openSUSE-2013-188 low openSUSE 12.3 Update This update fixes the following issues for parkverbot: - bnc#801367: Update to new upstream release 1.1 (bugfix release) * Fixed passing wrong type to ioctl, which made a 32-bit parkverbot exit and not run at all * Read all disks, rather than a single one, per interval parkverbot-1.1-6.4.1.i586.rpm parkverbot-1.1-6.4.1.src.rpm parkverbot-debuginfo-1.1-6.4.1.i586.rpm parkverbot-debugsource-1.1-6.4.1.i586.rpm parkverbot-1.1-6.4.1.x86_64.rpm parkverbot-debuginfo-1.1-6.4.1.x86_64.rpm parkverbot-debugsource-1.1-6.4.1.x86_64.rpm openSUSE-2013-163 low openSUSE 12.3 Update This update fixes the following issues for polkit-default-privs: - add /etc/polkit-1/rules.d/50-default-privs.rules as ghost so it gets associated with the package - bnc#804376: require ibmozjs185-1_0 as polkit won't apply the policy without it - set logind inhibit policies to upstream defaults - more elaborate --check-override option - add some debugging capabilities in generated code polkit-default-privs-12.3-6.11.1.noarch.rpm polkit-default-privs-12.3-6.11.1.src.rpm openSUSE-2013-189 low openSUSE 12.3 Update This update fixes the following issue for sssd: - bnc#806078: Resolve user retrieval problems when encountering binary data in LDAP attributes libipa_hbac-devel-1.9.4-1.5.2.i586.rpm libipa_hbac0-1.9.4-1.5.2.i586.rpm libipa_hbac0-debuginfo-1.9.4-1.5.2.i586.rpm libsss_idmap-devel-1.9.4-1.5.2.i586.rpm libsss_idmap0-1.9.4-1.5.2.i586.rpm libsss_idmap0-debuginfo-1.9.4-1.5.2.i586.rpm libsss_sudo-1.9.4-1.5.2.i586.rpm libsss_sudo-debuginfo-1.9.4-1.5.2.i586.rpm python-ipa_hbac-1.9.4-1.5.2.i586.rpm python-ipa_hbac-debuginfo-1.9.4-1.5.2.i586.rpm python-sssd-config-1.9.4-1.5.2.i586.rpm python-sssd-config-debuginfo-1.9.4-1.5.2.i586.rpm sssd-1.9.4-1.5.2.i586.rpm sssd-1.9.4-1.5.2.src.rpm sssd-32bit-1.9.4-1.5.2.x86_64.rpm sssd-debuginfo-1.9.4-1.5.2.i586.rpm sssd-debuginfo-32bit-1.9.4-1.5.2.x86_64.rpm sssd-debugsource-1.9.4-1.5.2.i586.rpm sssd-ipa-provider-1.9.4-1.5.2.i586.rpm sssd-ipa-provider-debuginfo-1.9.4-1.5.2.i586.rpm sssd-tools-1.9.4-1.5.2.i586.rpm sssd-tools-debuginfo-1.9.4-1.5.2.i586.rpm libipa_hbac-devel-1.9.4-1.5.2.x86_64.rpm libipa_hbac0-1.9.4-1.5.2.x86_64.rpm libipa_hbac0-debuginfo-1.9.4-1.5.2.x86_64.rpm libsss_idmap-devel-1.9.4-1.5.2.x86_64.rpm libsss_idmap0-1.9.4-1.5.2.x86_64.rpm libsss_idmap0-debuginfo-1.9.4-1.5.2.x86_64.rpm libsss_sudo-1.9.4-1.5.2.x86_64.rpm libsss_sudo-debuginfo-1.9.4-1.5.2.x86_64.rpm python-ipa_hbac-1.9.4-1.5.2.x86_64.rpm python-ipa_hbac-debuginfo-1.9.4-1.5.2.x86_64.rpm python-sssd-config-1.9.4-1.5.2.x86_64.rpm python-sssd-config-debuginfo-1.9.4-1.5.2.x86_64.rpm sssd-1.9.4-1.5.2.x86_64.rpm sssd-debuginfo-1.9.4-1.5.2.x86_64.rpm sssd-debugsource-1.9.4-1.5.2.x86_64.rpm sssd-ipa-provider-1.9.4-1.5.2.x86_64.rpm sssd-ipa-provider-debuginfo-1.9.4-1.5.2.x86_64.rpm sssd-tools-1.9.4-1.5.2.x86_64.rpm sssd-tools-debuginfo-1.9.4-1.5.2.x86_64.rpm openSUSE-2013-190 low openSUSE 12.3 Update This update fixes the following issue for cmis-client: - Include proxy settings parser into libcmis library to allow other depending projects to use it. This is for example used by latest libreoffice. cmis-client-0.3.0-2.5.1.i586.rpm cmis-client-0.3.0-2.5.1.src.rpm cmis-client-debuginfo-0.3.0-2.5.1.i586.rpm cmis-client-debugsource-0.3.0-2.5.1.i586.rpm libcmis-0_3-3-0.3.0-2.5.1.i586.rpm libcmis-0_3-3-debuginfo-0.3.0-2.5.1.i586.rpm libcmis-c-0_3-3-0.3.0-2.5.1.i586.rpm libcmis-c-0_3-3-debuginfo-0.3.0-2.5.1.i586.rpm libcmis-c-devel-0.3.0-2.5.1.i586.rpm libcmis-devel-0.3.0-2.5.1.i586.rpm cmis-client-0.3.0-2.5.1.x86_64.rpm cmis-client-debuginfo-0.3.0-2.5.1.x86_64.rpm cmis-client-debugsource-0.3.0-2.5.1.x86_64.rpm libcmis-0_3-3-0.3.0-2.5.1.x86_64.rpm libcmis-0_3-3-debuginfo-0.3.0-2.5.1.x86_64.rpm libcmis-c-0_3-3-0.3.0-2.5.1.x86_64.rpm libcmis-c-0_3-3-debuginfo-0.3.0-2.5.1.x86_64.rpm libcmis-c-devel-0.3.0-2.5.1.x86_64.rpm libcmis-devel-0.3.0-2.5.1.x86_64.rpm openSUSE-2013-195 low openSUSE 12.3 Update This update reintroduces gtkglext. Legacy-ware requires on it. WebEx is one of the more commonly used examples gtkglext-1.2.0git20110529-2.1.src.rpm gtkglext-debugsource-1.2.0git20110529-2.1.i586.rpm gtkglext-devel-1.2.0git20110529-2.1.i586.rpm gtkglext-doc-1.2.0git20110529-2.1.i586.rpm libgtkglext-x11-1_0-0-1.2.0git20110529-2.1.i586.rpm libgtkglext-x11-1_0-0-32bit-1.2.0git20110529-2.1.x86_64.rpm libgtkglext-x11-1_0-0-debuginfo-1.2.0git20110529-2.1.i586.rpm libgtkglext-x11-1_0-0-debuginfo-32bit-1.2.0git20110529-2.1.x86_64.rpm gtkglext-debugsource-1.2.0git20110529-2.1.x86_64.rpm gtkglext-devel-1.2.0git20110529-2.1.x86_64.rpm gtkglext-doc-1.2.0git20110529-2.1.x86_64.rpm libgtkglext-x11-1_0-0-1.2.0git20110529-2.1.x86_64.rpm libgtkglext-x11-1_0-0-debuginfo-1.2.0git20110529-2.1.x86_64.rpm openSUSE-2013-221 low openSUSE 12.3 Update sudo was updated to fix two security issues, where adjusting the time of the syste could be used to regain access to sudo sessions if they onc were granted. (CVE-2013-1775,CVE-2013-1776) sudo-1.8.6p3-3.5.1.i586.rpm sudo-1.8.6p3-3.5.1.src.rpm sudo-debuginfo-1.8.6p3-3.5.1.i586.rpm sudo-debugsource-1.8.6p3-3.5.1.i586.rpm sudo-devel-1.8.6p3-3.5.1.i586.rpm sudo-1.8.6p3-3.5.1.x86_64.rpm sudo-debuginfo-1.8.6p3-3.5.1.x86_64.rpm sudo-debugsource-1.8.6p3-3.5.1.x86_64.rpm sudo-devel-1.8.6p3-3.5.1.x86_64.rpm openSUSE-2013-194 moderate openSUSE 12.3 Update This update fixes the following issues for percona-toolkit: - bnc#804102: update to 2.1.9: * pt-heartbeat 2.1.8 doesn't use precision/sub-second timestamps * pt-heartbeat 2.1.8 reports big time drift with UTC_TIMESTAMP * pt-online-schema-change fails with "Duplicate entry" on MariaDB * pt-online-schema-change makes bad DELETE trigger if PK is re-created with new columns * pt-pmp doesn't list the origin lib for each function * pt-query-digest shouldn't print "Error: none" for tcpdump * pt-query-digest fails to parse non-SQL errors * pt-table-checksum: Confusing error message with binlog_format ROW or MIXED on slave * pt-table-sync false-positive error "Cannot nibble table because MySQL chose no index instead of the PRIMARY index" * pt-stalk is too verbose, fills up log percona-toolkit-2.1.9-2.4.1.noarch.rpm percona-toolkit-2.1.9-2.4.1.src.rpm openSUSE-2013-191 low openSUSE 12.3 Update This update fixes the following issue for yum-metadata-parser: - support &gt;2G rpms in the XML to sqlite conversion (upstream patch) (bnc#802576, rh#612409) yum-metadata-parser-1.1.2-122.14.1.i586.rpm yum-metadata-parser-1.1.2-122.14.1.src.rpm yum-metadata-parser-debuginfo-1.1.2-122.14.1.i586.rpm yum-metadata-parser-debugsource-1.1.2-122.14.1.i586.rpm yum-metadata-parser-1.1.2-122.14.1.x86_64.rpm yum-metadata-parser-debuginfo-1.1.2-122.14.1.x86_64.rpm yum-metadata-parser-debugsource-1.1.2-122.14.1.x86_64.rpm openSUSE-2013-187 moderate openSUSE 12.3 Update This update fixes the following issues for bindfs: - Update to new upstream release 1.12 * bnc#806956: Replace "-o user" and "-o group" with "-o force-user" and "-o force-group", because the former are standard mount options that mount(8) consumes and does not pass on to the helper. bindfs-1.12-2.4.1.i586.rpm bindfs-1.12-2.4.1.src.rpm bindfs-debuginfo-1.12-2.4.1.i586.rpm bindfs-debugsource-1.12-2.4.1.i586.rpm bindfs-1.12-2.4.1.x86_64.rpm bindfs-debuginfo-1.12-2.4.1.x86_64.rpm bindfs-debugsource-1.12-2.4.1.x86_64.rpm openSUSE-2013-192 moderate openSUSE 12.3 Update This update fixes the following issue for nautilus-terminal: - Fix dependencies (bnc#807207): + Add gobject-introspection BuildRequires: needed for the automatic typelib()-Requires generator. + Drop python-nautilus and python-gobject Requires: they are no longer needed, as nautilus-terminal was ported to pygobject. nautilus-terminal-1.0-4.4.1.noarch.rpm nautilus-terminal-1.0-4.4.1.src.rpm openSUSE-2013-196 low openSUSE 12.3 Update This upate fixes the following issues for systemtap: - bnc#796574: Change how systemtap looks for tracepoint header files - bnc#800335: Add libebl1 dependancy. Systemtap manually loads libebl backends and the manual Requires: was incorrectly removed in a previous revision systemtap-docs-2.0-2.4.1.noarch.rpm systemtap-docs-2.0-2.4.1.src.rpm systemtap-2.0-2.4.1.i586.rpm systemtap-2.0-2.4.1.src.rpm systemtap-debuginfo-2.0-2.4.1.i586.rpm systemtap-debugsource-2.0-2.4.1.i586.rpm systemtap-runtime-2.0-2.4.1.i586.rpm systemtap-runtime-debuginfo-2.0-2.4.1.i586.rpm systemtap-sdt-devel-2.0-2.4.1.i586.rpm systemtap-server-2.0-2.4.1.i586.rpm systemtap-server-debuginfo-2.0-2.4.1.i586.rpm systemtap-2.0-2.4.1.x86_64.rpm systemtap-debuginfo-2.0-2.4.1.x86_64.rpm systemtap-debugsource-2.0-2.4.1.x86_64.rpm systemtap-runtime-2.0-2.4.1.x86_64.rpm systemtap-runtime-debuginfo-2.0-2.4.1.x86_64.rpm systemtap-sdt-devel-2.0-2.4.1.x86_64.rpm systemtap-server-2.0-2.4.1.x86_64.rpm systemtap-server-debuginfo-2.0-2.4.1.x86_64.rpm openSUSE-2013-197 low openSUSE 12.3 Update This update fixes the following issues for mono-core: - Remove hardcoded lib directory from the config, this unbreaks running GDI+ programs on 64bit. - Add missing Provides: for monodevelop 4.0 - Update to 3.0.4 * Garbage Collector + Many changes went into our GC implementation. We added long links support to our traditional Boehm collector. As for SGen, it is finally a true concurrent GC, with cementing support. We also fixed several bugs, such as #9928 pointer free deadlock problem and bugs in mono_gc_weak_link_get. * Async + Rewrite of async StreamReader/StreamWritter operations to not fail on subsequent async call. * ASP.NET + Updated encoding support. + Some minor bug fixes. * Other improvements + New MONO_DISABLE_SHARED_AREA environment variable lets you turn of the use of shared memory in Mono (used by performance counters and optionally by the io-layer). + Updated EntityFramework version that ships with Mono. + Support for ConnectionLifetime parameter in SqlClient (contributed by 7digital). + Fixed C# Evaluator Terse reader with loops + Don't report user operator error during probing user conversions. + Add explicit interface GetType implementation to avoid object::GetType become proxy. (C# compiler fix) + Implement use of __refvalue as an lvalue. * Packaging + We no longer install a /usr/bin/pkg-config on OSX, to stop clashing with Homebrew. ibm-data-db2-3.0.4-1.4.1.i586.rpm libmono-2_0-1-3.0.4-1.4.1.i586.rpm libmono-2_0-1-debuginfo-3.0.4-1.4.1.i586.rpm libmono-2_0-devel-3.0.4-1.4.1.i586.rpm libmonosgen-2_0-0-3.0.4-1.4.1.i586.rpm libmonosgen-2_0-0-debuginfo-3.0.4-1.4.1.i586.rpm libmonosgen-2_0-devel-3.0.4-1.4.1.i586.rpm mono-complete-3.0.4-1.4.1.i586.rpm mono-core-3.0.4-1.4.1.i586.rpm mono-core-3.0.4-1.4.1.src.rpm mono-core-debuginfo-3.0.4-1.4.1.i586.rpm mono-core-debugsource-3.0.4-1.4.1.i586.rpm mono-data-3.0.4-1.4.1.i586.rpm mono-data-oracle-3.0.4-1.4.1.i586.rpm mono-data-postgresql-3.0.4-1.4.1.i586.rpm mono-data-sqlite-3.0.4-1.4.1.i586.rpm mono-devel-3.0.4-1.4.1.i586.rpm mono-devel-debuginfo-3.0.4-1.4.1.i586.rpm mono-entityframework-3.0.4-1.4.1.i586.rpm mono-extras-3.0.4-1.4.1.i586.rpm mono-locale-extras-3.0.4-1.4.1.i586.rpm mono-mvc-3.0.4-1.4.1.i586.rpm mono-nunit-3.0.4-1.4.1.i586.rpm mono-reactive-3.0.4-1.4.1.i586.rpm mono-wcf-3.0.4-1.4.1.i586.rpm mono-web-3.0.4-1.4.1.i586.rpm mono-winforms-3.0.4-1.4.1.i586.rpm mono-winfxcore-3.0.4-1.4.1.i586.rpm monodoc-core-3.0.4-1.4.1.i586.rpm ibm-data-db2-3.0.4-1.4.1.x86_64.rpm libmono-2_0-1-3.0.4-1.4.1.x86_64.rpm libmono-2_0-1-debuginfo-3.0.4-1.4.1.x86_64.rpm