FAQ Search Today's Posts Mark Forums Read
» Video Reviews

» Linux Archive

Linux-archive is a website aiming to archive linux email lists and to make them easily accessible for linux users/developers.


» Sponsor

» Partners

» Sponsor

Go Back   Linux Archive > Redhat > EPEL Development

 
 
LinkBack Thread Tools
 
Old 06-27-2011, 05:48 PM
 
Default Fedora EPEL 6 updates-testing report

The following Fedora EPEL 6 Security updates need testing:

https://admin.fedoraproject.org/updates/asterisk-1.8.4.3-1.el6
https://admin.fedoraproject.org/updates/libmodplug-0.8.8.3-2.el6
https://admin.fedoraproject.org/updates/ejabberd-2.1.8-2.el6
https://admin.fedoraproject.org/updates/erlang-R14B-02.1.el6


The following builds have been pushed to Fedora EPEL 6 updates-testing

bdii-5.2.3-2.el6
dojo-1.6.1-1.el6
libvmime-0.9.2-0.1.20110626svn.el6
torque-2.5.5-3.el6
x509watch-0.5.0-1.el6

Details about builds:


================================================== ==============================
bdii-5.2.3-2.el6 (FEDORA-EPEL-2011-3553)
The Berkeley Database Information Index (BDII)
--------------------------------------------------------------------------------
Update Information:

Update BDII to version 5.2.3.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Jun 27 2011 Mattias Ellert <mattias.ellert@fysast.uu.se> - 5.2.3-2
- Revert upstream hack that breaks ARC infosys
* Mon Jun 13 2011 Mattias Ellert <mattias.ellert@fysast.uu.se> - 5.2.3-1
- New upstream version 5.2.3
- Drop patches accepted upstream: bdii-runuser.patch, bdii-context.patch,
bdii-default.patch, bdii-shadowerr.patch, bdii-sysconfig.patch
* Mon Feb 7 2011 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 5.1.13-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
--------------------------------------------------------------------------------


================================================== ==============================
dojo-1.6.1-1.el6 (FEDORA-EPEL-2011-3625)
Modular JavaScript toolkit
--------------------------------------------------------------------------------
Update Information:

Upgrade to latest upstream
--------------------------------------------------------------------------------
ChangeLog:

* Sun Jun 26 2011 Andrew Colin Kissa <andrew@topdog.za.net> - 1.6.1-1
- update to latest upstream
--------------------------------------------------------------------------------


================================================== ==============================
libvmime-0.9.2-0.1.20110626svn.el6 (FEDORA-EPEL-2011-3628)
Powerful library for MIME messages and Internet messaging services
--------------------------------------------------------------------------------
Update Information:

Following upstream changes are included:

- Use gnutls_priority_set_direct() instead of GNUTLS deprecated functions
- Fixed parsing of empty body parts (thanks to John van der Kamp, from Zarafa)
- Added missing libs in pkg-config file
- Added support for mailboxes that specify an (encoded) full name with an empty email address, set by a <> marker (Zarafa)
- Fixed messageBuilder to accept an empty mailbox group in 'To:' field, to allow for undisclosed-recipients (Zarafa)
- Alias for UTF-7 charset
- Correctly generate attachment names which are long and have high characters for Outlook Express (Zarafa)
- Fixed parsing of an attachment filename that is between 66 and 76 characters long (Zarafa)
- Fixed compilation issue following namespace change
- Requested email change
- Flush stateful data from iconv (thanks to John van der Kamp, Zarafa)
- Allow static linking in mingw-cross-env. Added 'iconv' and uses 'ws2_32' instead of 'winsock32' (upstream #3213487)
- Fixed upstream bug #3174903. Fixed word parsing when buffer does not end with NL. Fixed 'no encoding' when forced
- Fixed possible read to invalid memory location (thanks to Alexander Konovalov)
- Fixed possible infinite loop (thanks to John van der Kamp, Zarafa)
- Fixed boundary parsing (thanks to John van der Kamp, Zarafa)
- Fixed unit test after bug fix
- No extra space between ':' and '<' in MAIL FROM and RCPT TO. Wait for server response after QUIT and before closing connection
- Updated deprecated function
- Initialize and delete object
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #671585 - There are no builds for EPEL-5 and EPEL-6 (needed for Zarafa 7.0)
https://bugzilla.redhat.com/show_bug.cgi?id=671585
--------------------------------------------------------------------------------


================================================== ==============================
torque-2.5.5-3.el6 (FEDORA-EPEL-2011-3630)
Tera-scale Open-source Resource and QUEue manager
--------------------------------------------------------------------------------
Update Information:

Warning: Packages previous to torque-2.5.5-3.el6 within EPEL 6 contained the empty file /var/lib/torque/server_priv/nodes.
This file is a listing of the nodes within your torque cluster and as such it should survive intact with upgrades.
This file has now been removed from the package with torque-2.5.5-3.el6 but it is essential
that you backup and restore this file before and then after installing torque-3.0.1-4.fc15.
--------------------------------------------------------------------------------
ChangeLog:

* Sun Jun 26 2011 Steve Traylen <steve.traylen@cern.ch> - 2.5.5-3
- Removes nodes database file from package rhbz#716659
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #716659 - Torque updates Overwrite node.conf
https://bugzilla.redhat.com/show_bug.cgi?id=716659
--------------------------------------------------------------------------------


================================================== ==============================
x509watch-0.5.0-1.el6 (FEDORA-EPEL-2011-3631)
Simple tool to list expiring or expired X.509 certificates
--------------------------------------------------------------------------------
Update Information:

Upstream changes for 0.5.0:

- Work around Y2K38 problem on systems with older 32 bit perl
- Excluded new Root CA bundle "ca-bundle.trust.crt" at Fedora
- Updated the copy of the GNU GPLv2 to reflect new FSF address
--------------------------------------------------------------------------------
ChangeLog:

* Sun Jun 26 2011 Robert Scheck <robert@fedoraproject.org> 0.5.0-1
- Upgrade to 0.5.0 (#698080)
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #698080 - ca-bundle.trust.crt (TC TrustCenter Class 2 CA) is not valid since 2011-01-01
https://bugzilla.redhat.com/show_bug.cgi?id=698080
--------------------------------------------------------------------------------


_______________________________________________
epel-devel-list mailing list
epel-devel-list@redhat.com
https://www.redhat.com/mailman/listinfo/epel-devel-list
 
Old 06-28-2011, 03:47 PM
 
Default Fedora EPEL 6 updates-testing report

The following Fedora EPEL 6 Security updates need testing:

https://admin.fedoraproject.org/updates/asterisk-1.8.4.3-1.el6
https://admin.fedoraproject.org/updates/dokuwiki-0-0.8.20110525.a.el6
https://admin.fedoraproject.org/updates/libmodplug-0.8.8.3-2.el6
https://admin.fedoraproject.org/updates/ejabberd-2.1.8-2.el6
https://admin.fedoraproject.org/updates/erlang-R14B-02.1.el6


The following builds have been pushed to Fedora EPEL 6 updates-testing

bowtie-0.12.7-2.el6
ckermit-9.0-0.1.beta2.el6
dokuwiki-0-0.8.20110525.a.el6
fetch-crl-3.0.7-1.el6
mash-0.5.22-1.el6
mono-2.4.3.1-3.el6
pidgin-privacy-please-0.7.0-1.el6
rubygem-daemon_controller-0.2.6-1.el6
syslog-ng-3.2.4-2.el6
zarafa-7.0.0-1.el6

Details about builds:


================================================== ==============================
bowtie-0.12.7-2.el6 (FEDORA-EPEL-2011-3648)
An ultrafast, memory-efficient short read aligner
--------------------------------------------------------------------------------
Update Information:

First build of new package
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #627936 - Review Request: bowtie - An ultrafast, memory-efficient short read aligner
https://bugzilla.redhat.com/show_bug.cgi?id=627936
--------------------------------------------------------------------------------


================================================== ==============================
ckermit-9.0-0.1.beta2.el6 (FEDORA-EPEL-2011-3639)
The quintessential all-purpose communications program
--------------------------------------------------------------------------------
Update Information:

C-Kermit is a combined serial and network communication software
package offering a consistent, medium-independent, cross-platform
approach to connection establishment, terminal sessions, file transfer
and management, character-set translation, and automation of
communication tasks.
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #716402 - Review Request: ckermit - The quintessential all-purpose communications program
https://bugzilla.redhat.com/show_bug.cgi?id=716402
--------------------------------------------------------------------------------


================================================== ==============================
dokuwiki-0-0.8.20110525.a.el6 (FEDORA-EPEL-2011-3636)
Standards compliant simple to use wiki
--------------------------------------------------------------------------------
Update Information:

Fix: XSS in DokuWiki's RSS embedding mechanism
--------------------------------------------------------------------------------
ChangeLog:

* Tue Jun 28 2011 Andrew Colin Kissa <andrew@topdog.za.net> - 0-0.8.20110525.a
- Upgrade to latest upstream
- Fix Bugzilla bugs #717146, #717149, #717148, #715569
* Sun Mar 13 2011 Andrew Colin Kissa <andrew@topdog.za.net> - 0-0.7.20101107.a
- Fix geshi path
* Mon Jan 17 2011 Andrew Colin Kissa <andrew@topdog.za.net> - 0-0.6.20101107.a
- Fix selinux sub package
* Mon Jan 17 2011 Andrew Colin Kissa <andrew@topdog.za.net> - 0-0.5.20101107.a
- Upgrade to latest upstream
- Split package to create selinux package
- Fix Bugzilla bug #668386
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #717146 - dokuwiki: XSS in DokuWiki's RSS embedding mechanism
https://bugzilla.redhat.com/show_bug.cgi?id=717146
--------------------------------------------------------------------------------


================================================== ==============================
fetch-crl-3.0.7-1.el6 (FEDORA-EPEL-2011-3644)
Downloads Certificate Revocation Lists
--------------------------------------------------------------------------------
Update Information:

Changes in 3.0.7-1
----------------------
* CRL modofication time heuristic inadvertently modified file name templates (solves issue kindly reported by Elan Ruusamae)
* Expanded representation of tokenisation characters in strings to work around bug in file(1) (rhbz#699546, works around RedHat Bugzilla 699548)

--------------------------------------------------------------------------------
ChangeLog:

* Tue Jun 28 2011 Steve Traylen <steve.traylen@cern.ch> - 3.0.7-1
- Upstream to 3.0.7.
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #699548 - fetch-crl missing all perl dependencies on F15
https://bugzilla.redhat.com/show_bug.cgi?id=699548
--------------------------------------------------------------------------------


================================================== ==============================
mash-0.5.22-1.el6 (FEDORA-EPEL-2011-3640)
Koji buildsystem to yum repository converter
--------------------------------------------------------------------------------
Update Information:

This updates mash to the latest upstream version, which fixes assorted minor issues.
--------------------------------------------------------------------------------
ChangeLog:

* Sun Feb 27 2011 Bill Nottingham <notting@redhat.com> 0.5.22-1
- Add perl-libs whitelist
- fix arm dependency checks (<dennis@ausil.us>)
- fix key ordering
* Thu Feb 10 2011 Bill Nottingham <notting@redhat.com> 0.5.21-1
- update configs for F15 (<dennis@ausil.us>)
- add a knob for frobbing which ppc arch is preferred (<jwboyer@gmail.com>)
- fix gdk-pixbuf loader path (#649339)
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #649339 - Broken dependency: libopenraw-pixbuf-loader-0.0.8-2.fc14.i686 requires libopenraw = 0:0.0.8-2.fc14
https://bugzilla.redhat.com/show_bug.cgi?id=649339
--------------------------------------------------------------------------------


================================================== ==============================
mono-2.4.3.1-3.el6 (FEDORA-EPEL-2011-3635)
A .NET runtime environment
--------------------------------------------------------------------------------
Update Information:

Rebuilt for EPEL6
--------------------------------------------------------------------------------


================================================== ==============================
pidgin-privacy-please-0.7.0-1.el6 (FEDORA-EPEL-2011-3633)
Security and Privacy plugin for Pidgin
--------------------------------------------------------------------------------
Update Information:

Upstream 0.7.0
--------------------------------------------------------------------------------
ChangeLog:

* Mon Jun 27 2011 Guillaume Kulakowski <guillaume DOT kulakowski AT fedoraproject DOT org> - 0.7.0-1
- Upstream 0.7.0
* Sat Nov 6 2010 Guillaume Kulakowski <guillaume DOT kulakowski AT fedoraproject DOT org> - 0.6.4-2
- Fix build failed on RHEL5/6
* Sat Nov 6 2010 Guillaume Kulakowski <guillaume DOT kulakowski AT fedoraproject DOT org> - 0.6.4-1
- Upstream 0.6.4
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #716875 - pidgin-privacy-please-0.7.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=716875
--------------------------------------------------------------------------------


================================================== ==============================
rubygem-daemon_controller-0.2.6-1.el6 (FEDORA-EPEL-2011-3641)
A library for implementing daemon management capabilities
--------------------------------------------------------------------------------
Update Information:

rubygem-daemon_controller - new package
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #697780 - Review Request: rubygem-daemon_controller - A library for implementing daemon management capabilities
https://bugzilla.redhat.com/show_bug.cgi?id=697780
--------------------------------------------------------------------------------


================================================== ==============================
syslog-ng-3.2.4-2.el6 (FEDORA-EPEL-2011-3637)
Next-generation syslog server
--------------------------------------------------------------------------------
Update Information:

chain-hostnames regression
--------------------------------------------------------------------------------
ChangeLog:

* Mon Jun 27 2011 Jose Pedro Oliveira <jpo at di.uminho.pt> - 3.2.4-2
- Patch syslog-ng-3.2.4-chain-hostnames-processing.patch (#713965)
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #713965 - [regression] broken $HOST after upgrade to 3.2.4
https://bugzilla.redhat.com/show_bug.cgi?id=713965
--------------------------------------------------------------------------------


================================================== ==============================
zarafa-7.0.0-1.el6 (FEDORA-EPEL-2011-3642)
Open Source Edition of the Zarafa Collaboration Platform
--------------------------------------------------------------------------------
Update Information:

Zarafa Collaboration Platform 7.0.0 Final [27791]
=================================================

This is the final release of ZCP 7.0.0. Please read the release notes on this final release at http://doc.zarafa.com/7.0/Release_Notes/en-US/pdf/Zarafa_Collaboration_Platform-7.0-Release_Notes-en-US.pdf


Upgrade Notice
==============

IMPORTANT: Please read the upgrade section in the Administrator manual. Make sure you do a back-up before upgrading.

- This version includes an upgrade path for upgrades from 6.x to 7.0.0 with a specific Zarafa upgrade tool for the 6.40 to 7.00 migration.
- The upgrade will not be done automatically to 7.0.0 and will halt automatically at the start of the 7 upgrades (see /var/log/zarafa/server.log), the standard upgrade is available by starting the server with the --force-database-upgrade option. Servers that already run any 7.0.0 version will automatically be upgraded.
- The upgrade will optimize the performance on multiple areas but will cause a database volume increase of about 20%, this is expected.


General
=======

In this version Zarafa included the ability for IMAP and POP gateway access per user organized via zarafa-admin and the upgrade-tool for 6.40 to 7, the security audit logging introduced in 6.40.7 is included in 7.0.0 s well. The zarafa-upgrade tool is more efficient to use as it presents a progress of the upgrade and also is transaction safe, requires less resources on the database, and causes a lesser peak in database size required. To publish the zarafa cache statistics to terminal and replacing the former SIGUSR1 signal, the statistics can now only be displayed by using: zarafa-stats --system. The use of the SIGUSR2 signal was removed in favor of a new command in line with other administrative command structures, to clear the internal zarafa cache issue the command: zarafa-admin --clear-cache. In this release we did one graphical update on the Webaccess login screen.

- Feature: Improved logging.
- Feature: Reduced Imap optimized database size.
- Feature: IMAP Gateway rewrite.
- Feature: IMAP Gateway performance optimization via gateway.cfg and per user enable/disable imap feature.
- Feature: Improved ZCP wide Unicode support.
- Feature: Python language bindings for MAPI.


