---------------------------------------------------------------------
Fedora Update Notification
FEDORA-2004-096
2004-03-26
---------------------------------------------------------------------
Name : perl
Version : 5.8.3
Release : 16
Summary : The Perl programming language.
Description :
Perl is a high-level programming language with roots in C, sed, awk
and shell scripting. Perl is good at handling processes and files,
and is especially good at handling text. Perl's hallmarks are
practicality and efficiency. While it is used to do a lot of
different things, Perl's most common applications are system
administration utilities and web programming. A large proportion of
the CGI scripts on the web are written in Perl. You need the perl
package installed on your system so that your system can handle Perl
scripts.
Install this package if you want to program in Perl or enable your
system to handle Perl scripts.
---------------------------------------------------------------------
Update Information:
This update resolves dependency issues regarding Fedora Core 1 on
AMD64 systems. No changes to Fedora Core 1 i386 besides version
increment.
---------------------------------------------------------------------
* Tue Mar 23 2004 Chip Turner <cturner(a)redhat.com> 3:5.8.3-14
- make sure multilib boxes also own the entries in @INC that are in /usr/lib, not just /usr/lib64
* Tue Mar 09 2004 Chip Turner <cturner(a)redhat.com> 3:5.8.3-16.1
- fix i386-specifics in %install to arch generic
* Tue Mar 02 2004 Elliot Lee <sopwith(a)redhat.com>
- rebuilt
---------------------------------------------------------------------
This update can be downloaded from:
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/1/
dd9a48614c2880879b38d2b3e82849c7 SRPMS/perl-5.8.3-16.src.rpm
423787d51c478e187148767e10642d3d i386/perl-5.8.3-16.i386.rpm
b5b5036fd123b3a406f9a8dddbbaf150 i386/perl-suidperl-5.8.3-16.1.i386.rpm
af4a03ebb1aea83ac90ee9fec277d7cf i386/debug/perl-debuginfo-5.8.3-16.i386.rpm
aa39a06cc0dd967cd74f8d9628575609 x86_64/perl-5.8.3-16.x86_64.rpm
784a99a9bba0d2a3a8a851bf16653d55 x86_64/perl-suidperl-5.8.3-16.1.x86_64.rpm
8f5f35bd925c124530bfd4207e626f5f x86_64/debug/perl-debuginfo-5.8.3-16.x86_64.rpm
This update can also be installed with the Update Agent; you can
launch the Update Agent with the 'up2date' command.
---------------------------------------------------------------------
--
Chip Turner cturner(a)redhat.com
Red Hat, Inc.
---------------------------------------------------------------------
Fedora Update Notification
FEDORA-2004-097
2004-03-22
---------------------------------------------------------------------
Name : openssl, pam, krb5, e2fsprogs
Version : 0.9.7a, 0.77, 1.3.1, 1.34
Release : 33.10, 15, 6, 1
---------------------------------------------------------------------
Update Information:
This update pushes x86 packages of openssl, pam, krb5-libs, and
e2fsprogs for the x86-64 tree, to satisfy some broken dependencies.
We apologize for the inconvenience.
---------------------------------------------------------------------
This update can be downloaded from:
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/1/
a79b2e9ccb91f38d12de856aa08db069 SRPMS/e2fsprogs-1.34-1.src.rpm
a8279a45ad538c0c8204b27636299e30 SRPMS/krb5-1.3.1-6.src.rpm
21c4d5a3ac87c751ffbe16ccdaec9e1b SRPMS/pam-0.77-15.src.rpm
b02220558a2661ea0eeab3b30a3894e2 x86_64/e2fsprogs-1.34-1.i386.rpm
3c38fc3203e8be5a1f7df963f6f15e8b x86_64/krb5-libs-1.3.1-6.i386.rpm
f2c1ee5973157103d6699fb8122a42cd x86_64/openssl-0.9.7a-33.10.i686.rpm
5ee4cd74f7b00108a5818a014a3ab1d5 x86_64/pam-0.77-15.i386.rpm
This update can also be installed with the Update Agent; you can
launch the Update Agent with the 'up2date' command.
---------------------------------------------------------------------
---------------------------------------------------------------------
Fedora Update Notification
FEDORA-2004-095
2004-03-19
---------------------------------------------------------------------
Name : openssl
Version : 0.9.7a
Release : 33.10
Summary : The OpenSSL toolkit.
Description :
The OpenSSL toolkit provides support for secure communications between
machines. OpenSSL includes a certificate management tool and shared
libraries which provide various cryptographic algorithms and
protocols.
