From karsten at redhat.com Wed Feb 4 13:54:02 2004 From: karsten at redhat.com (Karsten Hopp) Date: Wed, 4 Feb 2004 14:54:02 +0100 Subject: Fedora Core 1 Update: privoxy-3.0.3-1 Message-ID: <20040204135401.GC10165@redhat.com> --------------------------------------------------------------------- Fedora Update Notification FEDORA-2003-065 2004-02-04 --------------------------------------------------------------------- Name : privoxy Version : 3.0.3 Release : 1 Summary : Privoxy - privacy enhancing proxy Description : Privoxy is a web proxy with advanced filtering capabilities for protecting privacy, filtering web page content, managing cookies, controlling access, and removing ads, banners, pop-ups and other obnoxious Internet junk. Privoxy has a very flexible configuration and can be customized to suit individual needs and tastes. Privoxy has application for both stand-alone systems and multi-user networks. Privoxy is based on the Internet Junkbuster. --------------------------------------------------------------------- Update Information: - Fixed two memory leaks. Process growth seems stopped now. - Further tightened security against malicious toggle-off links. - Excluded text/plain MIME types from filtering. This fixes a couple of client-crashing, download corruption and Privoxy performance issues, whose root cause lies in web servers labelling content of unknown type as text/plain. - Assorted fixes for POSIX compliance, signal handling, graceful termination, compiler warnings, OSX support, Win32 systray, error logging, hostname wildcards, correct detection of NetBSD. - Workarounds for client (iTunes etc) and server (PHP < 4.2.3) bugs including the notorious "blank page" problem. - Various filter improvements; most notably the unsolicited-popups filter became less destructive - Major revamp of the actions file --------------------------------------------------------------------- --------------------------------------------------------------------- This update can be downloaded from: http://download.fedora.redhat.com/pub/fedora/linux/core/updates/1/ 5f8c5cebf24f1b7b6873bc24cf8c4634 SRPMS/privoxy-3.0.3-1.src.rpm 644aa404da1bf5520caa26de854796eb i386/privoxy-3.0.3-1.i386.rpm 53c7fac328773589663e44acd83ba7d6 i386/debug/privoxy-debuginfo-3.0.3-1.i386.rpm This update can also be installed with the Update Agent; you can launch the Update Agent with the 'up2date' command. --------------------------------------------------------------------- From gbenson at redhat.com Wed Feb 4 15:31:37 2004 From: gbenson at redhat.com (Gary Benson) Date: Wed, 4 Feb 2004 15:31:37 +0000 Subject: Fedora Core 1 Update: mod_python-3.0.4-0.1 Message-ID: <20040204153133.GH3457@redhat.com> --------------------------------------------------------------------- Fedora Update Notification FEDORA-2004-066 2004-02-04 --------------------------------------------------------------------- Name : mod_python Version : 3.0.4 Release : 0.1 Summary : An embedded Python interpreter for the Apache Web server. Description : Mod_python is a module that embeds the Python language interpreter within the server, allowing Apache handlers to be written in Python. Mod_python brings together the versatility of Python and the power of the Apache Web server for a considerable boost in flexibility and performance over the traditional CGI approach. --------------------------------------------------------------------- Update Information: This update includes the latest stable release of mod_python which fixes a possible denial of service in the previous release. --------------------------------------------------------------------- * Tue Feb 03 2004 Gary Benson 3.0.4-0.1 - upgrade to 3.0.4 (fixes CVE CAN-2003-0973) --------------------------------------------------------------------- This update can be downloaded from: http://download.fedora.redhat.com/pub/fedora/linux/core/updates/1/ 6fb768f5416c0776e4227e8ded0b1d14 SRPMS/mod_python-3.0.4-0.1.src.rpm e489637dc385b501ede7f5f3ed68f34c i386/mod_python-3.0.4-0.1.i386.rpm 67f3984a1aba7f3e329e165a415f28c0 i386/debug/mod_python-debuginfo-3.0.4-0.1.i386.rpm This update can also be installed with the Update Agent; you can launch the Update Agent with the 'up2date' command. --------------------------------------------------------------------- From byte at aeon.com.my Wed Feb 4 18:57:44 2004 From: byte at aeon.com.my (Colin Charles) Date: Thu, 05 Feb 2004 05:57:44 +1100 Subject: Fedora News Updates #5 Message-ID: <1075921063.4431.33.camel@hermione> Another issue of the Fedora News Updates has been released and is available at: http://fedoranews.org/colin/fnu/week5.shtml The current issue is always linked to http://fedoranews.org/colin/fnu/current.shtml In this issue we cover Eric Raymond's new Multimedia HOWTO, the updated schedule, a report on the Fedora Bug Squad, as well as important changes to how the #fedora IRC channel works now. -- Colin Charles, byte at aeon.com.my http://www.bytebot.net/ From pknirsch at redhat.com Fri Feb 6 15:58:07 2004 From: pknirsch at redhat.com (Phil Knirsch) Date: Fri, 06 Feb 2004 16:58:07 +0100 Subject: Fedora Security Update Notification netpbm-9.24-12.1.1 Message-ID: <4023B98F.8080906@redhat.com> --------------------------------------------------------------------- Fedora Update Notification FEDORA-2004-068 2004-02-06 --------------------------------------------------------------------- Name : netpbm Version : 9.24 Release : 12.1.1 Summary : A library for handling different graphics file formats. Description : The netpbm package contains a library of functions which support programs for handling various graphics file formats, including .pbm (portable bitmaps), .pgm (portable graymaps), .pnm (portable anymaps), .ppm (portable pixmaps) and others. --------------------------------------------------------------------- Update Information: This update of the netpbm package fixes some security holes found by the Debian group. An update to the latest version these packages provide is recommended to every user of the netpbm programs and toosl. --------------------------------------------------------------------- * Thu Jan 22 2004 Phil Knirsch 9.24-12.1.1 - Included new debian security fixes and made security errata. --------------------------------------------------------------------- This update can be downloaded from: http://download.fedora.redhat.com/pub/fedora/linux/core/updates/1/ c3d2e941eb2ff976af2876aa06d32134 SRPMS/netpbm-9.24-12.1.1.src.rpm 4bd34bcca55b1eb33e357b330166219c i386/netpbm-9.24-12.1.1.i386.rpm 75e7b61473cee416d8b42bc955341fdf i386/netpbm-devel-9.24-12.1.1.i386.rpm dfe98abf3ff23b721af606eb68a77095 i386/netpbm-progs-9.24-12.1.1.i386.rpm b97b466bdaa49a93bc9fa19eeb78a1c8 i386/debug/netpbm-debuginfo-9.24-12.1.1.i386.rpm This update can also be installed with the Update Agent; you can launch the Update Agent with the 'up2date' command. --------------------------------------------------------------------- -- Philipp Knirsch | Tel.: +49-711-96437-470 Development | Fax.: +49-711-96437-111 Red Hat GmbH | Email: Phil Knirsch Hauptstaetterstr. 58 | Web: http://www.redhat.de/ D-70178 Stuttgart Kaa's Law: In any sufficiently large group of people most are idiots. From twoerner at redhat.com Fri Feb 6 16:01:39 2004 From: twoerner at redhat.com (Thomas Woerner) Date: Fri, 06 Feb 2004 17:01:39 +0100 Subject: Fedora Core 1 Update: iptables-1.2.9-1.0 Message-ID: <4023BA63.70705@redhat.com> --------------------------------------------------------------------- Fedora Update Notification FEDORA-2004-049 2004-02-06 --------------------------------------------------------------------- Name : iptables Version : 1.2.9 Release : 1.0 Summary : Tools for managing Linux kernel packet filtering capabilities. Description : The iptables utility controls the network packet filtering code in the Linux kernel. If you need to set up firewalls and/or IP masquerading, you should install this package. --------------------------------------------------------------------- * Wed Dec 17 2003 Thomas Woerner 1.2.9-1.0 - vew version 1.2.9 - new config options in ipXtables-config: IPTABLES_MODULES_UNLOAD - more documentation in ipXtables-config - fix for netlink security issue in libipq (devel package) - print fix for libipt_icmp (#109546) --------------------------------------------------------------------- This update can be downloaded from: http://download.fedora.redhat.com/pub/fedora/linux/core/updates/1/ 6d5df1cb3b48fd3700d87932b0197db2 SRPMS/iptables-1.2.9-1.0.src.rpm 71e801479e6472b65d61087308ee6dcd i386/iptables-1.2.9-1.0.i386.rpm 85cedc623315a02eecd3652a13476c8f i386/iptables-ipv6-1.2.9-1.0.i386.rpm be0f0e0bf06d06682cb7be0bfff0d3bd i386/iptables-devel-1.2.9-1.0.i386.rpm ae62103bbadbcd2c2fb2d530309b383f i386/debug/iptables-debuginfo-1.2.9-1.0.i386.rpm This update can also be installed with the Update Agent; you can launch the Update Agent with the 'up2date' command. --------------------------------------------------------------------- From notting at redhat.com Mon Feb 9 15:28:41 2004 From: notting at redhat.com (Bill Nottingham) Date: Mon, 9 Feb 2004 10:28:41 -0500 Subject: Fedora Core 1 Update: gnome-libs-1.4.1.2.90-36 Message-ID: <20040209152841.GD4208@devserv.devel.redhat.com> --------------------------------------------------------------------- Fedora Update Notification FEDORA-2004-042 2004-02-09 --------------------------------------------------------------------- Name : gnome-libs Version : 1.4.1.2.90 Release : 36 Summary : The main GNOME libraries. Description : GNOME (GNU Network Object Model Environment) is a user-friendly set of GUI applications and desktop tools to be used in conjunction with a window manager for the X Window System. The gnome-libs package includes libraries that are needed to run GNOME. --------------------------------------------------------------------- Update Information: This update fixes some issues required for building GNOME 1 apps on x86_64. --------------------------------------------------------------------- * Tue Dec 02 2003 Bill Nottingham 1:1.4.1.2.90-36 - fix db linking on x86_64 --------------------------------------------------------------------- This update can be downloaded from: http://download.fedora.redhat.com/pub/fedora/linux/core/updates/1/ b7441b50719a07f286c6a45c4b3fa8df SRPMS/gnome-libs-1.4.1.2.90-36.src.rpm 596f226129539d21a7acbad5bc749d4d i386/gnome-libs-1.4.1.2.90-36.i386.rpm 826855ca32f79ab0ca14abe5dc49400f i386/gnome-libs-devel-1.4.1.2.90-36.i386.rpm 045d275f36645b979046002ff5ef439e i386/debug/gnome-libs-debuginfo-1.4.1.2.90-36.i386.rpm This update can also be installed with the Update Agent; you can launch the Update Agent with the 'up2date' command. --------------------------------------------------------------------- From jakub at redhat.com Mon Feb 9 15:31:29 2004 From: jakub at redhat.com (Jakub Jelinek) Date: Mon, 9 Feb 2004 10:31:29 -0500 Subject: [SECURITY] Fedora Core 1 Update: mc-4.6.0-8.4 Message-ID: <20040209153129.GW31589@devserv.devel.redhat.com> --------------------------------------------------------------------- Fedora Update Notification FEDORA-2004-058 2004-02-09 --------------------------------------------------------------------- Name : mc Version : 4.6.0 