The following Fedora EPEL 6 Security updates need testing:
https://admin.fedoraproject.org/updates/chm2pdf-0.9.1-8.el6
https://admin.fedoraproject.org/updates/couchdb-1.0.2-1.el6
https://admin.fedoraproject.org/updates/erlang-R14B-02.1.el6
https://admin.fedoraproject.org/updates/libmodplug-0.8.8.2-1.el6
https://admin.fedoraproject.org/updates/proftpd-1.3.3e-1.el6
https://admin.fedoraproject.org/updates/python-feedparser-5.0.1-1.el6
https://admin.fedoraproject.org/updates/tmux-1.4-3.el6
The following builds have been pushed to Fedora EPEL 6 updates-testing
chm2pdf-0.9.1-8.el6
gdl-0.9.1-1.el6
maatkit-7332-1.el6
ntfs-3g-2011.4.12-1.el6
perl-IO-Multiplex-1.13-1.el6
python-rhev-0.9-1.20110316git.el6
rubygem-kwalify-0.7.2-3.el6
Details about builds:
================================================================================
chm2pdf-0.9.1-8.el6 (FEDORA-EPEL-2011-3071)
A tool to convert CHM files to PDF files
--------------------------------------------------------------------------------
Update Information:
This update fixes security bugs #474455 and #474457. The security issue is
about unsafe use of fixed temporary directories by chm2pdf.
This update will break --dontextract option. The option will not be shown in
the list of available options.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #474455 - CVE-2008-5298 chm2pdf insecure temporary file use
https://bugzilla.redhat.com/show_bug.cgi?id=474455
[ 2 ] Bug #474457 - CVE-2008-5299 chm2pdf insecure temporary file symlink flaw
https://bugzilla.redhat.com/show_bug.cgi?id=474457
--------------------------------------------------------------------------------
================================================================================
gdl-0.9.1-1.el6 (FEDORA-EPEL-2011-3080)
GNU Data Language
--------------------------------------------------------------------------------
================================================================================
maatkit-7332-1.el6 (FEDORA-EPEL-2011-3070)
Essential command-line utilities for MySQL
--------------------------------------------------------------------------------
Update Information:
Update to latest feature and bugfix release.
OBS: There are two non-backwards compatible changes since the previous el6
build (6457). Releasenotes for v6652 says:
Two non-backwards compatible changes in mk-table-checksum: --no-use-index is
now --nouse-index, and --chunk-index is only used if a chunkable column uses it.
http://code.google.com/p/maatkit/wiki/ReleaseNotesJuly2010
--------------------------------------------------------------------------------
ChangeLog:
* Sun Mar 13 2011 Sven Lankes <s...@lank.es> - 7332-1
- new upstream release
- remove buildroot tags from spec
- Filter out requires brought in by new rpm dependency generator
* Sun Feb 13 2011 Sven Lankes <s...@lank.es> - 7284-1
- new upstream release
* Tue Feb 8 2011 Fedora Release Engineering <rel-...@lists.fedoraproject.org>
- 6839-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
* Sun Aug 29 2010 Sven Lankes <s...@lank.es> - 6839-1
- new upstream release
--------------------------------------------------------------------------------
================================================================================
ntfs-3g-2011.4.12-1.el6 (FEDORA-EPEL-2011-3081)
Linux NTFS userspace driver
--------------------------------------------------------------------------------
Update Information:
Update to ntfs-3g 2011.4.12. This release also merged with ntfsprogs, which is
now a subpackage of ntfs-3g.
STABLE Version 2011.4.12 (April 10, 2011)
ntfs-3g: fixed possible wrong hole size when overwriting compressed data.
ntfs-3g: fixed listxattr() to environments with extended attributes.
ntfs-3g: fixed ENOSPC when making an index non-resident.
ntfs-3g: fixed partial mapping ahead of mapped runlist.
ntfs-3g: enabled forensic mounting (currently same as read-only).
ntfs-3g: expand an attribute without creating a hole.
ntfs-3g: improved appending data to a long hole.
ntfs-3g: deny direct modifications to metadata files.
ntfs-3g: option ‘acl’ to request the use of Posix ACLs.
ntfsclone: fixed reading old big-endian ntfsclone images.
ntfsclone: avoided writing beyond allocated variable.
ntfsclone: close volume and cleanup when exiting.
ntfsclone: new option not to clear the timestamps.
ntfsclone: sync created image before remounting.
ntfsclone: use a stream to produce aligned writes during image creation.
ntfsinfo: display times in UTC.
mkntfs: don’t store full bitmap and logfile in memory.
mkntfs: set a volume UUID if option -U.
mkntfs: fixed $MFT allocated size.
mkntfs: fixed allocated size of resident unnamed data.
ntfsfix: new option -n for no action.
ntfsfix: try alternate boot sector if cannot start up.
ntfsfix: check and fix the upcase table.
ntfsfix: try to fix file systems with incorrect size.
ntfsundelete: fixed a segfault.
ntfsresize: new option –info-mb-only.
ntfsresize: new option –check.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Apr 14 2011 Tom Callaway <s...@fedoraproject.org> - 2:2011.4.12-1
- update to 2011.4.12
- pickup ntfsprogs and obsolete the old separate packages
* Tue Feb 8 2011 Fedora Release Engineering <rel-...@lists.fedoraproject.org>
- 2:2011.1.15-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #696577 - ntfs-3g-2011.4.12 is available
https://bugzilla.redhat.com/show_bug.cgi?id=696577
[ 2 ] Bug #695531 - ntfsprogs is deprecated
https://bugzilla.redhat.com/show_bug.cgi?id=695531
--------------------------------------------------------------------------------
================================================================================
perl-IO-Multiplex-1.13-1.el6 (FEDORA-EPEL-2011-3077)
Manage IO on many file handles
--------------------------------------------------------------------------------
Update Information:
This update, to the current upstream release, fixes handling of outbuffer that
contains '0' (see https://rt.cpan.org/Public/Bug/Display.html?id=67458)
--------------------------------------------------------------------------------
ChangeLog:
* Fri Apr 15 2011 Paul Howarth <p...@city-fan.org> - 1.13-1
- Update to 1.13
- Fix handling of outbuf that contains '0' (CPAN RT#67458)
- Nobody else likes macros for commands
--------------------------------------------------------------------------------
================================================================================
python-rhev-0.9-1.20110316git.el6 (FEDORA-EPEL-2011-3073)
Python binding to Red Hat Enterprise Virtualization's REST API
--------------------------------------------------------------------------------
Update Information:
Python binding to Red Hat Enterprise Virtualization's REST API
--------------------------------------------------------------------------------
================================================================================
rubygem-kwalify-0.7.2-3.el6 (FEDORA-EPEL-2011-3078)
A parser, schema validator, and data-binding tool for YAML and JSON
--------------------------------------------------------------------------------
Update Information:
New package: rubygem-kwalify - A parser and schema validator for YAML and JSON
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #692466 - Review Request: rubygem-kwalify - A parser and schema
validator for YAML and JSON
https://bugzilla.redhat.com/show_bug.cgi?id=692466
--------------------------------------------------------------------------------
_______________________________________________
epel-devel-list mailing list
epel-devel-list@redhat.com
https://www.redhat.com/mailman/listinfo/epel-devel-list