---------------------------------------------------------------------
Update Information:
This update includes OpenSSL packages to fix two security issues
affecting OpenSSL 0.9.7a which allow denial of service attacks; CVE
CAN-2004-0079 and CVE CAN-2003-0851.
Also included are updates for the OpenSSL 0.9.6 and 0.9.6b
compatibility libraries included in Fedora Core 1, fixing a separate
issue which could also lead to a denial of service attack; CVE
CAN-2004-0081.
---------------------------------------------------------------------
This update can be downloaded from:
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/1/
e8bdb97523942f9ffaa2266557522cb4 SRPMS/openssl-0.9.7a-33.10.src.rpm
e8b8fa33866d3bfb18a0bb363b7da157 i386/openssl-0.9.7a-33.10.i386.rpm
185ce2fa3dcc7eefd08755fbf32ba4b9 i386/openssl-devel-0.9.7a-33.10.i386.rpm
dffeec7a90d6d455d42f4150f8d87234 i386/openssl-perl-0.9.7a-33.10.i386.rpm
910b24732d051afceda9f9c725b26eaf i386/debug/openssl-debuginfo-0.9.7a-33.10.i386.rpm
f2c1ee5973157103d6699fb8122a42cd i386/openssl-0.9.7a-33.10.i686.rpm
aae58c51061b47c4886249787a6b0d12 i386/debug/openssl-debuginfo-0.9.7a-33.10.i686.rpm
ef901bfd90760a5a9bfe04964fc1edaf x86_64/openssl-0.9.7a-33.10.x86_64.rpm
0efb65591070daa52274aeba71c27c25 x86_64/openssl-devel-0.9.7a-33.10.x86_64.rpm
6c37c57523dafe0125ea7cafd9d03bd1 x86_64/openssl-perl-0.9.7a-33.10.x86_64.rpm
e3fa109733cd72647c96cd02a2c92628 x86_64/debug/openssl-debuginfo-0.9.7a-33.10.x86_64.rpm
bfa1844b85a37b4985bc05078c34dc5a SRPMS/openssl096-0.9.6-26.src.rpm
a138ec3378572805b3607f0e55eb081a i386/openssl096-0.9.6-26.i386.rpm
810ef6df3fcc5762b3b69654f9f1e145 i386/debug/openssl096-debuginfo-0.9.6-26.i386.rpm
b54014864a487e940b0a433755e75893 x86_64/openssl096-0.9.6-26.x86_64.rpm
12c3ebe731dc15263ae8e980173c3f9f x86_64/debug/openssl096-debuginfo-0.9.6-26.x86_64.rpm
216c598e2d8ded8f24f1c3b828051743 SRPMS/openssl096b-0.9.6b-18.src.rpm
5db375e1acdaf84a33ccab3f9f48b171 i386/openssl096b-0.9.6b-18.i386.rpm
b904fa03ff1b6ad06a488e3388b74a58 i386/debug/openssl096b-debuginfo-0.9.6b-18.i386.rpm
d2f6313c15f893b15230a82bc9ca5c5e x86_64/openssl096b-0.9.6b-18.x86_64.rpm
25804bd47caad8bb6a6d74f46c36cf62 x86_64/debug/openssl096b-debuginfo-0.9.6b-18.x86_64.rpm
This update can also be installed with the Update Agent; you can
launch the Update Agent with the 'up2date' command.
---------------------------------------------------------------------
---------------------------------------------------------------------
Fedora Update Notification
FEDORA-2004-093
2004-03-19
---------------------------------------------------------------------
Name : ghostscript
Version : 7.07
Release : 15.2
Summary : A PostScript(TM) interpreter and renderer.
Description :
Ghostscript is a set of software that provides a PostScript(TM)
interpreter, a set of C procedures (the Ghostscript library, which
implements the graphics capabilities in the PostScript language) and
an interpreter for Portable Document Format (PDF) files. Ghostscript
translates PostScript code into many common, bitmapped formats, like
those understood by your printer or screen. Ghostscript is normally
used to display PostScript files and to print PostScript files to
non-PostScript printers.
If you need to display PostScript files or print them to
non-PostScript printers, you should install ghostscript. If you
install ghostscript, you also need to install the ghostscript-fonts
package.
---------------------------------------------------------------------
Update Information:
The recommended printer driver for several Canon printers was absent
from the ghostscript package. The affected printers are:
Canon BJC 250ex
Canon BJC 255SP
Canon BJC 265SP
Updated packages are available to provide this driver.
