[SECURITY] Fedora Extras Update: mediawiki-1.8.3-7 [FE 5 6 devel]
- Fedora Update Notification FEDORA-EXTRAS-2007-005 - Product:Fedora Extras [5 6 devel] Name: mediawiki Version:1.8.3 Release:7 Summary:The PHP-based wiki software behind Wikipedia Description: MediaWiki is the software used for Wikipedia (http://www.wikipedia.org) and the other Wikimedia Foundation websites. Compared to other wikis, it has a wide range of features and support for high-traffic websites using multiple servers. - Update Information: An XSS injection vulnerability was located in the AJAX support module, affecting MediaWiki 1.6.x and up when the optional setting $wgUseAjax is enabled. There is no danger in the default configuration, with $wgUseAjax off. * Tue Jan 9 2007 Axel Thimm [EMAIL PROTECTED] - 1.8.3-7 - Update to 1.8.3. - Update fixes an XSS injection vulnerability in the AJAX module. - This update can be installed with the 'yum' update program. Use 'yum update package-name' at the command line. For more information, refer to 'Managing Software with yum,' available at http://fedora.redhat.com/docs/yum/ ___ Fedora-package-announce mailing list Fedora-package-announce@redhat.com http://www.redhat.com/mailman/listinfo/fedora-package-announce
Fedora Core 6 Update: autofs-5.0.1-0.rc3.2
- Fedora Update Notification FEDORA-2007-026 2007-01-10 - Product : Fedora Core 6 Name: autofs Version : 5.0.1 Release : 0.rc3.2 Summary : A tool for automatically mounting and unmounting filesystems. Description : autofs is a daemon which automatically mounts filesystems when you use them, and unmounts them later when you are not using them. This can include network filesystems, CD-ROMs, floppies, and so forth. - * Tue Jan 9 2007 Ian Kent [EMAIL PROTECTED] - 5.0.1-0.rc3.2 - consolidate to rc3. - fix typo in Fix typo in var when removing temp directory (bz 221847). - remove redundant rpath link option. - This update can be downloaded from: http://download.fedora.redhat.com/pub/fedora/linux/core/updates/6/ e8b14b3b5f8486629263d3ca5927792ee3c97009 SRPMS/autofs-5.0.1-0.rc3.2.src.rpm e8b14b3b5f8486629263d3ca5927792ee3c97009 noarch/autofs-5.0.1-0.rc3.2.src.rpm af74e07e87cb4120badcf0c83dd47403b1ff70a6 ppc/autofs-5.0.1-0.rc3.2.ppc.rpm 66538d319fa6b573ac2de4f6a258ad6b36093e9b ppc/debug/autofs-debuginfo-5.0.1-0.rc3.2.ppc.rpm 1ef3f7ab7d7ee29f66bd877f48bcd15464351804 x86_64/autofs-5.0.1-0.rc3.2.x86_64.rpm 47246e6d07cbb3560ce802c1473c8eed745830a5 x86_64/debug/autofs-debuginfo-5.0.1-0.rc3.2.x86_64.rpm f196647417e057d14a2a63d7d4c592f7b7fcded9 i386/debug/autofs-debuginfo-5.0.1-0.rc3.2.i386.rpm cb3ca6ef6dc15df2924f53287806fee8e88d183d i386/autofs-5.0.1-0.rc3.2.i386.rpm This update can be installed with the 'yum' update program. Use 'yum update package-name' at the command line. For more information, refer to 'Managing Software with yum,' available at http://fedora.redhat.com/docs/yum/. - ___ Fedora-package-announce mailing list Fedora-package-announce@redhat.com http://www.redhat.com/mailman/listinfo/fedora-package-announce
Fedora Core 6 Update: glibc-2.5-10.fc6
-
Fedora Update Notification
FEDORA-2007-1488
2007-01-10
-
Product : Fedora Core 6
Name: glibc
Version : 2.5
Release : 10.fc6
Summary : The GNU libc libraries.
Description :
The glibc package contains standard libraries which are used by
multiple programs on the system. In order to save disk space and
memory, as well as to make upgrading easier, common system code is
kept in one place and shared between programs. This particular package
contains the most important sets of shared libraries: the standard C
library and the standard math library. Without these two libraries, a
Linux system will not function.
