-oriented database -------------------------------------------------------------------------------- Update Information: Update to version 2.2.3 remove duplicate headers (#886064) Update to 2.2.2 Built with ssl support, minor bugfixes Update to 2.2.1, a bugfix only release Update to 2.2.0 Update init script to use a pidfile -------------------------------------------------------------------------------- ChangeLog: * Tue Feb 5 2013 Troy Dawson - 2.2.3-1 - Update to version 2.2.3 * Mon Jan 7 2013 Troy Dawson - 2.2.2-2 - remove duplicate headers (#886064) * Wed Dec 5 2012 Troy Dawson - 2.2.2-1 - Updated to version 2.2.2 * Tue Nov 27 2012 Troy Dawson - 2.2.1-3 - Add ssl build option - Using the reserved mongod UID for the useradd - mongod man page in server package (#880351) - added optional MONGODB_OPTIONS to init script * Wed Oct 31 2012 Nathaniel McCallum - 2.2.1-2 - Make sure build and install flags are the same - Actually remove the js patch file * Wed Oct 31 2012 Nathaniel McCallum - 2.2.1-1 - Remove fork fix patch (fixed upstream) - Remove pcre patch (fixed upstream) - Remove mozjs patch (now using v8 upstream) - Update to 2.2.1 * Tue Oct 2 2012 Troy Dawson - 2.2.0-6 - full flag patch to get 32 bit builds to work * Tue Oct 2 2012 Troy Dawson - 2.2.0-5 - shared libraries patch - Fix up minor %files issues * Fri Sep 28 2012 Troy Dawson - 2.2.0-4 - Fix spec files problems * Fri Sep 28 2012 Troy Dawson - 2.2.0-3 - Updated patch to use system libraries - Update init script to use a pidfile * Thu Sep 27 2012 Troy Dawson - 2.2.0-2 - Added patch to use system libraries * Wed Sep 19 2012 Troy Dawson - 2.2.0-1 - Updated to 2.2.0 - Updated patches that were still needed - use v8 instead of spider_monkey due to bundled library issues -------------------------------------------------------------------------------- References: [ 1 ] Bug #880351 - mongod man page is in mongodb package instead of mongodb-server package https://bugzilla.redhat.com/show_bug.cgi?id=880351 -------------------------------------------------------------------------------- ================================================================================ nsd-3.2.15-2.el6 (FEDORA-EPEL-2013-0260) Fast and lean authoritative DNS Name Server -------------------------------------------------------------------------------- Update Information: Updated to 3.2.15 with rate limit support to mitigate DDOS attacks -------------------------------------------------------------------------------- ChangeLog: * Tue Feb 5 2013 Paul Wouters - 3.2.15-2 - Updated to 3.2.15 which has support for rate limiting - Only run nsdc rebuild hourly cronjob when nsd service is running - Fix nsd.init to return proper return code for 'status' cmd -------------------------------------------------------------------------------- ================================================================================ php-horde-Horde-Ldap-2.0.2-1.el6 (FEDORA-EPEL-2013-0263) Horde LDAP libraries -------------------------------------------------------------------------------- Update Information: A set of classes for connecting to LDAP servers and working with directory objects. -------------------------------------------------------------------------------- References: [ 1 ] Bug #874688 - Review Request: php-horde-Horde-Ldap - Horde LDAP libraries https://bugzilla.redhat.com/show_bug.cgi?id=874688 -------------------------------------------------------------------------------- ================================================================================ php-horde-Horde-SpellChecker-2.1.0-1.el6 (FEDORA-EPEL-2013-0261) Spellcheck API -------------------------------------------------------------------------------- Update Information: Unified spellchecking API. -------------------------------------------------------------------------------- References: [ 1 ] Bug #894563 - Review Request: php-horde-Horde-SpellChecker - Spellcheck API https://bugzilla.redhat.com/show_bug.cgi?id=894563 -------------------------------------------------------------------------------- From wtogami at gmail.com Wed Feb 6 03:46:13 2013 From: wtogami at gmail.com (Warren Togami Jr.) Date: Tue, 5 Feb 2013 17:46:13 -1000 Subject: Planning for LTSP EPEL-6 Message-ID: Hi folks, Joshua Trimm (FAS: enslaver) has joined the K12Linux project, and is currently working on formal integration of LTSP for EL-6. It is our intent for EPEL-6 to eventually contain all components of LTSP. After EPEL-6 is complete, Fedora may be considered. I have largely moved on from this project, but I am helping the transition to new developers. Joshua is doing at least EPEL-6 since his employer relies upon it. In the long-term K12Linux needs more knowledgeable Fedora developers in order to be sustainable. *Packages* Certain: ltsp, ltspfs, ldm, mkdst, nbd, ltsp-client-kernel Possibly: unionfs-fuse *NBD needs to be upgraded in EPEL-6* https://bugzilla.redhat.com/show_bug.cgi?id=695066#c3 Prior versions of NBD lacked initscripts and standard port assignments, but this has changed with recent versions of NBD upstream. https://bugzilla.redhat.com/show_bug.cgi?id=877518 A systemd unit file was proposed here. We would need an equivalent sysvinit script for EPEL-6. *NBD Upgrade Risk Analysis* - EL-6 lacks nbd.ko, so the userspace nbd-client in EPEL-6 could not be used. Thus it is possible nobody was using the userspace-only nbd-server daemon on EL-6? - *Scenarios:* Does 3.2 remain compatible with old nbd client/server and invocation scripts? If command line parameters and the wire protocol remains compatible, then risk to users is negligible. (Joshua is researching this.) - *Yes, safe to upgrade:* The old way of using nbd by manually specifying port numbers is deprecated but supported in nbd-3.2, so users will not notice any difference. - *No, safe to upgrade: *Even though it is not compatible, nobody was actually using nbd-server on EL-6, so we can safely upgrade it. - *No, not safe to upgrade:* Not compatible, and we don't want to risk breaking users who might have relied on the old nbd-server on EL-6. Use a parallel nbd3 package. - Alternative nbd3 package would obviate the risk of upgrading, but it would create an added maintenance burden. nbd has had several CVE advisories in the past, and we really would be better off avoiding the need to maintain redundant daemons. By upgrading nbd in EPEL-6, it will make it easier to maintain in the future as security fixes will not need to be backported. I believe we have a strong case for upgrading under any of the above scenarios. Joshua will research the compatibility issue to better inform us of the actual extent of upgrade risk. * * *unionfs-fuse and dracut module* Currently LTSP clients netboot a dracut-network generated initrd which mounts a read-only NFS or NBD root filesystem and relies upon /etc/rwtab*. In theory rwtab bind mounts copies of files and directories to the read-only filesystem to allow a stateless client to boot. In practice rwtab has significant problems and was never well supported as most developers never test in readonly root stateless mode. As an alternative, Joshua intends to try the fuse-based unionfs overlay to mimic the kernel-based unionfs overlay used by Debian LTSP. http://podgorny.cz/moin/UnionFsFuse http://pkgs.repoforge.org/fuse-unionfs/ Someone made packages, although it hasn't been tried yet. It would theoretically require a dracut module to move /sysroot to another name, then mount the fuse overlay as /sysroot prior to mounting of any auxiliary filesystems (/proc?) and switch_root. The "other name" may need to be protected from the deletion that occurs prior to switch_root. Hopefully fuse will work as expected even after a switch_root. *LTSP Client Kernel* https://www.redhat.com/archives/epel-devel-list/2011-May/msg00059.html LTSP for EPEL-6 will require a LTSP-only embedded kernel as proposed back in May 2011. Please see this previous thread about why it would be safe for EPEL-6. Warren Togami -------------- next part -------------- An HTML attachment was scrubbed... URL: From wtogami at gmail.com Wed Feb 6 06:25:04 2013 From: wtogami at gmail.com (Warren Togami Jr.) Date: Tue, 5 Feb 2013 20:25:04 -1000 Subject: Planning for LTSP EPEL-6 In-Reply-To: References: Message-ID: On Tue, Feb 5, 2013 at 5:46 PM, Warren Togami Jr. wrote: > *NBD Upgrade Risk Analysis* > > - EL-6 lacks nbd.ko, so the userspace nbd-client in EPEL-6 could not > be used. Thus it is possible nobody was using the userspace-only > nbd-server daemon on EL-6? > - *Scenarios:* Does 3.2 remain compatible with old nbd client/server > and invocation scripts? If command line parameters and the wire protocol > remains compatible, then risk to users is negligible. (Joshua is > researching this.) > - *Yes, safe to upgrade:* The old way of using nbd by manually > specifying port numbers is deprecated but supported in nbd-3.2, so users > will not notice any difference. > - *No, safe to upgrade: *Even though it is not compatible, nobody > was actually using nbd-server on EL-6, so we can safely upgrade it. > - *No, not safe to upgrade:* Not compatible, and we don't want to > risk breaking users who might have relied on the old nbd-server on EL-6. > Use a parallel nbd3 package. > - Alternative nbd3 package would obviate the risk of upgrading, but it > would create an added maintenance burden. nbd has had several CVE > advisories in the past, and we really would be better off avoiding the need > to maintain redundant daemons. By upgrading nbd in EPEL-6, it will make it > easier to maintain in the future as security fixes will not need to be > backported. > > I believe we have a strong case for upgrading under any of the above > scenarios. Joshua will research the compatibility issue to better inform > us of the actual extent of upgrade risk. > * > * > http://sourceforge.net/mailarchive/message.php?msg_id=29687242 https://bugzilla.novell.com/show_bug.cgi?id=776027 It seems our current nbd-2.9.20 is the last version that was compatible with xinetd, the old way of serving nbd images to arbitrary clients. The SuSE dev cyberorg told me that upstream didn't intend to break xinetd. But 3.2 nbd-client used in the old way (IP address and port) can continue to work if the nbd-server running as a standalone daemon is configured with "oldstyle = true". It seems if we are concerned about current EPEL-6 nbd-server users (who are they?), we shouldn't update nbd in Fedora or EPEL-6 until they fix nbd-server's ability to operate with xinetd. > ** > *unionfs-fuse and dracut module* > Currently LTSP clients netboot a dracut-network generated initrd which > mounts a read-only NFS or NBD root filesystem and relies upon /etc/rwtab*. > In theory rwtab bind mounts copies of files and directories to the > read-only filesystem to allow a stateless client to boot. In practice > rwtab has significant problems and was never well supported as most > developers never test in readonly root stateless mode. As an alternative, > Joshua intends to try the fuse-based unionfs overlay to mimic the > kernel-based unionfs overlay used by Debian LTSP. > > http://podgorny.cz/moin/UnionFsFuse > http://pkgs.repoforge.org/fuse-unionfs/ > Someone made packages, although it hasn't been tried yet. It would > theoretically require a dracut module to move /sysroot to another name, > then mount the fuse overlay as /sysroot prior to mounting of any auxiliary > filesystems (/proc?) and switch_root. The "other name" may need to be > protected from the deletion that occurs prior to switch_root. Hopefully > fuse will work as expected even after a switch_root. > http://togami.com/~warren/archive/2013/switch_root.c Note for Joshua: I thought switch_root would attempt to delete the real root, but it actually stops at the mount barrier. If not, perhaps a lazy unmount of the real root prior to switch_root might successfully protect it without breaking the fuse overlay. Needs testing. Warren -------------- next part -------------- An HTML attachment was scrubbed... URL: From updates at fedoraproject.org Wed Feb 6 18:58:55 2013 From: updates at fedoraproject.org (updates at fedoraproject.org) Date: Wed, 06 Feb 2013 18:58:55 +0000 Subject: Fedora EPEL 5 updates-testing report Message-ID: <20130206185855.03AD2201A4@bastion01.phx2.fedoraproject.org> The following Fedora EPEL 5 Security updates need testing: Age URL 290 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5630/bugzilla-3.2.10-5.el5 185 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-6608/Django-1.1.4-2.el5 67 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-13612/drupal6-ctools-1.10-1.el5 13 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0171/moodle-1.9.19-5.el5 13 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0173/couchdb-1.0.4-2.el5.1 5 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0237/wordpress-3.5.1-1.el5.1 The following builds have been pushed to Fedora EPEL 5 updates-testing dmlite-0.6.0-1.el5 dmlite-plugins-adapter-0.6.0-1.el5 dmlite-plugins-librarian-0.5.0-2.el5 dmlite-plugins-memcache-0.5.0-2.el5 dmlite-plugins-mysql-0.6.0-1.el5 dmlite-plugins-profiler-0.5.0-2.el5 dmlite-plugins-s3-0.5.0-1.el5 dpm-dsi-1.9.0-1.el5 lcgdm-dav-0.12.0-1.el5 munin-2.0.11-2.el5 nsd-3.2.15-3.el5 Details about builds: ================================================================================ dmlite-0.6.0-1.el5 (FEDORA-EPEL-2013-0264) Common libraries for grid data management and storage -------------------------------------------------------------------------------- Update Information: Update for new upstream release. -------------------------------------------------------------------------------- ChangeLog: * Wed Feb 6 2013 Ricardo Rocha - 0.6.0-1 - Update for new upstream release - Added patch to disable python and tests packages * Thu Oct 25 2012 Ricardo Rocha - 0.5.0-1 - Update for new upstream release -------------------------------------------------------------------------------- ================================================================================ dmlite-plugins-adapter-0.6.0-1.el5 (FEDORA-EPEL-2013-0280) Adapter plug-in for dmlite -------------------------------------------------------------------------------- Update Information: Update for new upstream release -------------------------------------------------------------------------------- ChangeLog: * Wed Dec 19 2012 Ricardo Rocha - 0.6.0-1 - Update for new upstream release * Thu Oct 25 2012 Ricardo Rocha - 0.5.0-1 - Update for new upstream release - Added boost141 build requires in el5 case -------------------------------------------------------------------------------- ================================================================================ dmlite-plugins-librarian-0.5.0-2.el5 (FEDORA-EPEL-2013-0285) Librarian plugin for dmlite -------------------------------------------------------------------------------- Update Information: Update for new upstream release -------------------------------------------------------------------------------- ChangeLog: * Wed Dec 19 2012 Ricardo Rocha - 0.5.0-2 - Update release number for rebuild against dmlite core 0.6 * Thu Oct 25 2012 Ricardo Rocha - 0.5.0-1 - Update for new upstream release -------------------------------------------------------------------------------- ================================================================================ dmlite-plugins-memcache-0.5.0-2.el5 (FEDORA-EPEL-2013-0288) Memcached plugin for dmlite -------------------------------------------------------------------------------- Update Information: Update for new upstream release -------------------------------------------------------------------------------- ChangeLog: * Tue Dec 18 2012 Ricardo Rocha - 0.5.0-2 - Rebuild for dmlite 0.6 update * Thu Oct 25 2012 Ricardo Rocha - 0.5.0-1 - Update for new upstream release -------------------------------------------------------------------------------- ================================================================================ dmlite-plugins-mysql-0.6.0-1.el5 (FEDORA-EPEL-2013-0266) MySQL plugin for dmlite -------------------------------------------------------------------------------- Update Information: Update for new upstream release -------------------------------------------------------------------------------- ChangeLog: * Wed Dec 19 2012 Ricardo Rocha - 0.6.0-1 - Update for new upstream release * Thu Oct 25 2012 Ricardo Rocha - 0.5.0-1 - Update for new upstream release -------------------------------------------------------------------------------- ================================================================================ dmlite-plugins-profiler-0.5.0-2.el5 (FEDORA-EPEL-2013-0286) Profiler plugin for dmlite -------------------------------------------------------------------------------- Update Information: Update to new upstream release -------------------------------------------------------------------------------- ChangeLog: * Wed Dec 19 2012 Ricardo Rocha - 0.5.0-2 - Rebuild for dmlite core 0.6 update * Thu Oct 25 2012 Ricardo Rocha - 0.5.0-1 - Update for new upstream release -------------------------------------------------------------------------------- ================================================================================ dmlite-plugins-s3-0.5.0-1.el5 (FEDORA-EPEL-2013-0281) S3 plugin for dmlite -------------------------------------------------------------------------------- Update Information: Update for new upstream release -------------------------------------------------------------------------------- ChangeLog: * Wed Dec 19 2012 Ricardo Rocha - 0.5.0-1 - Update for new upstream release -------------------------------------------------------------------------------- ================================================================================ dpm-dsi-1.9.0-1.el5 (FEDORA-EPEL-2013-0283) Disk Pool Manager (DPM) plugin for the Globus GridFTP server -------------------------------------------------------------------------------- Update Information: Update for new upstream release -------------------------------------------------------------------------------- ChangeLog: * Wed Dec 19 2012 Ricardo Rocha - 1.9.0-1 - Update for new upstream release -------------------------------------------------------------------------------- ================================================================================ lcgdm-dav-0.12.0-1.el5 (FEDORA-EPEL-2013-0275) HTTP/DAV front end to the DPM/LFC services -------------------------------------------------------------------------------- Update Information: Update for new upstream release -------------------------------------------------------------------------------- ChangeLog: * Wed Feb 6 2013 Ricardo Rocha - 0.12.0-1 - Update for new upstream release * Tue Jan 29 2013 Ricardo Rocha - 0.11.0-2 - Added patch for apache 2.4 api change -------------------------------------------------------------------------------- ================================================================================ munin-2.0.11-2.el5 (FEDORA-EPEL-2013-0291) Network-wide graphing framework (grapher/gatherer) -------------------------------------------------------------------------------- Update Information: Upstream 2.0.11 -------------------------------------------------------------------------------- ChangeLog: * Mon Feb 4 2013 D. Johnson - 2.0.11-2 - BZ# 907369 revert HTMLOld.pm patch * Sun Feb 3 2013 D. Johnson - 2.0.11-1 - Upstream release 2.0.11 * Mon Jan 21 2013 D. Johnson - 2.0.10-2 - BZ# 896644 Wrong path to munin jar in jmx plugin -------------------------------------------------------------------------------- References: [ 1 ] Bug #907369 - Munin HTMLOld.pm is patched with a bad patch from munin track that breaks thread counting https://bugzilla.redhat.com/show_bug.cgi?id=907369 [ 2 ] Bug #896644 - Wrong path to munin jar in jmx plugin https://bugzilla.redhat.com/show_bug.cgi?id=896644 -------------------------------------------------------------------------------- ================================================================================ nsd-3.2.15-3.el5 (FEDORA-EPEL-2013-0272) Fast and lean authoritative DNS Name Server -------------------------------------------------------------------------------- Update Information: Updated to 3.2.15 with rate limit support to mitigate DDOS attacks -------------------------------------------------------------------------------- ChangeLog: * Tue Feb 5 2013 Paul Wouters - 3.2.15-3 - Updates to 3.2.15 which contains rate limit code - Fix to nsd.init script to return non-zero on service status when not running (broke puppet) - Only run nsdc rebuild hourly cronjob when nsd service is running -------------------------------------------------------------------------------- From updates at fedoraproject.org Wed Feb 6 18:58:57 2013 From: updates at fedoraproject.org (updates at fedoraproject.org) Date: Wed, 06 Feb 2013 18:58:57 +0000 Subject: Fedora EPEL 6 updates-testing report Message-ID: <20130206185857.166C5201A4@bastion01.phx2.fedoraproject.org> The following Fedora EPEL 6 Security updates need testing: Age URL 290 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5620/bugzilla-3.4.14-2.el6 13 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0174/tinymce-spellchecker-2.0.5-6.el6 13 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0193/couchdb-1.0.4-2.el6 67 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-13610/drupal6-ctools-1.10-1.el6 213 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-6348/bcfg2-1.2.3-1.el6 478 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2011-4701/supybot-gribble-0.83.4.1-10.el6 0 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0267/mediawiki119-1.19.3-3.el6 15 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0123/python-tw2-jquery-2.0.3-5.el6 15 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0170/asterisk-1.8.20.0-1.el6 5 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0233/wordpress-3.5.1-1.el6 The following builds have been pushed to Fedora EPEL 6 updates-testing ckeditor-3.6.6-1.el6 cross-binutils-2.23.51.0.3-1.el6 cross-gcc-4.7.2-2.aa.20121114svn.el6.1 dmlite-0.6.0-1.el6 dmlite-plugins-adapter-0.6.0-1.el6 dmlite-plugins-librarian-0.5.0-2.el6 dmlite-plugins-memcache-0.5.0-2.el6 dmlite-plugins-mysql-0.6.0-1.el6 dmlite-plugins-profiler-0.5.0-2.el6 dmlite-plugins-s3-0.5.0-1.el6 dpm-dsi-1.9.0-1.el6 easybashgui-6.0.1-1.el6 lcgdm-dav-0.12.0-1.el6 mediawiki119-1.19.3-3.el6 munin-2.0.11-2.el6 nsd-3.2.15-3.el6 python-fedora-0.3.32.3-1.el6 seamonkey-2.15.2-1.el6 Details about builds: ================================================================================ ckeditor-3.6.6-1.el6 (FEDORA-EPEL-2013-0284) WYSIWYG text editor to be used inside web pages -------------------------------------------------------------------------------- Update Information: Packaging changes: * move _samples in documentation * drop _source from package * move php library to /usr/share/php * fix httpd configuration (grant access) Upstream changelog version 3.6.6: * 9866 : [IE10] The full toolbar is displayed in two lines in RTL environment. * 9483 : [IE10] Fixed script error on float panel opening. * 6410 : SCAYT will show no suggestions when appropriate, instead of not appearing. * 7533, #9439 : Fixed SCAYT issues with setData(). * 9167 : Improper HTML transformations happening on specific cases. * 9553 : Properly handle dash values in the style field of dialogs. * 9787 : [IE9] onChange wasn't fired for checkboxes in dialogs. * 8888 : It was not possible to scroll dialogs on very small viewports. * 9594 : The TAB key was having no effect on focused read-only editor. Upstream changelog version 3.6.5: * 9132 : [IE8] Fixed js error when closing paste dialog. * 9101 : Tab key in smiley and special char dialog now moves focus to dialog buttons. * 9209 : Fixed IE7 crash when switching list item type. * 8995 : Fixed incorrect HTML escaping in bbcode plugin. * 6168 : Fixed style definition with styles defined as inline style attribute. * 9097 : [IE] Fixed small selection flaw when select starts from the blank region outside body. * 9129 : Fixed various Del/Backspace keystroke behaviors inside of HTML list. * 9117 : [FF] Fixed js error when calling setData() on a hidden editor. * 9289 : Disallowed creating javascript links through the link dialog. * 9312 : Fixed table with multiple output generated in wrong order. * 8795 : Fixed table resize plugin not working when document overflows horizontally. * 8888 : Fixed dialog dimension overflowing small view port. * 9311 : Fixed vertical scroll being impossible when autogrow plugin is used during maximized editor. * 1961 : The "id" attribute will be appended to anchors alongside the "name" attribute. * 9219 : The element is now protected while parsing the contents. * 9281 : [Safari] Fixed inline style breaking dialog advanced tab. * 9281 : [IE8] Fixed not being able to remove border from the image dialog. -------------------------------------------------------------------------------- ChangeLog: * Tue Feb 5 2013 Remi Collet - 3.6.6-1 - update to 3.6.6 - move _samples in doc - don't package _source - move php library to /usr/share/php - fix httpd configuration (grant access) #894567 -------------------------------------------------------------------------------- References: [ 1 ] Bug #894567 - Please update httpd configuration to grant access https://bugzilla.redhat.com/show_bug.cgi?id=894567 -------------------------------------------------------------------------------- ================================================================================ cross-binutils-2.23.51.0.3-1.el6 (FEDORA-EPEL-2013-0276) A GNU collection of cross-compilation binary utilities -------------------------------------------------------------------------------- Update Information: This is an initial release of the cross compilation tool chain for Fedora EPEL for Enterprise Linux 6. -------------------------------------------------------------------------------- ================================================================================ cross-gcc-4.7.2-2.aa.20121114svn.el6.1 (FEDORA-EPEL-2013-0276) Cross C compiler -------------------------------------------------------------------------------- Update Information: This is an initial release of the cross compilation tool chain for Fedora EPEL for Enterprise Linux 6. -------------------------------------------------------------------------------- ================================================================================ dmlite-0.6.0-1.el6 (FEDORA-EPEL-2013-0277) Common libraries for grid data management and storage -------------------------------------------------------------------------------- Update Information: Update for new upstream release. -------------------------------------------------------------------------------- ChangeLog: * Wed Feb 6 2013 Ricardo Rocha - 0.6.0-1 - Update for new upstream release - Added patch to disable python and tests packages * Thu Oct 25 2012 Ricardo Rocha - 0.5.0-1 - Update for new upstream release -------------------------------------------------------------------------------- ================================================================================ dmlite-plugins-adapter-0.6.0-1.el6 (FEDORA-EPEL-2013-0278) Adapter plug-in for dmlite -------------------------------------------------------------------------------- Update Information: Update for new upstream release -------------------------------------------------------------------------------- ChangeLog: * Wed Dec 19 2012 Ricardo Rocha - 0.6.0-1 - Update for new upstream release * Thu Oct 25 2012 Ricardo Rocha - 0.5.0-1 - Update for new upstream release - Added boost141 build requires in el5 case -------------------------------------------------------------------------------- ================================================================================ dmlite-plugins-librarian-0.5.0-2.el6 (FEDORA-EPEL-2013-0274) Librarian plugin for dmlite -------------------------------------------------------------------------------- Update Information: Update for new upstream release -------------------------------------------------------------------------------- ChangeLog: * Wed Dec 19 2012 Ricardo Rocha - 0.5.0-2 - Update release number for rebuild against dmlite core 0.6 * Thu Oct 25 2012 Ricardo Rocha - 0.5.0-1 - Update for new upstream release -------------------------------------------------------------------------------- ================================================================================ dmlite-plugins-memcache-0.5.0-2.el6 (FEDORA-EPEL-2013-0265) Memcached plugin for dmlite -------------------------------------------------------------------------------- Update Information: Update for new upstream release -------------------------------------------------------------------------------- ChangeLog: * Tue Dec 18 2012 Ricardo Rocha - 0.5.0-2 - Rebuild for dmlite 0.6 update * Thu Oct 25 2012 Ricardo Rocha - 0.5.0-1 - Update for new upstream release -------------------------------------------------------------------------------- ================================================================================ dmlite-plugins-mysql-0.6.0-1.el6 (FEDORA-EPEL-2013-0273) MySQL plugin for dmlite -------------------------------------------------------------------------------- Update Information: Update for new upstream release -------------------------------------------------------------------------------- ChangeLog: * Wed Dec 19 2012 Ricardo Rocha - 0.6.0-1 - Update for new upstream release * Thu Oct 25 2012 Ricardo Rocha - 0.5.0-1 - Update for new upstream release -------------------------------------------------------------------------------- ================================================================================ dmlite-plugins-profiler-0.5.0-2.el6 (FEDORA-EPEL-2013-0290) Profiler plugin for dmlite -------------------------------------------------------------------------------- Update Information: Update to new upstream release -------------------------------------------------------------------------------- ChangeLog: * Wed Dec 19 2012 Ricardo Rocha - 0.5.0-2 - Rebuild for dmlite core 0.6 update * Thu Oct 25 2012 Ricardo Rocha - 0.5.0-1 - Update for new upstream release -------------------------------------------------------------------------------- ================================================================================ dmlite-plugins-s3-0.5.0-1.el6 (FEDORA-EPEL-2013-0279) S3 plugin for dmlite -------------------------------------------------------------------------------- Update Information: Update for new upstream release -------------------------------------------------------------------------------- ChangeLog: * Wed Dec 19 2012 Ricardo Rocha - 0.5.0-1 - Update for new upstream release -------------------------------------------------------------------------------- ================================================================================ dpm-dsi-1.9.0-1.el6 (FEDORA-EPEL-2013-0269) Disk Pool Manager (DPM) plugin for the Globus GridFTP server -------------------------------------------------------------------------------- Update Information: Update for new upstream release -------------------------------------------------------------------------------- ChangeLog: * Wed Dec 19 2012 Ricardo Rocha - 1.9.0-1 - Update for new upstream release -------------------------------------------------------------------------------- ================================================================================ easybashgui-6.0.1-1.el6 (FEDORA-EPEL-2013-0270) Bash function library -------------------------------------------------------------------------------- Update Information: Update to 6.0.1 -------------------------------------------------------------------------------- ChangeLog: * Tue Feb 5 2013 Matthieu Saulnier - 6.0.1-1 - Update to 6.0.1 - Remove Patch0 (upstream issue) -------------------------------------------------------------------------------- ================================================================================ lcgdm-dav-0.12.0-1.el6 (FEDORA-EPEL-2013-0268) HTTP/DAV front end to the DPM/LFC services -------------------------------------------------------------------------------- Update Information: Update for new upstream release -------------------------------------------------------------------------------- ChangeLog: * Wed Feb 6 2013 Ricardo Rocha - 0.12.0-1 - Update for new upstream release * Tue Jan 29 2013 Ricardo Rocha - 0.11.0-2 - Added patch for apache 2.4 api change -------------------------------------------------------------------------------- ================================================================================ mediawiki119-1.19.3-3.el6 (FEDORA-EPEL-2013-0267) A wiki engine -------------------------------------------------------------------------------- Update Information: Rebase to version 1.19.3. Fixes CVE-2012-5391 amongst other bugfixes. -------------------------------------------------------------------------------- ChangeLog: * Fri Dec 7 2012 Patrick Uiterwijk - 1.19.3-1 - Update to upstream 1.19.3 * Fri Dec 7 2012 Patrick Uiterwijk - 1.19.2-2 - Backported security fix for bug 40995 (RHBZ 882325) -------------------------------------------------------------------------------- References: [ 1 ] Bug #885016 - CVE-2012-5391 mediawiki: Vulnerable to session fixation attacks [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=885016 -------------------------------------------------------------------------------- ================================================================================ munin-2.0.11-2.el6 (FEDORA-EPEL-2013-0289) Network-wide graphing framework (grapher/gatherer) -------------------------------------------------------------------------------- Update Information: Upstream 2.0.11 -------------------------------------------------------------------------------- ChangeLog: * Mon Feb 4 2013 D. Johnson - 2.0.11-2 - BZ# 907369 revert HTMLOld.pm patch * Sun Feb 3 2013 D. Johnson - 2.0.11-1 - Upstream release 2.0.11 * Mon Jan 21 2013 D. Johnson - 2.0.10-2 - BZ# 896644 Wrong path to munin jar in jmx plugin -------------------------------------------------------------------------------- References: [ 1 ] Bug #907369 - Munin HTMLOld.pm is patched with a bad patch from munin track that breaks thread counting https://bugzilla.redhat.com/show_bug.cgi?id=907369 [ 2 ] Bug #896644 - Wrong path to munin jar in jmx plugin https://bugzilla.redhat.com/show_bug.cgi?id=896644 -------------------------------------------------------------------------------- ================================================================================ nsd-3.2.15-3.el6 (FEDORA-EPEL-2013-0282) Fast and lean authoritative DNS Name Server -------------------------------------------------------------------------------- Update Information: Updated to 3.2.15 with rate limit support to mitigate DDOS attacks -------------------------------------------------------------------------------- ChangeLog: * Tue Feb 5 2013 Paul Wouters - 3.2.15-3 - Updated to 3.2.15 which has support for rate limiting - Only run nsdc rebuild hourly cronjob when nsd service is running - Fix nsd.init to return proper return code for 'status' cmd -------------------------------------------------------------------------------- ================================================================================ python-fedora-0.3.32.3-1.el6 (FEDORA-EPEL-2013-0271) Python modules for talking to Fedora Infrastructure Services -------------------------------------------------------------------------------- Update Information: * Fixes an issue with client session cookies not being valid * Port from python-pycurl to python-requests to make the http connections to the servers. * Fixes a problem with soprovidercsrf if the database doesn't set an encoding * Fixes an issue with the login templates if the template is being translated. * Added a lookup_email parameter to fedora.client.AccountSystem.gravatar_url() to allow generating gravaar urls without looking up email addresses in fas. * Fixed a bug in fedora.tg.utils.tg_absolute_url() where it was still appending the csrf_token. * Add an auth adapter for flask web apps to authenticate to FAS * New minimum version of python: requires python-2.5 or higher * Fix localization of login templates (laxathom) * Fixes a problem with soprovidercsrf if the database doesn't set an encoding * Fixes an issue with the login templates if the template is being translated. * Added a lookup_email parameter to fedora.client.AccountSystem.gravatar_url() to allow generating gravaar urls without looking up email addresses in fas. * Fixed a bug in fedora.tg.utils.tg_absolute_url() where it was still appending the csrf_token. * Add an auth adapter for flask web apps to authenticate to FAS * New minimum version of python: requires python-2.5 or higher * Fix localization of login templates (laxathom) * Added a lookup_email parameter to fedora.client.AccountSystem.gravatar_url() to allow generating gravaar urls without looking up email addresses in fas. * Fixed a bug in fedora.tg.utils.tg_absolute_url() where it was still appending the csrf_token. * Add an auth adapter for flask web apps to authenticate to FAS * New minimum version of python: requires python-2.5 or higher * Fix localization of login templates (laxathom) * Fixes a problem with soprovidercsrf if the database doesn't set an encoding * Fixes an issue with the login templates if the template is being translated. * Added a lookup_email parameter to fedora.client.AccountSystem.gravatar_url() to allow generating gravaar urls without looking up email addresses in fas. * Fixed a bug in fedora.tg.utils.tg_absolute_url() where it was still appending the csrf_token. * Add an auth adapter for flask web apps to authenticate to FAS * New minimum version of python: requires python-2.5 or higher * Fix localization of login templates (laxathom) * Added a lookup_email parameter to fedora.client.AccountSystem.gravatar_url() to allow generating gravaar urls without looking up email addresses in fas. * Fixed a bug in fedora.tg.utils.tg_absolute_url() where it was still appending the csrf_token. * Add an auth adapter for flask web apps to authenticate to FAS * New minimum version of python: requires python-2.5 or higher * Fix localization of login templates (laxathom) * Fixes a problem with soprovidercsrf if the database doesn't set an encoding * Fixes an issue with the login templates if the template is being translated. * Added a lookup_email parameter to fedora.client.AccountSystem.gravatar_url() to allow generating gravaar urls without looking up email addresses in fas. * Fixed a bug in fedora.tg.utils.tg_absolute_url() where it was still appending the csrf_token. * Add an auth adapter for flask web apps to authenticate to FAS * New minimum version of python: requires python-2.5 or higher * Fix localization of login templates (laxathom) * Port from python-pycurl to python-requests to make the http connections to the servers. * Fixes a problem with soprovidercsrf if the database doesn't set an encoding * Fixes an issue with the login templates if the template is being translated. * Added a lookup_email parameter to fedora.client.AccountSystem.gravatar_url() to allow generating gravaar urls without looking up email addresses in fas. * Fixed a bug in fedora.tg.utils.tg_absolute_url() where it was still appending the csrf_token. * Add an auth adapter for flask web apps to authenticate to FAS * New minimum version of python: requires python-2.5 or higher * Fix localization of login templates (laxathom) * Fixes a problem with soprovidercsrf if the database doesn't set an encoding * Fixes an issue with the login templates if the template is being translated. * Added a lookup_email parameter to fedora.client.AccountSystem.gravatar_url() to allow generating gravaar urls without looking up email addresses in fas. * Fixed a bug in fedora.tg.utils.tg_absolute_url() where it was still appending the csrf_token. * Add an auth adapter for flask web apps to authenticate to FAS * New minimum version of python: requires python-2.5 or higher * Fix localization of login templates (laxathom) * Added a lookup_email parameter to fedora.client.AccountSystem.gravatar_url() to allow generating gravaar urls without looking up email addresses in fas. * Fixed a bug in fedora.tg.utils.tg_absolute_url() where it was still appending the csrf_token. * Add an auth adapter for flask web apps to authenticate to FAS * New minimum version of python: requires python-2.5 or higher * Fix localization of login templates (laxathom) * Fixes a problem with soprovidercsrf if the database doesn't set an encoding * Fixes an issue with the login templates if the template is being translated. * Added a lookup_email parameter to fedora.client.AccountSystem.gravatar_url() to allow generating gravaar urls without looking up email addresses in fas. * Fixed a bug in fedora.tg.utils.tg_absolute_url() where it was still appending the csrf_token. * Add an auth adapter for flask web apps to authenticate to FAS * New minimum version of python: requires python-2.5 or higher * Fix localization of login templates (laxathom) * Added a lookup_email parameter to fedora.client.AccountSystem.gravatar_url() to allow generating gravaar urls without looking up email addresses in fas. * Fixed a bug in fedora.tg.utils.tg_absolute_url() where it was still appending the csrf_token. * Add an auth adapter for flask web apps to authenticate to FAS * New minimum version of python: requires python-2.5 or higher * Fix localization of login templates (laxathom) * Fixes a problem with soprovidercsrf if the database doesn't set an encoding * Fixes an issue with the login templates if the template is being translated. * Added a lookup_email parameter to fedora.client.AccountSystem.gravatar_url() to allow generating gravaar urls without looking up email addresses in fas. * Fixed a bug in fedora.tg.utils.tg_absolute_url() where it was still appending the csrf_token. * Add an auth adapter for flask web apps to authenticate to FAS * New minimum version of python: requires python-2.5 or higher * Fix localization of login templates (laxathom) * Port from python-pycurl to python-requests to make the http connections to the servers. * Fixes a problem with soprovidercsrf if the database doesn't set an encoding * Fixes an issue with the login templates if the template is being translated. * Added a lookup_email parameter to fedora.client.AccountSystem.gravatar_url() to allow generating gravaar urls without looking up email addresses in fas. * Fixed a bug in fedora.tg.utils.tg_absolute_url() where it was still appending the csrf_token. * Add an auth adapter for flask web apps to authenticate to FAS * New minimum version of python: requires python-2.5 or higher * Fix localization of login templates (laxathom) * Fixes a problem with soprovidercsrf if the database doesn't set an encoding * Fixes an issue with the login templates if the template is being translated. * Added a lookup_email parameter to fedora.client.AccountSystem.gravatar_url() to allow generating gravaar urls without looking up email addresses in fas. * Fixed a bug in fedora.tg.utils.tg_absolute_url() where it was still appending the csrf_token. * Add an auth adapter for flask web apps to authenticate to FAS * New minimum version of python: requires python-2.5 or higher * Fix localization of login templates (laxathom) * Added a lookup_email parameter to fedora.client.AccountSystem.gravatar_url() to allow generating gravaar urls without looking up email addresses in fas. * Fixed a bug in fedora.tg.utils.tg_absolute_url() where it was still appending the csrf_token. * Add an auth adapter for flask web apps to authenticate to FAS * New minimum version of python: requires python-2.5 or higher * Fix localization of login templates (laxathom) * Fixes a problem with soprovidercsrf if the database doesn't set an encoding * Fixes an issue with the login templates if the template is being translated. * Added a lookup_email parameter to fedora.client.AccountSystem.gravatar_url() to allow generating gravaar urls without looking up email addresses in fas. * Fixed a bug in fedora.tg.utils.tg_absolute_url() where it was still appending the csrf_token. * Add an auth adapter for flask web apps to authenticate to FAS * New minimum version of python: requires python-2.5 or higher * Fix localization of login templates (laxathom) * Added a lookup_email parameter to fedora.client.AccountSystem.gravatar_url() to allow generating gravaar urls without looking up email addresses in fas. * Fixed a bug in fedora.tg.utils.tg_absolute_url() where it was still appending the csrf_token. * Add an auth adapter for flask web apps to authenticate to FAS * New minimum version of python: requires python-2.5 or higher * Fix localization of login templates (laxathom) * Fixes a problem with soprovidercsrf if the database doesn't set an encoding * Fixes an issue with the login templates if the template is being translated. * Added a lookup_email parameter to fedora.client.AccountSystem.gravatar_url() to allow generating gravaar urls without looking up email addresses in fas. * Fixed a bug in fedora.tg.utils.tg_absolute_url() where it was still appending the csrf_token. * Add an auth adapter for flask web apps to authenticate to FAS * New minimum version of python: requires python-2.5 or higher * Fix localization of login templates (laxathom) -------------------------------------------------------------------------------- ChangeLog: * Tue Feb 5 2013 Toshio Kuratomi - 0.3.32.3-1 - Upstream update to fix BodhiClient's knowledge of koji tags (ajax) * Mon Feb 4 2013 Toshio Kuratomi 0.3.32.2-1 - Upstream update fixing a bug interacting with python-requests * Thu Jan 24 2013 Toshio Kuratomi - 0.3.32.1-1 - Fix a documentation bug that slipped through * Wed Jan 23 2013 Ralph Bean - 0.3.32-1 - Replace pyCurl with python-requests in ProxyClient. * Tue Jan 22 2013 Toshio Kuratomi - 0.3.31-1 - Minor bugfix release * Thu Jan 10 2013 Toshio Kuratomi - 0.3.30-1 - Make TG's loginForm and CSRF's text translated from tg-apps (laxathom). - Fix a bug in fedora.tg.utils.tg_absolute_url - Add a lookup email parameter to gravatar lookups - Add an auth provider for flask -------------------------------------------------------------------------------- ================================================================================ seamonkey-2.15.2-1.el6 (FEDORA-EPEL-2013-0287) Web browser, e-mail, news, IRC client, HTML editor -------------------------------------------------------------------------------- Update Information: Update to 2.15.2 -------------------------------------------------------------------------------- ChangeLog: * Mon Feb 4 2013 Dmitry Butskoy 2.15.2-1 - update to 2.15.2 - fix build with new system nspr-4.9.2 -------------------------------------------------------------------------------- References: [ 1 ] Bug #907813 - seamonkey-2.15.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=907813 -------------------------------------------------------------------------------- From tdawson at redhat.com Fri Feb 8 17:56:40 2013 From: tdawson at redhat.com (Troy Dawson) Date: Fri, 08 Feb 2013 11:56:40 -0600 Subject: [HEADS-UP] Updating MongoDB to 2.2.3 in EPEL6 Message-ID: <51153C58.1080701@redhat.com> Hello, A couple of months back I asked about updating MongoDB from 2.0.7 to 2.2.0 in EPEL6. Although it is backwards compatible, there were several bugs brought up that people wanted fixed in Mongodb 2.2.x before we moved to this version. With MongoDB 2.2.3, the last of these bugs has been fixed. MongoDB 2.2.3 is now built and in testing, and I propose the following schedule. February 20 Push MongoDB 2.2.3 to stable for EPEL6 If anyone has any concerns, please let me know. If anyone knows where else I should announce this, please let me know. Thanks Troy Dawson From updates at fedoraproject.org Sat Feb 9 01:47:27 2013 From: updates at fedoraproject.org (updates at fedoraproject.org) Date: Sat, 09 Feb 2013 01:47:27 +0000 Subject: Fedora EPEL 5 updates-testing report Message-ID: <20130209014727.D9D32205E5@bastion01.phx2.fedoraproject.org> The following Fedora EPEL 5 Security updates need testing: Age URL 16 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0173/couchdb-1.0.4-2.el5.1 293 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5630/bugzilla-3.2.10-5.el5 187 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-6608/Django-1.1.4-2.el5 70 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-13612/drupal6-ctools-1.10-1.el5 7 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0237/wordpress-3.5.1-1.el5.1 The following builds have been pushed to Fedora EPEL 5 updates-testing drupal7-date_ical-2.4-1.el5 lcgdm-dav-0.12.1-1.el5 Details about builds: ================================================================================ drupal7-date_ical-2.4-1.el5 (FEDORA-EPEL-2013-0310) Allows creation of an iCal feed in Views -------------------------------------------------------------------------------- Update Information: Update to upstream 2.4 release Update to upstream 2.3 release Update to upstream 2.2 release -------------------------------------------------------------------------------- ChangeLog: -------------------------------------------------------------------------------- References: [ 1 ] Bug #907780 - drupal7-date_ical-2.4 is available https://bugzilla.redhat.com/show_bug.cgi?id=907780 [ 2 ] Bug #904736 - drupal7-date_ical-2.3 is available https://bugzilla.redhat.com/show_bug.cgi?id=904736 [ 3 ] Bug #903583 - drupal7-date_ical-2.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=903583 -------------------------------------------------------------------------------- ================================================================================ lcgdm-dav-0.12.1-1.el5 (FEDORA-EPEL-2013-0308) HTTP/DAV front end to the DPM/LFC services -------------------------------------------------------------------------------- Update Information: - fix for a frequent segfault Update for new upstream release Update for new upstream release Update for new upstream release Update for new upstream release -------------------------------------------------------------------------------- ChangeLog: * Fri Feb 8 2013 Ricardo Rocha - 0.12.1-1 - Update for new upstream release (patch for segfault) * Wed Feb 6 2013 Ricardo Rocha - 0.12.0-1 - Update for new upstream release * Tue Jan 29 2013 Ricardo Rocha - 0.11.0-2 - Added patch for apache 2.4 api change -------------------------------------------------------------------------------- From updates at fedoraproject.org Sat Feb 9 01:47:26 2013 From: updates at fedoraproject.org (updates at fedoraproject.org) Date: Sat, 09 Feb 2013 01:47:26 +0000 Subject: Fedora EPEL 6 updates-testing report Message-ID: <20130209014726.B10C72028C@bastion01.phx2.fedoraproject.org> The following Fedora EPEL 6 Security updates need testing: Age URL 293 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5620/bugzilla-3.4.14-2.el6 16 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0193/couchdb-1.0.4-2.el6 70 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-13610/drupal6-ctools-1.10-1.el6 215 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-6348/bcfg2-1.2.3-1.el6 481 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2011-4701/supybot-gribble-0.83.4.1-10.el6 2 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0267/mediawiki119-1.19.3-3.el6 17 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0123/python-tw2-jquery-2.0.3-5.el6 7 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0233/wordpress-3.5.1-1.el6 0 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0298/roundcubemail-0.8.5-1.el6 The following builds have been pushed to Fedora EPEL 6 updates-testing abi-compliance-checker-1.98.8-1.el6 armadillo-3.6.2-1.el6 clipsmm-0.3.0-1.el6 datanommer-commands-0.4.1-1.el6 drupal7-ckeditor-1.12-1.el6 drupal7-date_ical-2.4-1.el6 lcgdm-dav-0.12.1-1.el6 mlpack-1.0.4-1.el6 mysql-utilities-1.2.0-1.el6 ovirt-engine-cli-3.2.0.9-1.el6 perl-Data-Types-0.09-5.el6 perl-boolean-0.28-4.el6 php-EasyRdf-0.7.2-3.el6 php-guzzle-Guzzle-3.1.2-1.el6 python-datanommer-consumer-0.4.1-1.el6 python-datanommer-models-0.4.1-1.el6 python-django-longerusername-0.4-2.20130204gite4e85d7d.el6 python-django-tinymce-1.5.1b4-1.el6 python-fedmsg-meta-fedora-infrastructure-0.1.0-1.el6 python-fedora-0.3.32.3-1.el6 python-lamson-1.1-4.el6 python-requests-0.14.1-4.el6 roundcubemail-0.8.5-1.el6 swatch-3.2.3-7.el6 Details about builds: ================================================================================ abi-compliance-checker-1.98.8-1.el6 (FEDORA-EPEL-2013-0296) An ABI Compliance Checker -------------------------------------------------------------------------------- Update Information: Update to 1.98.8 -------------------------------------------------------------------------------- ChangeLog: * Fri Feb 8 2013 Richard Shaw - 1.98.8-1 - Update to latest upstream release. -------------------------------------------------------------------------------- ================================================================================ armadillo-3.6.2-1.el6 (FEDORA-EPEL-2013-0295) Fast C++ matrix library with interfaces to LAPACK and ATLAS -------------------------------------------------------------------------------- Update Information: Update to latest stable version. -------------------------------------------------------------------------------- ChangeLog: * Fri Feb 8 2013 Jos? Matos - 3.6.2-1 - Update to latest stable release -------------------------------------------------------------------------------- ================================================================================ clipsmm-0.3.0-1.el6 (FEDORA-EPEL-2013-0300) C++ interface to the CLIPS expert system C library -------------------------------------------------------------------------------- Update Information: Upgrade to 0.3.0 -------------------------------------------------------------------------------- ChangeLog: * Sat Feb 9 2013 Tim Niemueller - 0.3.0-1 - Upgrade to 0.3.0 -------------------------------------------------------------------------------- ================================================================================ datanommer-commands-0.4.1-1.el6 (FEDORA-EPEL-2013-0313) Console commands for datanommer -------------------------------------------------------------------------------- Update Information: Latest upstream -------------------------------------------------------------------------------- ChangeLog: * Thu Feb 7 2013 Ralph Bean - 0.4.1-1 - Latest upstream from Jessica Anderson. - Various enhancements and bugfixes. - New datanommer-latest command. - Tests now require python-mock. - New dep on fedmsg.meta Fedora Infrastructure plugin. -------------------------------------------------------------------------------- ================================================================================ drupal7-ckeditor-1.12-1.el6 (FEDORA-EPEL-2013-0303) Replace textarea fields with the CKEditor - a visual HTML editor -------------------------------------------------------------------------------- Update Information: Update to 1.12 - https://drupal.org/node/1872650 -------------------------------------------------------------------------------- ChangeLog: * Wed Feb 6 2013 Orion Poplawski - 1.12-1 - Update to 7.x-1.12 -------------------------------------------------------------------------------- References: [ 1 ] Bug #908485 - Update drupal7-ckeditor https://bugzilla.redhat.com/show_bug.cgi?id=908485 -------------------------------------------------------------------------------- ================================================================================ drupal7-date_ical-2.4-1.el6 (FEDORA-EPEL-2013-0302) Allows creation of an iCal feed in Views -------------------------------------------------------------------------------- Update Information: Update to upstream 2.4 release Update to upstream 2.3 release Update to upstream 2.2 release -------------------------------------------------------------------------------- ChangeLog: -------------------------------------------------------------------------------- References: [ 1 ] Bug #907780 - drupal7-date_ical-2.4 is available https://bugzilla.redhat.com/show_bug.cgi?id=907780 [ 2 ] Bug #904736 - drupal7-date_ical-2.3 is available https://bugzilla.redhat.com/show_bug.cgi?id=904736 [ 3 ] Bug #903583 - drupal7-date_ical-2.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=903583 -------------------------------------------------------------------------------- ================================================================================ lcgdm-dav-0.12.1-1.el6 (FEDORA-EPEL-2013-0307) HTTP/DAV front end to the DPM/LFC services -------------------------------------------------------------------------------- Update Information: - fix for a frequent segfault Update for new upstream release Update for new upstream release Update for new upstream release Update for new upstream release -------------------------------------------------------------------------------- ChangeLog: * Fri Feb 8 2013 Ricardo Rocha - 0.12.1-1 - Update for new upstream release (patch for segfault) * Wed Feb 6 2013 Ricardo Rocha - 0.12.0-1 - Update for new upstream release * Tue Jan 29 2013 Ricardo Rocha - 0.11.0-2 - Added patch for apache 2.4 api change -------------------------------------------------------------------------------- ================================================================================ mlpack-1.0.4-1.el6 (FEDORA-EPEL-2013-0306) Scalable, fast C++ machine learning library -------------------------------------------------------------------------------- Update Information: Update to latest stable version. -------------------------------------------------------------------------------- ChangeLog: * Fri Feb 8 2013 Ryan Curtin - 1.0.4-1 - Update to latest stable release. - Update dependencies to new minimum requirements. -------------------------------------------------------------------------------- ================================================================================ mysql-utilities-1.2.0-1.el6 (FEDORA-EPEL-2013-0293) MySQL Utilities -------------------------------------------------------------------------------- Update Information: Release 1.2.0 (Released January 26, 2013) * BUG#13956819: MySQL Utilities requires changes for RPM packaging * WL#6256: Change password handling * WL#6262: Audit log parser Release 1.1.2 (Released January 17, 2013) * BUG#13931340: mysqluserclone should dump all users * BUG#14712211: mysqluc fails to look for the utilities for a given utildir * BUG#15867353: Add GTID handling to mysqldbcopy, mysqldbexport * BUG#16010766: gtid enabled utilities need to check version of the server * BUG#16016887: mysqldiskusage reports missing binlog * BUG#16020953: --timeout option in mysqlfailover throws error * BUG#16023646: mysqldbcopy cannot copy world_innodb sample database * BUG#16023781: switchover can fail to complete if there are errors in slaves * BUG#16035934: unused --server option in mysqldbcompare * BUG#16037123: mysqlrplshow fails to report connection errors * BUG#16072863: gtid-enabled utilities need better error handling * BUG#14158371: mysqlserverinfo reports server offline on authentication error -------------------------------------------------------------------------------- ChangeLog: * Fri Feb 8 2013 Remi Collet - 1.2.0-1 - update to 1.2.0 - new commands: mysqlauditadmin and mysqlauditgrep -------------------------------------------------------------------------------- ================================================================================ ovirt-engine-cli-3.2.0.9-1.el6 (FEDORA-EPEL-2013-0304) oVirt Engine Command Line Interface -------------------------------------------------------------------------------- Update Information: Update to upstream 3.2.0.9 in order to fix bug 905359 -------------------------------------------------------------------------------- ChangeLog: * Wed Jan 30 2013 Juan Hernandez - 3.2.0.9-1 - Update to upstream 3.2.0.9 - Fix for #905359 -------------------------------------------------------------------------------- References: [ 1 ] Bug #905359 - ovirt-cli quits with DistributionNotFound exception on fedora18 https://bugzilla.redhat.com/show_bug.cgi?id=905359 -------------------------------------------------------------------------------- ================================================================================ perl-Data-Types-0.09-5.el6 (FEDORA-EPEL-2013-0314) Validate and convert data types -------------------------------------------------------------------------------- Update Information: First EPEL 6 release. -------------------------------------------------------------------------------- ================================================================================ perl-boolean-0.28-4.el6 (FEDORA-EPEL-2013-0301) Boolean support for Perl -------------------------------------------------------------------------------- Update Information: First EPEL 6 release. -------------------------------------------------------------------------------- ================================================================================ php-EasyRdf-0.7.2-3.el6 (FEDORA-EPEL-2013-0315) A PHP library designed to make it easy to consume and produce RDF -------------------------------------------------------------------------------- Update Information: EasyRdf is a PHP library designed to make it easy to consume and produce RDF (http://en.wikipedia.org/wiki/Resource_Description_Framework). It was designed for use in mixed teams of experienced and inexperienced RDF developers. It is written in Object Oriented PHP and has been tested extensively using PHPUnit. After parsing EasyRdf builds up a graph of PHP objects that can then be walked around to get the data to be placed on the page. Dump methods are available to inspect what data is available during development. Data is typically loaded into a EasyRdf_Graph object from source RDF documents, loaded from the web via HTTP. The EasyRdf_GraphStore class simplifies loading and saving data to a SPARQL 1.1 Graph Store. SPARQL queries can be made over HTTP to a Triplestore using the EasyRdf_Sparql_Client class. SELECT and ASK queries will return an EasyRdf_Sparql_Result object and CONSTRUCT and DESCRIBE queries will return an EasyRdf_Graph object. Optional dependencies: graphviz, graphviz-gd, raptor, raptor2 -------------------------------------------------------------------------------- References: [ 1 ] Bug #904862 - Review Request: php-EasyRdf - A PHP library designed to make it easy to consume and produce RDF https://bugzilla.redhat.com/show_bug.cgi?id=904862 -------------------------------------------------------------------------------- ================================================================================ php-guzzle-Guzzle-3.1.2-1.el6 (FEDORA-EPEL-2013-0309) PHP HTTP client library and framework for building RESTful web service clients -------------------------------------------------------------------------------- Update Information: Guzzle takes the pain out of sending HTTP requests and the redundancy out of creating web service clients. Guzzle is a framework that includes the tools needed to create a robust web service client, including: Service descriptions for defining the inputs and outputs of an API, resource iterators for traversing paginated resources, batching for sending a large number of requests as efficiently as possible. * All the power of cURL with a simple interface * Persistent connections and parallel requests * Streams request and response bodies * Service descriptions for quickly building clients * Powered by the Symfony2 EventDispatcher * Use all of the code or only specific components * Plugins for caching, logging, OAuth, mocks, and more Optional dependencies: * Zend Framework * Doctrine * Monolog -------------------------------------------------------------------------------- References: [ 1 ] Bug #885344 - Review Request: php-guzzle-Guzzle - PHP HTTP client library and framework for building RESTful web service clients https://bugzilla.redhat.com/show_bug.cgi?id=885344 -------------------------------------------------------------------------------- ================================================================================ python-datanommer-consumer-0.4.1-1.el6 (FEDORA-EPEL-2013-0297) Hub consumer plugin for datanommer -------------------------------------------------------------------------------- Update Information: Latest upstream -------------------------------------------------------------------------------- ChangeLog: * Thu Feb 7 2013 Ralph Bean - 0.4.1-1 - Latest upstream from Jessica Anderson. - Removed dep on python-nose since tests are not run. -------------------------------------------------------------------------------- ================================================================================ python-datanommer-models-0.4.1-1.el6 (FEDORA-EPEL-2013-0305) SQLAlchemy models for datanommer -------------------------------------------------------------------------------- Update Information: Alembic upgrade scripts -------------------------------------------------------------------------------- ChangeLog: * Thu Feb 7 2013 Ralph Bean - 0.4.1-1 - Latest upstream contributed by Jessica Anderson. - Included alembic upgrade scripts in /usr/share/datanommer.models/ -------------------------------------------------------------------------------- ================================================================================ python-django-longerusername-0.4-2.20130204gite4e85d7d.el6 (FEDORA-EPEL-2013-0299) Make django auth.user username field longer -------------------------------------------------------------------------------- Update Information: New package -------------------------------------------------------------------------------- References: [ 1 ] Bug #908049 - Review Request: python-django-longerusername - Make django auth.user username field longer https://bugzilla.redhat.com/show_bug.cgi?id=908049 -------------------------------------------------------------------------------- ================================================================================ python-django-tinymce-1.5.1b4-1.el6 (FEDORA-EPEL-2013-0311) A Django application that contains a widget to render a form field as a TinyMCE editor. -------------------------------------------------------------------------------- Update Information: Branching for el6 -------------------------------------------------------------------------------- References: [ 1 ] Bug #845890 - Review Request: python-django-tinymce - TinyMCE form field editor for Django applications https://bugzilla.redhat.com/show_bug.cgi?id=845890 [ 2 ] Bug #907614 - Branch request for python-django-tinymce to el6 https://bugzilla.redhat.com/show_bug.cgi?id=907614 -------------------------------------------------------------------------------- ================================================================================ python-fedmsg-meta-fedora-infrastructure-0.1.0-1.el6 (FEDORA-EPEL-2013-0292) Metadata providers for Fedora Infrastructure's fedmsg deployment -------------------------------------------------------------------------------- Update Information: Fix to KojiProcessor.