---------------------------------------------------------------------
Fedora Update Notification
FEDORA-2004-412
2004-11-11
---------------------------------------------------------------------
Product : Fedora Core 3
Name : gd
Version : 2.0.28
Release : 1.30.1
Summary : A graphics library for quick creation of PNG or JPEG images.
Description :
The gd graphics library allows your code to quickly draw images
complete with lines, arcs, text, multiple colors, cut and paste from
other images, and flood fills, and to write out the result as a PNG or
JPEG file. This is particularly useful in Web applications, where PNG
and JPEG are two of the formats accepted for inline images by most
browsers. Note that gd is not a paint program.
---------------------------------------------------------------------
Update Information:
Several buffer overflows were reported in various memory allocation calls.
An attacker could create a carefully crafted image file in such a
way that it could cause ImageMagick to execute arbitrary code when
processing the image. The Common Vulnerabilities and Exposures project
(cve.mitre.org) has assigned the name CAN-2004-0990 to these issues.
Whilst researching the fixes to these overflows, additional buffer
overflows were discovered in calls to gdMalloc. The Common Vulnerabilities
and Exposures project (cve.mitre.org) has assigned the name CAN-2004-0941
to these issues.
Users of gd should upgrade to these updated packages, which contain a
backported security patch, and are not vulnerable to these issues.
---------------------------------------------------------------------
* Wed Nov 03 2004 Phil Knirsch <pknirsch(a)redhat.com> 2.0.28-1.30.1
- Fixed several buffer overflows for gdMalloc() calls
---------------------------------------------------------------------
This update can be downloaded from:
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/3/
1c43a52dbccf6fc0f41a51177f68039c SRPMS/gd-2.0.28-1.30.1.src.rpm
2d5162b7b1ee9cc41f6e449317a35544 x86_64/gd-2.0.28-1.30.1.x86_64.rpm
fdf01ac8589f415447db35126fa9c21d x86_64/gd-progs-2.0.28-1.30.1.x86_64.rpm
bebd31faf06696a1a4118e72fccfdef0 x86_64/gd-devel-2.0.28-1.30.1.x86_64.rpm
2f9e1862d862b7137f303fa63511ba3f
x86_64/debug/gd-debuginfo-2.0.28-1.30.1.x86_64.rpm
43fdf0c898b78cb6524ce7238b134ab0 x86_64/gd-2.0.28-1.30.1.i386.rpm
43fdf0c898b78cb6524ce7238b134ab0 i386/gd-2.0.28-1.30.1.i386.rpm
1775b1c9061551b38bed8a0345e13daa i386/gd-progs-2.0.28-1.30.1.i386.rpm
9e73a389b07da7ceb7f4571852344a0c i386/gd-devel-2.0.28-1.30.1.i386.rpm
70e4cb5dad28af83ee4237569c8a244c
i386/debug/gd-debuginfo-2.0.28-1.30.1.i386.rpm
This update can also be installed with the Update Agent; you can
launch the Update Agent with the 'up2date' command.
---------------------------------------------------------------------
--
Philipp Knirsch | Tel.: +49-711-96437-470
Development | Fax.: +49-711-96437-111
Red Hat GmbH | Email: Phil Knirsch <phil(a)redhat.de>
Hauptstaetterstr. 58 | Web: http://www.redhat.de/
D-70178 Stuttgart
Motd: You're only jealous cos the little penguins are talking to me.
---------------------------------------------------------------------
Fedora Update Notification
FEDORA-2004-411
2004-11-11
---------------------------------------------------------------------
Product : Fedora Core 2
Name : gd
Version : 2.0.21
Release : 5.20.1
Summary : A graphics library for quick creation of PNG or JPEG images.
Description :
The gd graphics library allows your code to quickly draw images
complete with lines, arcs, text, multiple colors, cut and paste from
other images, and flood fills, and to write out the result as a PNG or
JPEG file. This is particularly useful in Web applications, where PNG
and JPEG are two of the formats accepted for inline images by most
browsers. Note that gd is not a paint program.
---------------------------------------------------------------------
Update Information:
Several buffer overflows were reported in various memory allocation calls.
An attacker could create a carefully crafted image file in such a
way that it could cause ImageMagick to execute arbitrary code when
processing the image. The Common Vulnerabilities and Exposures project
(cve.mitre.org) has assigned the name CAN-2004-0990 to these issues.
Whilst researching the fixes to these overflows, additional buffer
overflows were discovered in calls to gdMalloc. The Common Vulnerabilities
and Exposures project (cve.mitre.org) has assigned the name CAN-2004-0941
to these issues.