libmono-2_0-devel-3.0.4-1.4.1.x86_64.rpm libmonosgen-2_0-0-3.0.4-1.4.1.x86_64.rpm libmonosgen-2_0-0-debuginfo-3.0.4-1.4.1.x86_64.rpm libmonosgen-2_0-devel-3.0.4-1.4.1.x86_64.rpm mono-complete-3.0.4-1.4.1.x86_64.rpm mono-core-3.0.4-1.4.1.x86_64.rpm mono-core-debuginfo-3.0.4-1.4.1.x86_64.rpm mono-core-debugsource-3.0.4-1.4.1.x86_64.rpm mono-data-3.0.4-1.4.1.x86_64.rpm mono-data-oracle-3.0.4-1.4.1.x86_64.rpm mono-data-postgresql-3.0.4-1.4.1.x86_64.rpm mono-data-sqlite-3.0.4-1.4.1.x86_64.rpm mono-devel-3.0.4-1.4.1.x86_64.rpm mono-devel-debuginfo-3.0.4-1.4.1.x86_64.rpm mono-entityframework-3.0.4-1.4.1.x86_64.rpm mono-extras-3.0.4-1.4.1.x86_64.rpm mono-locale-extras-3.0.4-1.4.1.x86_64.rpm mono-mvc-3.0.4-1.4.1.x86_64.rpm mono-nunit-3.0.4-1.4.1.x86_64.rpm mono-reactive-3.0.4-1.4.1.x86_64.rpm mono-wcf-3.0.4-1.4.1.x86_64.rpm mono-web-3.0.4-1.4.1.x86_64.rpm mono-winforms-3.0.4-1.4.1.x86_64.rpm mono-winfxcore-3.0.4-1.4.1.x86_64.rpm monodoc-core-3.0.4-1.4.1.x86_64.rpm openSUSE-2013-193 low openSUSE 12.3 Update This update fixes the following issues for kiwi: - v5.04.59 released - fixed checks for already mounted system filesystems - fixed race condition in bindDiskPartitions, kpartx returns early and sometimes before the devices in /dev/mapper were created kiwi-5.04.59-1.4.1.i586.rpm kiwi-5.04.59-1.4.1.src.rpm kiwi-debugsource-5.04.59-1.4.1.i586.rpm kiwi-desc-isoboot-5.04.59-1.4.1.noarch.rpm kiwi-desc-isoboot-requires-5.04.59-1.4.1.i586.rpm kiwi-desc-netboot-5.04.59-1.4.1.noarch.rpm kiwi-desc-netboot-requires-5.04.59-1.4.1.i586.rpm kiwi-desc-oemboot-5.04.59-1.4.1.noarch.rpm kiwi-desc-oemboot-requires-5.04.59-1.4.1.i586.rpm kiwi-desc-vmxboot-5.04.59-1.4.1.noarch.rpm kiwi-desc-vmxboot-requires-5.04.59-1.4.1.i586.rpm kiwi-doc-5.04.59-1.4.1.noarch.rpm kiwi-instsource-5.04.59-1.4.1.noarch.rpm kiwi-media-requires-5.04.59-1.4.1.noarch.rpm kiwi-pxeboot-5.04.59-1.4.1.noarch.rpm kiwi-templates-5.04.59-1.4.1.noarch.rpm kiwi-tools-5.04.59-1.4.1.i586.rpm kiwi-tools-debuginfo-5.04.59-1.4.1.i586.rpm kiwi-5.04.59-1.4.1.x86_64.rpm kiwi-debugsource-5.04.59-1.4.1.x86_64.rpm kiwi-desc-isoboot-requires-5.04.59-1.4.1.x86_64.rpm kiwi-desc-netboot-requires-5.04.59-1.4.1.x86_64.rpm kiwi-desc-oemboot-requires-5.04.59-1.4.1.x86_64.rpm kiwi-desc-vmxboot-requires-5.04.59-1.4.1.x86_64.rpm kiwi-tools-5.04.59-1.4.1.x86_64.rpm kiwi-tools-debuginfo-5.04.59-1.4.1.x86_64.rpm openSUSE-2013-222 important openSUSE 12.3 Update This update fixes a bug which allows an unauthenticated remote attacker to cause a stack overflow in server code, resulting in either server crash or even code execution as the user running firebird. firebird-classic-2.5.2.26539-2.5.1.i586.rpm firebird-classic-2.5.2.26539-2.5.1.src.rpm firebird-classic-debuginfo-2.5.2.26539-2.5.1.i586.rpm firebird-classic-debugsource-2.5.2.26539-2.5.1.i586.rpm libfbembed-devel-2.5.2.26539-2.5.1.i586.rpm libfbembed2_5-2.5.2.26539-2.5.1.i586.rpm libfbembed2_5-debuginfo-2.5.2.26539-2.5.1.i586.rpm firebird-2.5.2.26539-2.5.1.i586.rpm firebird-2.5.2.26539-2.5.1.src.rpm firebird-32bit-2.5.2.26539-2.5.1.x86_64.rpm firebird-debuginfo-2.5.2.26539-2.5.1.i586.rpm firebird-debuginfo-32bit-2.5.2.26539-2.5.1.x86_64.rpm firebird-debugsource-2.5.2.26539-2.5.1.i586.rpm firebird-devel-2.5.2.26539-2.5.1.i586.rpm firebird-doc-2.5.2.26539-2.5.1.noarch.rpm firebird-superserver-2.5.2.26539-2.5.1.i586.rpm firebird-superserver-debuginfo-2.5.2.26539-2.5.1.i586.rpm libfbclient2-2.5.2.26539-2.5.1.i586.rpm libfbclient2-32bit-2.5.2.26539-2.5.1.x86_64.rpm libfbclient2-debuginfo-2.5.2.26539-2.5.1.i586.rpm libfbclient2-debuginfo-32bit-2.5.2.26539-2.5.1.x86_64.rpm libfbclient2-devel-2.5.2.26539-2.5.1.i586.rpm firebird-classic-2.5.2.26539-2.5.1.x86_64.rpm firebird-classic-debuginfo-2.5.2.26539-2.5.1.x86_64.rpm firebird-classic-debugsource-2.5.2.26539-2.5.1.x86_64.rpm libfbembed-devel-2.5.2.26539-2.5.1.x86_64.rpm libfbembed2_5-2.5.2.26539-2.5.1.x86_64.rpm libfbembed2_5-debuginfo-2.5.2.26539-2.5.1.x86_64.rpm firebird-2.5.2.26539-2.5.1.x86_64.rpm firebird-debuginfo-2.5.2.26539-2.5.1.x86_64.rpm firebird-debugsource-2.5.2.26539-2.5.1.x86_64.rpm firebird-devel-2.5.2.26539-2.5.1.x86_64.rpm firebird-superserver-2.5.2.26539-2.5.1.x86_64.rpm firebird-superserver-debuginfo-2.5.2.26539-2.5.1.x86_64.rpm libfbclient2-2.5.2.26539-2.5.1.x86_64.rpm libfbclient2-debuginfo-2.5.2.26539-2.5.1.x86_64.rpm libfbclient2-devel-2.5.2.26539-2.5.1.x86_64.rpm openSUSE-2013-223 moderate openSUSE 12.3 Update wireshark was updated to 1.8.6 [bnc#807942] + vulnerabilities fixed: * The TCP dissector could crash. wnpa-sec-2013-10 CVE-2013-2475 * The HART/IP dissectory could go into an infinite loop. wnpa-sec-2013-11 CVE-2013-2476 * The CSN.1 dissector could crash. wnpa-sec-2013-12 CVE-2013-2477 * The MS-MMS dissector could crash. wnpa-sec-2013-13 CVE-2013-2478 * The MPLS Echo dissector could go into an infinite loop. wnpa-sec-2013-14 CVE-2013-2479 * The RTPS and RTPS2 dissectors could crash. wnpa-sec-2013-15 CVE-2013-2480 * The Mount dissector could crash. wnpa-sec-2013-16 CVE-2013-2481 * The AMPQ dissector could go into an infinite loop. wnpa-sec-2013-17 CVE-2013-2482 * The ACN dissector could attempt to divide by zero. wnpa-sec-2013-18 CVE-2013-2483 * The CIMD dissector could crash. wnpa-sec-2013-19 CVE-2013-2484 * The FCSP dissector could go into an infinite loop. wnpa-sec-2013-20 CVE-2013-2485 * The RELOAD dissector could go into an infinite loop. wnpa-sec-2013-21 CVE-2013-2486 CVE-2013-2487 * The DTLS dissector could crash. wnpa-sec-2013-22 CVE-2013-2488 + Further bug fixes and updated protocol support as listed in: http://www.wireshark.org/docs/relnotes/wireshark-1.8.6.html wireshark-1.8.6-1.4.1.i586.rpm wireshark-1.8.6-1.4.1.src.rpm wireshark-debuginfo-1.8.6-1.4.1.i586.rpm wireshark-debugsource-1.8.6-1.4.1.i586.rpm wireshark-devel-1.8.6-1.4.1.i586.rpm wireshark-1.8.6-1.4.1.x86_64.rpm wireshark-debuginfo-1.8.6-1.4.1.x86_64.rpm wireshark-debugsource-1.8.6-1.4.1.x86_64.rpm wireshark-devel-1.8.6-1.4.1.x86_64.rpm openSUSE-2013-206 important openSUSE 12.3 Update Mozilla Firefox was updated to 19.0.2 (bnc#808243) fixing: * MFSA 2013-29/CVE-2013-0787 (bmo#848644) Use-after-free in HTML Editor could be used for code execution * blocklist updates MozillaFirefox-19.0.2-1.4.1.i586.rpm MozillaFirefox-19.0.2-1.4.1.src.rpm MozillaFirefox-branding-upstream-19.0.2-1.4.1.i586.rpm MozillaFirefox-buildsymbols-19.0.2-1.4.1.i586.rpm MozillaFirefox-debuginfo-19.0.2-1.4.1.i586.rpm MozillaFirefox-debugsource-19.0.2-1.4.1.i586.rpm MozillaFirefox-devel-19.0.2-1.4.1.i586.rpm MozillaFirefox-translations-common-19.0.2-1.4.1.i586.rpm MozillaFirefox-translations-other-19.0.2-1.4.1.i586.rpm MozillaFirefox-19.0.2-1.4.1.x86_64.rpm MozillaFirefox-branding-upstream-19.0.2-1.4.1.x86_64.rpm MozillaFirefox-buildsymbols-19.0.2-1.4.1.x86_64.rpm MozillaFirefox-debuginfo-19.0.2-1.4.1.x86_64.rpm MozillaFirefox-debugsource-19.0.2-1.4.1.x86_64.rpm MozillaFirefox-devel-19.0.2-1.4.1.x86_64.rpm MozillaFirefox-translations-common-19.0.2-1.4.1.x86_64.rpm MozillaFirefox-translations-other-19.0.2-1.4.1.x86_64.rpm openSUSE-2013-224 moderate openSUSE 12.3 Update krb5 was updated to fix security issues in PKINIT: - fix PKINIT null pointer deref in pkinit_check_kdc_pkid() (CVE-2012-1016 bnc#807556) - fix PKINIT null pointer deref (CVE-2013-1415 bnc#806715) Also package a missing file on 12.3 (bnc#794784). krb5-doc-1.10.2-10.5.2.noarch.rpm krb5-doc-1.10.2-10.5.2.src.rpm krb5-mini-1.10.2-10.5.1.i586.rpm krb5-mini-1.10.2-10.5.1.src.rpm krb5-mini-debuginfo-1.10.2-10.5.1.i586.rpm krb5-mini-debugsource-1.10.2-10.5.1.i586.rpm krb5-mini-devel-1.10.2-10.5.1.i586.rpm krb5-1.10.2-10.5.1.i586.rpm krb5-1.10.2-10.5.1.src.rpm krb5-32bit-1.10.2-10.5.1.x86_64.rpm krb5-client-1.10.2-10.5.1.i586.rpm krb5-client-debuginfo-1.10.2-10.5.1.i586.rpm krb5-debuginfo-1.10.2-10.5.1.i586.rpm krb5-debuginfo-32bit-1.10.2-10.5.1.x86_64.rpm krb5-debugsource-1.10.2-10.5.1.i586.rpm krb5-devel-1.10.2-10.5.1.i586.rpm krb5-devel-32bit-1.10.2-10.5.1.x86_64.rpm krb5-plugin-kdb-ldap-1.10.2-10.5.1.i586.rpm krb5-plugin-kdb-ldap-debuginfo-1.10.2-10.5.1.i586.rpm krb5-plugin-preauth-pkinit-1.10.2-10.5.1.i586.rpm krb5-plugin-preauth-pkinit-debuginfo-1.10.2-10.5.1.i586.rpm krb5-server-1.10.2-10.5.1.i586.rpm krb5-server-debuginfo-1.10.2-10.5.1.i586.rpm krb5-mini-1.10.2-10.5.1.x86_64.rpm krb5-mini-debuginfo-1.10.2-10.5.1.x86_64.rpm krb5-mini-debugsource-1.10.2-10.5.1.x86_64.rpm krb5-mini-devel-1.10.2-10.5.1.x86_64.rpm krb5-1.10.2-10.5.1.x86_64.rpm krb5-client-1.10.2-10.5.1.x86_64.rpm krb5-client-debuginfo-1.10.2-10.5.1.x86_64.rpm krb5-debuginfo-1.10.2-10.5.1.x86_64.rpm krb5-debugsource-1.10.2-10.5.1.x86_64.rpm krb5-devel-1.10.2-10.5.1.x86_64.rpm krb5-plugin-kdb-ldap-1.10.2-10.5.1.x86_64.rpm krb5-plugin-kdb-ldap-debuginfo-1.10.2-10.5.1.x86_64.rpm krb5-plugin-preauth-pkinit-1.10.2-10.5.1.x86_64.rpm krb5-plugin-preauth-pkinit-debuginfo-1.10.2-10.5.1.x86_64.rpm krb5-server-1.10.2-10.5.1.x86_64.rpm krb5-server-debuginfo-1.10.2-10.5.1.x86_64.rpm openSUSE-2013-209 important openSUSE 12.3 Update xulrunner was updated to 17.0.4esr (bnc#808243) to fix a important security issue: * MFSA 2013-29/CVE-2013-0787 (bmo#848644) Use-after-free in HTML Editor mozilla-js-17.0.4-1.4.2.i586.rpm mozilla-js-32bit-17.0.4-1.4.2.x86_64.rpm mozilla-js-debuginfo-17.0.4-1.4.2.i586.rpm mozilla-js-debuginfo-32bit-17.0.4-1.4.2.x86_64.rpm xulrunner-17.0.4-1.4.2.i586.rpm xulrunner-17.0.4-1.4.2.src.rpm xulrunner-32bit-17.0.4-1.4.2.x86_64.rpm xulrunner-buildsymbols-17.0.4-1.4.2.i586.rpm xulrunner-debuginfo-17.0.4-1.4.2.i586.rpm xulrunner-debuginfo-32bit-17.0.4-1.4.2.x86_64.rpm xulrunner-debugsource-17.0.4-1.4.2.i586.rpm xulrunner-devel-17.0.4-1.4.2.i586.rpm xulrunner-devel-debuginfo-17.0.4-1.4.2.i586.rpm mozilla-js-17.0.4-1.4.2.x86_64.rpm mozilla-js-debuginfo-17.0.4-1.4.2.x86_64.rpm xulrunner-17.0.4-1.4.2.x86_64.rpm xulrunner-buildsymbols-17.0.4-1.4.2.x86_64.rpm xulrunner-debuginfo-17.0.4-1.4.2.x86_64.rpm xulrunner-debugsource-17.0.4-1.4.2.x86_64.rpm xulrunner-devel-17.0.4-1.4.2.x86_64.rpm xulrunner-devel-debuginfo-17.0.4-1.4.2.x86_64.rpm openSUSE-2013-208 important openSUSE 12.3 Update seamonkey was updated to version 2.16.1 fixing a severe security issue. * MFSA 2013-29/CVE-2013-0787 (bmo#848644) Use-after-free in HTML Editor seamonkey-2.16.1-1.4.1.i586.rpm seamonkey-2.16.1-1.4.1.src.rpm seamonkey-debuginfo-2.16.1-1.4.1.i586.rpm seamonkey-debugsource-2.16.1-1.4.1.i586.rpm seamonkey-dom-inspector-2.16.1-1.4.1.i586.rpm seamonkey-irc-2.16.1-1.4.1.i586.rpm seamonkey-translations-common-2.16.1-1.4.1.i586.rpm seamonkey-translations-other-2.16.1-1.4.1.i586.rpm seamonkey-venkman-2.16.1-1.4.1.i586.rpm seamonkey-2.16.1-1.4.1.x86_64.rpm seamonkey-debuginfo-2.16.1-1.4.1.x86_64.rpm seamonkey-debugsource-2.16.1-1.4.1.x86_64.rpm seamonkey-dom-inspector-2.16.1-1.4.1.x86_64.rpm seamonkey-irc-2.16.1-1.4.1.x86_64.rpm seamonkey-translations-common-2.16.1-1.4.1.x86_64.rpm seamonkey-translations-other-2.16.1-1.4.1.x86_64.rpm seamonkey-venkman-2.16.1-1.4.1.x86_64.rpm openSUSE-2013-226 low openSUSE 12.3 Update This update fixes the following issue for openal-soft: - bnc#810009: Add obsoletes/provides to baselibs packages libopenal0-1.15-4.6.1.i586.rpm libopenal0-32bit-1.15-4.6.1.x86_64.rpm libopenal0-debuginfo-1.15-4.6.1.i586.rpm libopenal0-debuginfo-32bit-1.15-4.6.1.x86_64.rpm libopenal1-1.15-4.6.1.i586.rpm libopenal1-32bit-1.15-4.6.1.x86_64.rpm libopenal1-debuginfo-1.15-4.6.1.i586.rpm libopenal1-debuginfo-32bit-1.15-4.6.1.x86_64.rpm