Fedora 10 updates-testing report
updates at fedoraproject.org
updates at fedoraproject.org
Thu Sep 3 00:35:24 UTC 2009
The following builds have been pushed to Fedora 10 updates-testing
dzen2-0.8.5-5.fc10
ikiwiki-2.72-2.fc10
papyrus-0.12.1-1.fc10
powwow-1.2.16-1.fc10
proftpd-1.3.2a-4.fc10
wordpress-2.8.4-1.fc10
yum-utils-1.1.23-1.fc10
Details about builds:
================================================================================
dzen2-0.8.5-5.fc10 (FEDORA-2009-9241)
A general purpose messaging and notification program
--------------------------------------------------------------------------------
Update Information:
Dzen is a general purpose messaging, notification and menuing program for X11.
It was desigend to be scriptable in any language and integrate well with window
managers like dwm, wmii and xmonad though it will work with any windowmanger.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #493013 - Review Request: dzen2 - A general purpose messaging and notification program
https://bugzilla.redhat.com/show_bug.cgi?id=493013
--------------------------------------------------------------------------------
================================================================================
ikiwiki-2.72-2.fc10 (FEDORA-2009-9254)
A wiki compiler
--------------------------------------------------------------------------------
Update Information:
Fix CVE-2009-2944, see bz 520543.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Sep 2 2009 Thomas Moschny <thomas.moschny at gmx.de> - 2.72-2
- Add patch for teximg plugin: Make TeX handle preventing unsafe
things; remove insufficient blacklist (fixes CVE-2009-2944, see
bz 520543).
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #520543 - CVE-2009-2944 ikiwiki: arbitrary file read via crafted TeX commands
https://bugzilla.redhat.com/show_bug.cgi?id=520543
--------------------------------------------------------------------------------
================================================================================
papyrus-0.12.1-1.fc10 (FEDORA-2009-9236)
Cairo based C++ scenegraph library
--------------------------------------------------------------------------------
Update Information:
This release adds deltille, hextille and quadrille drawing shapes.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Sep 1 2009 Rick L Vinyard Jr <rvinyard at cs.nmsu.edu> - 0.12.1-1
- New release
--------------------------------------------------------------------------------
================================================================================
powwow-1.2.16-1.fc10 (FEDORA-2009-9245)
A console MUD client
--------------------------------------------------------------------------------
Update Information:
A new upstream bugfix release. - Fixed #prompt matching if the prompt is
longer than terminal width. - Added a plugin example to -devel docs.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Sep 1 2009 Kalev Lember <kalev at smartlink.ee> - 1.2.16-1
- Update to powwow 1.2.16.
- Dropped upstreamed powwow-long-prompt.patch.
- Added a plugin example to -devel docs.
* Fri Aug 7 2009 Kalev Lember <kalev at smartlink.ee> - 1.2.15-3
- Update powwow-long-prompt.patch to the version sent upstream.
* Fri Aug 7 2009 Kalev Lember <kalev at smartlink.ee> - 1.2.15-2
- Apply patch to match prompts longer than terminal width (#509288).
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #509288 - Prompts longer than the width of the terminal are not properly matched by #prompt.
https://bugzilla.redhat.com/show_bug.cgi?id=509288
--------------------------------------------------------------------------------
================================================================================
proftpd-1.3.2a-4.fc10 (FEDORA-2009-9249)
Flexible, stable and highly-configurable FTP server
--------------------------------------------------------------------------------
Update Information:
This update has a large number of changes from previous Fedora packages; the
highlights are as follows: - Update to upstream release 1.3.2a - Fix SQL
injection vulnerability at login (#485125, CVE-2009-0542) - Fix SELinux
compatibility (#498375) - Fix audit logging (#506735) - Fix default
configuration (#509251) - Many new loadable modules including mod_ctrls_admin
and mod_wrap2 - National Language Support (RFC 2640) - Enable/disable common
features in /etc/sysconfig/proftpd
--------------------------------------------------------------------------------
ChangeLog:
* Wed Sep 2 2009 Paul Howarth <paul at city-fan.org> 1.3.2a-4
- New DSO module: mod_exec (#520214)
* Fri Aug 21 2009 Tomas Mraz <tmraz at redhat.com> - 1.3.2a-3.1
- Rebuilt with new openssl
* Wed Aug 19 2009 Paul Howarth <paul at city-fan.org> 1.3.2a-3
- Use mod_vroot to work around PAM/chroot issues (#477120, #506735)
* Fri Jul 31 2009 Paul Howarth <paul at city-fan.org> 1.3.2a-2
- Add upstream patch to fix parallel build (http://bugs.proftpd.org/3189)
* Mon Jul 27 2009 Paul Howarth <paul at city-fan.org> 1.3.2a-1
- Update to 1.3.2a