Users of gd should upgrade to these updated packages, which contain a
backported security patch, and are not vulnerable to these issues.
---------------------------------------------------------------------
* Thu Nov 04 2004 Phil Knirsch <pknirsch(a)redhat.com> 2.0.21-5.20.1
- Backport of fix for several buffer overflows in gdMalloc() calls
---------------------------------------------------------------------
This update can be downloaded from:
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/2/
860ef179fc02b24faeb9c7ad6d3dd2c5 SRPMS/gd-2.0.21-5.20.1.src.rpm
cc924e3a5eb622f8729a8940472bc19f x86_64/gd-2.0.21-5.20.1.x86_64.rpm
cbfe3743fb6ed1d11e562af6617dd6cf x86_64/gd-progs-2.0.21-5.20.1.x86_64.rpm
899927fad1d49a55bedd96f12d308a81 x86_64/gd-devel-2.0.21-5.20.1.x86_64.rpm
4f034123d7a07054a2284fd1aef02e2e
x86_64/debug/gd-debuginfo-2.0.21-5.20.1.x86_64.rpm
32203e8cff61a2a6799426b695f35650 i386/gd-2.0.21-5.20.1.i386.rpm
2812f648f8f6570b51b326fb400e985f i386/gd-progs-2.0.21-5.20.1.i386.rpm
7e48d961b951212bc44372b489da9917 i386/gd-devel-2.0.21-5.20.1.i386.rpm
6dd526e9a1a3cbf79b36671335328224
i386/debug/gd-debuginfo-2.0.21-5.20.1.i386.rpm
This update can also be installed with the Update Agent; you can
launch the Update Agent with the 'up2date' command.
---------------------------------------------------------------------
--
Philipp Knirsch | Tel.: +49-711-96437-470
Development | Fax.: +49-711-96437-111
Red Hat GmbH | Email: Phil Knirsch <phil(a)redhat.de>
Hauptstaetterstr. 58 | Web: http://www.redhat.de/
D-70178 Stuttgart
Motd: You're only jealous cos the little penguins are talking to me.
---------------------------------------------------------------------
Fedora Update Notification
FEDORA-2004-407
2004-11-11
---------------------------------------------------------------------
Product : Fedora Core 3
Name : libxml2
Version : 2.6.16
Release : 3
Summary : Library providing XML and HTML support
Description :
This library allows to manipulate XML files. It includes support
to read, modify and write XML and HTML files. There is DTDs support
this includes parsing and validation even with complex DtDs, either
at parse time or later once the document has been modified. The output
can be a simple SAX stream or and in-memory DOM like representations.
In this case one can use the built-in XPath and XPointer implementation
to select subnodes or ranges. A flexible Input/Output mechanism is
available, with existing HTTP and FTP modules and combined to an
URI library.
---------------------------------------------------------------------
Update Information:
This update to libxml2 fixes a variety of bugs found in 2.6.15,
notably #137968.
---------------------------------------------------------------------
* Wed Nov 10 2004 Daniel Veillard <veillard(a)redhat.com>
- upstream release 2.6.16 see http://xmlsoft.org/news.html
- this update fixes bug #137968 and a number of other random bugs.
---------------------------------------------------------------------
This update can be downloaded from:
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/3/
cd5ed9be86fa2ec9ea9549002693d41b SRPMS/libxml2-2.6.16-3.src.rpm
68b087380721f3970111ad4b93f6197d x86_64/libxml2-2.6.16-3.x86_64.rpm
3763b0b39ca7e26d619c431b5e460849 x86_64/libxml2-devel-2.6.16-3.x86_64.rpm
69a9e409b5df385df9dad73c876c5be2 x86_64/libxml2-python-2.6.16-3.x86_64.rpm
72c96cb43e4c1333faeec125d50c8191 x86_64/debug/libxml2-debuginfo-2.6.16-3.x86_64.rpm
4a152d0b3e672cd02d962ec673d3eb7b x86_64/libxml2-2.6.16-3.i386.rpm
4a152d0b3e672cd02d962ec673d3eb7b i386/libxml2-2.6.16-3.i386.rpm
0699ba7037061e80f91b859298f075be i386/libxml2-devel-2.6.16-3.i386.rpm
b3aeaf0617be68c5b7238c18732e77b6 i386/libxml2-python-2.6.16-3.i386.rpm
11856f7ded5c13a53650236fe2d23218 i386/debug/libxml2-debuginfo-2.6.16-3.i386.rpm
This update can also be installed with the Update Agent; you can
launch the Update Agent with the 'up2date' command.