Backend
=======

- Feature #7250: User level gateway access control
- Feature #6947: Implement a Security-log
- Feature #7299: 640-700 migration full upgrade path tool
- Feature #7101: $Forward flag support for IMAP.
- Feature #7066: Support more password encryption types (sha).
- Feature #6464: New parameter for Zarafa-restore wanted (--not-after).
- Feature #6708: Imap namespace support.
- Fix #6203: Opening meeting request in ical will make it a not current meeting in WA/OL.
- Fix #6962: Server segfault when running this script from 6.40 client to 7.00 server.
- Fix #7260: Use indexer for all fields in ZCP 7.
- Fix #7294: Updating from 6.40.7 to 7.0 fails for php5 and python mapi packages.
- Fix #7296: Extension on the administrator manual.
- Fix #7297: Send mail from OpenOffice.org to WebAccess for windows & linux.
- Fix #7299: 640-700 Full upgrade path tool.
- Fix #7391: Zarafa-indexer depends on lynx. Lynx is not available in SLES(10/11/11.1) replaced by W3M (for all distros).
- Fix #7407: Zarafa-webaccess package in ubuntu repo doesn't contain fckeditor.
- Fix #7432: Reset counters on folder open.
- Fix #7443: Blackberry non working after migration to ZCP 7.
- Fix #7501: Tab order of input fields is wrong in ADS plugin tab.
- Fix #7521: Search via indexer on mailaddress is slow on large folders.
- Fix #7524: Segfault zarafa-indexer.
- Fix #7525: SQL Failed: Out of range value adjusted for column 'val_ulong'.
- Fix #7532: zarafa-msr python errors on 6.40.7 (destination server -> source server).
- Fix #7542: Zarafa daemons can have strange behaviour when config file couldn't be successfully read.
- Fix #7558: zarafa 7 doesn't work with loadsim.
- Fix #7567: Make conflict in python-mapi package for zarafa-python package.
- Fix #7568: Segfault zarafa-server 6.40.7 during ldap down.
- Fix #7569: Spooler should automatically quote fullname of sender, recipient to solve issues in some client with commas.
- Fix #7580: BES resolve breaks sometimes.
- Fix #7581: ResolveNames() broken in SWIG/python.
- Fix #7582: User/company/server settings in zarafa-indexer do not work.
- Fix #7585: Indexer leaks memory in streaming mode.
- Fix #7587: LMTP may not respond on error.
- Fix #7589: Spooler doesn't allow using SMTP port other than 25.
- Fix #7593: BES broken since r26972.
- Fix #7597: Segfault zarafa-gateway 7.00.
- Fix #7600: Installer should disable imap feature when gateway isn't selected to run.
- Fix #7601: Zarafa-admin segfaults on archiver users.
- Fix #7602: Install.sh script does not accept 7 serial.
- Fix #7604: Uninitialized memory in ECNamedProp::GetIDsFromNames.
- Fix #7606: The loglevel applied is the one from the config.
- Fix #7608: Moving stubbed message makes it impossible to destub.
- Fix #7610: Mysql detects deadlocks when inserting into the tproperties table.
- Fix #7611: Password correction is not used and is not saved by zarafa client.
- Fix #7612: Clean-archive.py fails when ran against user marc on spoonbill.
- Fix #7615: Indexer skips other users after a user with an error.
- Fix #7632: DAgent fallback delivery on mail "parsing failed: 0x80004005".
- Fix #7635: Man zarafa-admin is out of date.
- Fix #7637: Companies are not automatically created.
- Fix #7638: Zarafa-license will fail when some old base files are found in license directory.
- Fix #7641: Zarafa-admin --copyto-public doesn't work in multi-server setup.
- Fix #7642: Zarafa-msr packaging is wrong.
- Fix #7647: BES and loadsim let the server perform slow.
- Fix #7649: Zarafa-msr failes if no username is provided.
- Fix #7651: HTML to text misses enters to spaces.
- Fix #7658: PR_COUNTER_UNREAD out of range.
- Fix #7663: Mysql deadlock in deferredupdate table.
- Fix #7666: ZarafaAccount attribute is not part of zarafa-contact objectClass.
- Fix #7669: Outgoingqueue deadlocks in server.
- Fix #7671: Archiver can archive (copy) messages it just stubbed in a previous run.
- Fix #7672: Spooler does not process queue after receiving signal 1 (SIGHUP).
- Fix #7675: Zarafa-admin --list-ophans doesn't show additional information.
- Fix #7678: Sessions not cleaned up properly.
- Fix #7679: Add disclaimer for documentation in legal section.
- Fix #7682: Calendar sync on BES doesn't work with later version after 7.0.0RC1.
- Fix #7683: ZCP 7 will see 15: as subject_prefix.
- Fix #7686: Server may hang after TERM signal.
- Fix #7690: Lucene error causes assert in server in debug mode.
- Fix #7697: Indexer can loop on reading empty index file.
- Fix #7700: MROPS and MWOPS do not count streaming operations.
- Fix #7701: ProcessSubmitFlags is called outside the database transaction.
- Fix #4174: Let Zarafa-admin --details always show Mb and not Kb for the storesize
- Fix #6622: IMAP direct delete instead of delete at expunge
- Fix #6830: Outlook will not send unicode attachments
- Fix #7035: Debug option for dagent to save a RFC822 copy of message
- Fix #7061: autoupdater enable verbose logging by default
- Fix #7141: No read receipt sent after clicking ok and error message when marking mail read
- Fix #7166: Archiver does not process all messages on first run
- Fix #7185: Zarafa-server crash after SIGUSR1
- Fix #7186: OoO Installer: Displayed in Dutch on Win7 EN
- Fix #7202: Purge softdelete still fails at some customers after 6.40.5 update
- Fix #7215: Archiver will stop completely when an specific user doesn't have a store
- Fix #7217: Saving draft in webaccess and reopening via IMAP will show broken unicode characters
- Fix #7219: Zarafa-backup does not continue to next company after failing
- Fix #7224: Rename zarafaexchangeredirector.msi to zarafabesconnector.msi
- Fix #7225: Possible crash in backup tool if junkfolder entryid is missing
- Fix #7230: Archiver reports error when attaching from non-active store
- Fix #7240: Migrator crash selecting logpath
- Fix #7241: Create option in zarafa-admin or other tool to force offline resync from server
- Fix #7244: Outlook escapes some characters with & (I'd will become I&'d)
- Fix #7248: Default emailaddress in ADS tab is not visible, when you have a long emailaddress
- Fix #7260: Use indexer for all fields in ZCP 7
- Fix #7266: Client side ProeprtyRestrictions invert the LT and GT results
- Fix #7269: Meta ticket: comment changes, file makeup changes, build fixes
- Fix #7271: Webapp debian package does not work out-of-the-box
- Fix #7278: Gateway options in code and default config file out-of-sync
- Fix #7279: Subscription table leak
- Fix #7280: Object subscriptions leak
- Fix #7287: BES does not work with 7
- Fix #7289: Optionally don't migrate RSS folders
- Fix #7290: Migrator only shows stats of last migrated store
- Fix #7293: Email plus headers replicated in the body when using iPhone to connect to IMAP gateway
- Fix #7296: Extension on the administrator manual
- Fix #7298: Archiver license implementation
- Fix #7302: Indexer search results are not what is expected
- Fix #7303: ECArchiveAwareMessage may use uninitialized memory
- Fix #7308: Extend logrotate script with audit logging option
- Fix #7309: Counters wrong in outbox
- Fix #7310: IMAP renews messages in sync
- Fix #7317: Hebrew subject too short
- Fix #7318: Segfault in indexer on stubbed message
- Fix #7320: Segfault message unclear and double tracebacks possible
- Fix #7323: Warn user if automatic mapping will be created
- Fix #7339: Attachment of stubbed messages will not be showed in Webaccess
- Fix #7340: Permissions on store for non-active user can't be removed
- Fix #7342: Email to everyone will not be sent.
- Fix #7345: Speed up zarafa-admin --remove-store
- Fix #7347: Meeting requests from exchange 07 or 10 are shown tentative in the calendar when accepted
- Fix #7349: Remove storeid from properties table.
- Fix #7351: Indexer doesn't update record on change
- Fix #7352: Make archiver manual more clear with example setups
- Fix #7353: 6 -> 7 Upgrade can break when doing IMAP update
- Fix #7358: Make the client more rubust for out-of-memory situations
- Fix #7376: Zarafa7-upgrade script manual update
- Fix #7379: sendas message hangs in outbox, causing high loads on server.
- Fix #7392: Internal store subscriptions fail on delete
- Fix #7395: MSR bi-directional sync
- Fix #7396: Change message in license.log
- Fix #7404: Item counter increased with a detect on startup profile without a server connection
- Fix #7406: Migrator will hang on store migration when migrating EX2007 to Zarafa
- Fix #7409: Store contains sometimes huges amount of data in root folder, because of possible loop
- Fix #7411: Indexer segfault, unknown cause.
- Fix #7413: zarafa-admin --user-count show strange values with community version
- Fix #7414: Drop zarafa-cfgchecker from packaging as it's totally not up to date
- Fix #7415: Change upgrade warning in server when doing 7.0 upgrade
- Fix #7416: Task percentage set to 0 in cached mode, after updating the task in WebAccess
- Fix #7417: Group sorting on strings does not work correctly
- Fix #7423: Possible deadlocks and missing mutex
- Fix #7426: make optimise imap script honour user access imap setting
- Fix #7430: Zarafa7-upgrade fails on Centos 5.5 (RHEL5.5)
- Fix #7432: Reset counters on folder open
- Fix #7435: Segfault in rules
- Fix #7438: Pre-upgrade Messages not Read/Unread after upgrade 7.0.0
- Fix #7443: Blackberry non working after migration
- Fix #7447: Zarafa-dbg package depends on zarafa
- Fix #7451: Unable to open delegate store in Outlook or WebAccess.
- Fix #7452: Indexer died after upgrade to 7.0.0-26551
- Fix #7454: Sessions keep increasing but are not cleaned up
- Fix #7456: Licensed sigsev when stopping the proces
- Fix #7458: Server memleaks during testset
- Fix #7459: Outlook tasks category sorting broken
- Fix #7471: Remove 50% non-active limit, so you can have enough shared mailboxes when using the archiver
- Fix #7472: Archiver stops processing store on error
- Fix #7473: OutlookSpy IMAPIFolder button takes a long time to load
- Fix #7476: Zarafa-license dependency on zarafa-python
- Fix #7478: Segfault while creating tnef with unicode string > 8k
- Fix #7482: zarafa.ecf is not removed after update to Zarafa 7
- Fix #2296: Looping possible using forward rules pointing to the same users.
- Fix #3162: Saving mail in Thunderbird shows in WebAccess or outlook the tab "from".
- Fix #4392: Id in users table is limited to 32k records, this will be problem for some projects where we are busy with.
- Fix #5932: Z-Push: Newly created items that are send to the server in between batched of the initial sync are send back as adds by the server.
- Fix #6085: Wrong bouncemail after sending as without permission.
- Fix #6487: User creation does not trigger store creation (Unicode user name).
- Fix #6503: Spooler can deadlock. (rare occasion).
- Fix #6505: Zarafa not orphaning stores correctly with DB plugin and Hosted mode.
- Fix #6508: Task folder is added as default calendar folder in Ical.
- Fix #6573: Softdelete restore folder is broken.
- Fix #6950: Added more logging.
- Fix #6973: Z-Push: ICS exports immediately a remove after creating message.
- Fix #6993: Zarafa-admin man page says you can add email address to groups with --update-group.
- Fix #6994: Make note that scalix migration can only be done for premium users.
- Fix #6999: Migrator tool cannot migrate without a csv file.
- Fix #7009: Cannot create a user in company.
- Fix #7021: Add documentation on sync_gab_realtime option.
- Fix #7024: Change the HtmlToText parser which is faster and prevent buffer overflows.
- Fix #7026: Indexer segfault 7.0.0 beta 2. (rare occasion).
- Fix #7027: Include optimize-imap.py script in Zarafa-gateway package.
- Fix #7028: Zarafa-indexer still fails in certain cases when index_sync_stream is enabled.
- Fix #7030: Mac Ical cannot work with German folder names.
- Fix #7031: Initscripts include some non-existing files.
- Fix #7032: Install.sh contain some non-existing packages.
- Fix #7033: German stores names broken when language is set to de_DE in /etc/sysconfig/Zarafa.
- Fix #7037: Zarafa-fsck -u [user name] will segfault on 7.0.
- Fix #7038: Zarafa-server segmentation fault if locale isn't exist.
- Fix #7056: Mail store relocator for 6.40.x. (zarafa-msr in /usr/bin).
- Fix #7058: Upgrading from 6.40.4 to 6.40.5 breaks the rules.(rare occasion).
- Fix #7059: Migrator does not migrate attachments data of attachments of embedded messages.
- Fix #7063: Add supported password encryption types to documentation.
- Fix #7065: Add_imap_data option is not working when wizard rule is executed.
- Fix #7068: Indexer not used for searches in shared folders.
- Fix #7072: No error given when wrong options are in the admin.cfg.
- Fix #7073: Extend rpm specfile so the user_plugin_path is directly set correct.
- Fix #7075: Segfault Zarafa-admin while running --list-orphans in a multi server set-up.
- Fix #7078: Document location of Zarafa Drag&Drop firefox plugin.
- Fix #7079: Segfault Zarafa-indexer 6.40.5. (rare occasion).
- Fix #7098: Message can stay in the outbox with cached mode.
- Fix #7103: Cannot create cached profile if you do not have a server.cfg file.
- Fix #7109: Documentation about Zarafa-msr is missing that you need to install threadpool.
- Fix #7110: Scalix migration fails without a outlook connection to the scalix server.
- Fix #7111: Zarafa-msr will not migrate WebAccess settings and out of office settings.
- Fix #7114: Zarafa-ical segfault while renaming a folder.
- Fix #7116: WebAccess still uses the old destuber.
- Fix #7119: -w option does not give write access to the archived user.
- Fix #7120: No user name shown when a collision occurs with attaching a user to a archive store.
- Fix #7123: Libical can loop on faulty RRULE.
- Fix #7128: Zarafa-server segfault after ldap was down.
- Fix #7131: Allow search_base to be empty, so AD global catalog is supported.
- Fix #7134: Auto updater does not get the version from the server.
- Fix #7139: Install.sh for debian 6.
- Fix #7146: Zarafa-msr has no manpage.
- Fix #7147: Purge options are missing in the man page archiver.cfg.
- Fix #7152: Unable to run Zarafa-msr.
- Fix #7169: Memory usage is too high.
- Fix #7173: Username length check gateway too aggressive.
- Fix #7182: Zarafa.ini not placed in the correct directory.
- Fix #7183: Debian webaccess package unable to correctly upgrade after config file rename.
- Fix #7184: LDAP password encryption tags are case insensitive.
- Fix #7201: Zarafa 7.x still supply files in the /etc/default/ directory.
- Fix #7202: Purge softdelete still fails at some customers after 6.40.5 update.
- Fix #6729: Add possibility to search in delegate stores also with indexer.
- Fix #6828: Renamed Bes redirector to BES connector.
- Fix #6962: Server segfault when running script from 6.40 client to 7.00 server.
- Fix #6972: Zarafa-indexer does not index attachments when streaming is used.
- Fix #6981: Czech character is missing in IMAP via Mutt.
- Fix #6988: Dagent will give from time to time bounce emails with mailbox status error.
- Fix #6995: Crash in migration tool.
- Fix #6998: Crash migration tool.
- Fix #7007: Error in include configfile gives wrong error on screen.
- Fix #7009: Cannot create a user in multi tendency and db plugin.
- Fix #7010: Public store is not indexed by zarafa-indexer when index_sync_stream = no.
- Fix #6497: Adding public calendar over caldav will use users calendar or show all public calendars.
- Fix #6373: Additional warnings in documentation for server_socket configuration option for gateway and ical.
- Fix #5885: ADS: Mass update users results in error.
- Fix #5878: ADS: unable to send as a contact.
- Fix #6216: ADS: upgrading ADS plugin will not overwrite ZarafaADS.dll.
- Fix #6715: ADS: wrong version is shown, when running the ADS client.
- Fix #6205: All day event from exchange is not seen as all day event in Zarafa and visa versa.
- Fix #6316: Apple mail client tries to open empty folder.
- Fix #5907: Appointments made on the IPhone will duplicate after edit in ical.app.
- Fix #6472: Archiver is unable to resolve user names - error 0x80040700.
- Fix #6339: Archiver log reports unclear information.
- Fix #5983: Archiver shows crash but seems to work OK.
- Fix #6298: Attachment missing when receiving email in outlook.
- Fix #6483: Attachments do not show in WA and Outlook.
- Fix #6023: Attachments received from Exchange with Outlook 200 will corrupt PDF..
- Fix #6231: Auto updater broken for builds after 3 June 2010.
- Fix #6169: auto respond script contains non-compliant tests.
- Fix #6660: BES5 cannot view messages from other folders.
- Fix #6508: Task folder is added as default calendar folder in Ical.
- Fix #6829: Build script: Give msgfmt the -f option when compiling WebAccess translations.
- Fix #6564: Caldav crash.
- Fix #6333: Caldav does not work with Thunderbird 2. and lighting 0.9.
- Fix #5819: Caldav/delegate: all appointment are shown as private.
- Fix #5943: Caldav: accepting a MR in lightning does not set 'ResponseStatus' property..
- Fix #6199: Caldav: cannot add attendee to new meeting in ical.app.
- Fix #6739: Caldav: creating a MR in ical.app the attendees are not visible after refresh.
- Fix #6807: Caldav: editing a entry in Evolution creates duplicate events.
- Fix #6406: Caldav: libical goes into infinite loop due to appointment with abnormal time-zone struct.
- Fix #6327: Caldav: sending meet request external -> error in the log.
- Fix #5923: Caldav: suggestion list not visible in iCal.app..
- Fix #5922: Caldav: unknown value if free/busy can lead to crash.
- Fix #6276: Calendar items are sometimes missing on Blackberry device when using bes5.
- Fix #6507: Can delete the task folder via Ical.
- Fix #6514: can edit private appointments on the IPhone/Ipad.
- Fix #6872: Change build scripting to produce windows installers with versions in the installer names.
- Fix #6842: Changed the present perfect of 'backup' from 'backuped' to the right form: 'backed up'..
- Fix #6123: Creating item in evolution will directly result in unknown error.
- Fix #6545: DAgent fallback delivery on mail "parsing failed: 0x00040380".
- Fix #5994: DAgent man page suggests using rather user name than e-mail address as argument.
- Fix #6467: DAgent not accepting email if sender address starts with a space.
- Fix #6421: DAgent segfaults when mailing to a group.
- Fix #5948: Debian Zarafa package contains double files.
- Fix #6707: Default French name for task folder is: Tâche this does not work in lightning.
- Fix #6138: Delete emails are still found when using the indexer.
- Fix #6834: Documentation update on non-active /active users.
- Fix #6349: double Content-Type header found when downloading ical.
- Fix #6347: Downloading full ical calendar sends HTTP data in body.
- Fix #6449: Email cannot be parsed.
- Fix #6695: Error in Thunderbird after moving e-mail.
- Fix #6358: Error in Thunderbird when deleting newest mail in folder.
- Fix #6468: Exchange user is not shown as accepted in meeting request response mail.
- Fix #5935: Extra semicolon in php-ext/main.cpp.
- Fix #6651: Forwarding a signed will result in a bad header error in Amavis.
- Fix #6268: Gateway does not return '0 EXISTS' in empty folder.
- Fix #6145: Gateway logging slows performance.
- Fix #6251: Gateway returns conversion errors.
- Fix #6089: Gateway segfault and using a lot of memory..
- Fix #6485: Gateway segfaults after uni-code login.
- Fix #5875: Group addresses not parsed properly.
- Fix #6241: Header information wrong when option imap_always_generate = yes (Iphone).
- Fix #6318: IDLE doesn't work well with apple mail, and is looping some things.
- Fix #6704: Index file contain moved items twice.
- Fix #5903: Index service doesn't synchronize all stores.
- Fix #6032: Indexer should not index stubbed messages.
- Fix #5953: Indexer will segfault if you have contacts.
- Fix #6257: Install the IPM.Zarafa.Stub form when the addon is initialized.
- Fix #6880: Install.sh breaks on libvmime because of version.
- Fix #6321: Install.sh not working for Ubuntu 10.04.
- Fix #6067: Installer doesn't install indexer or checks if init script is available to enable.
- Fix #6116: IPhone: response meeting request is not updated.
- Fix #6346: Libicalmapi has some memleaks in freebusy code.
- Fix #6018: List email headers are missing when retrieving items via imap gateway.
- Fix #6178: Mail.app does not open signed emails.
- Fix #6016: Mails with inlined images lose the image after forward with mac mail.
- Fix #6239: Mapi_zarafa_get_group_by_name is totally useless.
- Fix #6180: Meeting request send from Outlook will add a R for enter when invitation is received via pop3..
- Fix #6891: Memleak in spooler, introduced in [15597].
- Fix #6697: Memleak zarafa-gateway.
- Fix #6591: Missing attachments in thunderbird. (part of image).
- Fix #6235: Missing spaces in the description body of a meeting.
- Fix #6789: Modification error after deleting calendar items in Sunbird/Thunderbird.
- Fix #5960: Meeting request of type 3rd Weekend/ 3rd weekday end is broken.
- Fix #6246: Multi Server ADS: ldap_server_address_attribute is set wrong in default config.
- Fix #6378: Need feedback after attaching an archive to a user.
- Fix #6070: No attendees shown it scheduling tab (attendee) if recurring meeting is accepted by delegate.
- Fix #6325: Opening a task will open a blanco task window..
- Fix #6341: Option --archive-server is not documented in the man-page.
- Fix #6084: Package description updates.
- Fix #6255: PHP XML extension needed when compiling PHP.
- Fix #6352: PHP-ext: apache segfaults when passing limit 0 to mapi_table_queryrows.
- Fix #6392: Please merge fix [19747] in libvmime for parsing non-RFC "Content-Transfer-Encoding: 8-bit".
- Fix #6256: Possible to set out of office on public folder.
- Fix #6526: Readable-index.pl doesn't work correclty with v:3 index files.
- Fix #5908: Received-SPF headers is not available when using IMAP gateway.
- Fix #6053: Recurring apointment that recurs on workdays is shown in weekends in Ical.
- Fix #6265: Recurring meeting request that recurs on the first Wednesday from exchange will arrive in Zarafa on every thursday.
- Fix #6075: Recurring meeting request that recurs on the first Wednesday of every month is receives on every first Tuesday.
- Fix #5822: Recurring meeting requests are seen as single meeting by blackberrys..
- Fix #6165: Recursive restore does not stop on error.
- Fix #6159: Request to change in sysconfig directory for indexer.
- Fix #6222: Restoring PT_UNICODE properties causes bad memory write.
- Fix #5902: RHEL package need to provide php-mapi.
- Fix #5985: Scans mailed directly from the scanner will not show attachment in mac mail.
- Fix #6008: Search on email domain doesn't return results when using the indexer.
- Fix #6360: Segfault in php mapi_zarafa_setuser call.
- Fix #6532: Segfault in unicode gateway.
- Fix #6765: Segfault zarafa-gateway 7.00.
- Fix #6784: Segfault zarafa-spooler 7.00.
- Fix #5809: Sendas does not work on Zarafa-contacts.
- Fix #6582: Sendas settings are updated after user is removed in ADS.
- Fix #6434: Specifying indexer's index_attachment_parser_max_cputime does not always work for parser.
- Fix #6503: Spooler can deadlock.
- Fix #6490: Spooler killed by signal 6 when user sends mail (Unicode).
- Fix #6672: spooler loops with 100% cpu when SMTP server is missing.
- Fix #5992: Spooler looses mail if SMTP server cannot be reached.
- Fix #5812: Spooler segfault when sending to nonexistent group.
- Fix #6114: Sppoler: crash in spooler while sending exceptions MR.
- Fix #6375: Sunbird + caldav doesn't show all entries.
- Fix #6192: Tasks are not marked complete in Mac Mail.
- Fix #6418: The gateway returns an error when the last item is deleted from a folder.
- Fix #6033: The indexer can mess up streamed attachments.
- Fix #5860: Time-zone information wrong for DST start/end on anything other than 'last sunday of month'.
- Fix #6746: Too Many Clauses error in zarafa-indexer.
- Fix #6233: Trac mail broken on Iphone (via imap).
- Fix #5838: Uninitialized local variable 'sStreamStat' used and lpszRawSMTP is NULL.
- Fix #6631: Unix socket is created with wrong permissions.
- Fix #6873: Update launcher crashes.
- Fix #6111: Meeting request responses from iPhone are not tracked.
- Fix #6334: Wrong archiver config file.
- Fix #6314: Zarafa Alias is shown in TO field instead of normal name.
- Fix #5993: Zarafa gateway won't stop after SIGTERM "Waiting for # processes to exit".
- Fix #5934: Zarafa plugin buttons.
- Fix #6803: Zarafa to pst migration will not include folder content.
- Fix #5998: Zarafa-admin -d (delete user) wrong explanation.
- Fix #6335: Zarafa-archiver -w option not possible.
- Fix #6630: Zarafa-gateway hostname in greeting.
- Fix #6488: Zarafa-ical segfaults after unicode login from lightning.
- Fix #6890: Zarafa-indexer segfault 7.0.0-24346.
- Fix #6719: Zarafa-server cannot contact license daemon when licensed is counting.
- Fix #6371: Zarafa-spooler tries to send delayed messages continuously.