Release : 8.4 Summary : User-friendly text console file manager and visual shell. Description : Midnight Commander is a visual shell much like a file manager, only with many more features. It is a text mode application, but it also includes mouse support if you are running GPM. Midnight Commander's best features are its ability to FTP, view tar and zip files, and to poke into RPMs for specific files. --------------------------------------------------------------------- * Sat Jan 31 2004 Jakub Jelinek 4.6.0-8.4 - fix previous patch * Fri Jan 30 2004 Jakub Jelinek 4.6.0-8.3 - update php.syntax file (#112645) - fix crash with large syntax file (#112644) * Fri Jan 23 2004 Jakub Jelinek 4.6.0-8.2 - update CAN-2003-1023 fix to still make vfs symlinks relative, but with bounds checking * Sat Jan 17 2004 Warren Togami 4.6.0-8.1 - rebuild for FC1 * Sat Jan 17 2004 Warren Togami 4.6.0-7 - BuildRequires glib2-devel, slang-devel, XFree86-devel, e2fsprogs-devel, gettext - Copyright -> License - PreReq -> Requires - Explicit zero epoch in versioned dev dep - /usr/share/mc directory ownership - Improve summary - (Seth Vidal QA) fix for CAN-2003-1023 (Security) --------------------------------------------------------------------- This update can be downloaded from: http://download.fedora.redhat.com/pub/fedora/linux/core/updates/1/ b4b3bffbc6c96184041b80d04f231264 SRPMS/mc-4.6.0-8.4.src.rpm 40cb4c39b4d1fa21194cbe352f9e8d57 i386/mc-4.6.0-8.4.i386.rpm 9cbeef390a1326737c471dd75de69546 i386/debug/mc-debuginfo-4.6.0-8.4.i386.rpm This update can also be installed with the Update Agent; you can launch the Update Agent with the 'up2date' command. --------------------------------------------------------------------- From otaylor at redhat.com Mon Feb 9 19:58:32 2004 From: otaylor at redhat.com (Owen Taylor) Date: Mon, 09 Feb 2004 14:58:32 -0500 Subject: Fedora Core 1 Update: pango-1.2.5-4 Message-ID: <1076356712.7362.32.camel@localhost.localdomain> --------------------------------------------------------------------- Fedora Update Notification FEDORA-2004-041 2004-02-09 --------------------------------------------------------------------- Name : pango Version : 1.2.5 Release : 4 Summary : System for layout and rendering of internationalized text. Description : Pango is a system for layout and rendering of internationalized text. --------------------------------------------------------------------- Update Information: This update modifies the handling of the pango.modules module information cache to enable dual 32/64bit installs of the Pango libraries on x86_64. --------------------------------------------------------------------- * Thu Dec 18 2003 Owen Taylor 1.2.5-4 - Deal with autoconf changing -linux to -linux-gnu (#112387) * Mon Dec 08 2003 Owen Taylor 1.2.5-3.0 - Package pango-querymodules as pango-querymodules-{32,64}; look for pango.modules in an architecture-specific directory. (Fixes #111511, Justin M. Forbes) * Mon Sep 08 2003 Owen Taylor 1.2.5-2.0 - Fix problem with corrupt Thai shaper --------------------------------------------------------------------- This update can be downloaded from: http://download.fedora.redhat.com/pub/fedora/linux/core/updates/1/ c45c0e5b9920da14890d7f12b7e9e17e SRPMS/pango-1.2.5-4.src.rpm bc8a9292db12fb26496d66abbf9a2ddb i386/pango-1.2.5-4.i386.rpm fab1d3a0dcb791dcbfc973da1f8f305a i386/pango-devel-1.2.5-4.i386.rpm e6bcf0e376978a3ce11d2d07e665e957 i386/debug/pango-debuginfo-1.2.5-4.i386.rpm This update can also be installed with the Update Agent; you can launch the Update Agent with the 'up2date' command. --------------------------------------------------------------------- From nalin at redhat.com Tue Feb 10 01:02:09 2004 From: nalin at redhat.com (Nalin Dahyabhai) Date: Mon, 9 Feb 2004 20:02:09 -0500 Subject: Fedora Core 1 Update: nss_ldap-207-6 Message-ID: <20040210010209.GA19197@redhat.com> --------------------------------------------------------------------- Fedora Update Notification FEDORA-2004-023 2004-02-09 --------------------------------------------------------------------- Name : nss_ldap Version : 207 Release : 6 Summary : NSS library and PAM module for LDAP. Description : This package includes two LDAP access clients: nss_ldap and pam_ldap. Nss_ldap is a set of C library extensions that allow X.500 and LDAP directory servers to be used as a primary source of aliases, ethers, groups, hosts, networks, protocol, users, RPCs, services, and shadow passwords (instead of or in addition to using flat files or NIS). Pam_ldap is a module for Linux-PAM that supports password changes, V2 clients, Netscape's SSL, ypldapd, Netscape Directory Server password policies, access authorization, and crypted hashes. --------------------------------------------------------------------- Update Information: The nss_ldap package included in Fedora Core 1 would fail to perform schema mapping due to an incompatibility with newer versions of Berkeley DB, such as the one with which it was built. This incompatibility was fixed upstream in version 210, and is fixed in this update. --------------------------------------------------------------------- * Tue Nov 25 2003 Nalin Dahyabhai 207-6 - rebuild * Thu Nov 20 2003 Nalin Dahyabhai 207-5 - fix objectclass and attribute mapping, which failed due to uninitialized fields in mapping index structures, fixed upstream in 210 (#110547) * Mon Nov 10 2003 Nalin Dahyabhai 207-4 - link with the proper libsasl (1 or 2) for the version of OpenLDAP we are linking with (#106801) --------------------------------------------------------------------- This update can be downloaded from: http://download.fedora.redhat.com/pub/fedora/linux/core/updates/1/ 8e40b1b7f36ce3e91b72eb3fc63bf9a8 SRPMS/nss_ldap-207-6.src.rpm aaf840a1934c3eef83135e0b708201cc i386/nss_ldap-207-6.i386.rpm 658fb10ab40938856b30161db57694c3 i386/debug/nss_ldap-debuginfo-207-6.i386.rpm This update can also be installed with the Update Agent; you can launch the Update Agent with the 'up2date' command. --------------------------------------------------------------------- -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: not available URL: From nalin at redhat.com Tue Feb 10 01:02:20 2004 From: nalin at redhat.com (Nalin Dahyabhai) Date: Mon, 9 Feb 2004 20:02:20 -0500 Subject: Fedora Core 1 Update: pam_krb5-2.0.5-1 Message-ID: <20040210010220.GA19212@redhat.com> --------------------------------------------------------------------- Fedora Update Notification FEDORA-2004-024 2004-02-09 --------------------------------------------------------------------- Name : pam_krb5 Version : 2.0.5 Release : 1 Summary : A Pluggable Authentication Module for Kerberos 5. Description : This is pam_krb5, a pluggable authentication module that can be used with Linux-PAM and Kerberos 5. This module supports password checking, ticket creation, and optional TGT verification and conversion to Kerberos IV tickets. The included pam_krb5afs module also gets AFS tokens if so configured. --------------------------------------------------------------------- Update Information: The version of pam_krb5 included in Fedora Core 1 did not honor the ticket_lifetime setting in /etc/krb5.conf's [appdefaults] section, in the "pam" subsection. The default renewable lifetime set in this configuration file is 10 hours. The default ticket lifetime used in libkrb5 is 24 hours. When answering a request for initial credentials which specifies these lifetimes, some KDC implementations will reply with initial credentials with a renewable lifetime increased to match the ticket lifetime. This modification to the response is treated as an error by libkrb5, and authentication fails when it would otherwise succeed. The updated version of pam_krb5 now honors the ticket_lifetime setting, and the configured default ticket lifetime (10 hours) does not trigger this error condition. --------------------------------------------------------------------- 2003-11-20 nalin * src/initopts.c(_pam_krb5_set_init_opts): set the ticket lifetime, if configured, as an initopt. This change lets us fix #109331. --------------------------------------------------------------------- This update can be downloaded from: http://download.fedora.redhat.com/pub/fedora/linux/core/updates/1/ ffb20c1eb534254ff590c59958fce3ca SRPMS/pam_krb5-2.0.5-1.src.rpm 69a7ead3a682cf825265b88962b48c0c i386/pam_krb5-2.0.5-1.i386.rpm 2e6f87c164b4841d7af442e6f93d0372 i386/debug/pam_krb5-debuginfo-2.0.5-1.i386.rpm This update can also be installed with the Update Agent; you can launch the Update Agent with the 'up2date' command. --------------------------------------------------------------------- -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: not available URL: From wtogami at redhat.com Wed Feb 11 05:03:04 2004 From: wtogami at redhat.com (Warren Togami) Date: Tue, 10 Feb 2004 19:03:04 -1000 Subject: Fedora Core 1 Update: gdm-2.4.4.5-1.2 Message-ID: <4029B788.4050701@redhat.com> --------------------------------------------------------------------- Fedora Update Notification FEDORA-2004-071 2004-02-10 --------------------------------------------------------------------- Name : gdm Version : 2.4.4.5 Release : 1.2 Summary : The GNOME Display Manager. Description : Gdm (the GNOME Display Manager) is a highly configurable reimplementation of xdm, the X Display Manager. Gdm allows you to log into your system with the X Window System running and supports running several different X sessions on your local machine at the same time. --------------------------------------------------------------------- Update Information: This is a bug fix update that resolves these three issues: Bugzilla #110315 - GDM fails counting of XDMCP maximum sessions This resolves the issue where XDMCP sessions would fail with "Maximum number of open XDMCP sessions reached" due to problems with the MaxSession counter. This issue has been problematic especially for the K12LTSP community. Bugzilla #113154 - GDM file descriptor leak Also fixed by the same patch. Bugzilla #113995 - GDM Japanese translations missing Patch contributed by Jens Petersen. Upgrade Notice: Due to past file format changes, gdm moves your existing gdm.conf and possibly other gdm configuration files to .rpmsave and replaces it with a pristine copy. Normal single desktop users probably do not need to worry about this, but this can be problematic for LTSP or VNC remote desktop users. It is recommended that these users review changes between the two files and reconfigure. The 'gdmsetup' GUI config tool found in System Settings -> Login Screen may be useful in configuration of gdm. http://redhat.com/archives/k12osn/2004-February/msg00322.html K12LTSP 4.0.x users may want to read Eric Harrison's note here for automatic post-upgrade configuration. --------------------------------------------------------------------- * Wed Feb 04 2004 Warren Togami 1:2.4.4.5-1.2 - renamed for FC1 update * Tue Feb 03 2004 Warren Togami 1:2.4.4.5-9 - add two lines to match upstream CVS to xdmcp_sessions.patch Fully resolves #110315 and #113154 * Sun Feb 01 2004 Warren Togami 1:2.4.4.5-8 - patch30 xdmcp_session counter fix from gdm-2.5.90.0 #110315 - automake14 really needed, not automake - BR