The following Fedora 19 Security updates need testing: Age URL 105 https://admin.fedoraproject.org/updates/FEDORA-2013-5801/mantis-1.2.15-1.fc19 59 https://admin.fedoraproject.org/updates/FEDORA-2013-9715/heat-jeos-9-1.fc19 12 https://admin.fedoraproject.org/updates/FEDORA-2013-13143/owncloud-4.5.13-1.fc19 8 https://admin.fedoraproject.org/updates/FEDORA-2013-13332/ghc-xmonad-contrib-0.11.2-1.fc19,ghc-X11-1.6.1.1-1.fc19,xmonad-0.11-4.fc19,ghc-X11-xft-0.3.1-10.fc19,bluetile-0.6-18.fc19,xmobar-0.18-1.fc19 6 https://admin.fedoraproject.org/updates/FEDORA-2013-13484/WebCalendar-1.2.7-1.fc19 5 https://admin.fedoraproject.org/updates/FEDORA-2013-13468/squid-3.2.13-1.fc19 4 https://admin.fedoraproject.org/updates/FEDORA-2013-13617/perl-Proc-ProcessTable-0.48-1.fc19 4 https://admin.fedoraproject.org/updates/FEDORA-2013-13620/gksu-polkit-0.0.3-8.gitf8ce834c.fc19 0 https://admin.fedoraproject.org/updates/FEDORA-2013-13850/ReviewBoard-1.7.12-1.fc19,python-djblets-0.7.16-1.fc19 0 https://admin.fedoraproject.org/updates/FEDORA-2013-13919/python-keystoneclient-0.2.3-6.fc19 0 https://admin.fedoraproject.org/updates/FEDORA-2013-13863/bind-9.9.3-5.P2.fc19 The following builds have been pushed to Fedora 19 updates-testing E-1.8-1.fc19 MUMPS-4.10.0-12.fc19 NFStest-1.0.2-0.fc19 ReviewBoard-1.7.12-1.fc19 abrt-2.1.6-2.fc19 at-spi2-core-2.8.0-3.fc19 bind-9.9.3-5.P2.fc19 eclipse-4.3.0-4.fc19 eclipselink-persistence-api-2.0.5-1.fc19 elementary-xfce-icon-theme-0.3-3.fc19 gmaven-1.4-6.fc19 gnome-abrt-0.3.0-3.fc19 imapsync-1.555-1.fc19 joyce-2.2.5-2.fc19 kde-settings-19-23.1.fc19 kdenetwork-4.10.5-3.fc19 libcutl-1.7.1-1.fc19 libreport-2.1.6-2.fc19 linphone-3.6.1-2.fc19 mapnik-2.0.2-2.fc19 mate-file-manager-sendto-1.6.0-2.fc19 mate-image-viewer-1.6.1-1.fc19 mingw-libsqlite3x-20071018-19.fc19 mingw-libxml++-2.36.0-3.fc19 nodejs-pause-0.0.1-3.fc19 nodejs-pubcontrol-0.3.2-2.fc19 nodejs-q-0.9.6-2.fc19 nodejs-q-io-1.9.1-2.fc19 nodejs-qs-0.6.5-3.fc19 nodejs-range-parser-0.0.4-5.fc19 nodejs-require-cs-0.4.4-1.fc19 nodejs-requirejs-2.1.8-1.fc19 nodejs-revalidator-0.1.5-2.fc19 nodejs-ronn-0.4.0-3.fc19 nodejs-runforcover-0.0.2-4.fc19 nodejs-sax-0.5.4-2.fc19 nodejs-should-1.2.2-3.fc19 nodejs-showdown-0.3.1-5.fc19 openfst-1.3.3-3.fc19 openshift-origin-cartridge-cron-1.4-1.9.1-2.fc19 ortp-0.22.0-1.fc19 oz-0.11.0-1.fc19 perl-Locale-SubCountry-1.62-1.fc19 python-alembic-0.4.2-3.fc19 python-djblets-0.7.16-1.fc19 python-flask-0.9-7.fc19 python-keystoneclient-0.2.3-6.fc19 python-pbr-0.5.19-2.fc19 python-zc-buildout-2.1.0-3.fc19 qbzr-0.23.1-1.fc19 rubygem-cinch-2.0.6-1.fc19 rubygem-cinch-2.0.7-1.fc19 rubygem-sanitize-2.0.6-2.fc19 snmp4j-2.2.2-1.fc19 splix-2.0.1-0.18.20121128svn.fc19 tuna-0.11.1-1.fc19 weasyprint-0.19.2-3.fc19 Details about builds: ================================================================================ E-1.8-1.fc19 (FEDORA-2013-13846) Equational Theorem Prover -------------------------------------------------------------------------------- Update Information: Upstream notes for version 1.8: - Added support for internal proof objects (and option --proof-object) - Added experimental support for strategy scheduling (--auto-schedule) - Minor cleanup and improved auto-mode(s) -------------------------------------------------------------------------------- ChangeLog: * Mon Jul 29 2013 Jerry James <loganjerry@xxxxxxxxx> - 1.8-1 - New upstream version - Drop now unneeded -alias patch -------------------------------------------------------------------------------- ================================================================================ MUMPS-4.10.0-12.fc19 (FEDORA-2013-13885) A MUltifrontal Massively Parallel sparse direct Solver -------------------------------------------------------------------------------- Update Information: - Conform to MPI Guidelines - Old MUMPS packages are now obsoletes Update to conform MUMPS packaging to MPI Guidelines. -------------------------------------------------------------------------------- ChangeLog: * Mon Jul 29 2013 Antonio Trande <sagitter@xxxxxxxxxxxxxxxxx> - 4.10.0-12 - Old MUMPS subpackages are now obsoletes * Sat Jul 27 2013 Antonio Trande <sagitter@xxxxxxxxxxxxxxxxx> - 4.10.0-11 - Added new macros for 'openmpi' destination directories - Done some package modifications according to MPI guidelines - This .spec file now produces '-openmpi', '-openmpi-devel', '-common' packages - Added MUMPS packaging in "serial