Webaccess
=========

- Security #5939: Possible to execute shell commands with the WebAccess.
- Security #5938: PHP code execution possible in WebAccess.
- Feature #6015: Download email in .eml format.
- Feature #5697: Option to create task from mail in context menu.
- Feature #6549: Extra configuration option in the WebAccess to force Single Sign On to be off or on.
- Feature #5980: Configurable separator for dates. ". , and -" (language dependant).
- Feature #6619: Add configuration option to hide "Delete permanently" button in Restore items wizard.
- Feature #6185: Add configuration option in WA to disable Public Folder in folder list.
- Feature #5710: Make unread time in WebAccess configurable.
- Fix #7008: Entering data with a space in the address details of a contact will make it shift up.
- Fix #7104: proposed new time not shown in scheduling tab.
- Fix #7161: Recurrence is reset after editing the series without updating the time/date.
- Fix #7251: Webaccess no longer refreshes the message pane.
- Fix #7431: Archive icon switches back to unread while in the folder.
- Fix #7479: Can not add more than 20 attachments in webaccess.
- Fix #7516: Webaccess advanced find does not find categorized items.
- Fix #7562: Unable to edit contact from webaccess when double clicking the contact in the GAB.
- Fix #7564: Unable to open specific message in WA using Firefox only.
- Fix #7573: Meeting request not properly deleted by delegate.
- Fix #7590: Forwarding a signed email (sent by outlook) will only show original message.
- Fix #7625: Deleting a meeting request as attendee gives error.
- Fix #7633: When changing reading pane in webaccess to bottom inbox is not showing mails.
- Fix #7640: When forwarding an email with attachments the attachments are not sent.
- Fix #7652: Script error after changing mail format.
- Fix #7665: Rules wizard available on the public folders.
- Fix #7667: Create item in public calendar will duplicate if public folders are on the other server.
- Fix #7680: Open email after second search in Advanced find is not possible.
- Fix #5752: Extra added info in meeting request is broken with umlauten in Webaccess and Imap intertaction
- Fix #6620: Add option to only send copy of meeting request only to delegate and not to me
- Fix #6837: ReplyAll to mail with attachments, will include original attachments again
- Fix #6941: Download all attachments with unicode attachments will break the file names in the zip.
- Fix #7094: Meeting request is seen as recurrence after accepting a new proposed time
- Fix #7099: Removing an attendee in a meeting request does not send an update
- Fix #7163: Delegate user is listed as required attendee after accepting a meeting on behalf of
- Fix #7193: Extend webaccess with support for groups in Delegate tab
- Fix #7208: Reply on emails with attachments send from Pine will include attachment
- Fix #7214: Cannot mark task request as unread by clicking on icon
- Fix #7229: Settings screen breaks when changing color theme
- Fix #7233: base href is filtered out of webaccess emails with htmlfilter
- Fix #7239: Right click save as eml will cut off long subjects
- Fix #7247: An emailaddress with & is not allowed by webaccess
- Fix #7256: Adding groups in multi user calendar doesn't work at all
- Fix #7265: Reply of emails via Webaccess are always in Courier new
- Fix #7276: Recurring task will only show 9 of the 10 that are set
- Fix #7285: Make Webaccess IE9 compliant
- Fix #7292: using the business button for contact does not save the data correct
- Fix #7301: Task request details translations are always in english in webaccess
- Fix #7312: Member of is not working correct displayed in webaccess
- Fix #7322: Meeting request created in Webaccess are set to SMTP type instead of Zarafa
- Fix #7330: Auto select first item when selecting folder / starting Webaccess
- Fix #7334: Occurences disappear after changing the start and end time
- Fix #7336: Calendar does not load the week/month a subject-less appointment is in
- Fix #7343: Unread counter becomes unreadable after reading an email
- Fix #7350: Data:image tag not recognized in webaccess
- Fix #7366: Cancelling two occurrences breaks the startdate (and other stuff) from one occurrence.
- Fix #7378: Rename webaccess language item for Portugese
- Fix #7389: Stubbed message should have an alternate icon so people can recognise them
- Fix #7401: Tracking status will not be reset after modifying calendar item
- Fix #7402: When replying a message, first 2 lines begin with a space in HTML-mode
- Fix #7418: read receipt response missing details
- Fix #7424: Forwarded note with Unicode breaks in WebAccess
- Fix #7436: WebAccess setings missing for users after upgrade
- Fix #7441: List view of notes in webaccess does not show body content from pre migration
- Fix #7449: In WebAccess 7.0 webaccess window gets focus on new email
- Fix #7455: Cancel an all day meeting does not ask for updating attendees
- Fix #7462: meeting request busy status is changed for the organizer, after the attendee accepts the meeting
- Fix #4345: Language doesn't change.
- Fix #6837: ReplyAll to mail with attachments, will include original attachments again.
- Fix #6877: Set resource type automatically when sending a meeting request using WebAccess.
- Fix #6882: No error message when invalid date is set in Tasks.
- Fix #6969: Time input boxes should have better checking for valid dates.
- Fix #6990: Previous e-mail body lost in outlook when replying via webaccess.
- Fix #7001: Owner field in quick-create-task bar isn't cleared onFocus.
- Fix #7022: Meeting request occurrence can be changed by an attendee without permission from the organizer.
- Fix #7025: Creating a multiday appointment in workweek view (WA) -> one day short.
- Fix #7051: Sorting on categorie will not show any message.
- Fix #7055: Meeting request is shown as not current after accepting a new time proposal.
- Fix #7087: Make column order in WebAccess address book different, so it's more user friendly.
- Fix #7088: Copy item to the same folder via copy/move button does not work.
- Fix #7125: Close button in upload dialog is often outside the dialog.
- Fix #5962: Dropdown box Zoom in MUC now works in Safari and Chrome.
- Fix #6977: Opening cancellation message does not update appointment.
- Fix #6992: Using the edit as new option in your Sent Items twice does not work
- Fix #6905: "Remove from calendar" does not work if done from inbox delegate.
- Fix #6223: Accept/view proposal in propose new time message will pop-under the meeting window.
- Fix #6567: Accepting a new time proposal will create a new start and end time.
- Fix #6603: Accepting meeting request sent to yourself will not remove the invitation message.
- Fix #6646: Accepting task request is not increasing new task counter.
- Fix #6249: Address details are shown as undefined op IPhone.
- Fix #5682: After setting flag and moving to other mail and hit delete will delete the flagged message.
- Fix #6061: All day appointment from yesterday is shown on today in Today view.
- Fix #6383: All day event disappears when you change the busy type.
- Fix #5865: All day appointment is displayed in today view a week early.
- Fix #6071: Alt+S does not send the message in windows machines.
- Fix #6345: Assign task button available in assigned task but does nothing.
- Fix #6099: Attachment not opening correctly in the WebAccess when it is in an attached email.
- Fix #6431: Attachment not shown for attendee when it is added to a occurrence.
- Fix #6372: Attendee not saved in meeting requests.
- Fix #6588: Backslashes are discarded when sending plain-text body.
- Fix #6348: Bad HTML style can break on reply.
- Fix #6530: Birthday appointment has wrong syntax format in some languages.
- Fix #5768: Birthday appointment is not created from contact.
- Fix #6429: Body broken in reply/forward.
- Fix #5776: Broken auto-hyper linking in viewing plain text mail in WA.
- Fix #6397: Possible to make appointment out of sync when a combination of Caldav and the WebAccess is used.
- Fix #6629: Calendar item not visible after switching calendar views.
- Fix #5741: Can add user twice in Multi User Calendar groups.
- Fix #5769: Can add yourself to a meeting request making the appointment a attendee appointment.
- Fix #6359: Can create all day appointments by drag and drop the end date in the past.
- Fix #6105: Can send meeting request "on behalf of" with read only rights but it is not save to the shared calendar.
- Fix #6332: Can drag and drop mails in you root folder.
- Fix #6366: Can mark assigned task complete via quick edit as assigner.
- Fix #5891: Can not search in the sent items folder.
- Fix #5723: Can not send mail when "Close original message" option is on.
- Fix #6861: Can view private items with secretary permissions.
- Fix #6068: Cannot add Zarafa contacts without login name (from ADS) to recipients in WebAccess.
- Fix #6275: Cannot cancel meeting with resource.
- Fix #6839: Cannot click on the arrow for the drop-down box in search (script error).
- Fix #5817: Cannot create a 0 minute appointment.
- Fix #6266: Cannot log in to WebAccess because of Drag and drop code.
- Fix #5952: Cannot open shared store with full name.
- Fix #6838: Cannot open task request message with preview pane off or bottom view.
- Fix #6293: Cannot save task.
- Fix #5782: Cannot select subject text in reading pane in WA.
- Fix #6285: Cannot use date-picker in task.
- Fix #5747: Cannot walk over mails (with arrow keys) when clicked inside a mail and back.
- Fix #6450: Changing a occurrence to a all day event will set reminder to 18 hours (thus before the a earlier occurrence).
- Fix #6537: Changing appointment length deletes appointment.
- Fix #5787: Check name does not resolve contact in a appointment.
- Fix #5942: Check names does not work in meeting request.
- Fix #6754: Close button falls outside attachment dialogue Internet Explorer 7.
- Fix #5764: Column sizes are incorrect.
- Fix #5799: Compose mail pop-up loses focus on new mail notification in main window.
- Fix #6548: Configuration option in the WebAccess to disable html filter. (in the config.php).
- Fix #5901: Content of mail only shown in Outlook not in the WebAccess.
- Fix #6633: Convert Email to task breaks on umlauts in subject and owner name.
- Fix #5825: Counter not visible when delegate opens inbox.
- Fix #6529: Creating a recurrent appointment in WA will always trigger the zarafa-fsck with missing property.
- Fix #5627: Creating an appointment on 28th of March will result in an appointment on 28th and 29th of March.
- Fix #5652: Cursor does not start on To field when forwarding a message in Internet Explorer 8.
- Fix #6340: Decline task request does not remove the task request from you inbox.
- Fix #6477: Delegate store WebAccess results in blank page.
- Fix #6044: Delete email causes sub-folders in deleted folders to expand.
- Fix #6054: Deleting a meeting request will not result in question to send cancellation to organiser.
- Fix #6342: Deleting a task as assignee will result in a unknown item in you task list.
- Fix #6448: Deleting all day meeting request will not ask to update organizer.
- Fix #5842: Distribution lists with members which are not in the contacts can't be emailed from the WebAccess.
- Fix #6259: Double click in multi user calendar on a day will take date of today.
- Fix #6787: Download attachment with uni-code name from meeting request will result in garbled file name.
- Fix #6131: Drag and drop as attendee does move the meeting but not notify the organizer.
- Fix #5815: Drag and drop contacts from public folder is not a copy.
- Fix #5898: Drag and drop mail to favourite folder will make the favourite folder disappear.
- Fix #6414: Drag/drop of meeting request or response generates new email.
- Fix #6343: Due date in the past pop-up> Cancel does just continue.
- Fix #6783: Email selection is not correct after an email is deleted.
- Fix #6557: Extra info Short keys help.
- Fix #5883: Field chooser empty.
- Fix #5650: File as from outlook is not shown in the contact edit window WebAccess.
- Fix #5653: First enter is done twice in Internet Explorer 8 with auto signature.
- Fix #6556: Focus not on folder name when creating new folder.
- Fix #6555: Focus on body when creating a new note.
- Fix #5639: Folder tree expand is confused.
- Fix #6175: Forward a mail with attachment will break the attachment.
- Fix #6613: Forwarding email on behalf of will not contain attachment if (auto) saved as draft before sending.
- Fix #5824: Forwarding mails with "MS Words" will shown empty body.
- Fix #6600: Free busy of first appointment is shown when opening series of recurrence.
- Fix #6760: Free/busy status in resource is not updated after cancelling meeting.
- Fix #6547: From and to fields in Advanced Search windows.
- Fix #5823: From field shows up(in new mail) when changing a setting. (without having from addresses set).
- Fix #6457: Html mail is not shown due error in html filter.
- Fix #5870: Html tag in subject will alter body.
- Fix #6190: Ical response message not ok in WebAccess..
- Fix #6310: Icons response message different if response is from Outlook or the WebAccess.
- Fix #6732: Internet Explorer 8 cannot open signed mails in the preview pane.
- Fix #5871: Incorrect appointments are shown in the WebAccess.
- Fix #5756: Invite attendee's from list results in two users.
- Fix #6492: Iphone reminder: On date of event does not set the 0 minute reminder in WebAccess.
- Fix #6442: Issue language files if creating Zarafa from source.
- Fix #6128: Large location name will go out of the appointment box.
- Fix #6589: Limit the TO field in print view of email always to 1 line.
- Fix #5748: Make typing time more user friendly.
- Fix #6638: Meeting request delegation in WebAccess does not work correct (like Outlook).
- Fix #6645: Meeting request invitation mail is shown as: not yet implemented.
- Fix #6438: Meeting request is changed to appointment after cancelling the 'cancel invitation' option.
- Fix #6758: Meetings with resource will not ask to send update when deleting in the calendar (delete key, right click or x in menu bar).
- Fix #5882: Merge the latest langadmin .po files into trunk (Translations).
- Fix #5913: Message sent in WebAccess will give reminder in Outlook..
- Fix #6596: Message with read receipt keeps asking to send a response.
- Fix #5866: Modifying contact in the WebAccess will reverse the 'file as'.
- Fix #6073: Move mail without destination folder selected will make mail disappear.
- Fix #5699: In the Multi User Calendar created appointment in delegate calendar will ignore date changes.
- Fix #6904: Multiple meeting update messages are not marked 'Not Current' in delegates inbox.
- Fix #6734: Multi-upload gives script error in Internet Explorer 7.
- Fix #6020: New folder via New menu will not create new folder.
- Fix #6575: New items not visible when inbox has focus.
- Fix #6050: New>appointment will not take the day you are on in the date picker or selected time in calendar.
- Fix #5877: 'Next month' button in date picker is unusable in Internet Explorer 8. It moves when moving the mouse over it.
- Fix #6608: No error message when proposing a new time for an occurrence on an occupied day.
- Fix #6363: Not all info filled in in task assign message.
- Fix #6309: Ok button Global Address Book does nothing.
- Fix #5721: Opening a recurring meeting in Internet Explorer 8 will open them behind the current window.
- Fix #6585: Opening old response mail updates occurrence.
- Fix #6797: Option to disable multi flash upload (in the config.php).
- Fix #5862: Order rules is not honoured. (Added the stop processing rules option).
- Fix #5844: Page title does not match page loaded when using short cuts.
- Fix #6534: Private Calendar Item not respected in list-view in WebAccess.
- Fix #5611: Propose new time does not remove message from inbox.
- Fix #6039: Propose new time for a occurrence gives message that the meeting is removed.
- Fix #5719: Propose new time from appointment does not close window but does send message..
- Fix #6213: Propose new time in the proposal message does not function on a occurrence.
- Fix #5861: Propose new time of a occurrence does not work in outlook.
- Fix #5661: Propose new time response message does not contain accept/decline button.
- Fix #5720: Propose new time will duplicate after accepting the update.
- Fix #6368: Recurrent pattern box in the task is a little oversized.
- Fix #6240: Recurrence parsing wrong when attendee has changed.
- Fix #6370: Recurrent task request has no indication that it is recurring.
- Fix #6662: Recurring meetings one hour early between 25 October and 31 October.
- Fix #6087: Reminder for all day events is 15 minutes.
- Fix #6277: Reminder will come on old time when appointment is moved.
- Fix #6811: Reminders come sometimes on strange times (way in the past, due not dismissed reminders).
- Fix #6637: Remove an accepted meeting request without sending an update can't be done.
- Fix #6173: Remove pass by reference in fore ach loop.
- Fix #6731: Remove recurrent item dialogue contains two vague bullet.
- Fix #6049: Remove recurrent pattern in the WebAccess which do not remove mapi property "Type recurrence".
- Fix #5671: Removing auto signature moves cursor to bottom of message.
- Fix #6509: Reply on a email with email attached will include the attached mail.
- Fix #5974: Reply to all an email from Sent Items folder which is sendas another account results in empty To address.
- Fix #5641: Reply to all on email send to group is not working.
- Fix #5688: Reply/forward should use normalized subject.
- Fix #5955: Resend and edit already sent emails.
- Fix #6313: Response buttons come on scheduling tab if meeting request is made in shared calendar.
- Fix #5770: Response mail does not update the response in appointment if opened by delegate.
- Fix #5783: Right click>Choose in Global address book does nothing.
- Fix #6092: Rows change height on overflow.
- Fix #5855: Rules do not work on groups with high character.
- Fix #5999: Save draft in outlook with a incorrect email address. Open draft in the WebAccess will give error.
- Fix #5757: Schedule tab breaks typed attendees.
- Fix #6587: Scheduling tab is blank when inviting a external contact.
- Fix #5925: Script error when clicking on expand folder [+] when creating new folder.
- Fix #5779: Scroll week or months in the calender is annoying.
- Fix #6581: Search combo does not drop down in Chrome/Safari.
- Fix #5970: Search speed in the WebAccess not as expected.
- Fix #5846: Selection of email lost after arrival of new mail.
- Fix #6137: Send mail button does not work if contact is made and Full name button is used to fill the full name.
- Fix #6319: Sending mails to groups fails in WebAccess.
- Fix #6552: Set focus on subject when creating new calendar item in the WebAccess.
- Fix #6344: Setting a task to complete will not send completion message.
- Fix #6369: Setting due date of task request on today will give pop-up due date is in the past.
- Fix #6808: Setting to enable/disable multi-upload feature.
- Fix #6506: Signature drops down two lines in new mail on the first enter done in the body.
- Fix #5766: Sorting via columns in distribution list will duplicate the users.
- Fix #6736: Space for the new flash upload text is not enough for all languages.
- Fix #6322: Strange bar shown behind email address and attachments.
- Fix #6866: Subject field is cut off way to early.
- Fix #5806: Subject of task partially lost on quick edit in WebAccess.
- Fix #5788: Switching to scheduling tab and back to appointment tab give organizer functions to attendee.
- Fix #6484: Switching weeks in you calendar with arrow top right will show empty calendar if you have all day event.
- Fix #6476: Task can be set to 'in progress' and still be seen as 100% complete.
- Fix #5804: Task request in the WebAccess only readable in Reading Pane, not in pop-up.
- Fix #6665: Task request messages remains unread if read in preview pane.
- Fix #6365: Task request response messages are not marked read after reading them.
- Fix #6777: Task request with attachment can not open attachment.
- Fix #6302: Task start date will change due date.
- Fix #6041 : Email does not show body in the WebAccess.
- Fix #6148: Time zone will create a one hour difference if you change appointment to recurring (BRT -3)..
- Fix #6063: TO field not in print.
- Fix #5811: Today view WebAccess does not work when a folder (inbox) contains a high Character.
- Fix #6664: Translate HTTP Error Message.
- Fix #5847: Trunk with version 7 gives mapi error in the WebAccess.
- Fix #6430: Unable to edit draft.
- Fix #6601: Unable to enlarge a recurrence meeting request.
- Fix #5722: Uncheck the All day check box will take time 00:00 to 00:00 and is not shown in calendar.
- Fix #6286: Upload multiple attachments can be interrupted by closing attachment window.
- Fix #5792: View all proposals does not show current time correctly.
- Fix #6444: View all proposals does not work as delegate.
- Fix #5816: Propose new time for an occurrence breaks recipients in organizer's meeting item.
- Fix #6671: Contact birthday: You must specify a valid date (if a date prior 1990 was given).
- Fix #6120: Delegates window scroll bar is shown when not needed and to big.
- Fix #5715: Not able to select a note.
- Fix #5717: Start of workday does not work with 1/2 hours.
- Fix #6153: Accepting new time proposal creates a different time.
- Fix #5828: After changing in the WebAccess you cannot accept an occurrence in Outlook.
- Fix #6242: After Using Send/receive button the first message is not selectable.
- Fix #5967: All day event disappeared in day view.
- Fix #5777: All day events broken.
- Fix #6518: Allow mail dialogue to be opened directly after login.
- Fix #6134: Appointment is shown as meeting request after sending an empty 'TO field'.
- Fix #6541: Attendee lost in occurrence.
- Fix #5734: Auto complete/ suggestions go wrong when making meeting requests.
- Fix #6171: Calendar not refreshed after drag and drop an appointment.
- Fix #5991: Calendar week/month view does not create new appointment on double click.
- Fix #5856: Cannot create new sub-folders.
- Fix #6083: Cannot delete occurrence.
- Fix #5622: Cannot respond to meeting requests.
- Fix #5944: Create Appointment, change end time, change start time, corrupt end time.
- Fix #6030: Creating a recurrence, non-editable space is added.
- Fix #5805: Declining occurrence shows time as 'nan:nan'.
- Fix #6699: Delete delegated meeting request asks for series or occurrence deletion.
- Fix #6086: Deleting a multi day appointment will disappear completely after a refresh.
- Fix #5892: Deleting items takes longer when using the context menu..
- Fix #5852: Deleting MR with attendee will ask for an update.
- Fix #6197: Dhtml is undefined when opening a dialogue.
- Fix #6539: Disabling Out of Office discards the set Out of Office message..
- Fix #6118: Does not update response of MR accepted from lightning..
- Fix #6423: Dots show up when opening dialogue for recurring appointment.
- Fix #6394: Double recipient (with out semicolon) breaks update (after new time proposal) by organizer.
- Fix #6540: Drag email to task button loses email.
- Fix #5951: Exception on recurring appointment, send meeting request, response not processed.
- Fix #6806: Flash Multi-upload has a typographical error in an error message.
- Fix #6196: Folder tree in rules is not shown as expanded.
- Fix #6000: Forwarding quotes the original message (like with reply).
- Fix #6027: Free/busy not updated correctly.
- Fix #6410: High characters broken in meeting request response mail.
- Fix #5759: If using the French language, menu actions with right click will go out of context.
- Fix #5981: In-lining an image will leave a semicolon behind.
- Fix #6578: Items can be moved to root folder.
- Fix #6154: JS-error when opening a dialogue.
- Fix #6486: Login only after +/- 8 attempts (Unicode).
- Fix #6568: Mailto links in header broken.
- Fix #6107: MAPI mapping for 'department' is incorrect.
- Fix #5761: Meeting request 'don't send a response' option still sends a response.
- Fix #5725: Meeting request is shown as conflict when it is not.
- Fix #6480: Meeting request items are not opened in a readmail dialogue from inbox folder.
- Fix #5767: Meeting request: In scheduling tab, user isn't automatically shown as required attendee.
- Fix #6743: Meeting request containing Korean/Hebrew attachment can not be send.
- Fix #6853: Meeting request with resource doesn't set location field with resource.
- Fix #5853: Multiple email addresses in 'TO field' after deleting meeting request.
- Fix #6542: Multi-select in Advanced Find dialogue not possible.
- Fix #6595: New appointment is always set to 'today'. when double click in calendar to create it.
- Fix #6882: No error message when invalid date is set in Tasks.
- Fix #5890: Organizer is shown as required attendee in meeting request.
- Fix #6060: Possible to duplicate categories in distribution list.
- Fix #6097: Possible to propose new time for recurrence meeting request.
- Fix #5790: propose new time is shown as 'imput screen'.
- Fix #6892: Propose new time message holds original time.
- Fix #5738: Propose new time sent old time.
- Fix #6057: Recurrence is not removed after removing recurrence button.
- Fix #5737: Recurrence meeting request icon is missing in deleted items.
- Fix #5771: Recurrence meeting request shows time of previous changed appointment.
- Fix #6038: Recurrence start date uses today's date instead of the given date.
- Fix #6845: Right mouse click in the Global addressbok triggers JS error..
- Fix #6869: Search doesn't show sub-folders checkbox when inbox is not selected..
- Fix #6559: Selecting an item will produce lots of error messages.
- Fix #6166: Semicolon missing after updating a meeting request.
- Fix #5888: Send mail to local contact doesn't show email address.
- Fix #5739: Set property 'PidLidStartRecurrenceTime' for exception meeting request.
- Fix #5864: Shared inbox doesn't show bold number when new mail is received.
- Fix #5830: Suggestion list does not add new emails in history when sending a meeting request.
- Fix #6206: Switching from scheduling tab to appointment tab in meeting request will give the organiser attendee functions.
- Fix #6034: Two recurring whole day occurrences cannot be next to each other.
- Fix #6351: TO and CC header does not size up to three lines.
- Fix #5673: Typographical error in meeting request class.
- Fix #6232: Typographical error and a little weird sentence.
- Fix #6644: Unable to accept/decline task request when it contains an attachment.
- Fix #6211: Unable to close shared folders.
- Fix #6194: Unable to create a new email.
- Fix #6195: Unable to create new appointments.
- Fix #6456: Unable to drag distribution lists to a public folder.
- Fix #5839: Unable to edit task inline after adding a task through the quick-add bar.
- Fix #6396: Unable to open WebAccess folders in Internet Explorer 6.
- Fix #6562: Unable to send a mail using shortkey ALT + S.
- Fix #6106: Unnecessary IF-statement in createmailitemmodule.
- Fix #5850: When recurring appointment end time is set to 0:00, start time is changing to 23:30.
- Fix #5746: Zero duration appointment is not visible in month , 7week and one day view.
- Fix #5857: Want to reply on two email, but the reply wants to open in the same dialogue.
- Fix #6639: WebAccess adds escaping character opening email-address with full name between quotes.
- Fix #6670: When deleting a appointment the pop-up notify attendees does not cancel action on cancel.
- Fix #6043: When using the keyboard arrows to walk through your task the folder list scrollbar will also move.
- Fix #6747: Private items not respected in list view..
- Fix #6136: Zarafa-WebAccess pasting from word causes defect.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Jun 27 2011 Robert Scheck <robert@fedoraproject.org> 7.0.0-1
- Upgrade to 7.0.0
--------------------------------------------------------------------------------


