The H news 07/03/2009

The H news 07/03/2009 www.h-online.com Overview of the news from the past 24 hours The H Security news Firefox: most vulnerabilities, but quickly patched Secunia has published its security report for 2008, saying that 115 vulnerabilities were eliminated from Firefox in 2008: more than those found in Internet Explorer, Safari and Opera put together › Read article     Twitter spoofing fix fails in UK and Germany Twitter's claim to have fixed the spoofing vulnerability is found to be untrue in the UK and Germany › Read article     Twitter closes SMS spoofing hole - Updated Twitter has closed a security hole which left accounts open to being hijacked via SMS spoofing › Read article     Vulnerabilities in TYPO3 extensions The TYPO3 developers have reported on three extensions with security vulnerabilities, one of which has now been removed from the TYPO3 extension repository › Read article     Patch Tuesday: Microsoft to close three security vulnerabilities Microsoft has announced that it will release three security updates, one of them critical, on Tuesday the 10th of March › Read article     The H Open Source news Roadmap for OpenSUSE The OpenSUSE project manager has proposed a roadmap for the future versions of OpenSUSE › Read article     Firefox: most vulnerabilities, but quickly patched Secunia has published its security report for 2008, saying that 115 vulnerabilities were eliminated from Firefox in 2008: more than those found in Internet Explorer, Safari and Opera put together › Read article     Free implementation of the VMware cluster file system New open source software enables read access to VMFS volumes created by VMware ESX › Read article     Vulnerabilities in TYPO3 extensions The TYPO3 developers have reported on three extensions with security vulnerabilities, one of which has now been removed from the TYPO3 extension repository › Read article     Kernel Log: Morton questions acceptance of Xen Dom0 code; file systems for SSDs New Xen Dom0 patches are issued, but Andrew Morton asks critically whether accepting extended Xen support into the kernel still makes sense. Theodore Tso spells out in his blog all manner of detail about Ext file systems and SSDs › Read article     This newsletter is sent to in a multipart format. If you want to read it as plain text, you will have to change the display mode of your e-mail program. You are receiving The H news because you subscribed at our website. If you no longer wish to receive the newsletter, you can cancel your subscription at http://www.h-online.com/newsletter/manage/news. For more news from the world of technology, subscribe to our other newsletters: Newsletter The H Open Source: All the latest about Free and Open Source software from The H, including news, features, analysis and case studies. www.h-online.com/newsletter/manage/open Newsletter The H Security: IT security news and alerts to keep your systems secure, with features giving an in-depth look at the world of IT security. www.h-online.com/newsletter/manage/security Legal notice Publishers: Christian Heise, Ansgar Heise, Christian Persson Editor-in-chief: Dj Walker-Morgan All rights reserved. Any copies or dissemination on any medium, either in part of whole, requires the written consent of the publisher. Copyright (c) 2009 Heise Media UK Ltd.

qa beat draft 1 up, can be used if unchanged

As I always forget to mark it complete on sunday, I'll note that the qa
beat for this week's FWN is now up:

https://fedoraproject.org/wiki/FWN/Beats/QualityAssurance

from this point on it's considered usable - I may update it tomorrow or
saturday, or I may not, but if not it can be used as-is.

thanks!
--
Adam Williamson
Fedora QA Community Monkey
IRC: adamw | Fedora Talk: adamwill AT fedoraproject DOT org
http://www.happyassassin.net

_______________________________________________
Fedora-news-list mailing list
Fedora-news-list@redhat.com
https://www.redhat.com/mailman/listinfo/fedora-news-list

[CentOS-announce] CESA-2009:0325 Critical CentOS 4 x86_64 seamonkey - security update

CentOS Errata and Security Advisory CESA-2009:0325

seamonkey security update for CentOS 4 x86_64:
https://rhn.redhat.com/errata/RHSA-2009-0325.html

The following updated file has been uploaded and is currently syncing to
the mirrors:

x86_64:
updates/x86_64/RPMS/seamonkey-1.0.9-38.el4.centos.x86_64.rpm
updates/x86_64/RPMS/seamonkey-chat-1.0.9-38.el4.centos.x86_64.rpm
updates/x86_64/RPMS/seamonkey-devel-1.0.9-38.el4.centos.x86_64.rpm
updates/x86_64/RPMS/seamonkey-dom-inspector-1.0.9-38.el4.centos.x86_64.rpm
updates/x86_64/RPMS/seamonkey-js-debugger-1.0.9-38.el4.centos.x86_64.rpm
updates/x86_64/RPMS/seamonkey-mail-1.0.9-38.el4.centos.x86_64.rpm

source:
updates/SRPMS/seamonkey-1.0.9-38.el4.centos.src.rpm

You may update your CentOS-3 x86_64 installations by running the command:

yum update seamonkey

Tru
--
Tru Huynh (mirrors, CentOS-3 i386/x86_64 Package Maintenance)
http://pgp.mit.edu:11371/pks/lookup?op=get&search=0xBEFA581B

[CentOS-announce] CESA-2009:0325 Critical CentOS 4 i386 seamonkey - security update

