The following Fedora EPEL 6 Security updates need testing: Age URL 290 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5620/bugzilla-3.4.1... 13 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0174/tinymce-spellc... 13 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0193/couchdb-1.0.4-... 67 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-13610/drupal6-ctool... 213 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-6348/bcfg2-1.2.3-1.... 478 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2011-4701/supybot-gribbl... 0 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0267/mediawiki119-1... 15 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0123/python-tw2-jqu... 15 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0170/asterisk-1.8.2... 5 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-0233/wordpress-3.5....
The following builds have been pushed to Fedora EPEL 6 updates-testing
ckeditor-3.6.6-1.el6 cross-binutils-2.23.51.0.3-1.el6 cross-gcc-4.7.2-2.aa.20121114svn.el6.1 dmlite-0.6.0-1.el6 dmlite-plugins-adapter-0.6.0-1.el6 dmlite-plugins-librarian-0.5.0-2.el6 dmlite-plugins-memcache-0.5.0-2.el6 dmlite-plugins-mysql-0.6.0-1.el6 dmlite-plugins-profiler-0.5.0-2.el6 dmlite-plugins-s3-0.5.0-1.el6 dpm-dsi-1.9.0-1.el6 easybashgui-6.0.1-1.el6 lcgdm-dav-0.12.0-1.el6 mediawiki119-1.19.3-3.el6 munin-2.0.11-2.el6 nsd-3.2.15-3.el6 python-fedora-0.3.32.3-1.el6 seamonkey-2.15.2-1.el6
Details about builds:
================================================================================ ckeditor-3.6.6-1.el6 (FEDORA-EPEL-2013-0284) WYSIWYG text editor to be used inside web pages -------------------------------------------------------------------------------- Update Information:
Packaging changes: * move _samples in documentation * drop _source from package * move php library to /usr/share/php * fix httpd configuration (grant access)
Upstream changelog version 3.6.6: * 9866 : [IE10] The full toolbar is displayed in two lines in RTL environment. * 9483 : [IE10] Fixed script error on float panel opening. * 6410 : SCAYT will show no suggestions when appropriate, instead of not appearing. * 7533, #9439 : Fixed SCAYT issues with setData(). * 9167 : Improper HTML transformations happening on specific cases. * 9553 : Properly handle dash values in the style field of dialogs. * 9787 : [IE9] onChange wasn't fired for checkboxes in dialogs. * 8888 : It was not possible to scroll dialogs on very small viewports. * 9594 : The TAB key was having no effect on focused read-only editor.
Upstream changelog version 3.6.5: * 9132 : [IE8] Fixed js error when closing paste dialog. * 9101 : Tab key in smiley and special char dialog now moves focus to dialog buttons. * 9209 : Fixed IE7 crash when switching list item type. * 8995 : Fixed incorrect HTML escaping in bbcode plugin. * 6168 : Fixed style definition with styles defined as inline style attribute. * 9097 : [IE] Fixed small selection flaw when select starts from the blank region outside body. * 9129 : Fixed various Del/Backspace keystroke behaviors inside of HTML list. * 9117 : [FF] Fixed js error when calling setData() on a hidden editor. * 9289 : Disallowed creating javascript links through the link dialog. * 9312 : Fixed table with multiple <tbody> output generated in wrong order. * 8795 : Fixed table resize plugin not working when document overflows horizontally. * 8888 : Fixed dialog dimension overflowing small view port. * 9311 : Fixed vertical scroll being impossible when autogrow plugin is used during maximized editor. * 1961 : The "id" attribute will be appended to anchors alongside the "name" attribute. * 9219 : The <source> element is now protected while parsing the contents. * 9281 : [Safari] Fixed inline style breaking dialog advanced tab. * 9281 : [IE8] Fixed not being able to remove border from the image dialog.