_______________________________________________
epel-devel-list mailing list
epel-devel-list@redhat.com
https://www.redhat.com/mailman/listinfo
 
Old 06-29-2011, 06:26 PM
 
Default Fedora EPEL 6 updates-testing report

The following Fedora EPEL 6 Security updates need testing:

https://admin.fedoraproject.org/updates/asterisk-1.8.4.3-1.el6
https://admin.fedoraproject.org/updates/dokuwiki-0-0.8.20110525.a.el6
https://admin.fedoraproject.org/updates/mingw32-libpng-1.2.37-3.el6
https://admin.fedoraproject.org/updates/libpng10-1.0.54-3.el6
https://admin.fedoraproject.org/updates/libmodplug-0.8.8.3-2.el6
https://admin.fedoraproject.org/updates/ejabberd-2.1.8-2.el6
https://admin.fedoraproject.org/updates/erlang-R14B-02.1.el6


The following builds have been pushed to Fedora EPEL 6 updates-testing

389-admin-1.1.19-1.el6
389-dsgw-1.1.7-1.el6
R-qtl-1.21.2-1.el6
etckeeper-0.55-1.el6
libpng10-1.0.54-3.el6
mingw32-libpng-1.2.37-3.el6
packagedb-cli-1.0.0-3.el6
php-voms-admin-0.6-1.el6
python-argparse-1.2.1-2.el6
xrootd-3.0.4-2.el6

Details about builds:


================================================== ==============================
389-admin-1.1.19-1.el6 (FEDORA-EPEL-2011-3669)
389 Administration Server (admin)
--------------------------------------------------------------------------------
Update Information:

look for separate openldap ldif library
skip rebranding current brand - add support for different skins
The 1.1.17 release
--------------------------------------------------------------------------------
ChangeLog:

* Tue Jun 28 2011 Rich Megginson <rmeggins@redhat.com> - 1.1.19-1
- look for separate openldap ldif library
* Tue Jun 21 2011 Rich Megginson <rmeggins@redhat.com> - 1.1.18-1
- skip rebranding current brand
- support for skins
* Fri May 13 2011 Rich Megginson <rmeggins@redhat.com> - 1.1.17-1
- 1.1.17
- support "in-place" upgrade and rebranding from Red Hat to 389
- many fixes for coverity issues
* Tue Mar 29 2011 Rich Megginson <rmeggins@redhat.com> - 1.1.16-1
- 389-admin-1.1.16
- Bug 476925 - Admin Server: Do not allow 8-bit passwords for the admin user
- Bug 614690 - Don't use exec to call genrb
- Bug 158926 - Unable to install CA certificate when using
- hardware token ( LunaSA )
- Bug 211296 - Clean up all HTML pages (Admin Express, Repl Monitor, etc)
* Wed Feb 23 2011 Rich Megginson <rmeggins@redhat.com> - 1.1.15-1
- 1.1.15 release - git tag 389-admin-1.1.15
- Bug 493424 - remove unneeded modules for admin server apache config
- Bug 618897 - Wrong permissions when creating instance from Console
- Bug 672468 - Don't use empty path elements in LD_LIBRARY_PATH
- Bug 245278 - Changing to a password with a single quote does not work
- Bug 604881 - admin server log files have incorrect permissions/ownerships
- Bug 387981 - plain files can be chosen on the Restore Directory dialog
- Bug 668950 - Add posix group support to Console
- Bug 618858 - move start-ds-admin env file into main admin server config path
- Bug 616260 - libds-admin-serv linking fails due to unresolved link-time depe
ndencies
- start-ds-admin.in -- replaced "return 1" with "exit 1"
- Bug 151705 - Need to update Console Cipher Preferences with new ciphers
- Bug 470576 - Migration could do addition checks before commiting actions
* Wed Jan 5 2011 Rich Megginson <rmeggins@redhat.com> - 1.1.14-1
- 1.1.14 release
- Bug 664671 - Admin server segfault when full SSL access (http+ldap+console)
required
- Bug 638511 - dirsrv-admin crashes at startup with SELinux enabled
* Mon Nov 29 2010 Rich Megginson <rmeggins@redhat.com> - 1.1.13-2
- fix Conflicts for selinux policy
* Tue Nov 23 2010 Rich Megginson <rmeggins@redhat.com> - 1.1.13-1
- This is the final 1.1.13 release
- git tag 389-admin-1.1.13
- Bug 656441 - Missing library path entry causes LD_PRELOAD error
- setup-ds-admin.pl -u exits with ServerAdminID and as_uid related error
* Thu Nov 18 2010 Nathan Kinder <nkinder@redhat.com> - 1.1.12-2
- This is the final 1.1.12 release
- git tag 389-admin-1.1.12
- Corrected conflict version for selinux-policy
* Fri Nov 12 2010 Nathan Kinder <nkinder@redhat.com> - 1.1.1.12-1
- This is the final 1.1.12 release
- git tag 389-admin-1.1.12
* Fri Nov 12 2010 Nathan Kinder <nkinder@redhat.com> - 1.1.1.12-1
- Bug 648949 - Merge dirsrv and dirsrv-admin policy modules into base policy
* Tue Oct 26 2010 Rich Megginson <rmeggins@redhat.com> - 1.1.12-0.2.a2
- fix mozldap build breakage
* Tue Sep 28 2010 Rich Megginson <rmeggins@redhat.com> - 1.1.12-0.1.a1
- This is the 1.1.12 alpha 1 release - with openldap support
* Thu Aug 26 2010 Rich Megginson <rmeggins@redhat.com> - 1.1.11-1
- This is the final 1.1.11 release
* Wed Aug 4 2010 Rich Megginson <rmeggins@redhat.com> - 1.1.11-0.6.rc2
- 1.1.11.rc2 release
- git tag 389-admin-1.1.11.rc2
- Bug 594745 - Get rid of dirsrv_lib_t label
--------------------------------------------------------------------------------


================================================== ==============================
389-dsgw-1.1.7-1.el6 (FEDORA-EPEL-2011-3663)
389 Directory Server Gateway (dsgw)
--------------------------------------------------------------------------------
Update Information:

look for separate openldap ldif library
The 1.1.6 release
--------------------------------------------------------------------------------
ChangeLog:

* Tue Jun 28 2011 Rich Megginson <rmeggins@redhat.com> - 1.1.7-1
- look for separate openldap ldif library
- remove old fedora-ds cruft
* Fri Oct 8 2010 Rich Megginson <rmeggins@redhat.com> - 1.1.6-1
- bump version to 1.1.6
- support for openldap
--------------------------------------------------------------------------------


================================================== ==============================
R-qtl-1.21.2-1.el6 (FEDORA-EPEL-2011-3667)
Tools for analyzing QTL experiments
--------------------------------------------------------------------------------
Update Information:

New version from http://www.rqtl.org/
--------------------------------------------------------------------------------
ChangeLog:

* Wed Jun 29 2011 Mattias Ellert <mattias.ellert@fysast.uu.se> - 1.21.2-1
- New upstream release
* Mon Feb 7 2011 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.19.20-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
--------------------------------------------------------------------------------


================================================== ==============================
etckeeper-0.55-1.el6 (FEDORA-EPEL-2011-3668)
Store /etc in a SCM system (git, mercurial, bzr or darcs)
--------------------------------------------------------------------------------
Update Information:

Update to 0.55, a bugfix version. From the upstream changelog:

* Avoid being noisy in post-install after automatic yum updates. (Tuomo Soini)
* Ignore FHS violating prelink.cache and openvpn-status.log.
* Ignore *.LOCK files, as used by selinux policies.
* Add AVOID_SPECIAL_FILE_WARNING to config file, and set it in cron job to avoid daily noise. (gulikoza)

Also, the patch to fix error propagation to yum, which makes AVOID_COMMIT_BEFORE_INSTALL work (bz 709487) has been applied upstream.
--------------------------------------------------------------------------------
ChangeLog:

* Fri Jun 24 2011 Thomas Moschny <thomas.moschny@gmx.de> - 0.55-1
- Update to 0.55.
--------------------------------------------------------------------------------


================================================== ==============================
libpng10-1.0.54-3.el6 (FEDORA-EPEL-2011-3664)
Old version of libpng, needed to run old binaries
--------------------------------------------------------------------------------
Update Information:

This update fixes a 1-byte uninitialized memory reference in png_format_buffer(). It allows attackers to cause a denial of service (crash) via a malformed PNG image file that triggers an error that causes an out-of-bounds read when creating the error message.
--------------------------------------------------------------------------------
ChangeLog:

* Wed Jun 29 2011 Paul Howarth <paul@city-fan.org> 1.0.54-3
- fix 1-byte uninitialized memory reference in png_format_buffer()
(CVE-2011-2501, related to CVE-2004-0421)
- nobody else likes macros for commands
* Tue Feb 8 2011 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> 1.0.54-2
- rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #717084 - CVE-2011-2501 libpng: regression of CVE-2004-0421 in 1.2.23+
https://bugzilla.redhat.com/show_bug.cgi?id=717084
--------------------------------------------------------------------------------


================================================== ==============================
mingw32-libpng-1.2.37-3.el6 (FEDORA-EPEL-2011-3670)
MinGW Windows Libpng library
--------------------------------------------------------------------------------
Update Information:

Fix for CVE-2011-2501.
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #717513 - CVE-2011-2501 libpng: regression of CVE-2004-0421 in 1.2.23+ [epel-6]
https://bugzilla.redhat.com/show_bug.cgi?id=717513
--------------------------------------------------------------------------------


================================================== ==============================
packagedb-cli-1.0.0-3.el6 (FEDORA-EPEL-2011-3665)
A CLI for pkgdb
--------------------------------------------------------------------------------
Update Information:

First release of packagedb-cli
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #717555 - Review Request: packagedb-cli - A CLI for pkgdb
https://bugzilla.redhat.com/show_bug.cgi?id=717555
--------------------------------------------------------------------------------


================================================== ==============================
php-voms-admin-0.6-1.el6 (FEDORA-EPEL-2011-3592)
Web based interface to control VOMS parameters written in PHP
--------------------------------------------------------------------------------
Update Information:

PHP VOMS-Admin (PVA) originally implemented the same functions as the traditional JAVA-based VOMS-Admin (v.2.0.18) interface for Apache Tomcat. It was designed to be more flexible and stable, provide easy scalability and minimize resource usage. PVA is fully compatible with the vomsd mysql backend.

--------------------------------------------------------------------------------
References:

[ 1 ] Bug #603346 - Review Request: php-voms-admin - Web based interface to control VOMS parameters written in PHP
https://bugzilla.redhat.com/show_bug.cgi?id=603346
--------------------------------------------------------------------------------


================================================== ==============================
python-argparse-1.2.1-2.el6 (FEDORA-EPEL-2011-3658)
Optparse inspired command line parser for Python
--------------------------------------------------------------------------------
Update Information:

* Add the LICENSE.txt file
--------------------------------------------------------------------------------
ChangeLog:

* Wed Jun 29 2011 Toshio Kuratomi <toshio@fedoraproject.org> - 1.2.1-2
- Include LICENSE.txt file
* Wed Jun 29 2011 Toshio Kuratomi <toshio@fedoraproject.org> - 1.2.1-1
- New compatble upstream with some bugfixes and a GPL2 vompatible license
- Enable test suite
* Wed Feb 10 2010 Toshio Kuratomi <toshio@fedoraproject.org> - 1.0.1-1.1
- First build for EL-5
- Small change to %files section so lack of egg-info on EL-5 is okay.
--------------------------------------------------------------------------------


================================================== ==============================
xrootd-3.0.4-2.el6 (FEDORA-EPEL-2011-3649)
Extended ROOT file server
--------------------------------------------------------------------------------
Update Information:

Update of xrootd to version 3.0.4. For a list of new features and fixed bugs see: http://www.xrootd.org/download/ReleaseNotes.html
--------------------------------------------------------------------------------
ChangeLog:

* Tue Jun 28 2011 Mattias Ellert <mattias.ellert@fysast.uu.se> - 1:3.0.4-2
- Add missing BuildRequires ncurses-devel
* Tue Jun 28 2011 Mattias Ellert <mattias.ellert@fysast.uu.se> - 1:3.0.4-1.1
- Remove xrootdfs man page on EPEL 4
* Mon Jun 27 2011 Mattias Ellert <mattias.ellert@fysast.uu.se> - 1:3.0.4-1
- Update to version 3.0.4
- Drop patches fixed upstream: xrootd-man.patch, xrootd-rhel5-no-atomic.patch
- Drop the remaining man-pages copied from root - now provided by upstream
* Fri Jun 17 2011 Marcela Mašláňová <mmaslano@redhat.com> - 1:3.0.3-3
- Perl mass rebuild
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #716843 - RFE: Please update to 3.0.4
https://bugzilla.redhat.com/show_bug.cgi?id=716843
--------------------------------------------------------------------------------


_______________________________________________
epel-devel-list mailing list
epel-devel-list@redhat.com
https://www.redhat.com/mailman/listinfo/epel-devel-list
 
Old 06-30-2011, 05:54 PM
 
Default Fedora EPEL 6 updates-testing report

The following Fedora EPEL 6 Security updates need testing:

https://admin.fedoraproject.org/updates/asterisk-1.8.4.4-1.el6
https://admin.fedoraproject.org/updates/drupal7-7.4-1.el6
https://admin.fedoraproject.org/updates/wordpress-3.1.4-1.el6
https://admin.fedoraproject.org/updates/dokuwiki-0-0.8.20110525.a.el6
https://admin.fedoraproject.org/updates/mingw32-libpng-1.2.37-3.el6
https://admin.fedoraproject.org/updates/libpng10-1.0.54-3.el6
https://admin.fedoraproject.org/updates/libmodplug-0.8.8.3-2.el6
https://admin.fedoraproject.org/updates/ejabberd-2.1.8-2.el6
https://admin.fedoraproject.org/updates/erlang-R14B-02.1.el6


The following builds have been pushed to Fedora EPEL 6 updates-testing

asterisk-1.8.4.4-1.el6
drupal6-6.22-3.el6
drupal6-feeds-1.0-0.6.beta11.el6
drupal7-7.4-1.el6
naev-0.5.0-3.el6
naev-data-0.5.0-4.el6
python-taboot-0.3.0-1.el6
root-5.28.00e-2.el6
rubygem-gem2rpm-0.7.1-1.el6
swatch-3.2.3-2.el6
wordpress-3.1.4-1.el6

Details about builds:


================================================== ==============================
asterisk-1.8.4.4-1.el6 (FEDORA-EPEL-2011-3678)
The Open Source PBX
--------------------------------------------------------------------------------
Update Information:

The Asterisk Development Team has announced the release of Asterisk versions
1.4.41.2, 1.6.2.18.2, and 1.8.4.4, which are security releases.

These releases are available for immediate download at
http://downloads.asterisk.org/pub/telephony/asterisk/releases

The release of Asterisk 1.4.41.2, 1.6.2.18.2, and 1.8.4.4 resolves the
following issue:

AST-2011-011: Asterisk may respond differently to SIP requests from an
invalid SIP user than it does to a user configured on the system, even when the
alwaysauthreject option is set in the configuration. This can leak information
about what SIP users are valid on the Asterisk system.

For more information about the details of this vulnerability, please read
the security advisory AST-2011-011, which was released at the same time as this
announcement.

For a full list of changes in the current releases, please see the ChangeLog:

http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.4.41.2
http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.6.2.18.2
http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.4.4

Security advisory AST-2011-011 is available at:

http://downloads.asterisk.org/pub/security/AST-2011-011.pdf
The Asterisk Development Team has announced the release of Asterisk versions
1.4.41.1, 1.6.2.18.1, and 1.8.4.3, which are security releases.

These releases are available for immediate download at
http://downloads.asterisk.org/pub/telephony/asterisk/releases

The release of Asterisk 1.4.41.1, 1.6.2.18, and 1.8.4.3 resolves several issues
as outlined below:

* AST-2011-008: If a remote user sends a SIP packet containing a null,
Asterisk assumes available data extends past the null to the
end of the packet when the buffer is actually truncated when
copied. This causes SIP header parsing to modify data past
the end of the buffer altering unrelated memory structures.
This vulnerability does not affect TCP/TLS connections.
-- Resolved in 1.6.2.18.1 and 1.8.4.3

* AST-2011-009: A remote user sending a SIP packet containing a Contact header
with a missing left angle bracket (<) causes Asterisk to
access a null pointer.
-- Resolved in 1.8.4.3

* AST-2011-010: A memory address was inadvertently transmitted over the
network via IAX2 via an option control frame and the remote party would try
to access it.
-- Resolved in 1.4.41.1, 1.6.2.18.1, and 1.8.4.3


The issues and resolutions are described in the AST-2011-008, AST-2011-009, and
AST-2011-010 security advisories.

For more information about the details of these vulnerabilities, please read
the security advisories AST-2011-008, AST-2011-009, and AST-2011-010, which were
released at the same time as this announcement.

For a full list of changes in the current releases, please see the ChangeLog:

http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.4.41.1
http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.6.2.18.1
http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.4.3

Security advisories AST-2011-008, AST-2011-009, and AST-2011-010 are available
at:

http://downloads.asterisk.org/pub/security/AST-2011-008.pdf
http://downloads.asterisk.org/pub/security/AST-2011-009.pdf
http://downloads.asterisk.org/pub/security/AST-2011-010.pdf

The Asterisk Development Team has announced the release of Asterisk
version 1.8.4.2, which is a security release for Asterisk 1.8.

This release is available for immediate download at
http://downloads.asterisk.org/pub/telephony/asterisk/releases

The release of Asterisk 1.8.4.2 resolves an issue with SIP URI
parsing which can lead to a remotely exploitable crash:

Remote Crash Vulnerability in SIP channel driver (AST-2011-007)

The issue and resolution is described in the AST-2011-007 security
advisory.

For more information about the details of this vulnerability, please
read the security advisory AST-2011-007, which was released at the
same time as this announcement.

For a full list of changes in the current release, please see the ChangeLog:

http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.4.2

Security advisory AST-2011-007 is available at:

http://downloads.asterisk.org/pub/security/AST-2011-007.pdf

The Asterisk Development Team has announced the release of Asterisk 1.8.4.1.
This release is available for immediate download at
http://downloads.asterisk.org/pub/telephony/asterisk/

The release of Asterisk 1.8.4.1 resolves several issues reported by the
community. Without your help this release would not have been possible.
Thank you!

Below is a list of issues resolved in this release:

* Fix our compliance with RFC 3261 section 18.2.2. (aka Cisco phone fix)
(Closes issue #18951. Reported by jmls. Patched by wdoekes)

* Resolve a change in IPv6 header parsing due to the Cisco phone fix issue.
This issue was found and reported by the Asterisk test suite.
(Closes issue #18951. Patched by mnicholson)

* Resolve potential crash when using SIP TLS support.
(Closes issue #19192. Reported by stknob. Patched by Chainsaw. Tested by
vois, Chainsaw)

* Improve reliability when using SIP TLS.
(Closes issue #19182. Reported by st. Patched by mnicholson)


For a full list of changes in this release candidate, please see the ChangeLog:

http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.8.4.1

The Asterisk Development Team has announced the release of Asterisk 1.8.4. This
release is available for immediate download at
http://downloads.asterisk.org/pub/telephony/asterisk/

The release of Asterisk 1.8.4 resolves several issues reported by the community.
Without your help this release would not have been possible. Thank you!

Below is a sample of the issues resolved in this release:

* Use SSLv23_client_method instead of old SSLv2 only.
(Closes issue #19095, #19138. Reported, patched by tzafrir. Tested by russell
and chazzam.

* Resolve crash in ast_mutex_init()
(Patched by twilson)

* Resolution of several DTMF based attended transfer issues.
(Closes issue #17999, #17096, #18395, #17273. Reported by iskatel, gelo,
shihchuan, grecco. Patched by rmudgett)

NOTE: Be sure to read the ChangeLog for more information about these changes.

