Annvix:About/Changelog/3.1-CURRENT
From linsec.ca
|
This page contains content from the old Annvix.org wiki and has been moved here to preserve content. These pages have been retained for historical and nostalgic purposes only. |
Annvix 3.1-CURRENT Changelog
2008-03-27 02:52 vdanen * gnupg/SOURCES/gnupg-1.4.8.tar.bz2, gnupg/SOURCES/gnupg-1.4.8.tar.bz2.sig, gnupg/SOURCES/gnupg-1.4.9.tar.bz2, gnupg/SOURCES/gnupg-1.4.9.tar.bz2.sig, gnupg/SPECS/gnupg.spec: - 1.4.9: fixes a possible memory corruption bug while importing keys 2008-03-21 16:29 vdanen * bzip2/SOURCES/bzip2-1.0.4.tar.gz: - drop the old source 2008-03-21 16:29 vdanen * bzip2/SOURCES/bzip2-1.0.5.tar.gz, bzip2/SPECS/bzip2.spec: - 1.0.5: fixes CVE-2008-1372 2008-03-20 15:53 vdanen * krb5/SOURCES/krb5-1.6.1-rh-CVE-2007-5901.patch, krb5/SOURCES/krb5-1.6.1-rh-CVE-2007-5971.patch, krb5/SOURCES/krb5-1.6.1-rh-CVE-2008-0062_0063.patch, krb5/SOURCES/krb5-1.6.1-rh-CVE-2008-0947.patch, krb5/SPECS/krb5.spec: - P19: security fix for CVE-2007-5901 - P20: security fix for CVE-2007-5971 - P21: security fix for CVE-2008-0062 and CVE-2008-0063 - P22: security fix for CVE-2008-0947 2008-03-20 15:40 vdanen * tcl/SOURCES/tcl-8.4.15-rh-CVE-2007-4772.patch, tcl/SPECS/tcl.spec: - P4: security fix for CVE-2007-4772 2008-03-20 15:34 vdanen * unzip/SOURCES/unzip-5.52-deb-CVE-2008-0888.patch, unzip/SPECS/unzip.spec: - P4: security fix for CVE-2008-0888 2008-03-18 18:35 vdanen * ghostscript/SOURCES/ghostscript-CVE-2008-0411.patch, ghostscript/SPECS/ghostscript.spec: - P0: security fix for CVE-2008-0411 2008-03-18 18:25 vdanen * releases/3.0-RELEASE/pcre/SOURCES/pcre-7.4.tar.bz2, releases/3.0-RELEASE/pcre/SOURCES/pcre-7.4.tar.bz2.sig, releases/3.0-RELEASE/pcre/SOURCES/pcre-7.6.tar.bz2, releases/3.0-RELEASE/pcre/SOURCES/pcre-7.6.tar.bz2.sig, releases/3.0-RELEASE/pcre/SPECS/pcre.spec, pcre/SPECS/pcre.spec: - 7.6: fixes CVE-2008-0674 - enable unicode properties 2008-03-18 00:06 vdanen * kernel26/SOURCES/patches/scripts/create_configs, kernel26/SPECS/kernel26-avx.spec: - set the memory support back to 4GB 2008-03-17 18:43 vdanen * kernel26/SOURCES/linux-2.6.22.17.tar.bz2, kernel26/SOURCES/linux-2.6.22.17.tar.bz2.sign, kernel26/SOURCES/linux-2.6.22.19.tar.bz2, kernel26/SOURCES/linux-2.6.22.19.tar.bz2.sign, kernel26/SOURCES/patches/configs/i386.config, kernel26/SOURCES/patches/scripts/create_configs, kernel26/SPECS/kernel26-avx.spec: - drop the supported arch from i686 to i586 as per tmb's note in bugzilla - 2.6.22.19: fixes CVE-2007-3731, CVE-2008-0600 - really set CONFIG_HIGHMEM=4GB (has to be done via scripts/create_configs) which should finally fix bug #65 2008-03-10 15:46 vdanen * dovecot/SOURCES/dovecot-1.0.12.tar.gz, dovecot/SOURCES/dovecot-1.0.12.tar.gz.sig, dovecot/SOURCES/dovecot-1.0.13.tar.gz, dovecot/SOURCES/dovecot-1.0.13.tar.gz.sig, dovecot/SPECS/dovecot.spec: - 1.0.13: security fixes (user login without valid password; CVE-2008-1218) 2008-03-07 20:45 vdanen * shorewall/SPECS/shorewall.spec: - fix perms on initscript (bug #64) 2008-03-07 20:42 vdanen * rp-pppoe/SPECS/rp-pppoe.spec: - fix perms on initscript (bug #64) - initscript is not %%config(noreplace) 2008-03-07 20:36 vdanen * psacct/SPECS/psacct.spec: - fix perms on initscript (bug #64) 2008-03-07 20:32 vdanen * openswan/SPECS/openswan.spec: - fix perms on initscript (bug #64) - initscript is not %%config(noreplace) 2008-03-07 19:49 vdanen * kbd/SPECS/kbd.spec: - fix perms on initscript (bug #64) - initscript is not %%config(noreplace) - add requires on rpm-helper 2008-03-07 19:09 vdanen * runit/SPECS/runit.spec: - fix perms on initscripts (bug #64) 2008-03-07 19:03 vdanen * iptables/SOURCES/iptables-1.3.8-stealth_grsecurity.patch, iptables/SOURCES/iptables-1.3.8.tar.bz2, iptables/SOURCES/iptables-1.3.8.tar.bz2.sig, iptables/SOURCES/iptables-1.4.0.tar.bz2, iptables/SOURCES/iptables-1.4.0.tar.bz2.sig, iptables/SPECS/iptables.spec: - 1.4.0 - fix perms on initscript (bug #64) - initscripts are not %%config(noreplace) - drop world readable perms on iptables sample config files - drop useless kernel requires - drop P1; we don't use grsecurity - use -fPIC 2008-03-07 18:25 vdanen * initscripts/SPECS/initscripts.spec: - fix perms on initscript (bug #64) 2008-03-07 18:13 vdanen * bootloader-utils/SPECS/bootloader-utils.spec: - fix perms on initscript (bug #64) 2008-03-07 18:01 vdanen * apparmor/SPECS/apparmor.spec: - fix perms on initscript (bug #64) 2008-03-06 15:23 vdanen * dovecot/SOURCES/dovecot-1.0.10.tar.gz, dovecot/SOURCES/dovecot-1.0.10.tar.gz.sig, dovecot/SOURCES/dovecot-1.0.12.tar.gz, dovecot/SOURCES/dovecot-1.0.12.tar.gz.sig, dovecot/SPECS/dovecot.spec: - 1.0.12 2008-03-06 15:16 vdanen * dovecot/SPECS/dovecot.spec: - tighten permissions on the configuration file so it's no longer world- readable, as per Red Hat bug #436287 2008-03-06 05:12 vdanen * pciutils/SOURCES/pciutils-2.2.6.tar.gz, pciutils/SOURCES/pciutils-2.2.9.tar.gz, pciutils/SPECS/pciutils.spec: - 2.2.9 2008-03-06 05:05 vdanen * elfutils/SOURCES/elfutils-0.129.tar.gz, elfutils/SOURCES/elfutils-0.131.tar.gz, elfutils/SOURCES/elfutils-robustify.patch, elfutils/SPECS/elfutils.spec: - 0.131 - updated upstream P0 - buildrequires bison and flex - drop unneeded buildreq on libtool-devel and sharutils 2008-03-06 04:49 vdanen * syslinux/SPECS/syslinux.spec: - rebuild with new nasm 2008-03-06 04:49 vdanen * nasm/SOURCES/nasm-2.00.tar.bz2, nasm/SOURCES/nasm-2.02.tar.bz2, nasm/SPECS/nasm.spec: - 2.02 2008-03-05 20:09 vdanen * openldap/SOURCES/openldap-2.3.39.tgz, openldap/SOURCES/openldap-2.3.41.tgz, openldap/SPECS/openldap.spec: - 2.3.41: fixes CVE-2008-0658 2008-02-28 13:41 ying * postfix/SOURCES/postfix-2.4.6.tar.gz, postfix/SOURCES/postfix-2.4.6.tar.gz.sig, postfix/SOURCES/postfix-2.4.7.tar.gz, postfix/SOURCES/postfix-2.4.7.tar.gz.sig, postfix/SPECS/postfix.spec: postfix 2.4.7 2008-02-23 06:11 vdanen * apparmor/SOURCES/apparmor-2.1-1076-avx-annvix_fixes.patch, apparmor/SOURCES/apparmor-2.1-1076.tar.gz, apparmor/SOURCES/apparmor-2.1-961.tar.gz, apparmor/SOURCES/apparmor-parser-2.0.2-662.tar.gz, apparmor/SOURCES/apparmor-parser-2.0.2-avx-fixes.patch, apparmor/SOURCES/apparmor-utils-2.0.1-449.tar.gz, apparmor/SPECS/apparmor.spec: - update to svn rel 1076 - rebuild against new audit - rediff P1 2008-02-23 03:40 vdanen * tetex/SPECS/tetex.spec: - fix buildrequires 2008-02-23 03:39 vdanen * mrtg/SPECS/mrtg.spec: - rebuild against new libpng 2008-02-23 03:23 vdanen * tetex/SPECS/tetex.spec: - fix typeo 2008-02-23 03:22 vdanen * doxygen/SOURCES/doxygen-1.5.4.src.tar.gz, doxygen/SOURCES/doxygen-1.5.5.src.tar.gz, doxygen/SPECS/doxygen.spec: - 1.5.5 2008-02-23 03:21 vdanen * tetex/SPECS/tetex.spec: - rebuild against new libpng 2008-02-23 03:11 vdanen * gd/SPECS/gd.spec: - rebuild against new libpng 2008-02-23 03:10 vdanen * gif2png/SPECS/gif2png.spec: - rebuild against new libpng - fix buildrequires 2008-02-23 02:07 vdanen * cups/SOURCES/cups-1.3.5-source.tar.bz2, cups/SOURCES/cups-1.3.6-source.tar.bz2, cups/SPECS/cups.spec: - 1.3.6: fixes CVE-2008-0882 - fix permissions - fix some rpmlint warnings 2008-02-23 01:58 vdanen * syslinux/SPECS/syslinux.spec: - rebuild against new libpng 2008-02-23 01:47 vdanen * netpbm/SPECS/netpbm.spec: - fix buildrequires 2008-02-23 01:42 vdanen * netpbm/SPECS/netpbm.spec: - rebuild against new libpng 2008-02-23 01:36 vdanen * perl-Tk/SPECS/perl-Tk.spec: - rebuild against new libpng 2008-02-23 01:34 vdanen * newt/SPECS/newt.spec: - rebuild against new slang 2008-02-23 01:33 vdanen * timeconfig/SPECS/timeconfig.spec: - rebuild against new slang 2008-02-23 00:39 vdanen * slang/SOURCES/slang-2.0.5-fdr-LANG.patch, slang/SOURCES/slang-2.1.0-mdv-slsh_install.patch, slang/SOURCES/slang-2.1.1.tar.bz2, slang/SOURCES/slang-2.1.1.tar.bz2.sig, slang/SOURCES/slang-2.1.3-fdr-makefile.patch, slang/SOURCES/slang-2.1.3.tar.bz2, slang/SOURCES/slang-2.1.3.tar.bz2.asc, slang/SPECS/slang.spec: - 2.1.3 - drop P1; we don't ship slsh anyways, and it's no longer required - new P1, P2 from Fedora - buildrequires x11-devel 2008-02-23 00:22 vdanen * sudo/SOURCES/sudo-1.6.9p12.tar.gz, sudo/SOURCES/sudo-1.6.9p12.tar.gz.sig, sudo/SOURCES/sudo-1.6.9p13.tar.gz, sudo/SOURCES/sudo-1.6.9p13.tar.gz.sig, sudo/SPECS/sudo.spec: - 1.6.9p13 - buildrequires bison, groff-for-man - build without rpath and cleanup how CFLAGS are defined 2008-02-19 04:55 vdanen * timezone/SOURCES/tzcode2007j.tar.gz, timezone/SOURCES/tzcode2007k.tar.gz, timezone/SOURCES/tzdata-extra-tz-links.patch, timezone/SOURCES/tzdata2007j.tar.gz, timezone/SOURCES/tzdata2007k.tar.gz, timezone/SOURCES/update-localtime.sh, timezone/SPECS/timezone.spec: - 2007k - update-localtime.sh now uses 'install -m' to ensure correct permissions - update P1 from Mandriva 2008-02-19 04:46 vdanen * libpng/SOURCES/libpng-1.2.23.tar.bz2, libpng/SOURCES/libpng-1.2.25.tar.bz2, libpng/SPECS/libpng.spec: - 1.2.25 - update license 2008-02-18 23:55 vdanen * audit/SPECS/audit.spec: - really fix python paths 2008-02-18 20:18 vdanen * audit/SPECS/audit.spec: - fix python paths 2008-02-18 20:12 vdanen * audit/SOURCES/audit-1.6.1-avx-config.patch, audit/SOURCES/audit-1.6.1-avx-no-system-config-audit.patch, audit/SOURCES/audit-1.6.1-mdv-offt.patch, audit/SOURCES/audit-1.6.1.tar.gz, audit/SOURCES/audit-1.6.8-avx-config.patch, audit/SOURCES/audit-1.6.8-avx-no-system-config-audit.patch, audit/SOURCES/audit-1.6.8.tar.gz, audit/SPECS/audit.spec: - 1.6.8 - drop P3 - rediff P1, P4 - update license 2008-02-18 17:30 vdanen * task, task/SOURCES, task/SPECS, task/SPECS/task.spec: - first task meta-package 2008-02-18 16:56 vdanen * dovecot/SPECS/dovecot.spec: - update provides to work with our task package 2008-02-18 16:54 vdanen * courier-imap/SPECS/courier-imap.spec: - update provides to work with our task package 2008-02-17 22:44 vdanen * mrtg/SOURCES/mrtg-2.15.2.tar.gz, mrtg/SOURCES/mrtg-2.16.1.tar.gz, mrtg/SPECS/mrtg.spec: - 2.16.1 - fix url - don't install all contrib modules - cleanup private copies of perl modules - cleanup require exceptions - drop requires on pdksh and make the one script that uses ksh use sh instead - keep the requires exclusion on Net::SNMP for now as it will require a whole host of perl crypto modules 2008-02-17 22:21 vdanen * perl-SNMP_Session, perl-SNMP_Session/SOURCES, perl-SNMP_Session/SOURCES/SNMP_Session-1.11.tar.gz, perl-SNMP_Session/SPECS, perl-SNMP_Session/SPECS/perl-SNMP_Session.spec: - first Annvix build for mrtg-contribs 2008-02-17 22:11 vdanen * perl-Net-Telnet, perl-Net-Telnet/SOURCES, perl-Net-Telnet/SOURCES/Net-Telnet-3.03.tar.gz, perl-Net-Telnet/SPECS, perl-Net-Telnet/SPECS/perl-Net-Telnet.spec: - first Annvix build for mrtg-contribs --Thss line, and those below, will be ignored-- A perl-Net-Telnet A perl-Net-Telnet/SOURCES AM perl-Net-Telnet/SOURCES/Net-Telnet-3.03.tar.gz A perl-Net-Telnet/SPECS AM perl-Net-Telnet/SPECS/perl-Net-Telnet.spec 2008-02-17 22:06 vdanen * perl-Net-Netmask, perl-Net-Netmask/SOURCES, perl-Net-Netmask/SOURCES/Net-Netmask-1.9015.tar.gz, perl-Net-Netmask/SPECS, perl-Net-Netmask/SPECS/perl-Net-Netmask.spec: - first Annvix build for mrtg-contribs 2008-02-17 21:25 vdanen * perl-DBD-SQLite/SPECS/perl-DBD-SQLite.spec: - re-enable the tests and disable those tests that fail 2008-02-17 21:22 vdanen * perl-DBI/SOURCES/DBI-1.601.tar.gz, perl-DBI/SOURCES/DBI-1.602.tar.gz, perl-DBI/SPECS/perl-DBI.spec: - 1.602 2008-02-17 21:20 vdanen * perl-Apache-Session/SOURCES/Apache-Session-1.84.tar.gz, perl-Apache-Session/SOURCES/Apache-Session-1.86.tar.gz, perl-Apache-Session/SPECS/perl-Apache-Session.spec: - 1.86 2008-02-17 21:16 vdanen * perl-BSD-Resource/SOURCES/BSD-Resource-1.28.tar.gz, perl-BSD-Resource/SOURCES/BSD-Resource-1.29.tar.gz, perl-BSD-Resource/SPECS/perl-BSD-Resource.spec: - 1.29 2008-02-17 21:16 vdanen * perl-IO-Socket-SSL/SOURCES/IO-Socket-SSL-1.11.tar.gz, perl-IO-Socket-SSL/SOURCES/IO-Socket-SSL-1.13.tar.gz, perl-IO-Socket-SSL/SPECS/perl-IO-Socket-SSL.spec: - 1.13 2008-02-17 21:13 vdanen * perl-BerkeleyDB/SOURCES/BerkeleyDB-0.31.tar.gz, perl-BerkeleyDB/SOURCES/BerkeleyDB-0.33.tar.gz, perl-BerkeleyDB/SPECS/perl-BerkeleyDB.spec: - 0.33 2008-02-17 21:12 vdanen * perl-DBD-mysql/SOURCES/DBD-mysql-4.005.tar.gz, perl-DBD-mysql/SOURCES/DBD-mysql-4.006.tar.gz, perl-DBD-mysql/SPECS/perl-DBD-mysql.spec: - 4.005 2008-02-17 21:07 vdanen * perl-IO-Zlib/SOURCES/IO-Zlib-1.08.tar.gz, perl-IO-Zlib/SOURCES/IO-Zlib-1.09.tar.gz, perl-IO-Zlib/SPECS/perl-IO-Zlib.spec: - 1.09 2008-02-17 21:03 vdanen * perl-Net-DNS/SOURCES/Net-DNS-0.61.tar.gz, perl-Net-DNS/SOURCES/Net-DNS-0.63.tar.gz, perl-Net-DNS/SPECS/perl-Net-DNS.spec: - 0.63 2008-02-17 21:00 vdanen * sudo/SOURCES/sudo-1.6.9p10.tar.gz, sudo/SOURCES/sudo-1.6.9p10.tar.gz.sig, sudo/SOURCES/sudo-1.6.9p12.tar.gz, sudo/SOURCES/sudo-1.6.9p12.tar.gz.sig, sudo/SPECS/sudo.spec: - 1.6.9p12 - don't package INSTALL - update license 2008-02-12 22:37 vdanen * perl-Tk/SOURCES/Tk-804.027.tar.bz2, perl-Tk/SOURCES/Tk-804.028.tar.gz, perl-Tk/SPECS/perl-Tk.spec: - 804.028 - buildrequires jpeg-devel and png-devel - fix changelog - fix url and source url 2008-02-12 18:56 vdanen * glib2.0/SOURCES/glib-2.14.4.tar.bz2, glib2.0/SOURCES/glib-2.15.5.tar.bz2, glib2.0/SPECS/glib2.0.spec: - 2.15.5 - build with system pcre - lib(64)glib2.0-devel provides libglib-devel 2008-02-12 18:54 vdanen * pcre/SOURCES/pcre-7.4.tar.bz2, pcre/SOURCES/pcre-7.4.tar.bz2.sig, pcre/SOURCES/pcre-7.6.tar.bz2, pcre/SOURCES/pcre-7.6.tar.bz2.sig, pcre/SPECS/pcre.spec: - 7.6 - enable unicode properties 2008-02-09 16:52 vdanen * kernel26/SOURCES/linux-2.6.22.16.tar.bz2, kernel26/SOURCES/linux-2.6.22.16.tar.bz2.sign, kernel26/SOURCES/linux-2.6.22.17.tar.bz2, kernel26/SOURCES/linux-2.6.22.17.tar.bz2.sign, kernel26/SOURCES/patches/patches/ZZ01_CVE-2007-6206_git.patch, kernel26/SOURCES/patches/patches/series, kernel26/SPECS/kernel26-avx.spec: - 2.6.22.17: fixes CVE-2007-6206, CVE-2008-0007 - drop PZZ01; fixed upstream 2008-02-08 05:39 vdanen * tk/SPECS/tk.spec: - buildrequires autoconf2.1 2008-02-08 05:37 vdanen * tk/SOURCES/tk-cvs-CVE-2008-0553.patch, tk/SPECS/tk.spec: - P2: security for for CVE-2008-0553 2008-02-03 22:51 vdanen * annvix-release/SPECS/annvix-release.spec: - 3.1-CURRENT (Gaia) 2008-02-03 20:40 vdanen * .: branch 3.1-CURRENT