__name__ Processors for koji and planet messages.. Changes to git/scm messages. pkgdb messages. Fixes to git/scm messages. Koji usernames and links; fas legacy compat -------------------------------------------------------------------------------- ChangeLog: -------------------------------------------------------------------------------- ================================================================================ python-fedora-0.3.32.3-1.el6 (FEDORA-EPEL-2013-0271) Python modules for talking to Fedora Infrastructure Services -------------------------------------------------------------------------------- Update Information: * Fixes an issue with client session cookies not being valid * Port from python-pycurl to python-requests to make the http connections to the servers. * Fixes a problem with soprovidercsrf if the database doesn't set an encoding * Fixes an issue with the login templates if the template is being translated. * Added a lookup_email parameter to fedora.client.AccountSystem.gravatar_url() to allow generating gravaar urls without looking up email addresses in fas. * Fixed a bug in fedora.tg.utils.tg_absolute_url() where it was still appending the csrf_token. * Add an auth adapter for flask web apps to authenticate to FAS * New minimum version of python: requires python-2.5 or higher * Fix localization of login templates (laxathom) * Fixes a problem with soprovidercsrf if the database doesn't set an encoding * Fixes an issue with the login templates if the template is being translated. * Added a lookup_email parameter to fedora.client.AccountSystem.gravatar_url() to allow generating gravaar urls without looking up email addresses in fas. * Fixed a bug in fedora.tg.utils.tg_absolute_url() where it was still appending the csrf_token. * Add an auth adapter for flask web apps to authenticate to FAS * New minimum version of python: requires python-2.5 or higher * Fix localization of login templates (laxathom) * Added a lookup_email parameter to fedora.client.AccountSystem.gravatar_url() to allow generating gravaar urls without looking up email addresses in fas. * Fixed a bug in fedora.tg.utils.tg_absolute_url() where it was still appending the csrf_token. * Add an auth adapter for flask web apps to authenticate to FAS * New minimum version of python: requires python-2.5 or higher * Fix localization of login templates (laxathom) * Fixes a problem with soprovidercsrf if the database doesn't set an encoding * Fixes an issue with the login templates if the template is being translated. * Added a lookup_email parameter to fedora.client.AccountSystem.gravatar_url() to allow generating gravaar urls without looking up email addresses in fas. * Fixed a bug in fedora.tg.utils.tg_absolute_url() where it was still appending the csrf_token. * Add an auth adapter for flask web apps to authenticate to FAS * New minimum version of python: requires python-2.5 or higher * Fix localization of login templates (laxathom) * Added a lookup_email parameter to fedora.client.AccountSystem.gravatar_url() to allow generating gravaar urls without looking up email addresses in fas. * Fixed a bug in fedora.tg.utils.tg_absolute_url() where it was still appending the csrf_token. * Add an auth adapter for flask web apps to authenticate to FAS * New minimum version of python: requires python-2.5 or higher * Fix localization of login templates (laxathom) * Fixes a problem with soprovidercsrf if the database doesn't set an encoding * Fixes an issue with the login templates if the template is being translated. * Added a lookup_email parameter to fedora.client.AccountSystem.gravatar_url() to allow generating gravaar urls without looking up email addresses in fas. * Fixed a bug in fedora.tg.utils.tg_absolute_url() where it was still appending the csrf_token. * Add an auth adapter for flask web apps to authenticate to FAS * New minimum version of python: requires python-2.5 or higher * Fix localization of login templates (laxathom) * Port from python-pycurl to python-requests to make the http connections to the servers. * Fixes a problem with soprovidercsrf if the database doesn't set an encoding * Fixes an issue with the login templates if the template is being translated. * Added a lookup_email parameter to fedora.client.AccountSystem.gravatar_url() to allow generating gravaar urls without looking up email addresses in fas. * Fixed a bug in fedora.tg.utils.tg_absolute_url() where it was still appending the csrf_token. * Add an auth adapter for flask web apps to authenticate to FAS * New minimum version of python: requires python-2.5 or higher * Fix localization of login templates (laxathom) * Fixes a problem with soprovidercsrf if the database doesn't set an encoding * Fixes an issue with the login templates if the template is being translated. * Added a lookup_email parameter to fedora.client.AccountSystem.gravatar_url() to allow generating gravaar urls without looking up email addresses in fas. * Fixed a bug in fedora.tg.utils.tg_absolute_url() where it was still appending the csrf_token. * Add an auth adapter for flask web apps to authenticate to FAS * New minimum version of python: requires python-2.5 or higher * Fix localization of login templates (laxathom) * Added a lookup_email parameter to fedora.client.AccountSystem.gravatar_url() to allow generating gravaar urls without looking up email addresses in fas. * Fixed a bug in fedora.tg.utils.tg_absolute_url() where it was still appending the csrf_token. * Add an auth adapter for flask web apps to authenticate to FAS * New minimum version of python: requires python-2.5 or higher * Fix localization of login templates (laxathom) * Fixes a problem with soprovidercsrf if the database doesn't set an encoding * Fixes an issue with the login templates if the template is being translated. * Added a lookup_email parameter to fedora.client.AccountSystem.gravatar_url() to allow generating gravaar urls without looking up email addresses in fas. * Fixed a bug in fedora.tg.utils.tg_absolute_url() where it was still appending the csrf_token. * Add an auth adapter for flask web apps to authenticate to FAS * New minimum version of python: requires python-2.5 or higher * Fix localization of login templates (laxathom) * Added a lookup_email parameter to fedora.client.AccountSystem.gravatar_url() to allow generating gravaar urls without looking up email addresses in fas. * Fixed a bug in fedora.tg.utils.tg_absolute_url() where it was still appending the csrf_token. * Add an auth adapter for flask web apps to authenticate to FAS * New minimum version of python: requires python-2.5 or higher * Fix localization of login templates (laxathom) * Fixes a problem with soprovidercsrf if the database doesn't set an encoding * Fixes an issue with the login templates if the template is being translated. * Added a lookup_email parameter to fedora.client.AccountSystem.gravatar_url() to allow generating gravaar urls without looking up email addresses in fas. * Fixed a bug in fedora.tg.utils.tg_absolute_url() where it was still appending the csrf_token. * Add an auth adapter for flask web apps to authenticate to FAS * New minimum version of python: requires python-2.5 or higher * Fix localization of login templates (laxathom) * Port from python-pycurl to python-requests to make the http connections to the servers. * Fixes a problem with soprovidercsrf if the database doesn't set an encoding * Fixes an issue with the login templates if the template is being translated. * Added a lookup_email parameter to fedora.client.AccountSystem.gravatar_url() to allow generating gravaar urls without looking up email addresses in fas. * Fixed a bug in fedora.tg.utils.tg_absolute_url() where it was still appending the csrf_token. * Add an auth adapter for flask web apps to authenticate to FAS * New minimum version of python: requires python-2.5 or higher * Fix localization of login templates (laxathom) * Fixes a problem with soprovidercsrf if the database doesn't set an encoding * Fixes an issue with the login templates if the template is being translated. * Added a lookup_email parameter to fedora.client.AccountSystem.gravatar_url() to allow generating gravaar urls without looking up email addresses in fas. * Fixed a bug in fedora.tg.utils.tg_absolute_url() where it was still appending the csrf_token. * Add an auth adapter for flask web apps to authenticate to FAS * New minimum version of python: requires python-2.5 or higher * Fix localization of login templates (laxathom) * Added a lookup_email parameter to fedora.client.AccountSystem.gravatar_url() to allow generating gravaar urls without looking up email addresses in fas. * Fixed a bug in fedora.tg.utils.tg_absolute_url() where it was still appending the csrf_token. * Add an auth adapter for flask web apps to authenticate to FAS * New minimum version of python: requires python-2.5 or higher * Fix localization of login templates (laxathom) * Fixes a problem with soprovidercsrf if the database doesn't set an encoding * Fixes an issue with the login templates if the template is being translated. * Added a lookup_email parameter to fedora.client.AccountSystem.gravatar_url() to allow generating gravaar urls without looking up email addresses in fas. * Fixed a bug in fedora.tg.utils.tg_absolute_url() where it was still appending the csrf_token. * Add an auth adapter for flask web apps to authenticate to FAS * New minimum version of python: requires python-2.5 or higher * Fix localization of login templates (laxathom) * Added a lookup_email parameter to fedora.client.AccountSystem.gravatar_url() to allow generating gravaar urls without looking up email addresses in fas. * Fixed a bug in fedora.tg.utils.tg_absolute_url() where it was still appending the csrf_token. * Add an auth adapter for flask web apps to authenticate to FAS * New minimum version of python: requires python-2.5 or higher * Fix localization of login templates (laxathom) * Fixes a problem with soprovidercsrf if the database doesn't set an encoding * Fixes an issue with the login templates if the template is being translated. * Added a lookup_email parameter to fedora.client.AccountSystem.gravatar_url() to allow generating gravaar urls without looking up email addresses in fas. * Fixed a bug in fedora.tg.utils.tg_absolute_url() where it was still appending the csrf_token. * Add an auth adapter for flask web apps to authenticate to FAS * New minimum version of python: requires python-2.5 or higher * Fix localization of login templates (laxathom) python-requests: * Fix problem with cookies on responses * Stop bundling own certificate bundle -------------------------------------------------------------------------------- ChangeLog: * Tue Feb 5 2013 Toshio Kuratomi - 0.3.32.3-1 - Upstream update to fix BodhiClient's knowledge of koji tags (ajax) * Mon Feb 4 2013 Toshio Kuratomi 0.3.32.2-1 - Upstream update fixing a bug interacting with python-requests * Thu Jan 24 2013 Toshio Kuratomi - 0.3.32.1-1 - Fix a documentation bug that slipped through * Wed Jan 23 2013 Ralph Bean - 0.3.32-1 - Replace pyCurl with python-requests in ProxyClient. * Tue Jan 22 2013 Toshio Kuratomi - 0.3.31-1 - Minor bugfix release * Thu Jan 10 2013 Toshio Kuratomi - 0.3.30-1 - Make TG's loginForm and CSRF's text translated from tg-apps (laxathom). - Fix a bug in fedora.tg.utils.tg_absolute_url - Add a lookup email parameter to gravatar lookups - Add an auth provider for flask -------------------------------------------------------------------------------- ================================================================================ python-lamson-1.1-4.el6 (FEDORA-EPEL-2013-0312) A modern Pythonic mail server -------------------------------------------------------------------------------- Update Information: Branching for el6 -------------------------------------------------------------------------------- ================================================================================ python-requests-0.14.1-4.el6 (FEDORA-EPEL-2013-0271) HTTP library, written in Python, for human beings -------------------------------------------------------------------------------- Update Information: * Fixes an issue with client session cookies not being valid * Port from python-pycurl to python-requests to make the http connections to the servers. * Fixes a problem with soprovidercsrf if the database doesn't set an encoding * Fixes an issue with the login templates if the template is being translated. * Added a lookup_email parameter to fedora.client.AccountSystem.gravatar_url() to allow generating gravaar urls without looking up email addresses in fas. * Fixed a bug in fedora.tg.utils.tg_absolute_url() where it was still appending the csrf_token. * Add an auth adapter for flask web apps to authenticate to FAS * New minimum version of python: requires python-2.5 or higher * Fix localization of login templates (laxathom) * Fixes a problem with soprovidercsrf if the database doesn't set an encoding * Fixes an issue with the login templates if the template is being translated. * Added a lookup_email parameter to fedora.client.AccountSystem.gravatar_url() to allow generating gravaar urls without looking up email addresses in fas. * Fixed a bug in fedora.tg.utils.tg_absolute_url() where it was still appending the csrf_token. * Add an auth adapter for flask web apps to authenticate to FAS * New minimum version of python: requires python-2.5 or higher * Fix localization of login templates (laxathom) * Added a lookup_email parameter to fedora.client.AccountSystem.gravatar_url() to allow generating gravaar urls without looking up email addresses in fas. * Fixed a bug in fedora.tg.utils.tg_absolute_url() where it was still appending the csrf_token. * Add an auth adapter for flask web apps to authenticate to FAS * New minimum version of python: requires python-2.5 or higher * Fix localization of login templates (laxathom) * Fixes a problem with soprovidercsrf if the database doesn't set an encoding * Fixes an issue with the login templates if the template is being translated. * Added a lookup_email parameter to fedora.client.AccountSystem.gravatar_url() to allow generating gravaar urls without looking up email addresses in fas. * Fixed a bug in fedora.tg.utils.tg_absolute_url() where it was still appending the csrf_token. * Add an auth adapter for flask web apps to authenticate to FAS * New minimum version of python: requires python-2.5 or higher * Fix localization of login templates (laxathom) * Added a lookup_email parameter to fedora.client.AccountSystem.gravatar_url() to allow generating gravaar urls without looking up email addresses in fas. * Fixed a bug in fedora.tg.utils.tg_absolute_url() where it was still appending the csrf_token. * Add an auth adapter for flask web apps to authenticate to FAS * New minimum version of python: requires python-2.5 or higher * Fix localization of login templates (laxathom) * Fixes a problem with soprovidercsrf if the database doesn't set an encoding * Fixes an issue with the login templates if the template is being translated. * Added a lookup_email parameter to fedora.client.AccountSystem.gravatar_url() to allow generating gravaar urls without looking up email addresses in fas. * Fixed a bug in fedora.tg.utils.tg_absolute_url() where it was still appending the csrf_token. * Add an auth adapter for flask web apps to authenticate to FAS * New minimum version of python: requires python-2.5 or higher * Fix localization of login templates (laxathom) * Port from python-pycurl to python-requests to make the http connections to the servers. * Fixes a problem with soprovidercsrf if the database doesn't set an encoding * Fixes an issue with the login templates if the template is being translated. * Added a lookup_email parameter to fedora.client.AccountSystem.gravatar_url() to allow generating gravaar urls without looking up email addresses in fas. * Fixed a bug in fedora.tg.utils.tg_absolute_url() where it was still appending the csrf_token. * Add an auth adapter for flask web apps to authenticate to FAS * New minimum version of python: requires python-2.5 or higher * Fix localization of login templates (laxathom) * Fixes a problem with soprovidercsrf if the database doesn't set an encoding * Fixes an issue with the login templates if the template is being translated. * Added a lookup_email parameter to fedora.client.AccountSystem.gravatar_url() to allow generating gravaar urls without looking up email addresses in fas. * Fixed a bug in fedora.tg.utils.tg_absolute_url() where it was still appending the csrf_token. * Add an auth adapter for flask web apps to authenticate to FAS * New minimum version of python: requires python-2.5 or higher * Fix localization of login templates (laxathom) * Added a lookup_email parameter to fedora.client.AccountSystem.gravatar_url() to allow generating gravaar urls without looking up email addresses in fas. * Fixed a bug in fedora.tg.utils.tg_absolute_url() where it was still appending the csrf_token. * Add an auth adapter for flask web apps to authenticate to FAS * New minimum version of python: requires python-2.5 or higher * Fix localization of login templates (laxathom) * Fixes a problem with soprovidercsrf if the database doesn't set an encoding * Fixes an issue with the login templates if the template is being translated. * Added a lookup_email parameter to fedora.client.AccountSystem.gravatar_url() to allow generating gravaar urls without looking up email addresses in fas. * Fixed a bug in fedora.tg.utils.tg_absolute_url() where it was still appending the csrf_token. * Add an auth adapter for flask web apps to authenticate to FAS * New minimum version of python: requires python-2.5 or higher * Fix localization of login templates (laxathom) * Added a lookup_email parameter to fedora.client.AccountSystem.gravatar_url() to allow generating gravaar urls without looking up email addresses in fas. * Fixed a bug in fedora.tg.utils.tg_absolute_url() where it was still appending the csrf_token. * Add an auth adapter for flask web apps to authenticate to FAS * New minimum version of python: requires python-2.5 or higher * Fix localization of login templates (laxathom) * Fixes a problem with soprovidercsrf if the database doesn't set an encoding * Fixes an issue with the login templates if the template is being translated. * Added a lookup_email parameter to fedora.client.AccountSystem.gravatar_url() to allow generating gravaar urls without looking up email addresses in fas. * Fixed a bug in fedora.tg.utils.tg_absolute_url() where it was still appending the csrf_token. * Add an auth adapter for flask web apps to authenticate to FAS * New minimum version of python: requires python-2.5 or higher * Fix localization of login templates (laxathom) * Port from python-pycurl to python-requests to make the http connections to the servers. * Fixes a problem with soprovidercsrf if the database doesn't set an encoding * Fixes an issue with the login templates if the template is being translated. * Added a lookup_email parameter to fedora.client.AccountSystem.gravatar_url() to allow generating gravaar urls without looking up email addresses in fas. * Fixed a bug in fedora.tg.utils.tg_absolute_url() where it was still appending the csrf_token. * Add an auth adapter for flask web apps to authenticate to FAS * New minimum version of python: requires python-2.5 or higher * Fix localization of login templates (laxathom) * Fixes a problem with soprovidercsrf if the database doesn't set an encoding * Fixes an issue with the login templates if the template is being translated. * Added a lookup_email parameter to fedora.client.AccountSystem.gravatar_url() to allow generating gravaar urls without looking up email addresses in fas. * Fixed a bug in fedora.tg.utils.tg_absolute_url() where it was still appending the csrf_token. * Add an auth adapter for flask web apps to authenticate to FAS * New minimum version of python: requires python-2.5 or higher * Fix localization of login templates (laxathom) * Added a lookup_email parameter to fedora.client.AccountSystem.gravatar_url() to allow generating gravaar urls without looking up email addresses in fas. * Fixed a bug in fedora.tg.utils.tg_absolute_url() where it was still appending the csrf_token. * Add an auth adapter for flask web apps to authenticate to FAS * New minimum version of python: requires python-2.5 or higher * Fix localization of login templates (laxathom) * Fixes a problem with soprovidercsrf if the database doesn't set an encoding * Fixes an issue with the login templates if the template is being translated. * Added a lookup_email parameter to fedora.client.AccountSystem.gravatar_url() to allow generating gravaar urls without looking up email addresses in fas. * Fixed a bug in fedora.tg.utils.tg_absolute_url() where it was still appending the csrf_token. * Add an auth adapter for flask web apps to authenticate to FAS * New minimum version of python: requires python-2.5 or higher * Fix localization of login templates (laxathom) * Added a lookup_email parameter to fedora.client.AccountSystem.gravatar_url() to allow generating gravaar urls without looking up email addresses in fas. * Fixed a bug in fedora.tg.utils.tg_absolute_url() where it was still appending the csrf_token. * Add an auth adapter for flask web apps to authenticate to FAS * New minimum version of python: requires python-2.5 or higher * Fix localization of login templates (laxathom) * Fixes a problem with soprovidercsrf if the database doesn't set an encoding * Fixes an issue with the login templates if the template is being translated. * Added a lookup_email parameter to fedora.client.AccountSystem.gravatar_url() to allow generating gravaar urls without looking up email addresses in fas. * Fixed a bug in fedora.tg.utils.tg_absolute_url() where it was still appending the csrf_token. * Add an auth adapter for flask web apps to authenticate to FAS * New minimum version of python: requires python-2.5 or higher * Fix localization of login templates (laxathom) python-requests: * Fix problem with cookies on responses * Stop bundling own certificate bundle -------------------------------------------------------------------------------- ChangeLog: * Fri Feb 8 2013 Toshio Kuratomi - 0.14.1-4 - Let brp_python_bytecompile run again, take care of the non-python{2,3} modules by removing them from the python{,3}-requests package that they did not belong in. - Use the certificates in the ca-certificates package instead of the bundled one + https://bugzilla.redhat.com/show_bug.cgi?id=904614 - Fix a problem with cookie handling + https://bugzilla.redhat.com/show_bug.cgi?id=906924 * Thu Jan 31 2013 Ralph Bean 0.14.1-3 - Introduced backport patch to support better cookie handling. * Mon Jan 28 2013 Ralph Bean 0.14.1-2 - Merged latest rawhide into el6. * Mon Oct 22 2012 Arun S A G 0.14.1-1 - Updated to latest upstream release * Sun Jun 10 2012 Arun S A G 0.13.1-1 - Updated to latest upstream release 0.13.1 - Use system provided ca-certificates - No more async requests use grrequests https://github.com/kennethreitz/grequests - Remove gevent as it is no longer required by requests -------------------------------------------------------------------------------- ================================================================================ roundcubemail-0.8.5-1.el6 (FEDORA-EPEL-2013-0298) Round Cube Webmail is a browser-based multilingual IMAP client -------------------------------------------------------------------------------- Update Information: A cross-site scripting (XSS) flaws were round in the way Round Cube Webmail, a browser-based multilingual IMAP client, performed sanitization of 'data' and 'vbscript' URLs. A remote attacker could provide a specially-crafted URL that, when opened would lead to arbitrary JavaScript, VisualBasic script or HTML code execution in the context of Round Cube Webmail's user session. Upstream ticket: [1] http://trac.roundcube.net/ticket/1488850 Further details: [2] http://trac.roundcube.net/attachment/ticket/1488850/RoundCube2XSS.pdf Upstream patch: [3] https://github.com/roundcube/roundcubemail/commit/74cd0a9b62f11bc07c5a1d3ba0098b54883eb0ba References: [4] http://sourceforge.net/news/?group_id=139281&id=310213 [5] http://www.openwall.com/lists/oss-security/2013/02/07/11 [6] http://www.openwall.com/lists/oss-security/2013/02/08/1 -------------------------------------------------------------------------------- ChangeLog: * Fri Feb 8 2013 Jon Ciesla - 0.8.5-1 - Latest upstream. -------------------------------------------------------------------------------- References: [ 1 ] Bug #909304 - CVE-2012-6121 roundcubemail: Cross-site scripting (XSS) in vbscript: and data:text URL handling [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=909304 [ 2 ] Bug #909306 - CVE-2012-6121 roundcubemail: Cross-site scripting (XSS) in vbscript: and data:text URL handling [epel-6] https://bugzilla.redhat.com/show_bug.cgi?id=909306 -------------------------------------------------------------------------------- ================================================================================ swatch-3.2.3-7.el6 (FEDORA-EPEL-2013-0294) Tool for actively monitoring log files -------------------------------------------------------------------------------- Update Information: Fix man page -------------------------------------------------------------------------------- ChangeLog: * Fri Feb 8 2013 Tom Callaway - 3.2.3-7 - fix manpage (bz 909120) * Sat Jul 21 2012 Fedora Release Engineering - 3.2.3-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild * Wed Jun 20 2012 Petr Pisar - 3.2.3-5 - Perl 5.16 rebuild * Sat Jan 14 2012 Fedora Release Engineering - 3.2.3-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild * Tue Jul 19 2011 Petr Sabata - 3.2.3-3 - Perl mass rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #909120 - Man page includes POD ERRORS section (due to invalid POD) https://bugzilla.redhat.com/show_bug.cgi?id=909120 -------------------------------------------------------------------------------- From updates at fedoraproject.org Sun Feb 10 19:05:29 2013 From: updates at fedoraproject.org (updates at fedoraproject.org) Date: Sun, 10 Feb 2013 19:05:29 +0000 Subject: Fedora EPEL 6 updates-testing report Message-ID: <20130210190529.59281206BE@bastion01.phx2.fedoraproject.org> The following Fedora EPEL 6 Security updates need testing: Age URL 294 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5620/bugzilla-3.4.14-2.el6 17 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0193/couchdb-1.0.4-2.el6 71 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-13610/drupal6-ctools-1.10-1.el6 217 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-6348/bcfg2-1.2.3-1.el6 482 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2011-4701/supybot-gribble-0.83.4.1-10.el6 4 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0267/mediawiki119-1.19.3-3.el6 19 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0123/python-tw2-jquery-2.0.3-5.el6 9 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0233/wordpress-3.5.1-1.el6 1 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0298/roundcubemail-0.8.5-1.el6 The following builds have been pushed to Fedora EPEL 6 updates-testing drupal7-eva-1.2-0.el6 drupal7-menu_token-1.0-0.3.beta4.el6 drupal7-migrate-2.5-0.el6 drupal7-variable-2.2-0.el6 drupal7-workbench-1.2-0.el6 drupal7-workbench_moderation-1.3-0.el6 iperf3-3.0-0.2.b4.el6 munin-2.0.11.1-1.el6 perl-Mail-Procmail-1.08-4.el6 rubygem-kgio-2.8.0-1.el6 trac-mastertickets-plugin-3.0.3-1.20130209.git4c461fe.el6 Details about builds: ================================================================================ drupal7-eva-1.2-0.el6 (FEDORA-EPEL-2013-0317) Eva allows the output of a View to be attached to content of entities -------------------------------------------------------------------------------- Update Information: Update to 1.2 -------------------------------------------------------------------------------- ChangeLog: -------------------------------------------------------------------------------- References: [ 1 ] Bug #892544 - drupal7-eva-1.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=892544 -------------------------------------------------------------------------------- ================================================================================ drupal7-menu_token-1.0-0.3.beta4.el6 (FEDORA-EPEL-2013-0330) Menu Token module provides tokens, that could be used in title or path -------------------------------------------------------------------------------- Update Information: Update to 1.0-beta4 -------------------------------------------------------------------------------- ChangeLog: * Sun Feb 10 2013 Scott Dodson - 1.0-0.3.beta4 - Update to 1.0-beta4 * Wed Jul 18 2012 Fedora Release Engineering - 1.0-0.3.beta1 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #892545 - drupal7-menu_token-1.0-beta4 is available https://bugzilla.redhat.com/show_bug.cgi?id=892545 -------------------------------------------------------------------------------- ================================================================================ drupal7-migrate-2.5-0.el6 (FEDORA-EPEL-2013-0332) The migrate module provides a flexible framework for migrating content -------------------------------------------------------------------------------- Update Information: Update to 2.5 -------------------------------------------------------------------------------- ChangeLog: * Sun Feb 10 2013 Scott Dodson - 2.5-0 - Update to 2.5 * Wed Jul 18 2012 Fedora Release Engineering - 2.4-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #892546 - drupal7-migrate-2.5 is available https://bugzilla.redhat.com/show_bug.cgi?id=892546 -------------------------------------------------------------------------------- ================================================================================ drupal7-variable-2.2-0.el6 (FEDORA-EPEL-2013-0321) Variable module provides a registry for meta-data about Drupal variables -------------------------------------------------------------------------------- Update Information: Update to 2.2 -------------------------------------------------------------------------------- ChangeLog: * Sun Feb 10 2013 Scott Dodson - 2.2-0 - Update to 2.2 * Wed Jul 18 2012 Fedora Release Engineering - 2.1-1 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #895025 - drupal7-variable-2.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=895025 -------------------------------------------------------------------------------- ================================================================================ drupal7-workbench-1.2-0.el6 (FEDORA-EPEL-2013-0323) Provides overall improvements for managing content -------------------------------------------------------------------------------- Update Information: Update to 1.2 -------------------------------------------------------------------------------- ChangeLog: -------------------------------------------------------------------------------- References: [ 1 ] Bug #901977 - drupal7-workbench-1.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=901977 -------------------------------------------------------------------------------- ================================================================================ drupal7-workbench_moderation-1.3-0.el6 (FEDORA-EPEL-2013-0324) Adds arbitrary moderation states to Drupal -------------------------------------------------------------------------------- Update Information: Update to 1.3 -------------------------------------------------------------------------------- ChangeLog: * Sun Feb 10 2013 Scott Dodson 1.3-0 - Update to 1.3 * Wed Jul 18 2012 Fedora Release Engineering - 1.2-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #901978 - drupal7-workbench_moderation-1.3 is available https://bugzilla.redhat.com/show_bug.cgi?id=901978 -------------------------------------------------------------------------------- ================================================================================ iperf3-3.0-0.2.b4.el6 (FEDORA-EPEL-2013-0327) Measurement tool for TCP/UDP bandwidth performance -------------------------------------------------------------------------------- Update Information: Measurement tool for TCP/UDP bandwidth performance -------------------------------------------------------------------------------- References: [ 1 ] Bug #691096 - Review Request: iperf3 - Measurement tool for TCP/UDP bandwidth performance https://bugzilla.redhat.com/show_bug.cgi?id=691096 -------------------------------------------------------------------------------- ================================================================================ munin-2.0.11.1-1.el6 (FEDORA-EPEL-2013-0320) Network-wide graphing framework (grapher/gatherer) -------------------------------------------------------------------------------- Update Information: Upstream version 2.0.11.1, fixes asyncd Upstream 2.0.11 -------------------------------------------------------------------------------- ChangeLog: * Sat Feb 9 2013 D. Johnson - 2.0.11.1-1 - Upstream version 2.0.11.1 * Thu Feb 7 2013 D. Johnson - 2.0.11-4 - BZ# 908711 munin-async: wrong path in init script * Wed Feb 6 2013 D. Johnson - 2.0.11-3 - Split out tomcat plugin to remove ruby dep from node. * Mon Feb 4 2013 D. Johnson - 2.0.11-2 - BZ# 907369 revert HTMLOld.pm patch * Sun Feb 3 2013 D. Johnson - 2.0.11-1 - Upstream release 2.0.11 * Mon Jan 21 2013 D. Johnson - 2.0.10-2 - BZ# 896644 Wrong path to munin jar in jmx plugin -------------------------------------------------------------------------------- References: [ 1 ] Bug #908711 - munin-async: wrong path in init script https://bugzilla.redhat.com/show_bug.cgi?id=908711 [ 2 ] Bug #907369 - Munin HTMLOld.pm is patched with a bad patch from munin track that breaks thread counting https://bugzilla.redhat.com/show_bug.cgi?id=907369 [ 3 ] Bug #896644 - Wrong path to munin jar in jmx plugin https://bugzilla.redhat.com/show_bug.cgi?id=896644 -------------------------------------------------------------------------------- ================================================================================ perl-Mail-Procmail-1.08-4.el6 (FEDORA-EPEL-2013-0328) Procmail-like facility for creating easy mail filters -------------------------------------------------------------------------------- Update Information: Procmail-like facility for creating easy mail filters -------------------------------------------------------------------------------- References: [ 1 ] Bug #890491 - Review Request: perl-Mail-Procmail - Procmail-like facility for creating easy mail filters https://bugzilla.redhat.com/show_bug.cgi?id=890491 -------------------------------------------------------------------------------- ================================================================================ rubygem-kgio-2.8.0-1.el6 (FEDORA-EPEL-2013-0326) Kinder, gentler I/O for Ruby -------------------------------------------------------------------------------- Update Information: Updated version. -------------------------------------------------------------------------------- ChangeLog: * Sun Feb 10 2013 Guillermo G?mez - 2.8.0-1 - Update version 2.8.0 -------------------------------------------------------------------------------- ================================================================================ trac-mastertickets-plugin-3.0.3-1.20130209.git4c461fe.el6 (FEDORA-EPEL-2013-0334) Add support for ticket dependencies to Trac -------------------------------------------------------------------------------- Update Information: Update to latest upstream snapshot with doc additions and bugfixes. -------------------------------------------------------------------------------- ChangeLog: * Sat Feb 9 2013 Kevin Fenzi 3.0.3-1. - Update to 3.0.3 and new snapshot. Fixes bug #907591 * Sat Jul 21 2012 Fedora Release Engineering - 3.0.2-4.20111215.git43a7537 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild * Sat Jan 14 2012 Fedora Release Engineering - 3.0.2-3.20111215.git43a7537 - Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #907591 - trac-mastertickets-plugin: please update to version 3.0.3 https://bugzilla.redhat.com/show_bug.cgi?id=907591 -------------------------------------------------------------------------------- From updates at fedoraproject.org Sun Feb 10 19:05:30 2013 From: updates at fedoraproject.org (updates at fedoraproject.org) Date: Sun, 10 Feb 2013 19:05:30 +0000 Subject: Fedora EPEL 5 updates-testing report Message-ID: <20130210190530.A55942074B@bastion01.phx2.fedoraproject.org> The following Fedora EPEL 5 Security updates need testing: Age URL 17 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0173/couchdb-1.0.4-2.el5.1 294 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5630/bugzilla-3.2.10-5.el5 189 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-6608/Django-1.1.4-2.el5 71 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-13612/drupal6-ctools-1.10-1.el5 9 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0237/wordpress-3.5.1-1.el5.1 The following builds have been pushed to Fedora EPEL 5 updates-testing drupal7-eva-1.2-0.el5 drupal7-menu_token-1.0-0.3.beta4.el5 drupal7-migrate-2.5-0.el5 drupal7-variable-2.2-0.el5 drupal7-workbench-1.2-0.el5 drupal7-workbench_moderation-1.3-0.el5 iperf3-3.0-0.2.b4.el5 perl-Mail-Procmail-1.08-4.el5 Details about builds: ================================================================================ drupal7-eva-1.2-0.el5 (FEDORA-EPEL-2013-0322) Eva allows the output of a View to be attached to content of entities -------------------------------------------------------------------------------- Update Information: Update to 1.2 -------------------------------------------------------------------------------- ChangeLog: -------------------------------------------------------------------------------- References: [ 1 ] Bug #892544 - drupal7-eva-1.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=892544 -------------------------------------------------------------------------------- ================================================================================ drupal7-menu_token-1.0-0.3.beta4.el5 (FEDORA-EPEL-2013-0316) Menu Token module provides tokens, that could be used in title or path -------------------------------------------------------------------------------- Update Information: Update to 1.0-beta4 -------------------------------------------------------------------------------- ChangeLog: * Sun Feb 10 2013 Scott Dodson - 1.0-0.3.beta4 - Update to 1.0-beta4 * Wed Jul 18 2012 Fedora Release Engineering - 1.0-0.3.beta1 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #892545 - drupal7-menu_token-1.0-beta4 is available https://bugzilla.redhat.com/show_bug.cgi?id=892545 -------------------------------------------------------------------------------- ================================================================================ drupal7-migrate-2.5-0.el5 (FEDORA-EPEL-2013-0331) The migrate module provides a flexible framework for migrating content -------------------------------------------------------------------------------- Update Information: Update to 2.5 -------------------------------------------------------------------------------- ChangeLog: * Sun Feb 10 2013 Scott Dodson - 2.5-0 - Update to 2.5 * Wed Jul 18 2012 Fedora Release Engineering - 2.4-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #892546 - drupal7-migrate-2.5 is available https://bugzilla.redhat.com/show_bug.cgi?id=892546 -------------------------------------------------------------------------------- ================================================================================ drupal7-variable-2.2-0.el5 (FEDORA-EPEL-2013-0329) Variable module provides a registry for meta-data about Drupal variables -------------------------------------------------------------------------------- Update Information: Update to 2.2 -------------------------------------------------------------------------------- ChangeLog: * Sun Feb 10 2013 Scott Dodson - 2.2-0 - Update to 2.2 * Wed Jul 18 2012 Fedora Release Engineering - 2.1-1 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #895025 - drupal7-variable-2.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=895025 -------------------------------------------------------------------------------- ================================================================================ drupal7-workbench-1.2-0.el5 (FEDORA-EPEL-2013-0319) Provides overall improvements for managing content -------------------------------------------------------------------------------- Update Information: Update to 1.2 -------------------------------------------------------------------------------- ChangeLog: -------------------------------------------------------------------------------- References: [ 1 ] Bug #901977 - drupal7-workbench-1.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=901977 -------------------------------------------------------------------------------- ================================================================================ drupal7-workbench_moderation-1.3-0.el5 (FEDORA-EPEL-2013-0325) Adds arbitrary moderation states to Drupal -------------------------------------------------------------------------------- Update Information: Update to 1.3 -------------------------------------------------------------------------------- ChangeLog: * Sun Feb 10 2013 Scott Dodson 1.3-0 - Update to 1.3 * Wed Jul 18 2012 Fedora Release Engineering - 1.2-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #901978 - drupal7-workbench_moderation-1.3 is available https://bugzilla.redhat.com/show_bug.cgi?id=901978 -------------------------------------------------------------------------------- ================================================================================ iperf3-3.0-0.2.b4.el5 (FEDORA-EPEL-2013-0333) Measurement tool for TCP/UDP bandwidth performance -------------------------------------------------------------------------------- Update Information: Measurement tool for TCP/UDP bandwidth performance -------------------------------------------------------------------------------- References: [ 1 ] Bug #691096 - Review Request: iperf3 - Measurement tool for TCP/UDP bandwidth performance https://bugzilla.redhat.com/show_bug.cgi?id=691096 -------------------------------------------------------------------------------- ================================================================================ perl-Mail-Procmail-1.08-4.el5 (FEDORA-EPEL-2013-0318) Procmail-like facility for creating easy mail filters -------------------------------------------------------------------------------- Update Information: Procmail-like facility for creating easy mail filters -------------------------------------------------------------------------------- References: [ 1 ] Bug #890491 - Review Request: perl-Mail-Procmail - Procmail-like facility for creating easy mail filters https://bugzilla.redhat.com/show_bug.cgi?id=890491 -------------------------------------------------------------------------------- From kevin at scrye.com Mon Feb 11 18:15:53 2013 From: kevin at scrye.com (Kevin Fenzi) Date: Mon, 11 Feb 2013 11:15:53 -0700 Subject: [HEADS-UP] Updating MongoDB to 2.2.3 in EPEL6 In-Reply-To: <51153C58.1080701@redhat.com> References: <51153C58.1080701@redhat.com> Message-ID: <20130211111553.31f3767e@jelerak.scrye.com> On Fri, 08 Feb 2013 11:56:40 -0600 Troy Dawson wrote: > Hello, > A couple of months back I asked about updating MongoDB from 2.0.7 to > 2.2.0 in EPEL6. > Although it is backwards compatible, there were several bugs brought > up that people wanted fixed in Mongodb 2.2.x before we moved to this > version. With MongoDB 2.2.3, the last of these bugs has been fixed. > MongoDB 2.2.3 is now built and in testing, and I propose the following > schedule. > > February 20 > Push MongoDB 2.2.3 to stable for EPEL6 > > If anyone has any concerns, please let me know. > If anyone knows where else I should announce this, please let me know. epel-announce at lists.fedoraproject.org ? kevin -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 836 bytes Desc: not available URL: From ktdreyer at ktdreyer.com Mon Feb 11 23:18:53 2013 From: ktdreyer at ktdreyer.com (Ken Dreyer) Date: Mon, 11 Feb 2013 16:18:53 -0700 Subject: implementing a permanent epel-release URL Message-ID: Today a system administrator at work asked me about the epel-release package URL change, so the subject was back on my radar. 1. Assuming we could automate this, would releng be ok with having a symlink? 2. As far as implementation goes, would the mash utility be the right tool to do this symlink? - Ken From kevin at scrye.com Mon Feb 11 23:57:32 2013 From: kevin at scrye.com (Kevin Fenzi) Date: Mon, 11 Feb 2013 16:57:32 -0700 Subject: implementing a permanent epel-release URL In-Reply-To: References: Message-ID: <20130211165732.0d2d66ff@jelerak.scrye.com> On Mon, 11 Feb 2013 16:18:53 -0700 Ken Dreyer wrote: > Today a system administrator at work asked me about the epel-release > package URL change, so the subject was back on my radar. ok. Note the last time it changed was 2012-11-05 still. ;) > 1. Assuming we could automate this, would releng be ok with having a > symlink? If it's automated, I would think so. > 2. As far as implementation goes, would the mash utility be the right > tool to do this symlink? Yep. kevin -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 836 bytes Desc: not available URL: From updates at fedoraproject.org Tue Feb 12 20:24:44 2013 From: updates at fedoraproject.org (updates at fedoraproject.org) Date: Tue, 12 Feb 2013 20:24:44 +0000 Subject: Fedora EPEL 5 updates-testing report Message-ID: <20130212202444.56B8E20B3E@bastion01.phx2.fedoraproject.org> The following Fedora EPEL 5 Security updates need testing: Age URL 19 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0173/couchdb-1.0.4-2.el5.1 296 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5630/bugzilla-3.2.10-5.el5 191 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-6608/Django-1.1.4-2.el5 73 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-13612/drupal6-ctools-1.10-1.el5 0 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0237/wordpress-3.5.1-2.el5 The following builds have been pushed to Fedora EPEL 5 updates-testing pdns-2.9.22.6-1.el5 php53-mapi-7.0.12-1.el5 phpMyAdmin3-3.5.6-1.el5 voms-2.0.10-1.el5 voms-api-java-2.0.10-2.el5 wordpress-3.5.1-2.el5 zabbix20-2.0.5-1.el5 zarafa-7.0.12-1.el5 Details about builds: ================================================================================ pdns-2.9.22.6-1.el5 (FEDORA-EPEL-2013-0349) A modern, advanced and high performance authoritative-only nameserver -------------------------------------------------------------------------------- Update Information: - Update 2.9.22.6 -------------------------------------------------------------------------------- ChangeLog: * Sun Feb 10 2013 Morten Stevens - 2.9.22.6-1 - Update to 2.9.22.6 - Rebuild for Boost 1.41 -------------------------------------------------------------------------------- ================================================================================ php53-mapi-7.0.12-1.el5 (FEDORA-EPEL-2013-0353) The PHP MAPI extension by Zarafa -------------------------------------------------------------------------------- Update Information: Zarafa Collaboration Platform 7.0.12 final [40336] ================================================== Backend ------- - ZCP-11110, ZCP-11076: The archiver opens history messages read-only when attempting to fix the backref when the primary message is moved. - ZCP-11098, ZCP-10567: The archiver should log what kind of cleanup operation is being performed (store, delete). - ZCP-11084, ZCP-10569: The archiver should log the configuration settings. - ZCP-11080, ZCP-10568: The archiver should log the commandline used when it was invoked. - ZCP-11082, ZCP-10570: The archiver should log it's version. - ZCP-11151, ZCP-10566: The archiver should log the user and if possible to folder on which its working whenever it logs something. - ZCP-11174: Searching with outlook in read-only archive gives error message. - ZCP-11064, ZCP-10916: Caldav recurring item on the first of every month will recur on every day. - ZCP-11262, ZCP-10449: Appointment created in Ical 6 will create a reminder that is 1893 weeks over due. - ZCP-11211, ZCP-11087: Disable SSLv2 and other less secure ciphers in different Zarafa daemons. - ZCP-11039, ZCP-11024: Gateway does not return an error to the client when the store is broken. - ZCP-11203, ZCP-10981: Flag for mapi_inetmapi_imtoinet not to make winmail.dat. - ZCP-11127, ZCP-8843: UserCertificate is not available in GAL although it's configured in LDAP. - ZCP-11079, ZCP-10935: Meeting request as calendar.ics attachment. - ZCP-11249, ZCP-11162: Search in archive from WebAccess doesn't work. - ZCP-11067, ZCP-10973: PR_MESSAGE_FLAGS is being handled incorrectly. - ZCP-11136, ZCP-10313: 'Open shared folders...' opens wrong store if user was added to contacts. - ZCP-11004, ZCP-10501: Html email with ics attachment is seen as meeting request and does not show html body. - ZCP-11012, ZCP-8380: Monitor sends only one company quota mail server wide. - ZCP-11023, ZCP-10973: Test PR_MESSAGE_FLAGS handling. - ZCP-11093, ZCP-10853: Compressed synclogs aren't flushed properly when using outlook 2010. - ZCP-11074, ZCP-10950: Zarafa-offline processes started by windows search indexer will perform badly when used with Outlook. - ZCP-11180, ZCP-11100: GetContentsTable() before SetSearchCriteria shows no results during search. - ZCP-11160, ZCP-11146: Large amount of queries to folder while syncing. - ZCP-11153, ZCP-11145: Offline sync cancel waits for the entire stream from the server to be received before stopping. - ZCP-11149, ZCP-11097: Item count sometimes wrong when doing a search in Outlook. - ZCP-11246: Invalid property values may corrupt cache. - ZCP-10800: Every ZARAFA_E_DATABASE_ERROR should be logged when it wasn't an SQL error. - ZCP-11042, ZCP-9925: Too small user(details) cache breaks address book. - ZCP-11028, ZCP-10937: Extra spooler logging added in ZCP-9838 is not working with syslog. - ZCP-11191, ZCP-8826: ECWaitableTask objects cannot be destructed if they haven't been executed first. WebAccess --------- - ZCP-11025, ZCP-10391 Html code is presented when an item with an e-mail address is being inserted inline. - ZCP-11069, ZCP-10575 Script error in rule dialog when no folder is selected. - ZCP-11117, Update HTTPS cookie config options. - ZCP-11308 ZCP-11254 recurring appointment suggest to start at 9:00 - 9:00 . Zarafa Collaboration Platform 7.0.11 final [39120] ================================================== Backend ------- - ZCP-11007, ZCP-10998: Invalid ldap relation values may cause a segfault. - ZCP-11014, ZCP-11001: Zarafa-server 7.1.1 segfault with Z-admin on restart. - ZCP-11053, ZCP-11047: zarafa-search handles streaming error incorrectly. - ZCP-10742, ZCP-10571: The archiver should optionally check the age of items to be removed when performing a cleanup. - ZCP-10905, ZCP-9651: WebAccess forward rule body is not placed correctly when forwarded e-mail is received from Google Mail. - ZCP-10845, ZCP-10281: Multiple rules with the same matches on several emails should be handled differently. - ZCP-10861, ZCP-10740: Body of email is not shown in WebAccess, outlook or imap. - ZCP-10963, ZCP-10152: invalid content-type may cause evolution to stop syncing. - ZCP-10796, ZCP-10737: ECTNEF doesn't handle PT_(MV_)CLSID properties. - ZCP-10816, ZCP-10355: SSL client certificates created on new Linux distributions with ssl-certificates.sh script doesn't seems to work anymore when using Blackberry. - ZCP-10728, ZCP-10661: Win32 Zarafa-offline build package. - ZCP-10769, ZCP-10636: Licensed seems to count also orphan archive stores as used account. - ZCP-10944, ZCP-9871: Suggestion list from OL2010 PST is not available after migration. - ZCP-10958, ZCP-10929: Segfault on shutting down PHP on Synology. - ZCP-10886, ZCP-9581: Mail hangs in outbox in detect on startup profile. - ZCP-10847, ZCP-7453: SQL errors when updating counters. - ZCP-10831, ZCP-10414: IPM.Appointment check for unique recipients in Zarafa-fsck. - ZCP-10820, ZCP-9608: Can not copy a note or contact in favorites folder. - ZCP-10832, ZCP-9417: Unhook-store should print store guid of found user. - ZCP-10833, ZCP-10735: Unhooking of public store doesn't work anymore in 7.1. - ZCP-10771, ZCP-10533: No write access to attachment_storage location does not give error messages in the log. - ZCP-10614, ZCP-10604: The database upgrade makes a few wrong assumptions on the existing table definitions. - ZCP-10732, ZCP-10500: Fix corrupt mapi recipient properties in recurring agenda items. - ZCP-10707, ZCP-10701: Server should always write a coredump file by default when it segfaults. - ZCP-10782, ZCP-9483: Zarafa-admin --unhook on a non-existing store should give an error. - ZCP-10882, ZCP-10822: Python binding is broken with python-2.4. - ZCP-10877, ZCP-10834: Python binding is still broken with python-2.4. - ZCP-10748, ZCP-10729: Create subclasses of MAPIError in python. - ZCP-10850, ZCP-10815: Ubuntu 12.04 only supports up to 1024 sockets. WebAcess -------- - ZCP-10726, ZCP-9924: Recurring reminder not shown on the reminder time for series that has already begun. - ZCP-10892, ZCP-10720: The get_defined_constants (true) causes a crash in php. - ZCP-10725, ZCP-10073: Recurring reminder not shown on the reminder time. - ZCP-10763, ZCP-10365: Cannot remove messages from archive store (Archiver 1.2) in WebAccess. - ZCP-10761, ZCP-9846: Recurring reminder not shown on the reminder time. - ZCP-10721, ZCP-10584: Recurring items start on the wrong time in DST day and week after it. Zarafa Collaboration Platform 7.0.10 final [37482] ================================================== Backend ------- - ZCP-10634, ZCP-9499: Rename the names of groups in the ads tools. - ZCP-10647, ZCP-10530: Missing archive ACLs may fail the acl-sync script. - ZCP-10606, ZCP-10083: Za-restore tool for restoring all data from an archive mailbox has typo in help text. - ZCP-10494, ZCP-10461: Zarafa archiver doesn't handle permissions on archives for non-active-user stores properly. - ZCP-10599, ZCP-10536: Umlauts not escaped in auto updater SQL inserts. - ZCP-10538, ZCP-10446: Use boost filesystem v3 if available. - ZCP-10409, ZCP-10407: Russian translations should be shipped. - ZCP-10388, ZCP-10050: Monthly recurring that occurs every specific day jumps to the year 2148. - ZCP-10590, ZCP-10317: Unable to resolve contact from shared contacts folder using contacts provider. - ZCP-10373, ZCP-10358: Zarafa contacts provider only returns oldest 256 contacts from the selected folder. - ZCP-10369: Contacts provider should only show emailable contacts. - ZCP-10645, ZCP-10535: No manpage for the Zarafa-autorespond command. - ZCP-10577, ZCP-10399: Segfault of Zarafa-gateway 7.1RC2. - ZCP-10496, ZCP-10014: Missing PR_TRANSPORT_MESSAGE_HEADERS property on messages will give wrong results using the IMAP gateway. - ZCP-10622: Strcasestr does not exist in windows. - ZCP-10613, ZCP-10610: Inline image detection may fail on some html. - ZCP-10592, ZCP-9878: Zarafa7-upgrade script is compressed after installation on debian systems. - ZCP-10551, ZCP-9968: Conversion script objectsid-to-objectGUID.pl is still using storeid in some queries, although this not available on 7.0 anymore. - ZCP-10635, ZCP-10627: Licensed SIGSEVG, cause unknown. - ZCP-10368, ZCP-10345: Zarafa-prio socket with wrong permissions (when not root). - ZCP-10332, ZCP-10316: Apache segfaults when you resolve a user that does not exist using the contacts provider. - ZCP-10489, ZCP-10450: External emails inside distribution list treated as groups by spooler. - ZCP-10615, ZCP-10351: PHP session cache is useless and can break notifications in z-push. - ZCP-10488, ZCP-10472: Performance improvement for php-ext queryrows. - ZCP-10434, ZCP-10253: Apache threads are crashing. - ZCP-10611, ZCP-10081: Navigation pane links can be unstable, or completely wrong when using offline outlook. - ZCP-10605, ZCP-10102: Incorrect information on quota levels if company exceeds quota. - ZCP-10580, ZCP-10349: Outlook crashes when opening permissions tab on a search folder. - ZCP-10555, ZCP-10531: ECMessageStreamImporterIStreamAdapter::Write does not return bytes written and segfaults when NULL is passed. - ZCP-10543: Unable to copy a store to the public store. - ZCP-10521, ZCP-10375: Meeting requests sent by secretary to own delegate are not delivered to secretary. - ZCP-10520, ZCP-10485: Response message from exchange does not show body. - ZCP-10385, ZCP-8349: Zarafa-admin --enable-feature -u can segfault on 32bit systems. - ZCP-10561, ZCP-10382: Ssl-certificates.sh fails for centOS 6.3 (maybe 6.x in general?). - ZCP-10553, ZCP-10484: Update Zarafa-fsck warning. - ZCP-10526, ZCP-10519: Description of ZarafaCompanyServer is wrong. - ZCP-10500: Fix corrupt mapi receipient properties in recurring agenda items. - ZCP-10617, ZCP-10263: The message-id gets lost when forwarding email as attachment, so it will be marked as spam by some antispam solutions. - ZCP-10478, ZCP-9837: User names with umlaut will cause empty lines in the spooler log. - ZCP-10715, ZCP-10710: Achiver stores not always automatically opened on older created Outlook profiles. - ZCP-10688, ZCP-9146: SSL certificate check deadlock when opening delegate user with archive on a server which presents the SSL cert dialog. - ZCP-10667, ZCP-9760: Search for user name with umlaut in the gab will do a search with the character that are in front of the umlaut. WebAccess --------- - ZCP-10560, ZCP-10475: Script error in address book when trying to add a contact which is not selected. - ZCP-10558, ZCP-10302: Script error in IE when closing new mail window. - ZCP-10582: Timezone gmt-3 Brasilia has October 20th twice in 2012 and October 19th in 2013. -------------------------------------------------------------------------------- ChangeLog: * Sun Feb 10 2013 Robert Scheck 7.0.12-1 - Upgrade to 7.0.12 * Sun Feb 10 2013 Denis Arnaud - 7.0.9-3 - Rebuild for Boost-1.53.0 * Fri Feb 1 2013 Parag Nemade - 7.0.9-2 - Rebuild for icu 50 -------------------------------------------------------------------------------- ================================================================================ phpMyAdmin3-3.5.6-1.el5 (FEDORA-EPEL-2013-0340) Handle the administration of MySQL over the World Wide Web -------------------------------------------------------------------------------- Update Information: phpMyAdmin 3.5.6.0 (2013-01-28) =============================== - [status] Erroneous advisor rule - [status] localStorage broken in server status monitor - [routines] Editing a procedure with special characters - [core] Visualize GIS data throws Fatal Error - [core] Double-escaped error message - [cookies] Login without auth on second server phpMyAdmin 3.5.5.0 (2012-12-21) =============================== - [export] Support Apache's mod_deflate - [interface] Inline query editing broken after row update - [setup] Cannot switch language in /setup - [CSS] Font size in inline query editor is way too big - [l10n] Portuguese Language not displaying correctly - [status] Live charts don't work for non-default server - [core] Proxy ajax calls to pma.net to avoid browser notices - [tracking] Structure Snapshot on tracked view renders invalid SQL - [events] Event comments not saved -------------------------------------------------------------------------------- ChangeLog: * Sun Feb 10 2013 Robert Scheck 3.5.6-1 - Upgrade to 3.5.6 (#889450) -------------------------------------------------------------------------------- References: [ 1 ] Bug #889450 - phpMyAdmin-3.5.6 is available https://bugzilla.redhat.com/show_bug.cgi?id=889450 -------------------------------------------------------------------------------- ================================================================================ voms-2.0.10-1.el5 (FEDORA-EPEL-2013-0342) Virtual Organization Membership Service -------------------------------------------------------------------------------- Update Information: voms 2.0.10 -------------------------------------------------------------------------------- ChangeLog: * Tue Feb 12 2013 Mattias Ellert - 2.0.10-1 - Update to version 2.0.10 -------------------------------------------------------------------------------- ================================================================================ voms-api-java-2.0.10-2.el5 (FEDORA-EPEL-2013-0337) Virtual Organization Membership Service Java API -------------------------------------------------------------------------------- Update Information: voms-api-java 2.0.10 -------------------------------------------------------------------------------- ChangeLog: * Tue Feb 12 2013 Mattias Ellert - 2.0.10-2 - Add BR on maven-surefire-provider-junit * Mon Feb 11 2013 Mattias Ellert - 2.0.10-1 - Update to version 2.0.10 * Wed Feb 6 2013 Java SIG - 2.0.9-3 - Update for https://fedoraproject.org/wiki/Fedora_19_Maven_Rebuild - Replace maven BuildRequires with maven-local * Sun Dec 2 2012 Mattias Ellert - 2.0.9-2 - Correct runtime requires and URL tag * Thu Nov 29 2012 Mattias Ellert - 2.0.9-1 - Update to version 2.0.9 * Sun Jul 22 2012 Fedora Release Engineering - 2.0.8-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #818488 - voms-api-java requires old jakarta-commons-* packages https://bugzilla.redhat.com/show_bug.cgi?id=818488 -------------------------------------------------------------------------------- ================================================================================ wordpress-3.5.1-2.el5 (FEDORA-EPEL-2013-0237) Blog tool and publishing platform -------------------------------------------------------------------------------- Update Information: WordPress 3.5.1 is now available. Version 3.5.1 is the first maintenance release of 3.5, fixing 37 bugs. It is also a security release for all previous WordPress versions. Which include: * Editor: Prevent certain HTML elements from being unexpectedly removed or modified in rare cases. * Media: Fix a collection of minor workflow and compatibility issues in the new media manager. * Networks: Suggest proper rewrite rules when creating a new network. * Prevent scheduled posts from being stripped of certain HTML, such as video embeds, when