---------------------------------------------------------------------
* Tue Mar 09 2004 Tim Waugh <twaugh(a)redhat.com> 7.07-15.2
- Added bjc250gs driver (bug #117860).
---------------------------------------------------------------------
This update can be downloaded from:
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/1/
1909aab5384d360f38b273ef93bb5467 SRPMS/ghostscript-7.07-15.2.src.rpm
b557502cc3408d58ffbe3e132c039183 i386/ghostscript-7.07-15.2.i386.rpm
344efd342f65f4f7178877840b558f18 i386/ghostscript-devel-7.07-15.2.i386.rpm
4902e4dcc0b2cdf51b5847dd658096c9 i386/hpijs-1.5-4.2.i386.rpm
79e9e0b284d57165d8b60565ee9e1e84 i386/debug/ghostscript-debuginfo-7.07-15.2.i386.rpm
9bd5fc70808f024f3f68687d2dc418be x86_64/ghostscript-7.07-15.2.x86_64.rpm
ac079d4cb4fb92ca352e411c6bdc81ea x86_64/ghostscript-devel-7.07-15.2.x86_64.rpm
2943e4c825bdbd216af14b0842d5738f x86_64/hpijs-1.5-4.2.x86_64.rpm
301fd2b2680759226d1bcfe47b79a060 x86_64/debug/ghostscript-debuginfo-7.07-15.2.x86_64.rpm
This update can also be installed with the Update Agent; you can
launch the Update Agent with the 'up2date' command.
---------------------------------------------------------------------
---------------------------------------------------------------------
Fedora Update Notification
FEDORA-2004-062
2004-03-19
---------------------------------------------------------------------
Name : xmms
Version : 1.2.10
Release : 1.p
Summary : A media player for X which resembles Winamp.
Description :
Xmms is a multimedia (Ogg Vorbis, CDs) player for the X Window System with
an interface similar to Winamp's. Xmms supports playlists and
streaming content and has a configurable interface.
---------------------------------------------------------------------
Update Information:
This is an update to upstream xmms-1.2.10; it includes various
bugfixes.
---------------------------------------------------------------------
* Thu Mar 11 2004 Bill Nottingham <notting(a)redhat.com> 1:1.2.10-1.p
- update to 1.2.10
- fix buildreqs (#114857)
---------------------------------------------------------------------
This update can be downloaded from:
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/1/
9474cf2e3a6b28fc855ff5a7c9f05d0f SRPMS/xmms-1.2.10-1.p.src.rpm
8cc60720097a82b154172fc51de70cc1 i386/xmms-1.2.10-1.p.i386.rpm
3230be4448fe918beee0c8fc7cf0675d i386/xmms-devel-1.2.10-1.p.i386.rpm
6fca603e891b934ecb095b7812d4e509 i386/xmms-skins-1.2.10-1.p.i386.rpm
8fc8efad679d721708d1c81364ae4f1d i386/debug/xmms-debuginfo-1.2.10-1.p.i386.rpm
50edb376b4f67f2c0fb6982be85832af x86_64/xmms-1.2.10-1.p.x86_64.rpm
f8bc5ae8ade90acde2cebf770ab8ab70 x86_64/xmms-devel-1.2.10-1.p.x86_64.rpm
0fcd47196b5697bf73f17d748d3a7b85 x86_64/xmms-skins-1.2.10-1.p.x86_64.rpm
442b6572adb01d7485e4177fc8bd6955 x86_64/debug/xmms-debuginfo-1.2.10-1.p.x86_64.rpm
This update can also be installed with the Update Agent; you can
launch the Update Agent with the 'up2date' command.
---------------------------------------------------------------------
Here at FedoraForum.org we've just merged the Artoo Fedora FAQ Forums into
us. This is fantastic news for the Fedora community, as it helps to
eradicate the duplication of effort which currently exists. It will mean
that there is now one definite place to go and ask for help, with more
members and therefore more expertise in one place. All of the existing
threads and users have been merged into the forums.
This now means that the forum has a staggering 1,254 members with 836
threads and 4,536 posts at the time of writing. Making this forum, the
premier online resource for the Fedora community.
What does this mean for you? Well put simply this means:
» More experience - more users in one place makes for more experience and
therefore better help
» A centralisation of resources making it easier to find what you need » A
better community atmosphere, more users, more regulars and therefore a
better feeling of community
If you have a duplicate account on both forums, your user has been merged.