openal-soft-1.15-4.6.1.i586.rpm openal-soft-1.15-4.6.1.src.rpm openal-soft-debuginfo-1.15-4.6.1.i586.rpm openal-soft-debugsource-1.15-4.6.1.i586.rpm openal-soft-devel-1.15-4.6.1.i586.rpm openal-soft-devel-debuginfo-1.15-4.6.1.i586.rpm libopenal0-1.15-4.6.1.x86_64.rpm libopenal0-debuginfo-1.15-4.6.1.x86_64.rpm libopenal1-1.15-4.6.1.x86_64.rpm libopenal1-debuginfo-1.15-4.6.1.x86_64.rpm openal-soft-1.15-4.6.1.x86_64.rpm openal-soft-debuginfo-1.15-4.6.1.x86_64.rpm openal-soft-debugsource-1.15-4.6.1.x86_64.rpm openal-soft-devel-1.15-4.6.1.x86_64.rpm openal-soft-devel-debuginfo-1.15-4.6.1.x86_64.rpm openSUSE-2013-210 low openSUSE 12.3 Update This update fixes the following issue for libewf: - bnc#808550: Fix exfmount such that it works. ewfmount is one of several tools in ewftools sub-project. ewftools-0.0.0+20120813-2.4.1.i586.rpm ewftools-debuginfo-0.0.0+20120813-2.4.1.i586.rpm libewf-0.0.0+20120813-2.4.1.src.rpm libewf-debugsource-0.0.0+20120813-2.4.1.i586.rpm libewf-devel-0.0.0+20120813-2.4.1.i586.rpm libewf2-0.0.0+20120813-2.4.1.i586.rpm libewf2-debuginfo-0.0.0+20120813-2.4.1.i586.rpm ewftools-0.0.0+20120813-2.4.1.x86_64.rpm ewftools-debuginfo-0.0.0+20120813-2.4.1.x86_64.rpm libewf-debugsource-0.0.0+20120813-2.4.1.x86_64.rpm libewf-devel-0.0.0+20120813-2.4.1.x86_64.rpm libewf2-0.0.0+20120813-2.4.1.x86_64.rpm libewf2-debuginfo-0.0.0+20120813-2.4.1.x86_64.rpm openSUSE-2013-214 moderate openSUSE 12.3 Update This update fixes the following issues in gnome-control-center: - bnc#796055: fix the NTP toggle which did not work - bnc#779408: temporarily remove "password to be set at next login" and "login without password" options - bnc#796932: password hints are not implemented so do not allow setting one - bnc#808539: password quality detection is broken - bnc#808540: always show generated passwords gnome-control-center-branding-openSUSE-12.2-4.4.1.noarch.rpm True gnome-control-center-branding-openSUSE-12.2-4.4.1.src.rpm True gnome-control-center-3.6.3-3.6.1.i586.rpm True gnome-control-center-3.6.3-3.6.1.src.rpm True gnome-control-center-branding-upstream-3.6.3-3.6.1.noarch.rpm True gnome-control-center-debuginfo-3.6.3-3.6.1.i586.rpm True gnome-control-center-debugsource-3.6.3-3.6.1.i586.rpm True gnome-control-center-devel-3.6.3-3.6.1.i586.rpm True gnome-control-center-lang-3.6.3-3.6.1.noarch.rpm True gnome-control-center-user-faces-3.6.3-3.6.1.i586.rpm True gnome-settings-daemon-3.6.3-3.4.1.i586.rpm True gnome-settings-daemon-3.6.3-3.4.1.src.rpm True gnome-settings-daemon-debuginfo-3.6.3-3.4.1.i586.rpm True gnome-settings-daemon-debugsource-3.6.3-3.4.1.i586.rpm True gnome-settings-daemon-devel-3.6.3-3.4.1.i586.rpm True gnome-settings-daemon-lang-3.6.3-3.4.1.noarch.rpm True gnome-control-center-3.6.3-3.6.1.x86_64.rpm True gnome-control-center-debuginfo-3.6.3-3.6.1.x86_64.rpm True gnome-control-center-debugsource-3.6.3-3.6.1.x86_64.rpm True gnome-control-center-devel-3.6.3-3.6.1.x86_64.rpm True gnome-control-center-user-faces-3.6.3-3.6.1.x86_64.rpm True gnome-settings-daemon-3.6.3-3.4.1.x86_64.rpm True gnome-settings-daemon-debuginfo-3.6.3-3.4.1.x86_64.rpm True gnome-settings-daemon-debugsource-3.6.3-3.4.1.x86_64.rpm True gnome-settings-daemon-devel-3.6.3-3.4.1.x86_64.rpm True openSUSE-2013-199 important openSUSE 12.3 Update This update provides the latest timezone information for your system. The changes in detail are: * Chile is changing its DST rules * Estimate Morocco 2013-2038 transitions for Ramadan * New alias Europe/Busingen for Europe/Zurich * New zones Asia/Khandyga, Asia/Ust-Nera * Libya moving to CET, but with DST. timezone-java-2013a-2.5.1.noarch.rpm timezone-java-2013a-2.5.1.src.rpm timezone-2013a-2.5.1.i586.rpm timezone-2013a-2.5.1.src.rpm timezone-debuginfo-2013a-2.5.1.i586.rpm timezone-debugsource-2013a-2.5.1.i586.rpm timezone-2013a-2.5.1.x86_64.rpm timezone-debuginfo-2013a-2.5.1.x86_64.rpm timezone-debugsource-2013a-2.5.1.x86_64.rpm openSUSE-2013-229 low openSUSE 12.3 Update This update fixes the following issue for apcupsd: - bnc#801312: apcupsd lives in /usr/sbin, not /sbin apcupsd-3.14.10-3.4.5.i586.rpm apcupsd-3.14.10-3.4.5.src.rpm apcupsd-cgi-3.14.10-3.4.5.i586.rpm apcupsd-debuginfo-3.14.10-3.4.5.i586.rpm apcupsd-debugsource-3.14.10-3.4.5.i586.rpm apcupsd-gui-3.14.10-3.4.5.i586.rpm apcupsd-gui-debuginfo-3.14.10-3.4.5.i586.rpm apcupsd-3.14.10-3.4.5.x86_64.rpm apcupsd-cgi-3.14.10-3.4.5.x86_64.rpm apcupsd-debuginfo-3.14.10-3.4.5.x86_64.rpm apcupsd-debugsource-3.14.10-3.4.5.x86_64.rpm apcupsd-gui-3.14.10-3.4.5.x86_64.rpm apcupsd-gui-debuginfo-3.14.10-3.4.5.x86_64.rpm openSUSE-2013-225 important openSUSE 12.3 Update Perl was updated to fix 3 security issues: - fix rehash denial of service (compute time) [bnc#804415] [CVE-2013-1667] - improve CGI crlf escaping [bnc#789994] [CVE-2012-5526] - sanitize input in Maketext.pm to avoid code injection [bnc#797060] [CVE-2012-6329] In openSUSE 12.1 also the following non-security bug was fixed: - fix IPC::Open3 bug when '-' is used [bnc#755278] perl-32bit-5.16.2-2.5.1.x86_64.rpm perl-5.16.2-2.5.1.i586.rpm perl-5.16.2-2.5.1.src.rpm perl-base-32bit-5.16.2-2.5.1.x86_64.rpm perl-base-5.16.2-2.5.1.i586.rpm perl-base-debuginfo-32bit-5.16.2-2.5.1.x86_64.rpm perl-base-debuginfo-5.16.2-2.5.1.i586.rpm perl-debuginfo-32bit-5.16.2-2.5.1.x86_64.rpm perl-debuginfo-5.16.2-2.5.1.i586.rpm perl-debugsource-5.16.2-2.5.1.i586.rpm perl-doc-5.16.2-2.5.1.noarch.rpm perl-5.16.2-2.5.1.x86_64.rpm perl-base-5.16.2-2.5.1.x86_64.rpm perl-base-debuginfo-5.16.2-2.5.1.x86_64.rpm perl-debuginfo-5.16.2-2.5.1.x86_64.rpm perl-debugsource-5.16.2-2.5.1.x86_64.rpm openSUSE-2013-231 important openSUSE 12.3 Update Pidgin was updated to 2.10.7 to fix various security issues and the bug that IRC did not work at all in 12.3. Changes: - Add pidgin-irc-sasl.patch: link irc module to SASL. Allows the IRC module to be loaded (bnc#806975). - Update to version 2.10.7 (bnc#804742): + Alien hatchery: - No changes + General: - The configure script will now exit with status 1 when specifying invalid protocol plugins using the --with-static-prpls and --with-dynamic-prpls arguments. (pidgin.im#15316) + libpurple: - Fix a crash when receiving UPnP responses with abnormally long values. (CVE-2013-0274) - Don't link directly to libgcrypt when building with GnuTLS support. (pidgin.im#15329) - Fix UPnP mappings on routers that return empty <URLBase/> elements in their response. (pidgin.im#15373) - Tcl plugin uses saner, race-free plugin loading. - Fix the Tcl signals-test plugin for savedstatus-changed. (pidgin.im#15443) + Pidgin: - Make Pidgin more friendly to non-X11 GTK+, such as MacPorts' +no_x11 variant. + Gadu-Gadu: - Fix a crash at startup with large contact list. Avatar support for buddies will be disabled until 3.0.0. (pidgin.im#15226, pidgin.im#14305) + IRC: - Support for SASL authentication. (pidgin.im#13270) - Print topic setter information at channel join. (pidgin.im#13317) + MSN: - Fix SSL certificate issue when signing into MSN for some users. - Fix a crash when removing a user before its icon is loaded. (pidgin.im#15217) + MXit: - Fix a bug where a remote MXit user could possibly specify a local file path to be written to. (CVE-2013-0271) - Fix a bug where the MXit server or a man-in-the-middle could potentially send specially crafted data that could overflow a buffer and lead to a crash or remote code execution. (CVE-2013-0272) - Display farewell messages in a different colour to distinguish them from normal messages. - Add support for typing notification. - Add support for the Relationship Status profile attribute. - Remove all reference to Hidden Number. - Ignore new invites to join a GroupChat if you're already joined, or still have a pending invite. - The buddy's name was not centered vertically in the buddy-list if they did not have a status-message or mood set. - Fix decoding of font-size changes in the markup of received messages. - Increase the maximum file size that can be transferred to 1 MB. - When setting an avatar image, no longer downscale it to 96x96. + Sametime: - Fix a crash in Sametime when a malicious server sends us an abnormally long user ID. (CVE-2013-0273) + Yahoo!: - Fix a double-free in profile/picture loading code. (pidgin.im#15053) - Fix retrieving server-side buddy aliases. (pidgin.im#15381) + Plugins: - The Voice/Video Settings plugin supports using the sndio GStreamer backends. (pidgin.im#14414) - Fix a crash in the Contact Availability Detection plugin. (pidgin.im#15327) - Make the Message Notification plugin more friendly to non-X11 GTK+, such as MacPorts' +no_x11 variant. + Windows-Specific Changes: - Compile with secure flags (pidgin.im#15290) - Installer downloads GTK+ Runtime and Debug Symbols more securely. (pidgin.im#15277) - Updates to a number of dependencies, some of which have security related fixes. (pidgin.im#14571, pidgin.im#15285, pidgin.im#15286) . ATK 1.32.0-2 . Cyrus SASL 2.1.25 . expat 2.1.0-1 . freetype 2.4.10-1 . gettext 0.18.1.1-2 . Glib 2.28.8-1 . libpng 1.4.12-1 . libxml2 2.9.0-1 . NSS 3.13.6 and NSPR 4.9.2 . Pango 1.29.4-1 . SILC 1.1.10 . zlib 1.2.5-2 - Patch libmeanwhile (sametime library) to fix crash. (pidgin.im#12637) finch-2.10.7-4.4.1.i586.rpm finch-debuginfo-2.10.7-4.4.1.i586.rpm finch-devel-2.10.7-4.4.1.i586.rpm libpurple-2.10.7-4.4.1.i586.rpm libpurple-branding-upstream-2.10.7-4.4.1.noarch.rpm libpurple-debuginfo-2.10.7-4.4.1.i586.rpm libpurple-devel-2.10.7-4.4.1.i586.rpm libpurple-lang-2.10.7-4.4.1.noarch.rpm libpurple-meanwhile-2.10.7-4.4.1.i586.rpm libpurple-meanwhile-debuginfo-2.10.7-4.4.1.i586.rpm libpurple-tcl-2.10.7-4.4.1.i586.rpm libpurple-tcl-debuginfo-2.10.7-4.4.1.i586.rpm pidgin-2.10.7-4.4.1.i586.rpm pidgin-2.10.7-4.4.1.src.rpm pidgin-debuginfo-2.10.7-4.4.1.i586.rpm pidgin-debugsource-2.10.7-4.4.1.i586.rpm pidgin-devel-2.10.7-4.4.1.i586.rpm finch-2.10.7-4.4.1.x86_64.rpm finch-debuginfo-2.10.7-4.4.1.x86_64.rpm finch-devel-2.10.7-4.4.1.x86_64.rpm libpurple-2.10.7-4.4.1.x86_64.rpm libpurple-debuginfo-2.10.7-4.4.1.x86_64.rpm libpurple-devel-2.10.7-4.4.1.x86_64.rpm libpurple-meanwhile-2.10.7-4.4.1.x86_64.rpm libpurple-meanwhile-debuginfo-2.10.7-4.4.1.x86_64.rpm libpurple-tcl-2.10.7-4.4.1.x86_64.rpm libpurple-tcl-debuginfo-2.10.7-4.4.1.x86_64.rpm pidgin-2.10.7-4.4.1.x86_64.rpm pidgin-debuginfo-2.10.7-4.4.1.x86_64.rpm pidgin-debugsource-2.10.7-4.4.1.x86_64.rpm pidgin-devel-2.10.7-4.4.1.x86_64.rpm openSUSE-2013-237 moderate openSUSE 12.3 Update The Openstack Stack components were updated to Folsom level as of March 5th. Changes in openstack-cinder: - Update 12.3 packages to Folsom as of March 5th. This comes with security fixes and bug fixes that we need to have OpenStack work nicely. Fix bnc#802278. - Update cinder-config-update.diff: update etc/cinder/api-paste.ini to have a signing_dir key under [filter:authtoken]. Otherwise, cinder-api won't start. This was done with commit de289a6 in Grizzly. - Update to version 2012.2.4+git.1362502414.95a620b: + Check for non-default volume name template. + Fix error for extra specs update with empty body. - Update to version 2012.2.4+git.1361527687.68de70d: + Add a safe_minidom_parse_string function. (CVE-2013-1664) - Set auth_strategy to keystone for a good out-of-the-box experience - Add cinder-config-update.diff: move configuration changes to a patch, instead of using sed. - Update to version 2012.2.4+git.1360133755.a8caa79: + Final versioning for 2012.2.3 + Bump version to 2012.2.4 + Fix typo