they are published. * Work around some misconfigurations that may have caused some JavaScript in the WordPress admin area to fail. * Suppress some warnings that could occur when a plugin misused the database or user APIs. WordPress 3.5.1 also addresses the following security issues: * A server-side request forgery vulnerability and remote port scanning using pingbacks. This vulnerability, which could potentially be used to expose information and compromise a site, affects all previous WordPress versions. This was fixed by the WordPress security team. We?d like to thank security researchers Gennady Kovshenin and Ryan Dewhurst for reviewing our work. * Two instances of cross-site scripting via shortcodes and post content. These issues were discovered by Jon Cave of the WordPress security team. * A cross-site scripting vulnerability in the external library Plupload. Thanks to the Moxiecode team for working with us on this, and for releasing Plupload 1.5.5 to address this issue. -------------------------------------------------------------------------------- ChangeLog: * Tue Feb 12 2013 Remi Collet - 3.5.1-2 - provides POP3 class #905867 POP3 is not from PHPMailer, but from SquirrelMail * Wed Jan 30 2013 Remi Collet - 3.5.1-1.1 - fix simplepie links (for all branches) * Wed Jan 30 2013 Remi Collet - 3.5.1-1 - version 3.5.1, various bug and security fixes: CVE-2013-0235, CVE-2013-0236 and CVE-2013-0237 - drop -f option from rm to break build if upstream archive content change - protect akismet content (from upstream .htaccess) * Wed Jan 2 2013 Remi Collet - 3.5-3 - fix links to system PHPMailer library -------------------------------------------------------------------------------- References: [ 1 ] Bug #904120 - CVE-2013-0235 wordpress: Server-side request forgery and remote port scanning using pingbacks https://bugzilla.redhat.com/show_bug.cgi?id=904120 [ 2 ] Bug #904121 - wordpress: XSS flaws via shortcodes and HTTP POST content https://bugzilla.redhat.com/show_bug.cgi?id=904121 [ 3 ] Bug #904122 - wordpress: XSS in the external Plupload library https://bugzilla.redhat.com/show_bug.cgi?id=904122 -------------------------------------------------------------------------------- ================================================================================ zabbix20-2.0.5-1.el5 (FEDORA-EPEL-2013-0345) Open-source monitoring solution for your IT infrastructure -------------------------------------------------------------------------------- Update Information: New upstream release Release notes: http://www.zabbix.com/rn2.0.5.php Corrections: - Path to the traceroute binary in SQL files now matches the actual location - Comments about configuration files in init scripts now reflect the move from /etc/zabbix to /etc -------------------------------------------------------------------------------- ChangeLog: * Tue Feb 12 2013 Volker Fr?hlich - 2.0.5-1 - New upstream release - Drop now-included patches - Init file comments point to the actual configuration files now * Sat Feb 9 2013 Volker Fr?hlich - 2.0.4-5 - Correct path to traceroute in DB dumps again -------------------------------------------------------------------------------- ================================================================================ zarafa-7.0.12-1.el5 (FEDORA-EPEL-2013-0353) Open Source Edition of the Zarafa Collaboration Platform -------------------------------------------------------------------------------- Update Information: Zarafa Collaboration Platform 7.0.12 final [40336] ================================================== Backend ------- - ZCP-11110, ZCP-11076: The archiver opens history messages read-only when attempting to fix the backref when the primary message is moved. - ZCP-11098, ZCP-10567: The archiver should log what kind of cleanup operation is being performed (store, delete). - ZCP-11084, ZCP-10569: The archiver should log the configuration settings. - ZCP-11080, ZCP-10568: The archiver should log the commandline used when it was invoked. - ZCP-11082, ZCP-10570: The archiver should log it's version. - ZCP-11151, ZCP-10566: The archiver should log the user and if possible to folder on which its working whenever it logs something. - ZCP-11174: Searching with outlook in read-only archive gives error message. - ZCP-11064, ZCP-10916: Caldav recurring item on the first of every month will recur on every day. - ZCP-11262, ZCP-10449: Appointment created in Ical 6 will create a reminder that is 1893 weeks over due. - ZCP-11211, ZCP-11087: Disable SSLv2 and other less secure ciphers in different Zarafa daemons. - ZCP-11039, ZCP-11024: Gateway does not return an error to the client when the store is broken. - ZCP-11203, ZCP-10981: Flag for mapi_inetmapi_imtoinet not to make winmail.dat. - ZCP-11127, ZCP-8843: UserCertificate is not available in GAL although it's configured in LDAP. - ZCP-11079, ZCP-10935: Meeting request as calendar.ics attachment. - ZCP-11249, ZCP-11162: Search in archive from WebAccess doesn't work. - ZCP-11067, ZCP-10973: PR_MESSAGE_FLAGS is being handled incorrectly. - ZCP-11136, ZCP-10313: 'Open shared folders...' opens wrong store if user was added to contacts. - ZCP-11004, ZCP-10501: Html email with ics attachment is seen as meeting request and does not show html body. - ZCP-11012, ZCP-8380: Monitor sends only one company quota mail server wide. - ZCP-11023, ZCP-10973: Test PR_MESSAGE_FLAGS handling. - ZCP-11093, ZCP-10853: Compressed synclogs aren't flushed properly when using outlook 2010. - ZCP-11074, ZCP-10950: Zarafa-offline processes started by windows search indexer will perform badly when used with Outlook. - ZCP-11180, ZCP-11100: GetContentsTable() before SetSearchCriteria shows no results during search. - ZCP-11160, ZCP-11146: Large amount of queries to folder while syncing. - ZCP-11153, ZCP-11145: Offline sync cancel waits for the entire stream from the server to be received before stopping. - ZCP-11149, ZCP-11097: Item count sometimes wrong when doing a search in Outlook. - ZCP-11246: Invalid property values may corrupt cache. - ZCP-10800: Every ZARAFA_E_DATABASE_ERROR should be logged when it wasn't an SQL error. - ZCP-11042, ZCP-9925: Too small user(details) cache breaks address book. - ZCP-11028, ZCP-10937: Extra spooler logging added in ZCP-9838 is not working with syslog. - ZCP-11191, ZCP-8826: ECWaitableTask objects cannot be destructed if they haven't been executed first. WebAccess --------- - ZCP-11025, ZCP-10391 Html code is presented when an item with an e-mail address is being inserted inline. - ZCP-11069, ZCP-10575 Script error in rule dialog when no folder is selected. - ZCP-11117, Update HTTPS cookie config options. - ZCP-11308 ZCP-11254 recurring appointment suggest to start at 9:00 - 9:00 . Zarafa Collaboration Platform 7.0.11 final [39120] ================================================== Backend ------- - ZCP-11007, ZCP-10998: Invalid ldap relation values may cause a segfault. - ZCP-11014, ZCP-11001: Zarafa-server 7.1.1 segfault with Z-admin on restart. - ZCP-11053, ZCP-11047: zarafa-search handles streaming error incorrectly. - ZCP-10742, ZCP-10571: The archiver should optionally check the age of items to be removed when performing a cleanup. - ZCP-10905, ZCP-9651: WebAccess forward rule body is not placed correctly when forwarded e-mail is received from Google Mail. - ZCP-10845, ZCP-10281: Multiple rules with the same matches on several emails should be handled differently. - ZCP-10861, ZCP-10740: Body of email is not shown in WebAccess, outlook or imap. - ZCP-10963, ZCP-10152: invalid content-type may cause evolution to stop syncing. - ZCP-10796, ZCP-10737: ECTNEF doesn't handle PT_(MV_)CLSID properties. - ZCP-10816, ZCP-10355: SSL client certificates created on new Linux distributions with ssl-certificates.sh script doesn't seems to work anymore when using Blackberry. - ZCP-10728, ZCP-10661: Win32 Zarafa-offline build package. - ZCP-10769, ZCP-10636: Licensed seems to count also orphan archive stores as used account. - ZCP-10944, ZCP-9871: Suggestion list from OL2010 PST is not available after migration. - ZCP-10958, ZCP-10929: Segfault on shutting down PHP on Synology. - ZCP-10886, ZCP-9581: Mail hangs in outbox in detect on startup profile. - ZCP-10847, ZCP-7453: SQL errors when updating counters. - ZCP-10831, ZCP-10414: IPM.Appointment check for unique recipients in Zarafa-fsck. - ZCP-10820, ZCP-9608: Can not copy a note or contact in favorites folder. - ZCP-10832, ZCP-9417: Unhook-store should print store guid of found user. - ZCP-10833, ZCP-10735: Unhooking of public store doesn't work anymore in 7.1. - ZCP-10771, ZCP-10533: No write access to attachment_storage location does not give error messages in the log. - ZCP-10614, ZCP-10604: The database upgrade makes a few wrong assumptions on the existing table definitions. - ZCP-10732, ZCP-10500: Fix corrupt mapi recipient properties in recurring agenda items. - ZCP-10707, ZCP-10701: Server should always write a coredump file by default when it segfaults. - ZCP-10782, ZCP-9483: Zarafa-admin --unhook on a non-existing store should give an error. - ZCP-10882, ZCP-10822: Python binding is broken with python-2.4. - ZCP-10877, ZCP-10834: Python binding is still broken with python-2.4. - ZCP-10748, ZCP-10729: Create subclasses of MAPIError in python. - ZCP-10850, ZCP-10815: Ubuntu 12.04 only supports up to 1024 sockets. WebAcess -------- - ZCP-10726, ZCP-9924: Recurring reminder not shown on the reminder time for series that has already begun. - ZCP-10892, ZCP-10720: The get_defined_constants (true) causes a crash in php. - ZCP-10725, ZCP-10073: Recurring reminder not shown on the reminder time. - ZCP-10763, ZCP-10365: Cannot remove messages from archive store (Archiver 1.2) in WebAccess. - ZCP-10761, ZCP-9846: Recurring reminder not shown on the reminder time. - ZCP-10721, ZCP-10584: Recurring items start on the wrong time in DST day and week after it. Zarafa Collaboration Platform 7.0.10 final [37482] ================================================== Backend ------- - ZCP-10634, ZCP-9499: Rename the names of groups in the ads tools. - ZCP-10647, ZCP-10530: Missing archive ACLs may fail the acl-sync script. - ZCP-10606, ZCP-10083: Za-restore tool for restoring all data from an archive mailbox has typo in help text. - ZCP-10494, ZCP-10461: Zarafa archiver doesn't handle permissions on archives for non-active-user stores properly. - ZCP-10599, ZCP-10536: Umlauts not escaped in auto updater SQL inserts. - ZCP-10538, ZCP-10446: Use boost filesystem v3 if available. - ZCP-10409, ZCP-10407: Russian translations should be shipped. - ZCP-10388, ZCP-10050: Monthly recurring that occurs every specific day jumps to the year 2148. - ZCP-10590, ZCP-10317: Unable to resolve contact from shared contacts folder using contacts provider. - ZCP-10373, ZCP-10358: Zarafa contacts provider only returns oldest 256 contacts from the selected folder. - ZCP-10369: Contacts provider should only show emailable contacts. - ZCP-10645, ZCP-10535: No manpage for the Zarafa-autorespond command. - ZCP-10577, ZCP-10399: Segfault of Zarafa-gateway 7.1RC2. - ZCP-10496, ZCP-10014: Missing PR_TRANSPORT_MESSAGE_HEADERS property on messages will give wrong results using the IMAP gateway. - ZCP-10622: Strcasestr does not exist in windows. - ZCP-10613, ZCP-10610: Inline image detection may fail on some html. - ZCP-10592, ZCP-9878: Zarafa7-upgrade script is compressed after installation on debian systems. - ZCP-10551, ZCP-9968: Conversion script objectsid-to-objectGUID.pl is still using storeid in some queries, although this not available on 7.0 anymore. - ZCP-10635, ZCP-10627: Licensed SIGSEVG, cause unknown. - ZCP-10368, ZCP-10345: Zarafa-prio socket with wrong permissions (when not root). - ZCP-10332, ZCP-10316: Apache segfaults when you resolve a user that does not exist using the contacts provider. - ZCP-10489, ZCP-10450: External emails inside distribution list treated as groups by spooler. - ZCP-10615, ZCP-10351: PHP session cache is useless and can break notifications in z-push. - ZCP-10488, ZCP-10472: Performance improvement for php-ext queryrows. - ZCP-10434, ZCP-10253: Apache threads are crashing. - ZCP-10611, ZCP-10081: Navigation pane links can be unstable, or completely wrong when using offline outlook. - ZCP-10605, ZCP-10102: Incorrect information on quota levels if company exceeds quota. - ZCP-10580, ZCP-10349: Outlook crashes when opening permissions tab on a search folder. - ZCP-10555, ZCP-10531: ECMessageStreamImporterIStreamAdapter::Write does not return bytes written and segfaults when NULL is passed. - ZCP-10543: Unable to copy a store to the public store. - ZCP-10521, ZCP-10375: Meeting requests sent by secretary to own delegate are not delivered to secretary. - ZCP-10520, ZCP-10485: Response message from exchange does not show body. - ZCP-10385, ZCP-8349: Zarafa-admin --enable-feature -u can segfault on 32bit systems. - ZCP-10561, ZCP-10382: Ssl-certificates.sh fails for centOS 6.3 (maybe 6.x in general?). - ZCP-10553, ZCP-10484: Update Zarafa-fsck warning. - ZCP-10526, ZCP-10519: Description of ZarafaCompanyServer is wrong. - ZCP-10500: Fix corrupt mapi receipient properties in recurring agenda items. - ZCP-10617, ZCP-10263: The message-id gets lost when forwarding email as attachment, so it will be marked as spam by some antispam solutions. - ZCP-10478, ZCP-9837: User names with umlaut will cause empty lines in the spooler log. - ZCP-10715, ZCP-10710: Achiver stores not always automatically opened on older created Outlook profiles. - ZCP-10688, ZCP-9146: SSL certificate check deadlock when opening delegate user with archive on a server which presents the SSL cert dialog. - ZCP-10667, ZCP-9760: Search for user name with umlaut in the gab will do a search with the character that are in front of the umlaut. WebAccess --------- - ZCP-10560, ZCP-10475: Script error in address book when trying to add a contact which is not selected. - ZCP-10558, ZCP-10302: Script error in IE when closing new mail window. - ZCP-10582: Timezone gmt-3 Brasilia has October 20th twice in 2012 and October 19th in 2013. -------------------------------------------------------------------------------- ChangeLog: * Sun Feb 10 2013 Robert Scheck 7.0.12-1 - Upgrade to 7.0.12 * Sun Feb 10 2013 Denis Arnaud - 7.0.9-3 - Rebuild for Boost-1.53.0 * Fri Feb 1 2013 Parag Nemade - 7.0.9-2 - Rebuild for icu 50 -------------------------------------------------------------------------------- From updates at fedoraproject.org Tue Feb 12 20:24:46 2013 From: updates at fedoraproject.org (updates at fedoraproject.org) Date: Tue, 12 Feb 2013 20:24:46 +0000 Subject: Fedora EPEL 6 updates-testing report Message-ID: <20130212202446.0452820BCA@bastion01.phx2.fedoraproject.org> The following Fedora EPEL 6 Security updates need testing: Age URL 296 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5620/bugzilla-3.4.14-2.el6 19 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0193/couchdb-1.0.4-2.el6 73 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-13610/drupal6-ctools-1.10-1.el6 219 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-6348/bcfg2-1.2.3-1.el6 484 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2011-4701/supybot-gribble-0.83.4.1-10.el6 6 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0267/mediawiki119-1.19.3-3.el6 21 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0123/python-tw2-jquery-2.0.3-5.el6 3 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0298/roundcubemail-0.8.5-1.el6 0 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0233/wordpress-3.5.1-2.el6 The following builds have been pushed to Fedora EPEL 6 updates-testing Xnee-3.15-2.el6 perl-Net-SSH2-0.45-3.el6 php-Analog-1.0.0-3.git9ab4c9e.el6 php-horde-Horde-Exception-2.0.3-1.el6 php-horde-Horde-Test-2.2.0-1.el6 php-horde-Horde-Text-Diff-2.0.1-2.el6 php-horde-Horde-Util-2.1.0-1.el6 php-horde-Horde-Xml-Element-2.0.1-2.el6 php-horde-Horde-Xml-Wbxml-2.0.1-3.el6 phpMyAdmin-3.5.6-1.el6 python-repoze-lru-0.4-3.el6 python-zope-exceptions-4.0.3-2.el6 voms-2.0.10-1.el6 voms-api-java-2.0.10-2.el6 wordpress-3.5.1-2.el6 zabbix20-2.0.5-1.el6 zarafa-7.0.12-1.el6 Details about builds: ================================================================================ Xnee-3.15-2.el6 (FEDORA-EPEL-2013-0339) X11 environment recorder -------------------------------------------------------------------------------- Update Information: Update to 3.15 -------------------------------------------------------------------------------- ChangeLog: * Tue Feb 12 2013 Matthieu Saulnier - 3.15-2 - Add test suite in %check section - Undo previous fix devel subpackage requires * Mon Feb 4 2013 Matthieu Saulnier - 3.15-1 - Update to 3.15 - Fix devel subpackage requires - Cleanup in %install section -------------------------------------------------------------------------------- ================================================================================ perl-Net-SSH2-0.45-3.el6 (FEDORA-EPEL-2013-0351) Support for the SSH 2 protocol via libSSH2 -------------------------------------------------------------------------------- Update Information: Fix bad precedence in library version check. -------------------------------------------------------------------------------- ChangeLog: * Tue Feb 12 2013 Petr ?abata - 0.45-3 - Fix the operator precedence (rt#80065, rhbz#864102) -------------------------------------------------------------------------------- References: [ 1 ] Bug #864102 - Bad precedence in library version check https://bugzilla.redhat.com/show_bug.cgi?id=864102 -------------------------------------------------------------------------------- ================================================================================ php-Analog-1.0.0-3.git9ab4c9e.el6 (FEDORA-EPEL-2013-0354) PHP micro logging package -------------------------------------------------------------------------------- Update Information: Fix lock file issue -------------------------------------------------------------------------------- ChangeLog: * Sun Feb 10 2013 Johan Cwiklinski - 1.0.0-4.git9ab4c9e - Add patch for locked file (https://github.com/jbroadway/analog/issues/7) - Remove licence file and patch applied upstream - Change github source URL -------------------------------------------------------------------------------- ================================================================================ php-horde-Horde-Exception-2.0.3-1.el6 (FEDORA-EPEL-2013-0347) Horde Exception Handler -------------------------------------------------------------------------------- Update Information: Horde_Util 2.1.0 * [mms] Added 'charset' and 'metacharset' parameters to returnHtml(). * [mms] Added Horde_Domhtml#getCharset() to get best-guess charset of current encoding within the DOM object. * [mms] Fix inserting HEAD into HTML document with Horde_Domhtml#getHead() if it doesn't already exist in the document. Horde_Exception 2.0.3 * [jan] Update French translation (Paul De Vlieger <paul.de_vlieger at moniut.univ-bpclermont.fr>). Horde_Test 2.2.0 * [jan] Add test/ directory to include_path to allow autoloading of test classes. -------------------------------------------------------------------------------- ChangeLog: * Mon Feb 11 2013 Remi Collet - 2.0.3-1 - Update to 2.0.3 - run test when build --with tests - spec cleanups - fix License -------------------------------------------------------------------------------- ================================================================================ php-horde-Horde-Test-2.2.0-1.el6 (FEDORA-EPEL-2013-0347) Horde testing base classes -------------------------------------------------------------------------------- Update Information: Horde_Util 2.1.0 * [mms] Added 'charset' and 'metacharset' parameters to returnHtml(). * [mms] Added Horde_Domhtml#getCharset() to get best-guess charset of current encoding within the DOM object. * [mms] Fix inserting HEAD into HTML document with Horde_Domhtml#getHead() if it doesn't already exist in the document. Horde_Exception 2.0.3 * [jan] Update French translation (Paul De Vlieger <paul.de_vlieger at moniut.univ-bpclermont.fr>). Horde_Test 2.2.0 * [jan] Add test/ directory to include_path to allow autoloading of test classes. -------------------------------------------------------------------------------- ChangeLog: * Tue Feb 12 2013 Remi Collet - 2.2.0-1 - Update to 2.2.0 - cleanups - add dependency on Horde_Log - fix License -------------------------------------------------------------------------------- ================================================================================ php-horde-Horde-Text-Diff-2.0.1-2.el6 (FEDORA-EPEL-2013-0344) Engine for performing and rendering text diffs -------------------------------------------------------------------------------- Update Information: This package provides a text-based diff engine and renderers for multiple diff output formats. -------------------------------------------------------------------------------- References: [ 1 ] Bug #908371 - Review Request: php-horde-Horde-Text-Diff - Engine for performing and rendering text diffs https://bugzilla.redhat.com/show_bug.cgi?id=908371 -------------------------------------------------------------------------------- ================================================================================ php-horde-Horde-Util-2.1.0-1.el6 (FEDORA-EPEL-2013-0347) Horde Utility Libraries -------------------------------------------------------------------------------- Update Information: Horde_Util 2.1.0 * [mms] Added 'charset' and 'metacharset' parameters to returnHtml(). * [mms] Added Horde_Domhtml#getCharset() to get best-guess charset of current encoding within the DOM object. * [mms] Fix inserting HEAD into HTML document with Horde_Domhtml#getHead() if it doesn't already exist in the document. Horde_Exception 2.0.3 * [jan] Update French translation (Paul De Vlieger <paul.de_vlieger at moniut.univ-bpclermont.fr>). Horde_Test 2.2.0 * [jan] Add test/ directory to include_path to allow autoloading of test classes. -------------------------------------------------------------------------------- ChangeLog: * Tue Feb 12 2013 Remi Collet - 2.1.0-1 - Update to 2.1.0 - fix License - cleanups - run test when build --with tests -------------------------------------------------------------------------------- ================================================================================ php-horde-Horde-Xml-Element-2.0.1-2.el6 (FEDORA-EPEL-2013-0350) Horde Xml Element object -------------------------------------------------------------------------------- Update Information: This package provides an element object that can be used to provide SimpleXML-like functionality over a DOM object. The main advantage over using SimpleXML is the ability to add multiple levels of new elements in a single call, without introducing "ghost" objects. -------------------------------------------------------------------------------- References: [ 1 ] Bug #908361 - Review Request: php-horde-Horde-Xml-Element - Horde Xml Element object https://bugzilla.redhat.com/show_bug.cgi?id=908361 -------------------------------------------------------------------------------- ================================================================================ php-horde-Horde-Xml-Wbxml-2.0.1-3.el6 (FEDORA-EPEL-2013-0348) Provides an API for encoding and decoding WBXML documents -------------------------------------------------------------------------------- Update Information: This package provides encoding and decoding of WBXML (Wireless Binary XML) documents. WBXML is used in SyncML for transferring smaller amounts of data with wireless devices. -------------------------------------------------------------------------------- References: [ 1 ] Bug #908357 - Review Request: php-horde-Horde-Xml-Wbxml - Provides an API for encoding and decoding WBXML documents https://bugzilla.redhat.com/show_bug.cgi?id=908357 -------------------------------------------------------------------------------- ================================================================================ phpMyAdmin-3.5.6-1.el6 (FEDORA-EPEL-2013-0352) Handle the administration of MySQL over the World Wide Web -------------------------------------------------------------------------------- Update Information: phpMyAdmin 3.5.6.0 (2013-01-28) =============================== - [status] Erroneous advisor rule - [status] localStorage broken in server status monitor - [routines] Editing a procedure with special characters - [core] Visualize GIS data throws Fatal Error - [core] Double-escaped error message - [cookies] Login without auth on second server phpMyAdmin 3.5.5.0 (2012-12-21) =============================== - [export] Support Apache's mod_deflate - [interface] Inline query editing broken after row update - [setup] Cannot switch language in /setup - [CSS] Font size in inline query editor is way too big - [l10n] Portuguese Language not displaying correctly - [status] Live charts don't work for non-default server - [core] Proxy ajax calls to pma.net to avoid browser notices - [tracking] Structure Snapshot on tracked view renders invalid SQL - [events] Event comments not saved -------------------------------------------------------------------------------- ChangeLog: * Sun Feb 10 2013 Robert Scheck 3.5.6-1 - Upgrade to 3.5.6 (#889450) -------------------------------------------------------------------------------- References: [ 1 ] Bug #889450 - phpMyAdmin-3.5.6 is available https://bugzilla.redhat.com/show_bug.cgi?id=889450 -------------------------------------------------------------------------------- ================================================================================ python-repoze-lru-0.4-3.el6 (FEDORA-EPEL-2013-0341) A tiny LRU cache implementation and decorator -------------------------------------------------------------------------------- Update Information: Package python3 subpackage. -------------------------------------------------------------------------------- ChangeLog: * Mon Feb 11 2013 Ralph Bean - 0.4-3 - Removed clean section. - Removed defattr. - Removed removing of buildroot in install section. - Added removal of egg-info in prep section. - Added python3 subpackage. -------------------------------------------------------------------------------- ================================================================================ python-zope-exceptions-4.0.3-2.el6 (FEDORA-EPEL-2013-0336) Zope Exceptions -------------------------------------------------------------------------------- Update Information: Require python-zope-interface4 forward-compat package on el6. -------------------------------------------------------------------------------- ChangeLog: * Tue Jan 1 2013 Ralph Bean - 4.0.3-2 - Require python-zope-interface4 compat package on el6. * Tue Dec 11 2012 Ralph Bean - 4.0.3-1 - Latest upstream. - Packaged a python3 subpackage. - Made indentation consistent. -------------------------------------------------------------------------------- ================================================================================ voms-2.0.10-1.el6 (FEDORA-EPEL-2013-0338) Virtual Organization Membership Service -------------------------------------------------------------------------------- Update Information: voms 2.0.10 -------------------------------------------------------------------------------- ChangeLog: * Tue Feb 12 2013 Mattias Ellert - 2.0.10-1 - Update to version 2.0.10 -------------------------------------------------------------------------------- ================================================================================ voms-api-java-2.0.10-2.el6 (FEDORA-EPEL-2013-0343) Virtual Organization Membership Service Java API -------------------------------------------------------------------------------- Update Information: voms-api-java 2.0.10 -------------------------------------------------------------------------------- ChangeLog: * Tue Feb 12 2013 Mattias Ellert - 2.0.10-2 - Add BR on maven-surefire-provider-junit * Mon Feb 11 2013 Mattias Ellert - 2.0.10-1 - Update to version 2.0.10 * Wed Feb 6 2013 Java SIG - 2.0.9-3 - Update for https://fedoraproject.org/wiki/Fedora_19_Maven_Rebuild - Replace maven BuildRequires with maven-local * Sun Dec 2 2012 Mattias Ellert - 2.0.9-2 - Correct runtime requires and URL tag * Thu Nov 29 2012 Mattias Ellert - 2.0.9-1 - Update to version 2.0.9 * Sun Jul 22 2012 Fedora Release Engineering - 2.0.8-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #818488 - voms-api-java requires old jakarta-commons-* packages https://bugzilla.redhat.com/show_bug.cgi?id=818488 -------------------------------------------------------------------------------- ================================================================================ wordpress-3.5.1-2.el6 (FEDORA-EPEL-2013-0233) Blog tool and publishing platform -------------------------------------------------------------------------------- Update Information: WordPress 3.5.1 is now available. Version 3.5.1 is the first maintenance release of 3.5, fixing 37 bugs. It is also a security release for all previous WordPress versions. Which include: * Editor: Prevent certain HTML elements from being unexpectedly removed or modified in rare cases. * Media: Fix a collection of minor workflow and compatibility issues in the new media manager. * Networks: Suggest proper rewrite rules when creating a new network. * Prevent scheduled posts from being stripped of certain HTML, such as video embeds, when they are published. * Work around some misconfigurations that may have caused some JavaScript in the WordPress admin area to fail. * Suppress some warnings that could occur when a plugin misused the database or user APIs. WordPress 3.5.1 also addresses the following security issues: * A server-side request forgery vulnerability and remote port scanning using pingbacks. This vulnerability, which could potentially be used to expose information and compromise a site, affects all previous WordPress versions. This was fixed by the WordPress security team. We?d like to thank security researchers Gennady Kovshenin and Ryan Dewhurst for reviewing our work. * Two instances of cross-site scripting via shortcodes and post content. These issues were discovered by Jon Cave of the WordPress security team. * A cross-site scripting vulnerability in the external library Plupload. Thanks to the Moxiecode team for working with us on this, and for releasing Plupload 1.5.5 to address this issue. -------------------------------------------------------------------------------- ChangeLog: * Tue Feb 12 2013 Remi Collet - 3.5.1-2 - provides POP3 class #905867 POP3 is not from PHPMailer, but from SquirrelMail - fix simplepie links (for all branches) * Wed Jan 30 2013 Remi Collet - 3.5.1-1 - version 3.5.1, various bug and security fixes: CVE-2013-0235, CVE-2013-0236 and CVE-2013-0237 - drop -f option from rm to break build if upstream archive content change - protect akismet content (from upstream .htaccess) -------------------------------------------------------------------------------- References: [ 1 ] Bug #904120 - CVE-2013-0235 wordpress: Server-side request forgery and remote port scanning using pingbacks https://bugzilla.redhat.com/show_bug.cgi?id=904120 [ 2 ] Bug #904121 - wordpress: XSS flaws via shortcodes and HTTP POST content https://bugzilla.redhat.com/show_bug.cgi?id=904121 [ 3 ] Bug #904122 - wordpress: XSS in the external Plupload library https://bugzilla.redhat.com/show_bug.cgi?id=904122 -------------------------------------------------------------------------------- ================================================================================ zabbix20-2.0.5-1.el6 (FEDORA-EPEL-2013-0335) Open-source monitoring solution for your IT infrastructure -------------------------------------------------------------------------------- Update Information: New upstream release Release notes: http://www.zabbix.com/rn2.0.5.php Corrections: - Path to the traceroute binary in SQL files now matches the actual location - Comments about configuration files in init scripts now reflect the move from /etc/zabbix to /etc -------------------------------------------------------------------------------- ChangeLog: * Tue Feb 12 2013 Volker Fr?hlich - 2.0.5-1 - New upstream release - Drop now-included patches - Init file comments point to the actual configuration files now * Sat Feb 9 2013 Volker Fr?hlich - 2.0.4-5 - Dispensable version of COPYING is no more - Correct path to traceroute in DB dumps again * Tue Jan 22 2013 Volker Fr?hlich - 2.0.4-4 - Remove zabbix_get plus manpage from the proxy files section - Solve conflict for externalscripts symlink between proxy and server package -------------------------------------------------------------------------------- ================================================================================ zarafa-7.0.12-1.el6 (FEDORA-EPEL-2013-0346) Open Source Edition of the Zarafa Collaboration Platform -------------------------------------------------------------------------------- Update Information: Zarafa Collaboration Platform 7.0.12 final [40336] ================================================== Backend ------- - ZCP-11110, ZCP-11076: The archiver opens history messages read-only when attempting to fix the backref when the primary message is moved. - ZCP-11098, ZCP-10567: The archiver should log what kind of cleanup operation is being performed (store, delete). - ZCP-11084, ZCP-10569: The archiver should log the configuration settings. - ZCP-11080, ZCP-10568: The archiver should log the commandline used when it was invoked. - ZCP-11082, ZCP-10570: The archiver should log it's version. - ZCP-11151, ZCP-10566: The archiver should log the user and if possible to folder on which its working whenever it logs something. - ZCP-11174: Searching with outlook in read-only archive gives error message. - ZCP-11064, ZCP-10916: Caldav recurring item on the first of every month will recur on every day. - ZCP-11262, ZCP-10449: Appointment created in Ical 6 will create a reminder that is 1893 weeks over due. - ZCP-11211, ZCP-11087: Disable SSLv2 and other less secure ciphers in different Zarafa daemons. - ZCP-11039, ZCP-11024: Gateway does not return an error to the client when the store is broken. - ZCP-11203, ZCP-10981: Flag for mapi_inetmapi_imtoinet not to make winmail.dat. - ZCP-11127, ZCP-8843: UserCertificate is not available in GAL although it's configured in LDAP. - ZCP-11079, ZCP-10935: Meeting request as calendar.ics attachment. - ZCP-11249, ZCP-11162: Search in archive from WebAccess doesn't work. - ZCP-11067, ZCP-10973: PR_MESSAGE_FLAGS is being handled incorrectly. - ZCP-11136, ZCP-10313: 'Open shared folders...' opens wrong store if user was added to contacts. - ZCP-11004, ZCP-10501: Html email with ics attachment is seen as meeting request and does not show html body. - ZCP-11012, ZCP-8380: Monitor sends only one company quota mail server wide. - ZCP-11023, ZCP-10973: Test PR_MESSAGE_FLAGS handling. - ZCP-11093, ZCP-10853: Compressed synclogs aren't flushed properly when using outlook 2010. - ZCP-11074, ZCP-10950: Zarafa-offline processes started by windows search indexer will perform badly when used with Outlook. - ZCP-11180, ZCP-11100: GetContentsTable() before SetSearchCriteria shows no results during search. - ZCP-11160, ZCP-11146: Large amount of queries to folder while syncing. - ZCP-11153, ZCP-11145: Offline sync cancel waits for the entire stream from the server to be received before stopping. - ZCP-11149, ZCP-11097: Item count sometimes wrong when doing a search in Outlook. - ZCP-11246: Invalid property values may corrupt cache. - ZCP-10800: Every ZARAFA_E_DATABASE_ERROR should be logged when it wasn't an SQL error. - ZCP-11042, ZCP-9925: Too small user(details) cache breaks address book. - ZCP-11028, ZCP-10937: Extra spooler logging added in ZCP-9838 is not working with syslog. - ZCP-11191, ZCP-8826: ECWaitableTask objects cannot be destructed if they haven't been executed first. WebAccess --------- - ZCP-11025, ZCP-10391 Html code is presented when an item with an e-mail address is being inserted inline. - ZCP-11069, ZCP-10575 Script error in rule dialog when no folder is selected. - ZCP-11117, Update HTTPS cookie config options. - ZCP-11308 ZCP-11254 recurring appointment suggest to start at 9:00 - 9:00 . Zarafa Collaboration Platform 7.0.11 final [39120] ================================================== Backend ------- - ZCP-11007, ZCP-10998: Invalid ldap relation values may cause a segfault. - ZCP-11014, ZCP-11001: Zarafa-server 7.1.1 segfault with Z-admin on restart. - ZCP-11053, ZCP-11047: zarafa-search handles streaming error incorrectly. - ZCP-10742, ZCP-10571: The archiver should optionally check the age of items to be removed when performing a cleanup. - ZCP-10905, ZCP-9651: WebAccess forward rule body is not placed correctly when forwarded e-mail is received from Google Mail. - ZCP-10845, ZCP-10281: Multiple rules with the same matches on several emails should be handled differently. - ZCP-10861, ZCP-10740: Body of email is not shown in WebAccess, outlook or imap. - ZCP-10963, ZCP-10152: invalid content-type may cause evolution to stop syncing. - ZCP-10796, ZCP-10737: ECTNEF doesn't handle PT_(MV_)CLSID properties. - ZCP-10816, ZCP-10355: SSL client certificates created on new Linux distributions with ssl-certificates.sh script doesn't seems to work anymore when using Blackberry. - ZCP-10728, ZCP-10661: Win32 Zarafa-offline build package. - ZCP-10769, ZCP-10636: Licensed seems to count also orphan archive stores as used account. - ZCP-10944, ZCP-9871: Suggestion list from OL2010 PST is not available after migration. - ZCP-10958, ZCP-10929: Segfault on shutting down PHP on Synology. - ZCP-10886, ZCP-9581: Mail hangs in outbox in detect on startup profile. - ZCP-10847, ZCP-7453: SQL errors when updating counters. - ZCP-10831, ZCP-10414: IPM.Appointment check for unique recipients in Zarafa-fsck. - ZCP-10820, ZCP-9608: Can not copy a note or contact in favorites folder. - ZCP-10832, ZCP-9417: Unhook-store should print store guid of found user. - ZCP-10833, ZCP-10735: Unhooking of public store doesn't work anymore in 7.1. - ZCP-10771, ZCP-10533: No write access to attachment_storage location does not give error messages in the log. - ZCP-10614, ZCP-10604: The database upgrade makes a few wrong assumptions on the existing table definitions. - ZCP-10732, ZCP-10500: Fix corrupt mapi recipient properties in recurring agenda items. - ZCP-10707, ZCP-10701: Server should always write a coredump file by default when it segfaults. - ZCP-10782, ZCP-9483: Zarafa-admin --unhook on a non-existing store should give an error. - ZCP-10882, ZCP-10822: Python binding is broken with python-2.4. - ZCP-10877, ZCP-10834: Python binding is still broken with python-2.4. - ZCP-10748, ZCP-10729: Create subclasses of MAPIError in python. - ZCP-10850, ZCP-10815: Ubuntu 12.04 only supports up to 1024 sockets. WebAcess -------- - ZCP-10726, ZCP-9924: Recurring reminder not shown on the reminder time for series that has already begun. - ZCP-10892, ZCP-10720: The get_defined_constants (true) causes a crash in php. - ZCP-10725, ZCP-10073: Recurring reminder not shown on the reminder time. - ZCP-10763, ZCP-10365: Cannot remove messages from archive store (Archiver 1.2) in WebAccess. - ZCP-10761, ZCP-9846: Recurring reminder not shown on the reminder time. - ZCP-10721, ZCP-10584: Recurring items start on the wrong time in DST day and week after it. Zarafa Collaboration Platform 7.0.10 final [37482] ================================================== Backend ------- - ZCP-10634, ZCP-9499: Rename the names of groups in the ads tools. - ZCP-10647, ZCP-10530: Missing archive ACLs may fail the acl-sync script. - ZCP-10606, ZCP-10083: Za-restore tool for restoring all data from an archive mailbox has typo in help text. - ZCP-10494, ZCP-10461: Zarafa archiver doesn't handle permissions on archives for non-active-user stores properly. - ZCP-10599, ZCP-10536: Umlauts not escaped in auto updater SQL inserts. - ZCP-10538, ZCP-10446: Use boost filesystem v3 if available. - ZCP-10409, ZCP-10407: Russian translations should be shipped. - ZCP-10388, ZCP-10050: Monthly recurring that occurs every specific day jumps to the year 2148. - ZCP-10590, ZCP-10317: Unable to resolve contact from shared contacts folder using contacts provider. - ZCP-10373, ZCP-10358: Zarafa contacts provider only returns oldest 256 contacts from the selected folder. - ZCP-10369: Contacts provider should only show emailable contacts. - ZCP-10645, ZCP-10535: No manpage for the Zarafa-autorespond command. - ZCP-10577, ZCP-10399: Segfault of Zarafa-gateway 7.1RC2. - ZCP-10496, ZCP-10014: Missing PR_TRANSPORT_MESSAGE_HEADERS property on messages will give wrong results using the IMAP gateway. - ZCP-10622: Strcasestr does not exist in windows. - ZCP-10613, ZCP-10610: Inline image detection may fail on some html. - ZCP-10592, ZCP-9878: Zarafa7-upgrade script is compressed after installation on debian systems. - ZCP-10551, ZCP-9968: Conversion script objectsid-to-objectGUID.pl is still using storeid in some queries, although this not available on 7.0 anymore. - ZCP-10635, ZCP-10627: Licensed SIGSEVG, cause unknown. - ZCP-10368, ZCP-10345: Zarafa-prio socket with wrong permissions (when not root). - ZCP-10332, ZCP-10316: Apache segfaults when you resolve a user that does not exist using the contacts provider. - ZCP-10489, ZCP-10450: External emails inside distribution list treated as groups by spooler. - ZCP-10615, ZCP-10351: PHP session cache is useless and can break notifications in z-push. - ZCP-10488, ZCP-10472: Performance improvement for php-ext queryrows. - ZCP-10434, ZCP-10253: Apache threads are crashing. - ZCP-10611, ZCP-10081: Navigation pane links can be unstable, or completely wrong when using offline outlook. - ZCP-10605, ZCP-10102: Incorrect information on quota levels if company exceeds quota. - ZCP-10580, ZCP-10349: Outlook crashes when opening permissions tab on a search folder. - ZCP-10555, ZCP-10531: ECMessageStreamImporterIStreamAdapter::Write does not return bytes written and segfaults when NULL is passed. - ZCP-10543: Unable to copy a store to the public store. - ZCP-10521, ZCP-10375: Meeting requests sent by secretary to own delegate are not delivered to secretary. - ZCP-10520, ZCP-10485: Response message from exchange does not show body. - ZCP-10385, ZCP-8349: Zarafa-admin --enable-feature -u can segfault on 32bit systems. - ZCP-10561, ZCP-10382: Ssl-certificates.sh fails for centOS 6.3 (maybe 6.x in general?). - ZCP-10553, ZCP-10484: Update Zarafa-fsck warning. - ZCP-10526, ZCP-10519: Description of ZarafaCompanyServer is wrong. - ZCP-10500: Fix corrupt mapi receipient properties in recurring agenda items. - ZCP-10617, ZCP-10263: The message-id gets lost when forwarding email as attachment, so it will be marked as spam by some antispam solutions. - ZCP-10478, ZCP-9837: User names with umlaut will cause empty lines in the spooler log. - ZCP-10715, ZCP-10710: Achiver stores not always automatically opened on older created Outlook profiles. - ZCP-10688, ZCP-9146: SSL certificate check deadlock when opening delegate user with archive on a server which presents the SSL cert dialog. - ZCP-10667, ZCP-9760: Search for user name with umlaut in the gab will do a search with the character that are in front of the umlaut. WebAccess --------- - ZCP-10560, ZCP-10475: Script error in address book when trying to add a contact which is not selected. - ZCP-10558, ZCP-10302: Script error in IE when closing new mail window. - ZCP-10582: Timezone gmt-3 Brasilia has October 20th twice in 2012 and October 19th in 2013. -------------------------------------------------------------------------------- ChangeLog: * Sun Feb 10 2013 Robert Scheck 7.0.12-1 - Upgrade to 7.0.12 * Sun Feb 10 2013 Denis Arnaud - 7.0.9-3 - Rebuild for Boost-1.53.0 * Fri Feb 1 2013 Parag Nemade - 7.0.9-2 - Rebuild for icu 50 -------------------------------------------------------------------------------- From rgm at htt-consult.com Tue Feb 12 21:03:15 2013 From: rgm at htt-consult.com (Robert Moskowitz) Date: Tue, 12 Feb 2013 16:03:15 -0500 Subject: What happened to gftp? Message-ID: <511AAE13.2070509@htt-consult.com> I installed gftp on 1-20-13 on one system: Jan 30 16:12:32 Installed: 2:gftp-2.0.19-4.el6.rf.i686 Now I go to get it for another system, and it is NOT THERE! ARGH!!! help :) From skvidal at fedoraproject.org Tue Feb 12 21:05:37 2013 From: skvidal at fedoraproject.org (Seth Vidal) Date: Tue, 12 Feb 2013 16:05:37 -0500 (EST) Subject: What happened to gftp? In-Reply-To: <511AAE13.2070509@htt-consult.com> References: <511AAE13.2070509@htt-consult.com> Message-ID: On Tue, 12 Feb 2013, Robert Moskowitz wrote: > I installed gftp on 1-20-13 on one system: > > Jan 30 16:12:32 Installed: 2:gftp-2.0.19-4.el6.rf.i686 > > Now I go to get it for another system, and it is NOT THERE! ARGH!!! > > help :) > > rf means it came from rpmfusion, I think. not from epel. -sv From dennisml at conversis.de Tue Feb 12 21:09:50 2013 From: dennisml at conversis.de (Dennis Jacobfeuerborn) Date: Tue, 12 Feb 2013 22:09:50 +0100 Subject: What happened to gftp? In-Reply-To: References: <511AAE13.2070509@htt-consult.com> Message-ID: <511AAF9E.20402@conversis.de> On 02/12/2013 10:05 PM, Seth Vidal wrote: > > > On Tue, 12 Feb 2013, Robert Moskowitz wrote: > >> I installed gftp on 1-20-13 on one system: >> >> Jan 30 16:12:32 Installed: 2:gftp-2.0.19-4.el6.rf.i686 >> >> Now I go to get it for another system, and it is NOT THERE! ARGH!!! >> >> help :) >> >> > > > rf means it came from rpmfusion, I think. > > > not from epel. Actually rf means it comes from repoforge: http://pkgs.repoforge.org/gftp/gftp-2.0.19-4.el6.rf.i686.rpm Regards, Dennis From rgm at htt-consult.com Tue Feb 12 21:20:51 2013 From: rgm at htt-consult.com (Robert Moskowitz) Date: Tue, 12 Feb 2013 16:20:51 -0500 Subject: What happened to gftp? In-Reply-To: <511AAF9E.20402@conversis.de> References: <511AAE13.2070509@htt-consult.com> <511AAF9E.20402@conversis.de> Message-ID: <511AB233.6070908@htt-consult.com> On 02/12/2013 04:09 PM, Dennis Jacobfeuerborn wrote: > On 02/12/2013 10:05 PM, Seth Vidal wrote: >> >> On Tue, 12 Feb 2013, Robert Moskowitz wrote: >> >>> I installed gftp on 1-20-13 on one system: >>> >>> Jan 30 16:12:32 Installed: 2:gftp-2.0.19-4.el6.rf.i686 >>> >>> Now I go to get it for another system, and it is NOT THERE! ARGH!!! >>> >>> help :) >>> >>> >> >> rf means it came from rpmfusion, I think. >> >> >> not from epel. > Actually rf means it comes from repoforge: > > http://pkgs.repoforge.org/gftp/gftp-2.0.19-4.el6.rf.i686.rpm A double ARGH. That means I did not save it to the 'right place' so I could move it between systems to make building easier. I REALLY need to set up a local repo with these odds and ends I seem to collect. This is what I used to do years ago, and got out of the habbit as more and more of the specials I needed became standard offerings. thanks for straightening me out. From ktdreyer at ktdreyer.com Tue Feb 12 21:28:42 2013 From: ktdreyer at ktdreyer.com (Ken Dreyer) Date: Tue, 12 Feb 2013 14:28:42 -0700 Subject: What happened to gftp? In-Reply-To: <511AB233.6070908@htt-consult.com> References: <511AAE13.2070509@htt-consult.com> <511AAF9E.20402@conversis.de> <511AB233.6070908@htt-consult.com> Message-ID: On Tue, Feb 12, 2013 at 2:20 PM, Robert Moskowitz wrote: > That means I did not save it to the 'right place' so I could move it between > systems to make building easier. I REALLY need to set up a local repo with > these odds and ends I seem to collect. This is what I used to do years ago, > and got out of the habbit as more and more of the specials I needed became > standard offerings. > > thanks for straightening me out. Hi Robert, Alternatively, you could always become the EPEL package maintainer. Then you can let Fedora's release engineering manage the repo for you :) - Ken From dennisml at conversis.de Tue Feb 12 21:37:53 2013 From: dennisml at conversis.de (Dennis Jacobfeuerborn) Date: Tue, 12 Feb 2013 22:37:53 +0100 Subject: What happened to gftp? In-Reply-To: References: <511AAE13.2070509@htt-consult.com> <511AAF9E.20402@conversis.de> <511AB233.6070908@htt-consult.com> Message-ID: <511AB631.8070904@conversis.de> On 02/12/2013 10:28 PM, Ken Dreyer wrote: > On Tue, Feb 12, 2013 at 2:20 PM, Robert Moskowitz wrote: >> That means I did not save it to the 'right place' so I could move it between >> systems to make building easier. I REALLY need to set up a local repo with >> these odds and ends I seem to collect. This is what I used to do years ago, >> and got out of the habbit as more and more of the specials I needed became >> standard offerings. >> >> thanks for straightening me out. > > Hi Robert, > > Alternatively, you could always become the EPEL package maintainer. > Then you can let Fedora's release engineering manage the repo for you > :) Since the last release of gftp was in 2008 I would recommend switching to e.g. filezilla which is available from EPEL. While the EPEL package doesn't seem to be maintained anymore either at least upstream is still maintaining the project and current builds are available for Fedora and can potentially be rebuilt for EL6. Regards, Dennis From rgm at htt-consult.com Tue Feb 12 21:57:12 2013 From: rgm at htt-consult.com (Robert Moskowitz) Date: Tue, 12 Feb 2013 16:57:12 -0500 Subject: What happened to gftp? In-Reply-To: <511AB631.8070904@conversis.de> References: <511AAE13.2070509@htt-consult.com> <511AAF9E.20402@conversis.de> <511AB233.6070908@htt-consult.com> <511AB631.8070904@conversis.de> Message-ID: <511ABAB8.40805@htt-consult.com> On 02/12/2013 04:37 PM, Dennis Jacobfeuerborn wrote: > On 02/12/2013 10:28 PM, Ken Dreyer wrote: >> On Tue, Feb 12, 2013 at 2:20 PM, Robert Moskowitz wrote: >>> That means I did not save it to the 'right place' so I could move it between >>> systems to make building easier. I REALLY need to set up a local repo with >>> these odds and ends I seem to collect. This is what I used to do years ago, >>> and got out of the habbit as more and more of the specials I needed became >>> standard offerings. >>> >>> thanks for straightening me out. >> Hi Robert, >> >> Alternatively, you could always become the EPEL package maintainer. >> Then you can let Fedora's release engineering manage the repo for you >> :) > Since the last release of gftp was in 2008 I would recommend switching to > e.g. filezilla which is available from EPEL. that would require teaching this old dog new tricks, and right now I have enough new tricks to deal with. Perhaps around summertime ;) > While the EPEL package doesn't seem to be maintained anymore either at least upstream is still maintaining > the project and current builds are available for Fedora and can potentially be rebuilt for EL6. Which has lots of other tools. Actually I ONLY use gftp for a GUI SCP interface (or whatever it is doing under the covers when you select SSH!). From tdawson at redhat.com Mon Feb 11 19:53:55 2013 From: tdawson at redhat.com (Troy Dawson) Date: Mon, 11 Feb 2013 13:53:55 -0600 Subject: EPEL-ANNOUNCE [HEADS-UP] Updating MongoDB to 2.2.3 in EPEL6 Message-ID: <51194C53.8090904@redhat.com> Hello, A couple of months back I asked about updating MongoDB from 2.0.7 to 2.2.0 in EPEL6. Although it is backwards compatible, there were several bugs brought up that people wanted fixed in Mongodb 2.2.x before we moved to this version. With MongoDB 2.2.3, the last of these bugs has been fixed. MongoDB 2.2.3 is now built and in testing, and I propose the following schedule. February 20 Push MongoDB 2.2.3 to stable for EPEL6 If anyone has any concerns, please let me know. If anyone knows where else I should announce this, please let me know. Thanks Troy Dawson _______________________________________________ epel-announce mailing list epel-announce at lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/epel-announce From updates at fedoraproject.org Wed Feb 13 19:08:13 2013 From: updates at fedoraproject.org (updates at fedoraproject.org) Date: Wed, 13 Feb 2013 19:08:13 +0000 Subject: Fedora EPEL 5 updates-testing report Message-ID: <20130213190813.E959A20B9F@bastion01.phx2.fedoraproject.org> The following Fedora EPEL 5 Security updates need testing: Age URL 20 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0173/couchdb-1.0.4-2.el5.1 297 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5630/bugzilla-3.2.10-5.el5 192 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-6608/Django-1.1.4-2.el5 74 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-13612/drupal6-ctools-1.10-1.el5 0 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0237/wordpress-3.5.1-2.el5 The following builds have been pushed to Fedora EPEL 5 updates-testing drupal7-date_ical-2.5-1.el5 kobo-0.3.8-1.el5 ucarp-1.5.2-8.el5 Details about builds: ================================================================================ drupal7-date_ical-2.5-1.el5 (FEDORA-EPEL-2013-0356) Allows creation of an iCal feed in Views -------------------------------------------------------------------------------- Update Information: Update to upstream 2.5 release Update to upstream 2.4 release Update to upstream 2.3 release Update to upstream 2.2 release -------------------------------------------------------------------------------- ChangeLog: -------------------------------------------------------------------------------- References: [ 1 ] Bug #910669 - drupal7-date_ical-2.5 is available https://bugzilla.redhat.com/show_bug.cgi?id=910669 [ 2 ] Bug #907780 - drupal7-date_ical-2.4 is available https://bugzilla.redhat.com/show_bug.cgi?id=907780 [ 3 ] Bug #904736 - drupal7-date_ical-2.3 is available https://bugzilla.redhat.com/show_bug.cgi?id=904736 [ 4 ] Bug #903583 - drupal7-date_ical-2.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=903583 -------------------------------------------------------------------------------- ================================================================================ kobo-0.3.8-1.el5 (FEDORA-EPEL-2013-0358) Python modules for tools development -------------------------------------------------------------------------------- Update Information: a new upstream release a new upstream release a new upstream release a new upstream release a new upstream release -------------------------------------------------------------------------------- ChangeLog: * Mon Feb 11 2013 Daniel Mach - 0.3.8-1 - Don't catch and mask any exceptions in cli.CommandOptionParser.run(). (Daniel Mach) - Set an empty keyring in rpmlib.get_rpm_header(). (Daniel Mach) - Format Fault's output to be nicer. (Tomas Tomecek) - Display error when cancelling task fails. (Tomas Tomecek) - Fix task cancelation method name. (Tomas Tomecek) - Add pkgset.SimpleRpmWrapper; support pickle by providing __getstate__() and __setstate__() methods. (Daniel Mach) - Enable searching in task list by label. (Tomas Tomecek) - Enable making custom queries in view task_list. (Tomas Tomecek) - Limit value length to 200 characters in tback.Traceback. (Daniel Mach) - Fix email.utils import to work with py2.4. (Daniel Mach) - Backwards compatibility bugfix in hub.models. (Tomas Tomecek) * Wed Jan 16 2013 Daniel Mach - 0.3.7-1 - Proxy support enhancement (Tomas Mlcoch) - Improve task ordering. (Daniel Mach) - Better formatting in Traceback output. (Tomas Tomecek) - Add JSONField.value_to_string() method. (Tomas Tomecek) - Improve task dir deletion and task files view. (Tomas Tomecek) - allow line buffering for shortcuts.run() (Tomas Kopecek) - Allow to specify buffer_size in shortcuts.run(). (Daniel Mach) - Add rpmlib.get_changelogs_from_header() and pkgset.RpmWrapper.changelogs. (Daniel Mach) - Support https_proxy environ variable (Tomas Mlcoch) - Create pid file in a more secure way. (Daniel Mach) - Create empty kobo.django.auth.models module to fix crashes in Django 1.4. (Daniel Mach) - Add shortcuts.makedirs() function which is identical to os.makedirs but doesn't fail on existing dirs. (Daniel Mach) - Fix typo in the 404.html template. (Daniel Mach) - Fix traceback on undefined workdir in kobo.shortcuts.run(). (Daniel Mach) - Add help-rst command which generates rst documentation for all CommandOptionParser's commands. (Daniel Mach) -------------------------------------------------------------------------------- ================================================================================ ucarp-1.5.2-8.el5 (FEDORA-EPEL-2013-0362) Common Address Redundancy Protocol (CARP) for Unix -------------------------------------------------------------------------------- Update Information: Tweak to re-add MASTER to init script. -------------------------------------------------------------------------------- ChangeLog: * Wed Feb 13 2013 Jon Ciesla - 1.5.2-8 - Additional init fix, Trent Johnson. -------------------------------------------------------------------------------- From updates at fedoraproject.org Wed Feb 13 19:08:15 2013 From: updates at fedoraproject.org (updates at fedoraproject.org) Date: Wed, 13 Feb 2013 19:08:15 +0000 Subject: Fedora EPEL 6 updates-testing report Message-ID: <20130213190815.95EC120B17@bastion01.phx2.fedoraproject.org> The following Fedora EPEL 6 Security updates need testing: Age URL 297 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5620/bugzilla-3.4.14-2.el6 20 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0193/couchdb-1.0.4-2.el6 74 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-13610/drupal6-ctools-1.10-1.el6 220 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-6348/bcfg2-1.2.3-1.el6 485 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2011-4701/supybot-gribble-0.83.4.1-10.el6 7 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0267/mediawiki119-1.19.3-3.el6 22 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0123/python-tw2-jquery-2.0.3-5.el6 4 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0298/roundcubemail-0.8.5-1.el6 0 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0233/wordpress-3.5.1-2.el6 The following builds have been pushed to Fedora EPEL 6 updates-testing drupal7-date_ical-2.5-1.el6 kobo-0.3.8-1.el6 python-askbot-fedmsg-0.0.5-1.el6 python-backports-ssl_match_hostname-3.2-0.2.a3.el6 sysprof-1.2.0-1.el6 ucarp-1.5.2-8.el6 Details about builds: ================================================================================ drupal7-date_ical-2.5-1.el6 (FEDORA-EPEL-2013-0357) Allows creation of an iCal feed in Views -------------------------------------------------------------------------------- Update Information: Update to upstream 2.5 release Update to upstream 2.4 release Update to upstream 2.3 release Update to upstream 2.2 release -------------------------------------------------------------------------------- ChangeLog: -------------------------------------------------------------------------------- References: [ 1 ] Bug #910669 - drupal7-date_ical-2.5 is available https://bugzilla.redhat.com/show_bug.cgi?id=910669 [ 2 ] Bug #907780 - drupal7-date_ical-2.4 is available https://bugzilla.redhat.com/show_bug.cgi?id=907780 [ 3 ] Bug #904736 - drupal7-date_ical-2.3 is available https://bugzilla.redhat.com/show_bug.cgi?id=904736 [ 4 ] Bug #903583 - drupal7-date_ical-2.