---------------------------------------------------------------------
Daniel
--
Daniel Veillard | Red Hat Desktop team http://redhat.com/
veillard(a)redhat.com | libxml GNOME XML XSLT toolkit http://xmlsoft.org/http://veillard.com/ | Rpmfind RPM search engine http://rpmfind.net/
---------------------------------------------------------------------
Fedora Update Notification
FEDORA-2004-407
2004-11-11
---------------------------------------------------------------------
Product : Fedora Core 2
Name : libxml2
Version : 2.6.16
Release : 2
Summary : Library providing XML and HTML support
Description :
This library allows to manipulate XML files. It includes support
to read, modify and write XML and HTML files. There is DTDs support
this includes parsing and validation even with complex DtDs, either
at parse time or later once the document has been modified. The output
can be a simple SAX stream or and in-memory DOM like representations.
In this case one can use the built-in XPath and XPointer implementation
to select subnodes or ranges. A flexible Input/Output mechanism is
available, with existing HTTP and FTP modules and combined to an
URI library.
---------------------------------------------------------------------
Update Information:
This update to libxml2 fixes a variety of bugs found in 2.6.15,
notably #137968.
---------------------------------------------------------------------
* Wed Nov 10 2004 Daniel Veillard <veillard(a)redhat.com>
- upstream release 2.6.16 see http://xmlsoft.org/news.html
- this update fixes bug #137968 and a number of other random bugs.
---------------------------------------------------------------------
This update can be downloaded from:
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/2/
9088719945a979288b21c31878ff9287 SRPMS/libxml2-2.6.16-2.src.rpm
8cd9715b1f812c6692bf5b0d59c49fd4 x86_64/libxml2-2.6.16-2.x86_64.rpm
27e65979044ded5b4c305876ec76c418 x86_64/libxml2-devel-2.6.16-2.x86_64.rpm
5b285955a91c0b727798eef5fa9d05ef x86_64/libxml2-python-2.6.16-2.x86_64.rpm
87e047faf96a6704bf2193b1ed239b3f x86_64/debug/libxml2-debuginfo-2.6.16-2.x86_64.rpm
24a210aeaea0a81a2cfebb66d32b774e i386/libxml2-2.6.16-2.i386.rpm
9eb7d7f40f951b59a55b7d9c90d8ca9e i386/libxml2-devel-2.6.16-2.i386.rpm
b910e7ec98f7526c7bcf92c421f3cdf5 i386/libxml2-python-2.6.16-2.i386.rpm
9410fb67c3f5bb35d7e53ef49fc50d58 i386/debug/libxml2-debuginfo-2.6.16-2.i386.rpm
This update can also be installed with the Update Agent; you can
launch the Update Agent with the 'up2date' command.
---------------------------------------------------------------------
Daniel
--
Daniel Veillard | Red Hat Desktop team http://redhat.com/
veillard(a)redhat.com | libxml GNOME XML XSLT toolkit http://xmlsoft.org/http://veillard.com/ | Rpmfind RPM search engine http://rpmfind.net/
---------------------------------------------------------------------
Fedora Update Notification
FEDORA-2004-405
2004-11-11
---------------------------------------------------------------------
Product : Fedora Core 3
Name : system-config-users
Version : 1.2.27
Release : 0.fc3.1
Summary : A graphical interface for administering users and groups
Description :
system-config-users is a graphical utility for administrating
users and groups. It depends on the libuser library.
---------------------------------------------------------------------
* Mon Nov 08 2004 Nils Philippsen <nphilipp(a)redhat.com> - 1.2.27-0.fc3.1
- some sanity testing to avoid deleting system directories when deleting a user
(#138093)
- eventually delete mail spool (#102637) and temporary files (#126756)
* Fri Nov 05 2004 Nils Philippsen <nphilipp(a)redhat.com>
- set password and confirm password entries (in)sensitive based on whether
account is locked or not (#131180)
* Tue Nov 02 2004 Nils Philippsen <nphilipp(a)redhat.com> - 1.2.26-1
- use libuser defaults for password aging (#130379, original patch by Dave
Lehman)
---------------------------------------------------------------------
This update can be downloaded from:
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/3/
04c7288c0054124dfef1f7f74e2f6bd3 SRPMS/system-config-users-1.2.27-0.fc3.1.src.rpm
6e98e27eae42ea41fdec203b6dc79560 x86_64/system-config-users-1.2.27-0.fc3.1.noarch.rpm
6e98e27eae42ea41fdec203b6dc79560 i386/system-config-users-1.2.27-0.fc3.1.noarch.rpm
This update can also be installed with the Update Agent; you can
launch the Update Agent with the 'up2date' command.