libcroco-devel, libcroco-devel, libattr-devel, gettext - conditionally BR libselinux-devel - explicit epoch in all deps - make the ja.po time format change with a sed expression rather than overwriting the whole file (Petersen #113995) --------------------------------------------------------------------- This update can be downloaded from: http://download.fedora.redhat.com/pub/fedora/linux/core/updates/1/ 516c9912173197e67f094a782c909f02 SRPMS/gdm-2.4.4.5-1.2.src.rpm bbe877971605ff28d19be5fc76388140 i386/gdm-2.4.4.5-1.2.i386.rpm 13c11bebc5fb479bd7d2acaf5696519e i386/debug/gdm-debuginfo-2.4.4.5-1.2.i386.rpm This update can also be installed with the Update Agent; you can launch the Update Agent with the 'up2date' command. --------------------------------------------------------------------- From davej at redhat.com Wed Feb 11 11:28:38 2004 From: davej at redhat.com (Dave Jones) Date: Wed, 11 Feb 2004 11:28:38 +0000 Subject: [SECURITY] Updated kernel packages. Message-ID: <20040211112838.GA6310@redhat.com> --------------------------------------------------------------------- Fedora Security Update Notification FEDORA-2004-063 2004-02-11 --------------------------------------------------------------------- Name : kernel Version : 2.4.22 Release : 1.2166.nptl Summary : The Linux kernel (the core of the Linux operating system) Description : The kernel package contains the Linux kernel (vmlinuz), the core of your Fedora Core Linux operating system. The kernel handles the basic functions of the operating system: memory allocation, process allocation, device input and output, etc. --------------------------------------------------------------------- * Mon Jan 26 2004 Dave Jones - Fix error in wan config files that broke some configurators. - Reenable VIA DRI. * Fri Jan 16 2004 Dave Jones - Merge VM updates from post 2.4.22 - Fix AMD64 ptrace security hole. (CAN-2004-0001) - Fix NPTL SMP hang. - Merge bits from 2.4.25pre - R128 DRI limits checking. (CAN-2004-0003) - Various ymfpci fixes. - tmpfs readdir does not update dir atime - Minor IPV4/Netfilter changes. - Fix userspace dereferencing bug in USB Vicam driver. - Merge a few more bits from 2.4.23pre - Numerous tmpfs fixes. - Use list_add_tail in buffer_insert_list - Correctly dequeue SIGSTOP signals in kupdated - Update laptop-mode patch to match mainline. * Wed Jan 14 2004 Dave Jones - Merge a few more missing netfilter fixes from upstream. * Tue Jan 13 2004 Dave Jones - Reenable Tux. - Lots of updates from the 2.4.23 era. * Mon Jan 12 2004 Dave Jones - Avoid deadlocks in USB storage. * Fri Jan 09 2004 Dave Jones - Fix thread creation race. * Thu Jan 08 2004 Dave Jones - USB storage: Make Pentax Optio S4 work - Config file tweaking. Only enable CONFIG_SIBLINGS_2 on the kernels that need it. --------------------------------------------------------------------- This update can be downloaded from: http://download.fedora.redhat.com/pub/fedora/linux/core/updates/1/ 553f4944dcb4efacd5c121e3b393e3b5 SRPMS/kernel-2.4.22-1.2166.nptl.src.rpm edda6d7c8e61b35e70429dd3554b947c i386/kernel-source-2.4.22-1.2166.nptl.i386.rpm 6b826de879e4f6d9251faebf4238e328 i386/kernel-doc-2.4.22-1.2166.nptl.i386.rpm b32053e5046cd01734eb9ce9baf52f93 i386/kernel-BOOT-2.4.22-1.2166.nptl.i386.rpm 41bf2bba0664246ed2607c3a3feb88fe i386/debug/kernel-debuginfo-2.4.22-1.2166.nptl.i386.rpm e4f4674f933c69dcdbad6f05229d59be i386/kernel-2.4.22-1.2166.nptl.i586.rpm 925b246a817cce46c817bd274442ed98 i386/debug/kernel-debuginfo-2.4.22-1.2166.nptl.i586.rpm def776965b602ec0816b8ab53c13e8bb i386/kernel-2.4.22-1.2166.nptl.i686.rpm 06b4703c7d2a060bba8e7ebc2e3ae381 i386/kernel-smp-2.4.22-1.2166.nptl.i686.rpm 52691d36723c08cc88e240e174d91186 i386/debug/kernel-debuginfo-2.4.22-1.2166.nptl.i686.rpm a6ac8355b5fa29f5e60eb8ed916b02b8 i386/kernel-2.4.22-1.2166.nptl.athlon.rpm 7520911214522bad67f0229aab79607d i386/kernel-smp-2.4.22-1.2166.nptl.athlon.rpm d52fdb74c33f4b7414f4449882e026c3 i386/debug/kernel-debuginfo-2.4.22-1.2166.nptl.athlon.rpm This update can also be installed with the Update Agent; you can launch the Update Agent with the 'up2date' command. --------------------------------------------------------------------- From twaugh at redhat.com Wed Feb 11 17:58:18 2004 From: twaugh at redhat.com (Tim Waugh) Date: Wed, 11 Feb 2004 17:58:18 +0000 Subject: Fedora Core 1 Update: foomatic-3.0.0-21.3 Message-ID: <20040211175818.GM25654@redhat.com> --------------------------------------------------------------------- Fedora Update Notification FEDORA-2004-051 2004-02-11 --------------------------------------------------------------------- Name : foomatic Version : 3.0.0 Release : 21.3 Summary : Foomatic printer database. Description : Foomatic is a comprehensive, spooler-independent database of printers, printer drivers, and driver descriptions. It contains utilities to generate driver description files and printer queues for CUPS, LPD, LPRng, and PDQ using the database. There is also the possibility to read the PJL options out of PJL-capable laser printers and take them into account at the driver description file generation. There are spooler-independent command line interfaces to manipulate queues (foomatic-configure) and to print files/manipulate jobs (foomatic printjob). The site http://www.linuxprinting.org/ is based on this database. --------------------------------------------------------------------- Update Information: A newer printer drivers database is now available, including many updates. --------------------------------------------------------------------- * Mon Feb 09 2004 Tim Waugh 3.0.0-21.3 - Fix up HP Color Inkjet CP1700 support. * Mon Jan 26 2004 Tim Waugh 3.0.0-21.2 - Remove PrintoutMode option from gimp-print driver to avoid breaking it. - Upgrade filters to 3.0.1rc3. - Upgrade engine to 3.0.1rc2. - No longer need symlink patch. * Mon Jan 19 2004 Tim Waugh 3.0.0-21.1 - Build for Fedora Core 1 printer drivers update. - Downgrade filters back down to 3.0.0. * Mon Jan 12 2004 Tim Waugh 3.0.0-21 - Build for Fedora Core 1 printer drivers update. - Revert Omni update temporarily. - Downgrade engine to 20031217 to stick to the stable branch. * Mon Jan 12 2004 Tim Waugh 3.0.0-20 - Updated Omni printers to 0.9.1. * Mon Jan 12 2004 Tim Waugh 3.0.0-19 - Build for Fedora Core 1 printer drivers update. - No longer need symlink patch. - Updated fontpath patch. - Updated engine to 20040112. - Updated db to 20040112. - Updated gimp-print data to 4.2.6. * Tue Jan 06 2004 Tim Waugh 3.0.0-18 - Build for Fedora Core 1 printer drivers update. - Explicitly state conflict with hpijs < 1.5. - Make foomatic-ppdfile accept '-t type' like foomatic-datafile used to. * Tue Dec 23 2003 Tim Waugh 3.0.0-17 - Fix up gimp-print XML (bug #112574). * Fri Dec 19 2003 Tim Waugh 3.0.0-16 - Need the ppd driver too. * Fri Dec 19 2003 Tim Waugh 3.0.0-15 - Reinstate ppdload long enough for me to work around its disappearance. * Thu Dec 18 2003 Tim Waugh - Updated db to 20031218. - No longer need hpdj656, dell, mc3100 patches. * Wed Dec 17 2003 Tim Waugh 3.0.0-14 - Updated db to 20031217. - Updated engine to 20031217. - Updated hpijs to 1.5-20031217. - Use relative symlinks. * Fri Dec 12 2003 Tim Waugh 3.0.0-13 - Add Minolta magicolor 3100. * Tue Dec 02 2003 Tim Waugh - Don't ship backup files. * Sat Nov 29 2003 Tim Waugh 3.0.0-12 - Undo over-zealous percent escaping in PostScript.xml - Build requires libxml2-devel (bug #110589). - Use relative, not absolute, symlink for CUPS filter. * Fri Nov 07 2003 Tim Waugh 3.0.0-11 - Add pxlmono driver for HP LaserJet 5 (bug #109378). * Wed Nov 05 2003 Tim Waugh 3.0.0-10 - Updated db to 20031105. - Drop filters path patch. - Updated fontpath patch, both libdir patches. - Updated engine and filters to 3.0-20031105. - Updated hpijs db to 1.4-1. --------------------------------------------------------------------- This update can be downloaded from: http://download.fedora.redhat.com/pub/fedora/linux/core/updates/1/ 68763ebfd903998b3ce12a549df06574 SRPMS/foomatic-3.0.0-21.3.src.rpm 405c66079bc9b4294567381a2c0ce145 i386/foomatic-3.0.0-21.3.i386.rpm 132716869897c3fb057f3ec02ff1b971 i386/debug/foomatic-debuginfo-3.0.0-21.3.i386.rpm This update can also be installed with the Update Agent; you can launch the Update Agent with the 'up2date' command. --------------------------------------------------------------------- -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: not available URL: From twaugh at redhat.com Wed Feb 11 17:58:22 2004 From: twaugh at redhat.com (Tim Waugh) Date: Wed, 11 Feb 2004 17:58:22 +0000 Subject: Fedora Core 1 Update: ghostscript-7.07-15.1 Message-ID: <20040211175822.GN25654@redhat.com> --------------------------------------------------------------------- Fedora Update Notification FEDORA-2004-052 2004-02-11 --------------------------------------------------------------------- Name : ghostscript Version : 7.07 Release : 15.1 Summary : A PostScript(TM) interpreter and renderer. Description : Ghostscript is a set of software that provides a PostScript(TM) interpreter, a set of C procedures (the Ghostscript library, which implements the graphics capabilities in the PostScript language) and an interpreter for Portable Document Format (PDF) files. Ghostscript translates PostScript code into many common, bitmapped formats, like those understood by your printer or screen. Ghostscript is normally used to display PostScript files and to print PostScript files to non-PostScript printers. If you need to display PostScript files or print them to non-PostScript printers, you should install ghostscript. If you install ghostscript, you also need to install the ghostscript-fonts package. --------------------------------------------------------------------- Update Information: The HP Inkjet driver (hpijs) has been updated to version 1.5. --------------------------------------------------------------------- * Thu Jan 15 2004 Tim Waugh 7.07-15.1 - Build for Fedora Core 1 printer drivers update. - Turn off fontconfig. * Tue Jan 06 2004 Tim Waugh 7.07-15 - Build for Fedora Core 1 printer drivers update. - Conflicts with foomatic before hpijs 1.5 data. - Make fontconfig optional. * Sat Dec 13 2003 Tim Waugh 7.07-14 - Disable unnecessary debug messages from fontconfig support. * Fri Dec 05 2003 Tim Waugh 7.07-13 - Add fontconfig support (bug #111412). * Thu Nov 27 2003 Tim Waugh - Build requires libjpeg-devel (bug #110737). * Tue Nov 11 2003 Tim Waugh 7.07-12 - Updated hpijs to 1.5 (bug #109714). * Mon Nov 10 2003 Tim Waugh - Updated lxm3200 patch (bug #109625). --------------------------------------------------------------------- This update can be downloaded from: http://download.fedora.redhat.com/pub/fedora/linux/core/updates/1/ cfbda91d38e0f2e345d7a676acaee1dd SRPMS/ghostscript-7.07-15.1.src.rpm 501506669afacb94bce62a1f4f9089f2 i386/ghostscript-7.07-15.1.i386.rpm bb607ea360c5827bacd2f104f5a26afa i386/ghostscript-devel-7.07-15.1.i386.rpm dd94683e21326307e552359dc899dde9 i386/hpijs-1.5-4.1.i386.rpm 4e3d3a64ddc9bb5b155b12a55380eedc i386/debug/ghostscript-debuginfo-7.07-15.1.i386.rpm This update can also be installed with the Update Agent; you can launch the Update Agent with the 'up2date' command. --------------------------------------------------------------------- -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: not available URL: From twaugh at redhat.com Wed Feb 11 17:58:27 2004 From: twaugh at redhat.com (Tim Waugh) Date: Wed, 11 Feb 2004 17:58:27 +0000 Subject: Fedora Core 1 Update: gimp-print-4.2.6-4 Message-ID: <20040211175827.GO25654@redhat.com> --------------------------------------------------------------------- Fedora Update Notification FEDORA-2004-053 2004-02-11 --------------------------------------------------------------------- Name : gimp-print Version : 4.2.6 Release : 4 Summary : A collection of high-quality printer drivers. Description : These drivers provide printing quality for UNIX/Linux in many cases equal to or better than proprietary vendor-supplied drivers, and can be used for many of the most demanding printing tasks. --------------------------------------------------------------------- Update Information: The Gimp-Print driver, which supports a wide range of inkjet printers, has been updated to version 4.2.6. --------------------------------------------------------------------- * Sun Feb 01 2004 Tim Waugh 4.2.6-4 - Build for Fedora Core 1 update. - Fix for C8x paper alignment (bug #114698). * Sat Jan 24 2004 Nils Philippsen 4.2.6-3 - build against gimp2 - buildrequire gimp's epoch as well * Mon Jan 12 2004 Tim Waugh 4.2.6-2 - Build for Fedora Core 1 update. * Mon Jan 12 2004 Tim Waugh 4.2.6-1 - 4.2.6. * Thu Nov 27 2003 Tim Waugh - Build requires cups-devel (bug #110765). --------------------------------------------------------------------- This update can be downloaded from: http://download.fedora.redhat.com/pub/fedora/linux/core/updates/1/ 6645ac675bb9db3b13ea8b49c54fcffd SRPMS/gimp-print-4.2.6-4.src.rpm 89d1682cc74249563a981a00fad16212 i386/gimp-print-4.2.6-4.i386.rpm 65959a868e0811a9bdd5756fb10d4a66 i386/gimp-print-devel-4.2.6-4.i386.rpm f08a0cb16b467508712c6250f395e767 i386/gimp-print-utils-4.2.6-4.i386.rpm ffac24af25250cec1bd06c8aa11c91b9 i386/gimp-print-plugin-4.2.6-4.i386.rpm 5bebcb1cea067c7ef0d2ea0473a098ae i386/gimp-print-cups-4.2.6-4.i386.rpm 39efbcd88ea666dbf32a80347911e856 i386/debug/gimp-print-debuginfo-4.2.6-4.i386.rpm This update can also be installed with the Update Agent; you can launch the Update Agent with the 'up2date' command. --------------------------------------------------------------------- -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: not available URL: From notting at redhat.com Wed Feb 11 19:13:24 2004 From: notting at redhat.com (Bill Nottingham) Date: Wed, 11 Feb 2004 14:13:24 -0500 Subject: [SECURITY] Fedora Core 1 Update: mutt-1.4.1-5 Message-ID: <20040211191324.GA2550@devserv.devel.redhat.com> --------------------------------------------------------------------- Fedora Update Notification FEDORA-2004-061 2004-02-11 --------------------------------------------------------------------- Name : mutt Version : 1.4.1 Release : 5 Summary : A text mode mail user agent. Description : Mutt is a text-mode mail user agent. Mutt supports color, threading, arbitrary key remapping, and a lot of customization. You should install mutt if you have used it in the past and you prefer it, or if you are new to mail programs and have not decided which one you are going to use. --------------------------------------------------------------------- Update Information: This package fixes CAN-2004-0078, where a specifc message could cause mutt to crash. This is the vulnerability fixed in the recently released mutt-1.4.2. --------------------------------------------------------------------- * Tue Jan 27 2004 Bill Nottingham 5:1.4.1-5 - add patch to fix menu padding (CAN-2004-0078, #109317) --------------------------------------------------------------------- This update can be downloaded from: http://download.fedora.redhat.com/pub/fedora/linux/core/updates/1/ 6d3203e2fd16f53e2490e590404fd3c0 SRPMS/mutt-1.4.1-5.src.rpm 78d34c41b297905402f4340b2a22ed61 i386/mutt-1.4.1-5.i386.rpm 441b23fc13b78101ab674aefd62818b7 i386/debug/mutt-debuginfo-1.4.1-5.i386.rpm This update can also be installed with the Update Agent; you can launch the Update Agent with the 'up2date' command. --------------------------------------------------------------------- From notting at redhat.com Thu Feb 12 15:15:19 2004 From: notting at redhat.com (Bill Nottingham) Date: Thu, 12 Feb 2004 10:15:19 -0500 Subject: Fedora Core 2 test release 1 now available! Message-ID: <20040212151518.GA9186@devserv.devel.redhat.com> "Get off the stage, you old hack!" "I only got 24 hours to hack, and I ain't gonna waste it on this OS." Ah, but wait... FLAMING DEATH! I hold in my hand, the release that determines whether hundreds of bugs live or die, this very evening! In a moment, I will open the mirrors, leading to the release of this test OS! Aimed directly at this release date are GNOME 2.5, KDE 3.2, and XFCE 4.0.3, our desktop triumvirate! These desktops will be resting on the 2.6 kernel, trained to perform the most scalable of tasks in just milliseconds! This software's only hope of survival is our community's crack team of developers... secured to their high speed network lines, they will descend to hack on this software, spinning a web of stability in less than 8 weeks! Not good enough, you say? Well, what if they were all BLINDFOLDED! Ladies and gentlemen, may I suggest that those of you with weak constitutions leave the arena, for this act is so dangerous that if the slightest thing should go wrong... kernel: Oops: 0000 [#1] Yes, it's time for the first test release of Fedora Core 2. This release is the first Fedora Core release to include the 2.6 kernel, GNOME 2.5, KDE 3.2, and XFCE. Testing of all of these areas would be appreciated, above and beyond any other testing. As always, test releases are not intended for use on production environments. Use of test releases in production environments could lead to FLAMING DEATH! Problems with Fedora Core 2 test 1 should be reported via bugzilla, at: http://bugzilla.redhat.com/bugzilla/ Please report bugs against 'Fedora Core', release 'test1'. Some technical notes: - Fedora Core 2 test 1 is currently only available for i386-compatible architectures. x86_64 will appear in a later test release. - The only boot methods supported for the installer are via CD, and via methods such as PXE. There are no boot floppies. - Upgrades via anaconda are very untested; test at your own risk. Upgrades of systems with their root filesystem on LVM is known to not work. - Due to a release error, the CD and PXE boot images support booting only on i686 or higher processors (this includes Athlons). This will be rectified in a future test release; in the meantime, you can upgrade via up2date or yum. For more information on just what the Fedora Project and Fedora Core is, please see: http://fedora.redhat.com/ For discussion of Fedora Core test releases, send mail to: fedora-test-list-request at redhat.com with subscribe in the subject line. You can leave the body empty. Or see: https://listman.redhat.com/mailman/listinfo/fedora-test-list/ As always, you can get Fedora Core test releases at redhat.com, specifically: http://download.fedora.redhat.com/pub/fedora/linux/core/test/1.90/ Or on the following mirrors: * North America * USA East * ftp://ftp.linux.ncsu.edu/pub/fedora/linux/core/test/1.90/ * http://mirror.linux.duke.edu/pub/fedora/linux/core/test/1.90/ * ftp://mirror.linux.duke.edu/pub/fedora/linux/core/test/1.90/ * rsync://mirror.linux.duke.edu/fedora-linux-core/test/1.90/ * http://mirror.eas.muohio.edu/fedora/linux/core/test/1.90/ * ftp://mirror.eas.muohio.edu/pub/fedora/linux/core/test/1.90/ * http://mirror.hiwaay.net/redhat/fedora/linux/core/test/1.90/ * ftp://mirror.hiwaay.net/redhat/fedora/linux/core/test/1.90/ * rsync://mirror.hiwaay.net/fedora-linux-core/test/1.90/ * USA West * ftp://limestone.uoregon.edu/fedora/test/1.90/ * ftp://linux.stanford.edu/pub/mirrors/fedora/linux/core/test/1.90/ * Canada * ftp://ftp.nrc.ca/pub/systems/linux/redhat/fedora/linux/core/test/1.90/ * Europe * Czech Republic * ftp://ultra.linux.cz/pub/fedora/test/1.90/ * ftp://ftp6.linux.cz/pub/linux/fedora/linux/core/test/1.90/ * Germany * http://wftp.tu-chemnitz.de/pub/linux/fedora-core/test/1.90/ * ftp://ftp.tu-chemnitz.de/pub/linux/fedora-core/test/1.90/ * ftp://ftp.uni-bayreuth.de/pub/linux/fedora/linux/core/test/1.90/ * rsync://rsync.uni-bayreuth.de/fedora-linux-core/test/1.90/ * ftp://ftp.informatik.uni-frankfurt.de/pub/linux/Mirror/ftp.redhat.com/fedora/core/test/1.90/ * Netherlands * ftp://alviss.et.tudelft.nl/pub/fedora/core/test/1.90/ * Romania * http://ftp.iasi.roedu.net/mirrors/fedora.redhat.com/core/test/1.90/ * http://ftp.iasi.roedu.net/pub/mirrors/fedora.redhat.com/core/test/1.90/ * rsync://ftp.iasi.roedu.net/fedora.redhat.com/core/test/1.90/ * United Kingdom * http://zeniiia.linux.org.uk/pub/distributions/fedora/linux/core/test/1.90/ * ftp://zeniiia.linux.org.uk/pub/distributions/fedora/linux/core/test/1.90/ * rsync://zeniiia.linux.org.uk/fedora-linux-core/test/1.90/ * Asia/Pacific * Japan * ftp://ftp.riken.go.jp/pub/Linux/fedora/core/test/1.90/ More mirrors will come online in the near future; check: http://fedora.redhat.com/download/mirrors.html for a list of mirrors that carry Fedora Core. One additional feature provided by the Linux community is the availability of Fedora Core releases via BitTorrent. http://torrent.dulug.duke.edu/FC2-test1-binary-i386.torrent http://torrent.dulug.duke.edu/FC2-test1-src-i386.torrent RPMS for Red Hat Linux 7.3 through 9 and Fedora Core 1 of BitTorrent are available from: http://torrent.dulug.duke.edu/btrpms/ Usage is simple: btdownloadcurses.py --url http://URL.torrent Allow incoming TCP 6881 - 6889 to join the torrent swarm. http://torrent.dulug.duke.edu/ From twaugh at redhat.com Thu Feb 12 22:15:35 2004 From: twaugh at redhat.com (Tim Waugh) Date: Thu, 12 Feb 2004 22:15:35 +0000 Subject: Fedora Core 1 Update: redhat-config-printer-0.6.79.5-1 Message-ID: <20040212221535.GY25654@redhat.com> --------------------------------------------------------------------- Fedora Update Notification FEDORA-2004-064 2004-02-12 --------------------------------------------------------------------- Name : redhat-config-printer Version : 0.6.79.5 Release : 1 Summary : A printer configuration backend/frontend combination. Description : The printconf utility is a printer configuration and filtration system based on magicfilter (the alchemist data library) and the foomatic filter system. It rebuilds local print configuration and spool directories from data sources at lpd init time, and is integrated to use the multi-sourced features of the alchemist data library. --------------------------------------------------------------------- Update Information: Packages fixing another bug concerning printer sharing in the Printing configuration tool are now available. --------------------------------------------------------------------- * Fri Feb 06 2004 Tim Waugh 0.6.79.5-1 - 0.6.79.5: - Fix the rest of bug #109942, and bug #115062. * Tue Feb 03 2004 Tim Waugh 0.6.79.4-1 - 0.6.79.4: - Another 'single IP address' bug fix (bug #114414). * Mon Jan 05 2004 Tim Waugh 0.6.79.3-1 - 0.6.79.3: - Use rhpl for 'allow from single IP address' calculations (bug #112835). --------------------------------------------------------------------- This update can be downloaded from: http://download.fedora.redhat.com/pub/fedora/linux/core/updates/1/ 0358aae60e785513f12a9b56f0aa6fb9 SRPMS/redhat-config-printer-0.6.79.5-1.src.rpm 4cdbe50b30b5d06c474f45437aa982de i386/redhat-config-printer-0.6.79.5-1.i386.rpm 288972149aee9bb1d6c059b12aba64e5 i386/redhat-config-printer-gui-0.6.79.5-1.i386.rpm 4e8af22e8cff1884e44645dda5b9ac50 i386/debug/redhat-config-printer-debuginfo-0.6.79.5-1.i386.rpm This update can also be installed with the Update Agent; you can launch the Update Agent with the 'up2date' command. --------------------------------------------------------------------- -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: not available URL: From mharris at redhat.com Fri Feb 13 21:13:20 2004 From: mharris at redhat.com (Mike A. Harris) Date: Fri, 13 Feb 2004 16:13:20 -0500 (EST) Subject: [SECURITY] Fedora Core 1 Update: XFree86-4.3.0-55 Message-ID: --------------------------------------------------------------------- Fedora Update Notification FEDORA-2004-069 2004-02-13 --------------------------------------------------------------------- Name : XFree86 Version : 4.3.0 Release : 55 Summary : The basic fonts, programs and docs for an X workstation. Description : XFree86 is an open source implementation of the X Window System. It provides the basic low level functionality which full fledged graphical user interfaces (GUIs) such as GNOME and KDE are designed upon. --------------------------------------------------------------------- Update Information: Updated XFree86 packages that fix a privilege escalation vulnerability are now available. XFree86 is an implementation of the X Window System, providing the core graphical user interface and video drivers. iDefense discovered two buffer overflows in the parsing of the 'font.alias' file. A local attacker could exploit this vulnerability by creating a carefully-crafted file and gaining root privileges. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the names CAN-2004-0083 and CAN-2004-0084 to these issues. Additionally David Dawes discovered additional flaws in reading font files. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CAN-2004-0106 to these issues. All users of XFree86 are advised to upgrade to these erratum packages, which contain a backported fix and are not vulnerable to these issues. Red Hat would like to thank David Dawes from XFree86 for the patches and notification of these issues. --------------------------------------------------------------------- * Thu Feb 12 2004 Mike A. Harris 4.3.0-55 - Added {x11datadir}/X11/xinit back to package list, which seems to have been inadvertently dropped during attempts to get package to compile on Red Hat Linux 9 s390 builds earlier this week. * Wed Feb 11 2004 Mike A. Harris 4.3.0-54 - Added XFree86-4.3.0-libXfont-security-CAN-2004-0083-CAN-2004-0084-CAN-2004-0106.patch to fix all recent security flaws in libXfont which are outlined in CAN-2004-0083, CAN-2004-0084, CAN-2004-0106, discovered by iDefense, David Dawes and others. This patch replace all previous libXfont patches from XFree86 builds 4.3.0-49 through to present. - Added XFree86-4.3.0-libXfont-security-CAN-2004-0083-CAN-2004-0084-CAN-2004-0106-v2.patch which is the same as the above patch, but modified to cleanly apply to 4.3.0, renamed to keep all patches present in src.rpm for comparative purposes. - Built 4.3.0-54 with target build_yarrow for Fedora Core 1 erratum - Built 4.3.0-54.EL with target build_taroon for Red Hat Enterprise Linux 3 erratum - Built 4.3.0-2.90.54 with target build_shrike for Red Hat Linux 9 erratum * Tue Feb 10 2004 Mike A. Harris 4.3.0-53 - Added XFree86-4.3.0-security-dirname-CAN-2004-0106.patch which replaces XFree86-4.3.0-security-fonts-alias-dirname3.patch, the new patch being the same but without the second hunk, as the patch Keith wrote for CAN-2004-0083 and CAN-2004-0084 already handled that issue so there was a conflict. - Built 4.3.0-53 with target build_yarrow for Fedora Core 1 erratum - Built 4.3.0-53.EL with target build_taroon for Red Hat Enterprise Linux 3 erratum - Built 4.3.0-2.90.53 with target build_shrike for Red Hat Linux 9 erratum * Tue Feb 10 2004 Mike A. Harris 4.3.0-52 - Added XFree86-4.3.0-security-fonts-alias-dirname3.patch in order to fix 2 additional buffer overflows in libXfont, discovered by iDefense and David Dawes. No CVE assignment has been provided yet. - Built 4.3.0-52 with target build_yarrow for Fedora Core 1 erratum - Built 4.3.0-52.EL with target build_taroon for Red Hat Enterprise Linux 3 erratum - Built 4.3.0-2.90.52 with target build_shrike for Red Hat Linux 9 erratum * Tue Feb 10 2004 Mike A. Harris 4.3.0-51 - Added XFree86-4.3.0-security-dirname-CAN-2004-0083-CAN-2004-0084-keithp.patch alternative patch written by Keith Packard, to fix CAN-2004-0083 and CAN-2004-0084 security issues - Added XFree86-4.3.0-security-fonts-alias-dirname-CAN-2004-0084.patch to the package, but disabled for now while we test the above patch from Keith Packard which addresses both security issues. - Built 4.3.0-51 with target build_yarrow for Fedora Core 1 erratum - Built 4.3.0-51.EL with target build_taroon for Red Hat Enterprise Linux 3 erratum - Built 4.3.0-2.90.51 with target build_shrike for Red Hat Linux 9 erratum * Mon Feb 09 2004 Mike A. Harris 4.3.0-50 - Fix issues detected in QA testing - Built 4.3.0-50 with target build_yarrow for Fedora Core 1 erratum - Built 4.3.0-50.EL with target build_taroon for Red Hat Enterprise Linux 3 erratum - Built 4.3.0-2.90.50 with target build_shrike for Red Hat Linux 9 erratum * Wed Feb 04 2004 Mike A. Harris 4.3.0-2.90.49 - Built 4.3.0-2.90.49 with target build_shrike for Red Hat Linux 9 erratum - Split {_x11datadir}/X11/etc/* glob previously wrapped using with_Xserver into a with_xterm portion and with_Xterm portion with the dir being always included, in order to work around obscure build failure on s390 on RHL 9. Yes this is an insane problem to have to fix because we do not ship an RHL 9 s390 product and never will. But we seek perfection however, and who knows, maybe next week we will release a Red Hat Linux 9 port to s390 for consumer desktops or something. - Rename with_included_xterm macro to with_xterm for naming consistency with other options, as it threw me off. * Wed Feb 04 2004 Mike A. Harris 4.3.0-49.EL - Built 4.3.0-49.EL with target build_taroon for Red Hat Enterprise Linux 3 erratum * Wed Feb 04 2004 Mike A. Harris 4.3.0-49 - Added XFree86-4.3.0-security-fonts-alias-dirname-CAN-2004-0083.patch to fix security issue in core fonts backend reported by iDefense in CAN-2004-0083 - Added build_maintainer_mode distribution version autodetection to simplify local build testing procedures, added dist_ver macro, dist_test parameterized macro (to keep jbj on his toes), and updated build_xxxx target autoconfig when build_auto_mode is enabled. This only affects local builds, not any Red Hat builds. - Enabled radeon-agp-detection-using-capability-list-walk patch on all builds, which was inadvertently left off on some due to misplaced macro conditional - Built 4.3.0-49 with target build_yarrow for Fedora Core 1 erratum * Sun Feb 01 2004 Mike A. Harris 4.3.0-45.0.2.EL.test - Rebuilt with build_taroon for RHEL 3 testing * Sat Jan 31 2004 Mike A. Harris 4.3.0-45.0.2 - Added XFree86-4.3.0-Xserver-dix-xkb-key-repeating-bug-CVS-backport.patch to fix a bug in DIX when xkb is being used that causes keys to repeat spuriously on some hardware under certain system loads. This patch has been backported from the 4.3.0-48 developmental head package. (#76959,114635) - Added XFree86-4.3.0-XRes-IncludeSharedObjectInNormalLib.patch to make libXRes get built PIC for bug (#114292) - Updated XFree86-4.3.0-missing-lib-sharedreqs.patch to remove dependancy on libXt caused by improper dependancy listing in SharedXmuuReqs (#113336) * Thu Jan 29 2004 Mike A. Harris 4.3.0-45.0.1.EL.test - Build test release for RHEL3 U2 testing * Wed Jan 28 2004 Mike A. Harris 4.3.0-45.0.1 - Temporary fork of 4.3.0-45 to add some patches for test builds, until post 4.3.0-45 (4.3.0-46 through 4.3.0-50) local-work-in-progress stuff is in clean enough shape for tree inclusion - Added XFree86-4.3.0-fixes-for-freetype-2.1.7-v2.patch so that XFree86 will build properly against freetype 2.1.7 (#114343) * Sun Nov 30 2003 Mike A. Harris 4.3.0-45 - Implemented new AGP/PCI autodetection in the Radeon driver by examining PCI configuration space and walking the PCI extended capabilities list in order to determine if the device implements the AGP capability. This code should work on _any_ AGP/PCI hardware generically and should be factored out into generic X server code in future XFree86 releases so all drivers can benefit from it. XFree86-4.3.0-radeon-agp-detection-using-capability-list-walk.patch should fix all Radeon PCI/AGP autodetection bugs, including (#111191). Some AGP Radeon users may experience a performance boost with this new driver if their card was misdetected and treated as PCI before, as pcigart mode works on AGP hardware, but is slower than using AGP. - Fixed build_rawhide to work the same as build_yarrow everywhere since the two are functionally identical for the time being. * Wed Nov 26 2003 Mike A. Harris 4.3.0-44.EL - Rebuilt 4.3.0-44 as 4.3.0-44.EL for RHEL3 QU1 update * Wed Nov 26 2003 Mike A. Harris 4.3.0-44 - Added XFree86-4.3.0-libfontenc-IncludeSharedObjectInNormalLib.patch to fix KDE build problem on AMD64 which links to the static libfontenc library and fails because it wasn't compiled with -fPIC, reported in bug (#111058) - Enable the open source vmware_drv.o video driver that ships with XFree86 on all builds now, to supply this driver as-is to users as a convenience although it is still unsupported by Red Hat. Users encountering video or other X related problems with this driver, need to report their problems directly to XFree86.org, or to VMware Inc. - Rebuild in rawhide for FC2 development * Fri Nov 14 2003 Mike A. Harris 4.3.0-43.1 - Added XFree86-4.3.0-nv-riva-videomem-autodetection-debugging.patch to be able to debug Riva TNT memory autodetection problems in the future (#109459) - Added new build_rawhide flag to wrap experimental changes and test patches with for Rawhide builds - Rename rpm macro from tlssubdir to _tlsdir, and enforce it's usage everywhere in the spec file * Mon Nov 03 2003 Mike A. Harris 4.3.0-2.90.43 - Rebuild 4.3.0-43 for Red Hat Linux 9 erratum with build_shrike set * Mon Nov 03 2003 Mike A. Harris 4.3.0-43 - Updated to XFree86-4.3.0-xf-4_3-branch-2003-11-03.patch to pick up latest fixes in the XFree86 4.3.x stable branch including: - Fix for crash on ia64 because of wrong setjmp buffer alignment (John Dennis) - Close freetype fontfile filehandle in mkfontscale, this prevents problems from limitation of simultaniously open files - Fixed erronous freeing of DisplayModeRec in xf86DeleteMode() when deleting the modePool in xf86PruneDriverModes() the 'prev' member has a different meaning for modePool modes than for ScrnInfoPtr->modes modes where it creates a doubly linked list - Fix some i830+ VT switch/exit crashes - Fix DRM_CAS on