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=903583 -------------------------------------------------------------------------------- ================================================================================ kobo-0.3.8-1.el6 (FEDORA-EPEL-2013-0355) Python modules for tools development -------------------------------------------------------------------------------- Update Information: a new upstream release a new upstream release a new upstream release a new upstream release a new upstream release -------------------------------------------------------------------------------- ChangeLog: * Mon Feb 11 2013 Daniel Mach - 0.3.8-1 - Don't catch and mask any exceptions in cli.CommandOptionParser.run(). (Daniel Mach) - Set an empty keyring in rpmlib.get_rpm_header(). (Daniel Mach) - Format Fault's output to be nicer. (Tomas Tomecek) - Display error when cancelling task fails. (Tomas Tomecek) - Fix task cancelation method name. (Tomas Tomecek) - Add pkgset.SimpleRpmWrapper; support pickle by providing __getstate__() and __setstate__() methods. (Daniel Mach) - Enable searching in task list by label. (Tomas Tomecek) - Enable making custom queries in view task_list. (Tomas Tomecek) - Limit value length to 200 characters in tback.Traceback. (Daniel Mach) - Fix email.utils import to work with py2.4. (Daniel Mach) - Backwards compatibility bugfix in hub.models. (Tomas Tomecek) * Wed Jan 16 2013 Daniel Mach - 0.3.7-1 - Proxy support enhancement (Tomas Mlcoch) - Improve task ordering. (Daniel Mach) - Better formatting in Traceback output. (Tomas Tomecek) - Add JSONField.value_to_string() method. (Tomas Tomecek) - Improve task dir deletion and task files view. (Tomas Tomecek) - allow line buffering for shortcuts.run() (Tomas Kopecek) - Allow to specify buffer_size in shortcuts.run(). (Daniel Mach) - Add rpmlib.get_changelogs_from_header() and pkgset.RpmWrapper.changelogs. (Daniel Mach) - Support https_proxy environ variable (Tomas Mlcoch) - Create pid file in a more secure way. (Daniel Mach) - Create empty kobo.django.auth.models module to fix crashes in Django 1.4. (Daniel Mach) - Add shortcuts.makedirs() function which is identical to os.makedirs but doesn't fail on existing dirs. (Daniel Mach) - Fix typo in the 404.html template. (Daniel Mach) - Fix traceback on undefined workdir in kobo.shortcuts.run(). (Daniel Mach) - Add help-rst command which generates rst documentation for all CommandOptionParser's commands. (Daniel Mach) -------------------------------------------------------------------------------- ================================================================================ python-askbot-fedmsg-0.0.5-1.el6 (FEDORA-EPEL-2013-0363) Askbot plugin for emitting events to the Fedora message bus -------------------------------------------------------------------------------- Update Information: Fix fedmsg cert_prefix bug. Initial release -------------------------------------------------------------------------------- References: [ 1 ] Bug #907209 - Review Request: python-askbot-fedmsg - Askbot plugin for emitting events to the Fedora message bus https://bugzilla.redhat.com/show_bug.cgi?id=907209 -------------------------------------------------------------------------------- ================================================================================ python-backports-ssl_match_hostname-3.2-0.2.a3.el6 (FEDORA-EPEL-2013-0360) The ssl.match_hostname() function from Python 3.2 -------------------------------------------------------------------------------- Update Information: New package: backport of the ssl_match_hostname function from Python 3 for Python 2.x users. -------------------------------------------------------------------------------- References: [ 1 ] Bug #885013 - Review Request: python-backports-ssl_match_hostname - The ssl.match_hostname() function from Python 3.2 https://bugzilla.redhat.com/show_bug.cgi?id=885013 -------------------------------------------------------------------------------- ================================================================================ sysprof-1.2.0-1.el6 (FEDORA-EPEL-2013-0359) A system-wide Linux profiler -------------------------------------------------------------------------------- Update Information: New EPEL 6 build -------------------------------------------------------------------------------- References: [ 1 ] Bug #910044 - Please create EPEL branch https://bugzilla.redhat.com/show_bug.cgi?id=910044 -------------------------------------------------------------------------------- ================================================================================ ucarp-1.5.2-8.el6 (FEDORA-EPEL-2013-0361) Common Address Redundancy Protocol (CARP) for Unix -------------------------------------------------------------------------------- Update Information: Tweak to re-add MASTER to init script. -------------------------------------------------------------------------------- ChangeLog: * Wed Feb 13 2013 Jon Ciesla - 1.5.2-8 - Additional init fix, Trent Johnson. -------------------------------------------------------------------------------- From updates at fedoraproject.org Fri Feb 15 18:38:45 2013 From: updates at fedoraproject.org (updates at fedoraproject.org) Date: Fri, 15 Feb 2013 18:38:45 +0000 Subject: Fedora EPEL 5 updates-testing report Message-ID: <20130215183845.5B9F820F5A@bastion01.phx2.fedoraproject.org> The following Fedora EPEL 5 Security updates need testing: Age URL 0 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0366/openconnect-4.08-1.el5 299 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5630/bugzilla-3.2.10-5.el5 194 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-6608/Django-1.1.4-2.el5 76 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-13612/drupal6-ctools-1.10-1.el5 2 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0237/wordpress-3.5.1-2.el5 The following builds have been pushed to Fedora EPEL 5 updates-testing openconnect-4.08-1.el5 sipp-3.3-2.el5 Details about builds: ================================================================================ openconnect-4.08-1.el5 (FEDORA-EPEL-2013-0366) Open client for Cisco AnyConnect VPN -------------------------------------------------------------------------------- Update Information: This update fixes a potential buffer overflow in HTTP request generation, which could be triggered by a malicious server generating a large number of cookies or redirecting to a large path or hostname. -------------------------------------------------------------------------------- ChangeLog: * Wed Feb 13 2013 David Woodhouse - 4.08-1 - Update to 4.08 release (#910331 CVE-2012-6128) -------------------------------------------------------------------------------- References: [ 1 ] Bug #910330 - CVE-2012-6128 openconnect: Stack-based buffer overflow when processing certain host names, paths, or cookie lists https://bugzilla.redhat.com/show_bug.cgi?id=910330 -------------------------------------------------------------------------------- ================================================================================ sipp-3.3-2.el5 (FEDORA-EPEL-2013-0364) SIP test tool / traffic generator -------------------------------------------------------------------------------- Update Information: - Ver. 3.3 -------------------------------------------------------------------------------- ChangeLog: * Fri Feb 15 2013 Peter Lemenkov - 3.3-2 - Fix for autoreconf on EL5 * Fri Feb 15 2013 Peter Lemenkov - 3.3-1 - Ver. 3.3 * Fri Feb 15 2013 Fedora Release Engineering - 3.2-7 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild * Sat Jul 21 2012 Fedora Release Engineering - 3.2-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild * Tue Feb 28 2012 Fedora Release Engineering - 3.2-5 - Rebuilt for c++ ABI breakage * Sat Jan 14 2012 Fedora Release Engineering - 3.2-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild * Thu Nov 3 2011 Peter Lemenkov - 3.2-3 - Fix authorization - Cherry-picked two patches from svn trunk * Wed Feb 9 2011 Fedora Release Engineering - 3.2-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild * Thu Jan 27 2011 Peter Lemenkov 3.2-1 - Ver 3.2 - Patches rebased -------------------------------------------------------------------------------- From updates at fedoraproject.org Fri Feb 15 18:38:46 2013 From: updates at fedoraproject.org (updates at fedoraproject.org) Date: Fri, 15 Feb 2013 18:38:46 +0000 Subject: Fedora EPEL 6 updates-testing report Message-ID: <20130215183846.9971F20E5E@bastion01.phx2.fedoraproject.org> The following Fedora EPEL 6 Security updates need testing: Age URL 299 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5620/bugzilla-3.4.14-2.el6 0 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0376/openconnect-4.08-1.el6 76 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-13610/drupal6-ctools-1.10-1.el6 222 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-6348/bcfg2-1.2.3-1.el6 487 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2011-4701/supybot-gribble-0.83.4.1-10.el6 8 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0267/mediawiki119-1.19.3-3.el6 24 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0123/python-tw2-jquery-2.0.3-5.el6 6 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0298/roundcubemail-0.8.5-1.el6 2 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0233/wordpress-3.5.1-2.el6 The following builds have been pushed to Fedora EPEL 6 updates-testing datanommer-commands-0.4.2-1.el6 fail2ban-0.8.8-3.el6 openconnect-4.08-1.el6 openstack-packstack-2012.2.2-0.8.dev406.el6 php-jsonlint-1.1.1-1.el6 php-twig-Twig-1.12.2-1.el6 python-datanommer-models-0.4.2-1.el6 sipp-3.3-1.el6 sx-2.14-1.el6 tomcat-native-1.1.27-1.el6 yourls-1.5.1-3.el6 Details about builds: ================================================================================ datanommer-commands-0.4.2-1.el6 (FEDORA-EPEL-2013-0370) Console commands for datanommer -------------------------------------------------------------------------------- Update Information: Latest upstream with a fix to datanommer-latest. Latest upstream -------------------------------------------------------------------------------- ChangeLog: * Thu Feb 14 2013 Ralph Bean - 0.4.2-1 - Latest upstream with a bugfix to datanommer-latest. * Thu Feb 7 2013 Ralph Bean - 0.4.1-1 - Latest upstream from Jessica Anderson. - Various enhancements and bugfixes. - New datanommer-latest command. - Tests now require python-mock. - New dep on fedmsg.meta Fedora Infrastructure plugin. -------------------------------------------------------------------------------- ================================================================================ fail2ban-0.8.8-3.el6 (FEDORA-EPEL-2013-0375) Ban IPs that make too many password failures -------------------------------------------------------------------------------- Update Information: - Add patch from upstream to fix module imports (Bug #892365) - Add patch from upstream to UTF-8 characters in syslog (Bug #905097) -------------------------------------------------------------------------------- ChangeLog: * Thu Feb 14 2013 Orion Poplawski - 0.8.8-3 - Add patch from upstream to fix module imports (Bug #892365) - Add patch from upstream to UTF-8 characters in syslog (Bug #905097) -------------------------------------------------------------------------------- ================================================================================ openconnect-4.08-1.el6 (FEDORA-EPEL-2013-0376) Open client for Cisco AnyConnect VPN -------------------------------------------------------------------------------- Update Information: This update fixes a potential buffer overflow in HTTP request generation, which could be triggered by a malicious server generating a large number of cookies or redirecting to a large path or hostname. -------------------------------------------------------------------------------- ChangeLog: * Wed Feb 13 2013 David Woodhouse - 4.08-1 - Update to 4.08 release (#910331 CVE-2012-6128) -------------------------------------------------------------------------------- References: [ 1 ] Bug #910330 - CVE-2012-6128 openconnect: Stack-based buffer overflow when processing certain host names, paths, or cookie lists https://bugzilla.redhat.com/show_bug.cgi?id=910330 -------------------------------------------------------------------------------- ================================================================================ openstack-packstack-2012.2.2-0.8.dev406.el6 (FEDORA-EPEL-2013-0367) Openstack Install Utility -------------------------------------------------------------------------------- Update Information: Here is where you give an explanation of your update. Here is where you give an explanation of your update. Here is where you give an explanation of your update. Here is where you give an explanation of your update. Here is where you give an explanation of your update. -------------------------------------------------------------------------------- References: [ 1 ] Bug #905083 - Endless loop if scp is missing on nodes https://bugzilla.redhat.com/show_bug.cgi?id=905083 [ 2 ] Bug #906254 - packstack will fail if ntpd is running while ntpdate is executed https://bugzilla.redhat.com/show_bug.cgi?id=906254 [ 3 ] Bug #906269 - Please support Scientific Linux https://bugzilla.redhat.com/show_bug.cgi?id=906269 [ 4 ] Bug #909111 - python-keystone dependency is missing https://bugzilla.redhat.com/show_bug.cgi?id=909111 -------------------------------------------------------------------------------- ================================================================================ php-jsonlint-1.1.1-1.el6 (FEDORA-EPEL-2013-0365) JSON Lint for PHP -------------------------------------------------------------------------------- Update Information: 1.1.1 (2013-02-12) * Fixed handling of empty keys in objects in certain cases Full change log: https://github.com/Seldaek/jsonlint/blob/1.1.1/CHANGELOG.mdown -------------------------------------------------------------------------------- ChangeLog: -------------------------------------------------------------------------------- References: [ 1 ] Bug #910280 - php-jsonlint-1.1.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=910280 -------------------------------------------------------------------------------- ================================================================================ php-twig-Twig-1.12.2-1.el6 (FEDORA-EPEL-2013-0372) The flexible, fast, and secure template engine for PHP -------------------------------------------------------------------------------- Update Information: 1.12.2 (2013-02-09) * fixed the timezone used by the date filter and function when the given date contains a timezone (like 2010-01-28T15:00:00+02:00) * fixed globals when getGlobals is called early on * added the first and last filter Full change log: https://github.com/fabpot/Twig/blob/v1.12.2/CHANGELOG -------------------------------------------------------------------------------- ChangeLog: * Tue Feb 12 2013 Shawn Iwinski 1.12.2-1 - Updated to upstream version 1.12.2 -------------------------------------------------------------------------------- References: [ 1 ] Bug #909916 - php-twig-Twig-1.12.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=909916 -------------------------------------------------------------------------------- ================================================================================ python-datanommer-models-0.4.2-1.el6 (FEDORA-EPEL-2013-0368) SQLAlchemy models for datanommer -------------------------------------------------------------------------------- Update Information: Latest upstream with enhanced alembic migration. Alembic upgrade scripts -------------------------------------------------------------------------------- ChangeLog: * Thu Feb 14 2013 Ralph Bean - 0.4.2-1 - Latest upstream with improved alembic migration. * Thu Feb 7 2013 Ralph Bean - 0.4.1-1 - Latest upstream contributed by Jessica Anderson. - Included alembic upgrade scripts in /usr/share/datanommer.models/ -------------------------------------------------------------------------------- ================================================================================ sipp-3.3-1.el6 (FEDORA-EPEL-2013-0371) SIP test tool / traffic generator -------------------------------------------------------------------------------- Update Information: * Ver. 3.3 -------------------------------------------------------------------------------- ChangeLog: * Fri Feb 15 2013 Peter Lemenkov - 3.3-1 - Ver. 3.3 * Fri Feb 15 2013 Fedora Release Engineering - 3.2-7 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild * Sat Jul 21 2012 Fedora Release Engineering - 3.2-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild * Tue Feb 28 2012 Fedora Release Engineering - 3.2-5 - Rebuilt for c++ ABI breakage * Sat Jan 14 2012 Fedora Release Engineering - 3.2-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ sx-2.14-1.el6 (FEDORA-EPEL-2013-0374) Tool to extract reports and run plug-ins against those extracted reports -------------------------------------------------------------------------------- Update Information: New upstream release to resolve bugs and add new features enhancements. No backward compatibility issues known. -------------------------------------------------------------------------------- ChangeLog: * Fri Feb 15 2013 Niels de Vos - 2.14-1 - Update to sx-2.14 (RHBZ#911620) -------------------------------------------------------------------------------- References: [ 1 ] Bug #911620 - Update to sx-2.14 https://bugzilla.redhat.com/show_bug.cgi?id=911620 -------------------------------------------------------------------------------- ================================================================================ tomcat-native-1.1.27-1.el6 (FEDORA-EPEL-2013-0369) Tomcat native library -------------------------------------------------------------------------------- Update Information: Update to version 1.1.27. http://tomcat.apache.org/native-doc/miscellaneous/changelog.html -------------------------------------------------------------------------------- ChangeLog: * Wed Feb 13 2013 Ville Skytt? - 1.1.27-1 - Update to 1.1.27. - Clean up specfile constructs no longer needed in Fedora or EL6+. * Sat Jul 21 2012 Fedora Release Engineering - 1.1.24-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #910694 - tomcat-native-1.1.27 is available https://bugzilla.redhat.com/show_bug.cgi?id=910694 -------------------------------------------------------------------------------- ================================================================================ yourls-1.5.1-3.el6 (FEDORA-EPEL-2013-0373) Your Own URL Shortener -------------------------------------------------------------------------------- Update Information: Add README.fedora -------------------------------------------------------------------------------- ChangeLog: * Fri Feb 15 2013 Martin Krizek - 1.5.1-3 - Add README.fedora * Fri Feb 15 2013 Fedora Release Engineering - 1.5.1-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild -------------------------------------------------------------------------------- From updates at fedoraproject.org Mon Feb 18 01:01:47 2013 From: updates at fedoraproject.org (updates at fedoraproject.org) Date: Mon, 18 Feb 2013 01:01:47 +0000 Subject: Fedora EPEL 5 updates-testing report Message-ID: <20130218010147.9B04320C73@bastion01.phx2.fedoraproject.org> The following Fedora EPEL 5 Security updates need testing: Age URL 2 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0366/openconnect-4.08-1.el5 302 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5630/bugzilla-3.2.10-5.el5 196 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-6608/Django-1.1.4-2.el5 79 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-13612/drupal6-ctools-1.10-1.el5 5 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0237/wordpress-3.5.1-2.el5 The following builds have been pushed to Fedora EPEL 5 updates-testing ivykis-0.36.2-1.el5 nwipe-0.14-2.el5 python-bugzilla-0.8.0-1.el5 salt-0.13.1-1.el5 Details about builds: ================================================================================ ivykis-0.36.2-1.el5 (FEDORA-EPEL-2013-0386) Library for asynchronous I/O readiness notification -------------------------------------------------------------------------------- Update Information: Update to 0.36.2 -------------------------------------------------------------------------------- ChangeLog: * Sun Feb 17 2013 Jose Pedro Oliveira - 0.36.2-1 - Update to 0.36.2. * Thu Feb 14 2013 Fedora Release Engineering - 0.36.1-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ nwipe-0.14-2.el5 (FEDORA-EPEL-2013-0384) Securely erase disks using a variety of recognized methods -------------------------------------------------------------------------------- Update Information: Update to upstream bugfix version 0.14 -------------------------------------------------------------------------------- ChangeLog: * Sat Feb 16 2013 Michal Ambroz 0.14-2 - removed build requirement to autoconf again * Sat Feb 16 2013 Michal Ambroz 0.14-1 - upgrade to version 0.14 * Sun Feb 10 2013 Michal Ambroz 0.13-2 - patched build to check for ncurses independently from panel * Sun Feb 10 2013 Michal Ambroz 0.13-1 - upgrade to version 0.13 * Tue Feb 5 2013 Michal Ambroz 0.12-1 - upgrade to version 0.12 * Mon Sep 24 2012 Michal Ambroz 0.11-1 - upgrade to version 0.11 -------------------------------------------------------------------------------- ================================================================================ python-bugzilla-0.8.0-1.el5 (FEDORA-EPEL-2013-0388) A python library for interacting with Bugzilla -------------------------------------------------------------------------------- Update Information: * Rebased to version 0.8.0 * Drop most usage of non-upstream RH Bugzilla API * Test suite improvements, nearly complete code coverage * Fix all open bug reports and RFEs -------------------------------------------------------------------------------- ChangeLog: * Fri Feb 15 2013 Cole Robinson - 0.8.0-1 - Rebased to version 0.8.0 - Drop most usage of non-upstream RH Bugzilla API - Test suite improvements, nearly complete code coverage - Fix all open bug reports and RFEs -------------------------------------------------------------------------------- ================================================================================ salt-0.13.1-1.el5 (FEDORA-EPEL-2013-0391) A parallel remote execution system -------------------------------------------------------------------------------- Update Information: Update to upstream patch release 0.13.1 and re-add unittest support upstream release 0.12.1 update to upstream release 0.12.0 -------------------------------------------------------------------------------- ChangeLog: * Fri Feb 15 2013 Clint Savage - 0.13.1-1 - Update to upstream patch release 0.13.1 - Add unittest support * Sat Feb 2 2013 Clint Savage - 0.12.1-1 - Remove patches and update to upstream patch release 0.12.1 * Thu Jan 17 2013 Wendall Cada - 0.12.0-2 - Added unittest support * Wed Jan 16 2013 Clint Savage - 0.12.0-1 - Upstream release 0.12.0 -------------------------------------------------------------------------------- From updates at fedoraproject.org Mon Feb 18 01:01:46 2013 From: updates at fedoraproject.org (updates at fedoraproject.org) Date: Mon, 18 Feb 2013 01:01:46 +0000 Subject: Fedora EPEL 6 updates-testing report Message-ID: <20130218010146.C9CCB20C88@bastion01.phx2.fedoraproject.org> The following Fedora EPEL 6 Security updates need testing: Age URL 302 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5620/bugzilla-3.4.14-2.el6 2 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0376/openconnect-4.08-1.el6 79 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-13610/drupal6-ctools-1.10-1.el6 224 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-6348/bcfg2-1.2.3-1.el6 490 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2011-4701/supybot-gribble-0.83.4.1-10.el6 11 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0267/mediawiki119-1.19.3-3.el6 26 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0123/python-tw2-jquery-2.0.3-5.el6 8 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0298/roundcubemail-0.8.5-1.el6 5 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0233/wordpress-3.5.1-2.el6 The following builds have been pushed to Fedora EPEL 6 updates-testing ivykis-0.36.2-1.el6 lsyncd-2.1.4-2.el6 nwipe-0.14-2.el6 php-channel-guzzle-1.3-2.el6 php-guzzle-Guzzle-3.2.0-1.el6 php-horde-Horde-Alarm-2.0.3-3.el6 php-horde-Horde-Argv-2.0.4-4.el6 php-horde-Horde-Editor-2.0.3-2.el6 php-horde-Horde-Exception-2.0.3-1.el6 php-horde-Horde-Image-2.0.3-3.el6 php-horde-Horde-Lock-2.0.1-3.el6 php-horde-Horde-Serialize-2.0.1-3.el6 php-horde-Horde-Test-2.2.0-1.el6 php-horde-Horde-Text-Flowed-2.0.1-4.el6 php-horde-Horde-Util-2.1.0-2.el6 pnp4nagios-0.6.19-1.el6 python-bugzilla-0.8.0-1.el6 python-django-select2-3.2.1-1.el6 python-flask-sqlalchemy-0.16-2.el6 salt-0.13.1-1.el6 Details about builds: ================================================================================ ivykis-0.36.2-1.el6 (FEDORA-EPEL-2013-0380) Library for asynchronous I/O readiness notification -------------------------------------------------------------------------------- Update Information: Update to 0.36.2 -------------------------------------------------------------------------------- ChangeLog: * Sun Feb 17 2013 Jose Pedro Oliveira - 0.36.2-1 - Update to 0.36.2. * Thu Feb 14 2013 Fedora Release Engineering - 0.36.1-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ lsyncd-2.1.4-2.el6 (FEDORA-EPEL-2013-0387) File change monitoring and synchronization daemon -------------------------------------------------------------------------------- Update Information: LSYNCD_OPTIONS were accidentally zeroized -------------------------------------------------------------------------------- ChangeLog: * Sat Feb 16 2013 Paul Wouters - 2.1.4-2 - Comment out the LSYNCD_OPTIONS options per default, it accidentally caused the options from the initscript/systemd service to ignored -------------------------------------------------------------------------------- ================================================================================ nwipe-0.14-2.el6 (FEDORA-EPEL-2013-0390) Securely erase disks using a variety of recognized methods -------------------------------------------------------------------------------- Update Information: Update to upstream bugfix version 0.14 -------------------------------------------------------------------------------- ChangeLog: * Sat Feb 16 2013 Michal Ambroz 0.14-2 - removed build requirement to autoconf again * Sat Feb 16 2013 Michal Ambroz 0.14-1 - upgrade to version 0.14 * Sun Feb 10 2013 Michal Ambroz 0.13-2 - patched build to check for ncurses independently from panel * Sun Feb 10 2013 Michal Ambroz 0.13-1 - upgrade to version 0.13 * Tue Feb 5 2013 Michal Ambroz 0.12-1 - upgrade to version 0.12 * Mon Sep 24 2012 Michal Ambroz 0.11-1 - upgrade to version 0.11 -------------------------------------------------------------------------------- ================================================================================ php-channel-guzzle-1.3-2.el6 (FEDORA-EPEL-2013-0382) Adds guzzlephp.org/pear channel to PEAR -------------------------------------------------------------------------------- Update Information: This package adds the guzzlephp.org/pear channel which allows PEAR packages from this channel to be installed. -------------------------------------------------------------------------------- ================================================================================ php-guzzle-Guzzle-3.2.0-1.el6 (FEDORA-EPEL-2013-0383) PHP HTTP client library and framework for building RESTful web service clients -------------------------------------------------------------------------------- Update Information: Guzzle takes the pain out of sending HTTP requests and the redundancy out of creating web service clients. Guzzle is a framework that includes the tools needed to create a robust web service client, including: Service descriptions for defining the inputs and outputs of an API, resource iterators for traversing paginated resources, batching for sending a large number of requests as efficiently as possible. * All the power of cURL with a simple interface * Persistent connections and parallel requests * Streams request and response bodies * Service descriptions for quickly building clients * Powered by the Symfony2 EventDispatcher * Use all of the code or only specific components * Plugins for caching, logging, OAuth, mocks, and more Optional dependencies: * Zend Framework * Doctrine * Monolog -------------------------------------------------------------------------------- References: [ 1 ] Bug #911538 - php-guzzle-Guzzle-3.2.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=911538 [ 2 ] Bug #885344 - Review Request: php-guzzle-Guzzle - PHP HTTP client library and framework for building RESTful web service clients https://bugzilla.redhat.com/show_bug.cgi?id=885344 -------------------------------------------------------------------------------- ================================================================================ php-horde-Horde-Alarm-2.0.3-3.el6 (FEDORA-EPEL-2013-0392) Horde Alarm Libraries -------------------------------------------------------------------------------- Update Information: Initial import -------------------------------------------------------------------------------- References: [ 1 ] Bug #785457 - Review Request: php-horde-Horde-Text-Flowed - Horde API for flowed text as per RFC 3676 https://bugzilla.redhat.com/show_bug.cgi?id=785457 [ 2 ] Bug #785476 - Review Request: php-horde-Horde-Serialize - Data Encapulation API https://bugzilla.redhat.com/show_bug.cgi?id=785476 [ 3 ] Bug #785446 - Review Request: php-horde-Horde-Argv - Horde command-line argument parsing package https://bugzilla.redhat.com/show_bug.cgi?id=785446 [ 4 ] Bug #785444 - Review Request: php-horde-Horde-Alarm - Horde Alarm Libraries https://bugzilla.redhat.com/show_bug.cgi?id=785444 [ 5 ] Bug #785468 - Review Request: php-horde-Horde-Image - Horde Image API https://bugzilla.redhat.com/show_bug.cgi?id=785468 [ 6 ] Bug #785475 - Review Request: php-horde-Horde-Lock - Horde Resource Locking System https://bugzilla.redhat.com/show_bug.cgi?id=785475 -------------------------------------------------------------------------------- ================================================================================ php-horde-Horde-Argv-2.0.4-4.el6 (FEDORA-EPEL-2013-0392) Horde command-line argument parsing package -------------------------------------------------------------------------------- Update Information: Initial import -------------------------------------------------------------------------------- References: [ 1 ] Bug #785457 - Review Request: php-horde-Horde-Text-Flowed - Horde API for flowed text as per RFC 3676 https://bugzilla.redhat.com/show_bug.cgi?id=785457 [ 2 ] Bug #785476 - Review Request: php-horde-Horde-Serialize - Data Encapulation API https://bugzilla.redhat.com/show_bug.cgi?id=785476 [ 3 ] Bug #785446 - Review Request: php-horde-Horde-Argv - Horde command-line argument parsing package https://bugzilla.redhat.com/show_bug.cgi?id=785446 [ 4 ] Bug #785444 - Review Request: php-horde-Horde-Alarm - Horde Alarm Libraries https://bugzilla.redhat.com/show_bug.cgi?id=785444 [ 5 ] Bug #785468 - Review Request: php-horde-Horde-Image - Horde Image API https://bugzilla.redhat.com/show_bug.cgi?id=785468 [ 6 ] Bug #785475 - Review Request: php-horde-Horde-Lock - Horde Resource Locking System https://bugzilla.redhat.com/show_bug.cgi?id=785475 -------------------------------------------------------------------------------- ================================================================================ php-horde-Horde-Editor-2.0.3-2.el6 (FEDORA-EPEL-2013-0377) Horde Editor API -------------------------------------------------------------------------------- Update Information: The Horde_Editor package provides an API to generate the code necessary for embedding javascript RTE editors in a web page. -------------------------------------------------------------------------------- References: [ 1 ] Bug #894570 - Review Request: php-horde-Horde-Editor - Horde Editor API https://bugzilla.redhat.com/show_bug.cgi?id=894570 -------------------------------------------------------------------------------- ================================================================================ php-horde-Horde-Exception-2.0.3-1.el6 (FEDORA-EPEL-2013-0347) Horde Exception Handler -------------------------------------------------------------------------------- Update Information: Horde_Util 2.1.0 * [mms] Added 'charset' and 'metacharset' parameters to returnHtml(). * [mms] Added Horde_Domhtml#getCharset() to get best-guess charset of current encoding within the DOM object. * [mms] Fix inserting HEAD into HTML document with Horde_Domhtml#getHead() if it doesn't already exist in the document. Horde_Exception 2.0.3 * [jan] Update French translation (Paul De Vlieger <paul.de_vlieger at moniut.univ-bpclermont.fr>). Horde_Test 2.2.0 * [jan] Add test/ directory to include_path to allow autoloading of test classes. -------------------------------------------------------------------------------- ChangeLog: * Mon Feb 11 2013 Remi Collet - 2.0.3-1 - Update to 2.0.3 - run test when build --with tests - spec cleanups - fix License -------------------------------------------------------------------------------- ================================================================================ php-horde-Horde-Image-2.0.3-3.el6 (FEDORA-EPEL-2013-0392) Horde Image API -------------------------------------------------------------------------------- Update Information: Initial import -------------------------------------------------------------------------------- References: [ 1 ] Bug #785457 - Review Request: php-horde-Horde-Text-Flowed - Horde API for flowed text as per RFC 3676 https://bugzilla.redhat.com/show_bug.cgi?id=785457 [ 2 ] Bug #785476 - Review Request: php-horde-Horde-Serialize - Data Encapulation API https://bugzilla.redhat.com/show_bug.cgi?id=785476 [ 3 ] Bug #785446 - Review Request: php-horde-Horde-Argv - Horde command-line argument parsing package https://bugzilla.redhat.com/show_bug.cgi?id=785446 [ 4 ] Bug #785444 - Review Request: php-horde-Horde-Alarm - Horde Alarm Libraries https://bugzilla.redhat.com/show_bug.cgi?id=785444 [ 5 ] Bug #785468 - Review Request: php-horde-Horde-Image - Horde Image API https://bugzilla.redhat.com/show_bug.cgi?id=785468 [ 6 ] Bug #785475 - Review Request: php-horde-Horde-Lock - Horde Resource Locking System https://bugzilla.redhat.com/show_bug.cgi?id=785475 -------------------------------------------------------------------------------- ================================================================================ php-horde-Horde-Lock-2.0.1-3.el6 (FEDORA-EPEL-2013-0392) Horde Resource Locking System -------------------------------------------------------------------------------- Update Information: Initial import -------------------------------------------------------------------------------- References: [ 1 ] Bug #785457 - Review Request: php-horde-Horde-Text-Flowed - Horde API for flowed text as per RFC 3676 https://bugzilla.redhat.com/show_bug.cgi?id=785457 [ 2 ] Bug #785476 - Review Request: php-horde-Horde-Serialize - Data Encapulation API https://bugzilla.redhat.com/show_bug.cgi?id=785476 [ 3 ] Bug #785446 - Review Request: php-horde-Horde-Argv - Horde command-line argument parsing package https://bugzilla.redhat.com/show_bug.cgi?id=785446 [ 4 ] Bug #785444 - Review Request: php-horde-Horde-Alarm - Horde Alarm Libraries https://bugzilla.redhat.com/show_bug.cgi?id=785444 [ 5 ] Bug #785468 - Review Request: php-horde-Horde-Image - Horde Image API https://bugzilla.redhat.com/show_bug.cgi?id=785468 [ 6 ] Bug #785475 - Review Request: php-horde-Horde-Lock - Horde Resource Locking System https://bugzilla.redhat.com/show_bug.cgi?id=785475 -------------------------------------------------------------------------------- ================================================================================ php-horde-Horde-Serialize-2.0.1-3.el6 (FEDORA-EPEL-2013-0392) Data Encapulation API -------------------------------------------------------------------------------- Update Information: Initial import -------------------------------------------------------------------------------- References: [ 1 ] Bug #785457 - Review Request: php-horde-Horde-Text-Flowed - Horde API for flowed text as per RFC 3676 https://bugzilla.redhat.com/show_bug.cgi?id=785457 [ 2 ] Bug #785476 - Review Request: php-horde-Horde-Serialize - Data Encapulation API https://bugzilla.redhat.com/show_bug.cgi?id=785476 [ 3 ] Bug #785446 - Review Request: php-horde-Horde-Argv - Horde command-line argument parsing package https://bugzilla.redhat.com/show_bug.cgi?id=785446 [ 4 ] Bug #785444 - Review Request: php-horde-Horde-Alarm - Horde Alarm Libraries https://bugzilla.redhat.com/show_bug.cgi?id=785444 [ 5 ] Bug #785468 - Review Request: php-horde-Horde-Image - Horde Image API https://bugzilla.redhat.com/show_bug.cgi?id=785468 [ 6 ] Bug #785475 - Review Request: php-horde-Horde-Lock - Horde Resource Locking System https://bugzilla.redhat.com/show_bug.cgi?id=785475 -------------------------------------------------------------------------------- ================================================================================ php-horde-Horde-Test-2.2.0-1.el6 (FEDORA-EPEL-2013-0347) Horde testing base classes -------------------------------------------------------------------------------- Update Information: Horde_Util 2.1.0 * [mms] Added 'charset' and 'metacharset' parameters to returnHtml(). * [mms] Added Horde_Domhtml#getCharset() to get best-guess charset of current encoding within the DOM object. * [mms] Fix inserting HEAD into HTML document with Horde_Domhtml#getHead() if it doesn't already exist in the document. Horde_Exception 2.0.3 * [jan] Update French translation (Paul De Vlieger <paul.de_vlieger at moniut.univ-bpclermont.fr>). Horde_Test 2.2.0 * [jan] Add test/ directory to include_path to allow autoloading of test classes. -------------------------------------------------------------------------------- ChangeLog: * Tue Feb 12 2013 Remi Collet - 2.2.0-1 - Update to 2.2.0 - cleanups - add dependency on Horde_Log - fix License -------------------------------------------------------------------------------- ================================================================================ php-horde-Horde-Text-Flowed-2.0.1-4.el6 (FEDORA-EPEL-2013-0392) Horde API for flowed text as per RFC 3676 -------------------------------------------------------------------------------- Update Information: Initial import -------------------------------------------------------------------------------- References: [ 1 ] Bug #785457 - Review Request: php-horde-Horde-Text-Flowed - Horde API for flowed text as per RFC 3676 https://bugzilla.redhat.com/show_bug.cgi?id=785457 [ 2 ] Bug #785476 - Review Request: php-horde-Horde-Serialize - Data Encapulation API https://bugzilla.redhat.com/show_bug.cgi?id=785476 [ 3 ] Bug #785446 - Review Request: php-horde-Horde-Argv - Horde command-line argument parsing package https://bugzilla.redhat.com/show_bug.cgi?id=785446 [ 4 ] Bug #785444 - Review Request: php-horde-Horde-Alarm - Horde Alarm Libraries https://bugzilla.redhat.com/show_bug.cgi?id=785444 [ 5 ] Bug #785468 - Review Request: php-horde-Horde-Image - Horde Image API https://bugzilla.redhat.com/show_bug.cgi?id=785468 [ 6 ] Bug #785475 - Review Request: php-horde-Horde-Lock - Horde Resource Locking System https://bugzilla.redhat.com/show_bug.cgi?id=785475 -------------------------------------------------------------------------------- ================================================================================ php-horde-Horde-Util-2.1.0-2.el6 (FEDORA-EPEL-2013-0347) Horde Utility Libraries -------------------------------------------------------------------------------- Update Information: Horde_Util 2.1.0 * [mms] Added 'charset' and 'metacharset' parameters to returnHtml(). * [mms] Added Horde_Domhtml#getCharset() to get best-guess charset of current encoding within the DOM object. * [mms] Fix inserting HEAD into HTML document with Horde_Domhtml#getHead() if it doesn't already exist in the document. Horde_Exception 2.0.3 * [jan] Update French translation (Paul De Vlieger <paul.de_vlieger at moniut.univ-bpclermont.fr>). Horde_Test 2.2.0 * [jan] Add test/ directory to include_path to allow autoloading of test classes. -------------------------------------------------------------------------------- ChangeLog: * Sun Feb 17 2013 Remi Collet - 2.1.0-2 - fix dependency, no php-filter on EL-6 * Tue Feb 12 2013 Remi Collet - 2.1.0-1 - Update to 2.1.0 - fix License - cleanups - run test when build --with tests -------------------------------------------------------------------------------- ================================================================================ pnp4nagios-0.6.19-1.el6 (FEDORA-EPEL-2013-0381) Nagios performance data analysis tool -------------------------------------------------------------------------------- Update Information: Update to upstream. -------------------------------------------------------------------------------- ChangeLog: * Sat Feb 16 2013 J?n ONDREJ (SAL) - 0.6.19-1 - update to upstream -------------------------------------------------------------------------------- ================================================================================ python-bugzilla-0.8.0-1.el6 (FEDORA-EPEL-2013-0378) A python library for interacting with Bugzilla -------------------------------------------------------------------------------- Update Information: * Rebased to version 0.8.0 * Drop most usage of non-upstream RH Bugzilla API * Test suite improvements, nearly complete code coverage * Fix all open bug reports and RFEs -------------------------------------------------------------------------------- ChangeLog: * Fri Feb 15 2013 Cole Robinson - 0.8.0-1 - Rebased to version 0.8.0 - Drop most usage of non-upstream RH Bugzilla API - Test suite improvements, nearly complete code coverage - Fix all open bug reports and RFEs -------------------------------------------------------------------------------- References: [ 1 ] Bug #638496 - Unable to raise bug using bugzilla cmd-line https://bugzilla.redhat.com/show_bug.cgi?id=638496 [ 2 ] Bug #751757 - AttributeError: Bug object has no attribute 'cc' https://bugzilla.redhat.com/show_bug.cgi?id=751757 [ 3 ] Bug #794654 - creation_time is 0 https://bugzilla.redhat.com/show_bug.cgi?id=794654 -------------------------------------------------------------------------------- ================================================================================ python-django-select2-3.2.1-1.el6 (FEDORA-EPEL-2013-0379) Select2 option fields for Django -------------------------------------------------------------------------------- Update Information: Updated to version 3.2.1. -------------------------------------------------------------------------------- ChangeLog: -------------------------------------------------------------------------------- ================================================================================ python-flask-sqlalchemy-0.16-2.el6 (FEDORA-EPEL-2013-0385) Adds SQLAlchemy support to Flask application -------------------------------------------------------------------------------- Update Information: First build of python-flask-sqlalchemy for el6 -------------------------------------------------------------------------------- ================================================================================ salt-0.13.1-1.el6 (FEDORA-EPEL-2013-0389) A parallel remote execution system -------------------------------------------------------------------------------- Update Information: Update to upstream patch release 0.13.1 and re-add unittest support upstream release 0.12.1 update to upstream release 0.12.0 -------------------------------------------------------------------------------- ChangeLog: * Fri Feb 15 2013 Clint Savage - 0.13.1-1 - Update to upstream patch release 0.13.1 - Add unittest support * Sat Feb 2 2013 Clint Savage - 0.12.1-1 - Remove patches and update to upstream patch release 0.12.1 * Thu Jan 17 2013 Wendall Cada - 0.12.0-2 - Added unittest support * Wed Jan 16 2013 Clint Savage - 0.12.0-1 - Upstream release 0.12.0 -------------------------------------------------------------------------------- From updates at fedoraproject.org Tue Feb 19 22:15:11 2013 From: updates at fedoraproject.org (updates at fedoraproject.org) Date: Tue, 19 Feb 2013 22:15:11 +0000 Subject: Fedora EPEL 6 updates-testing report Message-ID: <20130219221511.4D36520F04@bastion01.phx2.fedoraproject.org> The following Fedora EPEL 6 Security updates need testing: Age URL 304 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5620/bugzilla-3.4.14-2.el6 4 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0376/openconnect-4.08-1.el6 80 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-13610/drupal6-ctools-1.10-1.el6 226 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-6348/bcfg2-1.2.3-1.el6 492 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2011-4701/supybot-gribble-0.83.4.1-10.el6 13 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0267/mediawiki119-1.19.3-3.el6 28 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0123/python-tw2-jquery-2.0.3-5.el6 10 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0298/roundcubemail-0.8.5-1.el6 7 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0233/wordpress-3.5.1-2.el6 The following builds have been pushed to Fedora EPEL 6 updates-testing log4cplus-1.1.0-1.el6 python-django-helpdesk-0.1.8-1.el6 python-sanction-0.1.4-1.el6 ros-release-5.0-1.el6 rubygem-raindrops-0.10.0-1.el6 Details about builds: ================================================================================ log4cplus-1.1.0-1.el6 (FEDORA-EPEL-2013-0396) Logging Framework for C++ -------------------------------------------------------------------------------- Update Information: This update introduces log4cplus in epel6 repository. -------------------------------------------------------------------------------- ================================================================================ python-django-helpdesk-0.1.8-1.el6 (FEDORA-EPEL-2013-0397) A Django powered ticket tracker for small enterprise -------------------------------------------------------------------------------- Update Information: A Django powered ticket tracker for small enterprise -------------------------------------------------------------------------------- ChangeLog: * Mon Feb 18 2013 Luis Bazan - 0.1.8 -1 - New Upstream Version - add pytz -------------------------------------------------------------------------------- ================================================================================ python-sanction-0.1.4-1.el6 (FEDORA-EPEL-2013-0394) A simple, lightweight OAuth2 client -------------------------------------------------------------------------------- Update Information: Initial packaging. -------------------------------------------------------------------------------- References: [ 1 ] Bug #907583 - Review Request: python-sanction - A simple, lightweight OAuth2 client https://bugzilla.redhat.com/show_bug.cgi?id=907583 -------------------------------------------------------------------------------- ================================================================================ ros-release-5.0-1.el6 (FEDORA-EPEL-2013-0395) Robot Operating System release files -------------------------------------------------------------------------------- Update Information: Initial import of ROS Release -------------------------------------------------------------------------------- References: [ 1 ] Bug #870788 - Review Request: ros-release - Robot Operating System release files https://bugzilla.redhat.com/show_bug.cgi?id=870788 -------------------------------------------------------------------------------- ================================================================================ rubygem-raindrops-0.10.0-1.el6 (FEDORA-EPEL-2013-0393) Real-time stats for preforking Rack servers -------------------------------------------------------------------------------- Update Information: Updated version. -------------------------------------------------------------------------------- ChangeLog: * Mon Feb 18 2013 Guillermo G?mez - 0.10.0-1 - Updated version. -------------------------------------------------------------------------------- From tdawson at redhat.com Wed Feb 20 15:24:18 2013 From: tdawson at redhat.com (Troy Dawson) Date: Wed, 20 Feb 2013 09:24:18 -0600 Subject: [HEADS-UP] Updating MongoDB to 2.2.3 in EPEL6 In-Reply-To: <51153C58.1080701@redhat.com> References: <51153C58.1080701@redhat.com> Message-ID: <5124EAA2.2010401@redhat.com> On 02/08/2013 11:56 AM, Troy Dawson wrote: > Hello, > A couple of months back I asked about updating MongoDB from 2.0.7 to > 2.2.0 in EPEL6. > Although it is backwards compatible, there were several bugs brought up > that people wanted fixed in Mongodb 2.2.x before we moved to this > version. With MongoDB 2.2.3, the last of these bugs has been fixed. > MongoDB 2.2.3 is now built and in testing, and I propose the following > schedule. > > February 20 > Push MongoDB 2.2.3 to stable for EPEL6 > > If anyone has any concerns, please let me know. > If anyone knows where else I should announce this, please let me know. > > Thanks > Troy Dawson > I have only heard positive feedback for this. I am now marking mongodb 2.2.3 to stable for both EPEL6. Expect the usual delay of a day or two for these to make it into the stable repositories and to a mirror near you. My thanks to everyone who tested and replied back to me. Troy Dawson From updates at fedoraproject.org Wed Feb 20 17:34:20 2013 From: updates at fedoraproject.org (updates at fedoraproject.org) Date: Wed, 20 Feb 2013 17:34:20 +0000 Subject: Fedora EPEL 6 updates-testing report Message-ID: <20130220173420.7AA1B211CD@bastion01.phx2.fedoraproject.org> The following Fedora EPEL 6 Security updates need testing: Age URL 304 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5620/bugzilla-3.4.14-2.el6 0 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0405/bitlbee-3.2-1.el6 4 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0376/openconnect-4.08-1.el6 81 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-13610/drupal6-ctools-1.10-1.el6 227 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-6348/bcfg2-1.2.3-1.el6 492 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2011-4701/supybot-gribble-0.83.4.1-10.el6 13 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0267/mediawiki119-1.19.3-3.el6 29 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0123/python-tw2-jquery-2.0.3-5.el6 11 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0298/roundcubemail-0.8.5-1.el6 7 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0233/wordpress-3.5.1-2.el6 The following builds have been pushed to Fedora EPEL 6 updates-testing bitlbee-3.2-1.el6 libupnp-1.6.18-2.el6 mozilla-adblockplus-2.2.3-1.el6 ovirt-engine-cli-3.2.0.10-1.el6 ovirt-engine-sdk-3.2.0.9-1.el6 python-testtools-0.9.29-1.el6 re2-20130115-2.el6 Details about builds: ================================================================================ bitlbee-3.2-1.el6 (FEDORA-EPEL-2013-0405) IRC to other chat networks gateway -------------------------------------------------------------------------------- Update Information: BitlBee 3.2 =========== * By far the most important change, a thorough update to the Twitter module: * Now using Twitter API 1.1, * which means it's now using JSON instead of XML, * which means access to the streaming API (Twitter only, other Twitter API services don't seem to have it). No more 60-second polls, #twitter looks even more like real IRC now! * Also, the streaming API means nice things like receiving DMs. * show_ids, already enabled by default for a while, now uses hexadecimal numbers, which means a 256-entry backlog instead of just 100. * Added a mode=strict setting which requires everything to be a command. The "post" command should then be used to post a Tweet. * Jabber module bugfix that fixes connection issues with at least Google Talk but reportedly some other servers (OpenFire?) as well. * SSL modules improved a little bit. GnuTLS module now supports SNI and session caching. Shouldn't change much, but hopefully reduces latency and bandwidth usage a little bit. * A bunch of other fixes/improvements here and there. BitlBee 3.0.6 ============= * Updated MSN module to speak MSNP18: * Biggest change is that this brings MPOP support (you can sign in to one account from multiple locations). * Restored support for *sending* offline messages. * Some support for federated (i.e. Yahoo!) contacts. (Only messages might work, you won't see them online.) * Twitter: * Work-around for stalls that are still happening sometimes. * Added "favourite" command. * "show_ids" enabled by default. * Handle see-other-host Jabber messages which should fix support for MSN-XMPP. * Misc. fixes and improvements. -------------------------------------------------------------------------------- ChangeLog: * Wed Feb 20 2013 Robert Scheck 3.2-1 - Upgrade to 3.2 (#912675, thanks to Eike Hein and Rex Dieter) - Use the new systemd macros (#850048, thanks to V?clav Pavl?n) * Wed Feb 13 2013 Fedora Release Engineering - 3.0.5-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild * Tue Jul 24 2012 Matej Cepl - 3.0.5-4 - The last version of SSL/NSS patch for the upstream #714 * Wed Jul 18 2012 Fedora Release Engineering - 3.0.5-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild * Thu Jun 21 2012 Matej Cepl - 3.0.5-2 - Add more error handling to lib/ssl_nss.c - Checking patches for compatibility with the current state of the word and updating comments. - Improve otr conditional -------------------------------------------------------------------------------- References: [ 1 ] Bug #912675 - Package BitlBee 3.2 (current package will break with Twitter on 2013-03-05 due to new API) https://bugzilla.redhat.com/show_bug.cgi?id=912675 [ 2 ] Bug #805302 - CVE-2012-1187 bitlbee: does not drop extra group privileges [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=805302 -------------------------------------------------------------------------------- ================================================================================ libupnp-1.6.18-2.el6 (FEDORA-EPEL-2013-0404) Universal Plug and Play (UPnP) SDK -------------------------------------------------------------------------------- Update Information: Update to 1.6.18 to support upgrading mediatomb. -------------------------------------------------------------------------------- ChangeLog: * Tue Jan 29 2013 Adam Jackson 1.6.18-1 - libupnp 1.6.18 (#905577) * Tue Oct 16 2012 Adam Jackson 1.6.17-1 - libupnp 1.6.17 * Thu Jul 19 2012 Fedora Release Engineering - 1.6.13-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild * Fri Jan 13 2012 Fedora Release Engineering - 1.6.13-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild * Sat Jul 30 2011 Mat?j Cepl - 1.6.13-2 - Rebuilt against new libraries. -------------------------------------------------------------------------------- References: [ 1 ] Bug #912823 - Please update to 1.6.18 in rawhide and EL-6 https://bugzilla.redhat.com/show_bug.cgi?id=912823 -------------------------------------------------------------------------------- ================================================================================ mozilla-adblockplus-2.2.3-1.el6 (FEDORA-EPEL-2013-0401) Adblocking extension for Mozilla Firefox, Thunderbird, and Seamonkey -------------------------------------------------------------------------------- Update Information: Update to upstream 2.2.3. Minor bug fixes only. -------------------------------------------------------------------------------- ChangeLog: * Thu Feb 14 2013 Russell Golden - 2.2.3-1 - (Does not apply to Linux) Worked around AVG Security Toolbar 14.0.3.* breaking Adblock Plus among other things. - Made sure that first-run page always opens is the current browser window (bug 819561). -------------------------------------------------------------------------------- ================================================================================ ovirt-engine-cli-3.2.0.10-1.el6 (FEDORA-EPEL-2013-0406) oVirt Engine Command Line Interface -------------------------------------------------------------------------------- Update Information: Update to upstream 3.2.0.10 Update to upstream 3.2.0.9 in order to fix bug 905359 -------------------------------------------------------------------------------- ChangeLog: * Wed Feb 20 2013 Juan - 3.2.0.10-4 - Update to upstream 3.2.0.10 - Revert upstream change to use pexpect-u instead of pexpect, as the former is not available in el6 distributions * Wed Jan 30 2013 Juan Hernandez - 3.2.0.9-1 - Update to upstream 3.2.0.9 - Fix for #905359 -------------------------------------------------------------------------------- References: [ 1 ] Bug #905359 - ovirt-cli quits with DistributionNotFound exception on fedora18 https://bugzilla.redhat.com/show_bug.cgi?id=905359 -------------------------------------------------------------------------------- ================================================================================ ovirt-engine-sdk-3.2.0.9-1.el6 (FEDORA-EPEL-2013-0399) oVirt Engine Software Development Kit -------------------------------------------------------------------------------- Update Information: Update to upstream 3.2.0.3 -------------------------------------------------------------------------------- ChangeLog: * Wed Feb 20 2013 Juan - 3.2.0.9-1 - Update to upstream 3.2.0.9 -------------------------------------------------------------------------------- ================================================================================ python-testtools-0.9.29-1.el6 (FEDORA-EPEL-2013-0402) Extensions to the Python unit testing framework -------------------------------------------------------------------------------- Update Information: - Update to 0.9.29 -------------------------------------------------------------------------------- ChangeLog: * Thu Feb 7 2013 P?draig Brady - 0.9.29-1 - Update to 0.9.29 -------------------------------------------------------------------------------- References: [ 1 ] Bug #913101 - update to 0.9.29 to support subunit https://bugzilla.redhat.com/show_bug.cgi?id=913101 -------------------------------------------------------------------------------- ================================================================================ re2-20130115-2.el6 (FEDORA-EPEL-2013-0398) C++ fast alternative to backtracking RE engines -------------------------------------------------------------------------------- Update Information: C++ fast alternative to backtracking RE engines -------------------------------------------------------------------------------- References: [ 1 ] Bug #868578 - Review Request: re2 - C++ fast alternative to backtracking RE engines https://bugzilla.redhat.com/show_bug.cgi?id=868578 -------------------------------------------------------------------------------- From updates at fedoraproject.org Wed Feb 20 17:34:21 2013 From: updates at fedoraproject.org (updates at fedoraproject.org) Date: Wed, 20 Feb 2013 17:34:21 +0000 Subject: Fedora EPEL 5 updates-testing report Message-ID: <20130220173421.5C6A421455@bastion01.phx2.fedoraproject.org> The following Fedora EPEL 5 Security updates need testing: Age URL 4 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0366/openconnect-4.08-1.el5 0 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0400/bitlbee-3.2-1.el5 304 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5630/bugzilla-3.2.10-5.el5 199 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-6608/Django-1.1.4-2.el5 81 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-13612/drupal6-ctools-1.10-1.el5 7 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0237/wordpress-3.5.1-2.el5 The following builds have been pushed to Fedora EPEL 5 updates-testing bitlbee-3.2-1.el5 re2-20130115-2.el5 Details about builds: ================================================================================ bitlbee-3.2-1.el5 (FEDORA-EPEL-2013-0400) IRC to other chat networks gateway -------------------------------------------------------------------------------- Update Information: BitlBee 3.2 =========== * By far the most important change, a thorough update to the Twitter module: * Now using Twitter API 1.1, * which means it's now using JSON instead of XML, * which means access to the streaming API (Twitter only, other Twitter API services don't seem to have it). No more 60-second polls, #twitter looks even more like real IRC now! * Also, the streaming API means nice things like receiving DMs. * show_ids, already enabled by default for a while, now uses hexadecimal numbers, which means a 256-entry backlog instead of just 100. * Added a mode=strict setting which requires everything to be a command. The "post" command should then be used to post a Tweet. * Jabber module bugfix that fixes connection issues with at least Google Talk but reportedly some other servers (OpenFire?) as well. * SSL modules improved a little bit. GnuTLS module now supports SNI and session caching. Shouldn't change much, but hopefully reduces latency and bandwidth usage a little bit. * A bunch of other fixes/improvements here and there. BitlBee 3.0.6 ============= * Updated MSN module to speak MSNP18: * Biggest change is that this brings MPOP support (you can sign in to one account from multiple locations). * Restored support for *sending* offline messages. * Some support for federated (i.e. Yahoo!) contacts. (Only messages might work, you won't see them online.) * Twitter: * Work-around for stalls that are still happening sometimes. * Added "favourite" command. * "show_ids" enabled by default. * Handle see-other-host Jabber messages which should fix support for MSN-XMPP. * Misc. fixes and improvements. BitlBee 3.0.5 ============= * SSL certificate verification (edit your bitlbee.conf to enable it). Works only with GnuTLS! * OAuth2 support in Jabber module (works with Google Talk, Facebook and MSN Messenger). * Support for ad-hoc Jabber groupchats. Just create a channel and start inviting people, similar to how this works on other IM networks. Works fine with GTalk, depends on a conference server being set up on other networks. * Allow old-style Jabber login (non-SASL), this solves problems with some old/buggy Jabber servers. (acc jabber set sasl off) * Use HTTPS for OAuth1 authentication traffic. * Awareness of Twitter's t.co URL lengt^Wshortening when checking message length. * Fixed identi.ca OAuth support. OAuth will now always be used for both Twitter and identi.ca accounts. * Fix nick_format=%full_name with libpurple. * Instead of "protocol(handle)", use the account tags introduced in 3.0 when root wants to refer to an account (in log messages, queries, etc.) * Many small bugfixes, improvements, etc. -------------------------------------------------------------------------------- ChangeLog: * Wed Feb 20 2013 Robert Scheck 3.2-1 - Upgrade to 3.2 (#912675, thanks to Eike Hein and Rex Dieter) - Use the new systemd macros (#850048, thanks to V?clav Pavl?n) * Wed Feb 13 2013 Fedora Release Engineering - 3.0.5-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild * Tue Jul 24 2012 Matej Cepl - 3.0.5-4 - The last version of SSL/NSS patch for the upstream #714 * Wed Jul 18 2012 Fedora Release Engineering - 3.0.5-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild * Thu Jun 21 2012 Matej Cepl - 3.0.5-2 - Add more error handling to lib/ssl_nss.c - Checking patches for compatibility with the current state of the word and updating comments. - Improve otr conditional * Sat Mar 31 2012 Adam Williamson - 3.0.5-1 - new upstream release 3.0.5 * Sat Jan 14 2012 Adam Williamson - 3.0.4-3 - add upstream fix for a high-priority twitter disconnect/crasher * Thu Jan 12 2012 Fedora Release Engineering - 3.0.4-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #912675 - Package BitlBee 3.2 (current package will break with Twitter on 2013-03-05 due to new API) https://bugzilla.redhat.com/show_bug.cgi?id=912675 [ 2 ] Bug #805302 - CVE-2012-1187 bitlbee: does not drop extra group privileges [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=805302 -------------------------------------------------------------------------------- ================================================================================ re2-20130115-2.el5 (FEDORA-EPEL-2013-0403) C++ fast alternative to backtracking RE engines -------------------------------------------------------------------------------- Update Information: C++ fast alternative to backtracking RE engines -------------------------------------------------------------------------------- References: [ 1 ] Bug #868578 - Review Request: re2 - C++ fast alternative to backtracking RE engines https://bugzilla.redhat.com/show_bug.cgi?id=868578 -------------------------------------------------------------------------------- From ville.skytta at iki.fi Wed Feb 20 19:55:04 2013 From: ville.skytta at iki.fi (=?ISO-8859-1?Q?Ville_Skytt=E4?