* Resolve deadlocks related to device states in chan_sip
(Closes issue #18310. Reported, patched by one47. Patched by jpeeler)

* Resolve an issue with the Asterisk manager interface leaking memory when
disabled.
(Reported internally by kmorgan. Patched by russellb)

* Support greetingsfolder as documented in voicemail.conf.sample.
(Closes issue #17870. Reported by edhorton. Patched by seanbright)

* Fix channel redirect out of MeetMe() and other issues with channel softhangup
(Closes issue #18585. Reported by oej. Tested by oej, wedhorn, russellb.
Patched by russellb)

* Fix voicemail sequencing for file based storage.
(Closes issue #18498, #18486. Reported by JJCinAZ, bluefox. Patched by
jpeeler)

* Set hangup cause in local_hangup so the proper return code of 486 instead of
503 when using Local channels when the far sides returns a busy. Also affects
CCSS in Asterisk 1.8+.
(Patched by twilson)

* Fix issues with verbose messages not being output to the console.
(Closes issue #18580. Reported by pabelanger. Patched by qwell)

* Fix Deadlock with attended transfer of SIP call
(Closes issue #18837. Reported, patched by alecdavis. Tested by
alecdavid, Irontec, ZX81, cmaj)

Includes changes per AST-2011-005 and AST-2011-006
For a full list of changes in this release candidate, please see the ChangeLog:

http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.8.4

Information about the security releases are available at:

http://downloads.asterisk.org/pub/security/AST-2011-005.pdf
http://downloads.asterisk.org/pub/security/AST-2011-006.pdf

--------------------------------------------------------------------------------
ChangeLog:

* Wed Jun 29 2011 Jeffrey C. Ollie <jeff@ocjtech.us> - 1.8.4.4-1
- The Asterisk Development Team has announced the release of Asterisk
- versions 1.4.41.2, 1.6.2.18.2, and 1.8.4.4, which are security
- releases.
-
- These releases are available for immediate download at
- http://downloads.asterisk.org/pub/telephony/asterisk/releases
-
- The release of Asterisk 1.4.41.2, 1.6.2.18.2, and 1.8.4.4 resolves the
- following issue:
-
- AST-2011-011: Asterisk may respond differently to SIP requests from an
- invalid SIP user than it does to a user configured on the system, even
- when the alwaysauthreject option is set in the configuration. This can
- leak information about what SIP users are valid on the Asterisk
- system.
-
- For more information about the details of this vulnerability, please
- read the security advisory AST-2011-011, which was released at the
- same time as this announcement.
-
- For a full list of changes in the current releases, please see the ChangeLog:
-
- http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.4.41.2
- http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.6.2.18.2
- http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.4.4
-
- Security advisory AST-2011-011 is available at:
-
- http://downloads.asterisk.org/pub/security/AST-2011-011.pdf
* Mon Jun 27 2011 Jeffrey C. Ollie <jeff@ocjtech.us> - 1.8.4.3-3
- Don't forget stereorize
* Mon Jun 27 2011 Jeffrey C. Ollie <jeff@ocjtech.us> - 1.8.4.3-2
- Move /var/run/asterisk to /run/asterisk
- Add comments to systemd service file on how to mimic safe_asterisk functionality
- Build more of the optional binaries
- Install the tmpfiles.d configuration on Fedora 15
* Fri Jun 24 2011 Jeffrey C. Ollie <jeff@ocjtech.us> - 1.8.4.3-1
- The Asterisk Development Team has announced the release of Asterisk versions
- 1.4.41.1, 1.6.2.18.1, and 1.8.4.3, which are security releases.
-
- These releases are available for immediate download at
- http://downloads.asterisk.org/pub/telephony/asterisk/releases
-
- The release of Asterisk 1.4.41.1, 1.6.2.18, and 1.8.4.3 resolves several issues
- as outlined below:
-
- * AST-2011-008: If a remote user sends a SIP packet containing a null,
- Asterisk assumes available data extends past the null to the
- end of the packet when the buffer is actually truncated when
- copied. This causes SIP header parsing to modify data past
- the end of the buffer altering unrelated memory structures.
- This vulnerability does not affect TCP/TLS connections.
- -- Resolved in 1.6.2.18.1 and 1.8.4.3
-
- * AST-2011-009: A remote user sending a SIP packet containing a Contact header
- with a missing left angle bracket (<) causes Asterisk to
- access a null pointer.
- -- Resolved in 1.8.4.3
-
- * AST-2011-010: A memory address was inadvertently transmitted over the
- network via IAX2 via an option control frame and the remote party would try
- to access it.
- -- Resolved in 1.4.41.1, 1.6.2.18.1, and 1.8.4.3
-
- The issues and resolutions are described in the AST-2011-008, AST-2011-009, and
- AST-2011-010 security advisories.
-
- For more information about the details of these vulnerabilities, please read
- the security advisories AST-2011-008, AST-2011-009, and AST-2011-010, which were
- released at the same time as this announcement.
-
- For a full list of changes in the current releases, please see the ChangeLog:
-
- http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.4.41.1
- http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.6.2.18.1
- http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.4.3
-
- Security advisories AST-2011-008, AST-2011-009, and AST-2011-010 are available
- at:
-
- http://downloads.asterisk.org/pub/security/AST-2011-008.pdf
- http://downloads.asterisk.org/pub/security/AST-2011-009.pdf
- http://downloads.asterisk.org/pub/security/AST-2011-010.pdf
* Tue Jun 21 2011 Jeffrey C. Ollie <jeff@ocjtech.us> - 1.8.4.2-2
- Convert to systemd
* Fri Jun 17 2011 Marcela Mašláňová <mmaslano@redhat.com> - 1.8.4.2-1.2
- Perl mass rebuild
* Fri Jun 10 2011 Marcela Mašláňová <mmaslano@redhat.com> - 1.8.4.2-1.1
- Perl 5.14 mass rebuild
* Fri Jun 3 2011 Jeffrey C. Ollie <jeff@ocjtech.us> - 1.8.4.2-1:
-
- The Asterisk Development Team has announced the release of Asterisk
- version 1.8.4.2, which is a security release for Asterisk 1.8.
-
- This release is available for immediate download at
- http://downloads.asterisk.org/pub/telephony/asterisk/releases
-
- The release of Asterisk 1.8.4.2 resolves an issue with SIP URI
- parsing which can lead to a remotely exploitable crash:
-
- Remote Crash Vulnerability in SIP channel driver (AST-2011-007)
-
- The issue and resolution is described in the AST-2011-007 security
- advisory.
-
- For more information about the details of this vulnerability, please
- read the security advisory AST-2011-007, which was released at the
- same time as this announcement.
-
- For a full list of changes in the current release, please see the ChangeLog:
-
- http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.4.2
-
- Security advisory AST-2011-007 is available at:
-
- http://downloads.asterisk.org/pub/security/AST-2011-007.pdf
-
- The Asterisk Development Team has announced the release of Asterisk 1.8.4.1.
- This release is available for immediate download at
- http://downloads.asterisk.org/pub/telephony/asterisk/
-
- The release of Asterisk 1.8.4.1 resolves several issues reported by the
- community. Without your help this release would not have been possible.
- Thank you!
-
- Below is a list of issues resolved in this release:
-
- * Fix our compliance with RFC 3261 section 18.2.2. (aka Cisco phone fix)
- (Closes issue #18951. Reported by jmls. Patched by wdoekes)
-
- * Resolve a change in IPv6 header parsing due to the Cisco phone fix issue.
- This issue was found and reported by the Asterisk test suite.
- (Closes issue #18951. Patched by mnicholson)
-
- * Resolve potential crash when using SIP TLS support.
- (Closes issue #19192. Reported by stknob. Patched by Chainsaw. Tested by
- vois, Chainsaw)
-
- * Improve reliability when using SIP TLS.
- (Closes issue #19182. Reported by st. Patched by mnicholson)
-
-
- For a full list of changes in this release candidate, please see the ChangeLog:
-
- http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.8.4.1

- The Asterisk Development Team has announced the release of Asterisk 1.8.4. This
- release is available for immediate download at
- http://downloads.asterisk.org/pub/telephony/asterisk/
-
- The release of Asterisk 1.8.4 resolves several issues reported by the community.
- Without your help this release would not have been possible. Thank you!
-
- Below is a sample of the issues resolved in this release:
-
- * Use SSLv23_client_method instead of old SSLv2 only.
- (Closes issue #19095, #19138. Reported, patched by tzafrir. Tested by russell
- and chazzam.
-
- * Resolve crash in ast_mutex_init()
- (Patched by twilson)
-
- * Resolution of several DTMF based attended transfer issues.
- (Closes issue #17999, #17096, #18395, #17273. Reported by iskatel, gelo,
- shihchuan, grecco. Patched by rmudgett)
-
- NOTE: Be sure to read the ChangeLog for more information about these changes.
-
- * Resolve deadlocks related to device states in chan_sip
- (Closes issue #18310. Reported, patched by one47. Patched by jpeeler)
-
- * Resolve an issue with the Asterisk manager interface leaking memory when
- disabled.
- (Reported internally by kmorgan. Patched by russellb)
-
- * Support greetingsfolder as documented in voicemail.conf.sample.
- (Closes issue #17870. Reported by edhorton. Patched by seanbright)
-
- * Fix channel redirect out of MeetMe() and other issues with channel softhangup
- (Closes issue #18585. Reported by oej. Tested by oej, wedhorn, russellb.
- Patched by russellb)
-
- * Fix voicemail sequencing for file based storage.
- (Closes issue #18498, #18486. Reported by JJCinAZ, bluefox. Patched by
- jpeeler)
-
- * Set hangup cause in local_hangup so the proper return code of 486 instead of
- 503 when using Local channels when the far sides returns a busy. Also affects
- CCSS in Asterisk 1.8+.
- (Patched by twilson)
-
- * Fix issues with verbose messages not being output to the console.
- (Closes issue #18580. Reported by pabelanger. Patched by qwell)
-
- * Fix Deadlock with attended transfer of SIP call
- (Closes issue #18837. Reported, patched by alecdavis. Tested by
- alecdavid, Irontec, ZX81, cmaj)
-
- Includes changes per AST-2011-005 and AST-2011-006
- For a full list of changes in this release candidate, please see the ChangeLog:
-
- http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.8.4
-
- Information about the security releases are available at:
-
- http://downloads.asterisk.org/pub/security/AST-2011-005.pdf
- http://downloads.asterisk.org/pub/security/AST-2011-006.pdf
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #710441 - CVE-2011-2216 Asterisk: Remote DoS (crash) in SIP channel driver (AST-2011-007)
https://bugzilla.redhat.com/show_bug.cgi?id=710441
--------------------------------------------------------------------------------


================================================== ==============================
drupal6-6.22-3.el6 (FEDORA-EPEL-2011-3674)
An open-source content-management platform
--------------------------------------------------------------------------------
Update Information:

Removes spurious dirs in /etc/drupal6 to avoid confusion.
--------------------------------------------------------------------------------
ChangeLog:

* Thu Jun 30 2011 Jon Ciesla <limb@jcomserv.net> - 6.22-3
- Drop unneeded dirs in /etc/drupal6, BZ 706735.
* Fri Jun 17 2011 Jon Ciesla <limb@jcomserv.net> - 6.22-2
- Bump and rebuild for BZ 712251.
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #706735 - Put modules and themes directories under /etc/drupal6/all/
https://bugzilla.redhat.com/show_bug.cgi?id=706735
--------------------------------------------------------------------------------


================================================== ==============================
drupal6-feeds-1.0-0.6.beta11.el6 (FEDORA-EPEL-2011-3684)
An import and aggregation framework for Drupal
--------------------------------------------------------------------------------
Update Information:

New upstream version.
--------------------------------------------------------------------------------
ChangeLog:

* Thu Jun 30 2011 Peter Borsa <peter.borsa@gmail.com> - 1.0-0.6.beta11
- Fixed release number in the spec file.
* Thu Jun 30 2011 Peter Borsa <peter.borsa@gmail.com> - 1.0-0.1.beta11
- New upstream version.
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #717587 - drupal6-feeds-1.0-beta11 is available
https://bugzilla.redhat.com/show_bug.cgi?id=717587
--------------------------------------------------------------------------------


================================================== ==============================
drupal7-7.4-1.el6 (FEDORA-EPEL-2011-3672)
An open-source content-management platform
--------------------------------------------------------------------------------
Update Information:

Remember to log in as user 1 prior to the RPM update, to perform the DB upgrade via http://yoursite/update.php.

* Advisory ID: DRUPAL-SA-CORE-2011-002
* Project: Drupal core [1]
* Version: 7.x
* Date: 2011-JUNE-29
* Security risk: Highly critical [2]
* Exploitable from: Remote
* Vulnerability: Access bypass

-------- DESCRIPTION
---------------------------------------------------------

.... Access bypass in node listings

Listings showing nodes but not JOINing the node table show all nodes
regardless of restrictions imposed by the node_access system. In core, this
affects the taxonomy and the forum subsystem.

Note that fixing this issue in contributed modules requires a
backwards-compatible API change for modules listing nodes. See
http://drupal.org/node/1204572 [3] for more details.

This issue affects Drupal 7.x only.

-------- VERSIONS AFFECTED
---------------------------------------------------

* Drupal 7.0, 7.1 and 7.2.

-------- SOLUTION
------------------------------------------------------------

Install the latest version:

* If you are running Drupal 7.x then upgrade to Drupal 7.3 or 7.4.

The Security Team has released both a pure security update without other bug
fixes and a security update combined with other bug fixes and improvements.
You can choose to either only include the security update for an immediate
fix (which might require less quality assurance and testing) or more fixes
and improvements alongside the security fixes by choosing between Drupal 7.3
and Drupal 7.4. Read the announcement [4] for more information.

See also the Drupal core [5] project page.

-------- REPORTED BY
---------------------------------------------------------

* The access bypass was reported independently by numerous people, including
Sascha Grossenbacher [6], Khaled Alhourani [7], and Ben Ford [8].

-------- FIXED BY
------------------------------------------------------------

* The access bypass was fixed by Károly Négyesi [9], member of the Drupal
security team

-------- CONTACT AND MORE INFORMATION
----------------------------------------

The Drupal security team can be reached at security at drupal.org or via the
contact form at http://drupal.org/contact [10].

Learn more about the Drupal Security team and their policies [11], writing
secure code for Drupal [12], and securing your site [13].


[1] http://drupal.org/project/drupal
[2] http://drupal.org/security-team/risk-levels
[3] http://drupal.org/node/1204572
[4] http://drupal.org/drupal-7.4
[5] http://drupal.org/project/drupal
[6] http://drupal.org/user/214652
[7] http://drupal.org/user/265439
[8] http://drupal.org/user/12534
[9] http://drupal.org/user/9446
[10] http://drupal.org/contact
[11] http://drupal.org/security-team
[12] http://drupal.org/writing-secure-code
[13] http://drupal.org/security/secure-configuration


--------------------------------------------------------------------------------
ChangeLog:

* Thu Jun 30 2011 Jon Ciesla <limb@jcomserv.net> - 7.4-1
- New upstream, SA-CORE-2011-002, BZ 717874.
- Dropped unused dirs in /etc/drupal7/, BZ 703736.
* Fri Jun 17 2011 Jon Ciesla <limb@jcomserv.net> - 7.2-2
- Bump and rebuild for BZ 712251.
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #717874 - Remote access bypass vulnerability in Drupal 7
https://bugzilla.redhat.com/show_bug.cgi?id=717874
[ 2 ] Bug #706736 - Put modules and themes directories under /etc/drupal7/all/
https://bugzilla.redhat.com/show_bug.cgi?id=706736
--------------------------------------------------------------------------------


================================================== ==============================
naev-0.5.0-3.el6 (FEDORA-EPEL-2011-3673)
2d action, RPG space game
--------------------------------------------------------------------------------
Update Information:

First release in Fedora package collection.
--------------------------------------------------------------------------------


================================================== ==============================
naev-data-0.5.0-4.el6 (FEDORA-EPEL-2011-3673)
Data files for NAEV
--------------------------------------------------------------------------------
Update Information:

First release in Fedora package collection.
--------------------------------------------------------------------------------


================================================== ==============================
python-taboot-0.3.0-1.el6 (FEDORA-EPEL-2011-3677)
Client utility for scripted multi-system administration over Func
--------------------------------------------------------------------------------
Update Information:

Fixed #13 - Generate HTML versions of the man pages

Fixed #6, #7, #11, #12 - Updated the Nagios task completely to use the native Func Nagios module

Fixed #17 - sleep.Minutes not printing correct status message

Fixed #20 - Be more helpful when YAML fails to load

Fixed #22 - Taboots not processing YAML files with multiple documents inside

Fixed #15 - Die gracefully when processing bad CLI options
--------------------------------------------------------------------------------
ChangeLog:

* Thu Jun 23 2011 Tim Bielawa <tbielawa@redhat.com> 0.3.0-1
- Update version. 0.3.0. If Linux can do it -- so can we. (tbielawa@redhat.com)
- Now included in EPEL and Fedora. Fixes #9 (tbielawa@redhat.com)
- Correct a lot of spelling errors. Fixes #23 (Taboot maintainer has atrocious
spelling) (tbielawa@redhat.com)
- Correctly handle YAML files with multiple YAML documents inside. Fixes #22
(tbielawa@redhat.com)
- Better YAML loading debugging. Fixes #20 (tbielawa@redhat.com)
- Handle bad CLI options gracefully. Fixes #15 (tbielawa@redhat.com)
- Modify patch from jdetiber. Fixes #17 - sleep.Minutes not printing correct
status message (tbielawa@redhat.com)
- Updated output for sleep.Minutes (jason.detiberus@redhat.com)
- Update man page (tbielawa@redhat.com)
- Update taboot-tasks manpage (tbielawa@redhat.com)
- Make HOST the default for downtime scheduling again (tbielawa@redhat.com)
- Updating Nagios task docs (tbielawa@redhat.com)
- Rewrite the Nagios task to use the new Func Nagios module instead of CURL.
Fixes #6, #7, #11, #12 (tbielawa@redhat.com)
- Adding HTML versions of the man pages to the HTML docs. Fixes #13
(tbielawa@redhat.com)
--------------------------------------------------------------------------------


================================================== ==============================
root-5.28.00e-2.el6 (FEDORA-EPEL-2011-3683)
Numerical data analysis framework
--------------------------------------------------------------------------------
Update Information:

Update of root to version 5.28.00e. For a list of new features and fixed bugs see: http://root.cern.ch/drupal/content/root-version-v5-28-00-patch-release-notes

--------------------------------------------------------------------------------
ChangeLog:

* Wed Jun 29 2011 Mattias Ellert <mattias.ellert@fysast.uu.se> - 5.28.00e-2
- Change build requires from qt-devel to qt4-devel
* Wed Jun 29 2011 Mattias Ellert <mattias.ellert@fysast.uu.se> - 5.28.00e-1
- Update to 5.28.00e
* Mon Jun 20 2011 ajax@redhat.com - 5.28.00d-2
- Rebuild for new glew soname
--------------------------------------------------------------------------------


================================================== ==============================
rubygem-gem2rpm-0.7.1-1.el6 (FEDORA-EPEL-2011-3681)
Generate rpm specfiles from gems
--------------------------------------------------------------------------------
Update Information:

Updated to the 0.7.1 version.
--------------------------------------------------------------------------------
ChangeLog:

* Thu Jun 30 2011 V*t Ondruch <vondruch@redhat.com> - 0.7.1-1
- Updated to the 0.7.1 version.
* Wed Feb 9 2011 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.6.0-6
- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
--------------------------------------------------------------------------------


================================================== ==============================
swatch-3.2.3-2.el6 (FEDORA-EPEL-2011-3687)
Tool for actively monitoring log files
--------------------------------------------------------------------------------
Update Information:

The Simple WATCHer is an automated monitoring tool that is capable
of alerting system administrators of anything that matches the
patterns described in the configuration file, whilst constantly
searching logfiles using perl.

--------------------------------------------------------------------------------


================================================== ==============================
wordpress-3.1.4-1.el6 (FEDORA-EPEL-2011-3682)
Blog tool and publishing platform
--------------------------------------------------------------------------------
Update Information:

Upstream security release. Details at
http://wordpress.org/news/2011/06/wordpress-3-1-4/
Fix old FSF address and Summary to make rpmlint happy.
Make wp-content directory owned by apache:apache.
Correctly Provides/Obsoletes (with versions).
Upgrade to the latest upstream version (security fixes and enhancements, BZ 707772).
Move wp-content directory to /var/www/wordpress/ (BZ 522897).
Simplify overly detailed files list.
Actually, we just don't need gettext.php at all, it is provided by
php itself. Just remove the file, don't make a symlink.
Revert back to wp-content in /usr/share/wordpress, I am not able to make it
work. Not fixing BZ 522897.
--------------------------------------------------------------------------------
ChangeLog:

* Wed Jun 29 2011 Matěj Cepl <mcepl@redhat.com> - 3.1.4-1
- New upstream security release.
* Thu Jun 2 2011 Matěj Cepl <mcepl@redhat.com> - 3.1.3-3
- Actually, we just don't need gettext.php at all, it is provided by
php itself. Just remove the file, don't make a symlink.
- revert back to wp-content in /usr/share/wordpress, I am not able to make it
work. Not fixing BZ 522897.
* Wed Jun 1 2011 Matěj Cepl <mcepl@redhat.com> - 3.1.3-2
- Fix old FSF address and Summary to make rpmlint happy.
- Make wp-content directory owned by apache:apache
- Correctly Provides/Obsoletes (with versions)
* Wed May 25 2011 Matěj Cepl <mcepl@redhat.com> - 3.1.3-1
- Upgrade to the latest upstream version (security fixes and enhancements, BZ 707772)
- Move wp-content directory to /var/www/wordpress/ (BZ 522897)
- Simplify overly detailed %files
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #707772 - New upstream version 3.1.3 has been released
https://bugzilla.redhat.com/show_bug.cgi?id=707772
[ 2 ] Bug #522897 - Unable To Upload Images To /usr/share/wordpress/wp-content/uploads/
https://bugzilla.redhat.com/show_bug.cgi?id=522897
--------------------------------------------------------------------------------


_______________________________________________
epel-devel-list mailing list
epel-devel-list@redhat.com
https://www.redhat.com/mailman/listinfo/epel-devel-list
 
Old 07-01-2011, 04:54 PM
 
Default Fedora EPEL 6 updates-testing report

The following Fedora EPEL 6 Security updates need testing:

https://admin.fedoraproject.org/updates/asterisk-1.8.4.4-1.el6
https://admin.fedoraproject.org/updates/drupal7-7.4-1.el6
https://admin.fedoraproject.org/updates/wordpress-3.1.4-1.el6
https://admin.fedoraproject.org/updates/dokuwiki-0-0.8.20110525.a.el6
https://admin.fedoraproject.org/updates/mingw32-libpng-1.2.37-3.el6
https://admin.fedoraproject.org/updates/libpng10-1.0.54-3.el6
https://admin.fedoraproject.org/updates/libmodplug-0.8.8.3-2.el6
https://admin.fedoraproject.org/updates/ejabberd-2.1.8-2.el6
https://admin.fedoraproject.org/updates/erlang-R14B-02.1.el6


The following builds have been pushed to Fedora EPEL 6 updates-testing

amqp-1.0.819819-1.el6
gridsite-1.7.15-2.el6
jettison-1.3-1.el6
petit-1.1.1-1.el6
supybot-gribble-0.83.4.1-5.el6
wlmproxy-0.1.3-1.el6

Details about builds:


================================================== ==============================
amqp-1.0.819819-1.el6 (FEDORA-EPEL-2011-3696)
The AMQP specification
--------------------------------------------------------------------------------
Update Information:

Adding package for python-txamqp.
--------------------------------------------------------------------------------


================================================== ==============================
gridsite-1.7.15-2.el6 (FEDORA-EPEL-2011-3695)
Grid Security for the Web, Web platforms for Grids
--------------------------------------------------------------------------------
Update Information:

Changes from 1.7.9 to 1.7.15.