Meaning that your post count will be the sum of that in both forums. All
of the threads which were on the #fedora FAQ forum have been moved across
and a full list of where each thread can now be found is located here:
http://fedorafaq.org/forums_moved.html
At the same time we'd like to welcome Avatraxiom and vorte[x] to the
forums. Avatraxiom was the administrator of http://fedora.artoo.net/forum
and vorte[x] was the moderator. Avatraxiom will be assuming a role as a
Super Moderator and vorte[x] as a moderator for the support forums.
We also have a fantastic new design now up and running on the forums. It
should make it easier to navigate to a certain extent and it provides you
with some extra eye candy.
We hope that you'll enjoy and benefit from the merger of the forums!
Gareth (Ug)
FedoraForum.org Administrator
---------------------------------------------------------------------
Fedora Update Notification
FEDORA-2004-094
2004-03-18
---------------------------------------------------------------------
Name : xcin
Version : 2.5.3.pre3
Release : 21.fc1.2
Summary : An X Input Method Server for Chinese.
Description :
An X Input Method Server for Chinese.
---------------------------------------------------------------------
Update Information:
This package contains the latest update of xcin, which has merged UTF-8
support from upstream. It is now supporting OnTheSpot input style as
well.
---------------------------------------------------------------------
* Mon Mar 08 2004 Leon Ho <llch(a)redhat.com>
- update for fc1
* Tue Mar 02 2004 Elliot Lee <sopwith(a)redhat.com>
- rebuilt
* Fri Feb 13 2004 Elliot Lee <sopwith(a)redhat.com>
- rebuilt
* Wed Jan 28 2004 Leon Ho <llch(a)redhat.com> 2.5.3.pre3-20
- fixed the libraries linking
- fixed the user defined database saved in the current directory
* Thu Jan 22 2004 Leon Ho <llch(a)redhat.com> 2.5.3.pre3-19
- uses the merged utf-8 patches
- overthespot patches from cvs
* Tue Dec 02 2003 Thomas Woerner <twoerner(a)redhat.com> 2.5.3.pre3-18
- removed rpath
- fixed libdir problem on 64 bit architectures
---------------------------------------------------------------------
This update can be downloaded from:
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/1/
99175f9a20b6f74b77c008055313c534 SRPMS/xcin-2.5.3.pre3-21.fc1.2.src.rpm
84c3674c983307aed7e202d0b424fc65 i386/xcin-2.5.3.pre3-21.fc1.2.i386.rpm
69dda1e70f72c77665b007ede362cce5
i386/debug/xcin-debuginfo-2.5.3.pre3-21.fc1.2.i386.rpm
be584621fe89345439b083ee3d573b7d
x86_64/xcin-2.5.3.pre3-21.fc1.2.x86_64.rpm
04f9b38e121fe990b9ea0392facfc7e4
x86_64/debug/xcin-debuginfo-2.5.3.pre3-21.fc1.2.x86_64.rpm
This update can also be installed with the Update Agent; you can
launch the Update Agent with the 'up2date' command.
---------------------------------------------------------------------
---------------------------------------------------------------------
Fedora Update Notification
FEDORA-2004-090
2004-03-02
---------------------------------------------------------------------
Name : tcpdump
Version : 3.7.2
Release : 7.fc1.1
Summary : A network traffic monitoring tool.
Description :
Tcpdump is a command-line tool for monitoring network traffic.
Tcpdump can capture and display the packet headers on a particular
network interface or on all interfaces. Tcpdump can display all of
the packet headers, or just the ones that match particular criteria.
Install tcpdump if you need a program to monitor network traffic.
---------------------------------------------------------------------
Update Information:
Updated tcpdump, libpcap, and arpwatch packages fix vulnerabilities in
ISAKMP and RADIUS parsing.
Tcpdump is a command-line tool for monitoring network traffic.
George Bakos discovered flaws in the ISAKMP decoding routines of tcpdump
versions prior to 3.8.1. The Common Vulnerabilities and Exposures
project (cve.mitre.org) has assigned the name CAN-2003-0989 to this issue.
Jonathan Heusser discovered an additional flaw in the ISAKMP decoding
routines for tcpdump 3.8.1 and earlier. The Common Vulnerabilities and
Exposures project (cve.mitre.org) has assigned the name CAN-2004-0057 to
this issue.
Jonathan Heusser discovered a flaw in the print_attr_string function in
the RADIUS decoding routines for tcpdump 3.8.1 and earlier. The Common
Vulnerabilities and Exposures project (cve.mitre.org) has assigned the
name CAN-2004-0055 to this issue.