-------------------------------------------------------------------------------- ChangeLog:
* Tue Feb 5 2013 Remi Collet remi@fedoraproject.org - 3.6.6-1 - update to 3.6.6 - move _samples in doc - don't package _source - move php library to /usr/share/php - fix httpd configuration (grant access) #894567 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #894567 - Please update httpd configuration to grant access https://bugzilla.redhat.com/show_bug.cgi?id=894567 --------------------------------------------------------------------------------
================================================================================ cross-binutils-2.23.51.0.3-1.el6 (FEDORA-EPEL-2013-0276) A GNU collection of cross-compilation binary utilities -------------------------------------------------------------------------------- Update Information:
This is an initial release of the cross compilation tool chain for Fedora EPEL for Enterprise Linux 6. --------------------------------------------------------------------------------
================================================================================ cross-gcc-4.7.2-2.aa.20121114svn.el6.1 (FEDORA-EPEL-2013-0276) Cross C compiler -------------------------------------------------------------------------------- Update Information:
This is an initial release of the cross compilation tool chain for Fedora EPEL for Enterprise Linux 6. --------------------------------------------------------------------------------
================================================================================ dmlite-0.6.0-1.el6 (FEDORA-EPEL-2013-0277) Common libraries for grid data management and storage -------------------------------------------------------------------------------- Update Information:
Update for new upstream release. -------------------------------------------------------------------------------- ChangeLog:
* Wed Feb 6 2013 Ricardo Rocha ricardo.rocha@cern.ch - 0.6.0-1 - Update for new upstream release - Added patch to disable python and tests packages * Thu Oct 25 2012 Ricardo Rocha ricardo.rocha@cern.ch - 0.5.0-1 - Update for new upstream release --------------------------------------------------------------------------------
================================================================================ dmlite-plugins-adapter-0.6.0-1.el6 (FEDORA-EPEL-2013-0278) Adapter plug-in for dmlite -------------------------------------------------------------------------------- Update Information:
Update for new upstream release -------------------------------------------------------------------------------- ChangeLog:
* Wed Dec 19 2012 Ricardo Rocha ricardo.rocha@cern.ch - 0.6.0-1 - Update for new upstream release * Thu Oct 25 2012 Ricardo Rocha ricardo.rocha@cern.ch - 0.5.0-1 - Update for new upstream release - Added boost141 build requires in el5 case --------------------------------------------------------------------------------
================================================================================ dmlite-plugins-librarian-0.5.0-2.el6 (FEDORA-EPEL-2013-0274) Librarian plugin for dmlite -------------------------------------------------------------------------------- Update Information:
Update for new upstream release -------------------------------------------------------------------------------- ChangeLog:
* Wed Dec 19 2012 Ricardo Rocha ricardo.rocha@cern.ch - 0.5.0-2 - Update release number for rebuild against dmlite core 0.6 * Thu Oct 25 2012 Ricardo Rocha ricardo.rocha@cern.ch - 0.5.0-1 - Update for new upstream release --------------------------------------------------------------------------------
================================================================================ dmlite-plugins-memcache-0.5.0-2.el6 (FEDORA-EPEL-2013-0265) Memcached plugin for dmlite -------------------------------------------------------------------------------- Update Information:
Update for new upstream release -------------------------------------------------------------------------------- ChangeLog:
* Tue Dec 18 2012 Ricardo Rocha ricardo.rocha@cern.ch - 0.5.0-2 - Rebuild for dmlite 0.6 update * Thu Oct 25 2012 Ricardo Rocha ricardo.rocha@cern.ch - 0.5.0-1 - Update for new upstream release --------------------------------------------------------------------------------
================================================================================ dmlite-plugins-mysql-0.6.0-1.el6 (FEDORA-EPEL-2013-0273) MySQL plugin for dmlite -------------------------------------------------------------------------------- Update Information:
Update for new upstream release -------------------------------------------------------------------------------- ChangeLog:
* Wed Dec 19 2012 Ricardo Rocha ricardo.rocha@cern.ch - 0.6.0-1 - Update for new upstream release * Thu Oct 25 2012 Ricardo Rocha ricardo.rocha@cern.ch - 0.5.0-1 - Update for new upstream release --------------------------------------------------------------------------------
================================================================================ dmlite-plugins-profiler-0.5.0-2.el6 (FEDORA-EPEL-2013-0290) Profiler plugin for dmlite -------------------------------------------------------------------------------- Update Information:
Update to new upstream release -------------------------------------------------------------------------------- ChangeLog:
* Wed Dec 19 2012 Ricardo Rocha ricardo.rocha@cern.ch - 0.5.0-2 - Rebuild for dmlite core 0.6 update * Thu Oct 25 2012 Ricardo Rocha ricardo.rocha@cern.ch - 0.5.0-1 - Update for new upstream release --------------------------------------------------------------------------------
================================================================================ dmlite-plugins-s3-0.5.0-1.el6 (FEDORA-EPEL-2013-0279) S3 plugin for dmlite -------------------------------------------------------------------------------- Update Information:
Update for new upstream release -------------------------------------------------------------------------------- ChangeLog:
* Wed Dec 19 2012 Ricardo Rocha ricardo.rocha@cern.ch - 0.5.0-1 - Update for new upstream release --------------------------------------------------------------------------------
================================================================================ dpm-dsi-1.9.0-1.el6 (FEDORA-EPEL-2013-0269) Disk Pool Manager (DPM) plugin for the Globus GridFTP server -------------------------------------------------------------------------------- Update Information:
Update for new upstream release -------------------------------------------------------------------------------- ChangeLog:
* Wed Dec 19 2012 Ricardo Rocha ricardo.rocha@cern.ch - 1.9.0-1 - Update for new upstream release --------------------------------------------------------------------------------
================================================================================ easybashgui-6.0.1-1.el6 (FEDORA-EPEL-2013-0270) Bash function library -------------------------------------------------------------------------------- Update Information:
Update to 6.0.1 -------------------------------------------------------------------------------- ChangeLog:
* Tue Feb 5 2013 Matthieu Saulnier fantom@fedoraproject.org - 6.0.1-1 - Update to 6.0.1 - Remove Patch0 (upstream issue) --------------------------------------------------------------------------------
================================================================================ lcgdm-dav-0.12.0-1.el6 (FEDORA-EPEL-2013-0268) HTTP/DAV front end to the DPM/LFC services -------------------------------------------------------------------------------- Update Information:
Update for new upstream release -------------------------------------------------------------------------------- ChangeLog:
* Wed Feb 6 2013 Ricardo Rocha ricardo.rocha@cern.ch - 0.12.0-1 - Update for new upstream release * Tue Jan 29 2013 Ricardo Rocha ricardo.rocha@cern.ch - 0.11.0-2 - Added patch for apache 2.4 api change --------------------------------------------------------------------------------
================================================================================ mediawiki119-1.19.3-3.el6 (FEDORA-EPEL-2013-0267) A wiki engine -------------------------------------------------------------------------------- Update Information:
Rebase to version 1.19.3.
Fixes CVE-2012-5391 amongst other bugfixes. -------------------------------------------------------------------------------- ChangeLog:
* Fri Dec 7 2012 Patrick Uiterwijk puiterwijk@gmail.com - 1.19.3-1 - Update to upstream 1.19.3 * Fri Dec 7 2012 Patrick Uiterwijk puiterwijk@gmail.com - 1.19.2-2 - Backported security fix for bug 40995 (RHBZ 882325) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #885016 - CVE-2012-5391 mediawiki: Vulnerable to session fixation attacks [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=885016 --------------------------------------------------------------------------------
================================================================================ munin-2.0.11-2.el6 (FEDORA-EPEL-2013-0289) Network-wide graphing framework (grapher/gatherer) -------------------------------------------------------------------------------- Update Information:
Upstream 2.0.11 -------------------------------------------------------------------------------- ChangeLog:
* Mon Feb 4 2013 D. Johnson fenris02@fedoraproject.org - 2.0.11-2 - BZ# 907369 revert HTMLOld.pm patch * Sun Feb 3 2013 D. Johnson fenris02@fedoraproject.org - 2.0.11-1 - Upstream release 2.0.11 * Mon Jan 21 2013 D. Johnson fenris02@fedoraproject.org - 2.0.10-2 - BZ# 896644 Wrong path to munin jar in jmx plugin -------------------------------------------------------------------------------- References:
[ 1 ] Bug #907369 - Munin HTMLOld.pm is patched with a bad patch from munin track that breaks thread counting https://bugzilla.redhat.com/show_bug.cgi?id=907369 [ 2 ] Bug #896644 - Wrong path to munin jar in jmx plugin https://bugzilla.redhat.com/show_bug.cgi?id=896644 --------------------------------------------------------------------------------
================================================================================ nsd-3.2.15-3.el6 (FEDORA-EPEL-2013-0282) Fast and lean authoritative DNS Name Server -------------------------------------------------------------------------------- Update Information:
Updated to 3.2.15 with rate limit support to mitigate DDOS attacks -------------------------------------------------------------------------------- ChangeLog:
* Tue Feb 5 2013 Paul Wouters pwouters@redhat.com - 3.2.15-3 - Updated to 3.2.15 which has support for rate limiting - Only run nsdc rebuild hourly cronjob when nsd service is running - Fix nsd.init to return proper return code for 'status' cmd --------------------------------------------------------------------------------
================================================================================ python-fedora-0.3.32.3-1.el6 (FEDORA-EPEL-2013-0271) Python modules for talking to Fedora Infrastructure Services -------------------------------------------------------------------------------- Update Information:
* Fixes an issue with client session cookies not being valid * Port from python-pycurl to python-requests to make the http connections to the servers. * Fixes a problem with soprovidercsrf if the database doesn't set an encoding * Fixes an issue with the login templates if the template is being translated. * Added a lookup_email parameter to fedora.client.AccountSystem.gravatar_url() to allow generating gravaar urls without looking up email addresses in fas. * Fixed a bug in fedora.tg.utils.tg_absolute_url() where it was still appending the csrf_token. * Add an auth adapter for flask web apps to authenticate to FAS * New minimum version of python: requires python-2.5 or higher * Fix localization of login templates (laxathom)
* Fixes a problem with soprovidercsrf if the database doesn't set an encoding * Fixes an issue with the login templates if the template is being translated. * Added a lookup_email parameter to fedora.client.AccountSystem.gravatar_url() to allow generating gravaar urls without looking up email addresses in fas. * Fixed a bug in fedora.tg.utils.tg_absolute_url() where it was still appending the csrf_token. * Add an auth adapter for flask web apps to authenticate to FAS * New minimum version of python: requires python-2.5 or higher * Fix localization of login templates (laxathom)
* Added a lookup_email parameter to fedora.client.AccountSystem.gravatar_url() to allow generating gravaar urls without looking up email addresses in fas. * Fixed a bug in fedora.tg.utils.tg_absolute_url() where it was still appending the csrf_token. * Add an auth adapter for flask web apps to authenticate to FAS * New minimum version of python: requires python-2.5 or higher * Fix localization of login templates (laxathom)
* Fixes a problem with soprovidercsrf if the database doesn't set an encoding * Fixes an issue with the login templates if the template is being translated. * Added a lookup_email parameter to fedora.client.AccountSystem.gravatar_url() to allow generating gravaar urls without looking up email addresses in fas. * Fixed a bug in fedora.tg.utils.tg_absolute_url() where it was still appending the csrf_token. * Add an auth adapter for flask web apps to authenticate to FAS * New minimum version of python: requires python-2.5 or higher * Fix localization of login templates (laxathom)
* Added a lookup_email parameter to fedora.client.AccountSystem.gravatar_url() to allow generating gravaar urls without looking up email addresses in fas. * Fixed a bug in fedora.tg.utils.tg_absolute_url() where it was still appending the csrf_token. * Add an auth adapter for flask web apps to authenticate to FAS * New minimum version of python: requires python-2.5 or higher * Fix localization of login templates (laxathom)
* Fixes a problem with soprovidercsrf if the database doesn't set an encoding * Fixes an issue with the login templates if the template is being translated. * Added a lookup_email parameter to fedora.client.AccountSystem.gravatar_url() to allow generating gravaar urls without looking up email addresses in fas. * Fixed a bug in fedora.tg.utils.tg_absolute_url() where it was still appending the csrf_token. * Add an auth adapter for flask web apps to authenticate to FAS * New minimum version of python: requires python-2.5 or higher * Fix localization of login templates (laxathom)
* Port from python-pycurl to python-requests to make the http connections to the servers. * Fixes a problem with soprovidercsrf if the database doesn't set an encoding * Fixes an issue with the login templates if the template is being translated. * Added a lookup_email parameter to fedora.client.AccountSystem.gravatar_url() to allow generating gravaar urls without looking up email addresses in fas. * Fixed a bug in fedora.tg.utils.tg_absolute_url() where it was still appending the csrf_token. * Add an auth adapter for flask web apps to authenticate to FAS * New minimum version of python: requires python-2.5 or higher * Fix localization of login templates (laxathom)
* Fixes a problem with soprovidercsrf if the database doesn't set an encoding * Fixes an issue with the login templates if the template is being translated. * Added a lookup_email parameter to fedora.client.AccountSystem.gravatar_url() to allow generating gravaar urls without looking up email addresses in fas. * Fixed a bug in fedora.tg.utils.tg_absolute_url() where it was still appending the csrf_token. * Add an auth adapter for flask web apps to authenticate to FAS * New minimum version of python: requires python-2.5 or higher * Fix localization of login templates (laxathom)
* Added a lookup_email parameter to fedora.client.AccountSystem.gravatar_url() to allow generating gravaar urls without looking up email addresses in fas. * Fixed a bug in fedora.tg.utils.tg_absolute_url() where it was still appending the csrf_token. * Add an auth adapter for flask web apps to authenticate to FAS * New minimum version of python: requires python-2.5 or higher * Fix localization of login templates (laxathom)
* Fixes a problem with soprovidercsrf if the database doesn't set an encoding * Fixes an issue with the login templates if the template is being translated. * Added a lookup_email parameter to fedora.client.AccountSystem.gravatar_url() to allow generating gravaar urls without looking up email addresses in fas. * Fixed a bug in fedora.tg.utils.tg_absolute_url() where it was still appending the csrf_token. * Add an auth adapter for flask web apps to authenticate to FAS * New minimum version of python: requires python-2.5 or higher * Fix localization of login templates (laxathom)
* Added a lookup_email parameter to fedora.client.AccountSystem.gravatar_url() to allow generating gravaar urls without looking up email addresses in fas. * Fixed a bug in fedora.tg.utils.tg_absolute_url() where it was still appending the csrf_token. * Add an auth adapter for flask web apps to authenticate to FAS * New minimum version of python: requires python-2.5 or higher * Fix localization of login templates (laxathom)
* Fixes a problem with soprovidercsrf if the database doesn't set an encoding * Fixes an issue with the login templates if the template is being translated. * Added a lookup_email parameter to fedora.client.AccountSystem.gravatar_url() to allow generating gravaar urls without looking up email addresses in fas. * Fixed a bug in fedora.tg.utils.tg_absolute_url() where it was still appending the csrf_token. * Add an auth adapter for flask web apps to authenticate to FAS * New minimum version of python: requires python-2.5 or higher * Fix localization of login templates (laxathom)
* Port from python-pycurl to python-requests to make the http connections to the servers. * Fixes a problem with soprovidercsrf if the database doesn't set an encoding * Fixes an issue with the login templates if the template is being translated. * Added a lookup_email parameter to fedora.client.AccountSystem.gravatar_url() to allow generating gravaar urls without looking up email addresses in fas. * Fixed a bug in fedora.tg.utils.tg_absolute_url() where it was still appending the csrf_token. * Add an auth adapter for flask web apps to authenticate to FAS * New minimum version of python: requires python-2.5 or higher * Fix localization of login templates (laxathom)