in cinder/db/api.py - Update to version 2012.2.3+git.1358429029.cdf6c13: + Add commands used by NFS volume driver to rootwrap Changes in openstack-dashboard: - Update 12.3 packages to Folsom as of March 5th. This comes with security fixes and bug fixes that we need to have OpenStack work nicely. Fix bnc#802278. - Backport packaging changes we did for Grizzly to fix theming: + define a production %bcond_with that will determine whether offline compression is used or not. + if not using the production feature, have a nodejs Requires. + move compression steps to %prep. + by default, use the non-production mode for greater flexibility. - Do not use "SUSE Cloud" as site branding: this is not SUSE Cloud. - Update to version 2012.2.4+git.1362503968.8ece3c7: + pin django to 1.4.x stream - Update to version 2012.2.4+git.1361527741.0a42fa0: + Prevent the user from creating a single IP address sized network + Add UTC offset information to the timezone - Update to version 2012.2.4+git.1360133827.f421145: + Final versioning for 2012.2.3 + Bump version to 2012.2.4 - Update to version 2012.2.2+git.1359111868.20fa0fc: + Pin docutils to 0.9.1, fix pep8 errors + Fix bug 1055929 - Can not display usage data for Quota Summary. + Revert "Temp fix for api/keystone.py" + Specify floating ips table action column's width + Allow setting nova quotas to unlimited + Add a check for unlimited quotas + Avoid cinder calls, when cinder is unavailable + Don't inherit from base.html in 500 error page + Don't show the EC2 Credentials panel if there is no EC2 service - Drop horizon-ssl.patch: merged upstream. Changes in openstack-glance: - Do not return location in headers (CVE-2013-1840) - This fixes bnc#808626. - Update 12.3 packages to Folsom as of March 5th. This comes with· security fixes and bug fixes that we need to have OpenStack work nicely. Fix bnc#802278. - Update to version 2012.2.4+git.1362583521.1fb759d: + Swallow UserWarning from glance-cache-manage + Avoid dangling partial image on size/checksum mismatch - Update to version 2012.2.4+git.1362503824.afe6166: + Fix broken JSON schemas in v2 tests + Prints list-cached dates in isoformat - Update to version 2012.2.4+git.1360133885.98d9928: + Bump version to 2012.2.4 - Update to version 2012.2.3+git.1359529730.a5b0f4e: + Change useexisting to extend_existing to fix deprecation warnings. + Remove Swift location/password from messages. (CVE-2013-0212) Changes in openstack-keystone: - Update 12.3 packages to Folsom as of March 5th. This comes with· security fixes and bug fixes that we need to have OpenStack work nicely. Fix bnc#802278. - fix logging.conf to be about keystone and have absolute path - Update to version 2012.2.4+git.1362502288.8690166: + Sync timeutils to pick up normalize fix. + Backport of fix for 24-hour failure of pki. - Update to version 2012.2.4+git.1361527873.37b3532: + Disable XML entity parsing (CVE-2013-1664, CVE-2013-1665) + Ensure user and tenant enabled in EC2 (CVE-2013-0282) - Update to version 2012.2.4+git.1360133921.82c87e5: + Bump version to 2012.2.4 + Add size validations for /tokens. (CVE-2013-0247) - Update to version 2012.2.3+git.1359550485.ec7b94d: + Test 0.2.0 keystoneclient to avoid new deps + Unparseable endpoint URL's should raise friendly error + Fix catalog when services have no URL + Render content-type appropriate 404 (bug 1089987) - fix last commit's hash tag in Version Changes in openstack-nova: - Add quotas for fixed ips. (CVE-2013-1838) - Update to version 2012.2.3+git.1358515929.3545a7d: + Add NFS to the libvirt volume driver list + Call plug_vifs() for all instances in init_host + Fix addition of CPU features when running against legacy libvirt + Fix typo in resource tracker audit message - Move back to "git_tarballs" source service. - Start using obs-service-github_tarballs - Update to version 2012.2.3+git.1358434328.a41b913: + Provide better error message for aggregate-create + Fix errors in used_limits extension + Add an iptables mangle rule per-bridge for DHCP. + Limit formatting routes when adding resources - Update 12.3 packages to Folsom as of March 5th. This comes with· security fixes and bug fixes that we need to have OpenStack work nicely. Fix bnc#802278. - Install polkit rules file in /usr/share/polkit-1/rules.d/ since it's not a configuration file, and use 10 instead of 50 as priority to make sure it is taken into account. - Update to version 2012.2.4+git.1362583574.da38af5: + VNC Token Validation (CVE-2013-0335) - Update to version 2012.2.4+git.1362502642.8c4df00: + Ensure we add a new line when appending to rc.local + Handle compute node not available for live migration + remove intermediate libvirt downloaded images - Add openstack-nova-polkit.rules: polkit rules for the new polkit that uses javascript. On openSUSE 12.3 and later, we install this file in /etc/polkit-1/rules.d/ instead of installing the pkla file which is of no use with the new polkit. - Update to version 2012.2.4+git.1361527907.d5e7f55: + Avoid stuck task_state on snapshot image failure + Add a safe_minidom_parse_string function. (CVE-2013-1664) + Enable libvirt to work with NoopFirewallDriver + Fix state sync logic related to the PAUSED VM state + libvirt: Fix nova-compute start when missing ip. - Update to version 2012.2.4+git.1360133953.e5d0f4b: + Final versioning for 2012.2.3 + Bump version to 2012.2.4 - Update to version 2012.2.3+git.1359529791.317cc0a: + remove session parameter from fixed_ip_get + Eliminate race conditions in floating association + Fix to include error message in instance faults + disallow boot from volume from specifying arbitrary volumes (CVE-2013-0208) - Update to version 2012.2.3+git.1359111576.03c3e9b: + Ensure that Quantum uses configured fixed IP + Makes sure compute doesn't crash on failed resume. - Update to version 2012.2.3+git.1358515929.3545a7d: + Add NFS to the libvirt volume driver list + Call plug_vifs() for all instances in init_host + Fix addition of CPU features when running against legacy libvirt + Fix typo in resource tracker audit message - Move back to "git_tarballs" source service. - Start using obs-service-github_tarballs - Update to version 2012.2.3+git.1358434328.a41b913: + Provide better error message for aggregate-create + Fix errors in used_limits extension + Add an iptables mangle rule per-bridge for DHCP. + Limit formatting routes when adding resources Changes in openstack-quantum: - Update 12.3 packages to Folsom as of March 5th. This comes with· security fixes and bug fixes that we need to have OpenStack work nicely. Fix bnc#802278. - Update to version 2012.2.4+git.1362583635.f94b149: + L3 port delete prevention: do not raise if no IP on port - Update to version 2012.2.4+git.1362504084.06e42f8: + Close file descriptors when executing sub-processes + Persist updated expiration time - Update to version 2012.2.4+git.1361527969.4de49b4: + only destroy single namespace if router_id is set + Enable OVS and NETNS utilities to perform logging + Disable dhcp_domain distribution when dhcp_domain is empty + Shorten the DHCP default resync_interval - Update to version 2012.2.4+git.1360134016.d2a85e6: + Final versioning for 2012.2.3 + Bump version to 2012.2.4 - Update to version 2012.2.3+git.1359529852.a84ba7e: + Regression caused by commit b56c2c998 + LinuxBridge: update status according to admin_state_up + Ensure that correct root helper is used Changes in openstack-quickstart: - Update 12.3 packages to Folsom as of March 5th. This comes with· security fixes and bug fixes that we need to have OpenStack work nicely. Fix bnc#802278. - Update to latest git (cb0fbe8): + Enalbe Cinder and Swift Service endpoints + Setup Cinder properly - Update to latest git (95d7088): + Fill in values in the cinder/api-paste.ini templatae Changes in openstack-swift: - Update to version 1.7.4.1+git.1359529903.0ce3e1d: + Use pypi for python-swiftclient dependency. - Update 12.3 packages to Folsom as of March 5th. This comes with· security fixes and bug fixes that we need to have OpenStack work nicely. Fix bnc#802278. - Update to version 1.7.4.1+git.1359529903.0ce3e1d: + Use pypi for python-swiftclient dependency. Changes in python-cinderclient: - Update 12.3 packages to Folsom as of March 5th. This comes with· security fixes and bug fixes that we need to have OpenStack work nicely. Fix bnc#802278. - Add compat-newer-requests.patch: take patches from upstream to allow working with newer versions of python-requests. Changes in python-django_openstack_auth: - Update 12.3 packages to Folsom as of March 5th. This comes with· security fixes and bug fixes that we need to have OpenStack work nicely. Fix bnc#802278. - Update to version 1.0.6: + Fix compatibility with keystoneclient v0.2. - Changes from version 1.0.5: + Improves error handling; fixes failing test. Changes in python-keystoneclient: - Update 12.3 packages to Folsom as of March 5th. This comes with· security fixes and bug fixes that we need to have OpenStack work nicely. Fix bnc#802278. - Add compat-newer-requests.patch: take patches from upstream to allow working with newer versions of python-requests. openstack-cinder-doc-2012.2.4+git.1362502414.95a620b-2.4.1.noarch.rpm openstack-cinder-doc-2012.2.4+git.1362502414.95a620b-2.4.1.src.rpm openstack-cinder-2012.2.4+git.1362502414.95a620b-2.4.1.noarch.rpm openstack-cinder-2012.2.4+git.1362502414.95a620b-2.4.1.src.rpm openstack-cinder-api-2012.2.4+git.1362502414.95a620b-2.4.1.noarch.rpm openstack-cinder-scheduler-2012.2.4+git.1362502414.95a620b-2.4.1.noarch.rpm openstack-cinder-test-2012.2.4+git.1362502414.95a620b-2.4.1.noarch.rpm openstack-cinder-volume-2012.2.4+git.1362502414.95a620b-2.4.1.noarch.rpm python-cinder-2012.2.4+git.1362502414.95a620b-2.4.1.noarch.rpm openstack-dashboard-2012.2.4+git.1362503968.8ece3c7-2.5.2.noarch.rpm openstack-dashboard-2012.2.4+git.1362503968.8ece3c7-2.5.2.src.rpm openstack-dashboard-test-2012.2.4+git.1362503968.8ece3c7-2.5.2.noarch.rpm python-horizon-2012.2.4+git.1362503968.8ece3c7-2.5.2.noarch.rpm openstack-glance-doc-2012.2.4+git.1363297737.dd849a9-2.6.1.noarch.rpm openstack-glance-doc-2012.2.4+git.1363297737.dd849a9-2.6.1.src.rpm openstack-glance-2012.2.4+git.1363297737.dd849a9-2.6.1.noarch.rpm openstack-glance-2012.2.4+git.1363297737.dd849a9-2.6.1.src.rpm openstack-glance-test-2012.2.4+git.1363297737.dd849a9-2.6.1.noarch.rpm python-glance-2012.2.4+git.1363297737.dd849a9-2.6.1.noarch.rpm openstack-keystone-doc-2012.2.4+git.1362502288.8690166-3.4.1.noarch.rpm openstack-keystone-doc-2012.2.4+git.1362502288.8690166-3.4.1.src.rpm openstack-keystone-2012.2.4+git.1362502288.8690166-3.4.1.noarch.rpm openstack-keystone-2012.2.4+git.1362502288.8690166-3.4.1.src.rpm openstack-keystone-test-2012.2.4+git.1362502288.8690166-3.4.1.noarch.rpm python-keystone-2012.2.4+git.1362502288.8690166-3.4.1.noarch.rpm openstack-nova-doc-2012.2.4+git.1363297910.9561484-2.6.1.noarch.rpm openstack-nova-doc-2012.2.4+git.1363297910.9561484-2.6.1.src.rpm openstack-nova-2012.2.4+git.1363297910.9561484-2.6.1.noarch.rpm openstack-nova-2012.2.4+git.1363297910.9561484-2.6.1.src.rpm openstack-nova-api-2012.2.4+git.1363297910.9561484-2.6.1.noarch.rpm openstack-nova-cert-2012.2.4+git.1363297910.9561484-2.6.1.noarch.rpm openstack-nova-compute-2012.2.4+git.1363297910.9561484-2.6.1.noarch.rpm openstack-nova-network-2012.2.4+git.1363297910.9561484-2.6.1.noarch.rpm openstack-nova-novncproxy-2012.2.4+git.1363297910.9561484-2.6.1.noarch.rpm