---------------------------------------------------------------------
--
Nils Philippsen / Red Hat / nphilipp(a)redhat.com
"They that can give up essential liberty to obtain a little temporary
safety deserve neither liberty nor safety." -- B. Franklin, 1759
PGP fingerprint: C4A8 9474 5C4C ADE3 2B8F 656D 47D8 9B65 6951 3011
---------------------------------------------------------------------
Fedora Update Notification
FEDORA-2004-356
2004-11-11
---------------------------------------------------------------------
Product : Fedora Core 2
Name : glibc
Version : 2.3.3
Release : 27.1
Summary : The GNU libc libraries.
Description :
The glibc package contains standard libraries which are used by
multiple programs on the system. In order to save disk space and
memory, as well as to make upgrading easier, common system code is
kept in one place and shared between programs. This particular package
contains the most important sets of shared libraries: the standard C
library and the standard math library. Without these two libraries, a
Linux system will not function.
---------------------------------------------------------------------
* Thu Oct 28 2004 Jakub Jelinek <jakub(a)redhat.com> 2.3.3-27.1
- ignore also ENODEV and ETIMEDOUT error values when searching
paths in execvp/execlp (#136726)
- use non-blocking sockets when querying DNS (#135234)
- fix temp file vulnerability in catchsegv (CAN-2004-0968, #136318)
- make catchsegv working even on bi-arch platforms for both
32-bit and 64-bit binaries
- use backtrace () in libSegFault.so, so that catchsegv works even
on ia64 and x86-64, add register dumping on ia64 (#130254)
- fix reinitialization of _res when using NPTL thread stack cache
(BZ #434)
- update bug-reporting instructions
- fix infinite loop in iconv(1) with some options (BZ #194)
- fix inet_aton return value (BZ #276)
- mask restart signal in linuxthreads during cancel handling (#132654)
- avoid using unitialized memory in localedef
- fix mtrace script to only call location when really needed
- fix some -D_POSIX_C_SOURCE=200112L header namespace issues
- fix V4MAPPED lookups in /etc/hosts (#123583)
- always try both TCP and UDP reporting for syslog (#132816, BZ #108)
- fix ypclnt.c locking (#132204)
- avoid fragmentation of address space by malloc on flexmap
layouts (#118574)
- fix x86_64 <pthread.h> for -m32 -I/usr/include/nptl compilation
- make NPTL <pthread.h> usable in -pedantic -std=c89 mode, as well
as in C++ programs (BZ #375)
- make rwlocks available with -D_POSIX_C_SOURCE=200112L (BZ #320)
- remove __THROW from pthread_once, as the callback might throw
- return EAGAIN instead of ENOMEM if pthread_create fails due
to lack of memory
- fix NPTL stack freeing in case of pthread_create failure
with detached thread (BZ #405)
- fix i?86 and x86_64 pthread_mutex_timedlock
- save gp around linuxthreads ia64 CENABLE/CDISABLE calls
- fix s390{,x} unwinding when frames are smaller than 96 (resp. 160)
bytes
- fix _POSIX_CHILD_MAX and _POSIX_OPEN_MAX values XPG6,
add _POSIX_HOST_NAME_MAX, _POSIX_SYMLINK_MAX,
_POSIX_SYMLOOP_MAX and _POSIX_RE_DUP_MAX defines
- fix fnmatch backslash handling (BZ #361)
- fix out of memory behaviour of syslog (BZ #365)
- randomize resolver requests IDs all the time
- fix daemon behaviour if /dev/null is not the correct device
or it failed to open it
- fix *sprintf buffer reallocation condition (BZ #346)
- handle _nl_intern_locale_data (BZ #356)
- fix fdim{,f,l} (+inf, +inf) (BZ #376)
- fix glob on dangling symlinks
- stop using __builtin_expect in assert.h (#127606)
- fix cy_GB d_t_fmt (#103415)
- make SHMLBA from <sys/shm.h> usable even in C++ (#132313)
- fix <pthread.h> with -std=c{8,9}9 -D_XOPEN_SOURCE=600,
but without -D_POSIX_C_SOURCE=200112L (BZ #284)
- fix IPv6 AI_V4MAPPED filtering
- fix i386 and x86-64 pow{,f,l} (BZ #258)
- fix IBM932 and IBM943 iconv modules (#128674)
- fix ifreq memory handling