* Fixes a problem with soprovidercsrf if the database doesn't set an encoding * Fixes an issue with the login templates if the template is being translated. * Added a lookup_email parameter to fedora.client.AccountSystem.gravatar_url() to allow generating gravaar urls without looking up email addresses in fas. * Fixed a bug in fedora.tg.utils.tg_absolute_url() where it was still appending the csrf_token. * Add an auth adapter for flask web apps to authenticate to FAS * New minimum version of python: requires python-2.5 or higher * Fix localization of login templates (laxathom)
* Added a lookup_email parameter to fedora.client.AccountSystem.gravatar_url() to allow generating gravaar urls without looking up email addresses in fas. * Fixed a bug in fedora.tg.utils.tg_absolute_url() where it was still appending the csrf_token. * Add an auth adapter for flask web apps to authenticate to FAS * New minimum version of python: requires python-2.5 or higher * Fix localization of login templates (laxathom)
* Fixes a problem with soprovidercsrf if the database doesn't set an encoding * Fixes an issue with the login templates if the template is being translated. * Added a lookup_email parameter to fedora.client.AccountSystem.gravatar_url() to allow generating gravaar urls without looking up email addresses in fas. * Fixed a bug in fedora.tg.utils.tg_absolute_url() where it was still appending the csrf_token. * Add an auth adapter for flask web apps to authenticate to FAS * New minimum version of python: requires python-2.5 or higher * Fix localization of login templates (laxathom)
* Added a lookup_email parameter to fedora.client.AccountSystem.gravatar_url() to allow generating gravaar urls without looking up email addresses in fas. * Fixed a bug in fedora.tg.utils.tg_absolute_url() where it was still appending the csrf_token. * Add an auth adapter for flask web apps to authenticate to FAS * New minimum version of python: requires python-2.5 or higher * Fix localization of login templates (laxathom)
* Fixes a problem with soprovidercsrf if the database doesn't set an encoding * Fixes an issue with the login templates if the template is being translated. * Added a lookup_email parameter to fedora.client.AccountSystem.gravatar_url() to allow generating gravaar urls without looking up email addresses in fas. * Fixed a bug in fedora.tg.utils.tg_absolute_url() where it was still appending the csrf_token. * Add an auth adapter for flask web apps to authenticate to FAS * New minimum version of python: requires python-2.5 or higher * Fix localization of login templates (laxathom)
-------------------------------------------------------------------------------- ChangeLog:
* Tue Feb 5 2013 Toshio Kuratomi toshio@fedoraproject.org - 0.3.32.3-1 - Upstream update to fix BodhiClient's knowledge of koji tags (ajax) * Mon Feb 4 2013 Toshio Kuratomi toshio@fedoraproject.org 0.3.32.2-1 - Upstream update fixing a bug interacting with python-requests * Thu Jan 24 2013 Toshio Kuratomi toshio@fedoraproject.org - 0.3.32.1-1 - Fix a documentation bug that slipped through * Wed Jan 23 2013 Ralph Bean rbean@redhat.com - 0.3.32-1 - Replace pyCurl with python-requests in ProxyClient. * Tue Jan 22 2013 Toshio Kuratomi toshio@fedoraproject.org - 0.3.31-1 - Minor bugfix release * Thu Jan 10 2013 Toshio Kuratomi toshio@fedoraproject.org - 0.3.30-1 - Make TG's loginForm and CSRF's text translated from tg-apps (laxathom). - Fix a bug in fedora.tg.utils.tg_absolute_url - Add a lookup email parameter to gravatar lookups - Add an auth provider for flask --------------------------------------------------------------------------------
================================================================================ seamonkey-2.15.2-1.el6 (FEDORA-EPEL-2013-0287) Web browser, e-mail, news, IRC client, HTML editor -------------------------------------------------------------------------------- Update Information:
Update to 2.15.2 -------------------------------------------------------------------------------- ChangeLog:
* Mon Feb 4 2013 Dmitry Butskoy Dmitry@Butskoy.name 2.15.2-1 - update to 2.15.2 - fix build with new system nspr-4.9.2 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #907813 - seamonkey-2.15.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=907813 --------------------------------------------------------------------------------
epel-devel@lists.fedoraproject.org