=) Date: Wed, 20 Feb 2013 21:55:04 +0200 Subject: Ownership released: seeker, vdr-skins, vdr-text2skin, vdr-wapd Message-ID: <51252A18.2000800@iki.fi> Hello, I've released ownership of the following low maintenance packages I haven't used in a while. None of these have any co-maintainers. Branches in Fedora and EPEL: - seeker: Random access disk benchmark utility Branches in Fedora only: - vdr-skins: Collection of skins for VDR's on-screen display - vdr-text2skin: OSD skin plugin for VDR - vdr-wapd: WAP remote control interface for VDR From kevin at scrye.com Thu Feb 21 16:21:27 2013 From: kevin at scrye.com (Kevin Fenzi) Date: Thu, 21 Feb 2013 09:21:27 -0700 Subject: 6.4 overlaps Message-ID: <20130221092127.4c61c8bf@jelerak.scrye.com> Greetings. With the release of rhel 6.4, the following epel packages have been pulled in: dev86 haproxy keepalived scipy suitesparse tbb I'm going to mark these dead.package and block them later today unless someone screams. If maintainers need to bring them back for limited arch support or something, we can revive them. kevin -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 836 bytes Desc: not available URL: From kevin at scrye.com Fri Feb 22 00:24:33 2013 From: kevin at scrye.com (Kevin Fenzi) Date: Thu, 21 Feb 2013 17:24:33 -0700 Subject: 6.4 overlaps In-Reply-To: <20130221092127.4c61c8bf@jelerak.scrye.com> References: <20130221092127.4c61c8bf@jelerak.scrye.com> Message-ID: <20130221172433.55e3b38a@jelerak.scrye.com> I've now marked these dead.package and blocked them in epel6. kevin -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 836 bytes Desc: not available URL: From inode0 at gmail.com Fri Feb 22 04:43:50 2013 From: inode0 at gmail.com (inode0) Date: Thu, 21 Feb 2013 22:43:50 -0600 Subject: 6.4 overlaps In-Reply-To: <20130221172433.55e3b38a@jelerak.scrye.com> References: <20130221092127.4c61c8bf@jelerak.scrye.com> <20130221172433.55e3b38a@jelerak.scrye.com> Message-ID: On Thu, Feb 21, 2013 at 6:24 PM, Kevin Fenzi wrote: > I've now marked these dead.package and blocked them in epel6. This bz has been sitting around for over 4 months now and is the only obvious remaining case where an epel package stomps on a base RHEL6 package - perhaps someone can clean it up now too? https://bugzilla.redhat.com/show_bug.cgi?id=867669 The following packages in epel currently have the same version as the same package in RHEL6 which can and does cause issues when the RHEL6 package isn't installed already. New installs and dependencies pull in the epel versions in a "defaultish" configuration. I don't see what purpose they really serve being in epel so if some of them can be removed that would be swell too. a2ps emacs-a2ps emacs-a2ps-el html2ps libart_lgpl lzop perl-B-Keywords perl-Class-Accessor perl-Class-Data-Inheritable perl-Class-Trigger perl-Devel-Cycle perl-Email-Date-Format perl-Exception-Class perl-File-Copy-Recursive perl-Font-AFM perl-HTML-Format perl-Locale-PO perl-MIME-Lite perl-MIME-Types perl-Module-Find perl-Net-SMTP-SSL perl-PadWalker perl-Perl-Critic perl-Pod-Spell perl-String-Format perl-Syntax-Highlight-Engine-Kate perl-Test-Memory-Cycle perl-Test-Perl-Critic perl-UNIVERSAL-can perl-UNIVERSAL-isa perl-XML-TokeParser perl-XML-Writer ruby-shadow scons xhtml2ps There are a couple with lower versions too. febootstrap ht2html Thanks, John From ktdreyer at ktdreyer.com Fri Feb 22 04:54:20 2013 From: ktdreyer at ktdreyer.com (Ken Dreyer) Date: Thu, 21 Feb 2013 21:54:20 -0700 Subject: 6.4 overlaps In-Reply-To: References: <20130221092127.4c61c8bf@jelerak.scrye.com> <20130221172433.55e3b38a@jelerak.scrye.com> Message-ID: On Thu, Feb 21, 2013 at 9:43 PM, inode0 wrote: > ruby-shadow Yeah, I noticed a while back that ruby-shadow appeared in EPEL, so Puppet can now be installed entirely via EPEL without having to enable the "optional" repo. I have a feeling that many servers probably have this one installed now. - Ken From inode0 at gmail.com Fri Feb 22 05:04:31 2013 From: inode0 at gmail.com (inode0) Date: Thu, 21 Feb 2013 23:04:31 -0600 Subject: 6.4 overlaps In-Reply-To: References: <20130221092127.4c61c8bf@jelerak.scrye.com> <20130221172433.55e3b38a@jelerak.scrye.com> Message-ID: On Thu, Feb 21, 2013 at 10:54 PM, Ken Dreyer wrote: > On Thu, Feb 21, 2013 at 9:43 PM, inode0 wrote: >> ruby-shadow > > Yeah, I noticed a while back that ruby-shadow appeared in EPEL, so > Puppet can now be installed entirely via EPEL without having to enable > the "optional" repo. I have a feeling that many servers probably have > this one installed now. I didn't look closely at each of these conflicts and I omitted koan because it is in a standard channel that epel has never treated as part of a base RHEL system and ruby-shadow might be too. On my workstation it is in the rhn-tools channel which would be allowed as I understand it. John From inode0 at gmail.com Fri Feb 22 05:43:52 2013 From: inode0 at gmail.com (inode0) Date: Thu, 21 Feb 2013 23:43:52 -0600 Subject: 6.4 overlaps In-Reply-To: References: <20130221092127.4c61c8bf@jelerak.scrye.com> <20130221172433.55e3b38a@jelerak.scrye.com> Message-ID: On Thu, Feb 21, 2013 at 10:43 PM, inode0 wrote: > There are a couple with lower versions too. > febootstrap > ht2html Actually there are closer to 30 packages in this category. They really don't hurt anything as far as I can tell so I won't add the rest here. John From kevin at scrye.com Fri Feb 22 15:48:51 2013 From: kevin at scrye.com (Kevin Fenzi) Date: Fri, 22 Feb 2013 08:48:51 -0700 Subject: 6.4 overlaps In-Reply-To: References: <20130221092127.4c61c8bf@jelerak.scrye.com> <20130221172433.55e3b38a@jelerak.scrye.com> Message-ID: <20130222084851.4757e3c0@jelerak.scrye.com> On Thu, 21 Feb 2013 22:43:50 -0600 inode0 wrote: > On Thu, Feb 21, 2013 at 6:24 PM, Kevin Fenzi wrote: > > I've now marked these dead.package and blocked them in epel6. > > This bz has been sitting around for over 4 months now and is the only > obvious remaining case where an epel package stomps on a base RHEL6 > package - perhaps someone can clean it up now too? > > https://bugzilla.redhat.com/show_bug.cgi?id=867669 Done. > The following packages in epel currently have the same version as the > same package in RHEL6 which can and does cause issues when the RHEL6 > package isn't installed already. New installs and dependencies pull in > the epel versions in a "defaultish" configuration. I don't see what > purpose they really serve being in epel so if some of them can be > removed that would be swell too. Some of these may be there for other arch support. Ie, RHEL only shipps them on x86_64, but we need them for i686 and ppc in order to support EPEL packages on those arches. I'm not sure how to tell that unless we also filter out those packages only shipped on x86_64 from the list. kevin -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 836 bytes Desc: not available URL: From updates at fedoraproject.org Fri Feb 22 19:05:28 2013 From: updates at fedoraproject.org (updates at fedoraproject.org) Date: Fri, 22 Feb 2013 19:05:28 +0000 Subject: Fedora EPEL 5 updates-testing report Message-ID: <20130222190528.10E4220F6F@bastion01.phx2.fedoraproject.org> The following Fedora EPEL 5 Security updates need testing: Age URL 7 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0366/openconnect-4.08-1.el5 2 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0400/bitlbee-3.2-1.el5 0 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0425/nginx-0.8.55-3.el5 0 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0428/drupal7-7.20-1.el5 306 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5630/bugzilla-3.2.10-5.el5 201 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-6608/Django-1.1.4-2.el5 83 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-13612/drupal6-ctools-1.10-1.el5 9 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0237/wordpress-3.5.1-2.el5 The following builds have been pushed to Fedora EPEL 5 updates-testing drupal7-7.20-1.el5 imapsync-1.525-1.el5 latex2rtf-2.3.2-1.el5 nginx-0.8.55-3.el5 packagedb-cli-1.4.0-1.el5 Details about builds: ================================================================================ drupal7-7.20-1.el5 (FEDORA-EPEL-2013-0428) An open-source content-management platform -------------------------------------------------------------------------------- Update Information: New upstream 7.20, resolves SA-CORE-2013-002. Release notes upstream: http://drupal.org/drupal-7.20-release-notes -------------------------------------------------------------------------------- ChangeLog: * Thu Feb 21 2013 Paul W. Frields - 7.20-1 - 7.20, SA-CORE-2013-002 (#913403) * Fri Jan 25 2013 Jon Ciesla - 7.19-2 - README update for cron_key, BZ 902234. -------------------------------------------------------------------------------- References: [ 1 ] Bug #913403 - drupal7-7.20 is available https://bugzilla.redhat.com/show_bug.cgi?id=913403 -------------------------------------------------------------------------------- ================================================================================ imapsync-1.525-1.el5 (FEDORA-EPEL-2013-0408) Tool to migrate email between IMAP servers -------------------------------------------------------------------------------- Update Information: Upgrade to 1.525 -------------------------------------------------------------------------------- ChangeLog: * Wed Feb 20 2013 Nick Bebout - 1.525-1 - Upgrade to 1.525 -------------------------------------------------------------------------------- ================================================================================ latex2rtf-2.3.2-1.el5 (FEDORA-EPEL-2013-0407) LaTeX to RTF converter that handles equations, figures, and cross-references -------------------------------------------------------------------------------- Update Information: Update to newest stable release. -------------------------------------------------------------------------------- ChangeLog: * Fri Feb 15 2013 Susi Lehtola - 2.3.2-1 - Update to 2.3.2. * Thu Feb 14 2013 Fedora Release Engineering - 2.3.1-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #911531 - latex2rtf-2.3.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=911531 -------------------------------------------------------------------------------- ================================================================================ nginx-0.8.55-3.el5 (FEDORA-EPEL-2013-0425) Robust, small and high performance HTTP and reverse proxy server -------------------------------------------------------------------------------- Update Information: Make sure nginx directories are not world readable -------------------------------------------------------------------------------- ChangeLog: * Fri Feb 22 2013 Jamie Nguyen - 0.8.55-3 - make sure nginx directories are not world readable (#913734, #913736) -------------------------------------------------------------------------------- References: [ 1 ] Bug #913734 - CVE-2013-0337 nginx: world-readable log files https://bugzilla.redhat.com/show_bug.cgi?id=913734 -------------------------------------------------------------------------------- ================================================================================ packagedb-cli-1.4.0-1.el5 (FEDORA-EPEL-2013-0424) A CLI for pkgdb -------------------------------------------------------------------------------- Update Information: Update to 1.4.0 -------------------------------------------------------------------------------- ChangeLog: * Thu Feb 21 2013 Pierre-Yves Chibon - 1.4.0-1 - Update to 1.4.0 * Wed Jan 23 2013 Pierre-Yves Chibon - 1.3.0-1 - Update to 1.3.0 -------------------------------------------------------------------------------- From updates at fedoraproject.org Fri Feb 22 19:05:30 2013 From: updates at fedoraproject.org (updates at fedoraproject.org) Date: Fri, 22 Feb 2013 19:05:30 +0000 Subject: Fedora EPEL 6 updates-testing report Message-ID: <20130222190530.1CDB420E4A@bastion01.phx2.fedoraproject.org> The following Fedora EPEL 6 Security updates need testing: Age URL 306 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5620/bugzilla-3.4.14-2.el6 2 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0405/bitlbee-3.2-1.el6 7 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0376/openconnect-4.08-1.el6 0 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0417/Django14-1.4.5-1.el6 0 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0420/awstats-7.0-3.el6 0 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0430/drupal7-7.20-1.el6 0 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0423/nginx-1.0.15-4.el6 0 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0410/seamonkey-2.16-1.el6 83 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-13610/drupal6-ctools-1.10-1.el6 229 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-6348/bcfg2-1.2.3-1.el6 494 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2011-4701/supybot-gribble-0.83.4.1-10.el6 16 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0267/mediawiki119-1.19.3-3.el6 31 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0123/python-tw2-jquery-2.0.3-5.el6 13 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0298/roundcubemail-0.8.5-1.el6 9 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0233/wordpress-3.5.1-2.el6 The following builds have been pushed to Fedora EPEL 6 updates-testing Django14-1.4.5-1.el6 ReviewBoard-1.6.16-1.el6 amavisd-new-2.8.0-4.el6 awstats-7.0-3.el6 drupal7-7.20-1.el6 fedora-review-0.4.0-4.el6 gxine-0.5.905-1.el6 imapsync-1.525-1.el6 latex2rtf-2.3.2-1.el6 netcdf4-python-1.0.2-1.el6 nginx-1.0.15-4.el6 openstack-packstack-2012.2.2-1.0.dev408.el6 packagedb-cli-1.4.0-1.el6 python-django-extensions-1.0.3-2.el6 python-djblets-0.6.28-1.el6 python-elfdata-0.5-2.el6 seamonkey-2.16-1.el6 sks-1.1.4-1.el6 will-crash-0.3-1.el6 wordpress-plugin-bad-behavior-2.2.13-1.el6 Details about builds: ================================================================================ Django14-1.4.5-1.el6 (FEDORA-EPEL-2013-0417) A high-level Python Web framework -------------------------------------------------------------------------------- Update Information: update fix CVE-2013-0305, CVE-2013-0306 -------------------------------------------------------------------------------- ChangeLog: * Thu Feb 21 2013 Matthias Runge - 1.4.5-1 - update fix CVE-2013-0305, CVE-2013-0306 -------------------------------------------------------------------------------- References: [ 1 ] Bug #913037 - Django: Host header poisoning hardening https://bugzilla.redhat.com/show_bug.cgi?id=913037 [ 2 ] Bug #913039 - Django: XML entity attacks https://bugzilla.redhat.com/show_bug.cgi?id=913039 [ 3 ] Bug #913041 - CVE-2013-0305 Django: Data leakage via admin history log https://bugzilla.redhat.com/show_bug.cgi?id=913041 [ 4 ] Bug #913042 - CVE-2013-0306 Django: Formset denial-of-service https://bugzilla.redhat.com/show_bug.cgi?id=913042 -------------------------------------------------------------------------------- ================================================================================ ReviewBoard-1.6.16-1.el6 (FEDORA-EPEL-2013-0411) Web-based code review tool -------------------------------------------------------------------------------- Update Information: After installing this update (as with all ReviewBoard updates) you must run "rb-site upgrade /path/to/reviewboard" - Security Updates: * We now require Django 1.3.7, which fixes a few security vulnerabilities - Web API Changes: * Added API support for querying and manipulating default reviewers * Repositories deleted through the Web API are now only archived if they have any associated review requests - Bug Fixes: * Fixed an HTML escaping issue when listing filenames in the diff viewer * Fixed an occasional crash when viewing a diff when displaying a function or class header on the left-hand side but when there was none on the right-hand side * We try harder now to set the PYTHONPATH for subprocesses, which should fix some issues fetching files over Subversion * Fixed default Apache configuration files to be explicit in enabling FollowSymLinks * Fixed fetching files with FedoraHosted * SMTP servers saved with additional whitespace will now have that whitespace stripped, in order to prevent lookup failures * Fixed the link to the PyLucene documentation in the General Settings page * Fixed the review ID column when using Local Sites * Fixed the starred public review count for new users when using Local Sites -------------------------------------------------------------------------------- ChangeLog: * Thu Feb 21 2013 Stephen Gallagher - 1.6.16-1 - New upstream release 1.6.16 - http://www.reviewboard.org/docs/releasenotes/dev/reviewboard/1.6.16/ - Security Updates: * We now require Django 1.3.7, which fixes a few security vulnerabilities - Web API Changes: * Added API support for querying and manipulating default reviewers * Repositories deleted through the Web API are now only archived if they have any associated review requests - Bug Fixes: * Fixed an HTML escaping issue when listing filenames in the diff viewer * Fixed an occasional crash when viewing a diff when displaying a function or class header on the left-hand side but when there was none on the right-hand side * We try harder now to set the PYTHONPATH for subprocesses, which should fix some issues fetching files over Subversion * Fixed default Apache configuration files to be explicit in enabling FollowSymLinks * Fixed fetching files with FedoraHosted * SMTP servers saved with additional whitespace will now have that whitespace stripped, in order to prevent lookup failures * Fixed the link to the PyLucene documentation in the General Settings page * Fixed the review ID column when using Local Sites * Fixed the starred public review count for new users when using Local Sites -------------------------------------------------------------------------------- ================================================================================ amavisd-new-2.8.0-4.el6 (FEDORA-EPEL-2013-0427) Email filter with virus scanner and spamassassin support -------------------------------------------------------------------------------- Update Information: June 30, 2012 amavisd-new-2.8.0 release notes Contents: COMPATIBILITY BUG FIXES NEW FEATURES SUMMARY NEW FEATURES - 0MQ NEW FEATURES - OTHER OTHER COMPATIBILITY - removed an old compatibility measure: default value of @banned_admin_maps was changed from: @banned_admin_maps = (\$banned_admin, \%virus_admin, \$virus_admin); to a more consistent: @banned_admin_maps = (\$banned_admin); The previous default value of @banned_admin_maps tried to maintain compatibility with versions before the setting was separated from its companion @virus_admin_maps. Now this compatibility is no longer considered necessary and contributes to some confusion, so it was dropped. See 2.4.0 and 2.2.1 release notes for previous changes to this setting. - quarantining to an mbox format file used to include a local time in an mbox separator line, which differs from RFC 4155 and common practices of using an UTC timestamp; a time zone of a timestamp in separator lines is now changed to UTC; BUG FIXES - fixed initial evaluation of dynamic (i.e. per policy bank) values of $enable_dkim_verification, $enable_dkim_signing and $bypass_decode_parts across all declared policy banks; these policy bank entries may be scalars of references to such; - finely adjust a message size for de-stuffed dots according to a size definition in RFC 1870; avoids occasional message size mismatch when using an antispam interface module SpamdClient (implementing client-side of a spamc/spamd protocol); - updated LDAP.ldif to match LDAP.schema; provided by Quanah Gibson-Mount; - updated AMAVIS-MIB.txt and amavisd-snmp-subagent: changed type of SNMP variables *MsgsSize* in the group amavisStats 7 from Counter32 to Counter64 for consistency with other *MsgsSize* variables in groups amavisStats 3 and amavisStats 9; See also the bug fixes section of 2.7.1 and 2.7.2 release notes. All fixes applied to 2.7.1 and 2.7.2 are incorporated in the 2.8.0 code. NEW FEATURES SUMMARY - For monitoring and statistics gathering purposes a new set of utilities and service processes is available based on a message passing paradigm, using a 0MQ (a.k.a. ZMQ, ZeroMQ, or Crossroads I/O) library. This replaces a functionally similar set of utilities based on a shared BerkeleyDB database, with a benefit of avoiding lock contention altogether. This can bring sigificant speedups, most pronounced on a host with many busy amavisd child processes. - Applied numerous fine-grained optimizations based on a NYTProf profiler results. Optimizations include a reduction in a number of generated Perl opcodes and similar micro-optimizations. This accounts for a large amount of small changes in the code. - Our current statistics (Q4 2011) shows that 80 % of messages are below 30.000 bytes, and 90 % of mail messages are below 100.000 bytes in size. As an optimization, messages below 100 KiB in size are now kept and processed in memory, including passing them more optimally to SpamAssassin 3.4.0. Some file activity is still there, but is much reduced. If $TEMPBASE also resides on an SSD disk (or a RAM disk), observed speedup between 2.7.2 and 2.8.0 was 3 to 8 percent on a busy host (with monitoring disabled, so as not to skew a measurement). - Use a module IO::Socket::IP if available, instead of dealing directly with low-level modules IO::Socket::INET and IO::Socket::INET6; - choose more appropriate defaults if running on an IPv6-only host (like connecting to ::1 instead of 127.0.0.1 which may not exist); - amavisd-release now also supports connecting to amavisd over IPv6; - as a debugging aid it is now possible that a late event triggers full logging of earlier events that occurred during processing of a current mail message; - $enable_ldap setting is now dynamic, i.e. can be changed by a policy bank, which makes it possible to selectively disable LDAP lookups per policy bank; - optionally avoid persistent connections to SQL and LDAP servers; - it is now possible to disable calling an external file(1) utility but still have MIME parts decoding enabled; - added support in Amavis::SpamControl::ExtProg for an external spam scanner Bogofilter; - added locking options to @spam_scanners entries, to be used with external scanners which need but do not implement locking of their resources by themselves; - added a global configuration setting $sa_userprefs_file, which is passed on to SpamAssassin as a 'userprefs_filename' parameter at initialization; - added a subroutine iso8601_weekday(), potentially useful with partitioning; - added several new macros available to logging and notification templates; NEW FEATURES - 0MQ - added support for monitoring and auxilliary services, communicating with amavisd and among themselves through 0MQ sockets (also called ZMQ or ZeroMQ, or Crossroads I/O or XS). This method offers similar features as current services amavisd-nanny, amavisd-agent and amavisd-snmp-subagent, but use message passing paradigm instead of communicating through a shared Berkeley database. This avoids locking contention, so the gain can be significant for a busy amavisd setup with lots of child processes. New files in the package are: - amavis-mc is a master supervisor process ( master of ceremonies :), to be started at boot time as root, or as a user vscan/amavis. Currently its only function is to spawn three instances of amavis-services processes with dropped privileges, to monitor and restart them in case they fail, and to terminate them when itself if being terminated. Preferably this process should be started before amavisd and before amavisd-snmp-subagent-zmq, although things would eventually catch up even if this is not the case. This process must run on the same host as amavis-service processes. - amavis-mc_init.sh is an example FreeBSD-style startup/shutdown shell script for starting/stopping the amavis-mc process; - amavis-service implements three services, chosen by a command line argument. It should be running as user vscan/amavis (not as root!). All its instances are typically started/stopped automatically by the amavis-mc process with dropped privileges. A note for manual testing (started from a command line, not by an amavis-mc process): make sure to run amavis-service under the same UID as the amavisd is running. If 0MQ cannot write to a socket due to privilege violation, messages are silently dropped. Service processes as implemented by amavis-service must run on the same host as amavisd for two reasons: they communicate with amavisd child processes through a Unix socket, and at least some of these services need visibility of amavisd processes through signals (kill). At least the forwarding service must be running when amavisd is operational with $enable_zmq at true, otherwise amavisd processing might eventually stall when their message queue fills up. Preferably amavis-service processes should be started before amavisd is started, although things would eventually catch up even if started late or restarted during operation. - amavisd-status is a user utility program, similar to amavisd-nanny, which connects to amavis-service 0MQ socket and displays a status of running amavisd child processes. This program communicates with amavis-service processes through an inet socket and can in principle run on a different host (in which case sockets must not be bound to a loopback interface). The program can be started and stopped at any time, can run under any UID as long as it has access to a 0MQ socket $outer_sock_specs, and may run in multiple instances if necessary. - amavisd-snmp-subagent-zmq is a SNMP AgentX program, functionally equivalent to amavisd-snmp-subagent. It collects information from amavis-service processes and passes it as a MIB to an SNMP daemon. This process communicates with amavis-service processes through an inet socket and can in principle run on a different host (in which case sockets must not be bound to a loopback interface). If access to the amavisMta MIB (1.3.6.1.4.1.15312.2.1.3) is desired, the amavisd-snmp-subagent-zmq must run on the same host as Postfix in order to have access to its queue directories. In principle there could be more than one instance of amavisd-snmp-subagent-zmq running at the same time, although this hardly serves any practical purpose. The old amavisd-agent utility does not currently have a 0MQ equivalent; use snmpbulkwalk with net-snmp and amavisd-snmp-subagent-zmq for similar functionality. Please see comments in amavis-service for details and configuration of sockets. To enable amavisd child processes to start sending their status and statistics information to amavis-service services, please set a configuration variable $enable_zmq to true in amavisd.conf: $enable_zmq = 1; Optionally a 0MQ socket can be changed, it defaults to: @zmq_sockets = ( "ipc://$MYHOME/amavisd-zmq.sock" ); The @zmq_sockets is a list of 0MQ sockets, so in principle amavisd processes can report their state to multiple instances of amavis-service. Both the 0MQ-based ($enable_zmq=1) and the BerkeleyDB-based ($enable_db=1) monitoring implementations can coexist: use one or the other, or both at the same time, or turn off both if monitoring is not needed. Required Perl modules are either: ZeroMQ, which interfaces with a version 2 of a libzmq library (in case of FreeBSD that would be ports net/p5-ZeroMQ and devel/zmq), or with a Crossroads I/O library libxs, which itself is similar to a version 3 of libzmq, but provides a zmq 2.1 compatibility interface; or ZMQ::LibZMQ2 and ZMQ::Constants modules with a version 2 of a libzmq library or with a Crossroads I/O library; or ZMQ::LibZMQ3 and ZMQ::Constants with a version 3 of a libzmq library (FreeBSD ports: devel/zmq-devel). Although Crossroads I/O library is natively equivalent to a libzmq version 3 library, the ZMQ::LibZMQ3 perl module does not currently support interfacing with Crossroads I/O (libxs). Tested combinations of a Perl interface module with a message passing library: * with 0MQ ( http://www.zeromq.org/ ): ZeroMQ 0.21 + zeromq 2.2.0 ZMQ::LibZMQ2 1.01 + zeromq 2.2.0 ZMQ::LibZMQ3 1.00 + zeromq 3.1.0 * with Crossroads I/O ( http://www.crossroads.io/ ): ZeroMQ 0.21 + libxs 1.2.0 (zmq v2.1 compatible) ZMQ::LibZMQ2 1.01 + libxs 1.2.0 (zmq v2.1 compatible) ZMQ::LibZMQ3 1.00 + libxs 1.2.0 (native) (no, XS not supported by LibZMQ3) PERFORMANCE with 0MQ When scanning messages for spam is enabled (using SpamAssassin), a spam scan takes most of the processing time and resources, so replacing a BerkeleyDB-based monitoring with a 0MQ-based monitoring brings some speedup on a busy server, but the change is not dramatic. But as an extreme counter-example: when DKIM signing passed messages, with most other checks disabled, a speedup can be by a factor of 10. (Synthetic benchmark: 7 KiB messages, 8 child processes, log level 2, CPU Intel Core i7-960 (4 cores, 8 threads), $TEMPBASE on an SSD disk, result: 19 mail messages per second with BerkeleyDB, over 200 mail messages per second with 0MQ, and still 130 msg/s with all checks *but* spam scanning enabled). SECURITY CONSIDERATIONS with 0MQ 0MQ libraries (zeromq or libxs) do not provide any application-level security beyond what is available with standard Unix or INET or INET6 sockets. This means that Unix-style inter-process sockets are protected by the usual file system's ownership and protection bits, and access to INET/INET6 sockets is only protected by interface binding and system firewall mechanisms. Communication between amavisd child processes and the forwarding service (amavis-services msg-forwarder) goes by default over a Unix-style socket, owned by UID vscan/amavis. Communication between utilities and service processes goes by default over an INET socket bound to a loopback interface, and as such is accessible to any process running on the same host, but is not accessible from other hosts. If access to these sockets from other hosts is desired, their binding should be changed to all or to ethernet interfaces, making them accessible to any host in the network, so host-firewall rules should be implemented if access needs to be restricted. Having said that, currently information passing through 0MQ sockets is limited to statistics and health status only, and does not affect operation of amavisd child processes, nor is any sensitive information passed around, so access to these sockets from unauthorized sources is not expected to pose a high security risk. 0MQ and IPv6 IPv6 is supported by zeromq library starting with version 3, and by libxs (any version). Because the application needs to pass information to a library about a type of sockets needed and there is no universal and backward compatible (with v2) way to do so, currently amavisd does not offer any configuration option to choose INET6 over INET on 0MQ sockets. This restriction is expected to be lifted in the next version. Currently on an IPv6-only host one can choose to use Unix-style sockets, or patch amavis programs to turn off a ZMQ_IPV4ONLY socket option (these are commented-out in present code). NEW FEATURES - OTHER - if a module IO::Socket::IP is available, amavisd will use this module to create its client-side inet or inet6 sockets, instead of using the low-level modules IO::Socket::INET and IO::Socket::INET6. This delegates some of the dirty details handling to IO::Socket::IP, such as using the getaddrinfo(3) system service to resolve host names, and dealing with dual-stack multihomed host names. If IO::Socket::IP is not available, the IO::Socket::INET or IO::Socket::INET6 are used directly instead, to preserve compatibility. Please use a fairly recent version of IO::Socket::IP, testing was done with versions 0.08 and 0.16. - added a subroutine read_cidr() which can read a Postfix style CIDR file, with a syntax interpreted according a Postfix cidr_table(5) man page. The subroutine returns a ref to an array by default (but can also produce a hash, and is able to add data to an existing array or hash). Typical use: @mynetworks_maps = ( read_cidr('/etc/postfix/mynetworks.cidr') ); @client_ipaddr_policy = map(($_,'MYNETS'), @mynetworks_maps); or: @mynetworks = @{ read_cidr('/etc/postfix/mynetworks.cidr') }; For details and more complex usage see leading comments in the read_cidr subroutine; - as a debugging aid it is now possible that a late event triggers full logging of earlier events that occurred during processing of a current mail message. This is implemented by writing all log events to a temporary file regardless of their log level and of the current $log_level setting. A later event can cause the captured temporary log to be copied to a regular log. Each child process keeps its own temporary log file open all the time, the file is rewound and truncated after each mail message processing and reused for the next capture, so its size rarely exceeds about 50 kB. Maintaining a temporary capture log is enabled by setting a configuration variable $enable_log_capture to true: $enable_log_capture = 1; Enabling a log capture costs a little bit of resources as amavisd needs to assemble and format all log messages regardless of their log level, not benefiting from early pruning of log entries not reaching the $log_level. Nevertheless the small overhead is quite acceptable when troubleshooting some rarely occurring problem and keeping $log_level permanently at the max is not acceptable due to sheer volume of debug logging. The captured log is read from a temporary file and copied to a regular log as log level 1 entries (i.e. at LOG_INFO syslog priority) if a dynamic variable $enable_log_capture_dump is true by the end of mail message processing. A chunk of captured log entries is preceded/ended by a log line: CAPTURED DEBUG LOG DUMP BEGINS CAPTURED DEBUG LOG DUMP ENDS and each such log entry has a prepended timestamp (hours, minutes, seconds with milliseconds) of a capture time. The $enable_log_capture_dump variable can be turned on directly by some debugging patch code, but is more conveniently loaded by activating a policy bank, e.g.: $policy_bank{'SLOW'} = { enable_log_capture_dump => 1, }; $policy_bank{'GOTCHA'} = { enable_log_capture_dump => 1, }; which can be loaded for example by a custom hook, e.g.: sub after_send { my($self,$conn,$msginfo) = @_; if (Time::HiRes::time - $msginfo->rx_time > 5.5) { Amavis::load_policy_bank('SLOW', $msginfo); } # or perhaps: if ($msginfo->sender =~ /some-regexp/) { Amavis::load_policy_bank('GOTCHA', $msginfo); } } Btw, the only purpose of having two different policy banks in the example is to be able to see at a glance in the log which one was activated. - the @decoders list is made a bit more flexible: the first entry in each tuple (a short type name) may be a scalar string as before, or may be a reference to a list of such names, in which case the tuple applies to all listed short types. Example: [['zip','kmz'], \&Amavis::Unpackers::do_unzip], which previously needed two entries: ['zip', \&Amavis::Unpackers::do_unzip], ['kmz', \&Amavis::Unpackers::do_unzip], - support an external decompressor lrzip for a .lrz format. Thanks to Jernej Porenta for a suggestion; - $enable_ldap setting is now dynamic, i.e. can be changed by a policy bank, which makes it possible to selectively disable LDAP lookups per policy bank. The LDAP code is loaded and a connection to an LDAP server is established if at least one policy bank has enable_ldap set to true (e.g. enable_ldap => 1 ) or a global $enable_ldap is true, but queries are disabled if currently active enable_ldap is false. Suggested by Tomislav Mihali?ek; Example: $enable_ldap = 1; $policy_bank{'GUESTS'} = { enable_ldap => 0, }; or the other way around: $enable_ldap = 0; $policy_bank{'INBOUND'} = { enable_ldap => 1, }; - optionally avoid persistent connections to SQL and LDAP servers - at the expense of about 3 to 7 ms elapsed time for a reconnect. Persistent connections from mostly idling child processes consume database server resources (e.g. a TCP socket) unnecessarily, and may become stuck when some intermediate stateful device like a firewall or a NAT decides to drop stale sessions. The behaviour is controlled by a setting $database_sessions_persistent: when true sessions remain open even after a SMTP session (from an MTA) has closed; when false sessions are closed after each SMTP session closedown. The default value is true for compatibility with earlier versions. Problem reported by Jernej Porenta; - it is now possible to disable calling an external file(1) utility but still have MIME parts decoding enabled: $file = undef; This may save some contents classification time, at the expense of losing results of a file(1) utility (i.e. short file type information) for banning checks. Disabling file(1) checks can be useful when most other checks are disabled too, e.g. in an amavisd instance whose only task is DKIM-signing, like after a mailing list manager fanout; - added Amavis::SpamControl::ExtProg support for an external spam scanner Bogofilter. An entry in @spam_scanners list for invoking the bogofilter program can be something like: @spam_scanners = ( ['Bogofilter', 'Amavis::SpamControl::ExtProg', 'bogofilter', [ qw(-e -v)], # -u mail_body_size_limit => 65000, score_factor => 1.0, ], # ['SpamAssassin', 'Amavis::SpamControl::SpamAssassin' ], ); The bogofilter interface code assigns a hard-coded score +5 to bogofilter's result status 'Spam', -5 to 'Ham' and 0 to 'Unsure'. This score is multiplied by score_factor (default 1 if not given) to produce the final spam score which is summed up with scores as contributed by other spam scanners in the @spam_scanners list. The 'X-Bogosity' header field will be inserted into forwarded message, unless prevented by a corresponding %allowed_added_header_fields entry. Based on a patch contributed by Stephen Davies. - added Amavis::SpamControl::ExtProg support for auto-learning on external spam scanners; experimental: works, but may change in future versions; *** to be documented ***; Suggested by Jernej Porenta; - added locking options to @spam_scanners entries, to be used with external scanners which do not implement database locking by themselves. Options are: 'lock_file', 'lock_type', 'classifier_lock_type' and 'learner_lock_type'. The 'lock_file' specifies a file name on which a flock(2) is acquired. A lock type can be 'shared', 'exclusive', or 'none'. The 'shared' acquires a LOCK_SH (shared read) lock, the 'exclusive' acquires a LOCK_EX (exclusive write) lock on a given file. A default lock type is 'exclusive' if the lock_type option is missing. If either a lock_file is absent or empty, or a lock type is 'none', then no locking is performed. Option 'classifier_lock_type' can override a generic 'lock_type' option when a scanner is requested to classify a message. Similarly, a 'learner_lock_type' option can override a generic 'lock_type' when a scanner is invoked for auto-learning. Example: ['CRM114', 'Amavis::SpamControl::ExtProg', 'crm', [ qw(-u /var/amavis/home/.crm114 mailreaver.crm --dontstore --report_only --stats_only --good_threshold=8 --spam_threshold=-8) ], learn_ham => [ qw(-u /var/amavis/home/.crm114 mailreaver.crm --good) ], learn_spam => [ qw(-u /var/amavis/home/.crm114 mailreaver.crm --spam) ], mail_body_size_limit => 65000, score_factor => -0.20, lock_file => '/var/amavis/crm114.lock', lock_type => 'shared', learner_lock_type => 'exclusive', ], - added a global configuration setting $sa_userprefs_file (undef by default), which is passed on to SpamAssassin as a 'userprefs_filename' parameter during its initialization. If 'userprefs_filename' parameter is nonempty, SpamAssassin tries to load a file with that name as user preferences configuration file (overriding systemwide settings), otherwise it tries to load a file '~/.spamassassin/user_prefs' if it exists. Suggested by Quanah Gibson-Mount; - added a subroutine iso8601_weekday() which takes a Unix time as an argument (seconds since 1970-01-01T00:00Z), and returns a weekday number based on local time: a number from 1 through 7, beginning with Monday and ending with Sunday, as specified in ISO 8601 (EN 28601). May be useful as a partition_tag for short-term cycling of a logging database storage (e.g. used by a pen-pals feature): $partition_tag = sub { my($msginfo)=@_; iso8601_weekday($msginfo->rx_time) }; - added a macro 'weekday', which expands to a weekday number of the current message reception time, as provided by a call to iso8601_weekday($msginfo->rx_time); - added a macro 'secret_id', which expands to a secret counterpart to mail_id, such that: b64_encode(md5(b64_decode(secret_id))) == mail_id. It is encoded in base64url (RFC 4648), e.g. laL-rCJ6MBTm (with a counterpart mail_id: XlZbJeFhn4OE). Typically used to authorize releasing from a quarantine. Suggested by Antoine Nguyen; - added a macro 'mail_id' as a synonym to a macro 'i', which is a long-term unique mail_id on this system, possibly used in log and in quarantine names, encoded in base64url (RFC 4648), e.g. XlZbJeFhn4OE (with a counterpart secret_id: laL-rCJ6MBTm); - added a macro 'log_id' as a synonym to a macro 'n', which is an internal log id (also called task id, am_id) as shown in the log and by amavisd-nanny, e.g. 58725-05-2; - added a macro 'hexenc', which encodes its string arguments as hex digits, high nybble first; - added macros 'b64enc' and 'b64urlenc', which encode their arguments as base64 strings, removing the final null padding '=' characters. The 'b64enc' encodes into a character set [A-Za-z0-9+/], while the 'b64urlenc' encodes into a character set [A-Za-z0-9-_] according to RFC 4648; - added a macro 'body_digest', which expands to a digest (a hash) of a body of a mail message as computed by the algorithm chosen by a setting $mail_digest_algorithm (defaults to 'MD5', can be 'SHA-1' or 'SHA-256'). These are raw (non-encoded) bytes, not suitable for direct display. It is common to encode it with one of the macros: 'hexenc', 'b64enc', or 'b64urlenc', and possibly truncate it by a macro 'substr', e.g.: [:substr|[:b64urlenc|[:body_digest]]|0|9] The result of: [:hexenc|[:body_digest]] is the same as the result of a legacy macro call %b. - added a configuration setting $mail_digest_algorithm which chooses an algorithm name for generating a mail header digest and a mail body digest. If set to 'MD5' (case-insensitive) a module Digest::MD5 will be used, producing a MD5 digest (128 bits, 32 hex digits, 22 base64 characters). This is the fastest algorithm and is a default. Any other value is passed on to a module Digest::SHA as an argument to its method new(). The module Digest::SHA can produce digests of a SHA family: 160..512 bits, and accepts an algorithm name like 'SHA-1' or 'SHA-256' (see its documentation for details). The SHA-1 digest size is 160 bits / 40 hex / 27 base64 chars, while the SHA-256 size is 256 bits / 64 hex / 43 base64 characters. The generated digest may end up as part of a quarantine file name (%b in templates), or via macro 'b' or 'body_digest' in notification templates or a main log entry. OTHER - quarantining to a mbox format file was using mboxo rule for protecting a "From " line in a mail body, which made an original ">From " line indistinguishable from a protected From; now a mboxrd format rule is used, see http://en.wikipedia.org/wiki/Mbox - make MIME::Parser use $TEMPBASE as a temporary directory for scratch files instead of its default (which was /tmp, or failing over to a current directory, disregarding a TMPDIR environment variable). This can bring performance improvements if $TEMPBASE resides on an SSD or RAM disk and /tmp resides on a HDD; - distinguish an absence of an SMTP response from a negative SMTP response in an SMTP/LMTP client code for improved logging/debugging purposes; report delay time in case of a failure; - a default value for $inet_socket_bind now reflects the availability of socket protocol families INET (IPv4) and INET6 (IPv6): - if version of Net::Server is below 2.0: '127.0.0.1' - if both inet & inet6 are available: [ '127.0.0.1', '[::1]' ] - if only inet is available: '127.0.0.1' - if only inet6 available (IPv6-only host): '[::1]' Previously a default was always a '127.0.0.1'. - $forward_method, $notify_method and $requeue_method now default to an IPv6 address of a loopback interface ::1 instead of 127.0.0.1 when INET6 support is available and INET is unavailable (IPv6-only host); - remove an existing Authentication-Results header field only if we are capable of generating our own: keep it if $enable_dkim_verification is false or if $allowed_added_header_fields{'authentication-results'} is false; - add a field "Source-Port:" to "Abuse report format" (ARF) messages as per draft-kucherawy-marf-source-ports; - Avira SAVAPI av scanner: only log a warning instead of aborting when a QUIT command at the end of a session fails; - load all (both) applicable policy banks when %interface_policy contain both a "SOCK" entry and a Unix socket path name; and similarly when it contains both the "IPaddress:port" and a "port" entries. Previously the "SOCK" policy bank was not loaded when a socket path name entry existed in %interface_policy, and similarly a port-only -based policy bank was not loaded when a more specific "IPaddress:port" entry existed; - make use of a new SpamAssassin 3.4.0 option "skip_prng_reseeding" (description in the SpamAssassin Bug 6690); - no longer pre-load a module Mail::SpamAssassin::Plugin::SpamCop to avoid unnecessarily dragging-in modules Net::SMTP and Net::Cmd; - a spamd client code in Amavis::SpamControl::SpamdClient now obeys an option 'mail_body_size_limit' in a @spam_scanners entry and truncates a message passed to spamd (like other spam scanner interfaces do), instead of skipping a call to spamd. This interface module is mainly intended for testing spamd, or used with third-party software which uses the same spamc/spamd protocol. - modules Convert::TNEF is now made optional, instead of being required; do not load it if @decoders list is empty; - avoid a warning issued when encountering an empty ehlo-keyword in a response to an EHLO command (like on testing with a smtp-sink utility); - some fine-grained reduction in a number of generated opcodes and similar tiny optimizations; this accounts for numerous small changes in the code; - avoid some warnings issued by Test::Perl::Critic; - just in case: make sure that our SMTP responses at the incoming session are truly flushed to the socket and not stuck in a perlio I/O buffer; - updated 2.7.0 release notes, documenting that a policy bank may also be loaded based on a path name of a Unix socket receiving a connection; - updated and clarified schema and instructions in README.sql-pg based on suggested changes by Tim Howe; - fixed spelling mistakes in comments; - internal incompatible change: changed arguments and a result of a subroutine write_header; also, now it rewinds a message file by itself; --------------------------------------------------------------------------- June 30, 2012 amavisd-new-2.7.2 release notes BUG FIXES - a generated Received header field was missing the 'IPv6:' prefix in the TCP-info component of a 'by' subfield (as required by RFC 5321, section 4.1.3) when amavisd received a message over an IPv6 protocol; (btw, the TCP-info component of a 'from' subfield was correct); - changed data type of an SNMP variable LogRetries from C32 to C64 for consistency with the MIB; - updated AV entry 'AVG Anti-Virus' to consider status 403 continuation lines when searching for a virus name; suggested by Ralf Hildebrandt; OTHER - reduce a log level to 5 on a log message: Amavis::IO::RW: Error flushing on close: ... to avoid an innocent but sinister-looking warning when a pipe to a virus scanner is broken and needs to be re-established; reported by Stefan Jakobs; - updated an AV entry for 'F-Secure Linux Security' to version 9.14; options updated by Mika Ilmaranta, a patch by Tuomo Soini; - fix a Unix socket compatibility issue with Net::Server versions 2.000, 2.001 and 2.002, where a method NS_unix_path no longer exists. This method was re-introduced for compatibility reasons in 2.003. Reported by Paul MacKenzie; --------------------------------------------------------------------------- April 29, 2012 amavisd-new-2.7.1 release notes BUG FIXES - prevent rmdir() from failing with 'Invalid argument' on Solaris 10 when deleting a temporary directory: current working directory must not be within a directory which is about to be deleted; reported and diagnosed by Maciej Uhlig; - forwarding or quarantining through a 'pipe:' method failed with "Insecure dependency in exec while running with -T switch" when a sendmail command-line option -N was needed; reported by Andreas Schulze; - when multiple sockets are specified (e.g. in $forward_method) as a redundancy/failover mechanism, and SMTP session caching is enabled, a failed forwarding session does not clear a cached session, so all further attempts are stuck with the failed server, instead of picking a different server from the list; discovered by Michael Storz; - on establishing a SMTP session when multiple sockets are specified (e.g. in $forward_method) as a redundancy/failover mechanism, the random choice never picked the last socket in a list; discovered by Michael Storz; - fix defanging by mimedefang, it was failing with perl 5.10 or later due to an unhandled "Insecure dependency in sprintf" while logging the result if the $log_level was 2 or higher, or when debugging was enabled; thanks to Steve Scotter for a problem report; - fix defanging by Anomy::Sanitizer, it was failing with an error message: "mangling by anomy failed: replacement size 0, mail will pass unmodified"; - fix the 'xz' entry in a default @decoders list (in files amavisd.conf, amavisd.conf-default and amavisd); the first two variants ('xzdec' and 'xz') were glued together, so the xz decoder was only available if found under names 'unxz' or 'xzcat'; - provide a workaround for a bug [rt.cpan.org #64642] in a perl module Encode, which gratuitously untaints a string when encoding or decoding it: https://rt.cpan.org/Public/Bug/Display.html?id=64642 (still unfixed in Encode 2.44, perl 5.14.2); A module Scalar::Util is now required, which should not be a compatibility problem, as this module is a Perl core module since perl 5.8.0. - avoid the use of Encode::is_utf8 due to a bug in a perl module Encode as bundled with versions of Perl 5.8.0 to 5.8.8 (fixed in March 2007): Perl bug tracking: #32687: Encode::is_utf8 on tainted UTF8 string returns false https://rt.perl.org/rt3/Public/Bug/Display.html?id=32687 also referenced by #37170: https://rt.perl.org/rt3/Public/Bug/Display.html?id=37170 This is a re-manifestation of the same problem we had back in 2004, with a workaround provided by amavisd-new-2.2.1. Forgot that people are still using Perl 5.8 :) Reported by Peter Dieth; - fix a warning: _WARN: Invalid conversion in sprintf: "%a" - write informational messages during a stop/start/restart to stdout, instead of to stderr, avoiding unnecessary cron job messages; thanks to Cristian Seres, Sandro Janke and John Griffiths; also: https://bugzilla.redhat.com/show_bug.cgi?id=561389 - fix a syntactically incorrect 'Avira SAVAPI' av entry (missing closing bracket) in a sample configuration file amavisd.conf; - minor: get_body_digest incorrectly logged 8-bit body as 8-bit header; - no longer insist on a minimal version 2.22 of a module Digest::MD5, the 'clone' method is no longer needed since amavisd-new-2.7.0; - do not call $parser->max_parts($MAXFILES) with some old versions of MIME::Parser which did not yet provide this method; - pre-load a module File::Glob even with perl 5.8.0, otherwise autowhitelisting in SpamAssasssin may fail with "Insecure dependency"; - documentation: (files README.sql-mysql and README.sql-pg): fixed a field name "policy.unchecked_lover", previously incorrectly specified as "policy.unchecked_lovers_maps"; reported by TimH; - documentation: fixed the two SELECT examples in files README.sql-pg and README.sql-mysql, the field 'select' needs to be qualified with a table name: 'msgrcpt.content' to avoid ambiguity; reported by Gary V; - documentation bug in amavisd.conf-default: 'ESMTP' is not a valid setting for $protocol, just use 'SMTP' instead; reported by Pascal Volk; COMPATIBILITY - commented out the LHA entry in the default @decoders list and in do_executable(). The program seems to be unmaintained, was seen crashing and as such it may pose a security risk; pointed out by Thomas Jarosch; - due to popular demand, bring the 'spam-tag:' log line back to log level 2 (version 2.7.0 dropped it to log level 3) to retain compatibility with some log analyzers. Caveat: 'spam-tag' string is now entirely in lowercase. Suggested by Stefan Jakobs; OTHER - if a message is quarantined to more than one location using different quarantine methods, the SQL field msgs.quar_type indicates only the type of the last one. When archival quarantining is enabled this choice is unfortunate, as the primary quarantine type is more interesting than the permanent archival quarantine type. This is now reversed, the msgs.quar_type field now reflects the first quarantine type. Suggested by Patrick Ben Koetter. - SMTP session caching now no longer re-uses old sessions which are in use for more than a minute since their establishment; suggested by Michael Storz; - having the archive quarantine enabled should not be a sufficient reason to store information to SQL when $sql_store_info_for_all_msgs is off; Suggested by Patrick Ben Koetter. - ClamAV-clamd and ClamAV-clamd-stream av scanners: changed socket name in a sample configuration file amavisd.conf to /var/run/clamav/clamd.sock (previously the socket name was /var/run/clamav/clamd); this makes it compatible with a default socket name under several Linux distributions and under FreeBSD; suggested by Oliver Schinagl; - documentation updates; --------------------------------------------------------------------------- July 1, 2011 amavisd-new-2.7.0 release notes Contents: NEW FEATURES SUMMARY GENERAL COMPATIBILITY WITH 2.6.4 / 2.6.5 / 2.6.6 BUG FIXES SINCE 2.6.6 BUG FIXES SINCE 2.6.5 BUG FIXES SINCE 2.6.4 NEW FEATURES OPTIMIZATIONS OTHER CLEANING NEW FEATURES SUMMARY - significant improvements affecting a pre-queue content filtering setup (time limiting, warm/flying restart, ...) - requires Postfix 2.7.0 and SpamAssassin 3.3.0, or later; - new daemon amavisd-signer makes it possible to sign mail with DKIM signatures without requiring amavisd process to have access to private signing keys; - added support for the Sophos-SSSP, Avira SAVAPI and ClamAV clamd streaming protocols allows amavisd to communicate with these antivirus solutions; - allow specifying multiple (fail-over) back-end mailers for resubmission of messages from amavisd back to MTA; - support for Postfix 2.8.0 XFORWARD IDENT, passes a local message identifier (queue id) downstream to a post-queue content filter and back to Postfix; - speedup in data transfer rate on receiving large mail via SMTP/LMTP sessions by a factor of 3.9 for plain text sessions, and by a factor of 11 for encrypted (TLS) sessions; - recognize and insert header fields as prepared by SpamAssassin 3.3.0 or later through its 'add_header' configuration option; - a new setting allows a forward_method to be chosen based on a message content type and/or recipient address; this may be useful for outgoing mail routing purposes or to implement sender reputation schemes; - per-recipient (or per- policy bank) SpamAssassin configuration files or SQL configuration sets are supported (@sa_userconf_maps), and per-recipient SQL Bayes database usernames (@sa_username_maps); - new macros: client_helo, client_addr, client_port, client_addr_port, mime2utf8, rusage, ADDEDHEADERHAM, ADDEDHEADERSPAM, banned_parts_as_attr, actions_performed, new arguments to macros dkim, header_field, HEADER, YESNO and YESNOCAPS; - @listen_sockets setting offers a unified configuration of listening sockets; it may be configured directly, or the traditional way: the $inet_socket_port, $unix_socketname and $inet_socket_bind just add their entries to the @listen_sockets list; - lists of lookup tables (the @*_maps variables) can now contain explicit SQL and LDAP lookup objects as their elements, instead of (or in addition to) the implied SQL and LDAP lookups; - a new configuration variable @virus_name_to_policy_bank_maps allows loading of policy banks based on a virus name; - a new configuration variable $mail_id_size_bits allows setting the size of randomly generated mail_id and secret_id codes; - a new configuration variable $sql_store_info_for_all_msgs allows storing information on mail messages selectively just for quarantined messages; - added SNMP counters InMsgsStatus* which combine the final mail checking status with a direction of a mail flow; - optional transparent archival quarantine, retaining envelope recipient addresses on delivery to a dedicated SMTP server; GENERAL With a synergy of four solutions, using amavisd-new in a pre-queue filtering setup became a sensible / better behaved solution: - the "smtpd_proxy_options=speed_adjust" Postfix option, available since Postfix 2.7.0 (20091101), improves decoupling between SMTP clients and a content filter in a proxy setup, reducing the number of content filtering processes needed for the same mail load. With this option turned on, a Postfix SMTP server receives entire message before connecting to a before-queue content filter; - a master_deadline option and its API equivalent, available in SpamAssassin since version 3.3.0, allows for time limiting on lengthy rules checking, while still providing results when a time limit is exceeded; this makes it more suitable for time-sensitive setups like a pre-queue filtering setup; - reworked sub-task time limiting in amavisd, along with its counterpart solution in SpamAssassin, makes it better suited to a real-time nature of pre-queue filtering setups where one has no control over how long SMTP clients are willing to wait at the data-end stage; - a re-purposed command line option 'reload' now does a warm restart, keeping sockets available to an MTA client at all times, thus reducing a chance that an MTA would even notice a content filter's warm restart. Provided that required minimal versions of Postfix and SpamAssassin are available, on can try amavisd in a Postfix proxy setup. The $child_timeout setting needs to be radically reduced in this setup, matching the longest time most SMTP clients are willing to wait, and must be less than Postfix is willing to wait (smtpd_proxy_timeout), which by default is 100 s. A sensible value is somewhat less then a minute (e.g. 45 seconds). Even though RFC 5321 (section 4.5.3.2.6) recommends that clients SHOULD be willing to wait for 10 minutes at data-end stage, it is not uncommon that this recommendation is not adhered to. Note that a pre-queue filtering setup (along with its benefits) still has all its drawbacks, like the need for more filtering processes to accommodate mail arrival rate peaks (instead of averages), and much shorter and unpredictable (client-dependent) time limits. The new features of the three products only rise the thresholds where trouble starts, and make the whole setup better behaved. COMPATIBILITY WITH 2.6.4 / 2.6.5 / 2.6.6 - due to popular demand to reduce undesired and unintentional backscatter, defaults for the settings $final_spam_destiny and $final_banned_destiny were changed. Previously they both defaulted to D_BOUNCE, new defaults are: $final_virus_destiny = D_DISCARD; $final_banned_destiny = D_DISCARD; $final_spam_destiny = D_PASS; $final_bad_header_destiny = D_PASS; Please adjust to will. If you have these settings configured explicitly in a configuration file, this change of a default value does not affect you. For a pre-queue content filtering setup (smtp proxy or milter) a suitable value for undesired content is D_REJECT. For a post-queue filtering setup preferred choices are to tag-and-deliver (D_PASS), or to drop (D_DISCARD) and quarantine. It is still possible to use a D_BOUNCE setting, but please limit and monitor your backscatter. Due to a default setting of @viruses_that_fake_sender_maps the backscatter on viruses has been fully suppressed since amavisd-new-20021116 even with a D_BOUNCE. Backscatter on high-scoring spam has been controllable since amavisd-new-20030616-p8 by a family of settings @spam(_crediblefrom)_dsn_cutoff_level(_bysender)_maps, - several ancient configuration settings were removed or deactivated, see section CLEANING below; - a command line option 'reload' has been renamed to 'restart', corresponding to a shutdown followed by a normal (cold) start; while a command line option 'reload' has been re-purposed to function as a warm/flying restart. See below for details. Protection of some files may need to be examined (configurations files and DKIM private keys should be readable for group vscan/amavis and not writable by UID vscan/amavis); - a failure of all virus scanners no longer automatically tempfails the operation, but flags a message with a CC_UNCHECKED contents category (just like a failure of decoders/dearchivers), and allows the usual controls (*_destiny, *_quarantine_*) to be used to choose behaviour. The $virus_scanners_failure_is_fatal=1 reverts to previous behaviour, see below; - a default value of $hdr_encoding and $bdy_encoding has been changed from 'iso-8859-1' to 'UTF-8' which better suits reporting of banned parts; - default encoding for reading text templates from the tail of a file 'amavisd' has been changed to 'utf8', which allows replacing a default text by a non-ascii Unicode template, encoded as UTF-8; - when using SQL for logging/penpals: three fields need to be added to a table msgrcpt: msgrcpt.content, msgrcpt.rseqnum, msgrcpt.is_local, and one to a table msgs: msgs.originating . Semantics of msgrcpt.content is similar to msgs.content, but reflects individual recipient's settings (e.g. when a message is both banned and spam, a recipient with banning tests disabled will see a message as spam, while other recipient of the same message will consider it banned). The added field may also simplify queries by third party applications. The field msgrcpt.rseqnum uniquely identifies/enumerates recipients within each message, typically by assigning them sequential numbers starting with 1. The only purpose of this field is to make it possible to define a primary key for the table msgrcpt, which may be needed for some clustering/partitioning purposes. Amavisd itself does not require a primary key on this table. The field msgrcpt.is_local should be considered a boolean, its value can be: 'Y' ... yes, recipient is local, i.e. matches @local_domains_maps 'N' ... no, recipient does not match @local_domains_maps ' ' ... unknown - this is a default field value; amavisd always sets this field to either 'Y' or 'N'; The field msgs.originating should be considered a boolean, its value can be: 'Y' ... yes, message is originating from inside or from an authenticated roaming sender (the flag $originating was true); 'N' ... no, message is not submitted by our user ($originating was false); ' ' ... unknown - this is a default field value; amavisd always sets this field to either 'Y' or 'N', reflecting the $originating flag; A combination of msgs.originating and msgrcpt.is_local tells a direction a message is traveling: originating is_local N N open relay (probably misconfigured @local_domains_maps or $originating flag not set) N Y inbound message Y N outbound message Y Y internal message (inside or authenticated -> inside) Note that a direction is a per-recipient property, a multi-recipient message can be outbound for some recipients and internal for others at the same time. The following SQL directives can be used to add these new fields: ALTER TABLE msgrcpt ADD rseqnum integer DEFAULT 0 NOT NULL; ALTER TABLE msgrcpt ADD content char(1) DEFAULT ' ' NOT NULL; ALTER TABLE msgrcpt ADD is_local char(1) DEFAULT ' ' NOT NULL; ALTER TABLE msgs ADD originating char(1) DEFAULT ' ' NOT NULL; If a primary key on table msgrcpt is needed for some reason, try something like the following: *MySQL: UPDATE msgrcpt SET rseqnum=1+floor(999999999*rand()) WHERE rseqnum=0; ALTER TABLE msgrcpt ADD PRIMARY KEY (partition_tag,mail_id,rseqnum); *PostgreSQL: UPDATE msgrcpt SET rseqnum=1+floor(999999999*random()) WHERE rseqnum=0; CREATE UNIQUE INDEX msgrcpt_idx_primary ON msgrcpt (partition_tag,mail_id,rseqnum); If keeping a possibly customized copy of %sql_clause in a configuration file, entries 'ins_rcp' and 'upd_msg' will need to be updated accordingly. To facilitate transition from 2.6.6 to 2.7.0, it is possible to configure amavisd 2.7.0 to supply with SELECT and INSERT clauses a subset of parameters as used by 2.6.6. A configuration setting $sql_schema_version controls this backward compatibility. Its default value is 2.007000 . By setting it to a value below 2.007000 (such as 2.006006 or 2.006004) a subset of parameters as was used with a version 2.6.6 or 2.6.4 is selected. SQL clauses in $sql_clause{'upd_msg'} and $sql_clause{'ins_rcp'} need to be adjusted according to a chosen version of actual parameters. Below is an example of a required setting compatible with both amavisd-new 2.6.6 and 2.7.0, which lets amavisd 2.7.0 use an SQL schema of 2.6.6, which lacks the four newly added fields: our($sql_schema_version) if $myversion_id_numeric < 2.007000; $sql_schema_version = 2.006006; $sql_clause{'upd_msg'} = 'UPDATE msgs SET content=?, quar_type=?, quar_loc=?, dsn_sent=?,'. ' spam_level=?, message_id=?, from_addr=?, subject=?, client_addr=?'. ' WHERE partition_tag=? AND mail_id=?'; $sql_clause{'ins_rcp'} = 'INSERT INTO msgrcpt (partition_tag, mail_id, rid,'. ' ds, rs, bl, wl, bspam_level, smtp_resp) VALUES (?,?,?,?,?,?,?,?,?)'; Note that this is only provided to facilitate transition. Please add the new fields on an opportunity, then remove the above settings from your configuration file and restart amavisd. - SQL fields msgs.content and msgrcpt.content used to encode a content type CC_SPAMMY as 's', and CC_MTA as 't'. With default case-insensitive queries on a data type CHAR it was not possible to distinguish between lowercase 's' (= CC_SPAMMY) and uppercase 'S' (= CC_SPAM), so the CC_SPAMMY is now encoded as 'Y', and CC_MTA as 'T' (just in case). Please adjust your management tools if necessary. - please check SQL data types on fields msgs.mail_id, msgs.secret_id, msgrcpt.mail_id and quarantine.mail_id in existing databases, these must be treated case-insensitively - see details further down, please search further down for "must be treated case-insensitively"; - SQL clause $sql_clause{'sel_quar'} no longer uses a coalesce() function (introduced in amavisd-new-2.6.2) which attempted to deal with NULL quarantine.partition_tag or with undefined $partition_tag, when releasing a message from an SQL quarantine - but payed the price of not using an index. If releasing from an SQL quarantine is desired, either ensure there are no (old) records in a table 'quarantine' with a NULL partition_tag (e.g. replace such fields with a 0, and don't leave $partition_tag undefined in amavisd.conf - set it to 0 for example when partitioning is not needed), or assign a former clause to $sql_clause{'sel_quar'} in amavisd.conf : $sql_clause{'sel_quar'} = 'SELECT mail_text FROM quarantine'. ' WHERE coalesce(partition_tag,0)=coalesce(?,0) AND mail_id=?'