- fix loadavg if read returns 0 (BZ #263)
- fix mbsrtowcs if src is not zero terminated
- fix memusage with lots of allocations (BZ #285)
- fix newlocale locking
- fix NPTL pthread_rwlock_{timed}rdlock on architectures
other than ia32 and x86-64 (#129455)
- fix nscd_getgr_r
- fix nscd -i hosts to cause reinitialization of resolver
in all threads, not just one (#125712)
- fix res_init () memory leaks
- initialize all needed fields before call to __printf_fp
in strfmon{,_l} and printf_size
- fix strtod (BZ #274)
- fix fread_unlocked and fwrite_unlocked (BZ #309, #316)
- don't hold rtld lock while running _dl_fini destructors
(#126111)
- fix linuxthreads clock_[gs]ettime (#127328)
- fix a bug in DSO holes handling introduced by execstack changes
- only canonicalize first name in getaddrinfo with AI_CANONNAME
- fix an uninitialized field in __parse_one_specmb
- reread resolv.conf in nscd when running nscd --invalidate hosts
(#125712)
- fix <fcntl.h> F_{GETLK,SETLK,SETLKW} definitions on x86_64
for -m32 -D_FILE_OFFSET_BITS=64
- avoid referencing freed memory in sunrpc pmaplist destruction
(BZ #218)
- fix sqrt special case handling on s390/s390x
- fix pthread_rwlock_timed*lock and pthread_cond_timedwait
handling of invalid tv_nsec
- remove /usr/include/nptl/bits/stdio-lock.h from nptl-devel
(BZ #245)
- speed up sprintf if buffer starts in the first half of
address space (#123148)
- various memory handling fixes
- fix strpbrk macro in <string.h>
- fix strpbrk macro for GCC 3.4+ (BZ #130)
- fix x86_64 makecontext
- fix regex translate handling
- fix RELA undefined TLS symbol relocation
- fix -z nodelete DSO handling
- fix setenv handling of invalid arguments
- fix ia64/x86_64 backtrace in statically linked programs
- fix xtrace error reporting
- FUTEX_CMP_REQUEUE support
---------------------------------------------------------------------
This update can be downloaded from:
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/2/
59ee93d07c8ac4b0bf41caf53715799d SRPMS/glibc-2.3.3-27.1.src.rpm
c5aeeeee4c50acbe05bcbd773c2fbf19 x86_64/glibc-2.3.3-27.1.x86_64.rpm
b5a3978d8af45708b45b4c60ee3cf986 x86_64/glibc-devel-2.3.3-27.1.x86_64.rpm
f158e1a2b8a50447e7414bd4f7040e57 x86_64/glibc-headers-2.3.3-27.1.x86_64.rpm
088fee8073775b9596a498df37cb05d8 x86_64/nptl-devel-2.3.3-27.1.x86_64.rpm
529d2b03f5fd710667e9b7a70c9a40a8 x86_64/glibc-profile-2.3.3-27.1.x86_64.rpm
e469a6b1f8e0c4344f37e26b5c47d402 x86_64/glibc-common-2.3.3-27.1.x86_64.rpm
ff4a21f094918554a7b30dd7d369efdc x86_64/nscd-2.3.3-27.1.x86_64.rpm
93440792a09aed97100a1c8993f33144 x86_64/glibc-utils-2.3.3-27.1.x86_64.rpm
43294d17c13dd71239c1ecaaefa82ca5 x86_64/debug/glibc-debuginfo-2.3.3-27.1.x86_64.rpm
fb617c33955adb608c331e1f349aa605 x86_64/glibc-2.3.3-27.1.i386.rpm
56f5bcdce78a2cccc1524a3210adecc3 x86_64/glibc-devel-2.3.3-27.1.i386.rpm
fcebfa1076aeda3b8b349623b4bf032b x86_64/glibc-2.3.3-27.1.i686.rpm
a54b9ee83f5fe910b38b3d6382fc1e3e x86_64/nptl-devel-2.3.3-27.1.i686.rpm
fb617c33955adb608c331e1f349aa605 i386/glibc-2.3.3-27.1.i386.rpm
56f5bcdce78a2cccc1524a3210adecc3 i386/glibc-devel-2.3.3-27.1.i386.rpm
20dcdcb13db882656d55ac1335209080 i386/glibc-headers-2.3.3-27.1.i386.rpm
fbe8294a2bee2468f2e7fadd312efdaf i386/glibc-profile-2.3.3-27.1.i386.rpm
bac68f3806edf0c458cce94302d1fda6 i386/glibc-common-2.3.3-27.1.i386.rpm
14b3d1a411a0dc6c79a0e88a73af53d1 i386/nscd-2.3.3-27.1.i386.rpm
85e9662c711028c4a2ea1bbb71b5632f i386/glibc-utils-2.3.3-27.1.i386.rpm
09090e156aee0b89d12b3f1dc414e4ce i386/debug/glibc-debuginfo-2.3.3-27.1.i386.rpm
10acc81e50bc3ddd6a44e863ad314149 i386/debug/glibc-debuginfo-common-2.3.3-27.1.i386.rpm
fcebfa1076aeda3b8b349623b4bf032b i386/glibc-2.3.3-27.1.i686.rpm
a54b9ee83f5fe910b38b3d6382fc1e3e i386/nptl-devel-2.3.3-27.1.i686.rpm
2b728b8f2446c9070164efc81695435b i386/debug/glibc-debuginfo-2.3.3-27.1.i686.rpm
This update can also be installed with the Update Agent; you can
launch the Update Agent with the 'up2date' command.