-
* Fri Jan 5 2007 Jakub Jelinek [EMAIL PROTECTED] 2.5-10.fc6
- fix nss_compat +group handling (#220658)
* Fri Dec 22 2006 Jakub Jelinek [EMAIL PROTECTED] 2.5-9
- make sure pthread_kill doesn't return EINVAL even if
the target thread exits in between pthread_kill ESRCH check
and the actual tgkill syscall (#220420)
* Tue Dec 19 2006 Jakub Jelinek [EMAIL PROTECTED] 2.5-8
- fix setcontext on ppc32 (#219107)
- fix wide stdio after setvbuf (#217064, BZ#2337)
- fix {j,m}rand48{,_r} on 64-bit arches (BZ#3747)
- handle power6x AT_PLATFORM (#216970)
- fix a race condition in getXXbyYY_r (#219145)
- fix tst-pselect testcase
* Tue Dec 12 2006 Jakub Jelinek [EMAIL PROTECTED] 2.5-7
- fix hasmntopt (#218802)
- fix setusershell and getusershell (#218782)
- strtod fixes (BZ#3664, BZ#3673, BZ#3674)
- fix ttyname and ttyname_r with invalid file descriptor (#218276)
- fix nis_getnames if the default domain doesn't contain at least
two dots (#206483)
- fix memusage with realloc (x, 0)
* Wed Nov 29 2006 Jakub Jelinek [EMAIL PROTECTED] 2.5-6
- fix svc_run (#216834, BZ#3559)
- make sure there is consistent timestamp for /etc/ld.so.conf,
/etc/localtime and /etc/rpc between multilib glibc rpms
- fix :include: /etc/alias handling (#215572)
- update powerpc-cpu add-on to version 0.4 (#196319)
- add power6x subdir to /lib/ and /lib/rtkaio/,
link all libs from ../power6/* into them
- update nl, sv, pl and tr translations
- add mai_IN locale (#213415)
- fix es_ES LC_TIME (BZ#3320)
* Tue Nov 14 2006 Jakub Jelinek [EMAIL PROTECTED] 2.5-5
- remove bogus /usr/lib/librt.so.1 symlink (#213555)
- fix memusage (#213656)
- fix sysconf (_SC_LEVEL{2,3}_CACHE_SIZE) on Intel Core Duo
CPUs
- fix ld.so locking on dlopen failures (#213037, BZ#3429)
- fix libthread_db.so on TLS_DTV_AT_TP architectures (#215513)
- fix --inhibit-rpath (#214569)
- fix _r_debug content when prelinked ld.so executes
a program as its argument
- handle new tzdata format to cope with year 2037 transitions
on 64-bit architectures
- fix strxfrm
- fix i?86 floor and ceil inlines (BZ#3451)
* Thu Oct 19 2006 Jakub Jelinek [EMAIL PROTECTED] 2.5-4
- fix i?86 6 argument syscalls (e.g. splice)
- fix rtld minimal realloc (BZ#3352)
- fix RFC3484 getaddrinfo sorting according to rules 4 and 7 (BZ#3369)
- fix xdrmem_setpos (#211452)
-
This update can be downloaded from:
http://download.fedora.redhat.com/pub/fedora/linux/core/updates/6/
33dac8344166514c6c24bcb68ba77ed42f730b0c SRPMS/glibc-2.5-10.fc6.src.rpm
33dac8344166514c6c24bcb68ba77ed42f730b0c noarch/glibc-2.5-10.fc6.src.rpm
e748aceda1819add5a0dcfb8fb6ebd13326324cb ppc/glibc-2.5-10.fc6.ppc.rpm
ac9d1eb995da9db6dccafa1e129ca3560130ba44 ppc/glibc-common-2.5-10.fc6.ppc.rpm
963518090a91ac905d22c03c71c066ae1fb15cda ppc/nscd-2.5-10.fc6.ppc.rpm
6cbc33b259cc476e5ed9a4510ddc7e95c1b2e0e5
ppc/debug/glibc-debuginfo-2.5-10.fc6.ppc.rpm
704b179833b0244d1fe62ae6c62e2c8d110cf287 ppc/glibc-headers-2.5-10.fc6.ppc.rpm
927ab06174f5a4acee740351a3c00e3a99c057a6 ppc/glibc-utils-2.5-10.fc6.ppc.rpm
0bb4bc582f8e58f91419dd9fb1bb8c95486014e1 ppc/glibc-devel-2.5-10.fc6.ppc.rpm
ac8d498f13176b07d3a8ef6cce945e1df14cf6a2
x86_64/glibc-common-2.5-10.fc6.x86_64.rpm
8f37962df68d4095bfa0e05b376d279d894f0206
x86_64/debug/glibc-debuginfo-2.5-10.fc6.x86_64.rpm
411083e99cc4896f5e9e18d8eb3a6fa2d0c9002a
x86_64/glibc-headers-2.5-10.fc6.x86_64.rpm
cf6229eefff34b0d7ab7bf2d03cf2c01027112c9 x86_64/glibc-2.5-10.fc6.x86_64.rpm
0c317544ebf284bf8991c0f0c2cb8ffb19d77061 x86_64/nscd-2.5-10.fc6.x86_64.rpm
692d266f999150b1ab75dfc19e02ed532c5f7c89
x86_64/glibc-utils-2.5-10.fc6.x86_64.rpm