. ' ORDER BY chunk_ind'; Thanks to Michael Scheidell and Thomas Gelf for pointing out the inefficiency. - if using Petr Rehor's amavisd-milter to call amavisd, please update it to version 1.5.0 (or later), as earlier versions did not accept a new attribute 'log_id', which is now included in a response from amavisd; - a sample configuration file amavisd.conf-sample was removed from the package - it hasn't been seriously updated for years, and it contained lots of aged or distracting information; - old helper programs amavis.c and amavis-milter.c are no longer distributed with the package, along with the entire helper-progs subdirectory. As a milter client please use the more modern 'amavisd-milter' package by Petr Rehor, available at http://sourceforge.net/projects/amavisd-milter/ - old AM.CL protocol is no longer supported; it was provided for compatibility with versions of AMaViS pre-dating amavisd-new, along with its client programs: old helper programs amavis.c and amavis-milter.c. Handling of release requests and milter requests through AM.PDP protocol remains unaffected; - a sample AM.PDP client program for mail submission to amavisd which was previously distributed as 'helper-progs/amavis.pl' has been renamed to 'amavisd-submit' and slightly modernized. It provides partial functional compatibility with a very early AMaViS client program amavis.c . It takes a message on stdin, copies it to a temporary file, passes its name to amavisd daemon using AM.PDP protocol, and based on the response adjusts its exit status value so that an invoking script or program may decide whether to deliver the mail message or not; - mail_id and secret_id are now composed of characters from a character set [ A-Z, a-z, 0-9, -, _ ] instead of [ A-Z, a-z, 0-9, +, - ] (i.e. now uses underline instead of a plus) to conform to RFC 4648 base64url specification, thus making it potentially easier to specify an id in various GUI/API interfaces without a need for quoting a plus. The change is also reflected in a choice of quarantine file names. Compatibility with releasing of old quarantined messages is retained; - relationship between mail_id and secret_id has changed and is now: mail_id = encode_base64(md5(decode_base64(secret_id))) (i.e. md5 is applied to 9 raw bytes of a secret id) while previously it was: mail_id = encode_base64(md5(secret_id)) (i.e. md5 was applied to 12 base64 characters of a secret id) Releasing from a quarantine still understands old relationship and old base64 encoding character set for compatibility, so no problems are expected even when releasing a mix of old and new quarantined messages. The change may potentially affect some third party application. - caching of virus and spam check results based on a mail body hash has been removed. It was very beneficial years ago when virus storms were common and spam was not personalized. Nowadays (2011) the feature barely pays for itself (savings are comparable to additional processing needed), and is incompatible with per-recipient spam checks (as introduced with this version), and incompatible with DKIM verification on locally originating and signed mail being returned from a mailing list. Rather than trying to fit a square peg into a round hole, the feature is now dropped. Associated configuration variables are still declared for compatibility, but have no effect: $enable_global_cache, $virus_check_negative_ttl, $virus_check_positive_ttl, $spam_check_negative_ttl, $spam_check_positive_ttl - a default value for $lock_file is now undefined instead of the former default value "$helpers_home/amavisd.lock"; an undefined value lets Net::Server choose a suitable temporary file (POSIX::tmpnam) for 'flock' serialization on socket accept(); - updated (rarely used) AV entries 'Sophos SAVI', 'Mail::ClamAV' and 'av_smtp' in an incompatible way (they now use ask_daemon interface instead of a dedicated subroutine), please update your AV entries according to the new sample file amavisd.conf; - internal: spam_level() and spam_tests() are no longer properties of a message but are now a property of each recipient, which makes possible per-recipient spam checking settings (e.g. rules, bayes username, ...); - internal: a delivery_method() is no longer a property of a message, but is now a property of each recipient, which makes per-recipient forwarding possible; - internal: a load_policy_bank() takes one additional argument $msginfo, which is passed on to any policy bank's ACTION routine if a policy bank has one; BUG FIXES SINCE 2.6.6 - take a more cautious approach on keeping evidence on an SMTP session transaction state when feeding a message back to MTA. Under certain abnormal circumstances an MTA could respond to end-of-data with a temporary failure but retain an active transaction state while amavisd would assume the transaction was closed, leading to a 'MAIL transaction in progress' failure on the next message using the same cached SMTP session. Now amavisd considers a transaction state to be unknown when there is any doubt and closes a session instead of caching it, unless the transaction is reliably known to be closed. Problem reported by Ralf Hildebrandt. BUG FIXES SINCE 2.6.5 All bug fixes that were developed during a 2.7.0 developement cycle have been backported to the 2.6 branch and released as 2.6.6. They are all documented in release notes of the 2.6.6 release. BUG FIXES SINCE 2.6.4 All bug fixes and some compatibility measures that were developed during a 2.7.0 developement cycle have been backported to the 2.6 branch and released as 2.6.5. They are all documented in release notes of the 2.6.5 release. NEW FEATURES - a command line option 'reload' has been renamed to 'restart', while keeping its semantics: to stop a currently running daemon, and then promote a process to become a new daemon. This makes a complete and independent restart with all its benefits: can start a chrooted daemon, can access config files or DKIM signing keys accessible only to root, can open sockets/ports otherwise restricted to root, can change inet and unix socket locations, their bindings and port numbers. It will also reset SNMP counters in a database, if it is enabled. A downside is that during a restart existing sockets are closed, so until new sockets are re-established an MTA client experiences connection failures, which is particularly disruptive in a pre-queue MTA setup. - a command line option 'reload' has been re-purposed to function as a warm restart: it now sends a HUP signal to a running daemon, then exits. A running daemon upon receiving a HUP signal will clone its sockets, clear their 'close-on-exec' flag, then restart itself through exec(). A reborn daemon inherits open sockets, does a normal startup (loading perl modules and config files), then reassociates inherited sockets with configured inet and Unix socket names, which is why these must not be changed in a configuration file between reloads. Sockets remain open and available to clients during the whole warm-restart period, requests are queued by kernel (queue size is configurable through $listen_queue_size, defaulting to SOMAXCONN, or there may not be any queues at all when an IP stack is using SYN cookies), so apart from a delay in connection establishment, an MTA client will not notice a restart as long as the IP stack is willing to accept new sessions (as controlled by listen queue size or SYN cookies). This makes the reloading method particularly suitable for pre-queue filter setups. A downside is that a HUP-ed daemon has already dropped root privileges during its first start, so it must restart as a nonprivileged user (typically 'vscan' or 'amavis'), which rules out its ability to chroot, and requires that configuration files, DKIM signing keys files, and perl modules must be readable by this GID or UID, otherwise a restart fails and a daemon process no longer exists. Depending on a version of perl and operating system in use, it might be necessary to specify an absolute path to amavisd on the initial start. To debug warm-restart problems it may be useful to first try a warm restart on a non-daemonized process (started manually as: amavisd foreground, or: amavisd debug), so that potential errors on stderr are visible. A sensible protection of configuration files and files with DKIM keys is to set their group ownership to vscan (amavis) and UID ownership to root, and mode to 0640 (u=rw,g=r,o=). A need for non-root accessibility of DKIM signing keys can be avoided by using a new signing service daemon included with this release (see further down: amavisd-signer). One additional feature of a warm reload is that SNMP counters in a database (visible through amavisd-agent or amavisd-snmp-subagent) are not reset to zero, unlike the restart which clears them. - on stop, restart or reload, currently busy child processes are left to complete their current task instead of being abruptly stopped. This minimizes a disruption experienced by MTA. - added a client-side and server-side support for the IDENT attribute of a Postfix XFORWARD smtp command (available since Postfix version 2.8.0). The attribute allows passing of a local message identifier (MTA queue id) downstream from a front-end MTA to a post-queue content filter and back to a back-end MTA. Amavisd makes this information available through an existing macro %Q (which was previously non-empty only in milter setups), and as such the information appears in the log when using a default amavisd log template. This information is also passed back to a re-entry MTA if it announces a support for this attribute (enabled on a back-end smtpd service with an option smtpd_authorized_xforward_hosts), so the log entries are now easier to correlate in a post-queue filtering setup: back-end MTA: postfix/smtpd[72995]: 553261D1CB0: client=localhost[::1], orig_queue_id=2F5971D1CA3, orig_client=... post-queue content filter: amavis[20341]: (20341-15) Passed CLEAN ... Queue-ID: 2F5971D1CA3, queued_as: 553261D1CB0 front-end MTA: postfix/lmtp[73130]: 2F5971D1CA3: ... relay=127.0.0.1[127.0.0.1]:10024, status=sent (250 2.0.0 from MTA(smtp:[::1]:10025): 250 2.0.0 Ok: queued as 553261D1CB0) - support Postfix 2.9 long queue IDs (enable_long_queue_ids=yes) as available since postfix-20110321 by adjusted default values of $log_short_templ and $log_verbose_templ templates; - improved support for pre-queue content filtering setups: reorganized time limiting on processing to obey more strictly a deadline time, which is the sum of $child_timeout and a timestamp at the moment of a reception of a complete message (SMTP data-end time). The deadline time is also passed to SpamAssassin, which since version 3.3.0 supports a 'master_deadline' option and can gracefully terminate its processing on a time limit, while still providing results collected so far. The setting $sa_timeout is now retired: the variable is still declared for backward compatibility, but has no effect. Instead, the time available for spam scanning is automatically determined from $child_timeout, taking into consideration the actual time left till the deadline; - $child_timeout and $smtpd_timeout settings are now dynamic, i.e. can be changed by a policy bank, which makes it possible to support (on different ports) both the pre-queue and post-queue (e.g. fallback) clients by the same amavisd daemon; - a new configuration variable $soft_bounce (also a member of policy banks) turns rejects, bounces and discards into a temporary failure when true; this is potentially useful as a short-term safety net when testing configuration changes on a low-traffic server; - added an AV entry and supporting code for Sophos-SSSP, implementing the client side of the Sophos SSSP protocol, talking to a savdid daemon (a replacement for Sophie) using its native protocol; - added an AV entry and supporting code for AVIRA SAVAPI protocol, implementing the client side of the protocol, talking to a savapi daemon; - added an AV entry for clamdscan which can serve as a useful backup scanner, connecting as client to a remote clamd; the supplied alternative config file should specify the host IP and port number where clamd is running using TCPAddr and TCPSocket options; suggested by Michael Scheidell; - added an AV entry for ClamAV clamd streaming which can serve as a main or backup scanner, connecting as client to a remote clamd. The client side implements clamd zINSTREAM command, batched in a zIDSESSION / zEND group. This approach is comparable to what is implemented in clamdscan and is somewhat less efficient than passing only a directory name to clamd, but has an advantage that the clamd daemon need not have direct access to amavisd temporary files, and may even be running on a remote host. The cost of this flexibility is additional data transfer. Suggested by Michael Scheidell. - lists of lookup tables (the @*_maps variables) can now contain explicit SQL and LDAP lookup objects as their elements, instead of (or in addition to) the implied SQL and LDAP lookups. A new configuration setting $lookup_maps_imply_sql_and_ldap controls whether the SQL and LDAP lookup objects are implicitly prepended to list in @*_maps variables (when true), or not (when false). The default value is 1 for compatibility with previous versions. Regardless of the $lookup_maps_imply_sql_and_ldap setting, the @*_maps lists of lookup tables/objects may now contain explicit lookup objects for arbitrarily named SQL fields and LDAP attributes. This provides more flexibility: the order of lookups is now configurable (previously SQL and LDAP lookup objects were prepended to lists and thus always looked up first), and the names of SQL fields or LDAP attributes can now be specified as arguments to SQL and LDAP lookup objects (previously field and attribute names were hardwired into code). Three shorthand functions are available for creating SQL lookup (query) objects: q_sql_s, q_sql_n, q_sql_b, and three for creating LDAP lookup (query) objects: q_ldap_s, q_ldap_n, q_ldap_b. The _s, _n and _b suffixes imply a data type of the expected result: a string, a numeric value, and a boolean. Due to Perl's forgiveness a string data type can in most cases be used as a number or as a boolean and may be used when data type conversion and value normalization is not necessary or when a data type is not known. Here are some examples: @spam_kill_level_maps = ( { # a hash-type lookup object 'user1 at example.com' => 8, '.example.org' => 7.5, }, q_ldap_n('amavisSpamKillLevel'), # an LDAP lookup object q_sql_n('spam_kill_level'), # an SQL lookup object $sa_kill_level_deflt, # a constant-type pseudo-lookup object ); @spam_subject_tag2_maps = ( q_sql_s('subject_tag'), ); In addition to simple scalar arguments (a field or attribute name), these six lookup object-creating functions can take as their argument a listref of field or attribute names, or a hashref where hash entry values are SQL field names (or LDAP attribute names), and hash entry keys are the result data names. Lookups resulting from such lookup objects will return a hashref of key/value pairs instead of a single scalar result. This is currently only useful in the @dkim_signature_options_bysender_maps list of lookups which expects such hash results (sets of data names and their values, i.e. entire records). The listref argument is just a shorthand notation which can be used in place of a hashref when field names (or attribute names) are the same as the desired result data names. The following alternatives are equivalent: q_sql_s( { 'd' => 'd', 's' => 's', 'ttl' => 'ttl' } ) q_sql_s( { d => 'd', s => 's', ttl => 'ttl' } ) # perl shorthand q_sql_s( [ 'd', 's', 'ttl' ] ) q_sql_s( [qw(d s ttl)] ) # perl shorthand Example (artificial, not necessarily useful): @dkim_signature_options_bysender_maps = ( q_sql_s( ['d', 's', 'ttl'] ), q_ldap_s( ['d', 's', 'a'] ), q_ldap_s({ d => 'sdid', s => 'amavisSelector', a => 'amavisDkimAlg' }), { 'postmaster at example.com' => { a => 'rsa-sha1', ttl => 7*24*3600 }, '.' => { a => 'rsa-sha256', ttl => 30*24*3600 }, }, ); - a new configuration variable $sql_store_info_for_all_msgs when turned off requests storing information on mail messages selectively just for quarantined messages. At the same time turning this setting off also disables pen pals lookups. A default value is 1 (true) as before, indicating that information on all messages is to be stored into tables msgs, msgrcpt and maddr when @storage_sql_dsn is enabled, thus ensuring long-term uniqueness of mail_id and proper operation of pen pals lookups; - a new program is included with a package: amavisd-signer. It is a DKIM signing service daemon for amavisd. It uses an AM.PDP protocol lookalike to receive a request from amavisd and provides two services: choosing a signing key, and signing a message digest with a chosen DKIM private key. Amavisd uses this signing service when a $dkim_signing_service setting is defined and nonempty, and $enable_dkim_signing is true. For each mail message meeting the basic requirements for signing (originating, nonspam and not infected), the first request sent to a signing service passes some information about the message (its author, sender, recipients) and expects the service to choose and provide a suitable signing domain and selector (and optional signature options) when a signing key is available and the service considers it appropriate to sign the message. If the response does not provide a signing domain and selector, amavisd falls back to consulting its own settings (a dkim_key() set of signing keys, and @dkim_signature_options_bysender_maps). The second stage of signing occurs when a signing key has been uniquely identified during the first stage, i.e. when its signing domain and a selector have been determined. Amavisd computes a message digest according to DKIM specifications and passes it to the signing service, along with the signing domain and selector name. The signing service computes the signature and returns it as a 'b' attribute (corresponding to a 'b' tag of a DKIM signature), from which amavisd assembles the signature header field and inserts it into a message. The signing service may still choose not to sign at this stage, e.g. when a private key corresponding to the requested signing domain and selector is not available. If a signing service is not available or cannot sign, amavisd falls back to its own configured list of signing keys ( dkim_key() ) for backward compatibility. The main reason for separating the signing act from the main amavisd daemon is to make it possible to do the DKIM signing without letting amavisd have access to private keys - following the minimal 'need-to-know' security principles. For example, amavisd may be started as non-root or restarted from a jail, while the independent amavisd-signer process remains the only process with access to private signing keys (by running as root or under a separate UID or GID or with an access to a crypto device). Additional benefit is that more complex decisions on which signing key to use for which mail message can be delegated to the signing service, which can be customized (through code changes or replacing it altogether) without touching the main amavisd daemon. To let amavisd use a signing service, specify the signing service's IP address and TCP port number in amavisd.conf, e.g.: $dkim_signing_service = '127.0.0.1:20203'; matching the $inet_socket_bind and @listen_sockets settings near the beginning of the 'amavisd-service' file, then start the signing service and restart amavisd daemon. Currently all the settings for amavisd-service are contained in its file, no external configuration file or command line options are available at present. - a constant D_TEMPFAIL has been added to a set of allowed final_*_destiny values; mostly intended for completeness and testing; - a new setting @listen_sockets offers a unified configuration of listening sockets. This list may be configured directly, or the traditional way: the $inet_socket_port and $unix_socketname just add their entries (if any) to the @listen_sockets list, and $inet_socket_bind provides a default binding IP address for inet or inet6 ports. Each socket specification may either be a unix socket path (as in $unix_socketname), or an inet or inet6 socket specification (a binding IP address as in $inet_socket_bind, combined with a port number $inet_socket_port, delimited by a colon, e.g. '127.0.0.1:10024', '[::1]:10024', '10024'. When only a port number is specified without an IP address, the binding address defaults to $inet_socket_bind, which in turn (if left undefined), defaults to all interfaces. An 'unspecified' binding address '0.0.0.0' implies any socket of the inet family (IPv4), while an 'unspecified' address '::' implies any socket of an inet6 (IPv6) family. Depending on the operating system and its settings an inet6 socket may or may not be able to also accept inet connections. To be able to listen on inet6 (IPv6) sockets requires version 2.0 (or later) of the module Net::Server, or a patched Net::Server 0.99. Example: @listen_sockets = ( '10024', "$MYHOME/amavisd-proxy.sock", '0.0.0.0:10010', '127.0.0.1:10012', '10026', '9998', '[::1]:10028' ); - SMTP and LMTP client code now accepts a listref of peer socket specifications, or a single scalar specification as before. This allows for a failover in case some server is down or refuses connections. It also provides a simpleminded load balancing between next-hop (re-entry) MTA servers, as the selection from a list is random. Session caching still works, so if a recently used SMTP/LMTP session is still open, it will be reused, in which case no server randomization takes place for as long as the established session remains open. Typical configuration variables where this feature is available are: $forward_method, $notify_method, $resend_method, $release_method, and $requeue_method, but only when the specified protocol is smtp: or lmtp:, (not pipe:, local:, sql:, bsmtp:). Example: $forward_method = [ 'smtp:[::1]:10025', 'smtp:[127.0.0.1]:10025', 'smtp:*:10025' ]; $notify_method = [ 'smtp:*:*', 'smtp:192.0.2.10:10025' ]; It is assumed that the protocol specification scheme (e.g. 'smtp:') of all entries in a list is the same. Mixing different protocols in the same list of alternatives is not allowed; - when a message is being released from a quarantine as an attachment ( $release_format = 'attach' ), it is now possible to wrap this attached message into a password-protected ZIP archive to prevent accidental or automatic opening of the possibly malicious original message. The chosen password is included in the first plain text MIME part, along with an explanation / instructions for a recipient. Note that the purpose of password scrambling is only to prevent an accidental or automatic opening of an attachment. It is not intended to be a strong mechanism for keeping messages secret. There is no point in providing excessively long / strong passwords. A template for this first plain-text MIME part can be changed as before by assigning a new text to $notify_release_templ (or modifying a default template near the end of the file 'amavisd'). Three new configuration variables are added, all three are also members of policy banks: $attachment_email_name, $attachment_outer_name, and $attachment_password. Their default values are: $attachment_password = ''; # no password and no ZIP wrapping $attachment_email_name = 'msg-%m.eml'; $attachment_outer_name = 'msg-%m.zip'; The $attachment_email_name is a template for forming a name of a file, which is then inserted into a zip archive. This name will be seen as a filename containing an original mail message when a recipient unzips the archive. The supplied string may contain placeholders, the same placeholders are recognized as for filename templates used to control quarantining. For the record, here is a complete list of placeholders currently recognized: %P => $msginfo->partition_tag %b => $msginfo->body_digest %m => $msginfo->mail_id %n => $msginfo->log_id %i => iso8601 timestamp of a message reception time by amavisd %% => % The $attachment_outer_name is a template for forming a name of a ZIP archive which will be attached to a message. This name will end up in a MIME sub-header field of the attachment, and as such will be used as a filename when a recipient saves the attachment (without unzipping it). The supplied string may contain the same placeholders as above. The $attachment_password setting can be: . an empty string, in which case no ZIP wrapping will occur and no passwords are applied; also the settings $attachment_email_name and $attachment_outer_name have (currently) no effect, as the attachment is not a ZIP archive but the original message itself; this is a default setting for compatibility with earlier versions; . a fixed static string, in which case an original message is wrapped in a ZIP archive and the archive is encrypted with this fixed string password; . an undefined value ( $attachment_password = undef ), in which case a 4-digit random password (PIN) is internally generated for each quarantine release, the rest is the same as with a fixed string; . a subroutine reference, in which case the supplied subroutine is called (in a scalar context), passing it a $msginfo object as the only argument; the subroutine is expected to return a password as a string, or die if it cannot do its job; the returned value is then treated as one of the three cases above, i.e. an empty string disables zipping, an undefined value invokes internal PIN generating code, and any other value is taken as a password for encrypting the archive. Example use: $release_format = 'resend'; # choices: plain, resend (default), attach or: $release_format = 'attach'; $attachment_password = ''; # no archive, just plain attachment or: $release_format = 'attach'; $attachment_password = undef; # internally generated 4-digit random PIN or: $release_format = 'attach'; $attachment_password = 'fooBAR'; # fixed password or: $release_format = 'attach'; $attachment_password = sub { my($msginfo) = @_; my $str = qx'pwgen -N 1 -n -B -s 6'; die "pwgen failed, exit status: $?" if $?; die "pwgen returned empty result" if $str eq ''; return $str; }; As the $attachment_password is a member of policy bank, it is possible to configure amavisd to listen to release requests on two TCP ports, for example using one to release unencrypted false-positive spam messages, and the other to release possibly problematic infected messages. - updated amavisd-snmp-subagent and AMAVIS-MIB.txt by adding ten user-specifiable 64-bit counters and ten user-specifiable 32-bit gauges; Counters are placed into OID tree under 1.3.6.1.4.1.15312.2.1.1.17 and named UserCounter1..UserCounter10, whereas gauges are placed under 1.3.6.1.4.1.15312.2.1.1.18 and named UserGauge1..UserGauge10. A custom hook or a policy bank ACTION hook can be used for adjusting their values by calling snmp_count64() routine, e.g.: Amavis::Util::snmp_count64('UserCounter3', 'UserCounter9'); or: Amavis::Util::snmp_count( ['UserCounter4', 1234, 'C64'] ); - updated amavisd-snmp-subagent and AMAVIS-MIB.txt by adding the following counters, all placed under 1.3.6.1.4.1.15312.2.1.1 : .19.1 InMsgsStatusAcceptedAll same value as .2.7 .19.2 InMsgsStatusAcceptedInbound .19.3 InMsgsStatusAcceptedOutbound .19.4 InMsgsStatusAcceptedInternal .19.5 InMsgsStatusAcceptedOriginating .19.6 InMsgsStatusAcceptedOpenRelay .20.1 InMsgsStatusRelayedUntaggedAll (no equivalent) .20.2 InMsgsStatusRelayedUntaggedInbound .20.3 InMsgsStatusRelayedUntaggedOutbound .20.4 InMsgsStatusRelayedUntaggedInternal .20.5 InMsgsStatusRelayedUntaggedOriginating .20.6 InMsgsStatusRelayedUntaggedOpenRelay .21.1 InMsgsStatusRelayedTaggedAll (no equivalent) .21.2 InMsgsStatusRelayedTaggedInbound .21.3 InMsgsStatusRelayedTaggedOutbound .21.4 InMsgsStatusRelayedTaggedInternal .21.5 InMsgsStatusRelayedTaggedOriginating .21.6 InMsgsStatusRelayedTaggedOpenRelay .22.1 InMsgsStatusDiscardedAll same value as .2.9 .22.2 InMsgsStatusDiscardedInbound .22.3 InMsgsStatusDiscardedOutbound .22.4 InMsgsStatusDiscardedInternal .22.5 InMsgsStatusDiscardedOriginating .22.6 InMsgsStatusDiscardedOpenRelay .23.1 InMsgsStatusNoBounceAll same value as .2.10 .23.2 InMsgsStatusNoBounceInbound .23.3 InMsgsStatusNoBounceOutbound .23.4 InMsgsStatusNoBounceInternal .23.5 InMsgsStatusNoBounceOriginating .23.6 InMsgsStatusNoBounceOpenRelay .24.1 InMsgsStatusBouncedAll same value as .2.11 .24.2 InMsgsStatusBouncedInbound .24.3 InMsgsStatusBouncedOutbound .24.4 InMsgsStatusBouncedInternal .24.5 InMsgsStatusBouncedOriginating .24.6 InMsgsStatusBouncedOpenRelay .25.1 InMsgsStatusRejectedAll same value as .2.12 .25.2 InMsgsStatusRejectedInbound .25.3 InMsgsStatusRejectedOutbound .25.4 InMsgsStatusRejectedInternal .25.5 InMsgsStatusRejectedOriginating .25.6 InMsgsStatusRejectedOpenRelay .26.1 InMsgsStatusTempFailedAll same value as .2.13 .26.2 InMsgsStatusTempFailedInbound .26.3 InMsgsStatusTempFailedOutbound .26.4 InMsgsStatusTempFailedInternal .26.5 InMsgsStatusTempFailedOriginating .26.6 InMsgsStatusTempFailedOpenRelay For compatibility, the following counters appear in the MIB at two locations (both locations present the same value): .19.1 or .2.7 InMsgsStatusAcceptedAll (.20.1 - InMsgsStatusRelayedUntaggedAll) (.21.1 - InMsgsStatusRelayedTaggedAll) .22.1 or .2.9 InMsgsStatusDiscardedAll .23.1 or .2.10 InMsgsStatusNoBounceAll .24.1 or .2.11 InMsgsStatusBouncedAll .25.1 or .2.12 InMsgsStatusRejectedAll .26.1 or .2.13 InMsgsStatusTempFailedAll The value of a counter .2.8 InMsgsStatusRelayed is a sum of: .20.1 InMsgsStatusRelayedUntaggedAll .21.1 InMsgsStatusRelayedTaggedAll Their semantics is documented in AMAVIS-MIB.txt . Suggested by Patrick Ben Koetter. - a policy bank may now provide a custom hook as a hash key 'ACTION'. On loading a policy bank whose ACTION key has an associated value being a subroutine reference, the supplied subroutine is called when a policy bank is loaded, before its remaining keys/values are copied to the current setting. The action routine is passed two arguments: a $msginfo (a ref to an object containing all the information about a message being processed), and a policy name being loaded. Note that $msginfo may be undef if a policy bank is loaded early - before a $msginfo object is created, such as with policy banks associated with a port number or with client's IP address; Example use: $policy_bank{'TRUSTED_BOOKSHOPS'} = { bypass_spam_checks_maps => [1], spam_lovers_maps => [1], ACTION => sub { Amavis::Util::do_log(2,'Buying a book?'); Amavis::Util::snmp_count64('UserCounter2'); }, }; @author_to_policy_bank_maps = ({ 'amazon.com' => 'TRUSTED_BOOKSHOPS', 'amazon.co.uk' => 'TRUSTED_BOOKSHOPS', 'amazon.de' => 'TRUSTED_BOOKSHOPS', }); - a new configuration variable @virus_name_to_policy_bank_maps has been introduced. It allows loading of policy banks based on a virus name as reported by virus scanners. Reported names converted to spam by a @virus_name_to_spam_score_maps are no longer treated as virus names and as such are not eligible to @virus_name_to_policy_bank_maps. The @virus_name_to_policy_bank_maps is a list of lookup tables. A lookup key is each virus name as reported by any virus scanner. A result of a lookup is expected to be a string containing a comma-separated list of policy bank names. Nonexistent policy banks are ignored. Duplicate names are merged into a single name. The most suitable lookup mechanisms are a regexp lookup and a hash lookup, as these are able to provide an arbitrary user-specifiable result (unlike a list-based (ACL) lookup, which can only provide a boolean value). Suggested by Patrick Ben Koetter. Example use: @virus_name_to_policy_bank_maps = ( new_RE( # a regexp lookup [ qr'^(W32/MyDoom|W32/Netsky|Mal/BredoZp)' => 'VIRUS,MASS_VIRUS' ], [ qr'\bEICAR\b'i => 'EICAR_TEST' ], ), 'VIRUS', # constant (pseudo)lookup, catchall for any other virus name ); $policy_bank{'VIRUS'} = { ACTION => sub { Amavis::Util::snmp_count('UserCounter1') }, }; $policy_bank{'EICAR_TEST'} = { log_templ => $log_short_templ . ', EICAR test message, not to worry', final_destiny_by_ccat => { CC_VIRUS() => D_BOUNCE }, }; $policy_bank{'MASS_VIRUS'} = { # mute everything using a big hammer final_destiny_by_ccat => { CC_VIRUS() => D_DISCARD }, warnsender_by_ccat => { REPLACE => 1 }, warnrecip_maps_by_ccat => { REPLACE => 1 }, quarantine_method_by_ccat => { REPLACE => 1 }, admin_maps_by_ccat => { REPLACE => 1 }, newvirus_admin_maps => [], log_templ => 'MASS VIRUS DROPPED, ' . $log_templ, ACTION => sub { Amavis::Util::snmp_count('UserCounter2') }, }; - a policy bank may now be loaded based on a path name of a Unix socket receiving a connection. Example use: @listen_sockets = ( "$helpers_home/amavisd.sock1", "$helpers_home/amavisd.sock2", "$helpers_home/amavisd.sock3", ); $interface_policy{"$helpers_home/amavisd.sock1"} = 'UX-S1'; $interface_policy{"$helpers_home/amavisd.sock2"} = 'UX-S2'; $interface_policy{"$helpers_home/amavisd.sock3"} = 'UX-S3'; $policy_bank{'UX-S1'} = { ... }; $policy_bank{'UX-S2'} = { ... }; $policy_bank{'UX-S3'} = { ... }; - transparent archival quarantine is a special case of archive quarantining which retains all recipient addresses unmodified in an envelope of a message directed to a quarantine. It makes sense when $archive_quarantine_method specifies protocols 'smtp:' or 'lmtp:' or 'bsmtp:' and a dedicated server is used which guarantees these quarantined messages will *not* be delivered to recipients in the envelope. Transparent archiving is used when $archive_quarantine_to (actually the @archive_quarantine_to_maps) results in a reserved string '%a' for all recipients. Think of the '%a' as a placeholder in a replacement string, being substituted by a full original recipient address. There may be other substitution placeholders available in the future, equivalent to placeholders %l, %d, etc. in SQL query templates. Example: $archive_quarantine_method = 'smtp:127.0.0.1:7777'; $archive_quarantine_to = '%a'; @archive_quarantine_to_maps = (\$archive_quarantine_to); or: $archive_quarantine_method = ['smtp:[::1]:7777', 'smtp:127.0.0.1:7777']; @archive_quarantine_to_maps = ( { '.example.com' => '%a', '.example.net' => '%a', '.example.org' => 'quarantine at example.org', '.' => undef, } ); The envelope sender address of messages sent to an archival quarantine is still controlled by the $mailfrom_to_quarantine setting as before. When this value is undef (which is a default) the envelope sender address remains unchanged - is the same as in a received message. Any other value replaces the original sender address, so an empty string implies a null return path. When delivering quarantine messages to a dedicated SMTP server it must be ensured that the receiving server will not bounce or reject quarantine messages or deliver them to recipients specified in the SMTP envelope! If a receiving SMTP server announces a DSN capability in its response to EHLO, amavisd will add option NOTIFY=NEVER with each recipient to prevent potential backscatter. This is an additional safeguard to prevent potential backscatter, therefore it is recommended that the receiving quarantine server implements and announces the DSN capability. Specifying an empty string for the $mailfrom_to_quarantine achieves the same effect (a null return path implies NOTIFY=NEVER) thus preventing backscatter, but loses original sender address in the envelope. Suggested by Patrick Ben Koetter. - as a convenience, two pre-defined logging templates are provided: $log_short_templ and $log_verbose_templ. The former is the same as was a default $log_templ in previous versions, the later is quite verbose and provides most of the interesting information about a message. An initial value of $log_templ is taken from the $log_short_templ. To change $log_templ, either assign a new template directly as before, or, as a shorthand if $log_verbose_templ is appropriate, just assign it, e.g.: $log_templ = $log_verbose_templ; - added a configuration variable @debug_recipient_maps. Similarly to @debug_sender_maps, a debug level logging is temporarily turned on for the duration of processing of this message when a recipient address matches a list of lookup tables @debug_recipient_maps; suggested by Patrick Ben Koetter; - internal: a delivery_method() is now a property of a recipient instead of being a property of a message as a whole. This makes per-recipient forwarding method selection possible. When recipients of a multi-recipient message specify different forwarding methods, a message is forwarded in multiple transactions, one for each unique delivery_method() setting; i.e. recipients are clustered into sets with the same delivery_method setting and a message for each subset of recipients if forwarded as one transaction; - finer custom control over the forwarding method is available through a before_send() custom hook which may override the $r->delivery_method(...) for all or just some of the recipients with whatever forwarding method specification is suitable - for example a next-hop server's IP address or its port number can be chosen based on spam score or based on a sender domain or some other characteristics of a message or of a recipient; - a new configuration variable @forward_method_maps (along with making a delivery_method() a property of a recipient instead of being a property of a message) makes per-recipient forwarding method selection possible; suggested by Ralf Hildebrandt; Example: @forward_method_maps = ({ # use lowercase keys with hash-type lookups! 'user at example.com' => 'smtp:[::1]:10025', '.sub1.example.com' => 'smtp:[::1]:10026', '.sub2.example.com' => 'smtp:[::1]:10027', '.example.net' => 'smtp:[127.0.0.1]:10025', '.example.org' => [ 'smtp:[192.0.2.9]:125', 'smtp:[2001:db8::f]:125' ], '.' => $forward_method, }); - a new configuration variable %forward_method_maps_by_ccat allows the forward_method_maps to depend on content type and allows per-recipient specification of a forward method, such as specifying a next hop MTA's IP address and port number. This offers new possibilities to control mail routing for purposes like implementing sender reputation schemes which dynamically choose an SMTP source IP address (typically of outgoing mail) based on the contents of a mail message or based on recipient's e-mail address or domain. This needs to be complemented by a suitable configuration of an MTA, such as Postfix 2.7.0 or later. The default is to use the $forward_method setting, ensuring compatibility. There is no need to specify entries for content types which are not being forwarded (often: CC_VIRUS, CC_BANNED, CC_SPAM). Example use: $forward_method = 'smtp:[127.0.0.1]:10025'; %forward_method_maps_by_ccat = ( CC_BADH.',3', [ 'smtp:*:10027' ], CC_BADH.',4', [ 'smtp:*:10027' ], CC_BADH.',5', [ 'smtp:*:10027' ], CC_BADH.',6', [ 'smtp:*:10027' ], CC_BADH.',8', [ 'smtp:*:10027' ], CC_SPAMMY, [ 'smtp:[192.0.2.22]:10025' ], CC_CATCHALL, sub { ca('forward_method_maps') }, ); - added a global configuration setting $allow_preserving_evidence, defaults to true. Turning it off disables preserving temporary files (as evidence) in case of trouble, which is potentially useful for unattended and unmonitored operation. The setting has no influence on preserving evidence in case of @debug_sender_maps or @debug_recipient_maps triggering, which always preserves evidence; - an entry for CC_UNCHECKED was added to %admin_maps_by_ccat, defaulting to @virus_admin_maps. Hence administrator notifications are also sent for messages which cannot be decoded (e.g. are encrypted or contain a mangled archive) if virus administrator notifications are enabled. To turn off sending administrator notifications for unchecked contents: delete $admin_maps_by_ccat{&CC_UNCHECKED}; - to avoid a need to directly manipulate the *_by_ccat settings, a set of individual configuration variables associated with CC_UNCHECKED contents category was added, with their default values compatible with earlier versions of amavisd: $final_unchecked_destiny = D_PASS; $unchecked_quarantine_method = undef; $unchecked_quarantine_to = 'unchecked-quarantine'; @unchecked_quarantine_to_maps = (\$unchecked_quarantine_to); LDAP attribute: amavisUncheckedQuarantineTo SQL field: unchecked_quarantine_to - a failure of all virus scanners no longer automatically tempfails the operation, but flags a message with a CC_UNCHECKED contents category (just like a failure of decoders/dearchivers), and allows the usual controls (*_destiny, *_quarantine_*) to be used to choose behaviour; for example: $final_unchecked_destiny = D_TEMPFAIL; $unchecked_quarantine_method = 'local:unchecked/%m.gz'; To revert to a previous behaviour where a failure of all virus scanners resulted in a temporary failure, set the $virus_scanners_failure_is_fatal to true, e.g.: $virus_scanners_failure_is_fatal = 1; The setting $virus_scanners_failure_is_fatal is a member of policy banks. - support decompression of a .xz file format and legacy .lzma file formats through XZ Utils ( http://tukaani.org/xz/ ) if an entry with a decoding program is found in the @decoders list; it defaults to finding a program 'xz' or 'xzdec' in the $path ; - added two new functions: iso8601_year_and_week() and iso8601_yearweek() to accompany the existing function iso8601_week(); they all provide a week-of-the-year number (ISO 8601 / EN 28601, 1..53, in local time zone) given a Unix timestamp (seconds since 1970-01-01T00:00Z) as an argument, optionally together with the corresponding year number. The result is an integer or a pair of integers as follows: $w = iso8601_week($unix_time); # e.g. 49 $yw = iso8601_yearweek($unix_time); # e.g. 201049 ($y, $w) = iso8601_year_and_week($unix_time); # e.g. (2010,49) Semantics is equivalent to PostgreSQL extract(week from ...), and to MySQL week(date,3). These functions can be useful for assigning to a $partition_tag (in amavisd.conf), e.g.: $partition_tag = sub { my($msginfo)=@_; iso8601_week($msginfo->rx_time) }; or: $partition_tag = sub { my($msginfo)=@_; iso8601_yearweek($msginfo->rx_time) }; or based on a day of a week for short-term cycling (Mo=1, Tu=2,... Su=7): $partition_tag = sub { my($msginfo)=@_; ((localtime($msginfo->rx_time))[6]+6)%7+1 }; (a note from a future: starting with 2.8.0 the following is equivalent: $partition_tag = sub { my($msginfo)=@_; iso8601_weekday($msginfo->rx_time) }; ) Suggested by Michael Scheidell. - the two placeholders %k and %a in templates for SQL lookup clauses $sql_clause{'sel_policy'} (i.e. $sql_select_policy) and $sql_clause{'sel_wblist'} (i.e. $sql_select_white_black_list) were augmented by four new placeholders: %l, %u, %e, and %d, potentially facilitating forming of more complex SQL queries; suggested by Marco Fretz. The following replacements are made: %a -> exact/unmodified e-mail address (same as the first entry in %k) %l -> full unmodified localpart (all up to, but not including the '@') %u -> lowercased username (a localpart without extension) %e -> lowercased address extension (including a delimiter), if any %d -> lowercased domain (without '@') %k -> a list of lookup strings, as before (see below) For example, given an e-mail address: User+Foo at Sub.Example.COM the placeholders would be substituted by: %a User+Foo at Sub.Example.COM %l User+Foo %u user %e +foo %d sub.example.com %k User+Foo at sub.exAMPLE.COM user+foo at sub.example.com user at sub.example.com user+foo user @sub.example.com @.sub.example.com @.example.com @.com @. - per-recipient (or per- policy bank, or global) SpamAssassin configuration files or SQL configuration sets are now supported (the @sa_userconf_maps setting, a policy.sa_userconf SQL field). A multi-recipient message whose recipients map to different configuration sets will be checked by calling SpamAssassin multiple times, once for each unique SpamAssassin configuration set. A configuration set is either a filename, or a set of SQL records obtained from SpamAssassin's user_scores_dsn SQL database by calling its method load_scoreonly_sql(). A lookup on a list of lookup tables @sa_userconf_maps may return undef or an empty string implying no user preferences file, or may provide a file name (absolute path, or relative to $MYHOME) of a SpamAssassin's 'user preferences' configuration file, or may start with a string 'sql:' which implies loading user preferences from a user_scores_dsn SQL database (as declared in a SpamAssassin's configuration file) for a username provided by a lookup on @sa_username_maps (see further down). SpamAssassin will be requested to load a user preferences configuration through its read_scoreonly_config() or load_scoreonly_sql() method, which otherwise (in spamd) serves to load user's .spamassassin/user_prefs file or SQL preferences when switching users. See SpamAssassin documentation file sql/README for SQL details. SpamAssassin's SQL database is only consulted if user_scores_dsn is declared in a SpamAssassin configuration file, and the @sa_userconf_maps returns a string starting with 'sql:' (case insensitive, the rest of the string is currently ignored). If a username as provided by a lookup on @sa_username_maps equals the username under which amavisd was started, SpamAssassin's SQL preferences for that username will not be loaded - it is assumed that preferences for a default username are empty, i.e. that it uses a default SpamAssassin configuration. Each time that currently loaded configuration needs to be replaced by another or restored to a systemwide default, an initial SpamAssassin configuration is restored through SpamAssassin's copy_config() method. Note that saving an original SpamAssassin configuration, loading a user configuration, and restoring to the original configuration does not come cheap: it can take 200 ms for a load and restore, and 370 ms for the initial saving of the configuration (saving is only done once per child process, and only if needed). Saved configuration can occupy additional 2 MB of virtual memory, so use the feature sparingly. No penalty occurs until a child process does its first loading of a user configuration, so rarely activated or inactive policy banks or per-recipient setting using this feature do not cause any additional processing or occupy additional memory. According to SpamAssassin documentation, a user preferences file or SQL preferences can include scoring options, scores, whitelists and blacklists, etc. If 'allow_user_rules' is enabled (local.cf), then user preferences file can also include rule definitions and privileged settings - but not administrator settings. The feature is only available since SpamAssassin 3.3.0. Example: @sa_userconf_maps = ( { 'user1 at example.com' => '/etc/mail/spamassassin/special_user_config', '.example.org' => 'sql:', } ); Based on a suggestion by Alexander Wirt and initially based on his patch; - added a global configuration setting $sa_num_instances with a default value of 1, which is the only sensible setting for sites not using per-recipient SpamAssassin configuration switching (as described in the previous section). The $sa_num_instances controls the number of Mail::SpamAssassin objects (instances) created by a parent amavisd process during a startup. Each SpamAssassin instance does its own initialization (loading of rules and configuration settings) during a program startup and occupies a sizable portion of virtual memory (like 7 MB on a 64-bit platform with SA 3.4 rules). When switching SpamAssassin configurations (@sa_userconf_maps), and given more than one instance of the Mail::SpamAssassin object, amavisd has a choice of picking an instance which may already have loaded a selected user configuration file previously, and thus save some time by not having to store and reload SpamAssassin state again. This may be beneficial for example when a sizable portion of users use a default SpamAssassin configuration, while other users need a per-user or per-domain preferences settings; Note that as of SpamAssassin 3.3.2 some features (like compiled rules) are global and not a property of a SpamAssassin instance object. The problem is tracked in the SpamAssassin project as Bug 6236. Until this is resolved please consider the feature experimental. - per-recipient (or per- policy bank) SpamAssassin SQL database usernames are supported (setting @sa_username_maps, a policy.sa_username SQL field). This makes it possible to implement per-user or per-user-group or per-domain Bayes databases when SpamAssassin is configured to keep its Bayes database on an SQL server. It also makes it possible to load per-recipient SpamAssassin preferences (configurations) from an SQL database (as described in a previous section). Switching between Bayes usernames is cheap compared to switching between SpamAssassin configuration files. A multi-recipient message whose recipients map to different usernames will be checked by SpamAssassin multiple times, once for each unique username; Example: @sa_username_maps = ( { 'user1 at example.com' => 'user1', 'user2 at example.com' => 'user2', '.example.com' => 'user_ex', } ); - passes a value of $originating flag to SpamAssassin through its suppl_attrib argument in a $spamassassin->parse call; it is expected that this information would be treated by SpamAssassin 3.4.0 similarly to msa_networks; - a new configuration variable $mail_id_size_bits allows setting the size of randomly generated mail_id and secret_id codes which are used to identify a message on releasing it from a quarantine, and are used as a key when logging to SQL (penpals) or storing to quarantine. The variable specifies a length of mail_id in bits, and must be an integral multiple of 24 (i.e. must be divisible by 6 and by 8). The mail_id is represented externally as a base64url-encoded string of $mail_id_size_bits / 6 characters, and internally as a string of $mail_id_size_bits / 8 octets. The default value is 72 bits, as in previous versions. Sensible values are 48, 72 and 96 bits. See entry "introduce a concept of 'mail_id'" in amavisd-new-2.3.0 release notes for probability analysis of collisions. The default size should fit all practical current needs. The size of SQL fields msgs.mail_id, msgs.secret_id, msgrcpt.mail_id and quarantine.mail_id may need increasing to accommodate $mail_id_size_bits/6 characters if using a non-default value of $mail_id_size_bits. See also the next entry regarding a type for these fields. - SQL fields msgs.mail_id, msgs.secret_id, msgrcpt.mail_id and quarantine.mail_id must be treated case-insensitively. A suitable data type for these fields in PostgreSQL is bytea, and varbinary in MySQL (of size 12 or 16 characters). In order not to lose entropy in mail_id, and not to increase a probability of collisions, please check existing database schema and adjust as necessary, either a data type, or chose a case-sensitive collation setting. See README.sql-pg and README.sql-mysql for an ALTER command to change data type of these fields. - added optional SQL and LDAP lookups for @spam_tag3_level_maps (sql field: policy.spam_tag3_level, ldap attribute: amavisSpamTag3Level), and for @spam_subject_tag3_maps (sql field: policy.spam_subject_tag3, ldap attribute: amavisSpamSubjectTag3); suggested by Thomas Johnson; - added the following LDAP settings to $default_ldap: sslversion, clientcert, clientkey, cafile, capath, verify, sasl, sasl_mech, sasl_auth_id, localaddr, scheme, inet6; allows bind authentication with a certificate or SASL and allows connections to an LDAP server over IPv6; based on a patch by Christian Roessner; - added macros ADDEDHEADERHAM and ADDEDHEADERSPAM, which expand to newly generated header fields which SpamAssassin prepared for insertion into a header section, in case the message is eventually declared to be nonspam or spam respectively; this information is available from SpamAssassin since version 3.3.0; - macro 'dkim' now recognizes two additional keywords: 'selector', 'sig_sd', and 'newsig_sd', see README.customize for details; in particular, the 'newsig_sd' allows to add information on newly applied signature to a main log entry, and is now included in a default log template; - added a macro 'mime2utf8' which takes a string as its first argument, and an optional truncation length as the second. The string is decoded as a MIME-Header string (understands Q or B character set encodings like =?iso-8859-2?Q?...?=, =?koi8-r?B?...?=) and is converted to UTF-8, optionally truncated to the specified size at clean UTF-8 boundaries, and returned as a result. Suggested by Bastian. The macro is useful in a logging template or in notification templates to decode Subject or From header fields, e.g.: [? [:header_field|Subject]||,\ Subject: [:dquote|[:mime2utf8|[:header_field|Subject]|100]]]# - added a macro 'client_helo', which provides a client-supplied EHLO/HELO domain name of the original SMTP session. The information is obtained through an XFORWARD extension to an SMTP protocol as provided by Postfix, or through a 'helo_name' attribute in an AM.PDP request. Add something like: , helo=[:client_helo]# to the log template if it needs to be logged. Suggested by Xueron Nee; - added a macro 'client_addr' which is a synonym for macro 'a'; the information is obtained through an XFORWARD extension to an SMTP protocol as provided by Postfix, or through a 'client_address' attribute in an AM.PDP request; if neither of these are available, the client's IP address is parsed from a topmost Received header field; - added a macro 'client_port', yields a TCP source port number of an original SMTP session; the information is obtained through an XFORWARD extension to an SMTP protocol as provided by Postfix, or through a 'client_port' attribute in an AM.PDP request. See RFC 6302; - added a macro 'client_addr_port' which combines a client's IP address and a TCP source port number (if available) of an original SMTP session; it is similar to: \[[:client_addr]\]:[:client_port] or when a port number is not available: \[[:client_addr]\] This macro is now included in a default main log template, so the TCP source port number is logged along its IP address. This information is useful in reporting abuse (e.g. client behind a NAT), troubleshooting, forensics and law enforcement. If this information is not desired, one may assign a customized template to the $log_templ configuration variable. See RFC 6302: Logging Recommendations for Internet-Facing Servers. Suggested by Rok Poto?nik. - added a macro 'banned_parts_as_attr' and an associated per-recipient attribute banned_parts_as_attr(); it provides the same information as a macro 'banned_parts' and its associated attribute banned_parts(), but uses a different syntax, possibly facilitating parsing and reporting names or types or location of banned parts. The following example illustrates the difference. A result is a single string in both cases, wrapped here for clarity, and shows a path in a message tree of a banned leaf node: a macro 'banned_parts' can yield: multipart/mixed | application/octet-stream,.rar,Setup1.1.rar | .exe,.exe-ms,setup.exe while a macro 'banned_parts_as_attr' yields: P=p003,L=1,M=multipart/mixed | P=p002,L=1/2,M=application/octet-stream,T=rar,N=Setup1.1.rar | P=p007,L=1/2/4,T=exe,T=exe-ms,N=setup.exe for the same banned part in a message. The single-character attribute names are unchanged from previous versions. For documentation, here is a legend: P: part's base name, i.e. a file name in a ./parts/ temporary directory L: part's location (path) in a mail tree (branch enumeration, top-down) M: MIME type as declared in MIME header fields of a message T: short part's content type according to a file(1) utility and mapped through @map_full_type_to_short_type_maps N: declared part names (none, one or more), as declared in MIME header fields or in an archive (tar, zip, ...) A: part's attributes as follows: U=undecodable, C=crypted, D=directory, S=special(device), L=link - macro 'header_field' and its alias 'HEADER' now has an optional third parameter (index), which chooses the header field in case of multiple header fields of the same name; the default (-1) is to return the last (bottommost) occurrence, as before; see README.customize for details; - added a macro 'actions_performed', which expands into a comma-separated list of words: Accepted, Relayed(Untagged), RelayedTagged, Discarded, Rejected, Bounced, NoBounce or TempFailed, followed by a mail flow direction word: Inbound, Internal, Outbound or OpenRelay. For brevity the 'RelayedUntagged' status appears in this list as 'Relayed'. Additionally, the list may include words Quarantined and Archived. For multirecipient messages it is possible that the list includes more than one combination. The purpose of this macro is to augment the bare-bones 'Passed CLEAN' or 'Blocked SPAM' in the main log entry. For this purpose the default log template now includes this macro call. If the additional information is not desired in the log, please assign a customized template to the $log_templ configuration variable. Some examples of the new log entries: Passed CLEAN {RelayedOutbound}, ... Passed CLEAN {RelayedInbound}, ... Passed CLEAN {RelayedInternal,RelayedOutbound}, ... Passed SPAMMY {RelayedTaggedInbound}, ... Blocked SPAM {RejectedInbound,Quarantined}, ... Blocked INFECTED (Mal/BredoZp-B) {DiscardedInbound,Quarantined}, ... Semantics of entries in the 'actions_performed' list corresponds to the newly added SNMP variables 1.3.6.1.4.1.15312.2.1.1.19 - .26 (with the exception that 'RelayedUntagged' counter is abbreviated in this macro as 'Relayed'). Please see their detailed description in a file AMAVIS-MIB.txt . - added a macro 'rusage', which expands to a resource usage entry as provided by a system service getrusage(2); the argument to the macro should be one of the field names in the structure rusage (see getrusage(2) man page), e.g. ru_utime, ru_stime, ru_maxrss, ru_ixrss, ru_idrss, ru_isrss, ru_minflt, ru_majflt, ru_nswap, ru_inblock, ru_oublock, ru_msgsnd, ru_msgrcv, ru_nsignals, ru_nvcsw, ru_nivcsw; the information is only provided if an optional perl module Unix::Getrusage is available; - SpamAssassin-compatible macros 'YESNO' and 'YESNOCAPS' now optionally accept two string arguments, replacing the default strings 'Yes' and 'No' in the result; - settings $enable_dkim_verification and $enable_dkim_signing are now dynamic, i.e. became members of policy banks, thus facilitating selectively enabling or disabling these features on a policy bank basis; - internal: added a message property object dkim_signwith_sd() which allows custom hooks to provide the DKIM signing code with a selector and a domain name preferred for choosing a signing key. If this information is not available the signing code will consult an external signing service if provided ($dkim_signing_service), or else use the built-in algorithm for choosing a signing key. A custom hook may provide the information as follows: $msginfo->dkim_signwith_sd( ['some_selector', 'some_domain'] ); After a successful signing, the dkim_signwith_sd will contain a pair [selector,domain] which was actually chosen for signing; - recognize and insert header fields as prepared by SpamAssassin 3.3.0 or later through its 'add_header' configuration option; some of the standard X-Spam-* header fields are still overruled by equivalent ones generated by amavisd itself, primarily to provide true per-recipient handling; header field names must still be listed in the associative array %allowed_added_header_fields in order to be inserted; overrides are configurable through %prefer_our_added_header_fields, for example: $prefer_our_added_header_fields{lc('X-Spam-Status')} = 0; - added an attribute 'log_id' to server responses in an AM.PDP protocol, allowing the client to match its request with the amavisd daemon logging; - added LDAP attributes: amavisAddrExtensionVirus, amavisAddrExtensionSpam, amavisAddrExtensionBanned, and amavisAddrExtensionBadHeader for consistency with SQL; suggested by Stefan Palme; - added LDAP attributes: amavisSpamTag3Level, amavisSpamSubjectTag3, amavisUncheckedQuarantineTo, amavisCleanQuarantineTo, amavisUncheckedLover, amavisForwardMethod, amavisSaUserConf and amavisSaUserName for consistency with SQL; - added LDAP attribute amavisDisclaimerOptions, along with its corresponding SQL field 'disclaimer_options'. It finds its way to the list of lookup tables @disclaimer_options_bysender_maps, so the replacement of the _OPTIONS_ placeholder in @altermime_args_disclaimer could be made dynamic; suggested by Quanah Gibson-Mount; - for consistencly, added LDAP attribute amavisUncheckedLover, along with its corresponding SQL field 'unchecked_lover' and a statical list of lookup tables @unchecked_lovers_maps, which appears in the %lovers_maps_by_ccat. Previously the CC_UNCHECKED entry of the %lovers_maps_by_ccat was (ab)used, and shared the @virus_lovers_maps value. Suggested by Patrick Ben Koetter; - added a variable $myprogram_name, which defaults to a program name (perl variable $0), but may be modified in a configuration file typically depending on a value of $instance_name. It is used to dynamically change a process name in $0, which shows up in a ps(1) and top(1) output on most Unix systems. Along with $syslog_ident, it offers a handy way to distinguish amavisd instances. - if running other spam scanners besides SpamAssassin through a @spam_scanners mechanism (such as DSPAM or CRM114), make header fields produced by them visible to SpamAssassin too, so that its rules can benefit from additional information. Note that in order for SpamAssassin to be able to see such header fields from other scanners, such scanners must be listed in the @spam_scanners list *before* the 'SpamAssassin' entry. Suggested by Marco. OPTIMIZATIONS - rewritten a code section on receiving SMTP/LMTP DATA, replacing perl line-by-line reads & processing by reading & processing 32 kB chunks of data at a time; as a result, data transfer rate has been increased by a factor of about 3.9 for plain text session, and by a factor of 11 for encrypted (TLS) session. Measured data rates of an SMTP DATA transfer between Postfix and amavisd on a loopback interface: No TLS (no session encryption): . amavisd receiving, old code: 8.3 MiB/s . amavisd receiving, new code: 32.3 MiB/s . amavisd sending: 18 MiB/s With TLS (encrypted session, AES256-SHA): . amavisd receiving, old code: 1.0 MiB/s . amavisd receiving, new code: 11.2 MiB/s . amavisd sending: 4.3 MiB/s - save about 6 MB of virtual memory per amavisd child process by properly deleting some larger data items from variables, known not to be reused; thanks to the insight of Perl Monks (ikegami) in: http://www.perlmonks.org/?node_id=803515 - speed up lookup_ip_acl lookups on larger lists of CIDR network addresses (like @mynetworks and @inet_acl list) by using a radix trie (Patricia Trie) representation; the patricia trie is used when a module Net::Patricia is available and a list contains more than 20 elements; minimal required version of Net::Patricia is 1.015; - avoid entering and exiting a block in most map() and grep() calls saves on opcodes, achieving a small reduction of code size and a tiny speedup; - 'use constant' for CC_* and D_* constants allows perl to inline them; OTHER - provide a workaround for a Perl 5.8.9 bug #62502, where O_WRONLY, O_APPEND and other Fcntl constants can become tainted; this is an application of the same workaround as already applied in 2.6.3, but covers two additional code sections; the bug could manifest itself as a taint problem during opening a pipe to an external mail submission problem. This only affects perl 5.8.9; the 5.8.8 and 5.10.0 are fine. Tracked down and a patch provided by Petr Rehor; - RFC 5617 now defines an "Author Domain Signature" as a valid signature in which the domain name of the DKIM signing entity, i.e., the d= tag in the DKIM-Signature header field, is the same as the domain name in the Author Address. The change came with draft-ietf-dkim-ssp-10; previously the "Author Domain Signature" was based on an 'i' tag (identity). This change is now followed by amavisd-new 2.7.0 in macro 'dkim', in evaluation of the @author_to_policy_bank_maps list, in internal attribute dkim_author_sig(), and reflected in logging. Similarly, the evaluation of @signer_reputation_maps is now based on a signing domain ('d' tag), instead of the 'i' tag as previously. The change only affects signatures where the domain name of a signing identity is a subdomain of a signing domain (not identical to the signing domain), which is rare in current practices. - updated generating and parsing of Authentication-Results headear field according to RFC 5451 and RFC 6008 - previously it followed a draft-kucherawy-sender-auth-header. This header field is now also inserted for new DKIM signatures as just-generated and inserted to a passed internal-to-internal message when it is eligible for signing; suggested by Florian Effenberger. - added a setting $myauthservid, also a member of policy banks, which controls the "authserv-id" token in the Authentication-Results header field, according to RFC 5451. Its default value is $myhostname as before. Its value must comply with the RFC 5451 syntax ("dot-atom"). Having a separate control may facilitate setups where a message is processed by amavisd more than once, e.g. for DKIM signing of a mailing list fanout messages, where the second pass should not remove an Authentication-Results header field from a first pass. - updated ARF notifications to RFC 5965 (An Extensible Format for Email Feedback Reports); the $report_format = 'arf' implementation was based on ARF draft, now it complies with RFC 5965; - tightened some sanity limits on DKIM verification to better handle mail messages with a huge number of signatures; problem reported by Tuomo Soini; - amavisd.conf: added file types ini, lib, ocx, sys, vxd to the commented-out long list of file types in $banned_filename_re, along with a commented-out list of type names for consideration: asd, asf, asx, url, vcs, wmd, wmz; - updated default @virus_name_to_spam_score_maps with new or changed entries: [ qr'^(Heuristics\.)?Phishing\.' => 0.1 ], [ qr'^Doppelstern\.