* Fixing memleak in GRSTx509MakeProxyCert
* Not relying on hard-coded positions of certificates (fixes using VOMS .lsc files)
* Fixes from Mattias Ellert <mellert> (bugs #69632, #83449, and #83450):
* extern "C" declarations and include protections in public headers
* integer/pointer portability fix
* proper link ordering
* IPv6 portability
* Fix static declaration in public header, function GACLparseEntry() added into gridsite-gacl.h
* Makefile distinguishes between -lgsoap and -lgsoapssl in cflags.
* Makefile: CFLAGS cleanup, HTTPD_FLAGS replaces httpd-specific cflags.
* Unresolved symbols from xml in _globus and _nossl library versions fixed.
* Compile and link flags of dependencies unified.
* Portability improvements
* Support for using IPv6
* Patch to grst_x509.c VOMS verification from Daniel Kouril


--------------------------------------------------------------------------------
ChangeLog:

* Thu Jun 30 2011 Steve Traylen <steve.traylen@cern.ch> - 1.7.15-2
- Add a gridsite-compat-1.5 package on EPEL4 & EPEL5.
- Remove doc package requiring devel package.
* Thu Jun 30 2011 Steve Traylen <steve.traylen@cern.ch> - 1.7.15-1
- Upstream 1.7.15, drop gridsite-include-1.7.9.patch since upstream,
redo cgi-location patch.
* Mon Jun 27 2011 Steve Traylen <steve.traylen@cern.ch> - 1.7.13-1
- Upstream 1.7.13
* Wed Apr 6 2011 Steve Traylen <steve.traylen@cern.ch> - 1.7.12-1
- Upstream 1.7.12
* Wed Feb 9 2011 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.7.9-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
--------------------------------------------------------------------------------


================================================== ==============================
jettison-1.3-1.el6 (FEDORA-EPEL-2011-3689)
A JSON StAX implementation
--------------------------------------------------------------------------------
Update Information:

- New upstream version 1.3
- First release in EPEL 6
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #713968 - Build jettison for epel-6
https://bugzilla.redhat.com/show_bug.cgi?id=713968
--------------------------------------------------------------------------------


================================================== ==============================
petit-1.1.1-1.el6 (FEDORA-EPEL-2011-3691)
Log analysis tool for syslog, Apache and raw log files
--------------------------------------------------------------------------------
Update Information:

New upstream version 1.1.1
--------------------------------------------------------------------------------
ChangeLog:

* Thu Jun 30 2011 Sandro Mathys <red at fedoraproject.org> - 1.1.1-1
- New upstream version 1.1.1
--------------------------------------------------------------------------------


================================================== ==============================
supybot-gribble-0.83.4.1-5.el6 (FEDORA-EPEL-2011-3692)
Cross-platform support bot based on supybot
--------------------------------------------------------------------------------
Update Information:

Here is where you
give an explanation of
your update.
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #693664 - Review Request: supybot-gribble - Cross-platform support bot based on supybot
https://bugzilla.redhat.com/show_bug.cgi?id=693664
--------------------------------------------------------------------------------


================================================== ==============================
wlmproxy-0.1.3-1.el6 (FEDORA-EPEL-2011-3690)
An advanced proxy for the MSN Messenger protocol
--------------------------------------------------------------------------------
Update Information:

This release fixes a bug regarding use of strstr() on evbuffers.
--------------------------------------------------------------------------------
ChangeLog:

* Thu Jun 30 2011 William Lima <wlima@primate.com.br> - 0.1.3-1
- Update to 0.1.3
--------------------------------------------------------------------------------


_______________________________________________
epel-devel-list mailing list
epel-devel-list@redhat.com
https://www.redhat.com/mailman/listinfo/epel-devel-list
 
Old 07-02-2011, 05:27 PM
 
Default Fedora EPEL 6 updates-testing report

The following Fedora EPEL 6 Security updates need testing:

https://admin.fedoraproject.org/updates/drupal7-7.4-1.el6
https://admin.fedoraproject.org/updates/wordpress-3.1.4-1.el6
https://admin.fedoraproject.org/updates/asterisk-1.8.4.4-3.el6
https://admin.fedoraproject.org/updates/dokuwiki-0-0.8.20110525.a.el6
https://admin.fedoraproject.org/updates/mingw32-libpng-1.2.37-3.el6
https://admin.fedoraproject.org/updates/libpng10-1.0.54-3.el6
https://admin.fedoraproject.org/updates/libmodplug-0.8.8.3-2.el6
https://admin.fedoraproject.org/updates/ejabberd-2.1.8-2.el6
https://admin.fedoraproject.org/updates/erlang-R14B-02.1.el6


The following builds have been pushed to Fedora EPEL 6 updates-testing

asterisk-1.8.4.4-3.el6
botan-1.8.12-1.el6
packagedb-cli-1.0.0-6.el6
php-symfony-YAML-1.0.6-1.el6
supybot-gribble-0.83.4.1-6.el6
throttle-1.2-4.el6
waf-1.6.6-1.el6

Details about builds:


================================================== ==============================
asterisk-1.8.4.4-3.el6 (FEDORA-EPEL-2011-3702)
The Open Source PBX
--------------------------------------------------------------------------------
Update Information:

Remove erroneous systemd dependencies

The Asterisk Development Team has announced the release of Asterisk versions
1.4.41.2, 1.6.2.18.2, and 1.8.4.4, which are security releases.

These releases are available for immediate download at
http://downloads.asterisk.org/pub/telephony/asterisk/releases

The release of Asterisk 1.4.41.2, 1.6.2.18.2, and 1.8.4.4 resolves the
following issue:

AST-2011-011: Asterisk may respond differently to SIP requests from an
invalid SIP user than it does to a user configured on the system, even when the
alwaysauthreject option is set in the configuration. This can leak information
about what SIP users are valid on the Asterisk system.

For more information about the details of this vulnerability, please read
the security advisory AST-2011-011, which was released at the same time as this
announcement.

For a full list of changes in the current releases, please see the ChangeLog:

http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.4.41.2
http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.6.2.18.2
http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.4.4

Security advisory AST-2011-011 is available at:

http://downloads.asterisk.org/pub/security/AST-2011-011.pdf
The Asterisk Development Team has announced the release of Asterisk versions
1.4.41.1, 1.6.2.18.1, and 1.8.4.3, which are security releases.

These releases are available for immediate download at
http://downloads.asterisk.org/pub/telephony/asterisk/releases

The release of Asterisk 1.4.41.1, 1.6.2.18, and 1.8.4.3 resolves several issues
as outlined below:

* AST-2011-008: If a remote user sends a SIP packet containing a null,
Asterisk assumes available data extends past the null to the
end of the packet when the buffer is actually truncated when
copied. This causes SIP header parsing to modify data past
the end of the buffer altering unrelated memory structures.
This vulnerability does not affect TCP/TLS connections.
-- Resolved in 1.6.2.18.1 and 1.8.4.3

* AST-2011-009: A remote user sending a SIP packet containing a Contact header
with a missing left angle bracket (<) causes Asterisk to
access a null pointer.
-- Resolved in 1.8.4.3

* AST-2011-010: A memory address was inadvertently transmitted over the
network via IAX2 via an option control frame and the remote party would try
to access it.
-- Resolved in 1.4.41.1, 1.6.2.18.1, and 1.8.4.3


The issues and resolutions are described in the AST-2011-008, AST-2011-009, and
AST-2011-010 security advisories.

For more information about the details of these vulnerabilities, please read
the security advisories AST-2011-008, AST-2011-009, and AST-2011-010, which were
released at the same time as this announcement.

For a full list of changes in the current releases, please see the ChangeLog:

http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.4.41.1
http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.6.2.18.1
http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.4.3

Security advisories AST-2011-008, AST-2011-009, and AST-2011-010 are available
at:

http://downloads.asterisk.org/pub/security/AST-2011-008.pdf
http://downloads.asterisk.org/pub/security/AST-2011-009.pdf
http://downloads.asterisk.org/pub/security/AST-2011-010.pdf

The Asterisk Development Team has announced the release of Asterisk
version 1.8.4.2, which is a security release for Asterisk 1.8.

This release is available for immediate download at
http://downloads.asterisk.org/pub/telephony/asterisk/releases

The release of Asterisk 1.8.4.2 resolves an issue with SIP URI
parsing which can lead to a remotely exploitable crash:

Remote Crash Vulnerability in SIP channel driver (AST-2011-007)

The issue and resolution is described in the AST-2011-007 security
advisory.

For more information about the details of this vulnerability, please
read the security advisory AST-2011-007, which was released at the
same time as this announcement.

For a full list of changes in the current release, please see the ChangeLog:

http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.4.2

Security advisory AST-2011-007 is available at:

http://downloads.asterisk.org/pub/security/AST-2011-007.pdf

The Asterisk Development Team has announced the release of Asterisk 1.8.4.1.
This release is available for immediate download at
http://downloads.asterisk.org/pub/telephony/asterisk/

The release of Asterisk 1.8.4.1 resolves several issues reported by the
community. Without your help this release would not have been possible.
Thank you!

Below is a list of issues resolved in this release:

* Fix our compliance with RFC 3261 section 18.2.2. (aka Cisco phone fix)
(Closes issue #18951. Reported by jmls. Patched by wdoekes)

* Resolve a change in IPv6 header parsing due to the Cisco phone fix issue.
This issue was found and reported by the Asterisk test suite.
(Closes issue #18951. Patched by mnicholson)

* Resolve potential crash when using SIP TLS support.
(Closes issue #19192. Reported by stknob. Patched by Chainsaw. Tested by
vois, Chainsaw)

* Improve reliability when using SIP TLS.
(Closes issue #19182. Reported by st. Patched by mnicholson)


For a full list of changes in this release candidate, please see the ChangeLog:

http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.8.4.1

The Asterisk Development Team has announced the release of Asterisk 1.8.4. This
release is available for immediate download at
http://downloads.asterisk.org/pub/telephony/asterisk/

The release of Asterisk 1.8.4 resolves several issues reported by the community.
Without your help this release would not have been possible. Thank you!

Below is a sample of the issues resolved in this release:

* Use SSLv23_client_method instead of old SSLv2 only.
(Closes issue #19095, #19138. Reported, patched by tzafrir. Tested by russell
and chazzam.

* Resolve crash in ast_mutex_init()
(Patched by twilson)

* Resolution of several DTMF based attended transfer issues.
(Closes issue #17999, #17096, #18395, #17273. Reported by iskatel, gelo,
shihchuan, grecco. Patched by rmudgett)

NOTE: Be sure to read the ChangeLog for more information about these changes.

* Resolve deadlocks related to device states in chan_sip
(Closes issue #18310. Reported, patched by one47. Patched by jpeeler)

* Resolve an issue with the Asterisk manager interface leaking memory when
disabled.
(Reported internally by kmorgan. Patched by russellb)

* Support greetingsfolder as documented in voicemail.conf.sample.
(Closes issue #17870. Reported by edhorton. Patched by seanbright)

* Fix channel redirect out of MeetMe() and other issues with channel softhangup
(Closes issue #18585. Reported by oej. Tested by oej, wedhorn, russellb.
Patched by russellb)

* Fix voicemail sequencing for file based storage.
(Closes issue #18498, #18486. Reported by JJCinAZ, bluefox. Patched by
jpeeler)

* Set hangup cause in local_hangup so the proper return code of 486 instead of
503 when using Local channels when the far sides returns a busy. Also affects
CCSS in Asterisk 1.8+.
(Patched by twilson)

* Fix issues with verbose messages not being output to the console.
(Closes issue #18580. Reported by pabelanger. Patched by qwell)

* Fix Deadlock with attended transfer of SIP call
(Closes issue #18837. Reported, patched by alecdavis. Tested by
alecdavid, Irontec, ZX81, cmaj)

Includes changes per AST-2011-005 and AST-2011-006
For a full list of changes in this release candidate, please see the ChangeLog:

http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.8.4

Information about the security releases are available at:

http://downloads.asterisk.org/pub/security/AST-2011-005.pdf
http://downloads.asterisk.org/pub/security/AST-2011-006.pdf

--------------------------------------------------------------------------------
ChangeLog:

* Fri Jul 1 2011 Jeffrey C. Ollie <jeff@ocjtech.us> - 1.8.4.4-3
- Bump release
* Fri Jul 1 2011 Jeffrey C. Ollie <jeff@ocjtech.us> - 1.8.4.4-2
- Fix systemd dependencies in EL6 and F15
* Thu Jun 30 2011 Jeffrey C. Ollie <jeff@ocjtech.us> - 1.8.4.4-2
- Fedora Directory Server -> 389 Directory Server
* Wed Jun 29 2011 Jeffrey C. Ollie <jeff@ocjtech.us> - 1.8.4.4-1
- The Asterisk Development Team has announced the release of Asterisk
- versions 1.4.41.2, 1.6.2.18.2, and 1.8.4.4, which are security
- releases.
-
- These releases are available for immediate download at
- http://downloads.asterisk.org/pub/telephony/asterisk/releases
-
- The release of Asterisk 1.4.41.2, 1.6.2.18.2, and 1.8.4.4 resolves the
- following issue:
-
- AST-2011-011: Asterisk may respond differently to SIP requests from an
- invalid SIP user than it does to a user configured on the system, even
- when the alwaysauthreject option is set in the configuration. This can
- leak information about what SIP users are valid on the Asterisk
- system.
-
- For more information about the details of this vulnerability, please
- read the security advisory AST-2011-011, which was released at the
- same time as this announcement.
-
- For a full list of changes in the current releases, please see the ChangeLog:
-
- http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.4.41.2
- http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.6.2.18.2
- http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.4.4
-
- Security advisory AST-2011-011 is available at:
-
- http://downloads.asterisk.org/pub/security/AST-2011-011.pdf
* Mon Jun 27 2011 Jeffrey C. Ollie <jeff@ocjtech.us> - 1.8.4.3-3
- Don't forget stereorize
* Mon Jun 27 2011 Jeffrey C. Ollie <jeff@ocjtech.us> - 1.8.4.3-2
- Move /var/run/asterisk to /run/asterisk
- Add comments to systemd service file on how to mimic safe_asterisk functionality
- Build more of the optional binaries
- Install the tmpfiles.d configuration on Fedora 15
* Fri Jun 24 2011 Jeffrey C. Ollie <jeff@ocjtech.us> - 1.8.4.3-1
- The Asterisk Development Team has announced the release of Asterisk versions
- 1.4.41.1, 1.6.2.18.1, and 1.8.4.3, which are security releases.
-
- These releases are available for immediate download at
- http://downloads.asterisk.org/pub/telephony/asterisk/releases
-
- The release of Asterisk 1.4.41.1, 1.6.2.18, and 1.8.4.3 resolves several issues
- as outlined below:
-
- * AST-2011-008: If a remote user sends a SIP packet containing a null,
- Asterisk assumes available data extends past the null to the
- end of the packet when the buffer is actually truncated when
- copied. This causes SIP header parsing to modify data past
- the end of the buffer altering unrelated memory structures.
- This vulnerability does not affect TCP/TLS connections.
- -- Resolved in 1.6.2.18.1 and 1.8.4.3
-
- * AST-2011-009: A remote user sending a SIP packet containing a Contact header
- with a missing left angle bracket (<) causes Asterisk to
- access a null pointer.
- -- Resolved in 1.8.4.3
-
- * AST-2011-010: A memory address was inadvertently transmitted over the
- network via IAX2 via an option control frame and the remote party would try
- to access it.
- -- Resolved in 1.4.41.1, 1.6.2.18.1, and 1.8.4.3
-
- The issues and resolutions are described in the AST-2011-008, AST-2011-009, and
- AST-2011-010 security advisories.
-
- For more information about the details of these vulnerabilities, please read
- the security advisories AST-2011-008, AST-2011-009, and AST-2011-010, which were
- released at the same time as this announcement.
-
- For a full list of changes in the current releases, please see the ChangeLog:
-
- http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.4.41.1
- http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.6.2.18.1
- http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.4.3
-
- Security advisories AST-2011-008, AST-2011-009, and AST-2011-010 are available
- at:
-
- http://downloads.asterisk.org/pub/security/AST-2011-008.pdf
- http://downloads.asterisk.org/pub/security/AST-2011-009.pdf
- http://downloads.asterisk.org/pub/security/AST-2011-010.pdf
* Tue Jun 21 2011 Jeffrey C. Ollie <jeff@ocjtech.us> - 1.8.4.2-2
- Convert to systemd
* Fri Jun 17 2011 Marcela Mašláňová <mmaslano@redhat.com> - 1.8.4.2-1.2
- Perl mass rebuild
* Fri Jun 10 2011 Marcela Mašláňová <mmaslano@redhat.com> - 1.8.4.2-1.1
- Perl 5.14 mass rebuild
* Fri Jun 3 2011 Jeffrey C. Ollie <jeff@ocjtech.us> - 1.8.4.2-1:
-
- The Asterisk Development Team has announced the release of Asterisk
- version 1.8.4.2, which is a security release for Asterisk 1.8.
-
- This release is available for immediate download at
- http://downloads.asterisk.org/pub/telephony/asterisk/releases
-
- The release of Asterisk 1.8.4.2 resolves an issue with SIP URI
- parsing which can lead to a remotely exploitable crash:
-
- Remote Crash Vulnerability in SIP channel driver (AST-2011-007)
-
- The issue and resolution is described in the AST-2011-007 security
- advisory.
-
- For more information about the details of this vulnerability, please
- read the security advisory AST-2011-007, which was released at the
- same time as this announcement.
-
- For a full list of changes in the current release, please see the ChangeLog:
-
- http://downloads.asterisk.org/pub/telephony/asterisk/releases/ChangeLog-1.8.4.2
-
- Security advisory AST-2011-007 is available at:
-
- http://downloads.asterisk.org/pub/security/AST-2011-007.pdf
-
- The Asterisk Development Team has announced the release of Asterisk 1.8.4.1.
- This release is available for immediate download at
- http://downloads.asterisk.org/pub/telephony/asterisk/
-
- The release of Asterisk 1.8.4.1 resolves several issues reported by the
- community. Without your help this release would not have been possible.
- Thank you!
-
- Below is a list of issues resolved in this release:
-
- * Fix our compliance with RFC 3261 section 18.2.2. (aka Cisco phone fix)
- (Closes issue #18951. Reported by jmls. Patched by wdoekes)
-
- * Resolve a change in IPv6 header parsing due to the Cisco phone fix issue.
- This issue was found and reported by the Asterisk test suite.
- (Closes issue #18951. Patched by mnicholson)
-
- * Resolve potential crash when using SIP TLS support.
- (Closes issue #19192. Reported by stknob. Patched by Chainsaw. Tested by
- vois, Chainsaw)
-
- * Improve reliability when using SIP TLS.
- (Closes issue #19182. Reported by st. Patched by mnicholson)
-
-
- For a full list of changes in this release candidate, please see the ChangeLog:
-
- http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.8.4.1

- The Asterisk Development Team has announced the release of Asterisk 1.8.4. This
- release is available for immediate download at
- http://downloads.asterisk.org/pub/telephony/asterisk/
-
- The release of Asterisk 1.8.4 resolves several issues reported by the community.
- Without your help this release would not have been possible. Thank you!
-
- Below is a sample of the issues resolved in this release:
-
- * Use SSLv23_client_method instead of old SSLv2 only.
- (Closes issue #19095, #19138. Reported, patched by tzafrir. Tested by russell
- and chazzam.
-
- * Resolve crash in ast_mutex_init()
- (Patched by twilson)
-
- * Resolution of several DTMF based attended transfer issues.
- (Closes issue #17999, #17096, #18395, #17273. Reported by iskatel, gelo,
- shihchuan, grecco. Patched by rmudgett)
-
- NOTE: Be sure to read the ChangeLog for more information about these changes.
-
- * Resolve deadlocks related to device states in chan_sip
- (Closes issue #18310. Reported, patched by one47. Patched by jpeeler)
-
- * Resolve an issue with the Asterisk manager interface leaking memory when
- disabled.
- (Reported internally by kmorgan. Patched by russellb)
-
- * Support greetingsfolder as documented in voicemail.conf.sample.
- (Closes issue #17870. Reported by edhorton. Patched by seanbright)
-
- * Fix channel redirect out of MeetMe() and other issues with channel softhangup
- (Closes issue #18585. Reported by oej. Tested by oej, wedhorn, russellb.
- Patched by russellb)
-
- * Fix voicemail sequencing for file based storage.
- (Closes issue #18498, #18486. Reported by JJCinAZ, bluefox. Patched by
- jpeeler)
-
- * Set hangup cause in local_hangup so the proper return code of 486 instead of
- 503 when using Local channels when the far sides returns a busy. Also affects
- CCSS in Asterisk 1.8+.
- (Patched by twilson)
-
- * Fix issues with verbose messages not being output to the console.
- (Closes issue #18580. Reported by pabelanger. Patched by qwell)
-
- * Fix Deadlock with attended transfer of SIP call
- (Closes issue #18837. Reported, patched by alecdavis. Tested by
- alecdavid, Irontec, ZX81, cmaj)
-
- Includes changes per AST-2011-005 and AST-2011-006
- For a full list of changes in this release candidate, please see the ChangeLog:
-
- http://downloads.asterisk.org/pub/telephony/asterisk/ChangeLog-1.8.4
-
- Information about the security releases are available at:
-
- http://downloads.asterisk.org/pub/security/AST-2011-005.pdf
- http://downloads.asterisk.org/pub/security/AST-2011-006.pdf
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #710441 - CVE-2011-2216 Asterisk: Remote DoS (crash) in SIP channel driver (AST-2011-007)
https://bugzilla.redhat.com/show_bug.cgi?id=710441
--------------------------------------------------------------------------------


================================================== ==============================
botan-1.8.12-1.el6 (FEDORA-EPEL-2011-3703)
Crypto library written in C++
--------------------------------------------------------------------------------
Update Information:

Update to the latest version of the 1.8 series, 1.8.12.