72f6fcb961b299a397e555454b323b88de2a63ca
x86_64/glibc-devel-2.5-10.fc6.x86_64.rpm
986269bf47c73e54304e582d670a2d90b8ebe23f i386/nscd-2.5-10.fc6.i386.rpm
c147d7f17531732a6aa15f63044c58b4e6fa46cb i386/glibc-devel-2.5-10.fc6.i386.rpm
6771e78033c82461d587d571cbccd80de85dadbc i386/glibc-utils-2.5-10.fc6.i386.rpm
e803c7d3c0c34b85f116364ff728203c577352a5 i386/glibc-2.5-10.fc6.i386.rpm
48366e73fae90d3f24551ad75fc26e27ca31b769
i386/debug/glibc-debuginfo-2.5-10.fc6.i386.rpm
[SECURITY] Fedora Core 5 Update: wget-1.10.2-3.3.fc5
- Fedora Update Notification FEDORA-2007-037 2007-01-10 - Product : Fedora Core 5 Name: wget Version : 1.10.2 Release : 3.3.fc5 Summary : A utility for retrieving files using the HTTP or FTP protocols. Description : GNU Wget is a file retrieval utility which can use either the HTTP or FTP protocols. Wget features include the ability to work in the background while you are logged out, recursive retrieval of directories, file name wildcard matching, remote file timestamp storage and comparison, use of Rest with FTP servers and Range with HTTP servers to retrieve files over slow or unstable connections, support for Proxy servers, and configurability. - * Wed Jan 10 2007 Karsten Hopp [EMAIL PROTECTED] 1.10.2-3.3 - add disttag - fix bugzilla #218211 - fix bugzilla #186195 - fix bugzilla #205723 - fix CVE-2006-6719 - This update can be downloaded from: http://download.fedora.redhat.com/pub/fedora/linux/core/updates/5/ 6505a543170df38a35a2da1269eb16055893dada SRPMS/wget-1.10.2-3.3.fc5.src.rpm 6505a543170df38a35a2da1269eb16055893dada noarch/wget-1.10.2-3.3.fc5.src.rpm 41b329c0967ef077024d15b2567d7e6984851c52 ppc/debug/wget-debuginfo-1.10.2-3.3.fc5.ppc.rpm 6423bd2f05d32b4bb54d913e493c1d76bbd6c8a1 ppc/wget-1.10.2-3.3.fc5.ppc.rpm e9d86ed19c4bee3ed79816f017a6f0cc3a67a78d x86_64/wget-1.10.2-3.3.fc5.x86_64.rpm 5879b6eb056fb775010da7f7c2e319e642b821b6 x86_64/debug/wget-debuginfo-1.10.2-3.3.fc5.x86_64.rpm f4cf6443b53667a354217fcdb7cc909eddef6ee5 i386/wget-1.10.2-3.3.fc5.i386.rpm 7548621893e8ad2d00bf8624dfb2173478b0dd67 i386/debug/wget-debuginfo-1.10.2-3.3.fc5.i386.rpm This update can be installed with the 'yum' update program. Use 'yum update package-name' at the command line. For more information, refer to 'Managing Software with yum,' available at http://fedora.redhat.com/docs/yum/. - ___ Fedora-package-announce mailing list Fedora-package-announce@redhat.com http://www.redhat.com/mailman/listinfo/fedora-package-announce
[SECURITY] Fedora Core 6 Update: wget-1.10.2-8.fc6.1
- Fedora Update Notification FEDORA-2007-043 2007-01-10 - Product : Fedora Core 6 Name: wget Version : 1.10.2 Release : 8.fc6.1 Summary : A utility for retrieving files using the HTTP or FTP protocols. Description : GNU Wget is a file retrieval utility which can use either the HTTP or FTP protocols. Wget features include the ability to work in the background while you are logged out, recursive retrieval of directories, file name wildcard matching, remote file timestamp storage and comparison, use of Rest with FTP servers and Range with HTTP servers to retrieve files over slow or unstable connections, support for Proxy servers, and configurability. - * Wed Jan 10 2007 Karsten Hopp [EMAIL PROTECTED] 1.10.2-8.1 - add disttag - fix bugzilla #186195 - fix CVE-2006-6719 - This update can be downloaded from: http://download.fedora.redhat.com/pub/fedora/linux/core/updates/6/ 0b622230831c89c11cf310b1f7386f614ac397f8 SRPMS/wget-1.10.2-8.fc6.1.src.rpm 0b622230831c89c11cf310b1f7386f614ac397f8 noarch/wget-1.10.2-8.fc6.1.src.rpm