ia64 as used by the DRI (Bugzilla #778, John Dennis). - Removed XFree86-4.3.0-Xlib-XIM-bugfix-from-XFree86-bugzilla.patch, XFree86-4.3.0-ia64-setjmp-alignment.patch - Updated XFree86-4.3.0-ia64-drm-locking.patch as part of it is in the stable branch patch now. - Updated some spec file comments, and other mostly cosmetic changes. - Fixed some mistakes in spec file changelog dates. * Wed Oct 29 2003 Mike A. Harris 4.3.0-42.2 - Enable new Radeon support patches for shrike builds also to support newer Radeon hardware, so future erratum picks up these enhancements. - Backport XFree86-4.3.0-RandR-refresh-rate-rounding-error-fix-from-CVSHEAD.patch from CVS HEAD in order to fix bug (#108008) - Added XFree86-4.3.0-vidmode-SEGV-fix-from-CVS-HEAD.patch, backported from CVS HEAD to fix a SEGV in the vidmode extension (#101276) - Renamed build_cambridge target to build_yarrow to indicate the change from project name to final product name. - Added XFree86-4.3.0-rendition-complete-driver-backport-CVS20031031.patch which is a backport of the rendition driver from CVS head, including a couple bug fixes and the rest of changes are cosmetic. (#108693) - Disabled XFree86-4.3.0-rendition-disable-cause-of-SEGV.patch which should now be obsolete from above rendition driver backport. * Fri Oct 24 2003 Mike A. Harris 4.3.0-42 - This release is the long awaited answer to the meaning of life, the universe and everything. - Added XFree86-4.3.0-redhat-exec-shield-GNU-stack.patch to make the complete XFree86 build including Mesa et al. exec-shield friendly (arjanv, mharris) - Updated to new XFree86-4.3.0-Mesa-SSE-fixes-from-MesaCVS-v2.patch which should fix compatibility problems between DRI and 2.6.x kernels which were caused by the previous version of this patch. Linus reported the fix for this with details of the problem, and explanation of the solution, which I extracted out of CVS (#107932,106566,107829) --------------------------------------------------------------------- This update can be downloaded from: http://download.fedora.redhat.com/pub/fedora/linux/core/updates/1/ 46d4fad36fa397d351705442806a55f8 SRPMS/XFree86-4.3.0-55.src.rpm eaa18d075933f605fb6c19a9b180ec1c i386/XFree86-4.3.0-55.i386.rpm daacc9c8fe9b6c9f5f5771a8b0cf87bc i386/XFree86-devel-4.3.0-55.i386.rpm 569907746b3a7d477f787dbe73401fd7 i386/XFree86-font-utils-4.3.0-55.i386.rpm 8e8f3b42277228aa45f0c872c3a65b8d i386/XFree86-xfs-4.3.0-55.i386.rpm 26ee40c0d60377f5ce1b8194c5466d4a i386/XFree86-twm-4.3.0-55.i386.rpm e7e81b18626ae9a344e5574174420e32 i386/XFree86-xdm-4.3.0-55.i386.rpm 27789e66d96649e7e8bf62a307f5e68d i386/XFree86-libs-4.3.0-55.i386.rpm b430abfefec36784e994ed5bf83d3ad9 i386/XFree86-libs-data-4.3.0-55.i386.rpm 46cf2ad73245f4ac966b7454bd310d88 i386/XFree86-base-fonts-4.3.0-55.i386.rpm 52b542cad1b247baadcea05e2e1c91dd i386/XFree86-truetype-fonts-4.3.0-55.i386.rpm fb9cc6191cb98dd93ef6ec71a167fb7e i386/XFree86-syriac-fonts-4.3.0-55.i386.rpm fb2926cae361d65cf6c78a7ca7ce88d8 i386/XFree86-75dpi-fonts-4.3.0-55.i386.rpm f0415822893f04c481ebfc473ffdff22 i386/XFree86-100dpi-fonts-4.3.0-55.i386.rpm efde62414088faf5789179176e6911e1 i386/XFree86-ISO8859-2-75dpi-fonts-4.3.0-55.i386.rpm 0cc9300e3c46d2d0346af3c2d0664834 i386/XFree86-ISO8859-2-100dpi-fonts-4.3.0-55.i386.rpm 8c6f63975595f1bbb3f5404322230c5a i386/XFree86-ISO8859-9-75dpi-fonts-4.3.0-55.i386.rpm 06cf300fb6b9c8c6eed3092d0ad1d3bb i386/XFree86-ISO8859-9-100dpi-fonts-4.3.0-55.i386.rpm 52c0f8f22e413279afee17df2ae2bb78 i386/XFree86-ISO8859-14-75dpi-fonts-4.3.0-55.i386.rpm b24b694caeee5c983cacbfc6937fce49 i386/XFree86-ISO8859-14-100dpi-fonts-4.3.0-55.i386.rpm 27e52ae1bb82fa59f9a1ae6c331bcce9 i386/XFree86-ISO8859-15-75dpi-fonts-4.3.0-55.i386.rpm d6d91aa0756c9519bfe6de3ad6af3809 i386/XFree86-ISO8859-15-100dpi-fonts-4.3.0-55.i386.rpm e071fc5a16476dbf7d9c321ec088a384 i386/XFree86-cyrillic-fonts-4.3.0-55.i386.rpm 6cb9ea90c43132853e8809aaff48a267 i386/XFree86-doc-4.3.0-55.i386.rpm 700d174f88e364cefe89bf5dcaf93033 i386/XFree86-Xnest-4.3.0-55.i386.rpm 1d81c120f7775261ee76b4ecd521485d i386/XFree86-Xvfb-4.3.0-55.i386.rpm 22718bdd290a8c7b86e12a7924531e55 i386/XFree86-tools-4.3.0-55.i386.rpm d4cbd6bd883f061d091458ce02a3f487 i386/XFree86-xauth-4.3.0-55.i386.rpm 6477ce536f8d084b48ae7aa9cf30c5c0 i386/XFree86-Mesa-libGL-4.3.0-55.i386.rpm 949ea216b0666dc971cd369661a49ec8 i386/XFree86-Mesa-libGLU-4.3.0-55.i386.rpm 89e0f5723f835b75dd265d8e7f40ab1e i386/XFree86-sdk-4.3.0-55.i386.rpm This update can also be installed with the Update Agent; you can launch the Update Agent with the 'up2date' command. --------------------------------------------------------------------- From wtogami at redhat.com Sun Feb 15 22:35:52 2004 From: wtogami at redhat.com (Warren Togami) Date: Sun, 15 Feb 2004 12:35:52 -1000 Subject: Fedora Core 1 Update: rdesktop-1.3.1-0.1 Message-ID: <402FF448.9030602@redhat.com> --------------------------------------------------------------------- Fedora Update Notification FEDORA-2004-075 2004-02-15 --------------------------------------------------------------------- Name : rdesktop Version : 1.3.1 Release : 0.1 Summary : X client for remote desktop into Windows Terminal Server Description : rdesktop is an open source client for Windows NT Terminal Server and Windows 2000 & 2003 Terminal Services, capable of natively speaking Remote Desktop Protocol (RDP) in order to present the user's NT desktop. Unlike Citrix ICA, no server extensions are required. --------------------------------------------------------------------- Update Information: rdesktop-1.2.0 was originally shipped with FC1. rdesktop-1.3.0 was an official update on Jan. 31st, 2004 rdesktop-1.3.1 is a bug fix release with the following (from the upstream release notes): rdesktop (1.3.1) * Crypto fixes for RDP5 * Keyboard and keymap fixes * some endianess fixes for high color * portability enhancements For those that were having trouble connecting to Windows 2000 terminal services with 1.3.0, I think this new version should auto-select the protocol rather than the user needing to choose it manually from the command line. --------------------------------------------------------------------- * Wed Feb 11 2004 Warren Togami 1.3.1-0.1 - upgrade to 1.3.1 (FC1) --------------------------------------------------------------------- This update can be downloaded from: http://download.fedora.redhat.com/pub/fedora/linux/core/updates/1/ 6986c250569c07a09706d378e0b676d7 SRPMS/rdesktop-1.3.1-0.1.src.rpm 80d2050480c08a20fbdf6fbb0c07576a i386/rdesktop-1.3.1-0.1.i386.rpm dec1a022a6947b35e3f17059f0a646ef i386/debug/rdesktop-debuginfo-1.3.1-0.1.i386.rpm This update can also be installed with the Update Agent; you can launch the Update Agent with the 'up2date' command. --------------------------------------------------------------------- From blizzard at redhat.com Mon Feb 16 16:20:01 2004 From: blizzard at redhat.com (Christopher Blizzard) Date: Mon, 16 Feb 2004 11:20:01 -0500 Subject: Fedora Update Notification [gaim-0.75-1.3.0] Message-ID: <4030EDB1.1040909@redhat.com> --------------------------------------------------------------------- Fedora Update Notification FEDORA-2004-070 2004-02-16 --------------------------------------------------------------------- Name : gaim Version : 0.75 Release : 1.3.0 Summary : A GTK+ clone of the AOL Instant Messenger client. Description : Gaim is a clone of America Online's Instant Messenger client. It features nearly all of the functionality of the official AIM client while also being smaller, faster, and commercial-free. --------------------------------------------------------------------- Update Information: This update fixes recent gaim security problems as discussed on both the gaim web site and was addressed by a recent Red Hat errata. --------------------------------------------------------------------- * Fri Jan 23 2004 Christopher Blizzard 1:0.75-1.1.0 - Include patch that fixes a bunch of buffer-related problems, mostly from nectar at freebsd.org and some of my own changes. * Wed Jan 14 2004 Christopher Blizzard 1:0.75-0 - Update to 0.75. - Remove mem leak patch that is already included in 0.75. - Clean up a lot of old unused patches and old source tarballs. * Fri Dec 12 2003 Christopher Blizzard 1:0.74-10 - Add patch that fixes a large memory leak. * Thu Dec 04 2003 Christopher Blizzard 1:0.74-9 - Bump release to rebuild for fc2. --------------------------------------------------------------------- This update can be downloaded from: http://download.fedora.redhat.com/pub/fedora/linux/core/updates/1/ 5b0ea8a1d87b610b3027a9f1790fad10 SRPMS/gaim-0.75-1.3.0.src.rpm 4482f5d9a40c2bc6f8ea2c273a6d6d06 i386/gaim-0.75-1.3.0.i386.rpm d95a2f84907b1d1ecdd1180b0a30d17c i386/debug/gaim-debuginfo-0.75-1.3.0.i386.rpm This update can also be installed with the Update Agent; you can launch the Update Agent with the 'up2date' command. --------------------------------------------------------------------- -- ------------ Christopher Blizzard http://people.redhat.com/blizzard/ ------------ From twoerner at redhat.com Mon Feb 16 16:35:47 2004 From: twoerner at redhat.com (Thomas Woerner) Date: Mon, 16 Feb 2004 17:35:47 +0100 Subject: Fedora Core 1 Update: freeradius-0.9.3-1.1 Message-ID: <4030F163.3050104@redhat.com> --------------------------------------------------------------------- Fedora Update Notification FEDORA-2004-076 2004-02-16 --------------------------------------------------------------------- Name : freeradius Version : 0.9.3 Release : 1.1 Summary : High-performance and highly configurable free RADIUS server. Description : The FreeRADIUS Server Project is a high performance and highly configurable GPL'd free RADIUS server. The server is similar in some respects to Livingston's 2.0 server. While FreeRADIUS started as a variant of the Cistron RADIUS server, they don't share a lot in common any more. It now has many more features than Cistron or Livingston, and is much more configurable. FreeRADIUS is an Internet authentication daemon, which implements the RADIUS protocol, as defined in RFC 2865 (and others). It allows Network Access Servers (NAS boxes) to perform authentication for dial-up users. There are also RADIUS clients available for Web servers, firewalls, Unix logins, and more. Using RADIUS allows authentication and authorization for a network to be centralized, and minimizes the amount of re-configuration which has to be done when adding or deleting new users. --------------------------------------------------------------------- This version corrects a flaw in 0.9.2 (and all earlier versions of the server) which may allow an attacker to DoS the server. The bug does not look to be easily exploitable, as it overwrites the heap (not the stack), and any exploit code must be in the form of a valid RADIUS packet. --------------------------------------------------------------------- This update can be downloaded from: http://download.fedora.redhat.com/pub/fedora/linux/core/updates/1/ 45682e5adaf0d649c3f4c30a4b7cb1af SRPMS/freeradius-0.9.3-1.1.src.rpm 9642e1db1cf8955d4fc24040b73f3506 i386/freeradius-0.9.3-1.1.i386.rpm 55d0a73f2a1da031d8b3ad0775fb2512 i386/debug/freeradius-debuginfo-0.9.3-1.1.i386.rpm 421c75806a8e7e296c95ac831bccbb9d i386/freeradius-mysql-0.9.3-1.1.i386.rpm 4c5f4346bbb56bb2c09fe31183c0af6a i386/freeradius-postgresql-0.9.3-1.1.i386.rpm 7eed2b5cd2bbea4ec1064be038584caf i386/freeradius-unixODBC-0.9.3-1.1.i386.rpm This update can also be installed with the Update Agent; you can launch the Update Agent with the 'up2date' command. --------------------------------------------------------------------- From fenlason at redhat.com Mon Feb 16 16:38:56 2004 From: fenlason at redhat.com (Jay Fenlason) Date: Mon, 16 Feb 2004 11:38:56 -0500 Subject: New Samba packages are avaliable Message-ID: <20040216163856.GF4335@redhat.com> Updated Samba packages that fix a potential unathorized access problem are now avaliable. Under some circumstances, Samba 3.0.0 and 3.0.1 could overwrite the password field of a disabled account with uninitialized memory. If an attacker could know what will be in that memory, he could gain access to the disabled acocunt. If you use Samba, you should consider upgrading to these new packages. --------------------------------------------------------------------- Fedora Update Notification FEDORA-2004-074 2004-02-16 --------------------------------------------------------------------- Name : samba Version : 3.0.2 Release : 7.FC1 Summary : The Samba SMB server. Description : Samba is the protocol by which a lot of PC-related machines share files, printers, and other information (such as lists of available files and printers). The Windows NT, OS/2, and Linux operating systems support this natively, and add-on packages can enable the same thing for DOS, Windows, VMS, UNIX of all kinds, MVS, and more. This package provides an SMB server that can be used to provide network services to SMB (sometimes called "Lan Manager") clients. Samba uses NetBIOS over TCP/IP (NetBT) protocols and does NOT need the NetBEUI (Microsoft Raw NetBIOS frame) protocol. --------------------------------------------------------------------- Update Information: --------------------------------------------------------------------- * Thu Feb 12 2004 Jay Fenlason 3.0.2-7.FC1 - Fix the ownership on /usr/lib/samba and /usr/lib/samba/charset * Mon Feb 09 2004 Jay Fenlason 3.0.2-5.FC1 - Merge from HEAD to build 3.0.2 for Fedora Core 1 erratum. - New upstream version: 3.0.2 final includes security fix for #114995 (CAN-2004-0082) - Edit postun script for the -common package to restart winbind when appropriate. Fixes bugzilla #114051. * Mon Feb 02 2004 Jay Fenlason 3.0.2-3rc2 - add %dir entries for /usr/lib/samba and /usr/lib/samba/charset - Upgrade to new upstream version - build mount.cifs for the new cifs filesystem in the 2.6 kernel. * Mon Jan 19 2004 Jay Fenlason 3.0.2-1rc1 - Upgrade to new upstream version * Wed Dec 17 2003 Felipe Alfaro Solana 3.0.1-1 - Update to 3.0.1 - Removed testparm patch as it's already merged - Removed Samba.7* man pages - Fixed .buildroot patch - Fixed .pie patch - Added new /usr/bin/tdbdump file --------------------------------------------------------------------- This update can be downloaded from: http://download.fedora.redhat.com/pub/fedora/linux/core/updates/1/ 2ee8ced2420caee182cc7e7bd24bc578 SRPMS/samba-3.0.2-7.FC1.src.rpm f07e98858197c4c0f8d87823f07d2e18 i386/samba-3.0.2-7.FC1.i386.rpm 5db069ff37ce550bf10bd555d52df2da i386/samba-client-3.0.2-7.FC1.i386.rpm fa703cf8f43b965faebdb3ecdd7e438e i386/samba-common-3.0.2-7.FC1.i386.rpm 5823c93c369ca7e6083b386bb48bf81a i386/debug/samba-debuginfo-3.0.2-7.FC1.i386.rpm e4ceab8f113b7fcbd460271ab72dea95 i386/samba-swat-3.0.2-7.FC1.i386.rpm This update can also be installed with the Update Agent; you can launch the Update Agent with the 'up2date' command. --------------------------------------------------------------------- From davej at redhat.com Wed Feb 18 16:54:52 2004 From: davej at redhat.com (Dave Jones) Date: Wed, 18 Feb 2004 16:54:52 +0000 Subject: [SECURITY] Updated kernel packages resolve security vulnerabilities Message-ID: <20040218165452.GV6242@redhat.com> --------------------------------------------------------------------- Fedora Security Update Notification FEDORA-2004-079 2004-02-18 --------------------------------------------------------------------- Name : kernel Version : 2.4.22 Release : 1.2173.nptl Summary : The Linux kernel (the core of the Linux operating system) Description : The kernel package contains the Linux kernel (vmlinuz), the core of your Fedora Core Linux operating system. The kernel handles the basic functions of the operating system: memory allocation, process allocation, device input and output, etc. Paul Starzetz discovered a flaw in return value checking in mremap() in the Linux kernel versions 2.4.24 and previous that may allow a local attacker to gain root privileges. No exploit is currently available; however this issue is exploitable. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CAN-2004-0077 to this issue. Arjan van de Ven discovered a flaw in ncp_lookup() in ncpfs that could allow local privilege escalation. ncpfs is only used to allow a system to mount volumes of NetWare servers or print to NetWare printers. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CAN-2004-0010 to this issue. All users are advised to upgrade to these errata packages, which contain backported security patches that correct these issues. Red Hat would like to thank Paul Starzetz from ISEC for reporting the issue CAN-2004-0077. --------------------------------------------------------------------- * Wed Feb 18 2004 Dave Jones - Fix security problem in gamma DRI driver. * Tue Feb 17 2004 Dave Jones - Fix leak in SSTFB driver. * Sat Feb 14 2004 Dave Jones - aacraid fix for #92129 * Fri Feb 13 2004 Dave Jones - Fix building of vt8231.o * Thu Feb 05 2004 Dave Jones - Check do_mremap return values (CAN-2004-0077) * Mon Feb 02 2004 Dave Jones - Disable stack overflow checking. - More bits from 2.4.25pre - Fix ipt_conntrack/ipt_state module refcounting. - Zero last byte of mount option page - AMD64 update - Fix deep stack usage in ncpfs (CAN-2004-0010) --------------------------------------------------------------------- This update can be downloaded from: http://download.fedora.redhat.com/pub/fedora/linux/core/updates/1/ be83c63da2ef761aeb7e8696879be360 SRPMS/kernel-2.4.22-1.2173.nptl.src.rpm 78db0934086e959ad1bff965bcc2a188 i386/kernel-source-2.4.22-1.2173.nptl.i386.rpm 64a824908fb9851768f2bdd0911b5f65 i386/kernel-doc-2.4.22-1.2173.nptl.i386.rpm f8136a330f1bdad42b5c08c5cfaa7464 i386/kernel-BOOT-2.4.22-1.2173.nptl.i386.rpm 50991b3c9e6a7ab6b16d884e032ad391 i386/debug/kernel-debuginfo-2.4.22-1.2173.nptl.i386.rpm 731de10afe170d5ebd33c199690c947c i386/kernel-2.4.22-1.2173.nptl.i586.rpm 7a676c2c3c5b899f9de46245e553dded i386/debug/kernel-debuginfo-2.4.22-1.2173.nptl.i586.rpm c3571e87235b5717205f752a2981e044 i386/kernel-2.4.22-1.2173.nptl.i686.rpm cebf23c3578adc7bfce4c39902111fd0 i386/kernel-smp-2.4.22-1.2173.nptl.i686.rpm 1eb059360ae74ba8116baa67835bce90 i386/debug/kernel-debuginfo-2.4.22-1.2173.nptl.i686.rpm c41be8c7cde8cbfab3630a03d4251bb2 i386/kernel-2.4.22-1.2173.nptl.athlon.rpm 958c124d969d6804bd81011924d063e2 i386/kernel-smp-2.4.22-1.2173.nptl.athlon.rpm cc3b30df501a44e64c1405b6928c04f7 i386/debug/kernel-debuginfo-2.4.22-1.2173.nptl.athlon.rpm This update can also be installed with the Update Agent; you can launch the Update Agent with the 'up2date' command. --------------------------------------------------------------------- From byte at aeon.com.my Wed Feb 18 20:18:38 2004 From: byte at aeon.com.my (Colin Charles) Date: Thu, 19 Feb 2004 04:18:38 +0800 Subject: Fedora News Updates #6 Message-ID: <1077135518.14414.30.camel@hermione> Another issue of the Fedora News Updates has been released and is available at: http://fedoranews.org/colin/fnu/issue6.shtml The current issue is always linked to http://fedoranews.org/colin/fnu/current.shtml In this issue we cover the launching of Fedora Core 2 test1, a new online-based forum, as well as tips on dealing with FC2 test1. Rolling your own Fedora-based ISOs, why Linux uses all its available resources, and lots of software pointers in this issue. -- Colin Charles, byte at aeon.com.my http://www.bytebot.net/ http://fedoranews.org/colin/fnu/ - Fedora News Updates From davej at redhat.com Thu Feb 19 00:05:04 2004 From: davej at redhat.com (Dave Jones) Date: Thu, 19 Feb 2004 00:05:04 +0000 Subject: [SECURITY] Updated kernel packages resolve security vulnerabilities Message-ID: <20040219000504.GE6242@redhat.com> --------------------------------------------------------------------- Fedora Security Update Notification FEDORA-2004-080 2004-02-18 --------------------------------------------------------------------- Name : kernel Version : 2.4.22 Release : 1.2174.nptl Summary : The Linux kernel (the core of the Linux operating system) Description : The kernel package contains the Linux kernel (vmlinuz), the core of your Fedora Core Linux operating system. The kernel handles the basic functions of the operating system: memory allocation, process allocation, device input and output, etc. The previous security errata (2.4.22-1.2173) unfortunatly contained a bug which made some systems unbootable, due to breakage in the aacraid scsi driver. This update contains no further changes vs 2173. --------------------------------------------------------------------- This update can be downloaded from: http://download.fedora.redhat.com/pub/fedora/linux/core/updates/1/ 0e7e280c49392ab8c969a14a1bc53019 SRPMS/kernel-2.4.22-1.2174.nptl.src.rpm 4f743a2f8bd11a71456ffe7ea63e73fe i386/kernel-source-2.4.22-1.2174.nptl.i386.rpm 06263a61c6dd484cd660c302e6f0661c i386/kernel-doc-2.4.22-1.2174.nptl.i386.rpm 1a28c697f78a861e9a0a1316ad3a7380 i386/kernel-BOOT-2.4.22-1.2174.nptl.i386.rpm 985607d76a121d278d89b393b6e8b2be i386/debug/kernel-debuginfo-2.4.22-1.2174.nptl.i386.rpm 5f8f02bcb9707d5c7a7478a2873a990c i386/kernel-2.4.22-1.2174.nptl.i586.rpm 6fdf2932cd587ab5f08b213b3b99c9e0 i386/debug/kernel-debuginfo-2.4.22-1.2174.nptl.i586.rpm 1ced9ea530a02046be2df687e3f11949 i386/kernel-2.4.22-1.2174.nptl.i686.rpm 55462d3b48efee106a11ecc22e36b0b7 i386/kernel-smp-2.4.22-1.2174.nptl.i686.rpm b2b51f50ae8a02f8c58d6f723685111a i386/debug/kernel-debuginfo-2.4.22-1.2174.nptl.i686.rpm 17b30206c55ed2ea3040b37758d6062a i386/kernel-2.4.22-1.2174.nptl.athlon.rpm ad10047a5765aab12955c2332c4012ac i386/kernel-smp-2.4.22-1.2174.nptl.athlon.rpm 4f435ef1c7c27f6e66a04895eb721baa i386/debug/kernel-debuginfo-2.4.22-1.2174.nptl.athlon.rpm This update can also be installed with the Update Agent; you can launch the Update Agent with the 'up2date' command. --------------------------------------------------------------------- From notting at redhat.com Mon Feb 23 20:43:58 2004 From: notting at redhat.com (Bill Nottingham) Date: Mon, 23 Feb 2004 15:43:58 -0500 Subject: Fedora Core 1 Update: hwdata-0.103.1-1 Message-ID: <20040223204358.GA19051@devserv.devel.redhat.com> --------------------------------------------------------------------- Fedora Update Notification FEDORA-2004-082 2004-02-23 --------------------------------------------------------------------- Name : hwdata Version : 0.103.1 Release : 1 Summary : Hardware identification and configuration data Description : hwdata contains various hardware identification and configuration data, such as the pci.ids database, the XFree86 Cards and MonitorsDb databases. --------------------------------------------------------------------- Update Information: This update updates the MonitorsDB monitor listing and the pci.ids file of PCI device descriptions, and updates a couple of pcitable entries for cards that don't have modules.pcimap entries, such as the 3com 3c940. --------------------------------------------------------------------- * Mon Feb 23 2004 Bill Nottingham 0.103.1-1 - update 3c940 mapping * Mon Jan 19 2004 Brent Fox 0.103-1 - fix tab spacing * Fri Jan 16 2004 Brent Fox 0.102-1 - added an entry for ATI Radeon 9200SE (bug #111306) --------------------------------------------------------------------- This update can be downloaded from: http://download.fedora.redhat.com/pub/fedora/linux/core/updates/1/ f0e415b4e1729d7c599f0f9df53d0e9a SRPMS/hwdata-0.103.1-1.src.rpm 067aa285df0eb333873a9b7316ab5e10 i386/hwdata-0.103.1-1.noarch.rpm This update can also be installed with the Update Agent; you can launch the Update Agent with the 'up2date' command. --------------------------------------------------------------------- From notting at redhat.com Mon Feb 23 20:58:46 2004 From: notting at redhat.com (Bill Nottingham) Date: Mon, 23 Feb 2004 15:58:46 -0500 Subject: Fedora Core 1 Update: kernel-pcmcia-cs-3.1.31-16 Message-ID: <20040223205846.GA28338@devserv.devel.redhat.com> --------------------------------------------------------------------- Fedora Update Notification FEDORA-2004-073 2004-02-23 --------------------------------------------------------------------- Name : kernel-pcmcia-cs Version : 3.1.31 Release : 16 Summary : The daemon for using PCMCIA adapters. Description : Many laptop machines (and some non-laptops) support PCMCIA cards for expansion. Also known as "credit card adapters," PCMCIA cards are small cards for everything from SCSI support to modems. PCMCIA cards are hot swappable (i.e., they can be exchanged without rebooting the system) and quite convenient to use. The kernel-pcmcia-cs package contains a set of loadable kernel modules that implement an applications program interface, a set of client drivers for specific cards and a card manager daemon that can respond to card insertion and removal events by loading and unloading drivers on demand. The daemon also supports hot swapping, so that the cards can be safely inserted and ejected at any time. --------------------------------------------------------------------- Update Information: This update is mainly a rebuild for x86_64 support Other changes include a change to the initscript to load modules without the .o suffix. --------------------------------------------------------------------- * Wed Feb 11 2004 Bill Nottingham 3.1.31-16 - build for x86_64 (#115104) --------------------------------------------------------------------- This update can be downloaded from: http://download.fedora.redhat.com/pub/fedora/linux/core/updates/1/ e14f725cadb1bfb910480432d806ba3d SRPMS/kernel-pcmcia-cs-3.1.31-16.src.rpm 2fa4602be997f5588e4fca67b6c34155 i386/kernel-pcmcia-cs-3.1.31-16.i386.rpm 26c01c3b05c5ec670e5bdfb5aaf595bf i386/debug/kernel-pcmcia-cs-debuginfo-3.1.31-16.i386.rpm This update can also be installed with the Update Agent; you can launch the Update Agent with the 'up2date' command. --------------------------------------------------------------------- From wtogami at redhat.com Mon Feb 23 21:18:22 2004 From: wtogami at redhat.com (Warren Togami) Date: Mon, 23 Feb 2004 11:18:22 -1000 Subject: Fedora Core 1 Update: spamassassin-2.63-0.2 Message-ID: <403A6E1E.3080602@redhat.com> --------------------------------------------------------------------- Fedora Update Notification FEDORA-2004-072 2004-02-23 --------------------------------------------------------------------- Name : spamassassin Version : 2.63 Release : 0.2 Summary : Spam filter for email which can be invoked from mail delivery agents. Description : SpamAssassin provides you with a way to reduce if not completely eliminate Unsolicited Commercial Email (SPAM) from your incoming email. It can be invoked by a MDA such as sendmail or postfix, or can be called from a procmail script, .forward file, etc. It uses a genetic-algorithm evolved scoring system to identify messages which look spammy, then adds headers to the message so they can be filtered by the user's mail reading software. This distribution includes the spamd/spamc components which create a server that considerably speeds processing of mail. To enable spamassassin, if you are receiving mail locally, simply add this line to your ~/.procmailrc: INCLUDERC=/etc/mail/spamassassin/spamassassin-default.rc To filter spam for all users, add that line to /etc/procmailrc (creating if necessary). --------------------------------------------------------------------- Update Information: This update from spamassassin-2.60 to 2.63 in FC1 should fix many bugs and improve spam detection capability. See the release notes at http://www.spamassassin.org for more information. This release also enables spamc/spamd optional OpenSSL support. --------------------------------------------------------------------- * Wed Feb 11 2004 Warren Togami 2.63-0.2 - rename for FC1 * Wed Feb 11 2004 Warren Togami 2.63-6 - require sitelib instead * Wed Jan 21 2004 Warren Togami 2.63-3 - krb5-backcompat.patch so older krb5-devel does not fail * Wed Jan 21 2004 Warren Togami 2.63-2 - upgrade to 2.63 * Mon Jan 19 2004 Warren Togami 2.62-3 - Ville Skytt?'s fixes from #113596 including: - Fix buildroot traces - enable openssl - Trailing slash to DESTDIR (bug 90202 comment 14). - export optflags so they're honored, affects spamc only. * Mon Jan 19 2004 Warren Togami 2.62-2 - upgrade to 2.62 - Prereq -> Requires, former is deprecated - Require current version of perl - Remove urban myth clean test - TODO: Get rid of prefix * Wed Dec 31 2003 Dan Walsh 2.61-2 - Change sysconfdir to not use full path * Tue Dec 09 2003 Chip Turner 2.61-1 - upgrade to 2.61 --------------------------------------------------------------------- This update can be downloaded from: http://download.fedora.redhat.com/pub/fedora/linux/core/updates/1/ c3e019d39524e4285c3676c1922eef1c SRPMS/spamassassin-2.63-0.2.src.rpm 8dacc52f924e5662adf11305cff01609 i386/spamassassin-2.63-0.2.i386.rpm c38478ee0ac1b032e0a5a8cbdbcaecfe i386/debug/spamassassin-debuginfo-2.63-0.2.i386.rpm This update can also be installed with the Update Agent; you can launch the Update Agent with the 'up2date' command. --------------------------------------------------------------------- From veillard at redhat.com Wed Feb 25 21:43:43 2004 From: veillard at redhat.com (Daniel Veillard) Date: Wed, 25 Feb 2004 16:43:43 -0500 Subject: SECURITY: Update of libxml2 2.6.6 available Message-ID: <20040225214343.GZ31124@redhat.com> --------------------------------------------------------------------- Fedora Update Notification FEDORA-2004-087 2004-02-25 --------------------------------------------------------------------- Name : libxml2 Version : 2.6.6 Release : 3 Summary : Library providing XML and HTML support Description : This library allows to manipulate XML files. It includes support to read, modify and write XML and HTML files. There is DTDs support this includes parsing and validation even with complex DtDs, either at parse time or later once the document has been modified. The output can be a simple SAX stream or and in-memory DOM like representations. In this case one can use the built-in XPath and XPointer implementation to select subnodes or ranges. A flexible Input/Output mechanism is available, with existing HTTP and FTP modules and combined to an URI library. --------------------------------------------------------------------- Update Information: Updated libxml2 packages are available to fix an overflow when parsing the URI for remote resources. --------------------------------------------------------------------- * Thu Feb 12 2004 Daniel Veillard - upstream release 2.6.6 see http://xmlsoft.org/news.html --------------------------------------------------------------------- This update can be downloaded from: http://download.fedora.redhat.com/pub/fedora/linux/core/updates/1/ c46c9ba42ba7d27bfcf48899119a1d40 SRPMS/libxml2-2.6.6-3.src.rpm d7a9dec974250e425d6052e0f648b6c5 i386/libxml2-2.6.6-3.i386.rpm 0758aa446c1a43d18bc016df35288806 i386/libxml2-devel-2.6.6-3.i386.rpm 07843af17c126497f4baa8d279c7d920 i386/libxml2-python-2.6.6-3.i386.rpm ae7105805216615e6460c60be9c679da i386/debug/libxml2-debuginfo-2.6.6-3.i386.rpm This update can also be installed with the Update Agent; you can launch the Update Agent with the 'up2date' command. --------------------------------------------------------------------- Daniel -- Daniel Veillard | Red Hat Network https://rhn.redhat.com/ veillard at redhat.com | libxml GNOME XML XSLT toolkit http://xmlsoft.org/ http://veillard.com/ | Rpmfind RPM search engine http://rpmfind.net/ From mharris at redhat.com Thu Feb 26 19:32:55 2004 From: mharris at redhat.com (Mike A. Harris) Date: Thu, 26 Feb 2004 14:32:55 -0500 (EST) Subject: Fedora Core 1 update: New xchat 2.0.7 available Message-ID: --------------------------------------------------------------------- Fedora Update Notification FEDORA-2004-077 2004-02-26 --------------------------------------------------------------------- Name : xchat Version : 2.0.7 Release : 1.FC1.0 Summary : A popular and easy to use graphical IRC (chat) client Description : X-Chat is an easy to use graphical IRC chat client for the X Window System. --------------------------------------------------------------------- Update Information: New xchat 2.0.7 packages are available for Fedora Core 1 as an enhancement update. Additionally, the x86_64 packages fix 64 bit related bugs which affect the AMD64 platform, and possibly other 64 bit variants. --------------------------------------------------------------------- * Tue Feb 17 2004 Mike A. Harris 1:2.0.7-1.FC1.0 - Rebuild xchat 2.0.7-3 as 2.0.7-1.FC1.0 for release as an enhancement erratum for Fedora Core 1. Also fixes AMD64 64bit issues reported in bug (#114237) * Fri Feb 13 2004 Elliot Lee 1:2.0.7-3 - rebuilt * Mon Jan 26 2004 Jeremy Katz 1:2.0.7-2 - rebuild for new perl version * Sat Jan 10 2004 Mike A. Harris 1:2.0.7-1 - Updated to xchat 2.0.7 - Removed already integrated patches, including: xc204-fixperlui.diff, xchat-2.0.4-screen-position-fix.patch, xchat-2.0.4-exec-shield-GNU-stack.patch - Added a new rpm macro require_autoconf, which is disabled (0) by default, as it seems no longer necessary to run autoconf prior to ./configure, so we no longer need to BuildRequire autoconf 2.54 either. --------------------------------------------------------------------- This update can be downloaded from: http://download.fedora.redhat.com/pub/fedora/linux/core/updates/1/ c43863517cc4c67dc3fa78ae1c502e1d SRPMS/xchat-2.0.7-1.FC1.0.src.rpm f0308ff2083331b70f7c775ddb84d4f4 i386/xchat-2.0.7-1.FC1.0.i386.rpm 0784e8115da0763fdb2210e132ebe27f i386/debug/xchat-debuginfo-2.0.7-1.FC1.0.i386.rpm This update can also be installed with the Update Agent; you can launch the Update Agent with the 'up2date' command. ---------------------------------------------------------------------