mode" - %{name}-common package is a noarch - Added an '-examples' subpackage that contains all test programs * Tue Jul 23 2013 Antonio Trande <sagitter@xxxxxxxxxxxxxxxxx> - 4.10.0-10 - 'openmpi-devel' BR changed to 'openmpi-devel>=1.7' - 'blacs-openmpi-devel' BR changed to 'blacs-openmpi-devel>=1.1-50' - Removed '-lmpi_f77' library link, deprecated starting from 'openmpi-1.7.2' -------------------------------------------------------------------------------- References: [ 1 ] Bug #986708 - MUMPS: Obey MPI guidelines https://bugzilla.redhat.com/show_bug.cgi?id=986708 -------------------------------------------------------------------------------- ================================================================================ NFStest-1.0.2-0.fc19 (FEDORA-2013-13901) NFS Testing Tool -------------------------------------------------------------------------------- Update Information: Updated to latest upstream release: 1.0.2 -------------------------------------------------------------------------------- ================================================================================ ReviewBoard-1.7.12-1.fc19 (FEDORA-2013-13850) Web-based code review tool -------------------------------------------------------------------------------- Update Information: As with all ReviewBoard updates, you will need to run 'rb-site upgrade /path/to/site' for all installed sites after applying this update. == Action Required == The default Apache configuration is now more strict with how it serves up file attachments. This does not apply to existing installations. See http://support.beanbaginc.com/support/solutions/articles/110173-securing-file-attachments for details. == Description == - New upstream release 1.7.12 - http://www.reviewboard.org/docs/releasenotes/reviewboard/1.7.12/ - Security Fixes: * Function names in diff headers are no longer rendered as HTML. * If a user’s full name contained HTML, the Submitters list would render it as HTML, without escaping it. This was an XSS vulnerability. * The default Apache configuration is now more strict with how it serves up file attachments. This does not apply to existing installations. See http://support.beanbaginc.com/support/solutions/articles/110173-securing-file-attachments for details. * Uploaded files are now renamed to include a hash, preventing users from uploading malicious filenames, and making filenames unguessable. * Recaptcha support has been updated to use the new URLs provided by Google. - New Features: * Added a X-ReviewRequest-Repository header for e-mails. - Extension Improvements: * Extensions can now specify their list of app directories. * Extensions can now specify the author’s URL. * Improved the look and feel for extension configuration. * Improved the functionality for extension configuration. * Improved the list of available extensions. - Bug Fixes: * Fixed the “Show Whitespace Changes” toggle. * Fixed compatibility with modern versions of django-storages. * Draft comments on file attachments are no longer shown to all users. * Fixed issues with console windows appearing when invoking Clear Case requests on Python 2.7.x and Windows 7. * Review requests on Local Sites are now guaranteed to have the proper ID. * Fixed starring review requests on Local Sites. -------------------------------------------------------------------------------- ChangeLog: * Mon Jul 29 2013 Stephen Gallagher <sgallagh@xxxxxxxxxx> - 1.7.12-1 - New upstream release 1.7.12 - http://www.reviewboard.org/docs/releasenotes/reviewboard/1.7.12/ - Security Fixes: * Function names in diff headers are no longer rendered as HTML. * If a user’s full name contained HTML, the Submitters list would render it as HTML, without escaping it. This was an XSS vulnerability. * The default Apache configuration is now more strict with how it serves up file attachments. This does not apply to existing installations. See http://support.beanbaginc.com/support/solutions/articles/110173-securing-file-attachments for details. * Uploaded files are now renamed to include a hash, preventing users from uploading malicious filenames, and making filenames unguessable. * Recaptcha support has been updated to use the new URLs provided by Google. - New Features: * Added a X-ReviewRequest-Repository header for e-mails. - Extension Improvements: * Extensions can now specify their list of app directories. * Extensions can now specify the author’s URL. * Improved the look and feel for extension configuration. * Improved the functionality for extension configuration. * Improved the list of available extensions. - Bug Fixes: * Fixed the “Show Whitespace Changes” toggle. * Fixed compatibility with modern versions of django-storages. * Draft comments on file attachments are no longer shown to all users. * Fixed issues with console windows appearing when invoking Clear Case requests on Python 2.7.x and Windows 7. * Review requests on Local Sites are now guaranteed to have the proper ID. * Fixed starring review requests on Local Sites. -------------------------------------------------------------------------------- ================================================================================ abrt-2.1.6-2.fc19 (FEDORA-2013-13903) Automatic bug detection and reporting tool -------------------------------------------------------------------------------- Update Information: This update includes a new upstream release which fixes the bugs listed and introduces: * exploitability analysis * ABRT configuration GUI * replacement of btparser by satyr * movement of non-configuration files to /usr/share/libreport/ -------------------------------------------------------------------------------- ChangeLog: * Mon Jul 29 2013 Jakub Filak <jfilak@xxxxxxxxxx> 2.1.6-2 - disable gcc unused-typedef warning for GLib - use right dependencies for RHEL * Fri Jul 26 2013 Jakub Filak <jfilak@xxxxxxxxxx> 2.1.6-1 - replace functions deprecated in Gtk-3.10 with their substitutes - integrate with satyr, drop btparser - use absolute path in python shebang rhzb#987010 - abrt-action-save-package-data: properly close rpm database. Closes #674. - abrt-action-save-package-data: fix handling of ProcessUnpackaged on scripts - abrt-action-save-package-data manpage: typo fix - change /var/spool/abrt/ to /var/tmp/abrt in doc rhbz#912750 - Fix RPMdiff warnings about abrtd and abrt-action-install-debuginfo-to-abrt-cache - specfile: add dependency on abrt-libs to abrt-addon-uefioops - stop using the hardcoded event list, use workflows instead rhbz#866027 - retrace-client: build correct release for Fedora Rawhide - spec: drop unnecessary Obsoletes and Provides - correct FSF address in python exception hook - add missing manual pages for binaries and scripts - fix rpmlint issues in the spec file - move event option XML files to /usr/share/libreport/ - abrt-hook-ccpp: always fall back to creating user core. - dbus: add GetForeignProblems method - the system tray icon opens recently detected problem - add gdb python plugin which analyzes coredump for vulnerability - applet: stop saving configuration at exit - introduce system-config-abrt - abrt-cli status: make the output more natural - Fix wrong path in shell include - abrt-dump-xorg: save "type=xorg" along with "analyzer=xorg" - Update python hook to use fixed socket interface - abrt-server: updates/fixes for future rasdaemon needs - Resolves: #988165 -------------------------------------------------------------------------------- References: [ 1 ] Bug #956912 - gnome-abrt removes invalid problems from the list while it is being sorted https://bugzilla.redhat.com/show_bug.cgi?id=956912 [ 2 ] Bug #965937 - collapsing Advanced section in configuration doesn't change size of window https://bugzilla.redhat.com/show_bug.cgi?id=965937 [ 3 ] Bug #967499 - gnome-abrt crashes if a new directory problem is invalid https://bugzilla.redhat.com/show_bug.cgi?id=967499 [ 4 ] Bug #973125 - problem detected -> no problem detected https://bugzilla.redhat.com/show_bug.cgi?id=973125 [ 5 ] Bug #973167 - Screen says "proceed to next step", but there is no next step https://bugzilla.redhat.com/show_bug.cgi?id=973167 -------------------------------------------------------------------------------- ================================================================================ at-spi2-core-2.8.0-3.fc19 (FEDORA-2013-13896) Protocol definitions and daemon for D-Bus at-spi -------------------------------------------------------------------------------- Update Information: Fix previous build -------------------------------------------------------------------------------- ChangeLog: * Sun Jul 28 2013 Rui Matos <rmatos@xxxxxxxxxx> - 2.8.0-3 - Pass --force to autoreconf to be sure it does what we want * Sat Jul 20 2013 Rui Matos <rmatos@xxxxxxxxxx> - 2.8.0-2 - Run autoreconf instead of a sed hack to avoid