---------------------------------------------------------------------
---------------------------------------------------------------------
Fedora Update Notification
FEDORA-2004-403
2004-11-11
---------------------------------------------------------------------
Product : Fedora Core 3
Name : ruby
Version : 1.8.1
Release : 7.FC3.1
Summary : An interpreter of object-oriented scripting language
Description :
Ruby is the interpreted scripting language for quick and easy
object-oriented programming. It has many features to process text
files and to do system management tasks (as in Perl). It is simple,
straight-forward, and extensible.
---------------------------------------------------------------------
* Thu Nov 11 2004 Akira TAGOH <tagoh(a)redhat.com> - 1.8.1-7.FC3.1
- security fix [CAN-2004-0983]
- security fix [CAN-2004-0755]
- ruby-1.8.1-cgi-dos.patch: applied to fix a denial of service issue. (#138366)
- ruby-1.8.1-cgi_session_perms.patch: sets the permission of the session data
file to 0600. (#130063)
* Sat Oct 30 2004 Akira TAGOH <tagoh(a)redhat.com> - 1.8.1-7.fc3
- added openssl-devel and db4-devel into BuildRequires. (#137479)
---------------------------------------------------------------------
This update can be downloaded from:
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/3/
e423a05f3e6a63767c6ab5b886c882ad SRPMS/ruby-1.8.1-7.FC3.1.src.rpm
fb594cf216b9725b7fd4b8347e79eb1a x86_64/ruby-1.8.1-7.FC3.1.x86_64.rpm
4528129815539f8fe3ebc6c69b648d33 x86_64/irb-1.8.1-7.FC3.1.x86_64.rpm
48e0554aa63e4765dfbd2d71dafccde7 x86_64/debug/ruby-debuginfo-1.8.1-7.FC3.1.x86_64.rpm
9a8ca938db4721ab82132394c4f56299 x86_64/ruby-devel-1.8.1-7.FC3.1.x86_64.rpm
e8878f90c73e5045d936e5fa2e70e846 x86_64/ruby-docs-1.8.1-7.FC3.1.x86_64.rpm
47d9d40d7fef2ef8a92cf9c660f255dc x86_64/ruby-libs-1.8.1-7.FC3.1.x86_64.rpm
1f1919213fa7c8861605d1e0c982e422 x86_64/ruby-mode-1.8.1-7.FC3.1.x86_64.rpm
a891cb18610b83c0fb6fed21b7ee7641 x86_64/ruby-tcltk-1.8.1-7.FC3.1.x86_64.rpm
2f26d34775553cee2980645c6654aed9 x86_64/ruby-libs-1.8.1-7.FC3.1.i386.rpm
912970b09bb1e07d026a9d4ff719cd98 i386/ruby-devel-1.8.1-7.FC3.1.i386.rpm
177f1ba8bf1d42de2335ec0177f14fe0 i386/irb-1.8.1-7.FC3.1.i386.rpm
a92fe04818616b255e04cf4379e3e7be i386/ruby-1.8.1-7.FC3.1.i386.rpm
29bc7a12865e313eb41c90cc9be69f10 i386/debug/ruby-debuginfo-1.8.1-7.FC3.1.i386.rpm
130d73a9b8eaeceee0b7e10a8e80aec4 i386/ruby-docs-1.8.1-7.FC3.1.i386.rpm
2f26d34775553cee2980645c6654aed9 i386/ruby-libs-1.8.1-7.FC3.1.i386.rpm
5e2582af078ebb5218eb4dcdece19062 i386/ruby-mode-1.8.1-7.FC3.1.i386.rpm
76ef077fc025371af17239f7e3769d8b i386/ruby-tcltk-1.8.1-7.FC3.1.i386.rpm
This update can also be installed with the Update Agent; you can
launch the Update Agent with the 'up2date' command.