openstack-nova-objectstore-2012.2.4+git.1363297910.9561484-2.6.1.noarch.rpm openstack-nova-scheduler-2012.2.4+git.1363297910.9561484-2.6.1.noarch.rpm openstack-nova-test-2012.2.4+git.1363297910.9561484-2.6.1.noarch.rpm openstack-nova-vncproxy-2012.2.4+git.1363297910.9561484-2.6.1.noarch.rpm openstack-nova-volume-2012.2.4+git.1363297910.9561484-2.6.1.noarch.rpm python-nova-2012.2.4+git.1363297910.9561484-2.6.1.noarch.rpm openstack-quantum-2012.2.4+git.1362583635.f94b149-2.4.1.noarch.rpm openstack-quantum-2012.2.4+git.1362583635.f94b149-2.4.1.src.rpm openstack-quantum-doc-2012.2.4+git.1362583635.f94b149-2.4.1.noarch.rpm openstack-quantum-test-2012.2.4+git.1362583635.f94b149-2.4.1.noarch.rpm python-quantum-2012.2.4+git.1362583635.f94b149-2.4.1.noarch.rpm openstack-quickstart-2012.2+git.1360262230.cb0fbe8-2.4.1.noarch.rpm openstack-quickstart-2012.2+git.1360262230.cb0fbe8-2.4.1.src.rpm openstack-swift-doc-1.7.4.1+git.1359529903.0ce3e1d-2.4.1.noarch.rpm openstack-swift-doc-1.7.4.1+git.1359529903.0ce3e1d-2.4.1.src.rpm openstack-swift-1.7.4.1+git.1359529903.0ce3e1d-2.4.1.noarch.rpm openstack-swift-1.7.4.1+git.1359529903.0ce3e1d-2.4.1.src.rpm openstack-swift-account-1.7.4.1+git.1359529903.0ce3e1d-2.4.1.noarch.rpm openstack-swift-container-1.7.4.1+git.1359529903.0ce3e1d-2.4.1.noarch.rpm openstack-swift-object-1.7.4.1+git.1359529903.0ce3e1d-2.4.1.noarch.rpm openstack-swift-proxy-1.7.4.1+git.1359529903.0ce3e1d-2.4.1.noarch.rpm openstack-swift-test-1.7.4.1+git.1359529903.0ce3e1d-2.4.1.noarch.rpm python-swift-1.7.4.1+git.1359529903.0ce3e1d-2.4.1.noarch.rpm python-cinderclient-1.0.1.5.g82e47d0+git.1355912775.82e47d0-2.4.1.noarch.rpm python-cinderclient-1.0.1.5.g82e47d0+git.1355912775.82e47d0-2.4.1.src.rpm python-cinderclient-doc-1.0.1.5.g82e47d0+git.1355912775.82e47d0-2.4.1.noarch.rpm python-cinderclient-test-1.0.1.5.g82e47d0+git.1355912775.82e47d0-2.4.1.noarch.rpm python-django_openstack_auth-1.0.6-2.4.1.noarch.rpm python-django_openstack_auth-1.0.6-2.4.1.src.rpm python-keystoneclient-0.2.1.3.gd37a3fb+git.1357543650.d37a3fb-2.4.1.noarch.rpm python-keystoneclient-0.2.1.3.gd37a3fb+git.1357543650.d37a3fb-2.4.1.src.rpm python-keystoneclient-doc-0.2.1.3.gd37a3fb+git.1357543650.d37a3fb-2.4.1.noarch.rpm python-keystoneclient-test-0.2.1.3.gd37a3fb+git.1357543650.d37a3fb-2.4.1.noarch.rpm openSUSE-2013-207 important openSUSE 12.3 Update MozillaThunderbird was updated to 17.0.4 (bnc#808243) * MFSA 2013-29/CVE-2013-0787 (bmo#848644) Use-after-free in HTML Editor MozillaThunderbird-17.0.4-61.5.1.i586.rpm MozillaThunderbird-17.0.4-61.5.1.src.rpm MozillaThunderbird-buildsymbols-17.0.4-61.5.1.i586.rpm MozillaThunderbird-debuginfo-17.0.4-61.5.1.i586.rpm MozillaThunderbird-debugsource-17.0.4-61.5.1.i586.rpm MozillaThunderbird-devel-17.0.4-61.5.1.i586.rpm MozillaThunderbird-devel-debuginfo-17.0.4-61.5.1.i586.rpm MozillaThunderbird-translations-common-17.0.4-61.5.1.i586.rpm MozillaThunderbird-translations-other-17.0.4-61.5.1.i586.rpm enigmail-1.5.1+17.0.4-61.5.1.i586.rpm enigmail-debuginfo-1.5.1+17.0.4-61.5.1.i586.rpm MozillaThunderbird-17.0.4-61.5.1.x86_64.rpm MozillaThunderbird-buildsymbols-17.0.4-61.5.1.x86_64.rpm MozillaThunderbird-debuginfo-17.0.4-61.5.1.x86_64.rpm MozillaThunderbird-debugsource-17.0.4-61.5.1.x86_64.rpm MozillaThunderbird-devel-17.0.4-61.5.1.x86_64.rpm MozillaThunderbird-devel-debuginfo-17.0.4-61.5.1.x86_64.rpm MozillaThunderbird-translations-common-17.0.4-61.5.1.x86_64.rpm MozillaThunderbird-translations-other-17.0.4-61.5.1.x86_64.rpm enigmail-1.5.1+17.0.4-61.5.1.x86_64.rpm enigmail-debuginfo-1.5.1+17.0.4-61.5.1.x86_64.rpm openSUSE-2013-216 low openSUSE 12.3 Update This update fixes the following issue for pulseaudio: - bnc#805865: Fix a bug setting speaker volume to zero wrongly libpulse-devel-3.0-1.6.1.i586.rpm libpulse-mainloop-glib0-3.0-1.6.1.i586.rpm libpulse-mainloop-glib0-32bit-3.0-1.6.1.x86_64.rpm libpulse-mainloop-glib0-debuginfo-3.0-1.6.1.i586.rpm libpulse-mainloop-glib0-debuginfo-32bit-3.0-1.6.1.x86_64.rpm libpulse0-3.0-1.6.1.i586.rpm libpulse0-32bit-3.0-1.6.1.x86_64.rpm libpulse0-debuginfo-3.0-1.6.1.i586.rpm libpulse0-debuginfo-32bit-3.0-1.6.1.x86_64.rpm pulseaudio-3.0-1.6.1.i586.rpm pulseaudio-3.0-1.6.1.src.rpm pulseaudio-debuginfo-3.0-1.6.1.i586.rpm pulseaudio-debugsource-3.0-1.6.1.i586.rpm pulseaudio-esound-compat-3.0-1.6.1.i586.rpm pulseaudio-gdm-hooks-3.0-1.6.1.i586.rpm pulseaudio-lang-3.0-1.6.1.noarch.rpm pulseaudio-module-bluetooth-3.0-1.6.1.i586.rpm pulseaudio-module-bluetooth-debuginfo-3.0-1.6.1.i586.rpm pulseaudio-module-gconf-3.0-1.6.1.i586.rpm pulseaudio-module-gconf-debuginfo-3.0-1.6.1.i586.rpm pulseaudio-module-jack-3.0-1.6.1.i586.rpm pulseaudio-module-jack-debuginfo-3.0-1.6.1.i586.rpm pulseaudio-module-lirc-3.0-1.6.1.i586.rpm pulseaudio-module-lirc-debuginfo-3.0-1.6.1.i586.rpm pulseaudio-module-x11-3.0-1.6.1.i586.rpm pulseaudio-module-x11-debuginfo-3.0-1.6.1.i586.rpm pulseaudio-module-zeroconf-3.0-1.6.1.i586.rpm pulseaudio-module-zeroconf-debuginfo-3.0-1.6.1.i586.rpm pulseaudio-utils-3.0-1.6.1.i586.rpm pulseaudio-utils-debuginfo-3.0-1.6.1.i586.rpm libpulse-devel-3.0-1.6.1.x86_64.rpm libpulse-mainloop-glib0-3.0-1.6.1.x86_64.rpm libpulse-mainloop-glib0-debuginfo-3.0-1.6.1.x86_64.rpm libpulse0-3.0-1.6.1.x86_64.rpm libpulse0-debuginfo-3.0-1.6.1.x86_64.rpm pulseaudio-3.0-1.6.1.x86_64.rpm pulseaudio-debuginfo-3.0-1.6.1.x86_64.rpm pulseaudio-debugsource-3.0-1.6.1.x86_64.rpm pulseaudio-esound-compat-3.0-1.6.1.x86_64.rpm pulseaudio-gdm-hooks-3.0-1.6.1.x86_64.rpm pulseaudio-module-bluetooth-3.0-1.6.1.x86_64.rpm pulseaudio-module-bluetooth-debuginfo-3.0-1.6.1.x86_64.rpm pulseaudio-module-gconf-3.0-1.6.1.x86_64.rpm pulseaudio-module-gconf-debuginfo-3.0-1.6.1.x86_64.rpm pulseaudio-module-jack-3.0-1.6.1.x86_64.rpm pulseaudio-module-jack-debuginfo-3.0-1.6.1.x86_64.rpm pulseaudio-module-lirc-3.0-1.6.1.x86_64.rpm pulseaudio-module-lirc-debuginfo-3.0-1.6.1.x86_64.rpm pulseaudio-module-x11-3.0-1.6.1.x86_64.rpm pulseaudio-module-x11-debuginfo-3.0-1.6.1.x86_64.rpm pulseaudio-module-zeroconf-3.0-1.6.1.x86_64.rpm pulseaudio-module-zeroconf-debuginfo-3.0-1.6.1.x86_64.rpm pulseaudio-utils-3.0-1.6.1.x86_64.rpm pulseaudio-utils-debuginfo-3.0-1.6.1.x86_64.rpm openSUSE-2013-217 low openSUSE 12.3 Update This update fixes the following issues for kdebase4-openSUSE: - fix typo in nepomukserverrc - Update Activities icon - Remove unnecessary hardcoding of Nepomuk db location - Correct Lancelot background theming - Disable Windowed Widgets KRunner by default kdebase4-openSUSE-12.3-10.11.3.i586.rpm kdebase4-openSUSE-12.3-10.11.3.src.rpm kdebase4-openSUSE-debuginfo-12.3-10.11.3.i586.rpm kdebase4-openSUSE-debugsource-12.3-10.11.3.i586.rpm kdebase4-openSUSE-lang-12.3-10.11.3.noarch.rpm kdebase4-runtime-branding-openSUSE-12.3-10.11.3.i586.rpm kdebase4-workspace-branding-openSUSE-12.3-10.11.3.i586.rpm kdebase4-workspace-branding-openSUSE-debuginfo-12.3-10.11.3.i586.rpm kdebase4-openSUSE-12.3-10.11.3.x86_64.rpm kdebase4-openSUSE-debuginfo-12.3-10.11.3.x86_64.rpm kdebase4-openSUSE-debugsource-12.3-10.11.3.x86_64.rpm kdebase4-runtime-branding-openSUSE-12.3-10.11.3.x86_64.rpm kdebase4-workspace-branding-openSUSE-12.3-10.11.3.x86_64.rpm kdebase4-workspace-branding-openSUSE-debuginfo-12.3-10.11.3.x86_64.rpm openSUSE-2013-211 low openSUSE 12.3 Update This update fixes the following issues for yast2-security: - bnc#807099: remove broken LASTLOG_ENAB entry from /etc/login.defs - bnc#802006: drop obsolete GROUP_ENCRYPTION yast2-security-2.23.5-1.4.1.noarch.rpm yast2-security-2.23.5-1.4.1.src.rpm openSUSE-2013-212 low openSUSE 12.3 Update This update fixes the following issues for rpmrebuild: - Update to 2.9. * Fix to work with rpm 4.10 - error: incorrect format: invalid field width. - Changes in 2.8. * Can handle SUGGESTS/ENHANCES rpm tag. * Add --cap-from-fs/cap-from-db options. - Changes in 2.7. * Patch from Andreas Kainz for package file checking. * Add new unset_tag plugin. * Fix -l / --list-plugin option. * Add support of posix capability. * Add new un_prelink plugin. * Add RPMREBUILD_OPTS environment variable. * Fix problem with different architecture (build 32bit on 64bits). * Fix bad arch on gpg-pubkey packages. - Use full URL as a source. - Verify GPG signature. - Package docs. - Mark man pages as doc. rpmrebuild-2.9-7.4.1.noarch.rpm rpmrebuild-2.9-7.4.1.src.rpm openSUSE-2013-232 moderate openSUSE 12.3 Update The Typo3 CMS versions were updated to receive security and bug fixes. - Raised to version 4.5.25 * bugfix: External URL regression by jumpurl security fix (Helmut Hummel), t3#46071 - Raised to version 4.5.24 * Raise submodule pointer (TYPO3 Release Team) * security: Open redirection with jumpurl (Franz G. Jahn), t3#28587, bnc#808528, CVE-2013-1843 * bugfix: Check minitems for TCAtree (Georg Ringer), t3#25003 * bugfix: Keep hyphens in custom HTML5 attributes (Jigal van Hemert), t3#34371 * Revert "[BUGFIX] FE session records are never removed" (Oliver Hader), t3#45570 - security fix: Typo3 Extbase Framework SQL Injection, bnc#808528, CVE-2013-1842 - Raised to version 4.5.23 * Raise submodule pointer * bugfix: t3lib_iconWorks must check if array exists before using it, t3#24248 * bugfix: BE user switch impossible when in adminOnly mode, t3#32686 * bugfix: Excludefieds must exclude admin only tables, t3#34460 * bugfix: TypoLink: absolute urls when installed in subfolder, t3#33214 * Raise submodule pointer * bugfix: [Cache][PDO] Duplicate cache entry possible, t3#34129 * bugfix: IE9 compatibility clear cache menu, t3#36364 * bugfix: Hook call modifyDBRow in ContentContentObject, t3#44416 * bugfix: Fix misspelling in RTE meta menu, t3#43886 * bugfix: load TCA before manipulation, t3#38505 * DataHandler::getAutoVersionId() should be public, t3#45050 * bugfix: Load date-time picker in scheduler module, t3#31027 * bugfix: Quick Edit triggers warnings of missing key uid, t3#42845 * Raise submodule pointer * bugfix: Fix warnings in em on tab Maintenance, t3#39680 * bugfix: Correct TCA inclusion for uploads rendering, t3#44145 * bugfix: Update description on changed error reporting defaults, t3#38240 * bugfix: Fix typos in stdWrap_crop description, t3#43919 * bugfix: Apc Cache backend has side effects, t3#38135 * bugfix: Invalid call to t3lib_TCEmain::processRemapStack(), t3#44301 * Raise submodule pointer * bugfix: Suggest wizard is behind form inputs, t3#42092 * bugfix: phpdoc: $urlParameters can be a string, t3#44263 * bugfix: FE session records are never removed, t3#34964 * bugfix: INTincScript_loadJSCode() causes PHP warnings, t3#32278 * bugfix: Enable the RTE with WebKit version 534 on iOS and Android, t3#43603 * bugfix: Remove HTML in RuntimeException from sysext 'install', t3#38472 * bugfix: Fix wrong column title in web>list for field colpos, t3#25113 * bugfix: SqlParser: trim all kinds of whitespaces, t3#43470 * Remove typo3.pageModule.js, t3#43459 * bugfix: Installer: Reference images wrong, t3#42292 * bugfix: Page Information shows incorrect number of total hits, t3#41608 * bugfix: Old logo on "Install Tool is locked" page, t3#42908 * openid: Update php-openid to 2.2.2, t3#42236 * Group excludefields by table, t3#34098 * bugfix: Hide version selector if workspaces are used, t3#43264 * Raise submodule pointer - Raised verstion to 4.6.18 * bugfix: External URL regression by jumpurl security fix (Helmut Hummel), t3#46071 - Raised version to 4.6.17 * Raise submodule pointer (TYPO3 Release Team) * security: Open redirection with jumpurl (Franz G. Jahn), t3#28587, bnc#808528, CVE-2013-1843 - security fix: Typo3 Extbase Framework SQL Injection, bnc#808528, CVE-2013-1842 - Raised version to 4.6.16 * bugfix: L10n fallback does not work for TS labels, t3#44099 * bugfix: L10n fallback does not work for ExtJS in BE, t3#44273 * Raise submodule pointer * bugfix: Allow "en" as language key, t3#42084 * Raise submodule pointer * bugfix: [Cache][PDO] Duplicate cache entry possible, t3#34129 * bugfix: IE9 compatibility clear cache menu, t3#36364 * bugfix: Hook call modifyDBRow in ContentContentObject, t3#44416 * bugfix: Fix misspelling in RTE meta menu, t3#43886 * bugfix: load TCA before manipulation, t3#38505 * bugfix: add check for empty form values in FORM View, t3#28606 * DataHandler::getAutoVersionId() should be public, t3#45050 * bugfix: Quick Edit triggers warnings of missing key uid, t3#42845 * Raise submodule pointer * bugfix: Fix warnings in em on tab Maintenance, t3#39680 * bugfix: Correct TCA inclusion for uploads rendering, t3#44145 * bugfix: Update description on changed error reporting defaults, t3#38240 * bugfix: Fix typos in stdWrap_crop description, t3#43919 * bugfix: Apc Cache backend has side effects, t3#38135 * bugfix: Invalid call to t3lib_TCEmain::processRemapStack(), t3#44301 * Raise submodule pointer * bugfix: Suggest wizard is behind form inputs, t3#42092 * bugfix: phpdoc: $urlParameters can be a string, t3#44263 * bugfix: FE session records are never removed, t3#34964 * bugfix: INTincScript_loadJSCode() causes PHP warnings, t3#32278 * bugfix: Fix broken logo file in Install Tool, t3#43426 * bugfix: Remove HTML in RuntimeException from sysext 'install', t3#38472 * bugfix: Fix wrong column title in web>list for field colpos, t3#25113 * bugfix: SqlParser: trim all kinds of whitespaces, t3#43470 * Remove typo3.pageModule.js, t3#43459 * bugfix: Installer: Reference images wrong, t3#42292 * bugfix: Page Information shows incorrect number of total hits, t3#41608 * bugfix: Old logo on "Install Tool is locked" page, t3#42908 * bugfix: Form values with newlines escaped in email, t3#32515 * openid: Update php-openid to 2.2.2, t3#42236 * bugfix: Wizard in HTML element moved to t3editor, t3#33813 * bugfix: Livesearch toolbar should close others, t3#32890 * bugfix: Hide version selector if workspaces are used, t3#43264 * bugfix: Subject field in FormWizard, t3#35787 * Raise submodule pointer * bugfix: Invalid behavior of search for integer in Backend search, t3#33700 * fluid, bugfix: Unit test fails with broken timezone, t3#45285 * fluid, bugfix: Date ViewHelper not using configured Timezones, t3#12769 * fluid, bugfix: Fix typo and improve backup of system settings, t3#45218 * fluid, bugfix: Remove PHP Error caused by setlocale call, t3#45118 * fluid, bugfix: Incomplete locale backup in unit test, t3#44835 * fluid, bugfix: selectViewHelper sorting should respect locales, t3#43445 * fluid, bugfix: Image viewhelper clears $GLOBALS['TSFE'] in backend context, t3#43446 * fluid, bugfix: AbstractFormFieldViewHelper always converts entities, t3#34091 * linkvalidator, bugfix: SQL error in getLinkCounts, t3#43322 * version, bugfix: Catchable fatal error when using the swap button, t3#42948 - Raised to version 4.7.10 * bugfix: External URL regression by jumpurl security fix (Helmut Hummel), t3#46071 - Added rpmlintrc to suppress duplicated files warning. - Raised to version 4.7.9 * Raise submodule pointer (TYPO3 Release Team) * security: Open redirection with jumpurl (Franz G. Jahn), t3#28587, bnc#808528, CVE-2013-1843 * bugfix: Invalid RSA key when submitting form twice (Benjamin Mack), t3#40085 - security fix: Typo3 Extbase Framework SQL Injection, bnc#808528, CVE-2013-1842 - Raised to version 4.7.8 * bugfix: L10n fallback does not work for TS labels, t3#44099 * bugfix: L10n fallback does not work for ExtJS in BE, t3#44273 * Raise submodule pointer * bugix: Allow "en" as language key, t3#42084 * Raise submodule pointer * bugfix: [Cache][PDO] Duplicate cache entry possible, t3#34129 * bugfix: IE9 compatibility clear cache menu, t3#36364 * bugfix: Hook call modifyDBRow in ContentContentObject, t3#44416 * bugfix: Fix misspelling in RTE meta menu, t3#43886 * bugfix: load TCA before manipulation, t3#38505 * bugfix: add check for empty form values in FORM View, t3#28606 * DataHandler::getAutoVersionId() should be public, t3#45050 * bugfix: Possible warning in about module, t3#44892 * bugfix: Quick Edit triggers warnings of missing key uid, t3#42845 * Raise submodule pointer * bugfix: Fix warnings in em on tab Maintenance, t3#39680 * bugfix: EXT:felogin: Multiple bugs with preserveGETvars, t3#19938 * bugfix: Correct TCA inclusion for uploads rendering, t3#44145 * bugfix: array_merge_recursive_overrule: __UNSET for array values, t3#43874 * bugfix: Update description on changed error reporting defaults, t3#38240 * bugfix: Fix typos in stdWrap_crop description, t3#43919 * Add save only button to Scheduler task, t3#44152 * bugfix: Apc Cache backend has side effects, t3#38135 * bugfix: Invalid call to t3lib_TCEmain::processRemapStack(), t3#44301 * Raise submodule pointer * Suggest wizard is behind form inputs, t3#42092 * bugfix: phpdoc: $urlParameters can be a string, t3#44263 * bugfix: FE session records are never removed, t3#34964 * bugfix: INTincScript_loadJSCode() causes PHP warnings, t3#32278 * bugfix: Fix broken logo file in Install Tool, t3#43426 * bugfix: Enable the RTE with WebKit version 534 on iOS and Android, t3#43603 * bugfix: IE9 crashes after saving with RTE, t3#43766 * bugfix: Remove HTML in RuntimeException from sysext 'install', t3#38472 * bugfix: Compatibility fix for get_html_translation_table(), t3#39287 * bugfix: Fix wrong column title in web>list for field colpos, t3#25113 * bugfix: SqlParser: trim all kinds of whitespaces, t3#43470 * Remove typo3.pageModule.js, t3#43459 * bugfix: Installer: Reference images wrong, t3#42292 * bugfix: Page Information shows incorrect number of total hits, t3#41608 * bugfix: Old logo on "Install Tool is locked" page, t3#42908 * bugfix: Form values with newlines escaped in email, t3#32515 * openid: Update php-openid to 2.2.2, t3#42236 * bugfix: Hide version selector if workspaces are used. t3#43264 * bugfix: Subject field in FormWizard, t3#35787 * Raise submodule pointer * Invalid behavior of search for integer in Backend search, t3#33700 typo3-cms-4_5-4.5.25-2.4.1.noarch.rpm typo3-cms-4_5-4.5.25-2.4.1.src.rpm typo3-cms-4_6-4.6.18-2.4.1.noarch.rpm typo3-cms-4_6-4.6.18-2.4.1.src.rpm typo3-cms-4_7-4.7.10-2.4.1.noarch.rpm typo3-cms-4_7-4.7.10-2.4.1.src.rpm openSUSE-2013-202 important openSUSE 12.3 Update This update fixes the following issues for release-notes-openSUSE: - 12.3.5 (bnc#808614): * New entries: + bnc#808104: Crypted LVM in UEFI Mode Needs /boot Partition + bnc#808108: Enable Secure Boot in YaST Not Enabled by Default When in Secure Boot Mode + bnc#808111: No Network after Installation + bnc#808116: Wrong Bootloader When Installing from a Live Medium in a UEFI Environment + bnc#808595: openSUSE 12.3 Medium May Not Boot on Future Secure Boot Enabled Hardware * Update entries: + bnc#804773: Gnome: Workaround to Set Shift or Ctrl+Shift as a Shortcut release-notes-openSUSE-12.3.6-1.6.1.noarch.rpm release-notes-openSUSE-12.3.6-1.6.1.src.rpm openSUSE-2013-204 important openSUSE 12.3 Update This udpate fixes the following issues for timezone: - tzcode and tzdata 2013b * Haiti uses US daylight-saving rules this year, and presumably future years. This changes time stamps starting today.· * Paraguay will end DST on March 24 this year. * Morocco does not observe DST during Ramadan. timezone-java-2013b-2.9.1.noarch.rpm timezone-java-2013b-2.9.1.src.rpm timezone-2013b-2.9.1.i586.rpm timezone-2013b-2.9.1.src.rpm timezone-debuginfo-2013b-2.9.1.i586.rpm timezone-debugsource-2013b-2.9.1.i586.rpm timezone-2013b-2.9.1.x86_64.rpm timezone-debuginfo-2013b-2.9.1.x86_64.rpm timezone-debugsource-2013b-2.9.1.x86_64.rpm openSUSE-2013-227 moderate openSUSE 12.3 Update This update fixes the following issues for stellarium: - Update to version 0.12.0 (bnc#801946): + New features: - New rendering engine (LP: #673183) - Editable keybindings (LP: #1098851, #1035635, #832256, #789002) - Scripting for plugins (LP: #1040242) - Some transneptunian objects (LP: #899084, #1051205) - New geographical locations (LP: #1051803) - New textures for DSO - DeltaT and lunar acceleration computation (LP: #575621) + Improvements: - Improving the scripting engine (LP: #1059368) - Improving the plugins (LP: #1082167, #1042714) - Improving the coordinate grids (LP: #1036294) - Improving the constellation boundaries (LP: #1039072) - Improving the search tool + Bug fixes: - Clang Wself-assign warning during build process on some platforms (LP: #1097358) - Bugs in Observability plugin (LP: #1042059, #1054599, #1053058) - Bugs in TUI plugin (LP: #1083380) - Bugs in Satellites plugin (LP: #1048220) - Bugs in Compass plugin (LP: #695891) - Bugs in scripting engine (LP: #1046518, #1092781) - Font corruption bugs (LP: #597633, #778747, #819278, #903310) - Screen flashing in fullscreen mode (LP: #716695, #824788) - Lost nebula images (LP: #1042393, #1051038) - Bugs in Night Vision mode (LP: #578367) - Bugs in GUI and Core (LP: #1090722, #1082510, #1071455, #1071458, #1056868, #1054600, #1045111, #1040944, #1077545) - Crashes (LP: #1043640, #1044654, #1045783) - Drop outdated user guide from package, and corresponding .desktop file (the user guide is now on the wiki http://www.stellarium.org/wiki/index.php/Stellarium_User_Guide) - Drop build dependency on ImageMagick, as the install script now automatically installs prepackaged icons in the hicolor directory - Require qt >= 4.8 and cmake >= 2.8.7 for building. stellarium-0.12.0-2.4.1.i586.rpm stellarium-0.12.0-2.4.1.src.rpm stellarium-debuginfo-0.12.0-2.4.1.i586.rpm stellarium-debugsource-0.12.0-2.4.1.i586.rpm stellarium-0.12.0-2.4.1.x86_64.rpm stellarium-debuginfo-0.12.0-2.4.1.x86_64.rpm stellarium-debugsource-0.12.0-2.4.1.x86_64.rpm openSUSE-2013-240 moderate openSUSE 12.3 Update nss-pam-ldap was updated to fix a FD_SET overflow, happening when more than 1024 filedescriptors are opened. (CVE-2013-0288) nss-pam-ldapd-0.8.10-2.5.1.i586.rpm nss-pam-ldapd-0.8.10-2.5.1.src.rpm nss-pam-ldapd-32bit-0.8.10-2.5.1.x86_64.rpm nss-pam-ldapd-debuginfo-0.8.10-2.5.1.i586.rpm nss-pam-ldapd-debuginfo-32bit-0.8.10-2.5.1.x86_64.rpm nss-pam-ldapd-debugsource-0.8.10-2.5.1.i586.rpm nss-pam-ldapd-0.8.10-2.5.1.x86_64.rpm nss-pam-ldapd-debuginfo-0.8.10-2.5.1.x86_64.rpm nss-pam-ldapd-debugsource-0.8.10-2.5.1.x86_64.rpm openSUSE-2013-228 low openSUSE 12.3 Update This update fixes the following issues for microcode_ctl: - bnc#809348: - Update intel microcode to 20130222 - Update amd microcode to 2012-09-10 - Changelog not available (confidential) microcode_ctl-1.17-142.5.1.i586.rpm microcode_ctl-1.17-142.5.1.src.rpm microcode_ctl-debuginfo-1.17-142.5.1.i586.rpm microcode_ctl-debugsource-1.17-142.5.1.i586.rpm microcode_ctl-1.17-142.5.1.x86_64.rpm microcode_ctl-debuginfo-1.17-142.5.1.x86_64.rpm microcode_ctl-debugsource-1.17-142.5.1.x86_64.rpm openSUSE-2013-247 low openSUSE 12.3 Update This update fixes the following issues for octave: - bnc#808530: Fix native graphics support octave-3.6.3-4.4.2.i586.rpm octave-3.6.3-4.4.2.src.rpm octave-debuginfo-3.6.3-4.4.2.i586.rpm octave-debugsource-3.6.3-4.4.2.i586.rpm octave-devel-3.6.3-4.4.2.i586.rpm