a83985f5907258e118706a9240d415fbfa3aa891 ppc/wget-1.10.2-8.fc6.1.ppc.rpm 394c036ea8a01d980859e2d8b0314fe0cb9cae05 ppc/debug/wget-debuginfo-1.10.2-8.fc6.1.ppc.rpm 567d17a54117bb65e8247d8a574c079b9ce4c5ab x86_64/debug/wget-debuginfo-1.10.2-8.fc6.1.x86_64.rpm 26b4420361856781e3823ef50460561edf5b7a85 x86_64/wget-1.10.2-8.fc6.1.x86_64.rpm 6260f35c9eeda8c4624d044b1367de1f7f2a3f23 i386/debug/wget-debuginfo-1.10.2-8.fc6.1.i386.rpm 566a4a96817a466e12c995af6643502cc0264bfb i386/wget-1.10.2-8.fc6.1.i386.rpm This update can be installed with the 'yum' update program. Use 'yum update package-name' at the command line. For more information, refer to 'Managing Software with yum,' available at http://fedora.redhat.com/docs/yum/. - ___ Fedora-package-announce mailing list Fedora-package-announce@redhat.com http://www.redhat.com/mailman/listinfo/fedora-package-announce
Fedora Core 6 Update: cpuspeed-1.2.1-1.43.fc6
- Fedora Update Notification FEDORA-2007-045 2007-01-10 - Product : Fedora Core 6 Name: cpuspeed Version : 1.2.1 Release : 1.43.fc6 Summary : CPU frequency adjusting daemon Description : cpuspeed is a daemon that dynamically changes the speed of your processor(s) depending upon its current workload if it is capable (needs Intel Speedstep, AMD PowerNow!, or similar support). - Update Information: This update contains numerous fixes for long-standing cpuspeed bugs, including a config file overhaul and enhanced support for in-kernel cpu frequency scaling methods, along with some actual documentation. - * Wed Jan 10 2007 Jarod Wilson [EMAIL PROTECTED] - Turn on ia64 builds (#216702) - Fix status on xen kernels - Manify 'cpuspeed --help' along with other details (#172655) - Tweak cpuspeed default thresholds (#147565) - Let non-centrino/powernow-k8 systems also use other validated governors (#219926) - Fix cpuspeed daemon options settings (#221829) - Fix status and condrestart for centrino/powernow-k8 (#219926) - Give feedback when loading/unloading a cpufreq governor - Rework config file and initscript to make it much easier for end-users to adjust frequency scaling setup (#151761) - Log start/stop events with useful info - Don't start on xen kernels (freq scaling not supported) * Thu Dec 14 2006 Jarod Wilson [EMAIL PROTECTED] - Set lock file for centrino/powernow-k8 so status indicates we do have scaling working - Fix up centrino/powernow-k8 stop function (#213999) - This update can be downloaded from: http://download.fedora.redhat.com/pub/fedora/linux/core/updates/6/ bdc6f00965089fb37b8f4dcb585238061baf7b03 SRPMS/cpuspeed-1.2.1-1.43.fc6.src.rpm bdc6f00965089fb37b8f4dcb585238061baf7b03 noarch/cpuspeed-1.2.1-1.43.fc6.src.rpm a953114b8fb0d3fa1d08257638d161627d0b703c ppc/debug/cpuspeed-debuginfo-1.2.1-1.43.fc6.ppc.rpm 689e52f747f281d8466f9ae13bf128785e22c567 ppc/cpuspeed-1.2.1-1.43.fc6.ppc.rpm 913d717e45d1c97ae336ab4e75c06e69e1514cdc x86_64/cpuspeed-1.2.1-1.43.fc6.x86_64.rpm ebe664e8d0b5321bc5118f54c9c661cba2afa031 x86_64/debug/cpuspeed-debuginfo-1.2.1-1.43.fc6.x86_64.rpm 3a8824baab216c2074266e0416dae63bdb3902a7 i386/debug/cpuspeed-debuginfo-1.2.1-1.43.fc6.i386.rpm 34c451f50cd1ce88086fbcbd4ca66db6371f83c4 i386/cpuspeed-1.2.1-1.43.fc6.i386.rpm This update can be installed with the 'yum' update program. Use 'yum update package-name' at the command line. For more information, refer to 'Managing Software with yum,' available at http://fedora.redhat.com/docs/yum/. - ___ Fedora-package-announce mailing list Fedora-package-announce@redhat.com http://www.redhat.com/mailman/listinfo/fedora-package-announce