(Scam4|Phishing)' => 0.1 ], [ qr'^ScamNailer\.Phish\.' => 0.1 ], [ qr'^HTML/Bankish' => 0.1 ], thank to Giampaolo Tomassoni for Heuristics.Phishing and HTML/Bankish; - when inserting a subject tag into a Subject header field, remove existing copies of the same string first to avoid subjects like "***UNCHECKED*** Fwd: ***UNCHECKED*** Re: foo bar" ; based on a patch by Thomas Arendsen Hein; - p0f-analyzer.pl: convert an 'IPv4-mapped IPv6 addresses in alternative form' to an IPv4 address, otherwise the p0f-analyzer.pl would ignore such queries, as the p0f daemon did not handle IPv6 until version 3. The 'IPv4-mapped IPv6 addresses' is returned for an IPv4 connection when TCP/IP stack is configured to allow inet6 sockets to accept inet sessions; problem reported by Vytautas Kasparavicius; - suppress generating a non-delivery notification if a SpamAssassin test DKIM_ADSP_DISCARD is hit, honouring RFC 5617; - amavisd.conf: commented-out calls to do_ascii to match defaults in the amavisd program; the uulib code (as invoked by Convert::UUlib) has a history of stability problems, seems it is causing more grief compared to the benefits it brings; - new AV entry for 'Avira for UNIX 3.x', thanks to g0rbi, Thomas Mueller, Steffen Ille, Klaus Fuerstberger and Andreas Schulze; - add three more exception cases to mercifully ignore an EBADF I/O error due to a Perl bug on line-by-line reading; - entries 'SpamAssassin' and 'SpamdClient' in the @spam_scanners list now recognize options 'mail_body_size_limit' and 'score_factor', to match their behaviour with 'DSPAM' and 'CRM114' entries; - dropped a logging level (from -1 to 2) on a warning message: INFO: dot-stuffing error (only one leading dot): ... as Postfix in a pre-queue proxy filtering setup does not do any dot-stuffing sanitation, so garbage in the DATA section as received by a Postfix smtpd service comes unchanged to a proxy filter; reported by Ralf Heidenreich, confirmed by Victor Duchovni and Wietse Venema; - use module File::Temp to create a temporary working directory, instead of using a home-brewed code; as a result, these directory names are now a bit longer; - avoid slurping the whole directory contents into memory when recursively tidying, removing, or checking a temporary directory, when purging old database files on a restart, and when preparing a list of files to be scanned; - collect a couple of random bytes from /dev/urandom (if available) at a start of the main process and at each child process birth (when our entropy pool is rather depleted), then stir our entropy pool and perl's srand() to prevent File::Temp from working with the same pseudorandom sequence in each child process; - reworked fetching random bits from entropy pool and deriving mail id from secret id (after re-reading RFC 4086); much less of the private entropy accumulator is now exposed to observers; added a new function fetch_entropy_bytes(), dropped a function fetch_entropy(); - a macro %S no longer corresponds to sender_contact, which was a relict from times of early viruses; for compatibility with existing templates it is now equivalent to %s, but should no longer be used and might be retired or re-purposed with the next version; default notification templates were adjusted accordingly - please adjust your customized templates if using them; - drop dependency on Digest::SHA1; - README.chroot: document that sa-update needs to update rules in the jail and refresh the text somewhat; thanks to Francois Rolland; CLEANING - retired often misused settings $warnvirussender and $warnspamsender (but kept marginally useful $warnbannedsender, $warnbadhsender, and their parent %warnsender_by_ccat). To bounce or reject viruses and spam use D_REJECT and D_BOUNCE settings for corresponding $final_*_destiny. It is no longer supported to both deliver (D_PASS) a virus or spam message while also sending a notification to sender. Both retired variables are still declared for compatibility with old config files, but their value is ignored. An attempt to set their value to a non-default value produces a warning. - retired a setting $syslog_priority, it was not particularly useful since the introduction of dynamic syslog priorities with amavisd-new-2.0 . The new behaviour is equivalent to a previous $syslog_priority='debug'; The variable is still declared for compatibility with old config files, but its value is ignored. An attempt to set its value to a non-default value produces a warning. - retired a setting $SYSLOG_LEVEL, it was obsoleted by amavisd-new-2.4.0; please use the setting $syslog_facility instead, defaulting to $syslog_facility='mail' . The variable $SYSLOG_LEVEL is still declared for compatibility with old config files, but its value is ignored. An attempt to set its value to a non-default value produces a warning. - renamed $DO_SYSLOG to $do_syslog, and $LOGFILE to $logfile; old names are kept as aliases for compatibility; - retired a setting $relayhost_is_client, it became obsolete with amavisd-new-2.0. Please use a '*' in place of a host IP address and port number when amavisd should pass a checked mail message back to the same host from which the request came, e.g.: $forward_method = 'smtp:*:*'; The variable is still declared for compatibility with old config files, but its value is ignored. An attempt to set its value to a non-default value produces a warning. - retired a setting $sa_timeout, the variable is still declared for backward compatibility, but has no effect. Instead, the time available for spam scanning is automatically determined from $child_timeout, taking into consideration the actual time left till the deadline; An attempt to set its value to a non-default value produces a warning. - retired a setting $sa_spam_report_header, it was obsoleted in amavisd-new-2.4.3 with the introduction of %allowed_added_header_fields. To enable insertion of X-Spam-Report header field, please use instead: $allowed_added_header_fields{lc('X-Spam-Report')} = 1; The variable is still declared for compatibility with old config files, but its value is ignored. An attempt to set its value to a non-default value produces a warning. - retired settings $sa_spam_modifies_subj and @spam_modifies_subj_maps. Disabling insertion of spam tag into a Subject header field can be achieved by turning off the corresponding entries in %subject_tag_maps_by_ccat: undef $subject_tag_maps_by_ccat{CC_SPAM()}; undef $subject_tag_maps_by_ccat{CC_SPAMMY.',1'}; undef $subject_tag_maps_by_ccat{CC_SPAMMY()}; undef $subject_tag_maps_by_ccat{CC_CLEAN.',1'}; or by emptying corresponding lists of lookup tables, e.g.: @spam_subject_tag_maps = (); @spam_subject_tag2_maps = (); @spam_subject_tag3_maps = (); or individually (by-recipient) by specifying suitable lookup tables in @spam_subject_tag_maps / @spam_subject_tag2_maps / @spam_subject_tag3_maps, either statically, or through SQL or LDAP lookups; Both settings are still declared for compatibility with old config files, but their value is ignored. An attempt to set the value of a variable $sa_spam_modifies_subj to a non-default value produces a warning. - retired a setting $insert_received_line, it was obsoleted in amavisd-new-2.4.3 with the introduction of %allowed_added_header_fields. To disable insertion of a Received header field, please use instead: $allowed_added_header_fields{lc('Received')} = 0; The variable is still declared for compatibility with old config files, but its value is ignored. An attempt to set its value to a non-default value produces a warning. - retired a setting $notify_xmailer_header, the X-Mailer header field is not inserted into notifications, as was a default. The variable is still declared for compatibility with old config files, but its value is ignored. An attempt to set its value to a non-default value produces a warning. - retired a setting $sa_auto_whitelist, it became obsolete with amavisd-new-2.1.0 and SpamAssassin 3.0.0 (released in 2004) by a 'use_auto_whitelist 1' option in local.cf . The variable is still declared for compatibility with old config files, but its value is ignored. An attempt to set its value to a non-default value produces a warning. - retired a deprecated macro 'x-mailer', use macros 'header_field' or 'useragent' instead; - removed a constant CC_TEMPFAIL, it was retired with amavisd-new-2.5.0; - renamed a configuration variable $sql_partition_tag to $partition_tag in order to reflect its more general usage outside of SQL; the old name $sql_partition_tag is retained for compatibility and is an alias for $partition_tag; - dropped compatibility of $final_*_destiny settings with old numerical values (used by versions of amavisd older than amavisd-new-20030314); - internal: retire Amavis::In::Message::client_addr_mynets, no longer in use; - internal: retire Amavis::In::Message::sender_contact, no longer in use; - internal: retire Amavis::In::Message::PerRecip::infected, no longer in use; - internal: drop a redundant argument $conn from the following subroutines: make_received_header_field, check_header_validity, defanged_mime_entity, msg_from_quarantine, check_amcl_policy, postfix_policy, add_forwarding_header_edits_common, add_forwarding_header_edits_per_recip, prepare_modified_mail, do_notify_and_quarantine, do_quarantine, save_info_preliminary, save_info_final, mail_dispatch, dispatch_from_quarantine, virus_scan, spam_scan, white_black_list, Amavis::SpamControl::{ExtProg,SpamdClient,SpamAssassin}::check As a compatibility measure, the do_quarantine() may still be called with or without the first argument $conn, its value is now ignored if present. Although the $conn argument is also redundant in calls to custom hooks (as this information is available through $msginfo->conn_obj), these calls are left unchanged for compatibility with existing custom hooks. --------------------------------------------------------------------------- May 18, 2011 amavisd-new-2.6.6 release notes This version is strictly a maintenance release, it incorporates bug fixes backported from 2.7.0-pre* series and/or posted as patches to the mailing list. BUG FIXES - amavisd-release was not sending a 'mail_file' attribute when a quarantined message was a non-compressed file in a single-level directory quarantine (not SQL-based), causing a release failure; reported by Jarno Huuskonen; - quarantining to SQL was sporadically failing, reporting some unrelated random error (like 'not available' or 'OpenSSL error: header too long'); reported by Tonio; - avoid a warning "_WARN: Use of uninitialized value in string eq at ... line 275." when an SQL-based white/black-listing is used; reported by Tonio; - wrap the sql clause SET NAMES 'utf8' so that only a warning at a log level 2 is issued if an SQL server does not understand the command (SQLite, old versions of MySQL) instead of aborting; reported by Roland Holzner; --------------------------------------------------------------------------- April 7, 2011 amavisd-new-2.6.5 release notes This version is strictly a maintenance release, it incorporates bug fixes backported from 2.7.0-pre* series and/or posted as patches to the mailing list. BUG FIXES - when a back-end MTA rejected a message, amavisd would send a non-delivery status notification, but also propagate the reject status back, which is wrong, only one or the other response would be appropriate. A fix also allows choosing either a D_REJECT, D_BOUNCE or D_DISCARD response for such a case, configurable through %final_destiny_by_ccat at a CC_MTA entry, defaulting to D_REJECT; reported by Peer Heinlein; - checking header section syntax could take excessive amounts of time in some degenerate cases of a very long header section, now fixed; - do not bypass spam checking of a bounce message when its referenced domain in Message-ID is non-local but pen pals are disabled; reported by Stefan; - removed some of the guesswork in bounce killer to prevent false positives in certain cases of forwarding a mail message as an attachment, at the expense of passing through some undesired but nonstandard bounces; (also, deal with non-delivery notifications from yahoogroups.com, and fixed one particular case of a false-positive in bounce killer (mixed/multipart with an attached full message, sent through a mailing list); - fixed a 'Zoo archive' entry in the $map_full_type_to_short_type_re list; - fixed a test for $myhostname being a FQDN to allow IDN domains (with a dash); - fixed a REPLACE hack (feature introduced in 2.6.2) on loading a policy bank; - fixed choosing the module IO::Socket::INET in ask_daemon_internal() to avoid versions of IO::Socket::INET6 older than 2.55 (2.56?) failing with "Address family not supported by protocol family" when an IPv4 address with a port number is specified for connections to a virus scanner; based on a patch by Phil Pearl (Lobbes); - do_unzip: avoid testing a version of Compress::Raw::Zlib, the module may not be loaded at all and the test would fail, resulting in inoperative zip unpacking; reported by Tuomo Soini; - when logging or quarantining to SQL, execute a clause: SET NAMES 'utf8' after connecting to a database to ensure the decoded Subject and From header fields are correctly interpreted by an SQL server as UTF-8 encoded strings. It seems the module DBD::mysql does not observe a MySQL setting for 'character_set_client' and needs an explicit SET NAMES. The problem did not affect PostgreSQL. Reported by Zhang Huangbin; - avoid LDAP lookups aborting the scan when a %d placeholder is used in a $default_ldap{base} setting and the resulting base does not exist in an LDAP schema; reported by Zhang Huangbin; - the amavisd-new 2.6.3 relaxed semantics of a number of hard links on a directory in TempDir::prepare(_dir), but left out an equivalent change necessary in TempDir::check, which is now fixed; the change only affects certain file system (like the one used on Mac OS X); - treat an empty PID file or a junk one-liner file the same as a nonexistent PID file; previously an empty PID file (e.g. after an unclean shutdown) would prevent amavisd from starting; problem reported by Michael Scheidell; - changed amavisd-release to only provide a 'quar_type' attribute in its request when it is reasonably sure of its appropriate value, otherwise leave the decision to the amavisd daemon; this solves releasing from a file-based quarantine when compression is not used and all files are at the top directory; reported by Voytek Eymont; - provide a workaround for a [perl #62048] bug affecting versions of perl older than (approx) 5.12.3, when a banning check if using rules in $banned_namepath_re and a lookup_re() could abort with an: Unwarranted "Malformed UTF-8 character" on certain tainted mail part names (with a valid UTF-8 representation); reported by Jakob Curdes; - provide a workaround for logging to syslog using an old version of Unix::Syslog which didn't prepare and keep its own copy of the 'ident' argument on a call to openlog(3); thanks to Bill Landry; OTHER - ensure compatibility with a new version 5.500 of MIME-Tools, which changed the way mime attributes content-disposition.filename and content-type.name are decoded, now properly respecting their declared encodings (character set). As a result, the declared (recommended) file names of MIME parts are now represented as native Perl character strings (Unicode), and as such may also end up in reported names of banned parts. Regular expressions in @banned_filename_maps, $banned_filename_re and $banned_namepath_re may also see these strings as native Perl characters, along with their MIME-encoded form. The change also affects interpretation of names with earlier versions of MIME-Tools, making them behave more like the 5.500. - amavisd.conf: exclude names starting with 'cid:' from matching the double extensions banning rule, avoiding false positives; - a small update to a default @virus_name_to_spam_score_maps; - the 'originating' flag is now passed on to SpamAssassin through its %suppl_attrib argument - potentially useful with current trunk version of SpamAssassin (treats originating mail submission as a MSA submission), and ignored by older versions; - some documentation updates; the RELEASE_NOTES file is now encoded as UTF-8, instead of ISO-8859-1; -------------------------------------------------------------------------------- ChangeLog: * Wed Feb 13 2013 Fedora Release Engineering - 2.8.0-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild * Fri Oct 19 2012 Robert Scheck 2.8.0-3 - Added requirements to lrzip and unzoo for unpacking * Wed Jul 18 2012 Fedora Release Engineering - 2.8.0-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild * Sun Jul 8 2012 Robert Scheck 2.8.0-1 - Upgrade to 2.8.0 * Fri Jun 29 2012 Robert Scheck 2.6.6-3 - Various minor spec file cleanups * Thu Jan 12 2012 Fedora Release Engineering - 2.6.6-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild * Sun Sep 18 2011 Steven Pritchard 2.6.6-1 - Update to 2.6.6. - Make /var/spool/amavisd g+x (BZ 548234). - %ghost /var/run/amavisd and add /etc/tmpfiles.d/amavisd-new-tmpfiles.conf (BZ 656544, 676430, 710984, 734271). - Also add /var/run/clamd.amavisd (which seems to be a bug itself). Fixes BZ 696725. * Mon Feb 7 2011 Fedora Release Engineering - 2.6.4-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ awstats-7.0-3.el6 (FEDORA-EPEL-2013-0420) Advanced Web Statistics -------------------------------------------------------------------------------- Update Information: This update fixes several cross-site scripting, SQL injection and related flaws in awredir.pl. CVE-2012-4547 -------------------------------------------------------------------------------- ChangeLog: * Thu Feb 21 2013 Petr Lautrbach 7.0-3 - fix potential XSS attacks - CVE-2012-4547 (#871159) -------------------------------------------------------------------------------- References: [ 1 ] Bug #871159 - CVE-2012-4547 awstats: potentially susceptible to XSS attacks https://bugzilla.redhat.com/show_bug.cgi?id=871159 -------------------------------------------------------------------------------- ================================================================================ drupal7-7.20-1.el6 (FEDORA-EPEL-2013-0430) An open-source content-management platform -------------------------------------------------------------------------------- Update Information: New upstream 7.20, resolves SA-CORE-2013-002 -------------------------------------------------------------------------------- ChangeLog: * Thu Feb 21 2013 Paul W. Frields - 7.20-1 - 7.20, SA-CORE-2013-002 (#913403) * Fri Jan 25 2013 Jon Ciesla - 7.19-2 - README update for cron_key, BZ 902234. -------------------------------------------------------------------------------- References: [ 1 ] Bug #913403 - drupal7-7.20 is available https://bugzilla.redhat.com/show_bug.cgi?id=913403 -------------------------------------------------------------------------------- ================================================================================ fedora-review-0.4.0-4.el6 (FEDORA-EPEL-2013-0409) Review tool for fedora rpm packages -------------------------------------------------------------------------------- Update Information: This bugfix fixes a bug with mock initialization Update to 0.4.0 and incorporate patch from Ralf Bean fixing fedora-create-review. - The deprecated JSON api has been removed. - Patch-naming check not mandated by GL is removed (#179). - New checks: * Bundled gnulib check (#53). * Run phpci static analyzer on php packages (#63). * Various scriptlet checks (#152). * Tmpfiles.d check (#156). * Bundled fonts check (#155). * Improper %_sourcedir usage test (#154). * Test that sources could be downloaded from SourceX: tag (#198) - Improved report layout (#135). - Improved console output, notably invisible yellow text fixed. (#185). - The report has got a fixed name 'review.txt'. - It's now possible to create a python plugin with some tests which becomes part of an existing group e. g., a plugin with one new php test (#182). - Improved handling of mock build failures (#79). - Make used buildroot more visible (#147). - New Guidelines update (#161). - Various internal refactoring and clean-ups: #134, #140, #145, #172 and a lot of commits... - Improved unit tests, notably for plugins. Unit tests are now packaged (#146, #163, many commits). - Roughly 20 other bugs fixed. - The deprecated JSON api has been removed. - Patch-naming check not mandated by GL is removed (#179). - New checks: * Bundled gnulib check (#53). * Run phpci static analyzer on php packages (#63). * Various scriptlet checks (#152). * Tmpfiles.d check (#156). * Bundled fonts check (#155). * Improper %_sourcedir usage test (#154). * Test that sources could be downloaded from SourceX: tag (#198) - Improved report layout (#135). - Improved console output, notably invisible yellow text fixed. (#185). - The report has got a fixed name 'review.txt'. - It's now possible to create a python plugin with some tests which becomes part of an existing group e. g., a plugin with one new php test (#182). - Improved handling of mock build failures (#79). - Make used buildroot more visible (#147). - New Guidelines update (#161). - Various internal refactoring and clean-ups: #134, #140, #145, #172 and a lot of commits... - Improved unit tests, notably for plugins. Unit tests are now packaged (#146, #163, many commits). - Roughly 20 other bugs fixed. - The deprecated JSON api has been removed. - Patch-naming check not mandated by GL is removed (#179). - New checks: * Bundled gnulib check (#53). * Run phpci static analyzer on php packages (#63). * Various scriptlet checks (#152). * Tmpfiles.d check (#156). * Bundled fonts check (#155). * Improper %_sourcedir usage test (#154). * Test that sources could be downloaded from SourceX: tag (#198) - Improved report layout (#135). - Improved console output, notably invisible yellow text fixed. (#185). - The report has got a fixed name 'review.txt'. - It's now possible to create a python plugin with some tests which becomes part of an existing group e. g., a plugin with one new php test (#182). - Improved handling of mock build failures (#79). - Make used buildroot more visible (#147). - New Guidelines update (#161). - Various internal refactoring and clean-ups: #134, #140, #145, #172 and a lot of commits... - Improved unit tests, notably for plugins. Unit tests are now packaged (#146, #163, many commits). - Roughly 20 other bugs fixed. This fixes problems with large docs check and incorrect handling of some package names. A small addition is also REVIEW_NO_MOCKGROUP_TEST which turns off verification of mock configuration that can be useful in certain non-standard configurations. Update to 0.4.0 and incorporate patch from Ralf Bean fixing fedora-create-review. - The deprecated JSON api has been removed. - Patch-naming check not mandated by GL is removed (#179). - New checks: * Bundled gnulib check (#53). * Run phpci static analyzer on php packages (#63). * Various scriptlet checks (#152). * Tmpfiles.d check (#156). * Bundled fonts check (#155). * Improper %_sourcedir usage test (#154). * Test that sources could be downloaded from SourceX: tag (#198) - Improved report layout (#135). - Improved console output, notably invisible yellow text fixed. (#185). - The report has got a fixed name 'review.txt'. - It's now possible to create a python plugin with some tests which becomes part of an existing group e. g., a plugin with one new php test (#182). - Improved handling of mock build failures (#79). - Make used buildroot more visible (#147). - New Guidelines update (#161). - Various internal refactoring and clean-ups: #134, #140, #145, #172 and a lot of commits... - Improved unit tests, notably for plugins. Unit tests are now packaged (#146, #163, many commits). - Roughly 20 other bugs fixed. - The deprecated JSON api has been removed. - Patch-naming check not mandated by GL is removed (#179). - New checks: * Bundled gnulib check (#53). * Run phpci static analyzer on php packages (#63). * Various scriptlet checks (#152). * Tmpfiles.d check (#156). * Bundled fonts check (#155). * Improper %_sourcedir usage test (#154). * Test that sources could be downloaded from SourceX: tag (#198) - Improved report layout (#135). - Improved console output, notably invisible yellow text fixed. (#185). - The report has got a fixed name 'review.txt'. - It's now possible to create a python plugin with some tests which becomes part of an existing group e. g., a plugin with one new php test (#182). - Improved handling of mock build failures (#79). - Make used buildroot more visible (#147). - New Guidelines update (#161). - Various internal refactoring and clean-ups: #134, #140, #145, #172 and a lot of commits... - Improved unit tests, notably for plugins. Unit tests are now packaged (#146, #163, many commits). - Roughly 20 other bugs fixed. - The deprecated JSON api has been removed. - Patch-naming check not mandated by GL is removed (#179). - New checks: * Bundled gnulib check (#53). * Run phpci static analyzer on php packages (#63). * Various scriptlet checks (#152). * Tmpfiles.d check (#156). * Bundled fonts check (#155). * Improper %_sourcedir usage test (#154). * Test that sources could be downloaded from SourceX: tag (#198) - Improved report layout (#135). - Improved console output, notably invisible yellow text fixed. (#185). - The report has got a fixed name 'review.txt'. - It's now possible to create a python plugin with some tests which becomes part of an existing group e. g., a plugin with one new php test (#182). - Improved handling of mock build failures (#79). - Make used buildroot more visible (#147). - New Guidelines update (#161). - Various internal refactoring and clean-ups: #134, #140, #145, #172 and a lot of commits... - Improved unit tests, notably for plugins. Unit tests are now packaged (#146, #163, many commits). - Roughly 20 other bugs fixed. This fixes problems with large docs check and incorrect handling of some package names. A small addition is also REVIEW_NO_MOCKGROUP_TEST which turns off verification of mock configuration that can be useful in certain non-standard configurations. Update to 0.4.0 and incorporate patch from Ralf Bean fixing fedora-create-review. - The deprecated JSON api has been removed. - Patch-naming check not mandated by GL is removed (#179). - New checks: * Bundled gnulib check (#53). * Run phpci static analyzer on php packages (#63). * Various scriptlet checks (#152). * Tmpfiles.d check (#156). * Bundled fonts check (#155). * Improper %_sourcedir usage test (#154). * Test that sources could be downloaded from SourceX: tag (#198) - Improved report layout (#135). - Improved console output, notably invisible yellow text fixed. (#185). - The report has got a fixed name 'review.txt'. - It's now possible to create a python plugin with some tests which becomes part of an existing group e. g., a plugin with one new php test (#182). - Improved handling of mock build failures (#79). - Make used buildroot more visible (#147). - New Guidelines update (#161). - Various internal refactoring and clean-ups: #134, #140, #145, #172 and a lot of commits... - Improved unit tests, notably for plugins. Unit tests are now packaged (#146, #163, many commits). - Roughly 20 other bugs fixed. - The deprecated JSON api has been removed. - Patch-naming check not mandated by GL is removed (#179). - New checks: * Bundled gnulib check (#53). * Run phpci static analyzer on php packages (#63). * Various scriptlet checks (#152). * Tmpfiles.d check (#156). * Bundled fonts check (#155). * Improper %_sourcedir usage test (#154). * Test that sources could be downloaded from SourceX: tag (#198) - Improved report layout (#135). - Improved console output, notably invisible yellow text fixed. (#185). - The report has got a fixed name 'review.txt'. - It's now possible to create a python plugin with some tests which becomes part of an existing group e. g., a plugin with one new php test (#182). - Improved handling of mock build failures (#79). - Make used buildroot more visible (#147). - New Guidelines update (#161). - Various internal refactoring and clean-ups: #134, #140, #145, #172 and a lot of commits... - Improved unit tests, notably for plugins. Unit tests are now packaged (#146, #163, many commits). - Roughly 20 other bugs fixed. - The deprecated JSON api has been removed. - Patch-naming check not mandated by GL is removed (#179). - New checks: * Bundled gnulib check (#53). * Run phpci static analyzer on php packages (#63). * Various scriptlet checks (#152). * Tmpfiles.d check (#156). * Bundled fonts check (#155). * Improper %_sourcedir usage test (#154). * Test that sources could be downloaded from SourceX: tag (#198) - Improved report layout (#135). - Improved console output, notably invisible yellow text fixed. (#185). - The report has got a fixed name 'review.txt'. - It's now possible to create a python plugin with some tests which becomes part of an existing group e. g., a plugin with one new php test (#182). - Improved handling of mock build failures (#79). - Make used buildroot more visible (#147). - New Guidelines update (#161). - Various internal refactoring and clean-ups: #134, #140, #145, #172 and a lot of commits... - Improved unit tests, notably for plugins. Unit tests are now packaged (#146, #163, many commits). - Roughly 20 other bugs fixed. -------------------------------------------------------------------------------- ChangeLog: * Tue Feb 19 2013 Stanislav Ochotnicky - 0.4.0-4 - Fix rhbz912182 - Reorganize patches a bit * Fri Feb 8 2013 Stanislav Ochotnicky - 0.4.0-3 - Fix rhbz908830 and rhbz908830 - Add patch for REVIEW_NO_MOCKGROUP_TEST environment variable - Remove old patch * Mon Feb 4 2013 Pierre-Yves Chibon - 0.4.0-2 - Add Patch0 (0001-Fix-syntax-error.patch) from Ralph Bean fixing fedora-create-review * Mon Jan 28 2013 Stanislav Ochotnicky - 0.4.0-1 - Updating to upstream 0.4.0 -------------------------------------------------------------------------------- References: [ 1 ] Bug #912182 - ERROR: chroot /var/lib/mock/fedora-rawhide-x86_64/root/ not initialized! https://bugzilla.redhat.com/show_bug.cgi?id=912182 [ 2 ] Bug #889087 - Unreadable colors in terminal with white background https://bugzilla.redhat.com/show_bug.cgi?id=889087 [ 3 ] Bug #881337 - AttributeError: 'GemCheckRequiresRubygems' object has no attribute 'spec_packages' https://bugzilla.redhat.com/show_bug.cgi?id=881337 [ 4 ] Bug #872898 - other Fatal error: Exception down the road https://bugzilla.redhat.com/show_bug.cgi?id=872898 [ 5 ] Bug #845651 - AttributeError: 'Source' object has no attribute 'filename' https://bugzilla.redhat.com/show_bug.cgi?id=845651 [ 6 ] Bug #908830 - check-large-docs.sh doesn't properly skip -doc subpackages https://bugzilla.redhat.com/show_bug.cgi?id=908830 -------------------------------------------------------------------------------- ================================================================================ gxine-0.5.905-1.el6 (FEDORA-EPEL-2013-0431) GTK frontend for the xine multimedia library -------------------------------------------------------------------------------- Update Information: Make gxine work again by reverting to 0.5.905, which is the latest version that works with EPEL6 JS offerings (libjs and mozjs). Bugfixes backported. -------------------------------------------------------------------------------- ================================================================================ imapsync-1.525-1.el6 (FEDORA-EPEL-2013-0421) Tool to migrate email between IMAP servers -------------------------------------------------------------------------------- Update Information: Upgrade to 1.525 -------------------------------------------------------------------------------- ChangeLog: * Wed Feb 20 2013 Nick Bebout - 1.525-1 - Upgrade to 1.525 -------------------------------------------------------------------------------- ================================================================================ latex2rtf-2.3.2-1.el6 (FEDORA-EPEL-2013-0426) LaTeX to RTF converter that handles equations, figures, and cross-references -------------------------------------------------------------------------------- Update Information: Update to newest stable release. -------------------------------------------------------------------------------- ChangeLog: * Fri Feb 15 2013 Susi Lehtola - 2.3.2-1 - Update to 2.3.2. * Thu Feb 14 2013 Fedora Release Engineering - 2.3.1-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #911531 - latex2rtf-2.3.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=911531 -------------------------------------------------------------------------------- ================================================================================ netcdf4-python-1.0.2-1.el6 (FEDORA-EPEL-2013-0414) Python/numpy interface to netCDF -------------------------------------------------------------------------------- Update Information: - Update to 1.0.2 (http://netcdf4-python.googlecode.com/svn/trunk/Changelog) - Remove bundled ordereddict (Bug #913528), require it on EL6 -------------------------------------------------------------------------------- ChangeLog: * Thu Feb 21 2013 Orion Poplawski - 1.0.2-1 - Update to 1.0.2 - Remove bundled ordereddict (Bug #913528), require it on EL6 - Run tests * Thu Feb 14 2013 Fedora Release Engineering - 1.0-3.fix1 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ nginx-1.0.15-4.el6 (FEDORA-EPEL-2013-0423) A high performance web server and reverse proxy server -------------------------------------------------------------------------------- Update Information: Make sure nginx directories are not world readable -------------------------------------------------------------------------------- ChangeLog: * Fri Feb 22 2013 Jamie Nguyen - 1.0.15-4 - make sure nginx directories are not world readable (#913734, #913736) -------------------------------------------------------------------------------- References: [ 1 ] Bug #913734 - CVE-2013-0337 nginx: world-readable log files https://bugzilla.redhat.com/show_bug.cgi?id=913734 -------------------------------------------------------------------------------- ================================================================================ openstack-packstack-2012.2.2-1.0.dev408.el6 (FEDORA-EPEL-2013-0415) Openstack Install Utility -------------------------------------------------------------------------------- Update Information: Here is where you give an explanation of your update. Here is where you give an explanation of your update. Here is where you give an explanation of your update. Here is where you give an explanation of your update. Here is where you give an explanation of your update. Here is where you give an explanation of your update. -------------------------------------------------------------------------------- References: [ 1 ] Bug #905083 - Endless loop if scp is missing on nodes https://bugzilla.redhat.com/show_bug.cgi?id=905083 [ 2 ] Bug #906254 - packstack will fail if ntpd is running while ntpdate is executed https://bugzilla.redhat.com/show_bug.cgi?id=906254 [ 3 ] Bug #906269 - Please support Scientific Linux https://bugzilla.redhat.com/show_bug.cgi?id=906269 [ 4 ] Bug #909111 - python-keystone dependency is missing https://bugzilla.redhat.com/show_bug.cgi?id=909111 -------------------------------------------------------------------------------- ================================================================================ packagedb-cli-1.4.0-1.el6 (FEDORA-EPEL-2013-0418) A CLI for pkgdb -------------------------------------------------------------------------------- Update Information: Update to 1.4.0 -------------------------------------------------------------------------------- ChangeLog: * Thu Feb 21 2013 Pierre-Yves Chibon - 1.4.0-1 - Update to 1.4.0 * Wed Jan 23 2013 Pierre-Yves Chibon - 1.3.0-1 - Update to 1.3.0 -------------------------------------------------------------------------------- ================================================================================ python-django-extensions-1.0.3-2.el6 (FEDORA-EPEL-2013-0416) Extensions for Django -------------------------------------------------------------------------------- Update Information: New package. -------------------------------------------------------------------------------- References: [ 1 ] Bug #907538 - Review Request: python-django-extensions - extensions for Django https://bugzilla.redhat.com/show_bug.cgi?id=907538 -------------------------------------------------------------------------------- ================================================================================ python-djblets-0.6.28-1.el6 (FEDORA-EPEL-2013-0411) A collection of useful classes and functions for Django -------------------------------------------------------------------------------- Update Information: After installing this update (as with all ReviewBoard updates) you must run "rb-site upgrade /path/to/reviewboard" - Security Updates: * We now require Django 1.3.7, which fixes a few security vulnerabilities - Web API Changes: * Added API support for querying and manipulating default reviewers * Repositories deleted through the Web API are now only archived if they have any associated review requests - Bug Fixes: * Fixed an HTML escaping issue when listing filenames in the diff viewer * Fixed an occasional crash when viewing a diff when displaying a function or class header on the left-hand side but when there was none on the right-hand side * We try harder now to set the PYTHONPATH for subprocesses, which should fix some issues fetching files over Subversion * Fixed default Apache configuration files to be explicit in enabling FollowSymLinks * Fixed fetching files with FedoraHosted * SMTP servers saved with additional whitespace will now have that whitespace stripped, in order to prevent lookup failures * Fixed the link to the PyLucene documentation in the General Settings page * Fixed the review ID column when using Local Sites * Fixed the starred public review count for new users when using Local Sites -------------------------------------------------------------------------------- ChangeLog: * Thu Feb 21 2013 Stephen Gallagher - 0.6.28-1 - New upstream release 0.6.28 - General: * Require Django 1.3.7 as a minimum - djblets.datagrid: * Fixed a possible XSS exploit in datagrids * Failures during rendering the datagrid now results in a traceback - djblets.util.fields: * CounterField was failing to use the initializers for brand new instances of a model, defaulting to None instead -------------------------------------------------------------------------------- ================================================================================ python-elfdata-0.5-2.el6 (FEDORA-EPEL-2013-0419) Python wrapper to get ELF data -------------------------------------------------------------------------------- Update Information: initial build of new package -------------------------------------------------------------------------------- References: [ 1 ] Bug #885120 - Review Request: python-elfdata - Python wrapper to get ELF data https://bugzilla.redhat.com/show_bug.cgi?id=885120 -------------------------------------------------------------------------------- ================================================================================ seamonkey-2.16-1.el6 (FEDORA-EPEL-2013-0410) Web browser, e-mail, news, IRC client, HTML editor -------------------------------------------------------------------------------- Update Information: Update to 2.16 Fix CVE-2013-0765, CVE-2013-{0772-0784} -------------------------------------------------------------------------------- ChangeLog: * Fri Feb 22 2013 Dmitry Butskoy 2.16-1 - update to 2.16 - fix patch to allow build with system's nspr-4.9.2 instead of nspr-4.9.4 - fix build langpacks -------------------------------------------------------------------------------- References: [ 1 ] Bug #914551 - seamonkey-2.16 is available https://bugzilla.redhat.com/show_bug.cgi?id=914551 -------------------------------------------------------------------------------- ================================================================================ sks-1.1.4-1.el6 (FEDORA-EPEL-2013-0422) Synchronizing Key Server -------------------------------------------------------------------------------- Update Information: Upgrade to 1.1.4 -------------------------------------------------------------------------------- ChangeLog: * Wed Feb 20 2013 Nick Bebout - 1.1.4-1 - Upgrade to 1.1.4 * Wed Feb 20 2013 Nick Bebout - 1.1.3-5 - Fix broken build * Fri Feb 15 2013 Fedora Release Engineering - 1.1.3-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild * Fri Jul 27 2012 Fedora Release Engineering - 1.1.3-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild * Wed May 23 2012 Peter Robinson - 1.1.3-2 - Fix ARM arch definition, update spec -------------------------------------------------------------------------------- ================================================================================ will-crash-0.3-1.el6 (FEDORA-EPEL-2013-0429) Set of crashing executables written in various languages -------------------------------------------------------------------------------- Update Information: Version bump. -------------------------------------------------------------------------------- ChangeLog: * Thu Feb 21 2013 Richard Marko - 0.3-1 - Version bump * Fri Feb 15 2013 Fedora Release Engineering - 0.2-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ wordpress-plugin-bad-behavior-2.2.13-1.el6 (FEDORA-EPEL-2013-0412) Bad Behavior plugin for WordPress -------------------------------------------------------------------------------- Update Information: Upgrade to 2.2.13 -------------------------------------------------------------------------------- ChangeLog: * Wed Feb 20 2013 Nick Bebout - 2.2.13-1 - Upgrade to 2.2.13 * Fri Feb 15 2013 Fedora Release Engineering - 2.0.42-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild * Sun Jul 22 2012 Fedora Release Engineering - 2.0.42-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild * Sat Jan 14 2012 Fedora Release Engineering - 2.0.42-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #903859 - Plugin is out of date https://bugzilla.redhat.com/show_bug.cgi?id=903859 -------------------------------------------------------------------------------- From paul at city-fan.org Sat Feb 23 10:55:25 2013 From: paul at city-fan.org (Paul Howarth) Date: Sat, 23 Feb 2013 10:55:25 +0000 Subject: 6.4 overlaps In-Reply-To: References: <20130221092127.4c61c8bf@jelerak.scrye.com> <20130221172433.55e3b38a@jelerak.scrye.com> Message-ID: <20130223105525.0f47b2db@zion.intra.city-fan.org> On Thu, 21 Feb 2013 22:43:50 -0600 inode0 wrote: > On Thu, Feb 21, 2013 at 6:24 PM, Kevin Fenzi wrote: > > I've now marked these dead.package and blocked them in epel6. > > This bz has been sitting around for over 4 months now and is the only > obvious remaining case where an epel package stomps on a base RHEL6 > package - perhaps someone can clean it up now too? > > https://bugzilla.redhat.com/show_bug.cgi?id=867669 > > The following packages in epel currently have the same version as the > same package in RHEL6 which can and does cause issues when the RHEL6 > package isn't installed already. New installs and dependencies pull in > the epel versions in a "defaultish" configuration. I don't see what > purpose they really serve being in epel so if some of them can be > removed that would be swell too. > > a2ps > emacs-a2ps > emacs-a2ps-el > html2ps > libart_lgpl > lzop > perl-B-Keywords > perl-Class-Accessor > perl-Class-Data-Inheritable > perl-Class-Trigger > perl-Devel-Cycle > perl-Email-Date-Format > perl-Exception-Class > perl-File-Copy-Recursive > perl-Font-AFM > perl-HTML-Format > perl-Locale-PO > perl-MIME-Lite > perl-MIME-Types > perl-Module-Find > perl-Net-SMTP-SSL > perl-PadWalker > perl-Perl-Critic > perl-Pod-Spell > perl-String-Format > perl-Syntax-Highlight-Engine-Kate > perl-Test-Memory-Cycle > perl-Test-Perl-Critic > perl-UNIVERSAL-can > perl-UNIVERSAL-isa > perl-XML-TokeParser > perl-XML-Writer > ruby-shadow > scons > xhtml2ps Several of those perl packages are mine, dating back to the RHEL 6 beta, when we needed them for full arch support. What we did at the time was to rebuild the exact same package as RHEL to put in EPEL. I appreciate that that's not current policy and we'll do it differently for EPEL-7. I'm sure I've suggested this before but I don't see why the epel-release package can't add a "cost" of >1000 (e.g. 1001) to the epel repos so that identical packages would always be picked up from RHEL in preference to EPEL. Paul. From wolfy at nobugconsulting.ro Sat Feb 23 11:34:47 2013 From: wolfy at nobugconsulting.ro (Manuel Wolfshant) Date: Sat, 23 Feb 2013 13:34:47 +0200 Subject: 6.4 overlaps In-Reply-To: <20130223105525.0f47b2db@zion.intra.city-fan.org> References: <20130221092127.4c61c8bf@jelerak.scrye.com> <20130221172433.55e3b38a@jelerak.scrye.com> <20130223105525.0f47b2db@zion.intra.city-fan.org> Message-ID: <5128A957.3020807@nobugconsulting.ro> On 02/23/2013 12:55 PM, Paul Howarth wrote: > > I'm sure I've suggested this before but I don't see why the > epel-release package can't add a "cost" of>1000 (e.g. 1001) to the > epel repos so that identical packages would always be picked up from > RHEL in preference to EPEL. > > Paul. > +1 to that. I've always thought that relying on cost/priorities to make 3rd party repos less preferable would be a good idea. From updates at fedoraproject.org Sat Feb 23 20:44:13 2013 From: updates at fedoraproject.org (updates at fedoraproject.org) Date: Sat, 23 Feb 2013 20:44:13 +0000 Subject: Fedora EPEL 6 updates-testing report Message-ID: <20130223204413.C08D92129F@bastion01.phx2.fedoraproject.org> The following Fedora EPEL 6 Security updates need testing: Age URL 495 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2011-4701/supybot-gribble-0.83.4.1-10.el6 307 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5620/bugzilla-3.4.14-2.el6 230 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-6348/bcfg2-1.2.3-1.el6 84 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-13610/drupal6-ctools-1.10-1.el6 32 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0123/python-tw2-jquery-2.0.3-5.el6 17 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0267/mediawiki119-1.19.3-3.el6 14 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0298/roundcubemail-0.8.5-1.el6 11 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0233/wordpress-3.5.1-2.el6 8 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0376/openconnect-4.08-1.el6 3 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0405/bitlbee-3.2-1.el6 1 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0417/Django14-1.4.5-1.el6 1 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0420/awstats-7.0-3.el6 1 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0430/drupal7-7.20-1.el6 1 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0423/nginx-1.0.15-4.el6 1 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0410/seamonkey-2.16-1.el6 The following builds have been pushed to Fedora EPEL 6 updates-testing phpMyAdmin-3.5.7-1.el6 torsocks-1.3-1.el6 Details about builds: ================================================================================ phpMyAdmin-3.5.7-1.el6 (FEDORA-EPEL-2013-0434) Handle the administration of MySQL over the World Wide Web -------------------------------------------------------------------------------- Update Information: phpMyAdmin 3.5.7.0 (2013-02-15) =============================== - [core] Problem with backslash in enum fields - [bug] Missing server_processlist.php - [bug] Safari: white page - [bug] Correct detection of the Chrome browser -------------------------------------------------------------------------------- ChangeLog: * Sat Feb 23 2013 Robert Scheck 3.5.7-1 - Upgrade to 3.5.7 (#912097) -------------------------------------------------------------------------------- References: [ 1 ] Bug #912097 - phpMyAdmin-3.5.7 is available https://bugzilla.redhat.com/show_bug.cgi?id=912097 -------------------------------------------------------------------------------- ================================================================================ torsocks-1.3-1.el6 (FEDORA-EPEL-2013-0433) Use SOCKS-friendly applications with Tor -------------------------------------------------------------------------------- Update Information: Update to upstream release 1.3 -------------------------------------------------------------------------------- ChangeLog: * Sat Feb 23 2013 Jamie Nguyen - 1.3-1 - update to upstream release 1.3 * Fri Feb 15 2013 Fedora Release Engineering - 1.2-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild -------------------------------------------------------------------------------- From updates at fedoraproject.org Sat Feb 23 20:44:14 2013 From: updates at fedoraproject.org (updates at fedoraproject.org) Date: Sat, 23 Feb 2013 20:44:14 +0000 Subject: Fedora EPEL 5 updates-testing report Message-ID: <20130223204414.C48E0212B8@bastion01.phx2.fedoraproject.org> The following Fedora EPEL 5 Security updates need testing: Age URL 307 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5630/bugzilla-3.2.10-5.el5 202 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-6608/Django-1.1.4-2.el5 84 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-13612/drupal6-ctools-1.10-1.el5 11 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0237/wordpress-3.5.1-2.el5 8 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0366/openconnect-4.08-1.el5 3 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0400/bitlbee-3.2-1.el5 1 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0425/nginx-0.8.55-3.el5 1 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0428/drupal7-7.20-1.el5 The following builds have been pushed to Fedora EPEL 5 updates-testing boost141-1.41.0-3.el5 phpMyAdmin3-3.5.7-1.el5 Details about builds: ================================================================================ boost141-1.41.0-3.el5 (FEDORA-EPEL-2013-0432) The free peer-reviewed portable C++ source libraries -------------------------------------------------------------------------------- Update Information: - Build with -fno-strict-aliasing due to the sheer amount of warnings (backported from boost-1.41.0-11.1, related: #723503) - Add an upstream patch that fixes computation of CRC in zlib streams (backported from boost-1.41.0-11.1, resolves: #723503) - Add an upstream patch to fix exceptions on RHEL 5.9 (#894072) -------------------------------------------------------------------------------- ChangeLog: * Sat Feb 23 2013 Robert Scheck 1.41.0-3 - Build with -fno-strict-aliasing due to the sheer amount of warnings (backported from boost-1.41.0-11.1, related: #723503) - Add an upstream patch that fixes computation of CRC in zlib streams (backported from boost-1.41.0-11.1, resolves: #723503) - Add an upstream patch to fix exceptions on RHEL 5.9 (#894072) -------------------------------------------------------------------------------- References: [ 1 ] Bug #723503 - [BUG] RHEL6 boost, CRC not correctly computed on x86_64 during decompression of gzip archive https://bugzilla.redhat.com/show_bug.cgi?id=723503 [ 2 ] Bug #894072 - boost exceptions broken on el5 https://bugzilla.redhat.com/show_bug.cgi?id=894072 -------------------------------------------------------------------------------- ================================================================================ phpMyAdmin3-3.5.7-1.el5 (FEDORA-EPEL-2013-0435) Handle the administration of MySQL over the World Wide Web -------------------------------------------------------------------------------- Update Information: phpMyAdmin 3.5.7.0 (2013-02-15) =============================== - [core] Problem with backslash in enum fields - [bug] Missing server_processlist.php - [bug] Safari: white page - [bug] Correct detection of the Chrome browser -------------------------------------------------------------------------------- ChangeLog: * Sat Feb 23 2013 Robert Scheck 3.5.7-1 - Upgrade to 3.5.7 (#912097) -------------------------------------------------------------------------------- References: [ 1 ] Bug #912097 - phpMyAdmin-3.5.7 is available https://bugzilla.redhat.com/show_bug.cgi?id=912097 -------------------------------------------------------------------------------- From cmadams at hiwaay.net Sat Feb 23 20:49:59 2013 From: cmadams at hiwaay.net (Chris Adams) Date: Sat, 23 Feb 2013 14:49:59 -0600 Subject: 6.4 overlaps In-Reply-To: <20130223105525.0f47b2db@zion.intra.city-fan.org> References: <20130221092127.4c61c8bf@jelerak.scrye.com> <20130221172433.55e3b38a@jelerak.scrye.com> <20130223105525.0f47b2db@zion.intra.city-fan.org> Message-ID: <20130223204959.GA9382@hiwaay.net> Once upon a time, Paul Howarth said: > Several of those perl packages are mine, dating back to the RHEL 6 > beta, when we needed them for full arch support. What we did at the > time was to rebuild the exact same package as RHEL to put in EPEL. I > appreciate that that's not current policy and we'll do it differently > for EPEL-7. I think it is still current policy; as another follow-up to that package list said, it needed to be checked for exactly what you said. > I'm sure I've suggested this before but I don't see why the > epel-release package can't add a "cost" of >1000 (e.g. 1001) to the > epel repos so that identical packages would always be picked up from > RHEL in preference to EPEL. That should be looked at as well, but there's no point in maintaining a package in EPEL that won't ever be used. -- Chris Adams Systems and Network Administrator - HiWAAY Internet Services I don't speak for anybody but myself - that's enough trouble. From paul at city-fan.org Sat Feb 23 21:53:41 2013 From: paul at city-fan.org (Paul Howarth) Date: Sat, 23 Feb 2013 21:53:41 +0000 Subject: 6.4 overlaps In-Reply-To: <20130223204959.GA9382@hiwaay.net> References: <20130221092127.4c61c8bf@jelerak.scrye.com> <20130221172433.55e3b38a@jelerak.scrye.com> <20130223105525.0f47b2db@zion.intra.city-fan.org> <20130223204959.GA9382@hiwaay.net> Message-ID: <20130223215341.38b6c4bb@zion.intra.city-fan.org> On Sat, 23 Feb 2013 14:49:59 -0600 Chris Adams wrote: > Once upon a time, Paul Howarth said: > > Several of those perl packages are mine, dating back to the RHEL 6 > > beta, when we needed them for full arch support. What we did at the > > time was to rebuild the exact same package as RHEL to put in EPEL. I > > appreciate that that's not current policy and we'll do it > > differently for EPEL-7. > > I think it is still current policy; as another follow-up to that > package list said, it needed to be checked for exactly what you said. > > > I'm sure I've suggested this before but I don't see why the > > epel-release package can't add a "cost" of >1000 (e.g. 1001) to the > > epel repos so that identical packages would always be picked up from > > RHEL in preference to EPEL. > > That should be looked at as well, but there's no point in maintaining > a package in EPEL that won't ever be used. It's not that they won't ever be used; certainly for the perl modules that I did, they weren't available for ppc so that's why they got built. Paul. From inode0 at gmail.com Sat Feb 23 22:19:44 2013 From: inode0 at gmail.com (inode0) Date: Sat, 23 Feb 2013 16:19:44 -0600 Subject: 6.4 overlaps In-Reply-To: <20130223215341.38b6c4bb@zion.intra.city-fan.org> References: <20130221092127.4c61c8bf@jelerak.scrye.com> <20130221172433.55e3b38a@jelerak.scrye.com> <20130223105525.0f47b2db@zion.intra.city-fan.org> <20130223204959.GA9382@hiwaay.net> <20130223215341.38b6c4bb@zion.intra.city-fan.org> Message-ID: On Sat, Feb 23, 2013 at 3:53 PM, Paul Howarth wrote: > On Sat, 23 Feb 2013 14:49:59 -0600 > Chris Adams wrote: > >> Once upon a time, Paul Howarth said: >> > Several of those perl packages are mine, dating back to the RHEL 6 >> > beta, when we needed them for full arch support. What we did at the >> > time was to rebuild the exact same package as RHEL to put in EPEL. I >> > appreciate that that's not current policy and we'll do it >> > differently for EPEL-7. >> >> I think it is still current policy; as another follow-up to that >> package list said, it needed to be checked for exactly what you said. >> >> > I'm sure I've suggested this before but I don't see why the >> > epel-release package can't add a "cost" of >1000 (e.g. 1001) to the >> > epel repos so that identical packages would always be picked up from >> > RHEL in preference to EPEL. >> >> That should be looked at as well, but there's no point in maintaining >> a package in EPEL that won't ever be used. > > It's not that they won't ever be used; certainly for the perl modules > that I did, they weren't available for ppc so that's why they got built. Your situation probably explains most of the two large groups where either we see the same version or we see a lower version lingering in EPEL. Why not generate these lists and exclude the packages in question from the metadata built for architectures where they are included in RHEL? John From kevin at scrye.com Mon Feb 25 20:37:35 2013 From: kevin at scrye.com (Kevin Fenzi) Date: Mon, 25 Feb 2013 13:37:35 -0700 Subject: 6.4 overlaps In-Reply-To: References: <20130221092127.4c61c8bf@jelerak.scrye.com> <20130221172433.55e3b38a@jelerak.scrye.com> <20130223105525.0f47b2db@zion.intra.city-fan.org> <20130223204959.GA9382@hiwaay.net> <20130223215341.38b6c4bb@zion.intra.city-fan.org> Message-ID: <20130225133735.088ec265@jelerak.scrye.com> On Sat, 23 Feb 2013 16:19:44 -0600 inode0 wrote: > > Your situation probably explains most of the two large groups where > either we see the same version or we see a lower version lingering in > EPEL. > > Why not generate these lists and exclude the packages in question from > the metadata built for architectures where they are included in RHEL? Yeah, I suppose we could hard code such a list into mash. I don't think the mash maintainers have time/desire to do this. Would anyone else be willing to look into it? kevin -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 836 bytes Desc: not available URL: From updates at fedoraproject.org Mon Feb 25 18:34:47 2013 From: updates at fedoraproject.org (updates at fedoraproject.org) Date: Mon, 25 Feb 2013 18:34:47 +0000 Subject: Fedora EPEL 5 updates-testing report Message-ID: <20130225183447.88EC120AE7@bastion01.phx2.fedoraproject.org> The following Fedora EPEL 5 Security updates need testing: Age URL 309 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5630/bugzilla-3.2.10-5.el5 204 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-6608/Django-1.1.4-2.el5 86 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-13612/drupal6-ctools-1.10-1.el5 12 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0237/wordpress-3.5.1-2.el5 9 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0366/openconnect-4.08-1.el5 5 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0400/bitlbee-3.2-1.el5 2 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0425/nginx-0.8.55-3.el5 2 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0428/drupal7-7.20-1.el5 The following builds have been pushed to Fedora EPEL 5 updates-testing cups-bjnp-1.2.1-1.el5 drupal7-token-1.5-1.el5 globus-ftp-control-4.5-1.el5 globus-gridftp-server-6.19-1.el5 globus-gridftp-server-control-2.8-1.el5 globus-gss-assist-8.7-1.el5 globus-io-9.4-1.el5 gxine-0.5.11-18.el5 Details about builds: ================================================================================ cups-bjnp-1.2.1-1.el5 (FEDORA-EPEL-2013-0438) CUPS backend for the Canon BJNP network printers -------------------------------------------------------------------------------- Update Information: Added IPv6 support, fixed unable to read backchannel bug -------------------------------------------------------------------------------- ChangeLog: * Sat Feb 23 2013 Louis Lagendijk - 1.2.1-1 New upstream release. Fixes hang with MX270 and possibly other printers (bug introduced with version 1.1) * Wed Feb 13 2013 Fedora Release Engineering - 1.2-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild * Tue Nov 27 2012 Louis Lagendijk - 1.2-1 - new upstream release 1.2, fixes compilation error on EL6 * Sat Sep 29 2012 Louis Lagendijk - 1.1-1 - New upstream release 1.1 - Fixes "Failed to read side channel" error message - Supports printing over IPv6 * Wed Jul 18 2012 Fedora Release Engineering - 1.0-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild * Fri Jan 13 2012 Fedora Release Engineering - 1.0-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ drupal7-token-1.5-1.el5 (FEDORA-EPEL-2013-0439) Provides a method for site designers to control content presentation -------------------------------------------------------------------------------- Update Information: Update to upstream 1.5 release -------------------------------------------------------------------------------- ChangeLog: * Mon Feb 25 2013 Jared Smith - 1.5-1 - Update to upstream 1.5 release - Upstream changelog available at http://drupal.org/node/1925724 * Wed Feb 13 2013 Fedora Release Engineering - 1.4-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #915195 - drupal7-token-1.5 is available https://bugzilla.redhat.com/show_bug.cgi?id=915195 -------------------------------------------------------------------------------- ================================================================================ globus-ftp-control-4.5-1.el5 (FEDORA-EPEL-2013-0449) Globus Toolkit - GridFTP Control Library -------------------------------------------------------------------------------- Update Information: Update to Globus Toolkit 5.2.4. See the release notes for details: http://www.globus.org/toolkit/docs/5.2/5.2.4/rn/ -------------------------------------------------------------------------------- ChangeLog: * Wed Feb 20 2013 Mattias Ellert - 4.5-1 - Update to Globus Toolkit 5.2.4 * Wed Feb 13 2013 Fedora Release Engineering - 4.4-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild * Thu Dec 6 2012 Mattias Ellert - 4.4-3 - Add build requires for TexLive 2012 * Thu Jul 19 2012 Fedora Release Engineering - 4.4-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ globus-gridftp-server-6.19-1.el5 (FEDORA-EPEL-2013-0449) Globus Toolkit - Globus GridFTP Server -------------------------------------------------------------------------------- Update Information: Update to Globus Toolkit 5.2.4. See the release notes for details: http://www.globus.org/toolkit/docs/5.2/5.2.4/rn/ -------------------------------------------------------------------------------- ChangeLog: * Wed Feb 20 2013 Mattias Ellert - 6.19-1 - Update to Globus Toolkit 5.2.4 * Wed Feb 13 2013 Fedora Release Engineering - 6.16-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ globus-gridftp-server-control-2.8-1.el5 (FEDORA-EPEL-2013-0449) Globus Toolkit - Globus GridFTP Server Library -------------------------------------------------------------------------------- Update Information: Update to Globus Toolkit 5.2.4. See the release notes for details: http://www.globus.org/toolkit/docs/5.2/5.2.4/rn/ -------------------------------------------------------------------------------- ChangeLog: * Wed Feb 20 2013 Mattias Ellert - 2.8-1 - Update to Globus Toolkit 5.2.4 * Wed Feb 13 2013 Fedora Release Engineering - 2.7-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild * Thu Dec 6 2012 Mattias Ellert - 2.7-2 - Specfile clean-up -------------------------------------------------------------------------------- ================================================================================ globus-gss-assist-8.7-1.el5 (FEDORA-EPEL-2013-0449) Globus Toolkit - GSSAPI Assist library -------------------------------------------------------------------------------- Update Information: Update to Globus Toolkit 5.2.4. See the release notes for details: http://www.globus.org/toolkit/docs/5.2/5.2.4/rn/ -------------------------------------------------------------------------------- ChangeLog: * Wed Feb 20 2013 Mattias Ellert - 8.7-1 - Update to Globus Toolkit 5.2.4 * Wed Feb 13 2013 Fedora Release Engineering - 8.6-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild * Thu Dec 6 2012 Mattias Ellert - 8.6-2 - Add build requires for TexLive 2012 -------------------------------------------------------------------------------- ================================================================================ globus-io-9.4-1.el5 (FEDORA-EPEL-2013-0449) Globus Toolkit - uniform I/O interface -------------------------------------------------------------------------------- Update Information: Update to Globus Toolkit 5.2.4. See the release notes for details: http://www.globus.org/toolkit/docs/5.2/5.2.4/rn/ -------------------------------------------------------------------------------- ChangeLog: * Wed Feb 20 2013 Mattias Ellert - 9.4-1 - Update to Globus Toolkit 5.2.4 * Wed Feb 13 2013 Fedora Release Engineering - 9.3-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild * Thu Dec 6 2012 Mattias Ellert - 9.3-3 - Specfile clean-up * Thu Jul 19 2012 Fedora Release Engineering - 9.3-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ gxine-0.5.11-18.el5 (FEDORA-EPEL-2013-0448) GTK frontend for the xine multimedia library -------------------------------------------------------------------------------- Update Information: Fixes broken deps by switching from mozjs to libjs. -------------------------------------------------------------------------------- From updates at fedoraproject.org