Relevant items from the upstream changelog:

* If EMSA3(Raw) was used for more than one signature, it would produce incorrect output.
* Fix a memory leak in the constructors of DataSource_Stream and DataSink_Stream which would occur if opening the file failed. PR 144

See http://botan.randombit.net/log.html#version-1-8-12-2011-06-20.
--------------------------------------------------------------------------------
ChangeLog:

* Sat Jul 2 2011 Thomas Moschny <thomas.moschny@gmx.de> - 1.8.12-1
- Update to 1.8.12.
* Mon Feb 7 2011 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.8.11-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
--------------------------------------------------------------------------------


================================================== ==============================
packagedb-cli-1.0.0-6.el6 (FEDORA-EPEL-2011-3665)
A CLI for pkgdb
--------------------------------------------------------------------------------
Update Information:

First release of packagedb-cli
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #717555 - Review Request: packagedb-cli - A CLI for pkgdb
https://bugzilla.redhat.com/show_bug.cgi?id=717555
--------------------------------------------------------------------------------


================================================== ==============================
php-symfony-YAML-1.0.6-1.el6 (FEDORA-EPEL-2011-3699)
The Symfony YAML Component
--------------------------------------------------------------------------------
Update Information:

* move documentation in /usr/share/doc/pear

Upstream Changelog

Version 1.0.6
* fabien: fixed typo
* fabien: renamed doc files to avoid collision with pecl/yaml

Version 1.0.5
* indiyets: fixed package.xml

Version 1.0.4
* fabien: fixed parsing of simple inline documents

--------------------------------------------------------------------------------
ChangeLog:

* Sat Jul 2 2011 Remi Collet <Fedora@famillecollet.com> - 1.0.6-1
- Version 1.0.6 (stable) - API 1.0.0 (stable)
- move doc in /usr/share/doc/pear
- add generated CHANGELOG
--------------------------------------------------------------------------------


================================================== ==============================
supybot-gribble-0.83.4.1-6.el6 (FEDORA-EPEL-2011-3707)
Cross-platform support bot based on supybot
--------------------------------------------------------------------------------
Update Information:

Here is where you
give an explanation of
your update.
Here is where you
give an explanation of
your update.
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #693664 - Review Request: supybot-gribble - Cross-platform support bot based on supybot
https://bugzilla.redhat.com/show_bug.cgi?id=693664
--------------------------------------------------------------------------------


================================================== ==============================
throttle-1.2-4.el6 (FEDORA-EPEL-2011-3700)
Bandwidth limiting pipe
--------------------------------------------------------------------------------
Update Information:

initial package
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #617340 - Review Request: throttle - copy stdin to stdout at the specified speed (or lower)
https://bugzilla.redhat.com/show_bug.cgi?id=617340
--------------------------------------------------------------------------------


================================================== ==============================
waf-1.6.6-1.el6 (FEDORA-EPEL-2011-3706)
A Python-based build system
--------------------------------------------------------------------------------
Update Information:

Update to latest version, 1.6.6. From the upstream changelog:

NEW IN WAF 1.6.6
----------------

* Fix the performance regression related to #974

NEW IN WAF 1.6.5
----------------

* More documentation
* Re-enable the colors for msys
* Add the .ui files for the qt4 translations
* Fix the conf.check_large_file() test
* Fix the conf.check_library() in C++ mode #955
* Improve the latex scanner to avoid depending on generated files #943
* Remove the @file processing from the winrc tasks
* Fix the python detection using python-config
* Add the missing default includes and defines to the moc command
* Improve support for hierarchical go-lang packages #953
* Fix the gfortran verbose flag detection on Windows
* Fix the support of fortran import libraries #950
* Added a fix for running with Python 2.4 on Windows #949
* Limited support for IronPython
* Support for older Visual Studio versions (VC6) #952
* New waf.bat file #964
* New method ConfigSet.keys
* New Visual Studio and Eclipse CTD project generators (waflib/extras)
* New lru_cache tool for use with WAFCACHE (waflib/extras)

--------------------------------------------------------------------------------
ChangeLog:

* Sat Jun 18 2011 Thomas Moschny <thomas.moschny@gmx.de> - 1.6.6-1
- Update to 1.6.6.
- Remove unused extras/subprocess.py.
- Small patch for syntax errors.
--------------------------------------------------------------------------------


_______________________________________________
epel-devel-list mailing list
epel-devel-list@redhat.com
https://www.redhat.com/mailman/listinfo/epel-devel-list
 
Old 07-03-2011, 05:00 PM
 
Default Fedora EPEL 6 updates-testing report

The following Fedora EPEL 6 Security updates need testing:

https://admin.fedoraproject.org/updates/drupal7-7.4-1.el6
https://admin.fedoraproject.org/updates/wordpress-3.1.4-1.el6
https://admin.fedoraproject.org/updates/asterisk-1.8.4.4-3.el6
https://admin.fedoraproject.org/updates/dokuwiki-0-0.8.20110525.a.el6
https://admin.fedoraproject.org/updates/mingw32-libpng-1.2.37-3.el6
https://admin.fedoraproject.org/updates/libpng10-1.0.54-3.el6
https://admin.fedoraproject.org/updates/ejabberd-2.1.8-2.el6
https://admin.fedoraproject.org/updates/erlang-R14B-02.1.el6


The following builds have been pushed to Fedora EPEL 6 updates-testing

gerbv-2.5.0-1.el6
python-blist-1.3.4-1.el6

Details about builds:


================================================== ==============================
gerbv-2.5.0-1.el6 (FEDORA-EPEL-2011-3708)
Gerber file viewer from the gEDA toolkit
--------------------------------------------------------------------------------
Update Information:

New release 2.5.0
--------------------------------------------------------------------------------
ChangeLog:

* Fri Jun 3 2011 Chitlesh Goorah <chitlesh [AT] fedoraproject DOT org> - 2.5.0-1
- new upstream release
--------------------------------------------------------------------------------


================================================== ==============================
python-blist-1.3.4-1.el6 (FEDORA-EPEL-2011-3709)
A faster list implementation for Python
--------------------------------------------------------------------------------
Update Information:

Latest upstream release
--------------------------------------------------------------------------------
ChangeLog:

* Sat Jul 2 2011 Michel Salim <salimma@fedoraproject.org> - 1.3.4-1
- Update to 1.3.4
* Tue Feb 8 2011 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.2.1-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
--------------------------------------------------------------------------------


_______________________________________________
epel-devel-list mailing list
epel-devel-list@redhat.com
https://www.redhat.com/mailman/listinfo/epel-devel-list
 
Old 07-04-2011, 03:47 PM
 
Default Fedora EPEL 6 updates-testing report

The following Fedora EPEL 6 Security updates need testing:

https://admin.fedoraproject.org/updates/drupal7-7.4-1.el6
https://admin.fedoraproject.org/updates/wordpress-3.1.4-1.el6
https://admin.fedoraproject.org/updates/asterisk-1.8.4.4-3.el6
https://admin.fedoraproject.org/updates/dokuwiki-0-0.8.20110525.a.el6
https://admin.fedoraproject.org/updates/mingw32-libpng-1.2.37-3.el6
https://admin.fedoraproject.org/updates/libpng10-1.0.54-3.el6
https://admin.fedoraproject.org/updates/ejabberd-2.1.8-2.el6
https://admin.fedoraproject.org/updates/erlang-R14B-02.1.el6


The following builds have been pushed to Fedora EPEL 6 updates-testing

dnssec-tools-1.10-1.el6
scalpel-2.0-1.el6
skipfish-2.01-0.1.b.el6

Details about builds:


================================================== ==============================
dnssec-tools-1.10-1.el6 (FEDORA-EPEL-2011-3715)
A suite of tools for managing dnssec aware DNS usage
--------------------------------------------------------------------------------
Update Information:

Updated to the upstream 1.10 release.
Include packaging the root.hints file
Move some configuration files that only affect the libraries to -libs
--------------------------------------------------------------------------------


================================================== ==============================
scalpel-2.0-1.el6 (FEDORA-EPEL-2011-3713)
Fast file carver working on disk images
--------------------------------------------------------------------------------
Update Information:

Bump to new release.
--------------------------------------------------------------------------------
ChangeLog:

* Sun Jul 3 2011 Michal Ambroz <rebus at, seznam.cz> 2.0-1
- bump to new release 2.0-1
* Wed Feb 9 2011 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.60-4
- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
--------------------------------------------------------------------------------


================================================== ==============================
skipfish-2.01-0.1.b.el6 (FEDORA-EPEL-2011-3717)
Web application security scanner
--------------------------------------------------------------------------------
Update Information:

Bump to new release.
--------------------------------------------------------------------------------
ChangeLog:

* Sun Mar 27 2011 Michal Ambroz <rebus AT seznam.cz> - 1.85-0.1.b
- rebuild for version 1.85b
* Wed Feb 9 2011 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.84-0.2.b
- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
--------------------------------------------------------------------------------


_______________________________________________
epel-devel-list mailing list
epel-devel-list@redhat.com
https://www.redhat.com/mailman/listinfo/epel-devel-list
 
Old 07-06-2011, 06:03 PM
 
Default Fedora EPEL 6 updates-testing report

The following Fedora EPEL 6 Security updates need testing:

https://admin.fedoraproject.org/updates/drupal7-7.4-1.el6
https://admin.fedoraproject.org/updates/asterisk-1.8.4.4-3.el6
https://admin.fedoraproject.org/updates/dokuwiki-0-0.8.20110525.a.el6
https://admin.fedoraproject.org/updates/mingw32-libpng-1.2.37-3.el6
https://admin.fedoraproject.org/updates/libpng10-1.0.54-3.el6
https://admin.fedoraproject.org/updates/ejabberd-2.1.8-2.el6
https://admin.fedoraproject.org/updates/erlang-R14B-02.1.el6


The following builds have been pushed to Fedora EPEL 6 updates-testing

389-admin-1.1.20-1.el6
cmake-fedora-0.6.1-1.el6
cups-bjnp-1.0-1.el6
gridsite-1.7.15-4.el6
libupnp-1.6.13-1.el6
libzdb-2.8.1-1.el6
perl-Crypt-RC4-2.02-1.el6
php-zipstream-0.2.2-1.el6
python-asciitable-0.7.0.2-1.el6
wordpress-3.2-1.el6

Details about builds:


================================================== ==============================
389-admin-1.1.20-1.el6 (FEDORA-EPEL-2011-3725)
389 Administration Server (admin)
--------------------------------------------------------------------------------
Update Information:

several tls/ssl and migration bug fixes
look for separate openldap ldif library
skip rebranding current brand - add support for different skins
The 1.1.17 release
--------------------------------------------------------------------------------
ChangeLog:

* Tue Jul 5 2011 Rich Megginson <rmeggins@redhat.com> - 1.1.20-1
- Bug 719056 - migrate-ds-admin.pl needs to update SELinux policy
- Bug 718285 - AdminServer should use "service" command instead of start/stop/restart scripts
- Bug 718079 - Perl errors when running migrate-ds-admin.pl
- Bug 713000 - Migration stops if old admin server cannot be stopped
- added tests for the security cgi
- fix typo in NSS_Shutdown warning message
- better NSS error handling - reduce memory leaks
- Bug 710372 - Not able to open the Manage Certificate from DS-console
* Tue Jun 28 2011 Rich Megginson <rmeggins@redhat.com> - 1.1.19-1
- look for separate openldap ldif library
* Tue Jun 21 2011 Rich Megginson <rmeggins@redhat.com> - 1.1.18-1
- skip rebranding current brand
- support for skins
* Fri May 13 2011 Rich Megginson <rmeggins@redhat.com> - 1.1.17-1
- 1.1.17
- support "in-place" upgrade and rebranding from Red Hat to 389
- many fixes for coverity issues
* Tue Mar 29 2011 Rich Megginson <rmeggins@redhat.com> - 1.1.16-1
- 389-admin-1.1.16
- Bug 476925 - Admin Server: Do not allow 8-bit passwords for the admin user
- Bug 614690 - Don't use exec to call genrb
- Bug 158926 - Unable to install CA certificate when using
- hardware token ( LunaSA )
- Bug 211296 - Clean up all HTML pages (Admin Express, Repl Monitor, etc)
* Wed Feb 23 2011 Rich Megginson <rmeggins@redhat.com> - 1.1.15-1
- 1.1.15 release - git tag 389-admin-1.1.15
- Bug 493424 - remove unneeded modules for admin server apache config
- Bug 618897 - Wrong permissions when creating instance from Console
- Bug 672468 - Don't use empty path elements in LD_LIBRARY_PATH
- Bug 245278 - Changing to a password with a single quote does not work
- Bug 604881 - admin server log files have incorrect permissions/ownerships
- Bug 387981 - plain files can be chosen on the Restore Directory dialog
- Bug 668950 - Add posix group support to Console
- Bug 618858 - move start-ds-admin env file into main admin server config path
- Bug 616260 - libds-admin-serv linking fails due to unresolved link-time depe
ndencies
- start-ds-admin.in -- replaced "return 1" with "exit 1"
- Bug 151705 - Need to update Console Cipher Preferences with new ciphers
- Bug 470576 - Migration could do addition checks before commiting actions
* Wed Jan 5 2011 Rich Megginson <rmeggins@redhat.com> - 1.1.14-1
- 1.1.14 release
- Bug 664671 - Admin server segfault when full SSL access (http+ldap+console)
required
- Bug 638511 - dirsrv-admin crashes at startup with SELinux enabled
* Mon Nov 29 2010 Rich Megginson <rmeggins@redhat.com> - 1.1.13-2
- fix Conflicts for selinux policy
* Tue Nov 23 2010 Rich Megginson <rmeggins@redhat.com> - 1.1.13-1
- This is the final 1.1.13 release
- git tag 389-admin-1.1.13
- Bug 656441 - Missing library path entry causes LD_PRELOAD error
- setup-ds-admin.pl -u exits with ServerAdminID and as_uid related error
* Thu Nov 18 2010 Nathan Kinder <nkinder@redhat.com> - 1.1.12-2
- This is the final 1.1.12 release
- git tag 389-admin-1.1.12
- Corrected conflict version for selinux-policy
* Fri Nov 12 2010 Nathan Kinder <nkinder@redhat.com> - 1.1.1.12-1
- This is the final 1.1.12 release
- git tag 389-admin-1.1.12
* Fri Nov 12 2010 Nathan Kinder <nkinder@redhat.com> - 1.1.1.12-1
- Bug 648949 - Merge dirsrv and dirsrv-admin policy modules into base policy
* Tue Oct 26 2010 Rich Megginson <rmeggins@redhat.com> - 1.1.12-0.2.a2
- fix mozldap build breakage
* Tue Sep 28 2010 Rich Megginson <rmeggins@redhat.com> - 1.1.12-0.1.a1
- This is the 1.1.12 alpha 1 release - with openldap support
* Thu Aug 26 2010 Rich Megginson <rmeggins@redhat.com> - 1.1.11-1
- This is the final 1.1.11 release
* Wed Aug 4 2010 Rich Megginson <rmeggins@redhat.com> - 1.1.11-0.6.rc2
- 1.1.11.rc2 release
- git tag 389-admin-1.1.11.rc2
- Bug 594745 - Get rid of dirsrv_lib_t label
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #719056 - migrate-ds-admin.pl needs to update SELinux policy
https://bugzilla.redhat.com/show_bug.cgi?id=719056
[ 2 ] Bug #718285 - AdminServer should use "service" command instead of start/stop/restart scripts
https://bugzilla.redhat.com/show_bug.cgi?id=718285
[ 3 ] Bug #718079 - Perl errors when running migrate-ds-admin.pl
https://bugzilla.redhat.com/show_bug.cgi?id=718079
[ 4 ] Bug #713000 - Migration stops if old admin server cannot be stopped
https://bugzilla.redhat.com/show_bug.cgi?id=713000
[ 5 ] Bug #710372 - Not able to open the Manage Certificate from DS-console
https://bugzilla.redhat.com/show_bug.cgi?id=710372
--------------------------------------------------------------------------------


================================================== ==============================
cmake-fedora-0.6.1-1.el6 (FEDORA-EPEL-2011-3724)
CMake helper modules for fedora developers
--------------------------------------------------------------------------------
Update Information:

- Remove f13 from FEDORA_CURRENT_RELEASE_TAGS, as Fedora 13 is end of life.
- ManageMessage: New module.
+ M_MSG: Controllable verbose output
- ManageRelease: New module.
+ MANAGE_RELEASE: Make release by uploading files to hosting services
- Now ManageReleaseOnFedora includes ManageMaintainerTargets
- Modules are shown what they include and included by.
- Now tag depends on koji_scratch_build, while fedpkg_commit master
(or other primary branch) depends directly on tag.
- MAINTAINER_SETTING_READ_FILE now can either use MAINTAINER_SETTING, or take
one argument that define maintainer setting file.
- MANAGE_MAINTAINER_TARGETS_UPLOAD no longer require argument hostService,
It now relies on HOSTING_SERVICES from maintainer setting file.
- Minimum cmake requirement is now raise to 2.6
--------------------------------------------------------------------------------
ChangeLog:

* Wed Jul 6 2011 Ding-Yi Chen <dchen at redhat.com> - 0.6.1-1
- Remove f13 from FEDORA_CURRENT_RELEASE_TAGS, as Fedora 13 is end of life.
- ManageMessage: New module.
+ M_MSG: Controllable verbose output
- ManageRelease: New module.
+ MANAGE_RELEASE: Make release by uploading files to hosting services
- Now ManageReleaseOnFedora includes ManageMaintainerTargets
- Modules are shown what they include and included by.
- Now tag depends on koji_scratch_build, while fedpkg_commit master
(or other primary branch) depends directly on tag.
- MAINTAINER_SETTING_READ_FILE now can either use MAINTAINER_SETTING, or take
one argument that define maintainer setting file.
- MANAGE_MAINTAINER_TARGETS_UPLOAD no longer require argument hostService,
It now relies on HOSTING_SERVICES from maintainer setting file.
- Minimum cmake requirement is now raise to 2.6
--------------------------------------------------------------------------------


================================================== ==============================
cups-bjnp-1.0-1.el6 (FEDORA-EPEL-2011-3729)
CUPS backend for the Canon BJNP network printers
--------------------------------------------------------------------------------
Update Information:

New upstream release
Fix FTBS on Fedora BZ715649
Fix hostname resolution on some buggy routers that return bogus hostnames on a
reverse lookup
--------------------------------------------------------------------------------
ChangeLog:

* Tue Jul 5 2011 Louis Lagendijk <llagendijk@users.sourceforge.net> - 1.0-1
- New upstream release
- Fix FTBS on Fedora BZ715649
- Fix hostname resolution on some buggy routers that return bogus hostnames on a
reverse lookup
* Tue Feb 8 2011 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.5.5-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
* Sat Nov 27 2010 Louis Lagendijk <llagendijk@users.sourceforge.net> - 0.5.5-2
added patch for compilation for cups-1.3
--------------------------------------------------------------------------------


================================================== ==============================
gridsite-1.7.15-4.el6 (FEDORA-EPEL-2011-3695)
Grid Security for the Web, Web platforms for Grids
--------------------------------------------------------------------------------
Update Information:

Changes from 1.7.9 to 1.7.15.

* Fixing memleak in GRSTx509MakeProxyCert
* Not relying on hard-coded positions of certificates (fixes using VOMS .lsc files)
* Fixes from Mattias Ellert <mellert> (bugs #69632, #83449, and #83450):
* extern "C" declarations and include protections in public headers
* integer/pointer portability fix
* proper link ordering
* IPv6 portability
* Fix static declaration in public header, function GACLparseEntry() added into gridsite-gacl.h
* Makefile distinguishes between -lgsoap and -lgsoapssl in cflags.
* Makefile: CFLAGS cleanup, HTTPD_FLAGS replaces httpd-specific cflags.
* Unresolved symbols from xml in _globus and _nossl library versions fixed.
* Compile and link flags of dependencies unified.
* Portability improvements
* Support for using IPv6
* Patch to grst_x509.c VOMS verification from Daniel Kouril


--------------------------------------------------------------------------------
ChangeLog:

* Wed Jul 6 2011 Steve Traylen <steve.traylen@cern.ch> - 1.7.15-4
- devel package require openssl devel rhbz#719174
* Sun Jul 3 2011 Steve Traylen <steve.traylen@cern.ch> - 1.7.15-3
- Correct dependency mistake.
* Thu Jun 30 2011 Steve Traylen <steve.traylen@cern.ch> - 1.7.15-2
- Add a gridsite-compat-1.5 package on EPEL4 & EPEL5.
- Remove doc package requiring devel package.
* Thu Jun 30 2011 Steve Traylen <steve.traylen@cern.ch> - 1.7.15-1
- Upstream 1.7.15, drop gridsite-include-1.7.9.patch since upstream,
redo cgi-location patch.
* Mon Jun 27 2011 Steve Traylen <steve.traylen@cern.ch> - 1.7.13-1
- Upstream 1.7.13
* Wed Apr 6 2011 Steve Traylen <steve.traylen@cern.ch> - 1.7.12-1
- Upstream 1.7.12
* Wed Feb 9 2011 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.7.9-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #719174 - gridsite-devel should depend on openssl-devel
https://bugzilla.redhat.com/show_bug.cgi?id=719174
--------------------------------------------------------------------------------


================================================== ==============================
libupnp-1.6.13-1.el6 (FEDORA-EPEL-2011-3726)
Universal Plug and Play (UPnP) SDK
--------------------------------------------------------------------------------
Update Information:

New build for EL-6
--------------------------------------------------------------------------------


================================================== ==============================
libzdb-2.8.1-1.el6 (FEDORA-EPEL-2011-3720)
Small, fast, and easy to use database API
--------------------------------------------------------------------------------
Update Information:

This is a bug fix release which fixes a transaction related memory leak in the Oracle driver. There are no other changes.
--------------------------------------------------------------------------------
ChangeLog:

* Tue Jul 5 2011 Bernard Johnson <bjohnson@symetrix.com> - 2.8.1-1
- bump to 2.8.1 which fixes a Oracle driver transaction memory leak
* Wed Mar 23 2011 Dan Horák <dan@danny.cz> - 2.8-2
- rebuilt for mysql 5.5.10 (soname bump in libmysqlclient)
--------------------------------------------------------------------------------


================================================== ==============================
perl-Crypt-RC4-2.02-1.el6 (FEDORA-EPEL-2011-3722)
Perl implementation of the RC4 encryption algorithm
--------------------------------------------------------------------------------
Update Information:

New package for EPEL 6.
--------------------------------------------------------------------------------


================================================== ==============================
php-zipstream-0.2.2-1.el6 (FEDORA-EPEL-2011-3730)
Streaming dynamic zip from PHP without writing to the disk
--------------------------------------------------------------------------------
Update Information:

ZipStream is a library for dynamically streaming dynamic zip files from PHP
without writing to the disk at all on the server.
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #716615 - Review Request: php-zipstream - zipstream-php
https://bugzilla.redhat.com/show_bug.cgi?id=716615
--------------------------------------------------------------------------------


================================================== ==============================
python-asciitable-0.7.0.2-1.el6 (FEDORA-EPEL-2011-3719)
Extensible ASCII table reader and writer
--------------------------------------------------------------------------------
Update Information:

New upstream version with Latex, AASTex support
--------------------------------------------------------------------------------
ChangeLog:

* Wed Jul 6 2011 Sergio Pascual <sergiopr@fedoraproject.org> - 0.7.0.2-1
- New upstream version with Latex, AASTex support
--------------------------------------------------------------------------------


================================================== ==============================
wordpress-3.2-1.el6 (FEDORA-EPEL-2011-3727)
Blog tool and publishing platform
--------------------------------------------------------------------------------
Update Information:

New upstream release.
Release notes are at
http://wordpress.org/news/2011/07/gershwin/
--------------------------------------------------------------------------------
ChangeLog:

* Tue Jul 5 2011 Matěj Cepl <mcepl@redhat.com> - 3.2-1
- New upstream release.
--------------------------------------------------------------------------------


