Thursday 2nd June 2011
Fedora Project
Patched libxml for CVE-2011-1944 (Bug #709751) - heap-based buffer overflow by adding new namespace node to an existing nodeset or merging nodesets (see http://scarybeastsecurity.blogspot.com/2011/05/libxml-vulnerability-and-interesting.html)
Updated perl-Test-Fatal to 0.006 in Rawhide, F-15 and EPEL-6:
Crank back the Test::More and Exporter requirements (CPAN RT#62699)
Add lives_ok and dies_ok emulation (CPAN RT#67598)
Local Packages
Patched libxml for CVE-2011-1944 as per the Fedora version
Updated perl-Software-License to 0.103002:
- Add GFDL 1.3
Updated perl-Test-Fatal to 0.006 as per the Fedora version
Updated perl-version to 0.90:
Make all tests pass even with older Test::More (CPAN RT#68588)
Updated ppp to bring in two patches from Rawhide:
Fix Bug #682381 - hardcodes eth0
Fix Bug #708260 - SELinux is preventing access on the file LCK..ttyUSB3