- Add patch to reinstate support for -DPARAMETER (http://bugs.proftpd.org/3221)
- Retain CAP_AUDIT_WRITE, needed for pam_loginuid (#506735, fixed upstream)
- Remove ScoreboardFile directive from configuration file - default value
works better with SELinux (#498375)
- Ship mod_quotatab_sql.so in the main package rather than the SQL backend
subpackages
- New DSO modules:
- mod_ctrls_admin
- mod_facl
- mod_load
- mod_quotatab_radius
- mod_radius
- mod_ratio
- mod_rewrite
- mod_site_misc
- mod_wrap2
- mod_wrap2_file
- mod_wrap2_sql
- Enable mod_lang/nls support for RFC 2640 (and buildreq gettext)
- Add /etc/sysconfig/proftpd to set PROFTPD_OPTIONS and update initscript to
use this value so we can use a define to enable (e.g.) anonymous FTP support
rather than having a huge commented-out section in the config file
- Rewrite config file to remove most settings that don't change upstream
defaults, and add brief descriptions for all available loadable modules
- Move Umask and IdentLookups settings from server config to <Global> context
so that they apply to all servers, including virtual hosts (#509251)
- Ensure mod_ifsession is always the last one specified, which makes sure that
mod_ifsession's changes are seen properly by other modules
- Drop pam version requirement - all targets have sufficiently recent version
- Drop redundant explicit dependency on pam
- Subpackages don't need to own %{_libexecdir}/proftpd directory
- Drop redundant krb5-devel buildreq
- Make SRPM back-compatible with EPEL-4 (TLS cert dirs, PAM config)
- Don't include README files for non-Linux platforms
- Recode ChangeLog as UTF-8
- Don't ship the prxs tool for building custom DSO's since we don't ship the
headers either
- Prevent stripping of binaries in a slightly more robust way
- Fix release tag to be ready for future beta/rc versions
- Define RPM macros in global scope
- BuildRequire libcap-devel so that we use the system library rather than the
bundled one, and eliminate log messages like:
kernel: warning: `proftpd' uses 32-bit capabilities (legacy support in use)
* Sun Jul 26 2009 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 1.3.2-3.1
- Rebuilt for https://fedoraproject.org/wiki/Fedora_12_Mass_Rebuild
* Thu Apr 9 2009 Matthias Saou <http://freshrpms.net/> 1.3.2-2.1
- Update the tcp_wrappers BR to be just /usr/include/tcpd.h instead.
* Thu Apr 9 2009 Matthias Saou <http://freshrpms.net/> 1.3.2-2
- Fix tcp_wrappers-devel BR conditional.
* Mon Apr 6 2009 Matthias Saou <http://freshrpms.net/> 1.3.2-1
- Update to 1.3.2.
- Include mod_wrap (#479813).
- Tried to include mod_wrap2* modules but build failed.
* Thu Feb 26 2009 Fedora Release Engineering <rel-eng at lists.fedoraproject.org>
- Rebuilt for https://fedoraproject.org/wiki/Fedora_11_Mass_Rebuild
* Sat Jan 24 2009 Caolán McNamara 1.3.2-0.3.rc3
- Rebuild for dependencies
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #485125 - CVE-2009-0542 proftpd: SQL injection during login
https://bugzilla.redhat.com/show_bug.cgi?id=485125
--------------------------------------------------------------------------------
================================================================================
wordpress-2.8.4-1.fc10 (FEDORA-2009-9251)
WordPress blogging software
--------------------------------------------------------------------------------
Update Information:
The security problems of 2.8.3 were already fixed with Fedora's 2.8.3-2 release.
This is the non-security update to 2.8.4.
--------------------------------------------------------------------------------
ChangeLog:
* Sun Aug 30 2009 Adrian Reber <adrian at lisas.de> - 2.8.4-1
- updated to 2.8.4 (security fixes were already available with 2.8.3-2)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #519327 - Upgrade wordpress to 2.8.4 due to security issue in earlier 2.8.x releases
https://bugzilla.redhat.com/show_bug.cgi?id=519327
--------------------------------------------------------------------------------
================================================================================
yum-utils-1.1.23-1.fc10 (FEDORA-2009-9248)
Utilities based around the yum package manager
--------------------------------------------------------------------------------
Update Information:
lots of bugfixes :)
--------------------------------------------------------------------------------
ChangeLog:
* Wed Sep 2 2009 Tim Lauridsen <timlau at fedoraproject.org>
- mark as 1.1.23
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #512563 - repoquery ignores --quiet when --repofrompath is used
https://bugzilla.redhat.com/show_bug.cgi?id=512563
[ 2 ] Bug #509479 - RFE: [PATCH] yum-plugin-fastestmirror - add option for "preferred" mirror
https://bugzilla.redhat.com/show_bug.cgi?id=509479
[ 3 ] Bug #503587 - reposync not downloading repodata (just downloads RPMs) for trivial repo
https://bugzilla.redhat.com/show_bug.cgi?id=503587
--------------------------------------------------------------------------------
More information about the fedora-test-list
mailing list