octave-3.6.3-4.4.2.x86_64.rpm octave-debuginfo-3.6.3-4.4.2.x86_64.rpm octave-debugsource-3.6.3-4.4.2.x86_64.rpm octave-devel-3.6.3-4.4.2.x86_64.rpm openSUSE-2013-248 low openSUSE 12.3 Update This update fixes the following issue for nagios: - bnc#809180: - adapt static html pages to reflect the current version - update to 3.5.0: + The "configuration" page of the webui doesn't use entity encoding when displaying the "command expansion" item + Nagios Core 3.4.4 seg fault (core dump) on restart after removing config for running service + Updated CGI utility functions to support UTF-8 characters + Fixed bug where selecting Command Expansion from Configuration CGI page would display commands instead + status.cgi crashes with segfault when there are german ulauts (äöüß) in the hostname or the servicename + Scheduled Downtime Notifications Resent On Nagios Restart/reload - provide monitoring_daemon in the init script to allow other init scripts to depend on it nagios-rpm-macros-0.06-2.4.1.noarch.rpm nagios-rpm-macros-0.06-2.4.1.src.rpm nagios-3.5.0-2.6.1.i586.rpm nagios-3.5.0-2.6.1.src.rpm nagios-debuginfo-3.5.0-2.6.1.i586.rpm nagios-debugsource-3.5.0-2.6.1.i586.rpm nagios-devel-3.5.0-2.6.1.i586.rpm nagios-www-3.5.0-2.6.1.i586.rpm nagios-www-dch-3.5.0-2.6.1.i586.rpm nagios-www-debuginfo-3.5.0-2.6.1.i586.rpm nagios-3.5.0-2.6.1.x86_64.rpm nagios-debuginfo-3.5.0-2.6.1.x86_64.rpm nagios-debugsource-3.5.0-2.6.1.x86_64.rpm nagios-devel-3.5.0-2.6.1.x86_64.rpm nagios-www-3.5.0-2.6.1.x86_64.rpm nagios-www-dch-3.5.0-2.6.1.x86_64.rpm nagios-www-debuginfo-3.5.0-2.6.1.x86_64.rpm openSUSE-2013-215 low openSUSE 12.3 Update This update fixes the following issue for nagios-nsca: - bnc#804614: added man pages for nsca and send_nsca nagios-nsca-2.9.1-5.4.1.i586.rpm nagios-nsca-2.9.1-5.4.1.src.rpm nagios-nsca-client-2.9.1-5.4.1.i586.rpm nagios-nsca-client-debuginfo-2.9.1-5.4.1.i586.rpm nagios-nsca-debuginfo-2.9.1-5.4.1.i586.rpm nagios-nsca-debugsource-2.9.1-5.4.1.i586.rpm nagios-nsca-2.9.1-5.4.1.x86_64.rpm nagios-nsca-client-2.9.1-5.4.1.x86_64.rpm nagios-nsca-client-debuginfo-2.9.1-5.4.1.x86_64.rpm nagios-nsca-debuginfo-2.9.1-5.4.1.x86_64.rpm nagios-nsca-debugsource-2.9.1-5.4.1.x86_64.rpm openSUSE-2013-230 moderate openSUSE 12.3 Update java-1_7_0-openjdk was updated to icedtea-2.3.7 (bnc#809386): * Security fixes - S8007014, CVE-2013-0809: Improve image handling - S8007675, CVE-2013-1493: Improve color conversion * Backports - S8002344: Krb5LoginModule config class does not return proper KDC list from DNS - S8004344: Fix a crash in ToolkitErrorHandler() in XlibWrapper.c - S8006179: JSR292 MethodHandles lookup with interface using findVirtual() - S8006882: Proxy generated classes in sun.proxy package breaks JMockit * Bug fixes - PR1303: Correct #ifdef to #if - PR1340: Simplify the rhino class rewriter to avoid use of concurrency - Revert 7017193 and add the missing free call, until a better fix is ready. java-1_7_0-openjdk-1.7.0.6-8.8.1.i586.rpm java-1_7_0-openjdk-1.7.0.6-8.8.1.src.rpm java-1_7_0-openjdk-debuginfo-1.7.0.6-8.8.1.i586.rpm java-1_7_0-openjdk-debugsource-1.7.0.6-8.8.1.i586.rpm java-1_7_0-openjdk-demo-1.7.0.6-8.8.1.i586.rpm java-1_7_0-openjdk-demo-debuginfo-1.7.0.6-8.8.1.i586.rpm java-1_7_0-openjdk-devel-1.7.0.6-8.8.1.i586.rpm java-1_7_0-openjdk-devel-debuginfo-1.7.0.6-8.8.1.i586.rpm java-1_7_0-openjdk-javadoc-1.7.0.6-8.8.1.i586.rpm java-1_7_0-openjdk-src-1.7.0.6-8.8.1.i586.rpm java-1_7_0-openjdk-1.7.0.6-8.8.1.x86_64.rpm java-1_7_0-openjdk-debuginfo-1.7.0.6-8.8.1.x86_64.rpm java-1_7_0-openjdk-debugsource-1.7.0.6-8.8.1.x86_64.rpm java-1_7_0-openjdk-demo-1.7.0.6-8.8.1.x86_64.rpm java-1_7_0-openjdk-demo-debuginfo-1.7.0.6-8.8.1.x86_64.rpm java-1_7_0-openjdk-devel-1.7.0.6-8.8.1.x86_64.rpm java-1_7_0-openjdk-devel-debuginfo-1.7.0.6-8.8.1.x86_64.rpm java-1_7_0-openjdk-javadoc-1.7.0.6-8.8.1.x86_64.rpm java-1_7_0-openjdk-src-1.7.0.6-8.8.1.x86_64.rpm openSUSE-2013-238 moderate openSUSE 12.3 Update telepathy-gabble was updated to fix a remote denial of service attack using NULL ptr dereferences during hashing. (CVE-2013-1769). telepathy-gabble-0.17.1-2.4.1.i586.rpm telepathy-gabble-0.17.1-2.4.1.src.rpm telepathy-gabble-debuginfo-0.17.1-2.4.1.i586.rpm telepathy-gabble-debugsource-0.17.1-2.4.1.i586.rpm telepathy-gabble-xmpp-console-0.17.1-2.4.1.i586.rpm telepathy-gabble-xmpp-console-debuginfo-0.17.1-2.4.1.i586.rpm telepathy-gabble-0.17.1-2.4.1.x86_64.rpm telepathy-gabble-debuginfo-0.17.1-2.4.1.x86_64.rpm telepathy-gabble-debugsource-0.17.1-2.4.1.x86_64.rpm telepathy-gabble-xmpp-console-0.17.1-2.4.1.x86_64.rpm telepathy-gabble-xmpp-console-debuginfo-0.17.1-2.4.1.x86_64.rpm openSUSE-2013-234 low openSUSE 12.3 Update This update fixes the following issue for freeradius-server: - bnc#797292: fixed a bug in the logrotate script freeradius-server-2.2.0-3.4.1.i586.rpm freeradius-server-2.2.0-3.4.1.src.rpm freeradius-server-debuginfo-2.2.0-3.4.1.i586.rpm freeradius-server-debugsource-2.2.0-3.4.1.i586.rpm freeradius-server-devel-2.2.0-3.4.1.i586.rpm freeradius-server-dialupadmin-2.2.0-3.4.1.i586.rpm freeradius-server-doc-2.2.0-3.4.1.i586.rpm freeradius-server-libs-2.2.0-3.4.1.i586.rpm freeradius-server-libs-debuginfo-2.2.0-3.4.1.i586.rpm freeradius-server-utils-2.2.0-3.4.1.i586.rpm freeradius-server-utils-debuginfo-2.2.0-3.4.1.i586.rpm freeradius-server-2.2.0-3.4.1.x86_64.rpm freeradius-server-debuginfo-2.2.0-3.4.1.x86_64.rpm freeradius-server-debugsource-2.2.0-3.4.1.x86_64.rpm freeradius-server-devel-2.2.0-3.4.1.x86_64.rpm freeradius-server-dialupadmin-2.2.0-3.4.1.x86_64.rpm freeradius-server-doc-2.2.0-3.4.1.x86_64.rpm freeradius-server-libs-2.2.0-3.4.1.x86_64.rpm freeradius-server-libs-debuginfo-2.2.0-3.4.1.x86_64.rpm freeradius-server-utils-2.2.0-3.4.1.x86_64.rpm freeradius-server-utils-debuginfo-2.2.0-3.4.1.x86_64.rpm openSUSE-2013-233 low openSUSE 12.3 Update This update fixes the following issues for xtrabackup: - bnc#809505: fix path of MySQL 5.5 xtrabackup binary - update to 2.0.5 - new features: + New option --defaults-extra-file to read options before the standard defaults-file, e.g. for separate username/passwords crontab or a script somewhere in the system. - bugs fixed: + In case of streaming backups, innobackupex would resume the XtraBackup process and then wait for it to finish before running UNLOCK TABLES. This caused database to be unnecessarily locked with FLUSH TABLES WITH READ LOCK. Innobackupex now waits only till log copying is finished to unlock the databases. + innobackupex error messages referencing the data directory have been extended to show the path of the data directory mentioned in the error message. + Partitioned tables were not correctly handled by the --databases, --include, --tables-file options of innobackupex, and by the --tables and --tables-file options of XtraBackup. + When built-in compression was used, XtraBackup was doing unbuffered writes to the destination file or stream in very small chunks which in return caused inefficient I/O. + Unnecessary long sleep() in innobackupex lead to FLUSH TABLES WITH READ LOCK taking too long. + If innobackupex would crash it would leave the xtrabackup_suspended file on the filesystem. This could then cause innobackupex to think XtraBackup has suspended itself the moment it started, and then when XtraBackup actually does suspend itself, innobackupex would wait for it to end and wouldn’t re-remove the suspend file, leading to a wait deadlock. + innobackupex would fail to recognize MariaDB 5.2 and MariaDB 5.3 xtrabackup-2.0.5-2.4.1.i586.rpm xtrabackup-2.0.5-2.4.1.src.rpm xtrabackup-debuginfo-2.0.5-2.4.1.i586.rpm xtrabackup-debugsource-2.0.5-2.4.1.i586.rpm xtrabackup-2.0.5-2.4.1.x86_64.rpm xtrabackup-debuginfo-2.0.5-2.4.1.x86_64.rpm xtrabackup-debugsource-2.0.5-2.4.1.x86_64.rpm openSUSE-2013-235 moderate openSUSE 12.3 Update This update fixes the following issues for nss_ldap: - bnc#809245: ldap.conf is now part of nss_ldap since pwdutils was dropped - removed no longer needed %post scriptlet nss_ldap-265-19.5.1.i586.rpm nss_ldap-265-19.5.1.src.rpm nss_ldap-32bit-265-19.5.1.x86_64.rpm nss_ldap-debuginfo-265-19.5.1.i586.rpm nss_ldap-debuginfo-32bit-265-19.5.1.x86_64.rpm nss_ldap-debugsource-265-19.5.1.i586.rpm nss_ldap-265-19.5.1.x86_64.rpm nss_ldap-debuginfo-265-19.5.1.x86_64.rpm nss_ldap-debugsource-265-19.5.1.x86_64.rpm openSUSE-2013-241 moderate openSUSE 12.3 Update Almanah was updated to encrypt the database when the application closes. (bgo#695117, bnc#809140, CVE-2013-1853). almanah-0.10.1-2.4.1.i586.rpm almanah-0.10.1-2.4.1.src.rpm almanah-debuginfo-0.10.1-2.4.1.i586.rpm almanah-debugsource-0.10.1-2.4.1.i586.rpm almanah-lang-0.10.1-2.4.1.noarch.rpm almanah-0.10.1-2.4.1.x86_64.rpm almanah-debuginfo-0.10.1-2.4.1.x86_64.rpm almanah-debugsource-0.10.1-2.4.1.x86_64.rpm openSUSE-2013-242 moderate openSUSE 12.3 Update privoxy was updated to 3.0.21 stable fo fix CVE-2013-2503 (bnc#809123) - changes in 3.0.21 * On POSIX-like platforms, network sockets with file descriptor values above FD_SETSIZE are properly rejected. Previously they could cause memory corruption in configurations that allowed the limit to be reached. * Proxy authentication headers are removed unless the new directive enable-proxy-authentication-forwarding is used. Forwarding the headers potentionally allows malicious sites to trick the user into providing them with login information. Reported by Chris John Riley. * Compiles on OS/2 again now that unistd.h is only included on platforms that have it. * The show-status page shows the FEATURE_STRPTIME_SANITY_CHECKS status. * A couple of assert()s that could theoretically dereference NULL pointers in debug builds have been relocated. * Added an LSB info block to the generic start script. Based on a patch from Natxo Asenjo. * The max-client-connections default has been changed to 128 which should be more than enough for most setups. * Block rover.ebay./ar.*\&adtype= instead of "/.*\&adtype=" which caused too man false positives. Reported by u302320 in #360284, additional feedback from Adam Piggott. * Unblock '.advrider.com/' and '/.*ADVrider'. Anonymously reported in #3603636. * Stop blocking '/js/slider\.js'. Reported by Adam Piggott in #3606635 and _lvm in #2791160. * Added an iframes filter. * The whole GPLv2 text is included in the user manual now, so Privoxy can serve it itself and the user can read it without having to wade through GPLv3 ads first. * Properly numbered and underlined a couple of section titles in the config that where previously overlooked due to a flaw in the conversion script. Reported by Ralf Jungblut. * Improved the support instruction to hopefully make it harder to unintentionally provide insufficient information when requesting support. Previously it wasn't obvious that the information we need in bug reports is usually also required in support requests. * Removed documentation about packages that haven't been provided in years. * Only log the test number when not running in verbose mode The position of the test is rarely relevant and it previously - for full list of changes see ChangeLog file shipped together with this package privoxy-3.0.21-2.4.1.i586.rpm privoxy-3.0.21-2.4.1.src.rpm privoxy-debuginfo-3.0.21-2.4.1.i586.rpm privoxy-debugsource-3.0.21-2.4.1.i586.rpm privoxy-doc-3.0.21-2.4.1.i586.rpm privoxy-3.0.21-2.4.1.x86_64.rpm privoxy-debuginfo-3.0.21-2.4.1.x86_64.rpm privoxy-debugsource-3.0.21-2.4.1.x86_64.rpm privoxy-doc-3.0.21-2.4.1.x86_64.rpm openSUSE-2013-246 moderate openSUSE 12.3 Update This update fixes the following issue for polkit-default-privs: - bnc#807097: move default rules to '90' polkit-default-privs-12.3-6.15.1.noarch.rpm polkit-default-privs-12.3-6.15.1.src.rpm openSUSE-2013-219 important openSUSE 12.3 Update This update fixes the following issues for open-iscsi: - bnc#630434: handle non-root boot-time iscsi volumes - bnc#766300: accept "(null)" password as meaning no password, when using sysfs open-iscsi-2.0.870-47.4.1.i586.rpm open-iscsi-2.0.870-47.4.1.src.rpm open-iscsi-debuginfo-2.0.870-47.4.1.i586.rpm open-iscsi-debugsource-2.0.870-47.4.1.i586.rpm open-iscsi-2.0.870-47.4.1.x86_64.rpm open-iscsi-debuginfo-2.0.870-47.4.1.x86_64.rpm open-iscsi-debugsource-2.0.870-47.4.1.x86_64.rpm openSUSE-2013-244 low openSUSE 12.3 Update This update fixes the following issues for cdemu-client, cdemu-daemon and libmirage: - tracker bnc#809862 - cdemu-client: + changed packaging-format from bz2 to xz - cdemu-daemon: + Update to new upstream release 2.0.0 (up from 1.5.0) * Support for ISZ, CSO, DMG, GBI, ECM, gzip and xz formats * Partial support for 1-track MDX + bnc#809181: Resolves a problem with autostarting cdemu-daemon - libmirage: + bnc#809181: resolve excess CPU usage during CDDA readout + make images created by readcd(1) usable again + Update to new upstream release 2.0.0 (up from 1.5.0) * Added ISZ, CSO and DMG file filters * Converted DAA parser to a file filter and added support for the related GBI format * Converted audio fragment to a file filter * Added file filter machinery and converted existing code to use it * Image analyzer displays disc structures * Added support for gobject introspection * Added support for GZIP and XZ compressed images * Added support for ECM'ed files * Improved CIF parser * Partial support for (one track) MDX images * Improved GVFS support cdemu-client-2.0.0-2.4.1.noarch.rpm cdemu-client-2.0.0-2.4.1.src.rpm cdemu-daemon-2.0.0-5.5.1.i586.rpm cdemu-daemon-2.0.0-5.5.1.src.rpm cdemu-daemon-debuginfo-2.0.0-5.5.1.i586.rpm cdemu-daemon-debugsource-2.0.0-5.5.1.i586.rpm libmirage-2.0.0-4.5.1.src.rpm libmirage-2_0-2.0.0-4.5.1.i586.rpm libmirage-2_0-debuginfo-2.0.0-4.5.1.i586.rpm libmirage-data-2.0.0-4.5.1.noarch.rpm libmirage-debugsource-2.0.0-4.5.1.i586.rpm libmirage-devel-2.0.0-4.5.1.i586.rpm libmirage7-2.0.0-4.5.1.i586.rpm libmirage7-debuginfo-2.0.0-4.5.1.i586.rpm typelib-1_0-libmirage-2_0-2.0.0-4.5.1.i586.rpm cdemu-daemon-2.0.0-5.5.1.x86_64.rpm cdemu-daemon-debuginfo-2.0.0-5.5.1.x86_64.rpm cdemu-daemon-debugsource-2.0.0-5.5.1.x86_64.rpm libmirage-2_0-2.0.0-4.5.1.x86_64.rpm libmirage-2_0-debuginfo-2.0.0-4.5.1.x86_64.rpm libmirage-debugsource-2.0.0-4.5.1.x86_64.rpm libmirage-devel-2.0.0-4.5.1.x86_64.rpm libmirage7-2.0.0-4.5.1.x86_64.rpm libmirage7-debuginfo-2.0.0-4.5.1.x86_64.rpm typelib-1_0-libmirage-2_0-2.0.0-4.5.1.x86_64.rpm openSUSE-2013-243 moderate openSUSE 12.3 Update This update fixes the following issue for yast2: - bnc#807507: Check service state correctly yast2-2.23.23-1.4.1.i586.rpm yast2-2.23.23-1.4.1.src.rpm yast2-devel-doc-2.23.23-1.4.1.i586.rpm yast2-2.23.23-1.4.1.x86_64.rpm yast2-devel-doc-2.23.23-1.4.1.x86_64.rpm openSUSE-2013-254 low openSUSE 12.3 Update This update fixes the following issues for libstorage: - version 2.23.10 - bnc#808020: fix LVM encryption when btrfs fs is present - improve handling of udev by-id links for dm devices - bnc#808487: fix detect of encrypted volumes libstorage-2.23.10-1.4.1.src.rpm libstorage-debugsource-2.23.10-1.4.1.i586.rpm libstorage-devel-2.23.10-1.4.1.i586.rpm libstorage-python-2.23.10-1.4.1.i586.rpm libstorage-python-debuginfo-2.23.10-1.4.1.i586.rpm libstorage-ruby-2.23.10-1.4.1.i586.rpm libstorage-ruby-debuginfo-2.23.10-1.4.1.i586.rpm libstorage-testsuite-2.23.10-1.4.1.i586.rpm libstorage-testsuite-debuginfo-2.23.10-1.4.1.i586.rpm libstorage4-2.23.10-1.4.1.i586.rpm libstorage4-debuginfo-2.23.10-1.4.1.i586.rpm yast2-storage-2.23.9-1.4.1.i586.rpm yast2-storage-2.23.9-1.4.1.src.rpm yast2-storage-debuginfo-2.23.9-1.4.1.i586.rpm yast2-storage-debugsource-2.23.9-1.4.1.i586.rpm yast2-storage-devel-2.23.9-1.4.1.i586.rpm libstorage-debugsource-2.23.10-1.4.1.x86_64.rpm libstorage-devel-2.23.10-1.4.1.x86_64.rpm libstorage-python-2.23.10-1.4.1.x86_64.rpm libstorage-python-debuginfo-2.23.10-1.4.1.x86_64.rpm libstorage-ruby-2.23.10-1.4.1.x86_64.rpm libstorage-ruby-debuginfo-2.23.10-1.4.1.x86_64.rpm libstorage-testsuite-2.23.10-1.4.1.x86_64.rpm libstorage-testsuite-debuginfo-2.23.10-1.4.1.x86_64.rpm libstorage4-2.23.10-1.4.1.x86_64.rpm libstorage4-debuginfo-2.23.10-1.4.1.x86_64.rpm yast2-storage-2.23.9-1.4.1.x86_64.rpm yast2-storage-debuginfo-2.23.9-1.4.1.x86_64.rpm yast2-storage-debugsource-2.23.9-1.4.1.x86_64.rpm yast2-storage-devel-2.23.9-1.4.1.x86_64.rpm openSUSE-2013-251 moderate openSUSE 12.3 Update ImageMagick received fixes for a overflow in *png_malloc functions. (CVE-2012-3437) ImageMagick-6.7.8.8-4.5.1.i586.rpm ImageMagick-6.7.8.8-4.5.1.src.rpm ImageMagick-debuginfo-6.7.8.8-4.5.1.i586.rpm ImageMagick-debugsource-6.7.8.8-4.5.1.i586.rpm ImageMagick-devel-32bit-6.7.8.8-4.5.1.x86_64.rpm ImageMagick-devel-6.7.8.8-4.5.1.i586.rpm ImageMagick-doc-6.7.8.8-4.5.1.noarch.rpm ImageMagick-extra-6.7.8.8-4.5.1.i586.rpm ImageMagick-extra-debuginfo-6.7.8.8-4.5.1.i586.rpm libMagick++-devel-6.7.8.8-4.5.1.i586.rpm libMagick++5-6.7.8.8-4.5.1.i586.rpm libMagick++5-debuginfo-6.7.8.8-4.5.1.i586.rpm libMagickCore5-32bit-6.7.8.8-4.5.1.x86_64.rpm libMagickCore5-6.7.8.8-4.5.1.i586.rpm libMagickCore5-debuginfo-32bit-6.7.8.8-4.5.1.x86_64.rpm libMagickCore5-debuginfo-6.7.8.8-4.5.1.i586.rpm libMagickWand5-32bit-6.7.8.8-4.5.1.x86_64.rpm libMagickWand5-6.7.8.8-4.5.1.i586.rpm libMagickWand5-debuginfo-32bit-6.7.8.8-4.5.1.x86_64.rpm libMagickWand5-debuginfo-6.7.8.8-4.5.1.i586.rpm perl-PerlMagick-6.7.8.8-4.5.1.i586.rpm perl-PerlMagick-debuginfo-6.7.8.8-4.5.1.i586.rpm ImageMagick-6.7.8.8-4.5.1.x86_64.rpm ImageMagick-debuginfo-6.7.8.8-4.5.1.x86_64.rpm ImageMagick-debugsource-6.7.8.8-4.5.1.x86_64.rpm ImageMagick-devel-6.7.8.8-4.5.1.x86_64.rpm ImageMagick-extra-6.7.8.8-4.5.1.x86_64.rpm ImageMagick-extra-debuginfo-6.7.8.8-4.5.1.x86_64.rpm libMagick++-devel-6.7.8.8-4.5.1.x86_64.rpm libMagick++5-6.7.8.8-4.5.1.x86_64.rpm libMagick++5-debuginfo-6.7.8.8-4.5.1.x86_64.rpm libMagickCore5-6.7.8.8-4.5.1.x86_64.rpm libMagickCore5-debuginfo-6.7.8.8-4.5.1.x86_64.rpm libMagickWand5-6.7.8.8-4.5.1.x86_64.rpm libMagickWand5-debuginfo-6.7.8.8-4.5.1.x86_64.rpm perl-PerlMagick-6.7.8.8-4.5.1.x86_64.rpm perl-PerlMagick-debuginfo-6.7.8.8-4.5.1.x86_64.rpm openSUSE-2013-252 moderate openSUSE 12.3 Update GraphicsMagick was updated to fix integer overflows in the _png_malloc functions (CVE-2012-3438). GraphicsMagick-1.3.17-2.4.1.i586.rpm GraphicsMagick-1.3.17-2.4.1.src.rpm GraphicsMagick-debuginfo-1.3.17-2.4.1.i586.rpm GraphicsMagick-debugsource-1.3.17-2.4.1.i586.rpm GraphicsMagick-devel-1.3.17-2.4.1.i586.rpm libGraphicsMagick++-devel-1.3.17-2.4.1.i586.rpm libGraphicsMagick++3-1.3.17-2.4.1.i586.rpm libGraphicsMagick++3-debuginfo-1.3.17-2.4.1.i586.rpm libGraphicsMagick3-1.3.17-2.4.1.i586.rpm libGraphicsMagick3-debuginfo-1.3.17-2.4.1.i586.rpm libGraphicsMagickWand2-1.3.17-2.4.1.i586.rpm libGraphicsMagickWand2-debuginfo-1.3.17-2.4.1.i586.rpm perl-GraphicsMagick-1.3.17-2.4.1.i586.rpm perl-GraphicsMagick-debuginfo-1.3.17-2.4.1.i586.rpm GraphicsMagick-1.3.17-2.4.1.x86_64.rpm GraphicsMagick-debuginfo-1.3.17-2.4.1.x86_64.rpm GraphicsMagick-debugsource-1.3.17-2.4.1.x86_64.rpm GraphicsMagick-devel-1.3.17-2.4.1.x86_64.rpm libGraphicsMagick++-devel-1.3.17-2.4.1.x86_64.rpm libGraphicsMagick++3-1.3.17-2.4.1.x86_64.rpm libGraphicsMagick++3-debuginfo-1.3.17-2.4.1.x86_64.rpm libGraphicsMagick3-1.3.17-2.4.1.x86_64.rpm libGraphicsMagick3-debuginfo-1.3.17-2.4.1.x86_64.rpm libGraphicsMagickWand2-1.3.17-2.4.1.x86_64.rpm libGraphicsMagickWand2-debuginfo-1.3.17-2.4.1.x86_64.rpm perl-GraphicsMagick-1.3.17-2.4.1.x86_64.rpm perl-GraphicsMagick-debuginfo-1.3.17-2.4.1.x86_64.rpm openSUSE-2013-253 low openSUSE 12.3 Update This update fixes the following issues for yast2-install: - bnc#808039: NetworkManager is enabled and active after second stage - bnc#806454: deactivate RAID before going back to "Disk Activation" during installation yast2-installation-2.23.13-1.4.3.noarch.rpm yast2-installation-2.23.13-1.4.3.src.rpm yast2-installation-devel-doc-2.23.13-1.4.3.noarch.rpm openSUSE-2013-258 moderate openSUSE 12.3 Update pigz incorrectly used world writeable permissions during unpacking (CVE-2013-0296). pigz-2.2.5-2.4.1.i586.rpm pigz-2.2.5-2.4.1.src.rpm pigz-debuginfo-2.2.5-2.4.1.i586.rpm pigz-debugsource-2.2.5-2.4.1.i586.rpm pigz-2.2.5-2.4.1.x86_64.rpm pigz-debuginfo-2.2.5-2.4.1.x86_64.rpm pigz-debugsource-2.2.5-2.4.1.x86_64.rpm openSUSE-2013-255 moderate openSUSE 12.3 Update This update fixes the following issues for release-notes-openSUSE: - Enable 'ar' again (but for HTML only) - New entries: The proprietary NVIDIA driver requires users to have access to /dev/nvidia* devices (bnc#809163) - Updated translations release-notes-openSUSE-12.3.7-1.10.1.noarch.rpm release-notes-openSUSE-12.3.7-1.10.1.src.rpm openSUSE-2013-256 low openSUSE 12.3 Update This update fixes the following issue for totem: - bnc#809854, bnc#810376: Added gstreamer-plugins-bad as requirement. This is needed for the scaletempo plugin nautilus-totem-3.6.3-2.5.1.i586.rpm nautilus-totem-debuginfo-3.6.3-2.5.1.i586.rpm totem-3.6.3-2.5.1.i586.rpm totem-3.6.3-2.5.1.src.rpm totem-browser-plugin-3.6.3-2.5.1.i586.rpm totem-browser-plugin-debuginfo-3.6.3-2.5.1.i586.rpm totem-browser-plugin-gmp-3.6.3-2.5.1.i586.rpm totem-browser-plugin-gmp-debuginfo-3.6.3-2.5.1.i586.rpm totem-browser-plugin-vegas-3.6.3-2.5.1.i586.rpm totem-browser-plugin-vegas-debuginfo-3.6.3-2.5.1.i586.rpm totem-debuginfo-3.6.3-2.5.1.i586.rpm totem-debugsource-3.6.3-2.5.1.i586.rpm totem-devel-3.6.3-2.5.1.i586.rpm totem-lang-3.6.3-2.5.1.noarch.rpm totem-plugin-zeitgeist-3.6.3-2.5.1.i586.rpm totem-plugin-zeitgeist-debuginfo-3.6.3-2.5.1.i586.rpm totem-plugins-3.6.3-2.5.1.i586.rpm totem-plugins-debuginfo-3.6.3-2.5.1.i586.rpm nautilus-totem-3.6.3-2.5.1.x86_64.rpm nautilus-totem-debuginfo-3.6.3-2.5.1.x86_64.rpm totem-3.6.3-2.5.1.x86_64.rpm totem-browser-plugin-3.6.3-2.5.1.x86_64.rpm totem-browser-plugin-debuginfo-3.6.3-2.5.1.x86_64.rpm totem-browser-plugin-gmp-3.6.3-2.5.1.x86_64.rpm totem-browser-plugin-gmp-debuginfo-3.6.3-2.5.1.x86_64.rpm totem-browser-plugin-vegas-3.6.3-2.5.1.x86_64.rpm totem-browser-plugin-vegas-debuginfo-3.6.3-2.5.1.x86_64.rpm totem-debuginfo-3.6.3-2.5.1.x86_64.rpm totem-debugsource-3.6.3-2.5.1.x86_64.rpm totem-devel-3.6.3-2.5.1.x86_64.rpm totem-plugin-zeitgeist-3.6.3-2.5.1.x86_64.rpm totem-plugin-zeitgeist-debuginfo-3.6.3-2.5.1.x86_64.rpm totem-plugins-3.6.3-2.5.1.x86_64.rpm totem-plugins-debuginfo-3.6.3-2.5.1.x86_64.rpm openSUSE-2013-236 moderate openSUSE 12.3 Update The pidgin branding was updated to match the last pidgin version update(bnc#804742). libpurple-branding-openSUSE-12.2-4.4.1.noarch.rpm pidgin-branding-openSUSE-12.2-4.4.1.src.rpm openSUSE-2013-239 low openSUSE 12.3 Update pidgin-otr was updated to match the pidgin version update. pidgin-otr-4.0.0-2.4.1.i586.rpm pidgin-otr-4.0.0-2.4.1.src.rpm pidgin-otr-debuginfo-4.0.0-2.4.1.i586.rpm pidgin-otr-debugsource-4.0.0-2.4.1.i586.rpm pidgin-otr-4.0.0-2.4.1.x86_64.rpm pidgin-otr-debuginfo-4.0.0-2.4.1.x86_64.rpm pidgin-otr-debugsource-4.0.0-2.4.1.x86_64.rpm