Monday 17th December 2012
Fedora Project
Updated perl-Event to 1.21 in Rawhide:
Silence some clang warnings (http://www.xray.mpe.mpg.de/mailing-lists/perl5-porters/2012-12/msg00424.html)
Updated perl-Path-Class to 0.28 in Rawhide:
Fix test failures when run as root - they were relying on permissions failures, but permissions never fail as root
Add links in docs to the other modules we rely on and talk about in the docs, which makes for easier viewing through search.cpan.org / MetaCPAN
Fixed some misleading variable names in docs (CPAN RT#81795)
Local Packages
Updated fetchyahoo to 2.14.9:
Fix downloading html messages with plain/text alternative
Updated getmail to 4.36.0:
- Add support for retrieving POP/IMAP passwords from, and storing them to, the Gnome keyring
Updated libidn to 1.26:
Propagate error on malloc failure
- Fix out of bounds read access violation
- Added Croatian translation
- Updated Vietnamese translation
- Permit usage of java binding by Apache projects
- Improve TLD self-tests
Updated moin to 1.9.6:
Security Hint: make sure you have allow_xslt = False (or just do not use allow_xslt at all in your wiki configs, False is the internal default). Allowing XSLT/4suite is very dangerous, see HelpOnConfiguration wiki page.
- Fix XSS issue, escape page name in rss link
- Escape user- or admin-defined css url
Make taintfilename more secure
- Use a constant time str comparison function to prevent timing attacks
- Attachment handler: catch all Zip-related errors
Updated perl-Event to 1.21 as per the Fedora version
Updated perl-Path-Class to 0.28 as per the Fedora version