CentOS Errata and Security Advisory CESA-2009:0325

seamonkey security update for CentOS 4 i386:
https://rhn.redhat.com/errata/RHSA-2009-0325.html

The following updated file has been uploaded and is currently syncing to
the mirrors:

i386:
updates/i386/RPMS/seamonkey-1.0.9-38.el4.centos.i386.rpm
updates/i386/RPMS/seamonkey-chat-1.0.9-38.el4.centos.i386.rpm
updates/i386/RPMS/seamonkey-devel-1.0.9-38.el4.centos.i386.rpm
updates/i386/RPMS/seamonkey-dom-inspector-1.0.9-38.el4.centos.i386.rpm
updates/i386/RPMS/seamonkey-js-debugger-1.0.9-38.el4.centos.i386.rpm
updates/i386/RPMS/seamonkey-mail-1.0.9-38.el4.centos.i386.rpm

source:
updates/SRPMS/seamonkey-1.0.9-38.el4.centos.src.rpm

You may update your CentOS-4 i386 installations by running the command:

yum update seamonkey\*

Tru
--
Tru Huynh (mirrors, CentOS-3 i386/x86_64 Package Maintenance)
http://pgp.mit.edu:11371/pks/lookup?op=get&search=0xBEFA581B

[CentOS-announce] CESA-2009:0315 Critical CentOS 4 x86_64 firefox - security update

CentOS Errata and Security Advisory CESA-2009:0315

firefox security update for CentOS 4 x86_64:
https://rhn.redhat.com/errata/RHSA-2009-0315.html

The following updated file has been uploaded and is currently syncing to
the mirrors:

x86_64:
updates/x86_64/RPMS/firefox-3.0.7-1.el4.centos.x86_64.rpm
updates/x86_64/RPMS/firefox-debuginfo-3.0.7-1.el4.centos.x86_64.rpm

source:
updates/SRPMS/*.src.rpm

You may update your CentOS-3 x86_64 installations by running the command:

yum update firefox

Tru
--
Tru Huynh (mirrors, CentOS-3 i386/x86_64 Package Maintenance)
http://pgp.mit.edu:11371/pks/lookup?op=get&search=0xBEFA581B

[CentOS-announce] CESA-2009:0315 Critical CentOS 4 i386 firefox - security update

CentOS Errata and Security Advisory CESA-2009:0315

firefox security update for CentOS 4 i386:
https://rhn.redhat.com/errata/RHSA-2009-0315.html

The following updated file has been uploaded and is currently syncing to
the mirrors:

i386:
updates/i386/RPMS/firefox-3.0.7-1.el4.centos.i386.rpm

source:
updates/SRPMS/*.src.rpm

You may update your CentOS-4 i386 installations by running the command:

yum update firefox

Tru
--
Tru Huynh (mirrors, CentOS-3 i386/x86_64 Package Maintenance)
http://pgp.mit.edu:11371/pks/lookup?op=get&search=0xBEFA581B

[CentOS-announce] CESA-2009:0313 Moderate CentOS 3 s390(x) wireshark - security update

CentOS Errata and Security Advisory 2009:0313

https://rhn.redhat.com/errata/RHSA-2009-0313.html

The following updated files have been uploaded and are currently
syncing to the mirrors:

s390:
updates/s390/RPMS/wireshark-1.0.6-EL3.3.s390.rpm
updates/s390/RPMS/wireshark-gnome-1.0.6-EL3.3.s390.rpm

s390x:
updates/s390x/RPMS/wireshark-1.0.6-EL3.3.s390x.rpm
updates/s390x/RPMS/wireshark-gnome-1.0.6-EL3.3.s390x.rpm

--
Pasi Pirhonen - upi@iki.fi - http://pasi.pirhonen.eu/
Top-postings silently ignored

[CentOS-announce] CESA-2009:0340 Moderate CentOS 3 s390(x) libpng - security update

CentOS Errata and Security Advisory 2009:0340

https://rhn.redhat.com/errata/RHSA-2009-0340.html

The following updated files have been uploaded and are currently
syncing to the mirrors:

s390:
updates/s390/RPMS/libpng-1.2.2-29.s390.rpm
updates/s390/RPMS/libpng-devel-1.2.2-29.s390.rpm
updates/s390/RPMS/libpng10-1.0.13-20.s390.rpm
updates/s390/RPMS/libpng10-devel-1.0.13-20.s390.rpm

s390x:
updates/s390x/RPMS/libpng-1.2.2-29.s390x.rpm
updates/s390x/RPMS/libpng-devel-1.2.2-29.s390x.rpm
updates/s390x/RPMS/libpng10-1.0.13-20.s390x.rpm
updates/s390x/RPMS/libpng10-devel-1.0.13-20.s390x.rpm

--
Pasi Pirhonen - upi@iki.fi - http://pasi.pirhonen.eu/
Top-postings silently ignored

[CentOS-announce] CESA-2009:0325 Critical CentOS 3 s390(x) seamonkey - security update

CentOS Errata and Security Advisory 2009:0325

https://rhn.redhat.com/errata/RHSA-2009-0325.html

The following updated files have been uploaded and are currently
syncing to the mirrors:

s390:
updates/s390/RPMS/seamonkey-1.0.9-0.34.el3.centos3.s390.rpm
updates/s390/RPMS/seamonkey-chat-1.0.9-0.34.el3.centos3.s390.rpm
updates/s390/RPMS/seamonkey-devel-1.0.9-0.34.el3.centos3.s390.rpm
updates/s390/RPMS/seamonkey-dom-inspector-1.0.9-0.34.el3.centos3.s390.rpm
updates/s390/RPMS/seamonkey-js-debugger-1.0.9-0.34.el3.centos3.s390.rpm
updates/s390/RPMS/seamonkey-mail-1.0.9-0.34.el3.centos3.s390.rpm
updates/s390/RPMS/seamonkey-nspr-1.0.9-0.34.el3.centos3.s390.rpm
updates/s390/RPMS/seamonkey-nspr-devel-1.0.9-0.34.el3.centos3.s390.rpm
updates/s390/RPMS/seamonkey-nss-1.0.9-0.34.el3.centos3.s390.rpm
updates/s390/RPMS/seamonkey-nss-devel-1.0.9-0.34.el3.centos3.s390.rpm

s390x:
updates/s390x/RPMS/seamonkey-1.0.9-0.34.el3.centos3.s390x.rpm
updates/s390x/RPMS/seamonkey-chat-1.0.9-0.34.el3.centos3.s390x.rpm
updates/s390x/RPMS/seamonkey-devel-1.0.9-0.34.el3.centos3.s390x.rpm
updates/s390x/RPMS/seamonkey-dom-inspector-1.0.9-0.34.el3.centos3.s390x.rpm
updates/s390x/RPMS/seamonkey-js-debugger-1.0.9-0.34.el3.centos3.s390x.rpm
updates/s390x/RPMS/seamonkey-mail-1.0.9-0.34.el3.centos3.s390x.rpm
updates/s390x/RPMS/seamonkey-nspr-1.0.9-0.34.el3.centos3.s390x.rpm
updates/s390x/RPMS/seamonkey-nspr-devel-1.0.9-0.34.el3.centos3.s390x.rpm
updates/s390x/RPMS/seamonkey-nss-1.0.9-0.34.el3.centos3.s390x.rpm
updates/s390x/RPMS/seamonkey-nss-devel-1.0.9-0.34.el3.centos3.s390x.rpm

--
Pasi Pirhonen - upi@iki.fi - http://pasi.pirhonen.eu/
Top-postings silently ignored

The H news 06/03/2009

The H news 06/03/2009 www.h-online.com Overview of the news from the past 24 hours The H Security news Windows Vista and Server 2008 SP2 RC freely available Both standalone packages and ISO images of the Service Pack 2 Release Code are available, as well as a script which allows the pre-release version to be downloaded using Windows Update › Read article     Firefox 3.0.7 fixes vulnerabilities Firefox 3.0.7 has been released fixing five security vulnerabilities, three of them critical › Read article     Spotify data exposed Spotify, the online music company, believes that user data may have been exposed to "a group" and has issued a security advisory › Read article     The H Open Source news GNOME 2.26.0 Release Candidate available The GNOME 2.26.0 Release Candidate (2.25.92) is now available and includes stabilisation work, updated translations and bug fixes › Read article     Mozilla confirm next Firefox will be version 3.5 The next major Firefox release will be version 3.5, not 3.1, reflecting the wide range of features added to what was to be an incremental update › Read article     Gnash 0.85 release The GPL3 licensed Flash player sees its fourth beta release as version 0.8.5 improves performance and enables the saving of streamed media › Read article     Firefox 3.0.7 fixes vulnerabilities Firefox 3.0.7 has been released fixing five security vulnerabilities, three of them critical › Read article     KDE 4.2 update released The KDE developers have released version 4.2.1 of the KDE desktop environment › Read article     Apache votes no on Java EE 6 The Apache Software Foundation has voted no on the public review of Java EE 6. This is the latest twist in a long running dispute over Sun's Java SE licence restrictions › Read article     This newsletter is sent to in a multipart format. If you want to read it as plain text, you will have to change the display mode of your e-mail program. You are receiving The H news because you subscribed at our website. If you no longer wish to receive the newsletter, you can cancel your subscription at http://www.h-online.com/newsletter/manage/news. For more news from the world of technology, subscribe to our other newsletters: Newsletter The H Open Source: All the latest about Free and Open Source software from The H, including news, features, analysis and case studies. www.h-online.com/newsletter/manage/open Newsletter The H Security: IT security news and alerts to keep your systems secure, with features giving an in-depth look at the world of IT security. www.h-online.com/newsletter/manage/security Legal notice Publishers: Christian Heise, Ansgar Heise, Christian Persson Editor-in-chief: Dj Walker-Morgan All rights reserved. Any copies or dissemination on any medium, either in part of whole, requires the written consent of the publisher. Copyright (c) 2009 Heise Media UK Ltd.