Remote attackers could potentially exploit these issues by sending
carefully-crafted packets to a victim. If the victim uses tcpdump, these
pakets could result in a denial of service, or possibly execute
arbitrary code as the 'pcap' user.
Users of tcpdump are advised to upgrade to these erratum packages, which
contain backported security patches and are not vulnerable to these issues.
---------------------------------------------------------------------
This update can be downloaded from:
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/1/
7dc3b86d8ed719068c9758d10f89c1a8 SRPMS/tcpdump-3.7.2-7.fc1.1.src.rpm
32542a5c04f6ef98a0c5bbb9d994eb65 i386/tcpdump-3.7.2-7.fc1.1.i386.rpm
3245ae55e53296a83490768b9fd682dc i386/libpcap-0.7.2-7.fc1.1.i386.rpm
1b313ff0bcd98aa579ce94a0e9b69194 i386/arpwatch-2.1a11-7.fc1.1.i386.rpm
ed4460a118b6552d1a893d71b3316759
i386/debug/tcpdump-debuginfo-3.7.2-7.fc1.1.i386.rpm
This update can also be installed with the Update Agent; you can
launch the Update Agent with the 'up2date' command.
---------------------------------------------------------------------
---------------------------------------------------------------------
Fedora Update Notification
FEDORA-2004-091
2004-03-10
---------------------------------------------------------------------
Name : coreutils
Version : 5.0
Release : 34.1
Summary : The GNU core utilities: a set of tools commonly used in shell scripts
Description :
These are the GNU core utilities. This package is the combination of
the old GNU fileutils, sh-utils, and textutils packages.
---------------------------------------------------------------------
Update Information:
An updated coreutils package is available fixing an issue in the ls(1)
utility, described at:
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0853
Note that this vulnerability affects Internet-facing services which execute
ls(1) with user-supplied input, and although wu-ftpd is one such service it
is not supplied with Fedora Core 1.
---------------------------------------------------------------------
* Wed Mar 03 2004 Tim Waugh <twaugh(a)redhat.com> 5.0-34.1
- Build for Fedora Core 1.
* Thu Dec 04 2003 Tim Waugh <twaugh(a)redhat.com> 5.0-34.sel
- Fix column widths problems in ls.
* Tue Dec 02 2003 Tim Waugh <twaugh(a)redhat.com> 5.0-33.sel
- Speed up md5sum by disabling speed-up asm.
* Wed Nov 19 2003 Dan Walsh <dwalsh(a)redhat.com> 5.0-32.sel
- Try again
* Wed Nov 19 2003 Dan Walsh <dwalsh(a)redhat.com> 5.0-31.sel
- Fix move on non SELinux kernels
* Fri Nov 14 2003 Tim Waugh <twaugh(a)redhat.com> 5.0-30.sel
- Fixed useless acl dependencies (bug #106141).
* Fri Oct 24 2003 Dan Walsh <dwalsh(a)redhat.com> 5.0-29.sel
- Fix id -Z
* Tue Oct 21 2003 Dan Walsh <dwalsh(a)redhat.com> 5.0-28.sel
- Turn on SELinux
- Fix chcon error handling
* Wed Oct 15 2003 Dan Walsh <dwalsh(a)redhat.com> 5.0-28
- Turn off SELinux
* Mon Oct 13 2003 Dan Walsh <dwalsh(a)redhat.com> 5.0-27.sel
- Turn on SELinux
* Mon Oct 13 2003 Dan Walsh <dwalsh(a)redhat.com> 5.0-27
- Turn off SELinux
* Mon Oct 13 2003 Dan Walsh <dwalsh(a)redhat.com> 5.0-26.sel
- Turn on SELinux
---------------------------------------------------------------------
This update can be downloaded from:
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/1/
092a4490b17447ec40cf1ebd1a90334c SRPMS/coreutils-5.0-34.1.src.rpm
9297d994a0837fca2d8727d6b63c33a6 i386/coreutils-5.0-34.1.i386.rpm
66bd92fef857384002c5e7a186c235ff i386/debug/coreutils-debuginfo-5.0-34.1.i386.rpm
9318557a41978705b3696c5ce7dc897c x86_64/coreutils-5.0-34.1.x86_64.rpm
5de0c3389976a04fbe8f40e36a5c6683 x86_64/debug/coreutils-debuginfo-5.0-34.1.x86_64.rpm
This update can also be installed with the Update Agent; you can
launch the Update Agent with the 'up2date' command.
---------------------------------------------------------------------