Mon Feb 25 18:34:46 2013 From: updates at fedoraproject.org (updates at fedoraproject.org) Date: Mon, 25 Feb 2013 18:34:46 +0000 Subject: Fedora EPEL 6 updates-testing report Message-ID: <20130225183446.2363F20ADD@bastion01.phx2.fedoraproject.org> The following Fedora EPEL 6 Security updates need testing: Age URL 497 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2011-4701/supybot-gribble-0.83.4.1-10.el6 309 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5620/bugzilla-3.4.14-2.el6 232 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-6348/bcfg2-1.2.3-1.el6 86 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-13610/drupal6-ctools-1.10-1.el6 34 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0123/python-tw2-jquery-2.0.3-5.el6 18 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0267/mediawiki119-1.19.3-3.el6 12 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0233/wordpress-3.5.1-2.el6 9 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0376/openconnect-4.08-1.el6 5 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0405/bitlbee-3.2-1.el6 2 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0417/Django14-1.4.5-1.el6 2 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0420/awstats-7.0-3.el6 2 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0430/drupal7-7.20-1.el6 2 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0423/nginx-1.0.15-4.el6 2 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0410/seamonkey-2.16-1.el6 The following builds have been pushed to Fedora EPEL 6 updates-testing ansible-1.0-1.el6 cups-bjnp-1.2.1-1.el6 drupal7-token-1.5-1.el6 globus-ftp-control-4.5-1.el6 globus-gridftp-server-6.19-1.el6 globus-gridftp-server-control-2.8-1.el6 globus-gss-assist-8.7-1.el6 globus-io-9.4-1.el6 gxine-0.5.905-2.el6 kaudiocreator-1.3-4.el6 kyotocabinet-1.2.76-2.el6 mod_qos-10.13-4.el6 php-JsonSchema-1.3.0-1.el6 php-Raven-0.5.1-1.el6 php-pecl-mongo-1.3.4-1.el6 siege-2.74-1.el6 Details about builds: ================================================================================ ansible-1.0-1.el6 (FEDORA-EPEL-2013-0450) SSH-based configuration management, deployment, and task execution system -------------------------------------------------------------------------------- Update Information: New version -------------------------------------------------------------------------------- ChangeLog: * Fri Feb 1 2013 Michael DeHaan - 1.0-0 - Release 1.0 -------------------------------------------------------------------------------- ================================================================================ cups-bjnp-1.2.1-1.el6 (FEDORA-EPEL-2013-0440) CUPS backend for the Canon BJNP network printers -------------------------------------------------------------------------------- Update Information: new upstream release, fixes hang with MX270 and possibly other printers -------------------------------------------------------------------------------- ChangeLog: * Sat Feb 23 2013 Louis Lagendijk - 1.2.1-1 New upstream release. Fixes hang with MX270 and possibly other printers (bug introduced with version 1.1) * Wed Feb 13 2013 Fedora Release Engineering - 1.2-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ drupal7-token-1.5-1.el6 (FEDORA-EPEL-2013-0445) Provides a method for site designers to control content presentation -------------------------------------------------------------------------------- Update Information: Update to upstream 1.5 release -------------------------------------------------------------------------------- ChangeLog: * Mon Feb 25 2013 Jared Smith - 1.5-1 - Update to upstream 1.5 release - Upstream changelog available at http://drupal.org/node/1925724 * Wed Feb 13 2013 Fedora Release Engineering - 1.4-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #915195 - drupal7-token-1.5 is available https://bugzilla.redhat.com/show_bug.cgi?id=915195 -------------------------------------------------------------------------------- ================================================================================ globus-ftp-control-4.5-1.el6 (FEDORA-EPEL-2013-0436) Globus Toolkit - GridFTP Control Library -------------------------------------------------------------------------------- Update Information: Update to Globus Toolkit 5.2.4. See the release notes for details: http://www.globus.org/toolkit/docs/5.2/5.2.4/rn/ -------------------------------------------------------------------------------- ChangeLog: * Wed Feb 20 2013 Mattias Ellert - 4.5-1 - Update to Globus Toolkit 5.2.4 * Wed Feb 13 2013 Fedora Release Engineering - 4.4-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild * Thu Dec 6 2012 Mattias Ellert - 4.4-3 - Add build requires for TexLive 2012 * Thu Jul 19 2012 Fedora Release Engineering - 4.4-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ globus-gridftp-server-6.19-1.el6 (FEDORA-EPEL-2013-0436) Globus Toolkit - Globus GridFTP Server -------------------------------------------------------------------------------- Update Information: Update to Globus Toolkit 5.2.4. See the release notes for details: http://www.globus.org/toolkit/docs/5.2/5.2.4/rn/ -------------------------------------------------------------------------------- ChangeLog: * Wed Feb 20 2013 Mattias Ellert - 6.19-1 - Update to Globus Toolkit 5.2.4 * Wed Feb 13 2013 Fedora Release Engineering - 6.16-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ globus-gridftp-server-control-2.8-1.el6 (FEDORA-EPEL-2013-0436) Globus Toolkit - Globus GridFTP Server Library -------------------------------------------------------------------------------- Update Information: Update to Globus Toolkit 5.2.4. See the release notes for details: http://www.globus.org/toolkit/docs/5.2/5.2.4/rn/ -------------------------------------------------------------------------------- ChangeLog: * Wed Feb 20 2013 Mattias Ellert - 2.8-1 - Update to Globus Toolkit 5.2.4 * Wed Feb 13 2013 Fedora Release Engineering - 2.7-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild * Thu Dec 6 2012 Mattias Ellert - 2.7-2 - Specfile clean-up -------------------------------------------------------------------------------- ================================================================================ globus-gss-assist-8.7-1.el6 (FEDORA-EPEL-2013-0436) Globus Toolkit - GSSAPI Assist library -------------------------------------------------------------------------------- Update Information: Update to Globus Toolkit 5.2.4. See the release notes for details: http://www.globus.org/toolkit/docs/5.2/5.2.4/rn/ -------------------------------------------------------------------------------- ChangeLog: * Wed Feb 20 2013 Mattias Ellert - 8.7-1 - Update to Globus Toolkit 5.2.4 * Wed Feb 13 2013 Fedora Release Engineering - 8.6-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild * Thu Dec 6 2012 Mattias Ellert - 8.6-2 - Add build requires for TexLive 2012 -------------------------------------------------------------------------------- ================================================================================ globus-io-9.4-1.el6 (FEDORA-EPEL-2013-0436) Globus Toolkit - uniform I/O interface -------------------------------------------------------------------------------- Update Information: Update to Globus Toolkit 5.2.4. See the release notes for details: http://www.globus.org/toolkit/docs/5.2/5.2.4/rn/ -------------------------------------------------------------------------------- ChangeLog: * Wed Feb 20 2013 Mattias Ellert - 9.4-1 - Update to Globus Toolkit 5.2.4 * Wed Feb 13 2013 Fedora Release Engineering - 9.3-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild * Thu Dec 6 2012 Mattias Ellert - 9.3-3 - Specfile clean-up * Thu Jul 19 2012 Fedora Release Engineering - 9.3-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ gxine-0.5.905-2.el6 (FEDORA-EPEL-2013-0431) GTK frontend for the xine multimedia library -------------------------------------------------------------------------------- Update Information: Make gxine work again by reverting to 0.5.905, which is the latest version that works with EPEL6 JS offerings (libjs and mozjs). Bugfixes backported. Fix -mozplugin requires. -------------------------------------------------------------------------------- ================================================================================ kaudiocreator-1.3-4.el6 (FEDORA-EPEL-2013-0446) Program for ripping and encoding Audio-CDs -------------------------------------------------------------------------------- Update Information: EPEL-6 branch for Fedora package. -------------------------------------------------------------------------------- References: [ 1 ] Bug #912934 - EPEL request https://bugzilla.redhat.com/show_bug.cgi?id=912934 -------------------------------------------------------------------------------- ================================================================================ kyotocabinet-1.2.76-2.el6 (FEDORA-EPEL-2013-0447) A lightweight database library -------------------------------------------------------------------------------- Update Information: Kyoto Cabinet is a library of routines for managing a database. The database is a simple data file containing records, and each record is a pair of a key and a value. Every key and value is an array of bytes with variable length. Both binary data and character strings can be used as a key or a value. There is neither a concept of tables nor of data types. -------------------------------------------------------------------------------- References: [ 1 ] Bug #894581 - Please rebuild kyotocabinet for EPEL 5 and 6 https://bugzilla.redhat.com/show_bug.cgi?id=894581 -------------------------------------------------------------------------------- ================================================================================ mod_qos-10.13-4.el6 (FEDORA-EPEL-2013-0444) Quality of service module for Apache -------------------------------------------------------------------------------- Update Information: new package -------------------------------------------------------------------------------- References: [ 1 ] Bug #893165 - Review Request: mod_qos - Quality of service module for Apache https://bugzilla.redhat.com/show_bug.cgi?id=893165 -------------------------------------------------------------------------------- ================================================================================ php-JsonSchema-1.3.0-1.el6 (FEDORA-EPEL-2013-0441) PHP implementation of JSON schema -------------------------------------------------------------------------------- Update Information: Updated to upstream version 1.3.0 Full change log: https://github.com/justinrainbow/json-schema/commits/1.3.0 -------------------------------------------------------------------------------- ChangeLog: * Sun Feb 24 2013 Shawn Iwinski 1.3.0-1 - Updated to upstream version 1.3.0 -------------------------------------------------------------------------------- References: [ 1 ] Bug #912273 - php-JsonSchema-1.3.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=912273 -------------------------------------------------------------------------------- ================================================================================ php-Raven-0.5.1-1.el6 (FEDORA-EPEL-2013-0437) A PHP client for Sentry -------------------------------------------------------------------------------- Update Information: Updated to upstream version 0.5.1 Full change log: https://github.com/getsentry/raven-php/commits/0.5.1 -------------------------------------------------------------------------------- ChangeLog: * Sun Feb 24 2013 Shawn Iwinski 0.5.1-1 - Updated to upstream version 0.5.1 * Thu Feb 14 2013 Fedora Release Engineering - 0.4.0-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #912275 - php-Raven-0.5.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=912275 -------------------------------------------------------------------------------- ================================================================================ php-pecl-mongo-1.3.4-1.el6 (FEDORA-EPEL-2013-0443) PHP MongoDB database driver -------------------------------------------------------------------------------- Update Information: upstream 1.3.4 -------------------------------------------------------------------------------- ChangeLog: * Sat Feb 23 2013 Christof Damian - 1.3.4-1 - upstream 1.3.4 * Thu Feb 14 2013 Fedora Release Engineering - 1.3.2-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild * Sun Jan 13 2013 Christof Damian - 1.3.2-1 - upstream 1.3.2 -------------------------------------------------------------------------------- References: [ 1 ] Bug #896477 - php-pecl-mongo-1.3.4 is available https://bugzilla.redhat.com/show_bug.cgi?id=896477 -------------------------------------------------------------------------------- ================================================================================ siege-2.74-1.el6 (FEDORA-EPEL-2013-0442) HTTP regression testing and benchmarking utility -------------------------------------------------------------------------------- Update Information: upstream 2.74 -------------------------------------------------------------------------------- ChangeLog: * Sat Feb 23 2013 Christof Damian - 2.74-1 - upstream 2.74 * Thu Feb 14 2013 Fedora Release Engineering - 2.72-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild * Sat Jul 21 2012 Fedora Release Engineering - 2.72-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #907645 - siege cannot connect to local machines https://bugzilla.redhat.com/show_bug.cgi?id=907645 [ 2 ] Bug #909196 - siege-2.74 is available https://bugzilla.redhat.com/show_bug.cgi?id=909196 -------------------------------------------------------------------------------- From updates at fedoraproject.org Tue Feb 26 19:19:16 2013 From: updates at fedoraproject.org (updates at fedoraproject.org) Date: Tue, 26 Feb 2013 19:19:16 +0000 Subject: Fedora EPEL 5 updates-testing report Message-ID: <20130226191916.07D4520848@bastion01.phx2.fedoraproject.org> The following Fedora EPEL 5 Security updates need testing: Age URL 310 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5630/bugzilla-3.2.10-5.el5 205 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-6608/Django-1.1.4-2.el5 13 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0237/wordpress-3.5.1-2.el5 11 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0366/openconnect-4.08-1.el5 6 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0400/bitlbee-3.2-1.el5 4 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0425/nginx-0.8.55-3.el5 4 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0428/drupal7-7.20-1.el5 The following builds have been pushed to Fedora EPEL 5 updates-testing hylafax+-5.5.3-1.el5 perl-Authen-Credential-1.0-1.el5 perl-Config-Validator-1.0-1.el5 protobuf-c-0.15-6.el5 stompclt-0.8-1.el5 Details about builds: ================================================================================ hylafax+-5.5.3-1.el5 (FEDORA-EPEL-2013-0453) An enterprise-strength fax server -------------------------------------------------------------------------------- Update Information: update to 5.5.3, break out client package, add sysconfig feature -------------------------------------------------------------------------------- ChangeLog: * Tue Feb 26 2013 Lee Howard - 5.5.3-2 - add Group tag for client package * Mon Feb 25 2013 Lee Howard - 5.5.3-1 - update to 5.5.3 - break out client utilities into hylafax+-client package - add sysconfig feature * Thu Feb 14 2013 Fedora Release Engineering - 5.5.2-9 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild * Fri Jan 18 2013 Adam Tkac - 5.5.2-8 - rebuild due to "jpeg8-ABI" feature drop -------------------------------------------------------------------------------- References: [ 1 ] Bug #890805 - sendpage fails when submitting message. https://bugzilla.redhat.com/show_bug.cgi?id=890805 [ 2 ] Bug #890660 - hylafax+ RPM replaces other hylafax RPM installations https://bugzilla.redhat.com/show_bug.cgi?id=890660 -------------------------------------------------------------------------------- ================================================================================ perl-Authen-Credential-1.0-1.el5 (FEDORA-EPEL-2013-0459) Abstraction of a credential -------------------------------------------------------------------------------- Update Information: Updating to upstream version 1.0, rhbz #915293. -------------------------------------------------------------------------------- ChangeLog: * Tue Feb 26 2013 Massimo Paladin - 1.0-1 - Update to 1.0, rhbz #915293. * Thu Feb 14 2013 Fedora Release Engineering - 0.8-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ perl-Config-Validator-1.0-1.el5 (FEDORA-EPEL-2013-0462) Schema based configuration validation -------------------------------------------------------------------------------- Update Information: Updating to upstream version 1.0, rhbz #915295. -------------------------------------------------------------------------------- ChangeLog: * Tue Feb 26 2013 Massimo Paladin 1.0-1 - Update to 1.0, rhbz #915295. * Thu Feb 14 2013 Fedora Release Engineering - 0.6-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ protobuf-c-0.15-6.el5 (FEDORA-EPEL-2013-0454) C bindings for Google's Protocol Buffers -------------------------------------------------------------------------------- Update Information: Build for EL5 -------------------------------------------------------------------------------- References: [ 1 ] Bug #593559 - Review Request: protobuf-c - C bindings for Google's Protocol Buffers https://bugzilla.redhat.com/show_bug.cgi?id=593559 -------------------------------------------------------------------------------- ================================================================================ stompclt-0.8-1.el5 (FEDORA-EPEL-2013-0469) Versatile STOMP client -------------------------------------------------------------------------------- Update Information: Updating to upstream version 0.8, rhbz #915292. -------------------------------------------------------------------------------- ChangeLog: * Tue Feb 26 2013 Massimo Paladin 0.8-1 - Update to 0.8, rhbz #915292. * Fri Feb 15 2013 Fedora Release Engineering - 0.7-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild -------------------------------------------------------------------------------- From updates at fedoraproject.org Tue Feb 26 19:19:17 2013 From: updates at fedoraproject.org (updates at fedoraproject.org) Date: Tue, 26 Feb 2013 19:19:17 +0000 Subject: Fedora EPEL 6 updates-testing report Message-ID: <20130226191917.B8D46207E0@bastion01.phx2.fedoraproject.org> The following Fedora EPEL 6 Security updates need testing: Age URL 498 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2011-4701/supybot-gribble-0.83.4.1-10.el6 310 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5620/bugzilla-3.4.14-2.el6 233 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-6348/bcfg2-1.2.3-1.el6 35 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0123/python-tw2-jquery-2.0.3-5.el6 20 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0267/mediawiki119-1.19.3-3.el6 13 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0233/wordpress-3.5.1-2.el6 11 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0376/openconnect-4.08-1.el6 6 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0405/bitlbee-3.2-1.el6 4 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0417/Django14-1.4.5-1.el6 4 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0420/awstats-7.0-3.el6 4 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0430/drupal7-7.20-1.el6 4 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0423/nginx-1.0.15-4.el6 4 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0410/seamonkey-2.16-1.el6 The following builds have been pushed to Fedora EPEL 6 updates-testing askbot-0.7.48-8.el6 gsi-openssh-5.3p1-8.el6 hylafax+-5.5.3-1.el6 kaudiocreator-1.3-5.el6 perl-Authen-Credential-1.0-1.el6 perl-Config-Validator-1.0-1.el6 php-horde-Horde-Exception-2.0.3-1.el6 php-horde-Horde-Test-2.2.0-1.el6 php-horde-Horde-Util-2.2.0-1.el6 php-pear-PHP-CodeSniffer-1.4.4-1.el6 python-offtrac-0.0.4-1.el6 python-zope-component-4.0.2-2.el6 python-zope-exceptions-4.0.5-1.el6 python-zope-interface4-4.0.4-1.el6 stompclt-0.8-1.el6 thunderbird-lightning-1.9-1.el6 trac-defaultcc-plugin-0.3-0.1.svn12643.el6 Details about builds: ================================================================================ askbot-0.7.48-8.el6 (FEDORA-EPEL-2013-0467) Question and Answer forum -------------------------------------------------------------------------------- Update Information: Latest upstream. -------------------------------------------------------------------------------- ChangeLog: * Wed Feb 13 2013 Fedora Release Engineering - 0.7.40-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild * Tue Feb 12 2013 Ralph Bean 0.7.48-8 - Conditionalized pystache patch for el6 - Disabled preun section. * Tue Feb 5 2013 Ralph Bean 0.7.48-6 - Conditionalized python-django* requires for el6 - Patched some problems with askbot/startup_procedures.py - Updated settings.py with new needed parameters. - Added a commented %post section with db upgrade path. - Fixed WSGI sys.stdout errors. * Mon Feb 4 2013 Ralph Bean 0.7.48-4 - Added django-longerusername as a requirement - Added django-tinymce as a requirement - Added pytz as a requirement - Added python-sanction as a requirement - Added python-lamson as a requirement * Mon Feb 4 2013 Kevin Fenzi 0.7.48-1 - Update to 0.7.48 * Wed Jan 23 2013 Kevin Fenzi 0.7.47-1 - Update to 0.7.47. * Tue Dec 4 2012 Kevin Fenzi 0.7.44-1 - Update to 0.7.44. - See http://askbot.org/doc/changelog.html for full changes. * Wed Aug 22 2012 Parag Nemade - 0.7.40-5 - Hardcoding versioned Requires is not recommended * Wed Aug 22 2012 Parag Nemade - 0.7.40-4 - Change Requires that got renamed django-* to python-django-* * Wed Jul 18 2012 Fedora Release Engineering - 0.7.40-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild * Wed Jun 20 2012 Matthias Runge - 0.7.40-2 - fix dependency on authenticator (bz. 829646) * Mon Apr 16 2012 Rahul Sundaram - 0.7.40-1 - update to 0.7.40 * New data models!!! (`Tomasz Zieli?ski `_) * Made email recovery link work when askbot is deployed on subdirectory (Evgeny) * Added tests for the CSRF_COOKIE_DOMAIN setting in the startup_procedures (Evgeny) * Askbot now respects django's staticfiles app (Radim ?eh??ek, Evgeny) * Fixed the url translation bug (Evgeny) * Added left sidebar option (Evgeny) * Added "help" page and links to in the header and the footer (Evgeny) * Removed url parameters and the hash fragment from uploaded files - amazon S3 for some reason adds weird expiration parameters (Evgeny) * Reduced memory usage in data migrations (Evgeny) * Added progress bars to slow data migrations (Evgeny) * Added a management command to build_thread_summary_cache (Evgeny) * Added a management delete_contextless_badge_award_activities (Evgeny) * Fixed a file upload issue in FF and IE found by jerry_gzy (Evgeny) * Added test on maximum length of title working for utf-8 text (Evgeny) * Added caching and invalidation to the question page (Evgeny) * Added a management command delete_contextless_activities (Evgeny) * LDAP login configuration (github user `monkut `_) * Check order of middleware classes (Daniel Mican) * Added "reply by email" function (`Vasil Vangelovski `_) * Enabled "ask by email" via Lamson (Evgeny) * Tags can be optional (Evgeny) * Fixed dependency of Django up to 1.3.1, because settings must be upgraded for Django 1.4 (Evgeny) -------------------------------------------------------------------------------- References: [ 1 ] Bug #915390 - Update to the latest askbot. https://bugzilla.redhat.com/show_bug.cgi?id=915390 -------------------------------------------------------------------------------- ================================================================================ gsi-openssh-5.3p1-8.el6 (FEDORA-EPEL-2013-0452) An implementation of the SSH protocol with GSI authentication -------------------------------------------------------------------------------- Update Information: Syncing with latest openssh packages. -------------------------------------------------------------------------------- ChangeLog: * Tue Feb 26 2013 Mattias Ellert - 5.3p1-8 - Based on openssh-5.3p1-84.1.el6 -------------------------------------------------------------------------------- ================================================================================ hylafax+-5.5.3-1.el6 (FEDORA-EPEL-2013-0465) An enterprise-strength fax server -------------------------------------------------------------------------------- Update Information: update to 5.5.3, break out client package, add sysconfig feature -------------------------------------------------------------------------------- ChangeLog: * Tue Feb 26 2013 Lee Howard - 5.5.3-2 - add Group tag for client package * Mon Feb 25 2013 Lee Howard - 5.5.3-1 - update to 5.5.3 - break out client utilities into hylafax+-client package - add sysconfig feature * Thu Feb 14 2013 Fedora Release Engineering - 5.5.2-9 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild * Fri Jan 18 2013 Adam Tkac - 5.5.2-8 - rebuild due to "jpeg8-ABI" feature drop -------------------------------------------------------------------------------- References: [ 1 ] Bug #890805 - sendpage fails when submitting message. https://bugzilla.redhat.com/show_bug.cgi?id=890805 [ 2 ] Bug #890660 - hylafax+ RPM replaces other hylafax RPM installations https://bugzilla.redhat.com/show_bug.cgi?id=890660 -------------------------------------------------------------------------------- ================================================================================ kaudiocreator-1.3-5.el6 (FEDORA-EPEL-2013-0455) Program for ripping and encoding Audio-CDs -------------------------------------------------------------------------------- Update Information: EPEL-6 branch for Fedora package. Fix naming issue. EPEL-6 branch for Fedora package. -------------------------------------------------------------------------------- References: [ 1 ] Bug #912934 - EPEL request https://bugzilla.redhat.com/show_bug.cgi?id=912934 -------------------------------------------------------------------------------- ================================================================================ perl-Authen-Credential-1.0-1.el6 (FEDORA-EPEL-2013-0468) Abstraction of a credential -------------------------------------------------------------------------------- Update Information: Updating to upstream version 1.0, rhbz #915293. -------------------------------------------------------------------------------- ChangeLog: * Tue Feb 26 2013 Massimo Paladin - 1.0-1 - Update to 1.0, rhbz #915293. * Thu Feb 14 2013 Fedora Release Engineering - 0.8-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ perl-Config-Validator-1.0-1.el6 (FEDORA-EPEL-2013-0451) Schema based configuration validation -------------------------------------------------------------------------------- Update Information: Updating to upstream version 1.0, rhbz #915295. -------------------------------------------------------------------------------- ChangeLog: * Tue Feb 26 2013 Massimo Paladin 1.0-1 - Update to 1.0, rhbz #915295. * Thu Feb 14 2013 Fedora Release Engineering - 0.6-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ php-horde-Horde-Exception-2.0.3-1.el6 (FEDORA-EPEL-2013-0347) Horde Exception Handler -------------------------------------------------------------------------------- Update Information: Horde_Util 2.2.0 * [mms] Can't add charset directly to HTML document or else DOM will alter document when generating HTML. * [mms] Added Horde_Domhtml#getBody(). Horde_Util 2.1.0 * [mms] Added 'charset' and 'metacharset' parameters to returnHtml(). * [mms] Added Horde_Domhtml#getCharset() to get best-guess charset of current encoding within the DOM object. * [mms] Fix inserting HEAD into HTML document with Horde_Domhtml#getHead() if it doesn't already exist in the document. Horde_Exception 2.0.3 * [jan] Update French translation (Paul De Vlieger <paul.de_vlieger at moniut.univ-bpclermont.fr>). Horde_Test 2.2.0 * [jan] Add test/ directory to include_path to allow autoloading of test classes. -------------------------------------------------------------------------------- ChangeLog: * Mon Feb 11 2013 Remi Collet - 2.0.3-1 - Update to 2.0.3 - run test when build --with tests - spec cleanups - fix License -------------------------------------------------------------------------------- ================================================================================ php-horde-Horde-Test-2.2.0-1.el6 (FEDORA-EPEL-2013-0347) Horde testing base classes -------------------------------------------------------------------------------- Update Information: Horde_Util 2.2.0 * [mms] Can't add charset directly to HTML document or else DOM will alter document when generating HTML. * [mms] Added Horde_Domhtml#getBody(). Horde_Util 2.1.0 * [mms] Added 'charset' and 'metacharset' parameters to returnHtml(). * [mms] Added Horde_Domhtml#getCharset() to get best-guess charset of current encoding within the DOM object. * [mms] Fix inserting HEAD into HTML document with Horde_Domhtml#getHead() if it doesn't already exist in the document. Horde_Exception 2.0.3 * [jan] Update French translation (Paul De Vlieger <paul.de_vlieger at moniut.univ-bpclermont.fr>). Horde_Test 2.2.0 * [jan] Add test/ directory to include_path to allow autoloading of test classes. -------------------------------------------------------------------------------- ChangeLog: * Tue Feb 12 2013 Remi Collet - 2.2.0-1 - Update to 2.2.0 - cleanups - add dependency on Horde_Log - fix License -------------------------------------------------------------------------------- ================================================================================ php-horde-Horde-Util-2.2.0-1.el6 (FEDORA-EPEL-2013-0347) Horde Utility Libraries -------------------------------------------------------------------------------- Update Information: Horde_Util 2.2.0 * [mms] Can't add charset directly to HTML document or else DOM will alter document when generating HTML. * [mms] Added Horde_Domhtml#getBody(). Horde_Util 2.1.0 * [mms] Added 'charset' and 'metacharset' parameters to returnHtml(). * [mms] Added Horde_Domhtml#getCharset() to get best-guess charset of current encoding within the DOM object. * [mms] Fix inserting HEAD into HTML document with Horde_Domhtml#getHead() if it doesn't already exist in the document. Horde_Exception 2.0.3 * [jan] Update French translation (Paul De Vlieger <paul.de_vlieger at moniut.univ-bpclermont.fr>). Horde_Test 2.2.0 * [jan] Add test/ directory to include_path to allow autoloading of test classes. -------------------------------------------------------------------------------- ChangeLog: * Tue Feb 26 2013 Remi Collet - 2.2.0-1 - Update to 2.2.0 * Sun Feb 17 2013 Remi Collet - 2.1.0-2 - fix dependency, no php-filter on EL-6 * Tue Feb 12 2013 Remi Collet - 2.1.0-1 - Update to 2.1.0 - fix License - cleanups - run test when build --with tests -------------------------------------------------------------------------------- ================================================================================ php-pear-PHP-CodeSniffer-1.4.4-1.el6 (FEDORA-EPEL-2013-0458) PHP coding standards enforcement tool -------------------------------------------------------------------------------- Update Information: upstream 1.4.4 -------------------------------------------------------------------------------- ChangeLog: * Mon Feb 25 2013 Christof Damian - 1.4.4-1 - upstream 1.4.4 * Thu Feb 14 2013 Fedora Release Engineering - 1.4.3-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild * Sat Jan 12 2013 Christof Damian - 1.4.3-1 - upstream 1.4.3 - use php_metadir -------------------------------------------------------------------------------- ================================================================================ python-offtrac-0.0.4-1.el6 (FEDORA-EPEL-2013-0456) Trac xmlrpc library -------------------------------------------------------------------------------- Update Information: Latest upstream. -------------------------------------------------------------------------------- ChangeLog: * Mon Feb 25 2013 Ralph Bean - 0.0.4-1 - Latest upstream - Fix for https://bugzilla.redhat.com/show_bug.cgi?id=836514 - More precise file naming - Source0 url on PyPI. * Thu Feb 14 2013 Fedora Release Engineering - 0.0.3-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild * Sat Jul 21 2012 Fedora Release Engineering - 0.0.3-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild * Sat Jan 14 2012 Fedora Release Engineering - 0.0.3-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild * Tue Feb 8 2011 Fedora Release Engineering - 0.0.3-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild * Thu Jul 22 2010 David Malcolm - 0.0.3-2 - Rebuilt for https://fedoraproject.org/wiki/Features/Python_2.7/MassRebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #836514 - create_ticket() function doesn't assign 'assignee' value to a ticket assignee https://bugzilla.redhat.com/show_bug.cgi?id=836514 -------------------------------------------------------------------------------- ================================================================================ python-zope-component-4.0.2-2.el6 (FEDORA-EPEL-2013-0466) Zope Component Architecture -------------------------------------------------------------------------------- Update Information: Latest upstream. -------------------------------------------------------------------------------- ChangeLog: * Mon Feb 25 2013 Ralph Bean - 4.0.2-2 - Fix python3 conditional * Mon Feb 25 2013 Ralph Bean - 4.0.2-1 - Latest upstream. * Thu Feb 14 2013 Fedora Release Engineering - 4.0.1-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild * Mon Dec 3 2012 Tomas Dabasinskas - 4.0.1-2 - Fixed python3 package files section - Removed exclude *.txt for pyhon2 package as no txt files are generated during install * Thu Nov 29 2012 Ralph Bean - 4.0.1-1 - Updated to latest upstream. - Included python3 subpackage. -------------------------------------------------------------------------------- References: [ 1 ] Bug #891045 - python-zope-component-4.0.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=891045 -------------------------------------------------------------------------------- ================================================================================ python-zope-exceptions-4.0.5-1.el6 (FEDORA-EPEL-2013-0464) Zope Exceptions -------------------------------------------------------------------------------- Update Information: Latest upstream. Require python-zope-interface4 forward-compat package on el6. -------------------------------------------------------------------------------- ChangeLog: * Mon Feb 25 2013 Ralph Bean - 4.0.5-1 - Latest upstream. * Thu Feb 14 2013 Fedora Release Engineering - 4.0.3-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild * Tue Jan 1 2013 Ralph Bean - 4.0.3-2 - Require python-zope-interface4 compat package on el6. * Tue Dec 11 2012 Ralph Bean - 4.0.3-1 - Latest upstream. - Packaged a python3 subpackage. - Made indentation consistent. -------------------------------------------------------------------------------- References: [ 1 ] Bug #887484 - python-zope-exceptions-4.0.5 is available https://bugzilla.redhat.com/show_bug.cgi?id=887484 -------------------------------------------------------------------------------- ================================================================================ python-zope-interface4-4.0.4-1.el6 (FEDORA-EPEL-2013-0457) Forward compatible package for Zope 3 Interface Infrastructure -------------------------------------------------------------------------------- Update Information: Latest upstream. -------------------------------------------------------------------------------- ChangeLog: * Mon Feb 25 2013 Ralph Bean - 4.0.4-1 - Latest upstream. - README and CHANGES moved from .txt to .rst. * Thu Feb 14 2013 Fedora Release Engineering - 4.0.2-8 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ stompclt-0.8-1.el6 (FEDORA-EPEL-2013-0463) Versatile STOMP client -------------------------------------------------------------------------------- Update Information: Updating to upstream version 0.8, rhbz #915292. -------------------------------------------------------------------------------- ChangeLog: * Tue Feb 26 2013 Massimo Paladin 0.8-1 - Update to 0.8, rhbz #915292. * Fri Feb 15 2013 Fedora Release Engineering - 0.7-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ thunderbird-lightning-1.9-1.el6 (FEDORA-EPEL-2013-0461) The calendar extension to Thunderbird -------------------------------------------------------------------------------- Update Information: Update to 1.9 for TB 17. -------------------------------------------------------------------------------- ChangeLog: * Tue Nov 20 2012 Jan Horak - 1.9-1 - Update to 1.9 - Bump required TB version - Drop gcc47 patch - Add patches from EL6 thunderbird srpm -------------------------------------------------------------------------------- References: [ 1 ] Bug #915126 - thunderbird-lightning needs to be updated For Thunderbird 17 https://bugzilla.redhat.com/show_bug.cgi?id=915126 -------------------------------------------------------------------------------- ================================================================================ trac-defaultcc-plugin-0.3-0.1.svn12643.el6 (FEDORA-EPEL-2013-0460) Trac plugin to set default CC address(es) by component -------------------------------------------------------------------------------- Update Information: Initial package of initialcc plugin -------------------------------------------------------------------------------- References: [ 1 ] Bug #913325 - Review Request: trac-defaultcc-plugin - Trac plugin to set default CC address(es) by component https://bugzilla.redhat.com/show_bug.cgi?id=913325 -------------------------------------------------------------------------------- From updates at fedoraproject.org Wed Feb 27 18:05:51 2013 From: updates at fedoraproject.org (updates at fedoraproject.org) Date: Wed, 27 Feb 2013 18:05:51 +0000 Subject: Fedora EPEL 5 updates-testing report Message-ID: <20130227180551.2AAEE20BBF@bastion01.phx2.fedoraproject.org> The following Fedora EPEL 5 Security updates need testing: Age URL 311 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5630/bugzilla-3.2.10-5.el5 206 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-6608/Django-1.1.4-2.el5 11 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0366/openconnect-4.08-1.el5 7 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0400/bitlbee-3.2-1.el5 4 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0425/nginx-0.8.55-3.el5 4 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0428/drupal7-7.20-1.el5 The following builds have been pushed to Fedora EPEL 5 updates-testing globus-ftp-control-4.5-2.el5 globus-gridftp-server-6.19-1.el5 globus-gridftp-server-control-2.8-1.el5 globus-gss-assist-8.7-1.el5 globus-io-9.4-1.el5 opendkim-2.8.0-3.el5 perl-No-Worries-0.9-1.el5 Details about builds: ================================================================================ globus-ftp-control-4.5-2.el5 (FEDORA-EPEL-2013-0449) Globus Toolkit - GridFTP Control Library -------------------------------------------------------------------------------- Update Information: Update to Globus Toolkit 5.2.4. See the release notes for details: http://www.globus.org/toolkit/docs/5.2/5.2.4/rn/ -------------------------------------------------------------------------------- ChangeLog: * Wed Feb 27 2013 Mattias Ellert - 4.5-2 - Fix modification to wrong authinfo object * Wed Feb 20 2013 Mattias Ellert - 4.5-1 - Update to Globus Toolkit 5.2.4 * Wed Feb 13 2013 Fedora Release Engineering - 4.4-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild * Thu Dec 6 2012 Mattias Ellert - 4.4-3 - Add build requires for TexLive 2012 * Thu Jul 19 2012 Fedora Release Engineering - 4.4-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ globus-gridftp-server-6.19-1.el5 (FEDORA-EPEL-2013-0449) Globus Toolkit - Globus GridFTP Server -------------------------------------------------------------------------------- Update Information: Update to Globus Toolkit 5.2.4. See the release notes for details: http://www.globus.org/toolkit/docs/5.2/5.2.4/rn/ -------------------------------------------------------------------------------- ChangeLog: * Wed Feb 20 2013 Mattias Ellert - 6.19-1 - Update to Globus Toolkit 5.2.4 * Wed Feb 13 2013 Fedora Release Engineering - 6.16-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ globus-gridftp-server-control-2.8-1.el5 (FEDORA-EPEL-2013-0449) Globus Toolkit - Globus GridFTP Server Library -------------------------------------------------------------------------------- Update Information: Update to Globus Toolkit 5.2.4. See the release notes for details: http://www.globus.org/toolkit/docs/5.2/5.2.4/rn/ -------------------------------------------------------------------------------- ChangeLog: * Wed Feb 20 2013 Mattias Ellert - 2.8-1 - Update to Globus Toolkit 5.2.4 * Wed Feb 13 2013 Fedora Release Engineering - 2.7-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild * Thu Dec 6 2012 Mattias Ellert - 2.7-2 - Specfile clean-up -------------------------------------------------------------------------------- ================================================================================ globus-gss-assist-8.7-1.el5 (FEDORA-EPEL-2013-0449) Globus Toolkit - GSSAPI Assist library -------------------------------------------------------------------------------- Update Information: Update to Globus Toolkit 5.2.4. See the release notes for details: http://www.globus.org/toolkit/docs/5.2/5.2.4/rn/ -------------------------------------------------------------------------------- ChangeLog: * Wed Feb 20 2013 Mattias Ellert - 8.7-1 - Update to Globus Toolkit 5.2.4 * Wed Feb 13 2013 Fedora Release Engineering - 8.6-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild * Thu Dec 6 2012 Mattias Ellert - 8.6-2 - Add build requires for TexLive 2012 -------------------------------------------------------------------------------- ================================================================================ globus-io-9.4-1.el5 (FEDORA-EPEL-2013-0449) Globus Toolkit - uniform I/O interface -------------------------------------------------------------------------------- Update Information: Update to Globus Toolkit 5.2.4. See the release notes for details: http://www.globus.org/toolkit/docs/5.2/5.2.4/rn/ -------------------------------------------------------------------------------- ChangeLog: * Wed Feb 20 2013 Mattias Ellert - 9.4-1 - Update to Globus Toolkit 5.2.4 * Wed Feb 13 2013 Fedora Release Engineering - 9.3-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild * Thu Dec 6 2012 Mattias Ellert - 9.3-3 - Specfile clean-up * Thu Jul 19 2012 Fedora Release Engineering - 9.3-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ opendkim-2.8.0-3.el5 (FEDORA-EPEL-2013-0473) A DomainKeys Identified Mail (DKIM) milter to sign and/or verify mail -------------------------------------------------------------------------------- Update Information: Update to newer 2.8.0 upstream source. -------------------------------------------------------------------------------- ChangeLog: * Tue Feb 26 2013 Steve Jenkins 2.8.0-3 - Split into two spec files: systemd (F17+) and SysV (EL5-6) - systemd-only: Removed leading / from unitdir variables - Removed commented source lines - Created comment sections for easy switching between systemd and SysV * Mon Feb 25 2013 Steve Jenkins 2.8.0-2 - Added / in front of unitdir variables * Thu Feb 21 2013 Steve Jenkins 2.8.0-1 - Happy Birthday to me! :) - Updated to use newer upstream 2.8.0 source code - Migration from SysV initscript to systemd unit file - Added systemd build requirement - Edited comments in default configuration files - Changed default Canonicalization to relaxed/relaxed in config file - Changed default values in EnvironmentFile - Moved program startup options into EnvironmentFile - Moved default key check and generation on startup to external script - Removed AutoRestart directives from default config (systemd will handle) - Incorporated additional variable names throughout spec file - Added support for new opendkim-sysvinit package for legacy SysV systems -------------------------------------------------------------------------------- ================================================================================ perl-No-Worries-0.9-1.el5 (FEDORA-EPEL-2013-0471) Perl coding without worries -------------------------------------------------------------------------------- Update Information: Updating to upstream version 0.9, rhbz #916064. -------------------------------------------------------------------------------- ChangeLog: * Wed Feb 27 2013 Massimo Paladin 0.9-1 - Updating to upstream 0.9, rhbz #916064. * Thu Feb 14 2013 Fedora Release Engineering - 0.8-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild -------------------------------------------------------------------------------- From updates at fedoraproject.org Wed Feb 27 18:05:52 2013 From: updates at fedoraproject.org (updates at fedoraproject.org) Date: Wed, 27 Feb 2013 18:05:52 +0000 Subject: Fedora EPEL 6 updates-testing report Message-ID: <20130227180552.D21A520B93@bastion01.phx2.fedoraproject.org> The following Fedora EPEL 6 Security updates need testing: Age URL 499 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2011-4701/supybot-gribble-0.83.4.1-10.el6 311 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5620/bugzilla-3.4.14-2.el6 234 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-6348/bcfg2-1.2.3-1.el6 36 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0123/python-tw2-jquery-2.0.3-5.el6 20 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0267/mediawiki119-1.19.3-3.el6 11 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0376/openconnect-4.08-1.el6 7 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0405/bitlbee-3.2-1.el6 4 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0417/Django14-1.4.5-1.el6 4 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0420/awstats-7.0-3.el6 4 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0430/drupal7-7.20-1.el6 4 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0423/nginx-1.0.15-4.el6 4 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0410/seamonkey-2.16-1.el6 The following builds have been pushed to Fedora EPEL 6 updates-testing globus-ftp-control-4.5-2.el6 globus-gridftp-server-6.19-1.el6 globus-gridftp-server-control-2.8-1.el6 globus-gss-assist-8.7-1.el6 globus-io-9.4-1.el6 kaudiocreator-1.3-6.el6 mock-1.1.29-1.el6 mysql-connector-python-1.0.9-1.el6 opendkim-2.8.0-3.el6 openstack-packstack-2012.2.3-0.1.dev454.el6 perl-No-Worries-0.9-1.el6 postgresql_autodoc-1.41-1.el6 Details about builds: ================================================================================ globus-ftp-control-4.5-2.el6 (FEDORA-EPEL-2013-0436) Globus Toolkit - GridFTP Control Library -------------------------------------------------------------------------------- Update Information: Update to Globus Toolkit 5.2.4. See the release notes for details: http://www.globus.org/toolkit/docs/5.2/5.2.4/rn/ -------------------------------------------------------------------------------- ChangeLog: * Wed Feb 27 2013 Mattias Ellert - 4.5-2 - Fix modification to wrong authinfo object * Wed Feb 20 2013 Mattias Ellert - 4.5-1 - Update to Globus Toolkit 5.2.4 * Wed Feb 13 2013 Fedora Release Engineering - 4.4-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild * Thu Dec 6 2012 Mattias Ellert - 4.4-3 - Add build requires for TexLive 2012 * Thu Jul 19 2012 Fedora Release Engineering - 4.4-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ globus-gridftp-server-6.19-1.el6 (FEDORA-EPEL-2013-0436) Globus Toolkit - Globus GridFTP Server -------------------------------------------------------------------------------- Update Information: Update to Globus Toolkit 5.2.4. See the release notes for details: http://www.globus.org/toolkit/docs/5.2/5.2.4/rn/ -------------------------------------------------------------------------------- ChangeLog: * Wed Feb 20 2013 Mattias Ellert - 6.19-1 - Update to Globus Toolkit 5.2.4 * Wed Feb 13 2013 Fedora Release Engineering - 6.16-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ globus-gridftp-server-control-2.8-1.el6 (FEDORA-EPEL-2013-0436) Globus Toolkit - Globus GridFTP Server Library -------------------------------------------------------------------------------- Update Information: Update to Globus Toolkit 5.2.4. See the release notes for details: http://www.globus.org/toolkit/docs/5.2/5.2.4/rn/ -------------------------------------------------------------------------------- ChangeLog: * Wed Feb 20 2013 Mattias Ellert - 2.8-1 - Update to Globus Toolkit 5.2.4 * Wed Feb 13 2013 Fedora Release Engineering - 2.7-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild * Thu Dec 6 2012 Mattias Ellert - 2.7-2 - Specfile clean-up -------------------------------------------------------------------------------- ================================================================================ globus-gss-assist-8.7-1.el6 (FEDORA-EPEL-2013-0436) Globus Toolkit - GSSAPI Assist library -------------------------------------------------------------------------------- Update Information: Update to Globus Toolkit 5.2.4. See the release notes for details: http://www.globus.org/toolkit/docs/5.2/5.2.4/rn/ -------------------------------------------------------------------------------- ChangeLog: * Wed Feb 20 2013 Mattias Ellert - 8.7-1 - Update to Globus Toolkit 5.2.4 * Wed Feb 13 2013 Fedora Release Engineering - 8.6-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild * Thu Dec 6 2012 Mattias Ellert - 8.6-2 - Add build requires for TexLive 2012 -------------------------------------------------------------------------------- ================================================================================ globus-io-9.4-1.el6 (FEDORA-EPEL-2013-0436) Globus Toolkit - uniform I/O interface -------------------------------------------------------------------------------- Update Information: Update to Globus Toolkit 5.2.4. See the release notes for details: http://www.globus.org/toolkit/docs/5.2/5.2.4/rn/ -------------------------------------------------------------------------------- ChangeLog: * Wed Feb 20 2013 Mattias Ellert - 9.4-1 - Update to Globus Toolkit 5.2.4 * Wed Feb 13 2013 Fedora Release Engineering - 9.3-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild * Thu Dec 6 2012 Mattias Ellert - 9.3-3 - Specfile clean-up * Thu Jul 19 2012 Fedora Release Engineering - 9.3-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ kaudiocreator-1.3-6.el6 (FEDORA-EPEL-2013-0477) Program for ripping and encoding Audio-CDs -------------------------------------------------------------------------------- Update Information: Fix Requires. Again. EPEL-6 branch for Fedora package. Fix naming issue. EPEL-6 branch for Fedora package. -------------------------------------------------------------------------------- References: [ 1 ] Bug #912934 - EPEL request https://bugzilla.redhat.com/show_bug.cgi?id=912934 -------------------------------------------------------------------------------- ================================================================================ mock-1.1.29-1.el6 (FEDORA-EPEL-2013-0476) Builds packages inside chroots -------------------------------------------------------------------------------- Update Information: main fix is to remove CLONE_NEWPID until we figure out correct usage for mock. This fixes memory hog issues on rawhide kernel -------------------------------------------------------------------------------- ChangeLog: * Fri Feb 22 2013 Clark Williams - 1.1.29-1 - move CLONE_NEWUTS to extended unshare options [BZ# 890695] - make epel-5-* config files safe to eval [BZ# 903686] - remove CLONE_NEWPID (for now) from unshare(2) call [BZ# 894623] - initialize package_state_opts so that package_state plugin will work - change default tests environment to be -i386 - From Tim Woods - Fix mockchain repo id calculation [BZ# 880849] - From Tzafrir Cohen - Fix most bashism in test scripts -------------------------------------------------------------------------------- References: [ 1 ] Bug #890695 - Mock fails with "ERROR: Namespace unshare failed." https://bugzilla.redhat.com/show_bug.cgi?id=890695 [ 2 ] Bug #903686 - mockchain complains about macros entry in epel-5-* configs https://bugzilla.redhat.com/show_bug.cgi?id=903686 [ 3 ] Bug #894623 - OSError: [Errno 12] Cannot allocate memory / mock broken after latest rawhide upgrade https://bugzilla.redhat.com/show_bug.cgi?id=894623 [ 4 ] Bug #880849 - mockchain addrepo creates bad repo id https://bugzilla.redhat.com/show_bug.cgi?id=880849 -------------------------------------------------------------------------------- ================================================================================ mysql-connector-python-1.0.9-1.el6 (FEDORA-EPEL-2013-0478) MySQL Connector for Python 2 -------------------------------------------------------------------------------- Update Information: Upstream Changelog for version 1.0.9 (2013-02-21) * Fixed the 'build' DistUtils command to copy version.py. This makes sure that the version of Connector/Python inside the build-directory is fully functional. (BUG#16236136) * Fixed connecting using SSL: we now set the ClientFlag.SSL automatically whenever SSL arguments are used when setting up the connection. (BUG#16217667) * Fixed passing string parameters to stored routines. (BUG#16217743) * Fixed mail address of FSF in copyright notice. (BUG#16249347) * Fixed IPv6 for older MS Windows versions. We now use socket.getaddrinfo() instead of inet_pton() to check whether we are connecting using IPv4 or IPv6. A new connection option 'force_ipv6' has been introduced. When set to True, IPv6 will be used when an address resolves to both IPv4 and IPv6. (BUG#16209119) -------------------------------------------------------------------------------- ChangeLog: * Wed Feb 27 2013 Remi Collet - 1.0.9-1 - version 1.0.9 GA - disable test suite in mock, fix FTBFS #914203 -------------------------------------------------------------------------------- ================================================================================ opendkim-2.8.0-3.el6 (FEDORA-EPEL-2013-0472) A DomainKeys Identified Mail (DKIM) milter to sign and/or verify mail -------------------------------------------------------------------------------- Update Information: Update to newer 2.8.0 upstream source. -------------------------------------------------------------------------------- ChangeLog: * Tue Feb 26 2013 Steve Jenkins 2.8.0-3 - Split into two spec files: systemd (F17+) and SysV (EL5-6) - systemd-only: Removed leading / from unitdir variables - Removed commented source lines - Created comment sections for easy switching between systemd and SysV * Mon Feb 25 2013 Steve Jenkins 2.8.0-2 - Added / in front of unitdir variables * Thu Feb 21 2013 Steve Jenkins 2.8.0-1 - Happy Birthday to me! :) - Updated to use newer upstream 2.8.0 source code - Migration from SysV initscript to systemd unit file - Added systemd build requirement - Edited comments in default configuration files - Changed default Canonicalization to relaxed/relaxed in config file - Changed default values in EnvironmentFile - Moved program startup options into EnvironmentFile - Moved default key check and generation on startup to external script - Removed AutoRestart directives from default config (systemd will handle) - Incorporated additional variable names throughout spec file - Added support for new opendkim-sysvinit package for legacy SysV systems -------------------------------------------------------------------------------- ================================================================================ openstack-packstack-2012.2.3-0.1.dev454.el6 (FEDORA-EPEL-2013-0474) Openstack Install Utility -------------------------------------------------------------------------------- Update Information: Here is where you give an explanation of your update. Here is where you give an explanation of your update. Here is where you give an explanation of your update. Here is where you give an explanation of your update. Here is where you give an explanation of your update. Here is where you give an explanation of your update. Here is where you give an explanation of your update. -------------------------------------------------------------------------------- References: [ 1 ] Bug #865347 - RFE: Hypervisor installer should change host's IO scheduler to deadline for improved performance https://bugzilla.redhat.com/show_bug.cgi?id=865347 -------------------------------------------------------------------------------- ================================================================================ perl-No-Worries-0.9-1.el6 (FEDORA-EPEL-2013-0475) Perl coding without worries -------------------------------------------------------------------------------- Update Information: Updating to upstream version 0.9, rhbz #916064. -------------------------------------------------------------------------------- ChangeLog: * Wed Feb 27 2013 Massimo Paladin 0.9-1 - Updating to upstream 0.9, rhbz #916064. * Thu Feb 14 2013 Fedora Release Engineering - 0.8-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ postgresql_autodoc-1.41-1.el6 (FEDORA-EPEL-2013-0470) PostgreSQL AutoDoc Utility -------------------------------------------------------------------------------- Update Information: Update to 1.41, for the following enhancements and fixes: Update xml output to be Docbook 4.5. ( Rod) Add the manpage to the release package. (Time Retout) Correct function argument list. They were reversed. (Jyrki Muukkonen) Correct synopsis output (Peter Eisentraut) -------------------------------------------------------------------------------- From sgallagh at redhat.com Thu Feb 28 13:16:07 2013 From: sgallagh at redhat.com (Stephen Gallagher) Date: Thu, 28 Feb 2013 08:16:07 -0500 Subject: Django-1.5 build In-Reply-To: <512F466C.7060706@matthias-runge.de> References: <512F466C.7060706@matthias-runge.de> Message-ID: <512F5897.7070901@redhat.com> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On Thu 28 Feb 2013 06:58:36 AM EST, Matthias Runge wrote: > Dear list, > > Django 1.5 was released about two days ago. I'd like to push a build to > rawhide, but I assume, that will break many dependent packages. > > The plan is, to delay the push, until other packages are fixed, or to > push in about 14 days. > > I have a scratch-build build ready, one might to try, it should install > cleanly e.g. on Fedora 18. > > http://kojipkgs.fedoraproject.org//work/tasks/3880/5063880/python-django-1.5-1.fc19.noarch.rpm How many Django-based packages are we talking about? Should we be considering putting things together in a side tag before landing in Rawhide? Also, I know at least Review Board is incompatible with 1.5 at this time. They're planning to have a 1.5-compatible release sometime in the next month or so. Looking at the release notes[1], there is a sizeable number of backwards-incompatible changes present in this new version. I think it's going to bite us if we force it straight into Rawhide at this point. Given the way that Django tends to operate (backwards-incompatible releases about every six months with only the current and previous release supported for bugfixes and security), I'm wondering if we shouldn't just drop the 'python-django' package entirely and go with 'python-django14', 'python-django15', etc. from here until eternity, retiring unsupported versions only between upstream releases. This is a policy that would probably also work acceptably for EPEL (CCed). Also, Django 1.5's release notes[2] indicate that it now has support for Python 3.2 and later. I'd strongly recommend that we should be dual-building python3-django15 as well here. [1] https://docs.djangoproject.com/en/1.5/releases/1.5/#backwards-incompatible-changes-in-1-5 [2] https://docs.djangoproject.com/en/1.5/releases/1.5/#python-3-support -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.13 (GNU/Linux) Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/ iEYEARECAAYFAlEvWJcACgkQeiVVYja6o6OJNQCdGDMix23UbQaBt54/8qm2pZHH PCMAoIwUySlkccFtXorJH2iJQcAzdtLf =RXfG -----END PGP SIGNATURE----- From mrunge at matthias-runge.de Thu Feb 28 16:13:39 2013 From: mrunge at matthias-runge.de (Matthias Runge) Date: Thu, 28 Feb 2013 17:13:39 +0100 Subject: Django-1.5 build In-Reply-To: <512F5897.7070901@redhat.com> References: <512F466C.7060706@matthias-runge.de> <512F5897.7070901@redhat.com> Message-ID: <512F8233.60803@matthias-runge.de> -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 On 02/28/2013 02:16 PM, Stephen Gallagher wrote: > On Thu 28 Feb 2013 06:58:36 AM EST, Matthias Runge wrote: >> Dear list, > >> Django 1.5 was released about two days ago. I'd like to push a >> build to rawhide, but I assume, that will break many dependent >> packages. > >> The plan is, to delay the push, until other packages are fixed, >> or to push in about 14 days. > >> I have a scratch-build build ready, one might to try, it should >> install cleanly e.g. on Fedora 18. > >> http://kojipkgs.fedoraproject.org//work/tasks/3880/5063880/python-django-1.5-1.fc19.noarch.rpm > >> > How many Django-based packages are we talking about? Should we be > considering putting things together in a side tag before landing > in Rawhide? Well, looking at my list of ~40 python-django packages, I know by coincidence just a single package to be compatible with Django-1.5 > Looking at the release notes[1], there is a sizeable number of > backwards-incompatible changes present in this new version. I > think it's going to bite us if we force it straight into Rawhide at > this point. Given the way that Django tends to operate > (backwards-incompatible releases about every six months with only > the current and previous release supported for bugfixes and > security), I'm wondering if we shouldn't just drop the > 'python-django' package entirely and go with 'python-django14', > 'python-django15', etc. from here until eternity, retiring > unsupported versions only between upstream releases. This is a > policy that would probably also work acceptably for EPEL (CCed). That seems to be a good proposal for me. Review request is here[1], based on the current python-django package. Shouldn't be an issue. For EPEL, we have the Django14 package. This shouldn't change there, but we can think about introducing provides: python-django14 there. Also, IMHO the number of incompatible changes became less and less disruptive in the past, and I see this as maturing of the project. > > Also, Django 1.5's release notes[2] indicate that it now has > support for Python 3.2 and later. I'd strongly recommend that we > should be dual-building python3-django15 as well here. > Yes, I was thinking about a python3-django feature for F20, as it's absolutely too late for this as a feature for F19, right? As there is at least /usr/bin/django-admin provided by the package, we should decide, if that should be coming from the python3 package, if the python3 version should carry a python3 (or just a 3) in it's name, or what to do else. Matthias [1] https://bugzilla.redhat.com/show_bug.cgi?id=916676 - -- Matthias Runge -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.13 (GNU/Linux) Comment: Using GnuPG with Thunderbird - http://www.enigmail.net/ iQEcBAEBAgAGBQJRL4IzAAoJEOnz8qQwcaIWygcIAJ+7J4B+nabmV4eSaMguNmXM F81PcSf/HjLQQSeFi2n3CFfM+ZcYnTbBJ+rDKXmIUDLGRRu6tgtOduX8s4x9oQto 4BshL7njsBK3fEKUFJYY2xoJyEC8fmZbzaQ5uZyM1Tqa88vjo/SSYPluiRUWrtL8 pTt3U/7HN3bU/8byzxLyWxtyaf0z+GJvYYGjZlVN+s+aCOeGbYoi3JFLQZ8ZFI7i sz+96VVxYWY8hm7uHn7xUzuh3LoDsYFvsNuGfmT2zliHkSmGnO5RI18w/kW9sbtG gPWtHhWpV/kIWiJhLxakImWQ0XNZx72T0wXWA+usVqJ7HVe6nhDGl09E+jXasU0= =pDV1 -----END PGP SIGNATURE----- From metherid at gmail.com Thu Feb 28 16:18:31 2013 From: metherid at gmail.com (Rahul Sundaram) Date: Thu, 28 Feb 2013 11:18:31 -0500 Subject: Django-1.5 build In-Reply-To: <512F8233.60803@matthias-runge.de> References: <512F466C.7060706@matthias-runge.de> <512F5897.7070901@redhat.com> <512F8233.60803@matthias-runge.de> Message-ID: Hi On Thu, Feb 28, 2013 at 11:13 AM, Matthias Runge wrote: > > Yes, I was thinking about a python3-django feature for F20, as it's > absolutely too late for this as a feature for F19, right? > I don't think so. Even if you want go through the formal feature process, you can request an exception Rahul -------------- next part -------------- An HTML attachment was scrubbed... URL: