From twaugh at redhat.com Tue Oct 5 16:01:53 2004 From: twaugh at redhat.com (Tim Waugh) Date: Tue, 5 Oct 2004 17:01:53 +0100 Subject: [SECURITY] Fedora Core 2 Update: cups-1.1.20-11.4 Message-ID: <20041005160153.GJ21098@redhat.com> --------------------------------------------------------------------- Fedora Update Notification FEDORA-2004-331 2004-10-05 --------------------------------------------------------------------- Product : Fedora Core 2 Name : cups Version : 1.1.20 Release : 11.4 Summary : Common Unix Printing System Description : The Common UNIX Printing System provides a portable printing layer for UNIX? operating systems. It has been developed by Easy Software Products to promote a standard printing solution for all UNIX vendors and users. CUPS provides the System V and Berkeley command-line interfaces. --------------------------------------------------------------------- Update Information: This update fixes an information leakage problem when printing to SMB shares requiring authentication. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CAN-2004-0923 to this issue. --------------------------------------------------------------------- * Tue Oct 05 2004 Tim Waugh 1:1.1.20-11.4 - Apply patch to fix CAN-2004-0923 (bug #134601). --------------------------------------------------------------------- This update can be downloaded from: http://download.fedora.redhat.com/pub/fedora/linux/core/updates/2/ 2cf978560a0914692a66f66abcfdcd29 SRPMS/cups-1.1.20-11.4.src.rpm 396e6013a5b7debc9bcbb8ceaa0c00be x86_64/cups-1.1.20-11.4.x86_64.rpm d200ceedcdc138960680513c525e648f x86_64/cups-devel-1.1.20-11.4.x86_64.rpm c94a56b1a2839717c067d08ab91b3dea x86_64/cups-libs-1.1.20-11.4.x86_64.rpm 7751bb200ddd8ee600a8b435d6d6a0d5 x86_64/debug/cups-debuginfo-1.1.20-11.4.x86_64.rpm aa5ebb1c74839d1c6f249f4187a1eb3d x86_64/cups-libs-1.1.20-11.4.i386.rpm 5e0dbb50222185cfd880661739b128a6 i386/cups-1.1.20-11.4.i386.rpm b5cdc03daba7e7ce914c99c836fced6d i386/cups-devel-1.1.20-11.4.i386.rpm aa5ebb1c74839d1c6f249f4187a1eb3d i386/cups-libs-1.1.20-11.4.i386.rpm 58df8018fcb09695166bcb825fa8fc15 i386/debug/cups-debuginfo-1.1.20-11.4.i386.rpm This update can also be installed with the Update Agent; you can launch the Update Agent with the 'up2date' command. --------------------------------------------------------------------- -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: not available URL: From fenlason at redhat.com Wed Oct 6 20:50:41 2004 From: fenlason at redhat.com (Jay Fenlason) Date: Wed, 6 Oct 2004 16:50:41 -0400 Subject: [SECURITY] Fedora Core 2 Update: squid-2.5.STABLE5-4.fc2 Message-ID: <20041006205041.GA1406@redhat.com> --------------------------------------------------------------------- Fedora Update Notification FEDORA-2004-330 2004-10-06 --------------------------------------------------------------------- Product : Fedora Core 2 Name : squid Version : 2.5.STABLE5 Release : 4.fc2 Summary : The Squid proxy caching server. Description : Squid is a high-performance proxy caching server for Web clients, supporting FTP, gopher, and HTTP data objects. Unlike traditional caching software, Squid handles all requests in a single, non-blocking, I/O-driven process. Squid keeps meta data and especially hot objects cached in RAM, caches DNS lookups, supports non-blocking DNS lookups, and implements negative caching of failed requests. Squid consists of a main server program squid, a Domain Name System lookup program (dnsserver), a program for retrieving FTP data (ftpget), and some management and client tools. --------------------------------------------------------------------- This update fixes a potential DoS against squid that was reported by Secunia. See http://secunia.com/advisories/12508/ for details. * Fri Oct 1 2004 Jay Fenlason 7:2.5.STABLE3-4.fc2.1 - Modify the entry for /etc/squid.conf in this spec file to set the permissions to 640 owned by root:squid. This will protect passwords stored in the file from prying eyes, and close #125007 - Include the -proxy-abuse patch, which closes #133970 --------------------------------------------------------------------- This update can be downloaded from: http://download.fedora.redhat.com/pub/fedora/linux/core/updates/2/ b735863f8f52314d1ff9981c85ea56b2 SRPMS/squid-2.5.STABLE5-4.fc2.src.rpm c8c1bc2cd95f892ce602e3e38e9e7823 x86_64/squid-2.5.STABLE5-4.fc2.x86_64.rpm fcb5484591641424a956b23c97614963 x86_64/debug/squid-debuginfo-2.5.STABLE5-4.fc2.x86_64.rpm 4d80ef2db40a68a7ba2ecffdec9d3372 i386/squid-2.5.STABLE5-4.fc2.i386.rpm 779417acbbfe0e022bc1525d9faae339 i386/debug/squid-debuginfo-2.5.STABLE5-4.fc2.i386.rpm This update can also be installed with the Update Agent; you can launch the Update Agent with the 'up2date' command. --------------------------------------------------------------------- From fenlason at redhat.com Thu Oct 7 17:43:08 2004 From: fenlason at redhat.com (Jay Fenlason) Date: Thu, 7 Oct 2004 13:43:08 -0400 Subject: [CORRECTED] [SECURITY] Fedora Core 2 Update: squid-2.5.STABLE5-4.fc2.1 Message-ID: <20041007174308.GA13300@redhat.com> Because of a typeo, the original announcement referred to the squid-2.5.STABLE5-4.fc2 rpms instead of the squid-2.5.STABLE5-4.fc2.1 ones. This corrected advisory lists the correct rpms and MD5 sums. --------------------------------------------------------------------- Fedora Update Notification FEDORA-2004-330 2004-10-07 --------------------------------------------------------------------- Product : Fedora Core 2 Name : squid Version : 2.5.STABLE5 Release : 4.fc2.1 Summary : The Squid proxy caching server. Description : Squid is a high-performance proxy caching server for Web clients, supporting FTP, gopher, and HTTP data objects. Unlike traditional caching software, Squid handles all requests in a single, non-blocking, I/O-driven process. Squid keeps meta data and especially hot objects cached in RAM, caches DNS lookups, supports non-blocking DNS lookups, and implements negative caching of failed requests. Squid consists of a main server program squid, a Domain Name System lookup program (dnsserver), a program for retrieving FTP data (ftpget), and some management and client tools. --------------------------------------------------------------------- This update fixes a potential DoS against squid that was reported by Secunia. See http://secunia.com/advisories/12508/ for details. * Fri Oct 01 2004 Jay Fenlason 7:2.5.STABLE3-4.fc2.1 - Modify the entry for /etc/squid.conf in this spec file to set the permissions to 640 owned by root:squid. This will protect passwords stored in the file from prying eyes, and close #125007 - Include the -proxy-abuse patch, which closes #133970 --------------------------------------------------------------------- This update can be downloaded from: http://download.fedora.redhat.com/pub/fedora/linux/core/updates/2/ 7419c4a407998180020030c89f44fc87 SRPMS/squid-2.5.STABLE5-4.fc2.1.src.rpm e2a0f29bbdbe44cff75f0ba644a7fbba x86_64/squid-2.5.STABLE5-4.fc2.1.x86_64.rpm 4cb91edbca411b00aef3008920ae9714 x86_64/debug/squid-debuginfo-2.5.STABLE5-4.fc2.1.x86_64.rpm 730574b7d98c1c77b33529591989f191 i386/squid-2.5.STABLE5-4.fc2.1.i386.rpm a7a7f22361580f62f166ace5b5bc3316 i386/debug/squid-debuginfo-2.5.STABLE5-4.fc2.1.i386.rpm This update can also be installed with the Update Agent; you can launch the Update Agent with the 'up2date' command. --------------------------------------------------------------------- From otaylor at redhat.com Thu Oct 7 18:33:41 2004 From: otaylor at redhat.com (Owen Taylor) Date: Thu, 07 Oct 2004 14:33:41 -0400 Subject: Fedora Core 2 Update: pango-1.4.1-1 Message-ID: <1097174021.2969.103.camel@localhost.localdomain> --------------------------------------------------------------------- Fedora Update Notification FEDORA-2004-299 2004-10-07 --------------------------------------------------------------------- Product : Fedora Core 2 Name : pango Version : 1.4.1 Release : 1 Summary : System for layout and rendering of internationalized text. Description : Pango is a system for layout and rendering of internationalized text. --------------------------------------------------------------------- Update Information: This update upgrades Pango to version 1.4.1, fixing numerous bugs; among other things, it fixes some serious problems with font selection for East Asian languages, and a common crash in the Hangul shaper. --------------------------------------------------------------------- * Tue Sep 07 2004 Owen Taylor - 1.4.1-1 - Upgrade to 1.4.1 --------------------------------------------------------------------- This update can be downloaded from: http://download.fedora.redhat.com/pub/fedora/linux/core/updates/2/ d760dceba71c5b8c936b06b51ec03cda SRPMS/pango-1.4.1-1.src.rpm 7bca6d18768ef7164e959078bc828fa0 x86_64/pango-1.4.1-1.x86_64.rpm c6ead8d102831dc486e33812992f3d4a x86_64/pango-devel-1.4.1-1.x86_64.rpm 38938fb962b715c0b77ab6bed8b52550 x86_64/debug/pango- debuginfo-1.4.1-1.x86_64.rpm d35771cf8b06aa6db78b2ea76ea88d9e x86_64/pango-1.4.1-1.i386.rpm d35771cf8b06aa6db78b2ea76ea88d9e i386/pango-1.4.1-1.i386.rpm d16965aa76b692a35b8fe03569ba8c4e i386/pango-devel-1.4.1-1.i386.rpm 010cce8e5a7ac2327f8b0a207e2a074e i386/debug/pango- debuginfo-1.4.1-1.i386.rpm This update can also be installed with the Update Agent; you can launch the Update Agent with the 'up2date' command. --------------------------------------------------------------------- -------------- next part -------------- A non-text attachment was scrubbed... Name: signature.asc Type: application/pgp-signature Size: 189 bytes Desc: This is a digitally signed message part URL: From nalin at redhat.com Fri Oct 8 19:36:55 2004 From: nalin at redhat.com (Nalin Dahyabhai) Date: Fri, 8 Oct 2004 15:36:55 -0400 Subject: [SECURITY] Fedora Core 2 Update: cyrus-sasl-2.1.18-2.2 Message-ID: <20041008193655.GC4172@redhat.com> --------------------------------------------------------------------- Fedora Update Notification FEDORA-2004-331 2004-10-08 --------------------------------------------------------------------- Product : Fedora Core 2 Name : cyrus-sasl Version : 2.1.18 Release : 2.2 Summary : The Cyrus SASL library. Description : The cyrus-sasl package contains the Cyrus implementation of SASL. SASL is the Simple Authentication and Security Layer, a method for adding authentication support to connection-based protocols. --------------------------------------------------------------------- Update Information: At application startup, libsasl and libsasl2 attempt to build a list of all SASL plug-ins which are available on the system. To do so, the libraries search for and attempt to load every shared library found within the plug-in directory. This location can be set with the SASL_PATH environment variable. In situations where an untrusted local user can affect the environment of a privileged process, this behavior could be exploited to run arbitrary code with the privileges of a setuid or setgid application. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CAN-2004-0884 to this issue. Users of cyrus-sasl should upgrade to these updated packages, which contain backported patches and are not vulnerable to this issue. --------------------------------------------------------------------- * Thu Oct 07 2004 Nalin Dahyabhai 2.1.18-2.2 - use notting's fix for incorrect patch for CAN-2004-0884 for 1.5.28 * Thu Oct 07 2004 Nalin Dahyabhai 2.1.18-2.1 - don't trust the environment in setuid/setgid contexts (CAN-2004-0884, #134660) --------------------------------------------------------------------- This update can be downloaded from: http://download.fedora.redhat.com/pub/fedora/linux/core/updates/2/ 74c6c5f219ade64c4514ec64dab48376 SRPMS/cyrus-sasl-2.1.18-2.2.src.rpm f3095f3563e54d3f6a8481560542ff64 x86_64/cyrus-sasl-2.1.18-2.2.x86_64.rpm ab802d3faa874f078051109578b698e9 x86_64/cyrus-sasl-devel-2.1.18-2.2.x86_64.rpm e9569f4c67f59de333fa6beca6260e7d x86_64/cyrus-sasl-gssapi-2.1.18-2.2.x86_64.rpm 5ab29e7ad1bbca0d098984ec73e8b6a8 x86_64/cyrus-sasl-plain-2.1.18-2.2.x86_64.rpm b9b362e882c9950a5da33f15bb5207f0 x86_64/cyrus-sasl-md5-2.1.18-2.2.x86_64.rpm 270d6d4738a4a674ff79256cf42ea0a4 x86_64/debug/cyrus-sasl-debuginfo-2.1.18-2.2.x86_64.rpm c8b8e3c700ef3e48b53eab20e6ee7f62 i386/cyrus-sasl-2.1.18-2.2.i386.rpm 1ae4633b8efae2f9c7b963398cee58c5 i386/cyrus-sasl-devel-2.1.18-2.2.i386.rpm 1e9062a935b0ae9482dd190ead4b099c i386/cyrus-sasl-gssapi-2.1.18-2.2.i386.rpm 40e096e298d95ce2a6d24b7cf4cf8ef1 i386/cyrus-sasl-plain-2.1.18-2.2.i386.rpm fbea0811ec245e404637c651b10f1e64 i386/cyrus-sasl-md5-2.1.18-2.2.i386.rpm 9370a1bbf9ca58297a1d721f929113e4 i386/debug/cyrus-sasl-debuginfo-2.1.18-2.2.i386.rpm This update can also be installed with the Update Agent; you can launch the Update Agent with the 'up2date' command. --------------------------------------------------------------------- -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: not available URL: From notting at redhat.com Mon Oct 11 14:25:35 2004 From: notting at redhat.com (Bill Nottingham) Date: Mon, 11 Oct 2004 10:25:35 -0400 Subject: Fedora Core 3 Test 3 available Message-ID: <20041011142535.GH19069@nostromo.devel.redhat.com> Fedora Core 3 test 3 is now available. This is the last planned test release before the final release - see: http://fedora.redhat.com/participate/schedule/ Notable in this test release: - All translations committed by the string freeze should be built. Please verify the accuracy and completeness of translations in your local language of choice. - Evolution has been updated to the released 2.0.1 version - Final GNOME 2.8 is included - the x86-64 DVD should now fit on a normal single-sided DVD - updates and fixes to the udev stack - the usual assorted bug fixes and updates Note that due to the size fix for the x86-64 DVD, the source RPMS are no longer included on the DVD images. Please report problems at: http://bugzilla.redhat.com/bugzilla File bugs against product 'Fedora Core', release 'fc3test3'. For more information on just what the Fedora Project and Fedora Core is, please see: http://fedora.redhat.com/ Fedora Core 3 Test 3 is available at the following sites (list courtesy Seth Vidal): * North America: * USA East: * http://ftp.ndlug.nd.edu/pub/fedora/linux/core/test/2.92/ * ftp://ftp.ndlug.nd.edu/pub/fedora/linux/core/test/2.92/ * ftp://redhat.secsup.org/pub/linux/redhat/fedora/core/test/2.92 * http://redhat.secsup.org/fedora/core/test/2.92 * rsync://fedora.secsup.org/core/test/2.92/ * http://mirror.hiwaay.net/redhat/fedora/linux/core/test/2.92/ * ftp://mirror.hiwaay.net/redhat/fedora/linux/core/test/2.92/ * rsync://mirror.hiwaay.net/fedora-linux-core-test/2.92/ * ftp://mirror.clarkson.edu/pub/distributions/fedora/linux/core/test/2.92/ * http://mirror.clarkson.edu/pub/distributions/fedora/linux/core/test/2.92/ * ftp://ftp.cse.buffalo.edu/pub/fedora/linux/core/test/2.92/ * ftp://ftp.net.usf.edu/pub/fedora/linux/core/test/2.92 * ftp://ftp.ale.org/mirrors/fedora/linux/core/test/2.92 * http://ftp.ale.org/mirrors/fedora/linux/core/test/2.92 * http://mirror.linux.duke.edu/pub/fedora/linux/core/test/2.92/ * ftp://mirror.linux.duke.edu/pub/fedora/linux/core/test/2.92/ * rsync://mirror.linux.duke.edu/fedora-linux-core/test/2.92/ * USA West: * ftp://mirror.stanford.edu/pub/mirrors/fedora/linux/core/test/2.92 * http://mirror.stanford.edu/fedora/linux/core/test/2.92 * http://limestone.uoregon.edu/ftp/fedora/test/2.92 * ftp://limestone.uoregon.edu/fedora/test/2.92 * rsync://limestone.uoregon.edu/ftp/fedora/test/2.92 * USA Mid-West: * ftp://mirror3.cs.wisc.edu/pub/fedora/linux/core/test/2.92/ * http://mirror3.cs.wisc.edu/pub/fedora/linux/core/test/2.92/ * rsync://mirror3.cs.wisc.edu/pub/fedora/linux/core/test/2.92/ * ftp://fedora.mirrors.tds.net/pub/fedora-core/test/2.92 * http://fedora.mirrors.tds.net/pub/fedora-core/test/2.92 * Canada: * ftp://less.cogeco.net/pub/fedora/linux/core/test/2.92/ * http://mirror.cpsc.ucalgary.ca/mirror/fedora/linux/core/test/2.92/ * ftp://mirror.cpsc.ucalgary.ca/mirror/fedora/linux/core/test/2.92/ * rsync://mirror.cpsc.ucalgary.ca/fedora/linux/core/test/2.92/ * http://gulus.USherbrooke.ca/pub/distro/fedora/linux/core/test/2.92/ * ftp://ftp.muug.mb.ca/pub/fedora/linux/core/test/2.92/ - i386 only * http://www.muug.mb.ca/pub/fedora/linux/core/test/2.92/ - i386 only * rsync://rsync.muug.mb.ca/fedora-linux-core-test/2.92/ - i386 only * South America: * Chile: * ftp://mirror.netglobalis.net/pub/fedora/test/2.92/ * ftp://ftp.tecnoera.com/pub/fedora/linux/test/2.92/ * http://ftp.tecnoera.com/pub/fedora/linux/test/2.92/ * rsync://ftp.tecnoera.com/pub/fedora/linux/test/2.92/ * Europe: * Austria: * ftp://gd.tuwien.ac.at/opsys/linux/fedora/core/test/2.92/ * http://gd.tuwien.ac.at/opsys/linux/fedora/core/test/2.92/ * rsync://gd.tuwien.ac.at/opsys/linux/fedora/core/test/2.92/ * Czech Republic: * ftp://ftp.fi.muni.cz/pub/linux/fedora-core/test/2.92/ * rsync://ftp.fi.muni.cz/pub/linux/fedora-core/test/2.92/ * ftp://ftp6.linux.cz/pub/linux/fedora-core/test/2.92/ (IPv6) * ftp://sunsite.mff.cuni.cz/pub/fedora/test/2.92/ * http://sunsite.mff.cuni.cz/pub/fedora/test/2.92/ * rsync://sunsite.mff.cuni.cz/fedora/fedora/test/2.92/ * ftp://ftp1.skynet.cz/pub/linux/fedora/test/2.92 * Denmark: * ftp://klid.dk/fedora/linux/core/test/2.92 * Finland: * http://ftp.funet.fi/pub/mirrors/ftp.redhat.com/pub/fedora/linux/core/test/2.92/ - i386 only * ftp://ftp.funet.fi/pub/mirrors/ftp.redhat.com/pub/fedora/linux/core/test/2.92/ - i386 only * http://ftp.ipv6.funet.fi/pub/mirrors/ftp.redhat.com/pub/fedora/linux/core/test/2.92/ - i386 only * ftp://ftp.ipv6.funet.fi/pub/mirrors/ftp.redhat.com/pub/fedora/linux/core/test/2.92/ - i386 only * France: * ftp://ftp.proxad.net/mirrors/fedora.redhat.com/fedora/linux/core/test/2.92/ * Germany: * ftp://ftp.informatik.uni-frankfurt.de/pub/linux/Mirror/ftp.redhat.com/fedora/core/test/2.92 * ftp://sunsite.informatik.rwth-aachen.de/pub/linux/fedora-core/test/2.92 * http://sunsite.informatik.rwth-aachen.de/ftp/pub/linux/fedora-core/test/2.92 * ftp://ftp.tu-chemnitz.de/pub/linux/fedora-core/test/2.92/ * http://wftp.tu-chemnitz.de/pub/linux/fedora-core/test/2.92/ * ftp://ftp.uni-bayreuth.de/pub/linux/fedora/linux/core/test/2.92 * rsync://rsync.uni-bayreuth.de/fedora-linux-core/test/2.92 * ftp://ftp-stud.fht-esslingen.de/Mirrors/fedora.redhat.com/linux/core/test/2.92/ * http://ftp-stud.fht-esslingen.de/Mirrors/fedora.redhat.com/linux/core/test/2.92/ * rsync://ftp-stud.fht-esslingen.de/fedora.redhat.com/linux/core/test/2.92 * http://download.atrpms.net/mirrors/fedoracore/test/2.92/ * Netherlands: * ftp://alviss.et.tudelft.nl/pub/fedora/core/test/2.92/ * Poland: * ftp://sunsite.icm.edu.pl/pub/Linux/fedora/linux/core/test/2.92/ * http://sunsite.icm.edu.pl/pub/Linux/fedora/linux/core/test/2.92/ * rsync://sunsite.icm.edu.pl/pub/Linux/fedora/linux/core/test/2.92/ * Portugal: * http://tux.cprm.net/pub/ftp.redhat.com/fedora/linux/core/test/2.92 * ftp://tux.cprm.net/pub/ftp.redhat.com/fedora/linux/core/test/2.92 * Romania: * http://ftp.lug.ro/fedora/linux/core/test/2.92/ * ftp://ftp.lug.ro/fedora/linux/core/test/2.92/ * Spain: * ftp://ftp.cica.es/fedora/linux/core/test/2.92/ * Asia/Pacific: * Australia: * http://planetmirror.com/pub/fedora/linux/core/test/2.92/ * ftp://ftp.planetmirror.com/pub/fedora/linux/core/test/2.92/ * rsync://rsync.planetmirror.com/fedora-linux-core-test/2.92/ * China: * ftp://ftp.hostrino.com/pub/fedora/linux/core/test/2.92/ * http://ftp.hostrino.com/pub/fedora/linux/core/test/2.92/ * Japan: * ftp://ftp.riken.jp/Linux/fedora/core/test/2.91/ * http://ftp.riken.jp/Linux/fedora/core/test/2.91/ * rsync://ftp.riken.jp/fedora/core/test/2.91/ * Taiwan: * http://ftp.isu.edu.tw/pub/Linux/Fedora/linux/core/test/2.92 * ftp://ftp.isu.edu.tw/pub/Linux/Fedora/linux/core/test/2.92 More mirrors will come online in the near future; check: http://fedora.redhat.com/download/mirrors.html for a list of mirrors that carry Fedora Core. One additional feature provided by the Linux community is the availability of Fedora Core releases via BitTorrent. http://torrent.linux.duke.edu/FC3-test3-binary-i386.torrent http://torrent.linux.duke.edu/FC3-test3-binary-x86_64.torrent See http://torrent.linux.duke.edu/ for other forms, including SRPMS and the DVD iso. RPMS for BitTorrent are available from: http://torrent.linux.duke.edu/btrpms/ Usage is simple: btdownloadcurses.py --url http://URL.torrent Allow incoming TCP 6881 - 6889 to join the torrent swarm. From notting at redhat.com Mon Oct 11 19:00:07 2004 From: notting at redhat.com (Bill Nottingham) Date: Mon, 11 Oct 2004 15:00:07 -0400 Subject: Fedora Core 2 Update: pcmcia-cs-3.2.7-1.8.2.1 Message-ID: <20041011190006.GB26917@nostromo.devel.redhat.com> --------------------------------------------------------------------- Fedora Update Notification FEDORA-2004-296 2004-10-11 --------------------------------------------------------------------- Product : Fedora Core 2 Name : pcmcia-cs Version : 3.2.7 Release : 1.8.2.1 Summary : Utilities for handling PCMCIA devices Description : User-level daemon and utilities for using PCMCIA devices on Linux. --------------------------------------------------------------------- Update Information: This update fixes a few problems in the PCMCIA init script. --------------------------------------------------------------------- * Wed Sep 08 2004 Bill Nottingham - minor init script fixes (#121742,#127627) * Tue Jun 15 2004 Elliot Lee - rebuilt --------------------------------------------------------------------- This update can be downloaded from: http://download.fedora.redhat.com/pub/fedora/linux/core/updates/2/ c6184bee73690d04b3bffba21d1ed4a2 SRPMS/pcmcia-cs-3.2.7-1.8.2.1.src.rpm 06d25b172f2b0aa89a25bd04ac2e924c x86_64/pcmcia-cs-3.2.7-1.8.2.1.x86_64.rpm a6f3f9a414c825e2ed1710bcbd35a6d2 x86_64/debug/pcmcia-cs-debuginfo-3.2.7-1.8.2.1.x86_64.rpm d1fe583f52ef3543058210f6d814b050 i386/pcmcia-cs-3.2.7-1.8.2.1.i386.rpm 96f720cec86c4f2f34ad4878e6998571 i386/debug/pcmcia-cs-debuginfo-3.2.7-1.8.2.1.i386.rpm This update can also be installed with the Update Agent; you can launch the Update Agent with the 'up2date' command. --------------------------------------------------------------------- From nphilipp at redhat.com Mon Oct 11 19:32:53 2004 From: nphilipp at redhat.com (Nils Philippsen) Date: Mon, 11 Oct 2004 21:32:53 +0200 Subject: Fedora Core 2 Update: gimp-2.0.5-0.fc2.1 Message-ID: <1097523173.19082.7.camel@wombat.tiptoe.de> --------------------------------------------------------------------- Fedora Update Notification FEDORA-2004-328 2004-10-11 --------------------------------------------------------------------- Product : Fedora Core 2 Name : gimp Version : 2.0.5 Release : 0.fc2.1 Summary : The GNU Image Manipulation Program Description : The GIMP (GNU Image Manipulation Program) is a powerful image composition and editing program, which can be extremely useful for creating logos and other graphics for webpages. The GIMP has many of the tools and filters you would expect to find in similar commercial offerings, and some interesting extras as well. The GIMP provides a large image manipulation toolbox, including channel operations and layers, effects, sub-pixel imaging and anti-aliasing, and conversions, all with multi-level undo. The GIMP includes a scripting facility, but many of the included scripts rely on fonts that we cannot distribute. The GIMP FTP site has a package of fonts that you can install by yourself, which includes all the fonts needed to run the included scripts. Some of the fonts have unusual licensing requirements; all the licenses are documented in the package. Get ftp://ftp.gimp.org/pub/gimp/fonts/freefonts-0.10.tar.gz and ftp://ftp.gimp.org/pub/gimp/fonts/sharefonts-0.10.tar.gz if you are so inclined. Alternatively, choose fonts which exist on your system before running the scripts. --------------------------------------------------------------------- * Sun Sep 26 2004 Nils Philippsen - rebuild for FC2 - don't run/require update-desktop-databases as it doesn't exist - don't buildrequire libwmf-devel - fix post/postun requirements * Sat Sep 25 2004 Nils Philippsen - version 2.0.5 * Thu Sep 16 2004 Nils Philippsen - rename desktop title (#132548) * Thu Aug 26 2004 Nils Philippsen - add MimeType to desktop file - run update-desktop-database in %post/%postun - don't make stunts with -32 or -64 postfixed binaries anymore - require /sbin/ldconfig and /usr/bin/update-desktop-database * Tue Aug 10 2004 Nils Philippsen - build requires libwmf-devel --------------------------------------------------------------------- This update can be downloaded from: http://download.fedora.redhat.com/pub/fedora/linux/core/updates/2/ 6f90f58891b6813a59e97a5e5aabccaf SRPMS/gimp-2.0.5-0.fc2.1.src.rpm 6edcfbdb9ac158bd0953740255d67fe7 x86_64/gimp-2.0.5-0.fc2.1.x86_64.rpm be60ff3423db3f21e6ccff8151773852 x86_64/gimp-devel-2.0.5-0.fc2.1.x86_64.rpm ba4860146f398112210f2a9bfad452d6 x86_64/debug/gimp-debuginfo-2.0.5-0.fc2.1.x86_64.rpm ceccd7fdb6a57deb8a7814c698ad7234 i386/gimp-2.0.5-0.fc2.1.i386.rpm f75d1aa9e19d2c484bd6e0b27ea623ec i386/gimp-devel-2.0.5-0.fc2.1.i386.rpm bd5769cbbddc68dfcc07937b93ca0cbc i386/debug/gimp-debuginfo-2.0.5-0.fc2.1.i386.rpm This update can also be installed with the Update Agent; you can launch the Update Agent with the 'up2date' command. --------------------------------------------------------------------- -- Nils Philippsen / Red Hat / nphilipp at redhat.com "They that can give up essential liberty to obtain a little temporary safety deserve neither liberty nor safety." -- B. Franklin, 1759 PGP fingerprint: C4A8 9474 5C4C ADE3 2B8F 656D 47D8 9B65 6951 3011 From jakub at redhat.com Tue Oct 12 19:56:38 2004 From: jakub at redhat.com (Jakub Jelinek) Date: Tue, 12 Oct 2004 15:56:38 -0400 Subject: Fedora Core 2 Update: tzdata-2004e-1.fc2 Message-ID: <20041012195638.GH31909@devserv.devel.redhat.com> --------------------------------------------------------------------- Fedora Update Notification FEDORA-2004-336 2004-10-12 --------------------------------------------------------------------- Product : Fedora Core 2 Name : tzdata Version : 2004e Release : 1.fc2 Summary : Timezone data Description : This package contains data files with rules for various timezones around the world. --------------------------------------------------------------------- * Mon Oct 11 2004 Jakub Jelinek 2004e-2 - 2004e (#135194) - updates for Brazil, Uruguay and Argentina --------------------------------------------------------------------- This update can be downloaded from: http://download.fedora.redhat.com/pub/fedora/linux/core/updates/2/ c03548bca08318a99609544979dbdb63 SRPMS/tzdata-2004e-1.fc2.src.rpm 8027e1fc19ce18ad8a5fc2ffb3449110 x86_64/tzdata-2004e-1.fc2.noarch.rpm 8027e1fc19ce18ad8a5fc2ffb3449110 i386/tzdata-2004e-1.fc2.noarch.rpm This update can also be installed with the Update Agent; you can launch the Update Agent with the 'up2date' command. --------------------------------------------------------------------- -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: not available URL: From mitr at redhat.com Wed Oct 13 07:51:41 2004 From: mitr at redhat.com (Miloslav Trmac) Date: Wed, 13 Oct 2004 09:51:41 +0200 Subject: Fedora Core 2 Update: libuser-0.52.5-0.FC2.1 Message-ID: <20041013075141.GA2251@amilo> --------------------------------------------------------------------- Fedora Update Notification FEDORA-2004-339 2004-10-13 --------------------------------------------------------------------- Product : Fedora Core 2 Name : libuser Version : 0.52.5 Release : 0.FC2.1 Summary : A user and group account administration library. Description : The libuser library implements a standardized interface for manipulating and administering user and group accounts. The library uses pluggable back-ends to interface to its data sources. Sample applications modeled after those included with the shadow password suite are included. --------------------------------------------------------------------- Update Information: This update fixes many bugs, mostly in the LDAP backend and the Python bindings. --------------------------------------------------------------------- * Tue Oct 12 2004 Miloslav Trmac - 0.52.5-0.FC2.1 - Build for Fedora Core 2 * Tue Oct 12 2004 Miloslav Trmac - 0.52.5-1 - Fix home directory renaming in ADMIN.modifyUser (#135280) - Further Python reference counting fixes * Sun Oct 10 2004 Miloslav Trmac - 0.52.4-1 - Fix memory leaks (#113730) - Build with updated translations * Wed Sep 29 2004 Miloslav Trmac - 0.52.3-1 - Fix compilation without libuser headers already installed (#134085) * Tue Sep 28 2004 Miloslav Trmac - 0.52.2-1 - Allow LDAP connection using ldaps, custom ports or without TLS (original patch from Pawel Salek). * Mon Sep 27 2004 Miloslav Trmac - 0.52.1-1 - Fix freecon() of uninitialized value in files/shadow module * Mon Sep 27 2004 Miloslav Trmac - 0.52-1 - Usable LDAP backend (#68052, #99435, #130404) - Miscellaneous bug fixes * Fri Sep 24 2004 Miloslav Trmac - 0.51.12-1 - Don't claim success and exception at the same time (#133479) - LDAP fixes, second round - Various other bugfixes * Thu Sep 23 2004 Miloslav Trmac - 0.51.11-1 - Allow documented optional arguments in Python ADMIN.{addUser,modifyUser,deleteUser} (#119812) - Add man pages for lchfn and lchsh - LDAP fixes, first round - Avoid file conflict on multilib systems - Call ldconfig correctly * Fri Sep 03 2004 Miloslav Trmac - 0.51.10-1 - Don't attempt to lookup using original entity name after entity modification (rename in particular) (#78376, #121252) - Fix copying of symlinks from /etc/skel (#87572, original patch from gLaNDix) - Make --enable-quota work, and fix the quota code to at least compile (#89114) - Fix several bugs (#120168, original patch from Steve Grubb) - Don't hardcode python version in spec file (#130952, from Robert Scheck) - Properly integrate the SELinux patch, it should actually be used now, even though it was "enabled" since 0.51.7-6 * Tue Aug 31 2004 Miloslav Trmac - 0.51.9-1 - Fix various typos - Document library interfaces - Build all shared libraries with -fPIC (#72536) * Wed Aug 25 2004 Miloslav Trmac - 0.51.8-1 - Update to build with latest autotools and gtk-doc - Update ALL_LINGUAS and POTFILES.in - Rebuild to depend on newer openldap --------------------------------------------------------------------- This update can be downloaded from: http://download.fedora.redhat.com/pub/fedora/linux/core/updates/2/ cb54affe8382dbc0c4214330a501e7ac SRPMS/libuser-0.52.5-0.FC2.1.src.rpm 14bac2e016f386d375576801d4dc7020 x86_64/libuser-0.52.5-0.FC2.1.x86_64.rpm d1b7dde748e4c75c65bf64e0a7d22ff2 x86_64/libuser-devel-0.52.5-0.FC2.1.x86_64.rpm401ae4af2f24ddaa5cc126e1833a5dcd x86_64/debug/libuser-debuginfo-0.52.5-0.FC2.1.x86_64.rpm b169e6a5f2457979ed1ba2a14597147c i386/libuser-0.52.5-0.FC2.1.i386.rpm 7246ceac99abb9ab5d0d134da35fc118 i386/libuser-devel-0.52.5-0.FC2.1.i386.rpm 8ba0c982f03a14339fc564318f998630 i386/debug/libuser-debuginfo-0.52.5-0.FC2.1.i386.rpm This update can also be installed with the Update Agent; you can launch the Update Agent with the 'up2date' command. --------------------------------------------------------------------- From fenlason at redhat.com Wed Oct 13 16:13:13 2004 From: fenlason at redhat.com (Jay Fenlason) Date: Wed, 13 Oct 2004 12:13:13 -0400 Subject: [SECURITY] Fedora Core 2 Update: squid-2.5.STABLE5-4.fc2.2 Message-ID: <20041013161313.GA1699@redhat.com> --------------------------------------------------------------------- Fedora Update Notification FEDORA-2004-338 2004-10-13 --------------------------------------------------------------------- Product : Fedora Core 2 Name : squid Version : 2.5.STABLE5 Release : 4.fc2.2 Summary : The Squid proxy caching server. Description : Squid is a high-performance proxy caching server for Web clients, supporting FTP, gopher, and HTTP data objects. Unlike traditional caching software, Squid handles all requests in a single, non-blocking, I/O-driven process. Squid keeps meta data and especially hot objects cached in RAM, caches DNS lookups, supports non-blocking DNS lookups, and implements negative caching of failed requests. Squid consists of a main server program squid, a Domain Name System lookup program (dnsserver), a program for retrieving FTP data (ftpget), and some management and client tools. --------------------------------------------------------------------- * Tue Oct 12 2004 Jay Fenlason 7:2.5.STABLE3-4.fc2.2 - Backport fix for CAN-2004-0918 (Remote Denial of Service attack) --------------------------------------------------------------------- This update can be downloaded from: http://download.fedora.redhat.com/pub/fedora/linux/core/updates/2/ b186266417cde4ae107590c2a57529e3 SRPMS/squid-2.5.STABLE5-4.fc2.2.src.rpm 4ec79efd0c0adc7374814f60fefea25b x86_64/squid-2.5.STABLE5-4.fc2.2.x86_64.rpm 40c4b0a65a0a9696bb24b5c3a9fbad3d x86_64/debug/squid-debuginfo-2.5.STABLE5-4.fc2.2.x86_64.rpm be53dc7d7978aa246739670e1f994402 i386/squid-2.5.STABLE5-4.fc2.2.i386.rpm 7f9c55b03369c0985fab4c56bab719f0 i386/debug/squid-debuginfo-2.5.STABLE5-4.fc2.2.i386.rpm This update can also be installed with the Update Agent; you can launch the Update Agent with the 'up2date' command. --------------------------------------------------------------------- From nphilipp at redhat.com Wed Oct 13 16:21:38 2004 From: nphilipp at redhat.com (Nils Philippsen) Date: Wed, 13 Oct 2004 18:21:38 +0200 Subject: Fedora Core 2 Update: system-config-users-1.2.25-0.fc2.1 Message-ID: <1097684498.28372.16.camel@wombat.tiptoe.de> --------------------------------------------------------------------- Fedora Update Notification FEDORA-2004-343 2004-10-13 --------------------------------------------------------------------- Product : Fedora Core 2 Name : system-config-users Version : 1.2.25 Release : 0.fc2.1 Summary : A graphical interface for administering users and groups Description : system-config-users is a graphical utility for administrating users and groups. It depends on the libuser library. --------------------------------------------------------------------- * Wed Oct 13 2004 Nils Philippsen - 1.2.25-0.fc2.1 - when renaming users, ensure that groups forget about the old user name (#135280) * Mon Oct 11 2004 Nils Philippsen - 1.2.24-1 - use user/group names for indexing, avoid unnecessary user/group lookups (#135223, original patch by Miloslav Trmac) - remove some debugging statements - updated translations * Fri Oct 08 2004 Nils Philippsen - 1.2.23-1 - try to fix 32bit uids/gids (#134803) - fix gtk.main*() related DeprecationWarnings - byte-compile python files in "make install" - updated translations * Mon Oct 04 2004 Nils Philippsen - 1.2.22-1 - updated translations * Sun Sep 26 2004 Nils Philippsen - 1.2.21-1 - updated translations * Fri Sep 24 2004 Nils Philippsen - 1.2.20-1 - allow UTF-8 in user's full name (#133137) - require new libuser version so that fix for #80624 doesn't throw exception (#133479) - admit complicity * Wed Sep 15 2004 Nils Philippsen - 1.2.19-1 - try to use gid as specified in /etc/libuser.conf, only if that fails use next free (#80624) * Mon Sep 13 2004 Nils Philippsen - 1.2.18-1 - use F1 instead of Ctrl+H as accelerator for Help/Contents (#132163) - use "mkdir -p" to fix make install glitch - use absolute paths in *.glade to fix pygtk/pyglade subtleties * Sun Sep 05 2004 Nils Philippsen - 1.2.15-1 - add manpage (Chris Spencer, #115316) - add Slovenian translation to desktop file (Roman Maurer, #131835) * Mon Jun 21 2004 Brent Fox - 1.2.14-1 - fix password expiration bug (bug #125234) --------------------------------------------------------------------- This update can be downloaded from: http://download.fedora.redhat.com/pub/fedora/linux/core/updates/2/ 2d293437df70b62e827977c8b2b4eb2b SRPMS/system-config-users-1.2.25-0.fc2.1.src.rpm d5f361727d06728e11365c7ae3988448 x86_64/system-config-users-1.2.25-0.fc2.1.noarch.rpm d5f361727d06728e11365c7ae3988448 i386/system-config-users-1.2.25-0.fc2.1.noarch.rpm This update can also be installed with the Update Agent; you can launch the Update Agent with the 'up2date' command. --------------------------------------------------------------------- -- Nils Philippsen / Red Hat / nphilipp at redhat.com "They that can give up essential liberty to obtain a little temporary safety deserve neither liberty nor safety." -- B. Franklin, 1759 PGP fingerprint: C4A8 9474 5C4C ADE3 2B8F 656D 47D8 9B65 6951 3011 From sopwith at redhat.com Wed Oct 6 19:51:08 2004 From: sopwith at redhat.com (Elliot Lee) Date: Wed, 6 Oct 2004 15:51:08 -0400 Subject: Fedora Project Mailing Lists reminder Message-ID: This is a reminder of the mailing lists for the Fedora Project, and the purpose of each list. You can view this information at http://fedora.redhat.com/participate/communicate/ When you're using these mailing lists, please take the time to choose the one that is most appropriate to your post. If you don't know the right mailing list to use for a question or discussion, please contact me. This will help you get the best possible answer for your question, and keep other list subscribers happy! Mailing Lists Mailing lists are email addresses which send email to all users subscribed to the mailing list. Sending an email to a mailing list reaches all users interested in discussing a specific topic and users available to help other users with the topic. The following mailing lists are available. To subscribe, send email to -request at redhat.com (replace with the desired mailing list name such as fedora-list) with the word subscribe in the subject. fedora-announce-list - Announcements of changes and events. To stay aware of news, subscribe to this list. fedora-list - For users of releases. If you want help with a problem installing or using , this is the list for you. fedora-test-list - For testers of test releases. If you would like to discuss experiences using TEST releases, this is the list for you. fedora-devel-list - For developers, developers, developers. If you are interested in helping create releases, this is the list for you. fedora-docs-list - For participants of the docs project fedora-desktop-list - For discussions about desktop issues such as user interfaces, artwork, and usability fedora-config-list - For discussions about the development of configuration tools fedora-legacy-announce - For announcements about the Fedora Legacy Project fedora-legacy-list - For discussions about the Fedora Legacy Project fedora-selinux-list - For discussions about the Fedora SELinux Project fedora-de-list - For discussions about Fedora in the German language fedora-es-list - For discussions about Fedora in the Spanish language fedora-ja-list - For discussions about Fedora in the Japanese language fedora-i18n-list - For discussions about the internationalization of Fedora Core fedora-trans-list - For discussions about translating the software and documentation associated with the Fedora Project German: fedora-trans-de French: fedora-trans-fr Spanish: fedora-trans-es Italian: fedora-trans-it Brazilian Portuguese: fedora-trans-pt_br Japanese: fedora-trans-ja Korean: fedora-trans-ko Simplified Chinese: fedora-trans-zh_cn Traditional Chinese: fedora-trans-zh_tw From harald at redhat.com Thu Oct 14 10:22:14 2004 From: harald at redhat.com (Harald Hoyer) Date: Thu, 14 Oct 2004 12:22:14 +0200 Subject: Fedora Core 2 Update: k3b-0.11.14-0.FC2.2 Message-ID: <416E5356.8040605@redhat.com> --------------------------------------------------------------------- Fedora Update Notification FEDORA-2004-340 2004-10-14 --------------------------------------------------------------------- Product : Fedora Core 2 Name : k3b Version : 0.11.14 Release : 0.FC2.2 Summary : CD/DVD burning application for KDE Description : K3b provides a comfortable user interface to perform most CD/DVD burning tasks. While the experienced user can take influence in all steps of the burning process the beginner may find comfort in the automatic settings and the reasonable k3b defaults which allow a quick start. --------------------------------------------------------------------- * Thu Oct 14 2004 Harald Hoyer 0:0.11.14-0.FC2.2 - fixed version string parsing, which fixes bug 134642 --------------------------------------------------------------------- This update can be downloaded from: http://download.fedora.redhat.com/pub/fedora/linux/core/updates/2/ dffde31752a4ec360b575cf42c6a0a68 SRPMS/k3b-0.11.14-0.FC2.2.src.rpm dc023493c57c7eb63bc9f0b761a8dccb x86_64/k3b-0.11.14-0.FC2.2.x86_64.rpm 61ceedc548aea66c141a03d35104f420 x86_64/debug/k3b-debuginfo-0.11.14-0.FC2.2.x86_64.rpm bd27281718b27acd661262f93b71ceb2 i386/k3b-0.11.14-0.FC2.2.i386.rpm 72a9e78089486002d803006832a02fca i386/debug/k3b-debuginfo-0.11.14-0.FC2.2.i386.rpm This update can also be installed with the Update Agent; you can launch the Update Agent with the 'up2date' command. --------------------------------------------------------------------- From nphilipp at redhat.com Thu Oct 14 16:31:52 2004 From: nphilipp at redhat.com (Nils Philippsen) Date: Thu, 14 Oct 2004 18:31:52 +0200 Subject: Fedora Core 2 Update: gimp-2.0.5-0.fc2.2 Message-ID: <1097771512.7399.12.camel@wombat.tiptoe.de> --------------------------------------------------------------------- Fedora Update Notification FEDORA-2004-344 2004-10-14 --------------------------------------------------------------------- Product : Fedora Core 2 Name : gimp Version : 2.0.5 Release : 0.fc2.2 Summary : The GNU Image Manipulation Program Description : The GIMP (GNU Image Manipulation Program) is a powerful image composition and editing program, which can be extremely useful for creating logos and other graphics for webpages. The GIMP has many of the tools and filters you would expect to find in similar commercial offerings, and some interesting extras as well. The GIMP provides a large image manipulation toolbox, including channel operations and layers, effects, sub-pixel imaging and anti-aliasing, and conversions, all with multi-level undo. The GIMP includes a scripting facility, but many of the included scripts rely on fonts that we cannot distribute. The GIMP FTP site has a package of fonts that you can install by yourself, which includes all the fonts needed to run the included scripts. Some of the fonts have unusual licensing requirements; all the licenses are documented in the package. Get ftp://ftp.gimp.org/pub/gimp/fonts/freefonts-0.10.tar.gz and ftp://ftp.gimp.org/pub/gimp/fonts/sharefonts-0.10.tar.gz if you are so inclined. Alternatively, choose fonts which exist on your system before running the scripts. --------------------------------------------------------------------- * Thu Oct 14 2004 Nils Philippsen - catch wrong values of bpp in BMP plugin (#135675) --------------------------------------------------------------------- This update can be downloaded from: http://download.fedora.redhat.com/pub/fedora/linux/core/updates/2/ cc983757a7f96badf1a8b1a58757bf3d SRPMS/gimp-2.0.5-0.fc2.2.src.rpm ab1b7e3052aeef46dd971877319e449a x86_64/gimp-2.0.5-0.fc2.2.x86_64.rpm 966825683896f3fc5a9606dcc6777684 x86_64/gimp-devel-2.0.5-0.fc2.2.x86_64.rpm 59b573aaa5d89b68124b8bbf902a37c4 x86_64/debug/gimp-debuginfo-2.0.5-0.fc2.2.x86_64.rpm 600851b0e82d606c0947f683394032b6 i386/gimp-2.0.5-0.fc2.2.i386.rpm cf55f8632c034971f57de07deb0f05fc i386/gimp-devel-2.0.5-0.fc2.2.i386.rpm 59790ba006d23dea340dff3e861dfd4e i386/debug/gimp-debuginfo-2.0.5-0.fc2.2.i386.rpm This update can also be installed with the Update Agent; you can launch the Update Agent with the 'up2date' command. --------------------------------------------------------------------- -- Nils Philippsen / Red Hat / nphilipp at redhat.com "They that can give up essential liberty to obtain a little temporary safety deserve neither liberty nor safety." -- B. Franklin, 1759 PGP fingerprint: C4A8 9474 5C4C ADE3 2B8F 656D 47D8 9B65 6951 3011 From mclasen at redhat.com Thu Oct 14 17:57:39 2004 From: mclasen at redhat.com (Matthias Clasen) Date: Thu, 14 Oct 2004 13:57:39 -0400 Subject: [SECURITY] Fedora Core 2 Update: libtiff-3.5.7-20.2 Message-ID: <1097776659.4385.1.camel@golem.boston.redhat.com> --------------------------------------------------------------------- Fedora Update Notification FEDORA-2004-334 2004-10-14 --------------------------------------------------------------------- Product : Fedora Core 2 Name : libtiff Version : 3.5.7 Release : 20.2 Summary : A library of functions for manipulating TIFF format image files. Description : The libtiff package contains a library of functions for manipulating TIFF (Tagged Image File Format) image format files. TIFF is a widely used file format for bitmapped images. TIFF files usually end in the .tif extension and they are often quite large. The libtiff package should be installed if you need to manipulate TIFF format image files. --------------------------------------------------------------------- Update Information: The libtiff package contains a library of functions for manipulating TIFF (Tagged Image File Format) image format files. TIFF is a widely used file format for bitmapped images. During a source code audit, Chris Evans discovered a number of integer overflow bugs that affect libtiff. An attacker who has the ability to trick a user into opening a malicious TIFF file could cause the application linked to libtiff to crash or possibly execute arbitrary code. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CAN-2004-0886 to this issue. Additionally, a number of buffer overflow bugs that affect libtiff have been found. An attacker who has the ability to trick a user into opening a malicious TIFF file could cause the application linked to libtiff to crash or possibly execute arbitrary code. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CAN-2004-0803 to this issue. All users are advised to upgrade to these errata packages, which contain fixes for these issues. --------------------------------------------------------------------- * Thu Oct 07 2004 Matthias Clasen - fix some integer and buffer overflows (#134853, #134848) --------------------------------------------------------------------- This update can be downloaded from: http://download.fedora.redhat.com/pub/fedora/linux/core/updates/2/ 176b76f644d44964a485e71ea09c814b SRPMS/libtiff-3.5.7-20.2.src.rpm a53252dfa36355bc7afb44f68de3534f x86_64/libtiff-3.5.7-20.2.x86_64.rpm 72f0b77f45916d20a8517d7cf9b80e1d x86_64/libtiff-devel-3.5.7-20.2.x86_64.rpm 7b17b8e556b04850231efef0e38bf582 x86_64/debug/libtiff-debuginfo-3.5.7-20.2.x86_64.rpm f86f0dec436740a312ad310140a3d537 x86_64/libtiff-3.5.7-20.2.i386.rpm f86f0dec436740a312ad310140a3d537 i386/libtiff-3.5.7-20.2.i386.rpm d78da339e6ac75c8bad8d6c87ca8c232 i386/libtiff-devel-3.5.7-20.2.i386.rpm fcb92220b830cce1c65a844d52e6d07d i386/debug/libtiff-debuginfo-3.5.7-20.2.i386.rpm This update can also be installed with the Update Agent; you can launch the Update Agent with the 'up2date' command. --------------------------------------------------------------------- From tagoh at redhat.com Thu Oct 14 20:44:02 2004 From: tagoh at redhat.com (Akira TAGOH) Date: Fri, 15 Oct 2004 05:44:02 +0900 (JST) Subject: Fedora Core 2 Update: w3m-0.5.1-3.1 Message-ID: <20041015.054402.547779502.tagoh@redhat.com> --------------------------------------------------------------------- Fedora Update Notification FEDORA-2004-329 2004-10-15 --------------------------------------------------------------------- Product : Fedora Core 2 Name : w3m Version : 0.5.1 Release : 3.1 Summary : A pager with Web browsing abilities. Description : The w3m program is a pager (or text file viewer) that can also be used as a text-mode Web browser. W3m features include the following: when reading an HTML document, you can follow links and view images using an external image viewer; its internet message mode determines the type of document from the header; if the Content-Type field of the document is text/html, the document is displayed as an HTML document; you can change a URL description like 'http://hogege.net' in plain text into a link to that URL. If you want to display the inline images on w3m, you need to install w3m-img package as well. --------------------------------------------------------------------- * Tue Oct 05 2004 Akira TAGOH 0.5.1-3.1 - rebuilt * Thu Aug 05 2004 Akira TAGOH 0.5.1-3 - converted Japanese man page to UTF-8. (#129028) * Wed Jun 16 2004 Elliot Lee - rebuilt * Fri May 07 2004 Akira TAGOH 0.5.1-1 - New upstream release. --------------------------------------------------------------------- This update can be downloaded from: http://download.fedora.redhat.com/pub/fedora/linux/core/updates/2/ 8ff9046189fa645a086afc420490a350 SRPMS/w3m-0.5.1-3.1.src.rpm bdd7b155b072d04db06edfc0f02a156c x86_64/w3m-img-0.5.1-3.1.x86_64.rpm b07c140f849eee948c7c3f51403959a1 x86_64/w3m-0.5.1-3.1.x86_64.rpm f779a6c5cd49b7d1eba90a195c1ec470 x86_64/debug/w3m-debuginfo-0.5.1-3.1.x86_64.rpm f8b321fb8afc687e99bdbf7fc3318142 i386/debug/w3m-debuginfo-0.5.1-3.1.i386.rpm e28c5c7bfed1c318081abdd37705f06e i386/w3m-0.5.1-3.1.i386.rpm aea4e47e33bfa4efb980fa100608fe4b i386/w3m-img-0.5.1-3.1.i386.rpm This update can also be installed with the Update Agent; you can launch the Update Agent with the 'up2date' command. --------------------------------------------------------------------- From tagoh at redhat.com Thu Oct 14 20:47:31 2004 From: tagoh at redhat.com (Akira TAGOH) Date: Fri, 15 Oct 2004 05:47:31 +0900 (JST) Subject: [SECURITY] Fedora Core 2 Update: ruby-1.8.1-6 Message-ID: <20041015.054731.164403075.tagoh@redhat.com> --------------------------------------------------------------------- Fedora Update Notification FEDORA-2004-264 2004-10-15 --------------------------------------------------------------------- Product : Fedora Core 2 Name : ruby Version : 1.8.1 Release : 6 Summary : An interpreter of object-oriented scripting language Description : Ruby is the interpreted scripting language for quick and easy object-oriented programming. It has many features to process text files and to do system management tasks (as in Perl). It is simple, straight-forward, and extensible. --------------------------------------------------------------------- * Thu Aug 19 2004 Akira TAGOH 1.8.1-6 - security fix [CAN-2004-0755] - ruby-1.8.1-cgi_session_perms.patch: sets the permission of the session data file to 0600. (#130063) --------------------------------------------------------------------- This update can be downloaded from: http://download.fedora.redhat.com/pub/fedora/linux/core/updates/2/ d8a48d8cc33fbb2d80ef3ae7cc430a7b SRPMS/ruby-1.8.1-6.src.rpm c714ce56a344262bc6517733374074b1 x86_64/ruby-devel-1.8.1-6.x86_64.rpm ca4a11002b7ac1a0527704111fc1c8e6 x86_64/irb-1.8.1-6.x86_64.rpm 293bdbe4cbe15b1686b4f947400908ed x86_64/ruby-1.8.1-6.x86_64.rpm d8e5088313ddc95dac30a0d2805b5f82 x86_64/debug/ruby-debuginfo-1.8.1-6.x86_64.rpm 0782cfa648c4642e4673cc1eaac43ca0 x86_64/ruby-docs-1.8.1-6.x86_64.rpm ead260eaa77f783b24d2e1084aa8d423 x86_64/ruby-libs-1.8.1-6.x86_64.rpm 15ac23e5f062bfbab02a5ed2cf0218b7 x86_64/ruby-mode-1.8.1-6.x86_64.rpm 85017b0e52e6b52baa5a6068930c3b84 x86_64/ruby-tcltk-1.8.1-6.x86_64.rpm 2bafe002e18bc8eb388869b3dc7ef1fd i386/ruby-1.8.1-6.i386.rpm 1049cb91162d8b2a18714c52b7bfd456 i386/irb-1.8.1-6.i386.rpm 770364a116d5f4c9a6d5679231e879c4 i386/debug/ruby-debuginfo-1.8.1-6.i386.rpm ac945d1d04306ec2fa7245aefcaa16a2 i386/ruby-devel-1.8.1-6.i386.rpm 1075fc983162e6b00bd29e0976dd79f0 i386/ruby-docs-1.8.1-6.i386.rpm e561fa39a17cc1770c0d1180732d469c i386/ruby-libs-1.8.1-6.i386.rpm 412267226c58d3bfc73577ebc60157ba i386/ruby-mode-1.8.1-6.i386.rpm bf1cbb9f65ecf88f4ffa034d24cef119 i386/ruby-tcltk-1.8.1-6.i386.rpm This update can also be installed with the Update Agent; you can launch the Update Agent with the 'up2date' command. --------------------------------------------------------------------- From nphilipp at redhat.com Fri Oct 15 06:24:08 2004 From: nphilipp at redhat.com (Nils Philippsen) Date: Fri, 15 Oct 2004 08:24:08 +0200 Subject: Fedora Core 2 Update: gimp-2.0.5-0.fc2.3 Message-ID: <1097821448.3288.0.camel@wombat.tiptoe.de> --------------------------------------------------------------------- Fedora Update Notification FEDORA-2004-345 2004-10-15 --------------------------------------------------------------------- Product : Fedora Core 2 Name : gimp Version : 2.0.5 Release : 0.fc2.3 Summary : The GNU Image Manipulation Program Description : The GIMP (GNU Image Manipulation Program) is a powerful image composition and editing program, which can be extremely useful for creating logos and other graphics for webpages. The GIMP has many of the tools and filters you would expect to find in similar commercial offerings, and some interesting extras as well. The GIMP provides a large image manipulation toolbox, including channel operations and layers, effects, sub-pixel imaging and anti-aliasing, and conversions, all with multi-level undo. The GIMP includes a scripting facility, but many of the included scripts rely on fonts that we cannot distribute. The GIMP FTP site has a package of fonts that you can install by yourself, which includes all the fonts needed to run the included scripts. Some of the fonts have unusual licensing requirements; all the licenses are documented in the package. Get ftp://ftp.gimp.org/pub/gimp/fonts/freefonts-0.10.tar.gz and ftp://ftp.gimp.org/pub/gimp/fonts/sharefonts-0.10.tar.gz if you are so inclined. Alternatively, choose fonts which exist on your system before running the scripts. --------------------------------------------------------------------- Update Information: A brown paper bag release -- I missed that 1bpp and 24bpp are also valid for BMP. --------------------------------------------------------------------- --------------------------------------------------------------------- This update can be downloaded from: http://download.fedora.redhat.com/pub/fedora/linux/core/updates/2/ 7bbd776ee5ebafe52a94cd85cdb30637 SRPMS/gimp-2.0.5-0.fc2.3.src.rpm 81e3f2f8e9c278dc10aeff2931f8ce7d x86_64/gimp-2.0.5-0.fc2.3.x86_64.rpm 2cb5e47a031b72800ae83a499435d2c1 x86_64/gimp-devel-2.0.5-0.fc2.3.x86_64.rpm 4baeec8adc87004d7cb3dc9c75a981d1 x86_64/debug/gimp-debuginfo-2.0.5-0.fc2.3.x86_64.rpm b0414e6a7aa6ab3019b5d2a11d2ea009 i386/gimp-2.0.5-0.fc2.3.i386.rpm 779315cfbc7cc06cb83bbdbfdc3f9eb2 i386/gimp-devel-2.0.5-0.fc2.3.i386.rpm d8d7ea330f46d769c4017c66bdbdc3ca i386/debug/gimp-debuginfo-2.0.5-0.fc2.3.i386.rpm This update can also be installed with the Update Agent; you can launch the Update Agent with the 'up2date' command. --------------------------------------------------------------------- -- Nils Philippsen / Red Hat / nphilipp at redhat.com "They that can give up essential liberty to obtain a little temporary safety deserve neither liberty nor safety." -- B. Franklin, 1759 PGP fingerprint: C4A8 9474 5C4C ADE3 2B8F 656D 47D8 9B65 6951 3011 From mclasen at redhat.com Mon Oct 18 18:39:56 2004 From: mclasen at redhat.com (Matthias Clasen) Date: Mon, 18 Oct 2004 14:39:56 -0400 Subject: Fedora Core 2 Update: glib2-2.4.7-1.1 Message-ID: <1098124796.17601.0.camel@golem.boston.redhat.com> --------------------------------------------------------------------- Fedora Update Notification FEDORA-2004-341 2004-10-18 --------------------------------------------------------------------- Product : Fedora Core 2 Name : glib2 Version : 2.4.7 Release : 1.1 Summary : A library of handy utility functions. Description : GLib is the low-level core library that forms the basis for projects such as GTK+ and GNOME. It provides data structure handling for C, portability wrappers, and interfaces for such runtime functionality as an event loop, threads, dynamic loading, and anobject system. This package provides version 2 of GLib. --------------------------------------------------------------------- Update Information: Glib 2.4.7 contains many bug fixes, notably a fix for bug 126666. --------------------------------------------------------------------- * Wed Oct 13 2004 Matthias Clasen 2.4.7-1.1 - Update to 2.4.7 --------------------------------------------------------------------- This update can be downloaded from: http://download.fedora.redhat.com/pub/fedora/linux/core/updates/2/ fb7360d556d1a361c8f7e885ba3ae8db SRPMS/glib2-2.4.7-1.1.src.rpm e3993bb4080b43e92072be12734455bc x86_64/glib2-2.4.7-1.1.x86_64.rpm f1da0e5006fbf4762aba1ccc2f3adc3a x86_64/glib2-devel-2.4.7-1.1.x86_64.rpm 9b0f99be3ce43771474047b0c4b83d92 x86_64/debug/glib2-debuginfo-2.4.7-1.1.x86_64.rpm d8b5ae5f2edd67d0b4a8074ec0cd4c78 x86_64/glib2-2.4.7-1.1.i386.rpm d8b5ae5f2edd67d0b4a8074ec0cd4c78 i386/glib2-2.4.7-1.1.i386.rpm 186253e2408404ec9322e198e3fc63bc i386/glib2-devel-2.4.7-1.1.i386.rpm 7f9061f67016031f87db4db984f1fbe3 i386/debug/glib2-debuginfo-2.4.7-1.1.i386.rpm This update can also be installed with the Update Agent; you can launch the Update Agent with the 'up2date' command. --------------------------------------------------------------------- From mclasen at redhat.com Mon Oct 18 18:40:52 2004 From: mclasen at redhat.com (Matthias Clasen) Date: Mon, 18 Oct 2004 14:40:52 -0400 Subject: Fedora Core 2 Update: gtk2-2.4.13-2.1 Message-ID: <1098124852.17601.2.camel@golem.boston.redhat.com> --------------------------------------------------------------------- Fedora Update Notification FEDORA-2004-342 2004-10-18 --------------------------------------------------------------------- Product : Fedora Core 2 Name : gtk2 Version : 2.4.13 Release : 2.1 Summary : The GIMP ToolKit (GTK+), a library for creating GUIs for X. Description : GTK+ is a multi-platform toolkit for creating graphical user interfaces. Offering a complete set of widgets, GTK+ is suitable for projects ranging from small one-off tools to complete application suites. --------------------------------------------------------------------- Update Information: GTK+ 2.4.13 contains many bug fixes, with an emphasis on making the new file chooser work better. --------------------------------------------------------------------- * Fri Oct 15 2004 Matthias Clasen - 2.4.13-2.1 - %ghost the config files generated in postinst (#135723) * Wed Oct 13 2004 Matthias Clasen - 2.4.13-1.1 - Update to 2.4.13 --------------------------------------------------------------------- This update can be downloaded from: http://download.fedora.redhat.com/pub/fedora/linux/core/updates/2/ 888b006902fa23439f634b705f082bc1 SRPMS/gtk2-2.4.13-2.1.src.rpm 9d066fe3f7ff6655736e13949459e7a6 x86_64/gtk2-2.4.13-2.1.x86_64.rpm 11dc1bdefbd1a7b9acc03a16fec333e4 x86_64/gtk2-devel-2.4.13-2.1.x86_64.rpm 265f39d9d5408f2ef9e60e1024e0aef1 x86_64/debug/gtk2-debuginfo-2.4.13-2.1.x86_64.rpm d90c4a1c44be397d59d8091e1fb76c15 x86_64/gtk2-2.4.13-2.1.i386.rpm d90c4a1c44be397d59d8091e1fb76c15 i386/gtk2-2.4.13-2.1.i386.rpm f845bf32061bc3e4d6141489f9045390 i386/gtk2-devel-2.4.13-2.1.i386.rpm 641674124b4c19c28996a44aa9d00bc0 i386/debug/gtk2-debuginfo-2.4.13-2.1.i386.rpm This update can also be installed with the Update Agent; you can launch the Update Agent with the 'up2date' command. --------------------------------------------------------------------- From jakub at redhat.com Tue Oct 19 12:33:15 2004 From: jakub at redhat.com (Jakub Jelinek) Date: Tue, 19 Oct 2004 08:33:15 -0400 Subject: Fedora Core 2 Update: tzdata-2004e-1.fc2 Message-ID: <20041019123315.GK31909@devserv.devel.redhat.com> --------------------------------------------------------------------- Fedora Update Notification FEDORA-2004-336 2004-10-19 --------------------------------------------------------------------- Product : Fedora Core 2 Name : tzdata Version : 2004e Release : 1.fc2 Summary : Timezone data Description : This package contains data files with rules for various timezones around the world. --------------------------------------------------------------------- Update Information: Previous tzdata-2004e-1.fc2 announcement from 2004-10-12 had wrong md5sums (before signing). --------------------------------------------------------------------- * Mon Oct 11 2004 Jakub Jelinek 2004e-2 - 2004e (#135194) - updates for Brazil, Uruguay and Argentina --------------------------------------------------------------------- This update can be downloaded from: http://download.fedora.redhat.com/pub/fedora/linux/core/updates/2/ fd134600476d3e305257735bb6c0887c SRPMS/tzdata-2004e-1.fc2.src.rpm ea76294a58d62be0d221c3381b442931 x86_64/tzdata-2004e-1.fc2.noarch.rpm ea76294a58d62be0d221c3381b442931 i386/tzdata-2004e-1.fc2.noarch.rpm This update can also be installed with the Update Agent; you can launch the Update Agent with the 'up2date' command. --------------------------------------------------------------------- -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: not available URL: From than at redhat.com Thu Oct 21 18:31:25 2004 From: than at redhat.com (Than Ngo) Date: Thu, 21 Oct 2004 20:31:25 +0200 Subject: [SECURITY] Fedora Core 2 Update: xpdf-3.00-3.4 Message-ID: <4178007D.5070903@redhat.com> --------------------------------------------------------------------- Fedora Update Notification FEDORA-2004-348 2004-10-21 --------------------------------------------------------------------- Product : Fedora Core 2 Name : xpdf Version : 3.00 Release : 3.4 Summary : A PDF file viewer for the X Window System. Description : Xpdf is an X Window System based viewer for Portable Document Format (PDF) files. Xpdf is a small and efficient program which uses standard X fonts. --------------------------------------------------------------------- Update Information: Xpdf is an X Window System based viewer for Portable Document Format (PDF) files. During a source code audit, Chris Evans and others discovered a number of integer overflow bugs that affected all versions of xpdf. An attacker could construct a carefully crafted PDF file that could cause xpdf to crash or possibly execute arbitrary code when opened. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CAN-2004-0888 to this issue. Users of xpdf are advised to upgrade to this errata package, which contains a backported patch correcting these issues. --------------------------------------------------------------------- * Thu Oct 21 2004 Than Ngo 1:3.00-3.4 - Apply patch to fix can-2004-0888, can-2004-0889 * Thu Oct 21 2004 Than Ngo 1:3.00-3.3 - Fix xpdf crash #136633 * Tue Oct 12 2004 Than Ngo 1:3.00-3.2 - Apply patch to fix can-2004-0888, can-2004-0889 - Fix xpdf crash when selecting outline without page reference #134993 - Fix locale issue #133911 - Fix default fonts setting * Mon Jul 26 2004 Than Ngo 1:3.00-3.1 - update t1lib upstream - add cjk font patch, thanks to Yukihiro Nakai, bug #123540 - fix a bug in font rasterizer, bug #125559 - improve menue entry, bug #125850 --------------------------------------------------------------------- This update can be downloaded from: http://download.fedora.redhat.com/pub/fedora/linux/core/updates/2/ 9a247439c975578530b1e63252f37719 SRPMS/xpdf-3.00-3.4.src.rpm c7a133d156e4afb06eed8e659b5f7b41 x86_64/xpdf-3.00-3.4.x86_64.rpm 0285341acf5a3492e5ecb22d1b8f66eb x86_64/debug/xpdf-debuginfo-3.00-3.4.x86_64.rpm 4d69d5e3c58b4bc36cd02f0c5690322c i386/xpdf-3.00-3.4.i386.rpm 9a0206612ba4945ae35bd40b8bd3eecf i386/debug/xpdf-debuginfo-3.00-3.4.i386.rpm This update can also be installed with the Update Agent; you can launch the Update Agent with the 'up2date' command. --------------------------------------------------------------------- From dcbw at redhat.com Thu Oct 21 21:26:29 2004 From: dcbw at redhat.com (Dan Williams) Date: Thu, 21 Oct 2004 17:26:29 -0400 Subject: Fedora Core 2 Update: openoffice.org-1.1.2-10.fc2 Message-ID: <1098393989.15369.2.camel@dcbw.boston.redhat.com> Subject: Fedora Core 2 Update: openoffice.org-1.1.2-10.fc2 --------------------------------------------------------------------- Fedora Update Notification FEDORA-2004-347 2004-10-21 --------------------------------------------------------------------- Product : Fedora Core 2 Name : openoffice.org Version : 1.1.2 Release : 10.fc2 Summary : OpenOffice.org comprehensive office suite. Description : OpenOffice.org is an Open Source, community-developed, multi-platform office productivity suite. It includes the key desktop applications, such as a word processor, spreadsheet, presentation manager, formula editor and drawing program, with a user interface and feature set similar to other office suites. Sophisticated and flexible, OpenOffice.org also works transparently with a variety of file formats, including Microsoft Office. Usage: Simply type "ooffice" to run OpenOffice.org or select the requested component (Writer, Calc, Draw, Impress, etc.) from your desktop menu. The ooffice wrapper script will install a few files in the user's home, if necessary. The OpenOffice.org team hopes you enjoy working with OpenOffice.org! Note: Non-.vor templates covered under the GPL license. --------------------------------------------------------------------- Update Information: This update is equivalent to the Fedora Core 3 version of OpenOffice.org. The changes since the previous version of OpenOffice.org in Fedora Core 2 are too numerous to list here, but there are quite a few notable improvements: o Update to 1.1.2 o Include WordPerfect filters (Writer Perfect module by Will L.) o GTK and KDE native widgets and file chooser dialogs o Make openoffice.org no longer depend on -i18n, tag language-specific files with %lang o Print dialog's Properties button now works o #rh134195# (polygon icons reversed in Draw) (Caolan) o #rh122550# (change regexp for gnome-vfs) (Caolan) o #rh134505# (OOo commits preedit strings before the actual commit) o #rh126103# (unable to fall back to indic font in oowriter) o #rh135709# (need 32 bit redhat-artwork installed by default for HelixPlayer and openoffice) o #rh133793# (Bad view of iso-8859-2 fonts in menu & dialogs) o #rh126088# (Arabic fonts are not displayed correctly under ooo) o #rh131660# (openoffice.org-kde contains files owned by bhcompile) o #rh130131# (CAN-2004-0752 temporary file information leakage) o #rh84777# (OpenOffice should provide basic templates) o #rh132074# (calc now improperly imports xls spreadsheets) o #rh129538# (OO Impress crashes when editing text) o #rh129770# (OpenOffice crashes on copying spreadsheet cell) o #rh130734# (oocalc segfaults when saving) o #rh130216# (pt_BR locale not supported in OOo) o #rh129087# (Tabs and buttons in dialogs flicker) o #rh128709# (Syntax error in ooo-1.2 setup script) o #rh129771# (Warnings from ooffice starting up) o #rh130973# (OOo upgrade removes files in user ${HOME}) o #rh132063# (reproducible segfault in oowriter) o #rh131350# (openoffice.org 1.1.x should Obsolete: openoffice.org- style-gnome) o #rh129459# (no german umlauts in staroffice) o #rh129262# (The copy function (Ctrl-C) doesn't work in Calc) o #rh127447# (ooffice hangs when printing to file or exporting to PDF) o #rh129401# (Draw: Using Stylist (no individual styles, cpu load, flickering)) o #rh126791# (Loading templates in OpenOffice.org Writer doesn't work) o #rh126708# (pdf export problem with openoffice.org.i386 0:1.1.0-16) o #rh126371# (openoffice send document as email does not attach document) o #rh126149# (Can't see hebrew fonts in openoffice1.1.1) o #rh124801# (Tab key in save document acts as Enter) o #rh110689# (Unable to launch any OOo components after initial ws install with LANG=et_EE.UTF-8) o #rh116176# (Czech localization is not included) o #rh118508# (Open File Dialog broken) o #rh132863# (Redlining crash in Writer) o #rh123865# (Default font for zh_* locale) o #rh128709# (Syntax in ooo-1.2 setup script) o #rh127474# (i18n package has files with world rwx permissions) o #rh122028# (No norwegian spell-checking in openoffice.org) o #rh121675# (Australian dictionaries incomlete (very easy fix)) o #rh120824# (printer properties button is broken) o #rh124538# (OpenOffice.org does not work properly with a Norwegian keyboard) o #rh123441# (OO.o crashes on startup if certain fonts are present) o #rh120494# (wrong fonts are used on GUI) o #rh123685# (Default font for zh_* locale) o #rh122361# (OOo uses ugly UI font) --------------------------------------------------------------------- * Tue Oct 19 2004 Dan Williams - 1.1.2-10 - #rh134195# polygon icons reversed in Draw (Caolan) - #rh122550# change regexp for gnome-vfs (Caolan) - #rh134505# OOo commits preedit strings before the actual commit - #rh126103# unable to fall back to indic font in oowriter - #rh135709# need 32 bit redhat-artwork installed by default for HelixPlayer and openoffice * Wed Oct 06 2004 Dan Williams - 1.1.2-9 - Better fix for #134505 (OOo commits preedit strings before the actual commit) * Tue Oct 05 2004 Dan Williams - 1.1.2-8 - Add a BuildRequires for compat-gcc-c++ too - Figure out that you need to have openoffice.org-kde package installed to fix #133741 Should fix: 134505 (OOo commits preedit strings before the actual commit) * Fri Oct 01 2004 Dan Williams - 1.1.2-7 - Get BuildRequires right Should fix: 133741 (openoffice.org does not render chars properly in KDE) 133793 (Bad view of iso-8859-2 fonts in menu & dialogs) * Thu Sep 23 2004 Dan Williams - 1.1.2-6 - Really fix the Word Count menu item this time * Mon Sep 20 2004 Dan Williams - 1.1.2-5 - Update to latest ooo-build CVS - Include WordPerfect filters (Writer Perfect module by Will L.) - Have to disable PPC builds for now due to GCC/toolchain bugs with -fPIC in compat-gcc Should fix: 126088 (Arabic fonts are not displayed correctly under ooo) 131660 (openoffice.org-kde contains files owned by bhcompile) 130131 (CAN-2004-0752 temporary file information leakage) 84777 (OpenOffice should provide basic templates) 132074 (calc now improperly imports xls spreadsheets) 129538 (OO Impress crashes when editing text) 129770 (OpenOffice crashes on copying spreadsheet cell) 130734 (oocalc segfaults when saving) 130216 (pt_BR locale not supported in OOo) 129087 (Tabs and buttons in dialogs flicker) 128709 (Syntax error in ooo-1.2 setup script) 129771 (Warnings from ooffice starting up) 130973 (OOo upgrade removes files in user ${HOME}) 132063 (reproducible segfault in oowriter) 131350 (openoffice.org 1.1.x should Obsolete: openoffice.org-style- gnome) 129459 (no german umlauts in staroffice) 129262 (The copy function (Ctrl-C) doesn't work in Calc) 127447 (ooffice hangs when printing to file or exporting to PDF) 129401 (Draw: Using Stylist (no individual styles, cpu load, flickering)) 126791 (Loading templates in OpenOffice.org Writer doesn't work) 126708 (pdf export problem with openoffice.org.i386 0:1.1.0-16) 126371 (openoffice send document as email does not attach document) 126149 (Can't see hebrew fonts in openoffice1.1.1) 124801 (Tab key in save document acts as Enter) 110689 (Unable to launch any OOo components after initial ws install with LANG=et_EE.UTF-8) 116176 (Czech localization is not included) 118508 (Open File Dialog broken) 132863 (Redlining crash in Writer) 123865 (Default font for zh_* locale) * Thu Sep 09 2004 Ray Strode 1.1.2-4 - Run update-desktop-database to register MIME type associations. * Sat Jul 31 2004 Dan Williams 1.1.2-3 - Make openoffice.org no longer depend on -i18n * Fri Jul 30 2004 Dan Williams 1.1.2-2 - Finer grained split of additional language files - Break KDE widget library out into new openoffice.org-kde package - Fix setup script launch errors (RH #128709) - Make PPC use -Os now too * Tue Jul 27 2004 Dan Williams 1.1.2-1 - Force use of gcc 3.3, since gcc 3.4 doesn't work yet - Update to 1.1.2 - Compile with -Os - Fix dictionary permissions (RH #127474) - Apply iiimf-enable patch, disable workaround from 1.1.1-6 (RH #124538) - Tag language-specific files with %lang - Add Norwegian dictionaries (RH #122028) - Temporarily alias Australian hyph->en_GB, thes->en_US (RH #121675) * Tue Jun 15 2004 Elliot Lee - rebuilt * Wed Jun 09 2004 Dan Williams 1.1.1-6 - Enable some ooo-build patch collections for Red Hat builds: VBABits, OOoCups (replacing GnomeCups), NativeWidgets - Fix printer properties dialog (RH #120824) - Work around Input Methods when not typing in complex languages, fixes typing special national characters (RH #124538) * Thu May 20 2004 Dan Williams 1.1.1-5 - Update to ooo-build 1.1.56-pre (CVS snapshot) - Fix more malformed TrueType fonts (RH #123441, OOo #24286) - Fix some UI font issues caused by missing patch in 1.1.1 (120494, 123685, 122361) --------------------------------------------------------------------- This update can be downloaded from: http://download.fedora.redhat.com/pub/fedora/linux/core/updates/2/ 3fa6c73da834eaa4ca5029390325f818 SRPMS/openoffice.org-1.1.2-10.fc2.src.rpm afe0e9620716c2b092f8926a3cc0db6c x86_64/openoffice.org-1.1.2-10.fc2.i386.rpm 1e734b6bf72c795632e5fc99aca2537d x86_64/openoffice.org- libs-1.1.2-10.fc2.i386.rpm 8a61d381c7d2f12fed837dd5a5363b65 x86_64/openoffice.org- i18n-1.1.2-10.fc2.i386.rpm afe0e9620716c2b092f8926a3cc0db6c i386/openoffice.org-1.1.2-10.fc2.i386.rpm 1e734b6bf72c795632e5fc99aca2537d i386/openoffice.org- libs-1.1.2-10.fc2.i386.rpm 8a61d381c7d2f12fed837dd5a5363b65 i386/openoffice.org- i18n-1.1.2-10.fc2.i386.rpm baf087d7d2a6336f7f6f4722f32ce4fe i386/openoffice.org- kde-1.1.2-10.fc2.i386.rpm 2a108df7491a8d11453f23c6c8dfd1ee i386/debug/openoffice.org- debuginfo-1.1.2-10.fc2.i386.rpm This update can also be installed with the Update Agent; you can launch the Update Agent with the 'up2date' command. --------------------------------------------------------------------- From twaugh at redhat.com Tue Oct 26 15:13:06 2004 From: twaugh at redhat.com (Tim Waugh) Date: Tue, 26 Oct 2004 16:13:06 +0100 Subject: [SECURITY] Fedora Core 2 Update: cups-1.1.20-11.6 Message-ID: <20041026151306.GE8596@redhat.com> --------------------------------------------------------------------- Fedora Update Notification FEDORA-2004-337 2004-10-26 --------------------------------------------------------------------- Product : Fedora Core 2 Name : cups Version : 1.1.20 Release : 11.6 Summary : Common Unix Printing System Description : The Common UNIX Printing System provides a portable printing layer for UNIX? operating systems. It has been developed by Easy Software Products to promote a standard printing solution for all UNIX vendors and users. CUPS provides the System V and Berkeley command-line interfaces. --------------------------------------------------------------------- Update Information: A problem with PDF handling was discovered by Chris Evans, and has been fixed. The Common Vulnerabilities and Exposures project (www.mitre.org) has assigned the name CAN-2004-0888 to this issue. --------------------------------------------------------------------- * Tue Oct 19 2004 Tim Waugh 1:1.1.20-11.6 - One more overflow check, from Marcus Meissner (bug #135378). * Tue Oct 12 2004 Tim Waugh 1:1.1.20-11.5 - Apply patch to fix CAN-2004-0888 (bug #135378). --------------------------------------------------------------------- This update can be downloaded from: http://download.fedora.redhat.com/pub/fedora/linux/core/updates/2/ 362cd8cd8ce58e29139541352f7a30b1 SRPMS/cups-1.1.20-11.6.src.rpm 0922b45be7a61d968f0213013633aeaa x86_64/cups-1.1.20-11.6.x86_64.rpm f49aa4b825da5c1305edbcd37367c101 x86_64/cups-devel-1.1.20-11.6.x86_64.rpm 38fd39c7d10077badd2378fcbb4d45cb x86_64/cups-libs-1.1.20-11.6.x86_64.rpm 4ca29994dbb654e3714125e6db4e0194 x86_64/debug/cups-debuginfo-1.1.20-11.6.x86_64.rpm 019ce3783f4d466cbb4a85b102e11e08 x86_64/cups-libs-1.1.20-11.6.i386.rpm 8ddcc764c07ed351b7b6b7c90af7f0c7 i386/cups-1.1.20-11.6.i386.rpm f61f51721dd2c997c60d798f2b6d2677 i386/cups-devel-1.1.20-11.6.i386.rpm 019ce3783f4d466cbb4a85b102e11e08 i386/cups-libs-1.1.20-11.6.i386.rpm 6b9a1a4e34d13b3a31c809b28d8356da i386/debug/cups-debuginfo-1.1.20-11.6.i386.rpm This update can also be installed with the Update Agent; you can launch the Update Agent with the 'up2date' command. --------------------------------------------------------------------- -------------- next part -------------- A non-text attachment was scrubbed... Name: not available Type: application/pgp-signature Size: 189 bytes Desc: not available URL: From mclasen at redhat.com Tue Oct 26 19:59:58 2004 From: mclasen at redhat.com (Matthias Clasen) Date: Tue, 26 Oct 2004 15:59:58 -0400 Subject: md5sums of the latest glib2 and gtk2 updates Message-ID: <1098820797.4261.22.camel@golem.boston.redhat.com> The md5sums of the glib2-2.4.7-1.1 and gtk2-2.4.13-2.1 updates don't match the ones in the announcements I sent out. I have verified that the packages on http://download.fedora.redhat.com/pub/fedora/linux/core/updates/2/i386/ are correct, and here are the correct md5sums. Sorry for the confusion, Matthias 55558c084c77e51cf6e0b59e5d3af520 glib2-2.4.7-1.1.i386.rpm 7b317acd641c9949efebdc1efa5faee4 glib2-debuginfo-2.4.7-1.1.i386.rpm 9bb54171158c7094b5048e1dc97d3579 glib2-devel-2.4.7-1.1.i386.rpm a60f1721578374e4e532b4bb10c110ac glib2-2.4.7-1.1.src.rpm 081914d2a266182af22325c626fdf47d glib2-2.4.7-1.1.x86_64.rpm 2d72664e07bab4370c76c46296677c65 glib2-debuginfo-2.4.7-1.1.x86_64.rpm 3f7a71d9af065612d16f644ff70131b5 glib2-devel-2.4.7-1.1.x86_64.rpm 0dd2a5a13414eba573a3c8dae20be156 gtk2-2.4.13-2.1.i386.rpm 3ad8d087e36b337d6370ef99686140b5 gtk2-debuginfo-2.4.13-2.1.i386.rpm 9749b8969be12503c14637854fa76a9c gtk2-devel-2.4.13-2.1.i386.rpm 0bf989bf521318dda13c47b612e88094 gtk2-2.4.13-2.1.src.rpm 718369eecd1dc8eb2cd5523ffa793267 gtk2-2.4.13-2.1.x86_64.rpm 784870296377146238b433a315f2d800 gtk2-debuginfo-2.4.13-2.1.x86_64.rpm 73ef6ea77533f32e75fc831d408567e7 gtk2-devel-2.4.13-2.1.x86_64.rpm From veillard at redhat.com Thu Oct 28 13:24:36 2004 From: veillard at redhat.com (Daniel Veillard) Date: Thu, 28 Oct 2004 09:24:36 -0400 Subject: Fedora Core 2 Update: libxml2-2.6.15-2 Message-ID: <20041028132435.GJ26196@redhat.com> --------------------------------------------------------------------- Fedora Update Notification FEDORA-2004-353 2004-10-28 --------------------------------------------------------------------- Product : Fedora Core 2 Name : libxml2 Version : 2.6.15 Release : 2 Summary : Library providing XML and HTML support Description : This library allows to manipulate XML files. It includes support to read, modify and write XML and HTML files. There is DTDs support this includes parsing and validation even with complex DtDs, either at parse time or later once the document has been modified. The output can be a simple SAX stream or and in-memory DOM like representations. In this case one can use the built-in XPath and XPointer implementation to select subnodes or ranges. A flexible Input/Output mechanism is available, with existing HTTP and FTP modules and combined to an URI library. --------------------------------------------------------------------- Update Information: Updated libxml2 packages fixes security vulnerabilities libxml2 is a library for manipulating XML files. Multiple buffer overflow bugs have been found libxml2 versions prior to 2.6.14. If an attacker can trick a user into passing a specially crafted FTP URL or FTP proxy URL to libxml2, it could be possible to execute arbitrary code. Additionally, if an attacker can return a specially crafted DNS request to libxml, it is possible to execute arbitrary code. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CAN-2004-0989 to this issue. All users are advised to upgrade to these updated packages, which contain fixes and are not vulnerable to this issue. --------------------------------------------------------------------- * Wed Oct 27 2004 Daniel Veillard 2.6.15-2 - upstream release 2.6.15 see http://xmlsoft.org/news.html - incorporate a security fix for #137266 security problem http://www.securityfocus.com/archive/1/379383/2004-10-24/2004-10-30/0 --------------------------------------------------------------------- This update can be downloaded from: http://download.fedora.redhat.com/pub/fedora/linux/core/updates/2/ 18b21e3d001164d71a53d121c0fd806f SRPMS/libxml2-2.6.15-2.src.rpm 1096a0ad82686ac816a9d5c2318cc3d0 x86_64/libxml2-2.6.15-2.x86_64.rpm 0243c634a62b2b7fb39f79fdd0c688b0 x86_64/libxml2-devel-2.6.15-2.x86_64.rpm ff7dfc244ccd5c298ddf41e6d0efbc48 x86_64/libxml2-python-2.6.15-2.x86_64.rpm 97a6d139218ab8ab05d98bfdfdd5c45b x86_64/debug/libxml2-debuginfo-2.6.15-2.x86_64.rpm f1181cf6048cca3bcc44fec39a3706d0 i386/libxml2-2.6.15-2.i386.rpm e45b080e51a9960089256fb48898689e i386/libxml2-devel-2.6.15-2.i386.rpm f9997ba6ed497fa060a521ad07b6b0ad i386/libxml2-python-2.6.15-2.i386.rpm d0480ee25c1cc4d7f30da0899f2668d7 i386/debug/libxml2-debuginfo-2.6.15-2.i386.rpm This update can also be installed with the Update Agent; you can launch the Update Agent with the 'up2date' command. --------------------------------------------------------------------- -- Daniel Veillard | Red Hat Desktop team http://redhat.com/ veillard at redhat.com | libxml GNOME XML XSLT toolkit http://xmlsoft.org/ http://veillard.com/ | Rpmfind RPM search engine http://rpmfind.net/ From twoerner at redhat.com Thu Oct 28 15:11:00 2004 From: twoerner at redhat.com (twoerner at redhat.com) Date: Thu, 28 Oct 2004 17:11:00 +0200 Subject: Fedora Core 2 Update: freeradius-1.0.1-0.FC2 Message-ID: <200410281511.i9SFB0KX002892@localhost.localdomain> --------------------------------------------------------------------- Fedora Update Notification FEDORA-2004-355 2004-10-28 --------------------------------------------------------------------- Product : Fedora Core 2 Name : freeradius Version : 1.0.1 Release : 0.FC2 Summary : High-performance and highly configurable free RADIUS server. Description : The FreeRADIUS Server Project is a high performance and highly configurable GPL'd free RADIUS server. The server is similar in some respects to Livingston's 2.0 server. While FreeRADIUS started as a variant of the Cistron RADIUS server, they don't share a lot in common any more. It now has many more features than Cistron or Livingston, and is much more configurable. FreeRADIUS is an Internet authentication daemon, which implements the RADIUS protocol, as defined in RFC 2865 (and others). It allows Network Access Servers (NAS boxes) to perform authentication for dial-up users. There are also RADIUS clients available for Web servers, firewalls, Unix logins, and more. Using RADIUS allows authentication and authorization for a network to be centralized, and minimizes the amount of re-configuration which has to be done when adding or deleting new users. --------------------------------------------------------------------- * Fri Oct 29 2004 Thomas Woerner 1.0.1-0.FC2 - new version 1.0.1: fixes (#137424) CAN-2004-0938 Freeradius < 1.0.1 DoS and remote crash (CAN-2004-0960, CAN-2004-0961) - applied radrelay CVS patch from Kevin Bonner * Thu Aug 26 2004 Warren Togami 1.0.0-3 - BuildRequires pam-devel and libtool - Fix errant text in description - Other minor cleanups * Thu Aug 26 2004 Thomas Woerner 1.0.0-2.1 - renamed /etc/pam.d/radius to /etc/pam.d/radiusd to match default configuration (#130613) * Thu Aug 26 2004 Thomas Woerner 1.0.0-2 - fixed BuildRequires for openssl-devel (#130606) * Tue Aug 17 2004 Thomas Woerner 1.0.0-1 - 1.0.0 final * Tue Jul 06 2004 Thomas Woerner 1.0.0-0.pre3.2 - added buildrequires for zlib-devel (#127162) - fixed libdir patch to prefer own libeap instead of installed one (#127168) - fixed samba account maps in LDAP for samba v3 (#127173) * Fri Jul 02 2004 Thomas Woerner 1.0.0-0.pre3.1 - third "pre" release of version 1.0.0 - rlm_ldap is using SASLv2 (#126507) * Wed Jun 16 2004 Elliot Lee - rebuilt * Fri Jun 04 2004 Thomas Woerner 0.9.3-4.1 - fixed BuildRequires for gdbm-devel --------------------------------------------------------------------- This update can be downloaded from: http://download.fedora.redhat.com/pub/fedora/linux/core/updates/2/ 1831abf0b08d0f04718a6d3acd9426c2 SRPMS/freeradius-1.0.1-0.FC2.src.rpm e78e84ed4251d4d257962882e8ab42f0 x86_64/freeradius-1.0.1-0.FC2.x86_64.rpm 9b97f55e3f63a008eac0c239334d23b5 x86_64/freeradius-mysql-1.0.1-0.FC2.x86_64.rpm 0d8455b10aab60f4cdb1d41178ae5bb6 x86_64/freeradius-postgresql-1.0.1-0.FC2.x86_64.rpm 775191ab3193fcc16ea119b2e7c2a21a x86_64/freeradius-unixODBC-1.0.1-0.FC2.x86_64.rpm 1926133e3295f8e47a4886bf94471d60 x86_64/debug/freeradius-debuginfo-1.0.1-0.FC2.x86_64.rpm e6f5af4b7fa8b80e55fdde05963a194c i386/freeradius-1.0.1-0.FC2.i386.rpm 3f9b9c8fb04b3e23706860d289a255da i386/freeradius-mysql-1.0.1-0.FC2.i386.rpm 06a57e1b4e10c08fddafbfef0e96a7ef i386/freeradius-postgresql-1.0.1-0.FC2.i386.rpm 441fa82658b697b3bd01c65a67fd1574 i386/freeradius-unixODBC-1.0.1-0.FC2.i386.rpm 5a3f4e8b43f498a9cb35de6f983521e8 i386/debug/freeradius-debuginfo-1.0.1-0.FC2.i386.rpm This update can also be installed with the Update Agent; you can launch the Update Agent with the 'up2date' command. --------------------------------------------------------------------- From than at redhat.com Thu Oct 28 16:28:50 2004 From: than at redhat.com (Than Ngo) Date: Thu, 28 Oct 2004 18:28:50 +0200 Subject: [SECURITY] Fedora Core 2 Update: kdegraphics-3.2.2-1.1 Message-ID: <41811E42.6020005@redhat.com> --------------------------------------------------------------------- Fedora Update Notification FEDORA-2004-357 2004-10-28 --------------------------------------------------------------------- Product : Fedora Core 2 Name : kdegraphics Version : 3.2.2 Release : 1.1 Summary : K Desktop Environment - Graphics Applications Description : Graphics applications for the K Desktop Environment. Includes: kdvi (displays TeX .dvi files) kfax (displays faxfiles) kghostview (displays postscript files) kcoloredit (palette editor and color chooser) kamera (digital camera support) kiconedit (icon editor) kpaint (a simple drawing program) ksnapshot (screen capture utility) kview (image viewer for GIF, JPEG, TIFF, etc.) kuickshow (quick picture viewer) kooka (scanner application) kruler (screen ruler and color measurement tool) --------------------------------------------------------------------- Update Information: A problem with PDF handling was discovered by Chris Evans, and has been fixed. The Common Vulnerabilities and Exposures project (www.mitre.org) has assigned the name CAN-2004-0888 to this issue. a number of buffer overflow bugs that affect libtiff have been found. The kfax application contains a copy of the libtiff code used for parsing TIFF files and is therefore affected by these bugs. An attacker who has the ability to trick a user into opening a malicious TIFF file could cause kfax to crash or possibly execute arbitrary code. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CAN-2004-0803 to this issue. --------------------------------------------------------------------- * Thu Oct 28 2004 Than Ngo 7:3.2.2-1.1 - add fix to link against system libtiff CAN-2004-0886 - apply patch to fix CAN-2004-0888 --------------------------------------------------------------------- This update can be downloaded from: http://download.fedora.redhat.com/pub/fedora/linux/core/updates/2/ a104c3550141c3f0e7f5245e321f717d SRPMS/kdegraphics-3.2.2-1.1.src.rpm b9c227361354cebbcae97df082e60f3c x86_64/kdegraphics-3.2.2-1.1.x86_64.rpm bd4a9746410bae4f7c71bc4d3292777c x86_64/kdegraphics-devel-3.2.2-1.1.x86_64.rpm 247556c77e621e4fd67760f3ab818a13 x86_64/debug/kdegraphics-debuginfo-3.2.2-1.1.x86_64.rpm 1cc02d811b6a96d4382fe15e2b65a4cc i386/kdegraphics-3.2.2-1.1.i386.rpm 6f72f96c16132cac97501150bf6ddad7 i386/kdegraphics-devel-3.2.2-1.1.i386.rpm 1d7e317cb11d3ece70178be6f7f97215 i386/debug/kdegraphics-debuginfo-3.2.2-1.1.i386.rpm This update can also be installed with the Update Agent; you can launch the Update Agent with the 'up2date' command. --------------------------------------------------------------------- From dcbw at redhat.com Thu Oct 28 16:49:35 2004 From: dcbw at redhat.com (Dan Williams) Date: Thu, 28 Oct 2004 12:49:35 -0400 Subject: [SECURITY] Fedora Core 2 Update: gpdf-2.8.0-4.1.fc2 Message-ID: <1098982175.28086.10.camel@dcbw.boston.redhat.com> --------------------------------------------------------------------- Fedora Update Notification FEDORA-2004-358 2004-10-28 --------------------------------------------------------------------- Product : Fedora Core 2 Name : gpdf Version : 2.8.0 Release : 4.1.fc2 Summary : viewer for Portable Document Format (PDF) files for GNOME Description : This is GPdf, a viewer for Portable Document Format (PDF) files for GNOME. GPdf is based on the Xpdf program and uses additional GNOME libraries for better desktop integration. GPdf includes the gpdf application, a Bonobo control for PDF display which can be embedded in Nautilus, and a Nautilus property page for PDF files. --------------------------------------------------------------------- Update Information: Update to gpdf 2.8.0, which fixes the CAN-2004-0888 security issue. Also fixes: #rh127803# crash with mailto: links #rh132469# crash with remote documents using gnome-vfs --------------------------------------------------------------------- * Thu Oct 28 2004 Dan Williams 2.8.0-4.1.fc2 - Fix CAN-2004-0888 (xpdf integer overflows) * Fri Oct 15 2004 Marco Pesenti Gritti 2.8.0-4 - rebuilt * Tue Oct 12 2004 Marco Pesenti Gritti 2.8.0-2 - rebuilt * Wed Sep 22 2004 Dan Williams 2.8.0-1 - Update to 2.8.0 - Fix Gnome #153153/Red Hat #132469, patch works around a gnome-vfs issue by issuing an error, rather than crashing * Tue Aug 31 2004 Alex Larsson 2.7.91-1 - update to 2.7.92 - removed gpdf-2.7.90-uri-fix.patch, as that was in upstream * Wed Aug 18 2004 Dan Williams 2.7.90-2 - Fix crashes on mailto: links (RH #127803) * Wed Aug 18 2004 Dan Williams 2.7.90-1 - Update to 2.7.90 * Sat Jul 31 2004 Dan Williams 2.7.2-1 - Update to 2.7.2 * Tue Jun 15 2004 Elliot Lee - rebuilt --------------------------------------------------------------------- This update can be downloaded from: http://download.fedora.redhat.com/pub/fedora/linux/core/updates/2/ 9d8b3bb6071b523a1f34acf6bff446e7 SRPMS/gpdf-2.8.0-4.1.fc2.src.rpm 927f7fafbaef8f067600754b1217a29b x86_64/gpdf-2.8.0-4.1.fc2.x86_64.rpm d4619ab7659a4729f4b5a30c63a93a41 x86_64/debug/gpdf- debuginfo-2.8.0-4.1.fc2.x86_64.rpm a1da123edae3331e75b84dc4030b9839 i386/gpdf-2.8.0-4.1.fc2.i386.rpm c23dcf23fc04c2e762ddd5485525d66f i386/debug/gpdf- debuginfo-2.8.0-4.1.fc2.i386.rpm This update can also be installed with the Update Agent; you can launch the Update Agent with the 'up2date' command. --------------------------------------------------------------------- From veillard at redhat.com Fri Oct 29 17:34:28 2004 From: veillard at redhat.com (Daniel Veillard) Date: Fri, 29 Oct 2004 13:34:28 -0400 Subject: Fedora Core 2 Update: libxslt-1.1.12-2 Message-ID: <20041029173428.GA27062@redhat.com> --------------------------------------------------------------------- Fedora Update Notification FEDORA-2004-359 2004-10-29 --------------------------------------------------------------------- Product : Fedora Core 2 Name : libxslt Version : 1.1.12 Release : 2 Summary : Library providing the Gnome XSLT engine Description : This C library allows to transform XML files into other XML files (or HTML, text, ...) using the standard XSLT stylesheet transformation mechanism. To use it you need to have a version of libxml2 >= 2.6.15 installed. The xsltproc command is a command line interface to the XSLT engine --------------------------------------------------------------------- Update Information: This update fixes bug #137499 where some DocBook transformations broke following the latest security release of libxml2-2.6.15-2 . It brings back libxslt in sync with the installed version of libxml2. --------------------------------------------------------------------- * Fri Oct 29 2004 Daniel Veillard 1.1.12-2 - upstream release 1.1.12 see http://xmlsoft.org/XSLT/news.html - Pushed to Fedora Core 2 to fix a divergence problem on previous libxml2 update c.f. 137266 and 137499 --------------------------------------------------------------------- This update can be downloaded from: http://download.fedora.redhat.com/pub/fedora/linux/core/updates/2/ a7f77e398dacc9abeba14b1f0dfe8c9d SRPMS/libxslt-1.1.12-2.src.rpm 0a92c4828fa8ac5a6b3c2742b34df179 x86_64/libxslt-1.1.12-2.x86_64.rpm 487dd512745c58d171b3de1b0317f84c x86_64/libxslt-devel-1.1.12-2.x86_64.rpm 2599045afe9b6417fe2f4c30b3d77c33 x86_64/libxslt-python-1.1.12-2.x86_64.rpm 11ce984448d18e14a99e4c18ab458225 x86_64/debug/libxslt-debuginfo-1.1.12-2.x86_64.rpm a909ab040b2a3787eaa119af60b93b71 i386/libxslt-1.1.12-2.i386.rpm fdce2d30543f80ad3a42b9c0d60f31fc i386/libxslt-devel-1.1.12-2.i386.rpm c6bd070e9a99ec9b5561f323a73f9223 i386/libxslt-python-1.1.12-2.i386.rpm 7ee869accf7afe13f3bd44cb238553b5 i386/debug/libxslt-debuginfo-1.1.12-2.i386.rpm This update can also be installed with the Update Agent; you can launch the Update Agent with the 'up2date' command. --------------------------------------------------------------------- -- Daniel Veillard | Red Hat Desktop team http://redhat.com/ veillard at redhat.com | libxml GNOME XML XSLT toolkit http://xmlsoft.org/ http://veillard.com/ | Rpmfind RPM search engine http://rpmfind.net/