---------------------------------------------------------------------
---------------------------------------------------------------------
Fedora Update Notification
FEDORA-2004-402
2004-11-11
---------------------------------------------------------------------
Product : Fedora Core 2
Name : ruby
Version : 1.8.1
Release : 6.FC2.0
Summary : An interpreter of object-oriented scripting language
Description :
Ruby is the interpreted scripting language for quick and easy
object-oriented programming. It has many features to process text
files and to do system management tasks (as in Perl). It is simple,
straight-forward, and extensible.
---------------------------------------------------------------------
* Thu Nov 11 2004 Akira TAGOH <tagoh(a)redhat.com> - 1.8.1-6.FC2.0
- security fix [CAN-2004-0983]
- ruby-1.8.1-cgi-dos.patch: applied to fix a denial of service issue. (#138366)
---------------------------------------------------------------------
This update can be downloaded from:
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/2/
293d5e469bd71ef98784871e41cc73f9 SRPMS/ruby-1.8.1-6.FC2.0.src.rpm
c784cd9ca42df1b9de594011bdb4e2ae x86_64/ruby-1.8.1-6.FC2.0.x86_64.rpm
9e1905c69a00f2694df9ad8978ac12c8 x86_64/irb-1.8.1-6.FC2.0.x86_64.rpm
a296e349a0d4d7acc6555c9805772328 x86_64/debug/ruby-debuginfo-1.8.1-6.FC2.0.x86_64.rpm
30aa43b22e40363bb7e11631345e99c5 x86_64/ruby-devel-1.8.1-6.FC2.0.x86_64.rpm
9824ce6c4556cd7ef51843ba93a15c89 x86_64/ruby-docs-1.8.1-6.FC2.0.x86_64.rpm
19a699cb5214a1711443a33fd2a95039 x86_64/ruby-libs-1.8.1-6.FC2.0.x86_64.rpm
c2e9a4d6dfeee96eb0f4a98f7b1a122a x86_64/ruby-mode-1.8.1-6.FC2.0.x86_64.rpm
02dc49125bd7f28ddf6445d16e67651e x86_64/ruby-tcltk-1.8.1-6.FC2.0.x86_64.rpm
299e59746ce36650d63a653b38dd2768 i386/ruby-devel-1.8.1-6.FC2.0.i386.rpm
01ba84845b2ab822d61172ea02afbfcc i386/irb-1.8.1-6.FC2.0.i386.rpm
369422099a979559084fee2435159422 i386/ruby-1.8.1-6.FC2.0.i386.rpm
867808625081629c48e32c617d5b154c i386/debug/ruby-debuginfo-1.8.1-6.FC2.0.i386.rpm
34f1d7d8a554f14b416e888a1b7d8941 i386/ruby-docs-1.8.1-6.FC2.0.i386.rpm
5e29bc2068cd9ac010cf6cd508336dff i386/ruby-libs-1.8.1-6.FC2.0.i386.rpm
6179faec35191a15ff7999e4c551fd62 i386/ruby-mode-1.8.1-6.FC2.0.i386.rpm
b711d470384fc33f52eeb67c35f77915 i386/ruby-tcltk-1.8.1-6.FC2.0.i386.rpm
This update can also be installed with the Update Agent; you can
launch the Update Agent with the 'up2date' command.
---------------------------------------------------------------------
---------------------------------------------------------------------
Fedora Update Notification
FEDORA-2004-406
2004-11-10
---------------------------------------------------------------------
Product : Fedora Core 3
Name : jwhois
Version : 3.2.2
Release : 6.FC3.1
Summary : Internet whois/nicname client.
Description :
A whois client that accepts both traditional and finger-style queries.
---------------------------------------------------------------------
Update Information:
This update fixes a crash when a processing a query requires
more than one redirection.
---------------------------------------------------------------------
* Tue Nov 09 2004 Miloslav Trmac <mitr(a)redhat.com> - 3.2.2-6.FC3.1
- Build for FC 3
* Mon Nov 01 2004 Miloslav Trmac <mitr(a)redhat.com> - 3.2.2-7
- Fix double free (#137693)
---------------------------------------------------------------------
This update can be downloaded from:
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/3/
fc8785d9a67256d978889a3c7015fa17 SRPMS/jwhois-3.2.2-6.FC3.1.src.rpm
cfab98b3d2eca1a04dc13527957b4b04 x86_64/jwhois-3.2.2-6.FC3.1.x86_64.rpm
b911b9cacb79704b263ffe0c1b11ca58 x86_64/debug/jwhois-debuginfo-3.2.2-6.FC3.1.x86_64.rpm
28d557c54adb47973a180232b0704739 i386/jwhois-3.2.2-6.FC3.1.i386.rpm
d9ed0ec48892068280e109e6b7e1e061 i386/debug/jwhois-debuginfo-3.2.2-6.FC3.1.i386.rpm
This update can also be installed with the Update Agent; you can
launch the Update Agent with the 'up2date' command.
---------------------------------------------------------------------
---------------------------------------------------------------------
Fedora Update Notification
FEDORA-2004-410
2004-11-10
---------------------------------------------------------------------
Product : Fedora Core 2
Name : openoffice.org
Version : 1.1.2
Release : 11.4.fc2
Summary : OpenOffice.org comprehensive office suite.
Description :
OpenOffice.org is an Open Source, community-developed, multi-platform
office productivity suite. It includes the key desktop applications,
such as a word processor, spreadsheet, presentation manager, formula
editor and drawing program, with a user interface and feature set
similar to other office suites. Sophisticated and flexible,
OpenOffice.org also works transparently with a variety of file
formats, including Microsoft Office.
Usage: Simply type "ooffice" to run OpenOffice.org or select the
requested component (Writer, Calc, Draw, Impress, etc.) from your
desktop menu. The ooffice wrapper script will install a few files in
the user's home, if necessary.
The OpenOffice.org team hopes you enjoy working with OpenOffice.org!
Note: Non-.vor templates covered under the GPL license.
---------------------------------------------------------------------
Update Information:
The fixes in this update are detailed in the changelog entry below.
---------------------------------------------------------------------
* Mon Nov 08 2004 Dan Williams <dcbw(a)redhat.com> - 1.1.2-11
- #rh120055# enable .doc mscodec backport for 1.1.2 (Caolan)
- #rh136907# Wrong colors in openoffice menubars
- #rh106548# Openoffice 1.1 places '.' on LD_LIBRARY_PATH (Caolan)
- #rh137281# OpenOffice crashes due to "lack of memory" (Caolan)
- #rh137335# OOo should not depend on evolution-devel
- #rh137854# Japanese document from Windows is heavily broken
- #rh137799# German spell checker does not work
- #rh137741# Warnings about dictionary list corruption on startup
- #rh137307# Cannot show hidden columns in calc
- #rh137977# Open Office failes to recognise TXT datasource after
upgrade
- #rh118742# Templates/wizards in Polish language not working
- #rh123758# Writer does not fallback to english for Index templates
- #rh137395# [x86_64][OOo] installation of OpenOffice.org 1.1.2 failed
- #rh102287# Prelink failures with openoffice (Caolan)
- #rh137487# (partial) Norwegian translation includes som german texts
- #rh137969# crashes openoffice-1.1.2-10 under certain circumstances
(Caolan)
- #rh129719# (partial) Incorporate updated Gujarati translation
- #rh107298# Remove File->Autopilots->Report menu for NoJava builds
(Caolan)
- #rh110934# OpenOffice Writer locks up when pasting image (Caolan)
- #rh120696# splash window has title "untitled window" (Caolan)
- #rh138317# Printer setting is scrambled for Japanese env
- Change naming schemes so upgrades work (ex FC2 -> FC3) even with
the same NVR on both OS versions
---------------------------------------------------------------------
This update can be downloaded from:
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/2/
2cc84729a5c94cfc4480159d098c263f
SRPMS/openoffice.org-1.1.2-11.4.fc2.src.rpm
5b34614d218848b36ed5f0b340da183e
x86_64/openoffice.org-1.1.2-11.4.fc2.i386.rpm
20374f89d4aa46cb796d4928b25b5caf x86_64/openoffice.org-
libs-1.1.2-11.4.fc2.i386.rpm
a0fc78b9383ae13454b5c8c8e8b768f2 x86_64/openoffice.org-
i18n-1.1.2-11.4.fc2.i386.rpm
5b34614d218848b36ed5f0b340da183e
i386/openoffice.org-1.1.2-11.4.fc2.i386.rpm
20374f89d4aa46cb796d4928b25b5caf i386/openoffice.org-
libs-1.1.2-11.4.fc2.i386.rpm
a0fc78b9383ae13454b5c8c8e8b768f2 i386/openoffice.org-
i18n-1.1.2-11.4.fc2.i386.rpm
2a378599059d5a5fbc70077440a4a125 i386/openoffice.org-
kde-1.1.2-11.4.fc2.i386.rpm
0b2689c269925eb0b0549bc08191b515 i386/debug/openoffice.org-
debuginfo-1.1.2-11.4.fc2.i386.rpm
This update can also be installed with the Update Agent; you can
launch the Update Agent with the 'up2date' command.
---------------------------------------------------------------------