_______________________________________________
epel-devel-list mailing list
epel-devel-list@redhat.com
https://www.redhat.com/mailman/listinfo/epel-devel-list
 
Old 07-08-2011, 04:05 PM
 
Default Fedora EPEL 6 updates-testing report

The following Fedora EPEL 6 Security updates need testing:

https://admin.fedoraproject.org/updates/libpng10-1.0.55-1.el6
https://admin.fedoraproject.org/updates/drupal7-7.4-1.el6
https://admin.fedoraproject.org/updates/asterisk-1.8.4.4-3.el6
https://admin.fedoraproject.org/updates/dokuwiki-0-0.8.20110525.a.el6
https://admin.fedoraproject.org/updates/mingw32-libpng-1.2.37-3.el6
https://admin.fedoraproject.org/updates/phpMyAdmin-3.4.3.1-1.el6
https://admin.fedoraproject.org/updates/ejabberd-2.1.8-2.el6
https://admin.fedoraproject.org/updates/erlang-R14B-02.1.el6


The following builds have been pushed to Fedora EPEL 6 updates-testing

GtkAda-2.14.1-8.el6.1
PragmARC-20060427-11.1.el6
cmake-fedora-0.7.0-1.el6
cmake-fedora-0.7.1-1.el6
fedora-gnat-project-common-3.1-1.1.el6.1
gnucash-2.4.7-1.el6
gnucash-docs-2.4.1-1.el6
libpng10-1.0.55-1.el6
libpri-1.4.12-1.el6
mine_detector-6.0-7.1.el6
oz-0.5.0-2.el6
phpMyAdmin-3.4.3.1-1.el6
roundcubemail-0.5.3-1.el6

Details about builds:


================================================== ==============================
GtkAda-2.14.1-8.el6.1 (FEDORA-EPEL-2011-3731)
Ada graphical toolkit based on Gtk+
--------------------------------------------------------------------------------
Update Information:

This update adds four packages from Fedora to EPEL 6.
--------------------------------------------------------------------------------


================================================== ==============================
PragmARC-20060427-11.1.el6 (FEDORA-EPEL-2011-3731)
PragmAda Reusable Components, a component library for Ada
--------------------------------------------------------------------------------
Update Information:

This update adds four packages from Fedora to EPEL 6.
--------------------------------------------------------------------------------


================================================== ==============================
cmake-fedora-0.7.0-1.el6 (FEDORA-EPEL-2011-3732)
CMake helper modules for fedora developers
--------------------------------------------------------------------------------
Update Information:

- Fixed target: after_release_commit.
- Add "INCLUDE(ManageRelease)" in template
so new project will not get CMake command "MANAGE_RELEASE"
- Corrected TODO.
- Corrected ChangeLog.prev and SPECS/RPM-ChangeLog.prev.
- By default, the CMAKE_INSTALL_PREFIX is set as '/usr'.
- Remove f13 from FEDORA_CURRENT_RELEASE_TAGS, as Fedora 13 is end of life.
- ManageMessage: New module.
+ M_MSG: Controllable verbose output
- ManageRelease: New module.
+ MANAGE_RELEASE: Make release by uploading files to hosting services
- Now ManageReleaseOnFedora includes ManageMaintainerTargets
- Modules are shown what they include and included by.
- Now tag depends on koji_scratch_build, while fedpkg_commit master
(or other primary branch) depends directly on tag.
- MAINTAINER_SETTING_READ_FILE now can either use MAINTAINER_SETTING, or take
one argument that define maintainer setting file.
- MANAGE_MAINTAINER_TARGETS_UPLOAD no longer require argument hostService,
It now relies on HOSTING_SERVICES from maintainer setting file.
- Minimum cmake requirement is now raise to 2.6
--------------------------------------------------------------------------------
ChangeLog:

* Wed Jul 6 2011 Ding-Yi Chen <dchen at redhat.com> - 0.7.0-1
- Fixed target: after_release_commit.
- Add "INCLUDE(ManageRelease)" in template
so new project will not get CMake command "MANAGE_RELEASE"
- Corrected TODO.
- Corrected ChangeLog.prev and SPECS/RPM-ChangeLog.prev.
- By default, the CMAKE_INSTALL_PREFIX is set as '/usr'.
* Wed Jul 6 2011 Ding-Yi Chen <dchen at redhat.com> - 0.6.1-1
- Remove f13 from FEDORA_CURRENT_RELEASE_TAGS, as Fedora 13 is end of life.
- ManageMessage: New module.
+ M_MSG: Controllable verbose output
- ManageRelease: New module.
+ MANAGE_RELEASE: Make release by uploading files to hosting services
- Now ManageReleaseOnFedora includes ManageMaintainerTargets
- Modules are shown what they include and included by.
- Now tag depends on koji_scratch_build, while fedpkg_commit master
(or other primary branch) depends directly on tag.
- MAINTAINER_SETTING_READ_FILE now can either use MAINTAINER_SETTING, or take
one argument that define maintainer setting file.
- MANAGE_MAINTAINER_TARGETS_UPLOAD no longer require argument hostService,
It now relies on HOSTING_SERVICES from maintainer setting file.
- Minimum cmake requirement is now raise to 2.6.
- Targets which perform after release now have the prefix "after_release".
* Wed Jul 6 2011 Ding-Yi Chen <dchen at redhat.com> - 0.6.1-1
- Remove f13 from FEDORA_CURRENT_RELEASE_TAGS, as Fedora 13 is end of life.
- ManageMessage: New module.
+ M_MSG: Controllable verbose output
- ManageRelease: New module.
+ MANAGE_RELEASE: Make release by uploading files to hosting services
- Now ManageReleaseOnFedora includes ManageMaintainerTargets
- Modules are shown what they include and included by.
- Now tag depends on koji_scratch_build, while fedpkg_commit master
(or other primary branch) depends directly on tag.
- MAINTAINER_SETTING_READ_FILE now can either use MAINTAINER_SETTING, or take
one argument that define maintainer setting file.
- MANAGE_MAINTAINER_TARGETS_UPLOAD no longer require argument hostService,
It now relies on HOSTING_SERVICES from maintainer setting file.
- Minimum cmake requirement is now raise to 2.6
--------------------------------------------------------------------------------


================================================== ==============================
cmake-fedora-0.7.1-1.el6 (FEDORA-EPEL-2011-3740)
CMake helper modules for fedora developers
--------------------------------------------------------------------------------
Update Information:

- Target release now depends on upload.
--------------------------------------------------------------------------------
ChangeLog:

* Fri Jul 8 2011 Ding-Yi Chen <dchen at redhat.com> - 0.7.1-1
- Target release now depends on upload.
* Fri Jul 8 2011 Ding-Yi Chen <dchen at redhat.com> - 0.7.0-1
- Fixed target: after_release_commit.
- Add "INCLUDE(ManageRelease)" in template
so new project will not get CMake command "MANAGE_RELEASE"
- Corrected TODO.
- Corrected ChangeLog.prev and SPECS/RPM-ChangeLog.prev.
- By default, the CMAKE_INSTALL_PREFIX is set as '/usr'.
* Wed Jul 6 2011 Ding-Yi Chen <dchen at redhat.com> - 0.6.1-1
- Remove f13 from FEDORA_CURRENT_RELEASE_TAGS, as Fedora 13 is end of life.
- ManageMessage: New module.
+ M_MSG: Controllable verbose output
- ManageRelease: New module.
+ MANAGE_RELEASE: Make release by uploading files to hosting services
- Now ManageReleaseOnFedora includes ManageMaintainerTargets
- Modules are shown what they include and included by.
- Now tag depends on koji_scratch_build, while fedpkg_commit master
(or other primary branch) depends directly on tag.
- MAINTAINER_SETTING_READ_FILE now can either use MAINTAINER_SETTING, or take
one argument that define maintainer setting file.
- MANAGE_MAINTAINER_TARGETS_UPLOAD no longer require argument hostService,
It now relies on HOSTING_SERVICES from maintainer setting file.
- Minimum cmake requirement is now raise to 2.6.
- Targets which perform after release now have the prefix "after_release".
* Wed Jul 6 2011 Ding-Yi Chen <dchen at redhat.com> - 0.6.1-1
- Remove f13 from FEDORA_CURRENT_RELEASE_TAGS, as Fedora 13 is end of life.
- ManageMessage: New module.
+ M_MSG: Controllable verbose output
- ManageRelease: New module.
+ MANAGE_RELEASE: Make release by uploading files to hosting services
- Now ManageReleaseOnFedora includes ManageMaintainerTargets
- Modules are shown what they include and included by.
- Now tag depends on koji_scratch_build, while fedpkg_commit master
(or other primary branch) depends directly on tag.
- MAINTAINER_SETTING_READ_FILE now can either use MAINTAINER_SETTING, or take
one argument that define maintainer setting file.
- MANAGE_MAINTAINER_TARGETS_UPLOAD no longer require argument hostService,
It now relies on HOSTING_SERVICES from maintainer setting file.
- Minimum cmake requirement is now raise to 2.6
--------------------------------------------------------------------------------


================================================== ==============================
fedora-gnat-project-common-3.1-1.1.el6.1 (FEDORA-EPEL-2011-3731)
Files shared by Ada libraries
--------------------------------------------------------------------------------
Update Information:

This update adds four packages from Fedora to EPEL 6.
--------------------------------------------------------------------------------


================================================== ==============================
gnucash-2.4.7-1.el6 (FEDORA-EPEL-2011-3736)
Finance management application
--------------------------------------------------------------------------------
Update Information:

This updates GnuCash to the latest upstream release, fixing assorted bugs. For more information, see the upstream changelog at http://gnucash.org/#110702-2.4.7.news.
--------------------------------------------------------------------------------
ChangeLog:

* Wed Jul 6 2011 Bill Nottingham <notting@redhat.com> - 2.4.7-1
- update to 2.4.7 (#712268)
- re-enable python bindings. (#712621)
* Thu May 5 2011 Bill Nottingham <notting@redhat.com> - 2.4.5-2
- fix tips (#702391)
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #712268 - broken links
https://bugzilla.redhat.com/show_bug.cgi?id=712268
[ 2 ] Bug #712621 - Python bindings for gnucash not enabled.
https://bugzilla.redhat.com/show_bug.cgi?id=712621
--------------------------------------------------------------------------------


================================================== ==============================
gnucash-docs-2.4.1-1.el6 (FEDORA-EPEL-2011-3736)
Help files and documentation for the GnuCash personal finanace manager
--------------------------------------------------------------------------------
Update Information:

This updates GnuCash to the latest upstream release, fixing assorted bugs. For more information, see the upstream changelog at http://gnucash.org/#110702-2.4.7.news.
--------------------------------------------------------------------------------
ChangeLog:

* Tue Jul 5 2011 Bill Nottingham <notting@redhat.com> - 2.4.1-1
- update to 2.4.1
* Tue Feb 8 2011 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 2.2.0-5
- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #712268 - broken links
https://bugzilla.redhat.com/show_bug.cgi?id=712268
[ 2 ] Bug #712621 - Python bindings for gnucash not enabled.
https://bugzilla.redhat.com/show_bug.cgi?id=712621
--------------------------------------------------------------------------------


================================================== ==============================
libpng10-1.0.55-1.el6 (FEDORA-EPEL-2011-3664)
Old version of libpng, needed to run old binaries
--------------------------------------------------------------------------------
Update Information:

This update fixes a 1-byte uninitialized memory reference in png_format_buffer(). It allows attackers to cause a denial of service (crash) via a malformed PNG image file that triggers an error that causes an out-of-bounds read when creating the error message. This is CVE-2011-2501.

Also fixed in this release are some other minor security problems and there's additionally a bugfix backported from 1.5.3: when expanding a paletted image, always expand to RGBA if transparency is present.
--------------------------------------------------------------------------------
ChangeLog:

* Thu Jul 7 2011 Paul Howarth <paul@city-fan.org> 1.0.55-1
- update to 1.0.55
- fixed uninitialized memory read in png_format_buffer()
(CVE-2011-2501, related to CVE-2004-0421)
- pass "" instead of '' to png_default_error() in png_err()
- check for up->location !PNG_AFTER_IDAT when writing unknown chunks before
IDAT
- ported bugfix in pngrtran.c from 1.5.3: when expanding a paletted image,
always expand to RGBA if transparency is present
- check for integer overflow in png_set_rgb_to_gray()
- check for sCAL chunk too short
- drop upstreamed patch for CVE-2011-2501
- add patch to fix build failure due to regression in libpng.sym creation
* Wed Jun 29 2011 Paul Howarth <paul@city-fan.org> 1.0.54-3
- fix 1-byte uninitialized memory reference in png_format_buffer()
(CVE-2011-2501, related to CVE-2004-0421)
- nobody else likes macros for commands
* Tue Feb 8 2011 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> 1.0.54-2
- rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #717084 - CVE-2011-2501 libpng: regression of CVE-2004-0421 in 1.2.23+
https://bugzilla.redhat.com/show_bug.cgi?id=717084
--------------------------------------------------------------------------------


================================================== ==============================
libpri-1.4.12-1.el6 (FEDORA-EPEL-2011-3733)
An implementation of Primary Rate ISDN
--------------------------------------------------------------------------------
Update Information:

The Asterisk Development Team announces the release of libpri version
1.4.12. This release is available for immediate download at
http://downloads.asterisk.org/pub/telephony/libpri/

The following are some of the issues resolved in this release:

* Add call transfer exchange of subaddresses support and fix PTMP call
transfer signaling.

* Invalid PTMP redirecting signaling as TE towards NT.

* Add Q931_IE_TIME_DATE to CONNECT message when in network mode.
(issue #18047 (JIRA PRI-114). Reported by: wuwu. Patched by rmudgett)

* Swap of master/slave in pri_enslave() incorrect.
(issue #18769 (JIRA PRI-120). Reported by: jcollie. Patched by jcollie)

* Fix I-frame retransmission quirks.

* Crash if NFAS swaps D channels on a call with an active timer.

* DMS-100 not receiving caller name anymore.
(issue #18822 (JIRA PRI-121). Reported by: cmorford. Patched by rmudgett)

* B channel lost by incoming call in BRI NT PTMP mode.

* Implement the mandatory T312 timer for NT PTMP broadcast SETUP calls.

This release contains several new features, among them:

1.) ETSI and Q.SIG Call Completion Supplementary Service (CCSS) support
2.) ETSI Advice Of Charge (AOC) support
3.) ETSI Explicit Call Transfer (ECT) support
4.) ETSI Call Waiting support for ISDN phones
5.) ETSI Malicious Call ID support
6.) Add Display IE text handling options.

For a full list of changes in this release, please see the ChangeLog:

http://downloads.asterisk.org/pub/telephony/libpri/releases/ChangeLog-1.4.12
--------------------------------------------------------------------------------
ChangeLog:

* Wed Jul 6 2011 Jeffrey C. Ollie <jeff@ocjtech.us> - 1.4.12-1
- The Asterisk Development Team announces the release of libpri version
- 1.4.12. This release is available for immediate download at
- http://downloads.asterisk.org/pub/telephony/libpri/
-
- The following are some of the issues resolved in this release:
-
- * Add call transfer exchange of subaddresses support and fix PTMP call
- transfer signaling.
-
- * Invalid PTMP redirecting signaling as TE towards NT.
-
- * Add Q931_IE_TIME_DATE to CONNECT message when in network mode.
- (issue #18047 (JIRA PRI-114). Reported by: wuwu. Patched by rmudgett)
-
- * Swap of master/slave in pri_enslave() incorrect.
- (issue #18769 (JIRA PRI-120). Reported by: jcollie. Patched by jcollie)
-
- * Fix I-frame retransmission quirks.
-
- * Crash if NFAS swaps D channels on a call with an active timer.
-
- * DMS-100 not receiving caller name anymore.
- (issue #18822 (JIRA PRI-121). Reported by: cmorford. Patched by rmudgett)
-
- * B channel lost by incoming call in BRI NT PTMP mode.
-
- * Implement the mandatory T312 timer for NT PTMP broadcast SETUP calls.
-
- This release contains several new features, among them:
-
- 1.) ETSI and Q.SIG Call Completion Supplementary Service (CCSS) support
- 2.) ETSI Advice Of Charge (AOC) support
- 3.) ETSI Explicit Call Transfer (ECT) support
- 4.) ETSI Call Waiting support for ISDN phones
- 5.) ETSI Malicious Call ID support
- 6.) Add Display IE text handling options.
-
- For a full list of changes in this release, please see the ChangeLog:
-
- http://downloads.asterisk.org/pub/telephony/libpri/releases/ChangeLog-1.4.12
* Tue Feb 8 2011 Jeffrey C. Ollie <jeff@ocjtech.us> - 1.4.12-0.3.beta3
-
- The following are some of the issues resolved in this beta release:
-
- * Prevent a CONNECT message from sending a CONNECT ACKNOWLEDGE in the
- wrong state.
- (issue #17360. Reported by: shawkris. Patched by rmudgett)
-
- * Made Q.921 delay events to Q.931 if the event could immediately
- generate response frames.
- (closes issue #17360. Reported by: shawkris. Patched by rmudgett)
-
- * BRI PTMP: Active channels not cleared when the interface goes down.
- (closes issue #17865. Reported by: wimpy. Patched by rmudgett)
-
- * Segfault in pri_schedule_del() - ctrl value is invalid.
- (closes issue #17522)
- (closes issue #18032. Reported by: schmoozecom. Patched by rmudgett)
-
- * Crash when receiving an unknown/unsupported message type.
- (closes issue #17968. Reported by: gelo. Patched by rmudgett)
-
- * B410P gets incoming call packets on ISDN but Asterisk doesn't see the
- call.
- (closes issue #18232. Reported by: lelio. Patched by rmudgett)
-
- * SABME flood on backup D-channel in NFAS configuration.
- (closes issue #18255. Reported by: bklang. Patched by rmudgett)
-
- * Asterisk is getting a "No D-channels available!" warning message every
- 4 seconds.
- (closes issue #17270. Reported by: jmls. Patched by rmudgett)
-
- This beta release contains several new features, among them:
-
- 1.) ETSI and Q.SIG Call Completion Supplementary Service (CCSS) support
- 2.) ETSI Advice Of Charge (AOC) support
- 3.) ETSI Explicit Call Transfer (ECT) support
- 4.) ETSI Call Waiting support for ISDN phones
- 5.) ETSI Malicious Call ID support
-
- For a full list of changes in the current release candidate, please see
- the ChangeLog:
-
- http://downloads.asterisk.org/pub/telephony/libpri/releases/ChangeLog-1.4.12-beta3
* Tue Feb 8 2011 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.4.12-0.2.beta2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
--------------------------------------------------------------------------------


================================================== ==============================
mine_detector-6.0-7.1.el6 (FEDORA-EPEL-2011-3731)
Mine Detector, a mine-finding game
--------------------------------------------------------------------------------
Update Information:

This update adds four packages from Fedora to EPEL 6.
--------------------------------------------------------------------------------


================================================== ==============================
oz-0.5.0-2.el6 (FEDORA-EPEL-2011-3739)
Library and utilities for automated guest OS installs
--------------------------------------------------------------------------------
Update Information:

Library and utilities for automated guest OS installs
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #713320 - Review Request: oz - Library and utilities for automated guest OS installs
https://bugzilla.redhat.com/show_bug.cgi?id=713320
--------------------------------------------------------------------------------


================================================== ==============================
phpMyAdmin-3.4.3.1-1.el6 (FEDORA-EPEL-2011-3738)
Handle the administration of MySQL over the World Wide Web
--------------------------------------------------------------------------------
Update Information:

Changes for 3.4.3.1 (2011-06-07)

- [PMASA-2011-5] Possible session manipulation in Swekey authentication (http://www.phpmyadmin.net/home_page/security/PMASA-2011-5.php)
- [PMASA-2011-6] Possible code injection in setup script in case session variables are compromised (http://www.phpmyadmin.net/home_page/security/PMASA-2011-6.php)
- [PMASA-2011-7] Regular expression quoting issue in Synchronize code (http://www.phpmyadmin.net/home_page/security/PMASA-2011-7.php)
- [PMASA-2011-8] Possible directory traversal (http://www.phpmyadmin.net/home_page/security/PMASA-2011-8.php)


Changes for 3.4.3.0 (2011-06-27)

- [sync] Missing helper icons in Synchronize
- [setup] Redefine a lable that was wrong
- [parser] master is not a reserved word
- [edit] Inline edit updates multiple duplicate rows
- [edit] Inline edit does not escape backslashes
- [interface] Columns class sometimes changed for nothing
- [interface] Some tooltips do not disappear
- [search] Fix search in non unicode tables
- [display] Inline query edit broken
- [privileges] Generate password option missing on new accounts
- [edit] Inline edit places HTML line breaks in edit area
- [interface] Inline query edit does not escape special characters
- [security] minor XSS (require a valid token)
--------------------------------------------------------------------------------
ChangeLog:

* Wed Jul 6 2011 Robert Scheck <robert@fedoraproject.org> 3.4.3.1-1
- Upgrade to 3.4.3.1 (#718964)
--------------------------------------------------------------------------------
References:

[ 1 ] Bug #718964 - phpMyAdmin-3.4.3.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=718964
--------------------------------------------------------------------------------


================================================== ==============================
roundcubemail-0.5.3-1.el6 (FEDORA-EPEL-2011-3741)
Round Cube Webmail is a browser-based multilingual IMAP client
--------------------------------------------------------------------------------
Update Information:

New upstream release.
--------------------------------------------------------------------------------
ChangeLog:

* Tue Jul 5 2011 Jon Ciesla <limb@jcomserv.net> = 0.5.3-1
- New upstream.
* Tue May 17 2011 Jon Ciesla <limb@jcomserv.net> = 0.5.2-1
- New upstream.
* Thu Feb 10 2011 Jon Ciesla <limb@jcomserv.net> = 0.5.1-1
- New upstream.
* Wed Feb 9 2011 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.4.2-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
* Mon Oct 18 2010 Jon Ciesla <limb@jcomserv.net> = 0.4.2-1
- New upstream.
* Mon Oct 4 2010 Jon Ciesla <limb@jcomserv.net> = 0.4.1-1
- New upstream.
--------------------------------------------------------------------------------


_______________________________________________
epel-devel-list mailing list
epel-devel-list@redhat.com
https://www.redhat.com/mailman/listinfo/epel-devel-list
 

Thread Tools




All times are GMT. The time now is 07:36 PM.

VBulletin, Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.
Content Relevant URLs by vBSEO ©2007, Crawlability, Inc.
Copyright 2007 - 2008, www.linux-archive.org