RPATH embedding -------------------------------------------------------------------------------- ================================================================================ bind-9.9.3-5.P2.fc19 (FEDORA-2013-13863) The Berkeley Internet Name Domain (BIND) DNS (Domain Name System) server -------------------------------------------------------------------------------- Update Information: - update to 9.9.3-P2 (fix for CVE-2013-4854) - update RRL patch to 9.9.3-P2-rl.13207.22 -------------------------------------------------------------------------------- ChangeLog: * Sun Jul 28 2013 Tomas Hozza <thozza@xxxxxxxxxx> 32:9.9.3-5.P2 - update to 9.9.3-P2 (fix for CVE-2013-4854) - update RRL patch to 9.9.3-P2-rl.13207.22 * Thu Jul 18 2013 Tomas Hozza <thozza@xxxxxxxxxx> 32:9.9.3-4.P1 - Fix script for setting up chroot so it unmounts everything successfully -------------------------------------------------------------------------------- References: [ 1 ] Bug #988999 - CVE-2013-4854 bind: named crash with an assertion failure on parsing malformed rdata https://bugzilla.redhat.com/show_bug.cgi?id=988999 -------------------------------------------------------------------------------- ================================================================================ eclipse-4.3.0-4.fc19 (FEDORA-2013-13832) An open, extensible IDE -------------------------------------------------------------------------------- Update Information: GTK3 - fix icons Added a patch for SWT bug + added ownership for unowned path. -------------------------------------------------------------------------------- ChangeLog: * Mon Jul 29 2013 Krzysztof Daniel <kdaniel@xxxxxxxxxx> 1:4.3.0-4 - 404448 [GTK3] Images of disabled buttons are not grayed out * Tue Jul 23 2013 Krzysztof Daniel <kdaniel@xxxxxxxxxx> 1:4.3.0-3 - Take ownerhsip of /usr/share/eclipse dir (RHBZ#986160). - Include fix for Eclipse bug 408505. - Added rpmlint builder to the fedora package. -------------------------------------------------------------------------------- References: [ 1 ] Bug #986160 - eclipse-platform: Move directory ownership to a different subpackage https://bugzilla.redhat.com/show_bug.cgi?id=986160 -------------------------------------------------------------------------------- ================================================================================ eclipselink-persistence-api-2.0.5-1.fc19 (FEDORA-2013-13854) JPA 2.0 Spec OSGi Bundle -------------------------------------------------------------------------------- Update Information: Initial import (#842238). -------------------------------------------------------------------------------- References: [ 1 ] Bug #842238 - Review Request: eclipselink-persistence-api - Javax Persistence 2.0 API https://bugzilla.redhat.com/show_bug.cgi?id=842238 -------------------------------------------------------------------------------- ================================================================================ elementary-xfce-icon-theme-0.3-3.fc19 (FEDORA-2013-13862) Icons for Xfce based on the elementary Project Icon Theme -------------------------------------------------------------------------------- Update Information: - initial fedora update to bring it to the fedora repos -------------------------------------------------------------------------------- References: [ 1 ] Bug #986839 - Missing icons in Xfce https://bugzilla.redhat.com/show_bug.cgi?id=986839 -------------------------------------------------------------------------------- ================================================================================ gmaven-1.4-6.fc19 (FEDORA-2013-13855) Integration of Groovy into Maven -------------------------------------------------------------------------------- Update Information: Obsolete gmaven-archetypes. -------------------------------------------------------------------------------- ChangeLog: * Sun Jul 28 2013 gil cattaneo <puntogil@xxxxxxxxx> 1.4-6 - Obsolete gmaven-archetypes * Sun Jul 28 2013 gil cattaneo <puntogil@xxxxxxxxx> 1.4-5 - switch to XMvn - adapt to current guideline - use pom macros - disable gshell support RHBZ#914056 -------------------------------------------------------------------------------- ================================================================================ gnome-abrt-0.3.0-3.fc19 (FEDORA-2013-13903) A utility for viewing problems that have occurred with the system -------------------------------------------------------------------------------- Update Information: This update includes a new upstream release which fixes the bugs listed and introduces: * exploitability analysis * ABRT configuration GUI * replacement of btparser by satyr * movement of non-configuration files to /usr/share/libreport/ -------------------------------------------------------------------------------- ChangeLog: * Fri Jul 26 2013 Jakub Filak <jfilak@xxxxxxxxxx> 0.3.0-1 - Do not include url files twice - Get rid of Stock Items usage - Do not remove invalid problems while sorting the list - Check if X display can be opened - Fix a condition in the source changed notification handler - Update Translations - Skip inotify events for sub folders in dump location watcher - Use GLib.io_add_watch() instead of IOChanell.add_watch() - Fix a typo in macro name - Remove shebang from non-executable scripts - Remember missing elements and load them only once - Download more problem elements in a single D-Bus call - Improve data caching - Display two sets of problems (My/System) - Fix typo in dbus error message - Don't crash if a new directory problem is invalid - Resolves: #956912, #973125, #967499 -------------------------------------------------------------------------------- References: [ 1 ] Bug #956912 - gnome-abrt removes invalid problems from the list while it is being sorted https://bugzilla.redhat.com/show_bug.cgi?id=956912 [ 2 ] Bug #965937 - collapsing Advanced section in configuration doesn't change size of window https://bugzilla.redhat.com/show_bug.cgi?id=965937 [ 3 ] Bug #967499 - gnome-abrt crashes if a new directory problem is invalid https://bugzilla.redhat.com/show_bug.cgi?id=967499 [ 4 ] Bug #973125 - problem detected -> no problem detected https://bugzilla.redhat.com/show_bug.cgi?id=973125 [ 5 ] Bug #973167 - Screen says "proceed to next step", but there is no next step https://bugzilla.redhat.com/show_bug.cgi?id=973167 -------------------------------------------------------------------------------- ================================================================================ imapsync-1.555-1.fc19 (FEDORA-2013-13867) Tool to migrate email between IMAP servers -------------------------------------------------------------------------------- Update Information: Upgrade imapsync to 1.555 -------------------------------------------------------------------------------- ChangeLog: * Sun Jul 28 2013 Nick Bebout <nb@xxxxxxxxxxxxxxxxx> - 1.555-1 - Upgrade to 1.555 -------------------------------------------------------------------------------- ================================================================================ joyce-2.2.5-2.fc19 (FEDORA-2013-13883) Amstrad PCW and PCW16 Emulator -------------------------------------------------------------------------------- Update Information: PCW toys. -------------------------------------------------------------------------------- References: [ 1 ] Bug #984360 - Review Request: joyce - Amstrad PCW and PCW16 Emulator https://bugzilla.redhat.com/show_bug.cgi?id=984360 -------------------------------------------------------------------------------- ================================================================================ kde-settings-19-23.1.fc19 (FEDORA-2013-13897) Config files for kde -------------------------------------------------------------------------------- Update Information: There was a typo in systemd_preun macro rendering the package impossible to uninstall. -------------------------------------------------------------------------------- ChangeLog: * Mon Jul 29 2013 Martin Briza <mbriza@xxxxxxxxxx> - 19-23.1 - Fixed a typo in systemd_preun (#989145) -------------------------------------------------------------------------------- References: [ 1 ] Bug #989145 - Typo in preun scriptlet https://bugzilla.redhat.com/show_bug.cgi?id=989145 -------------------------------------------------------------------------------- ================================================================================ kdenetwork-4.10.5-3.fc19 (FEDORA-2013-13833) KDE Network Applications -------------------------------------------------------------------------------- Update Information: The new version 3.6 includes significant user interface improvements as well as new text messaging features such as delivery notifications and chat messaging storage. Three new major core features are now supported by Linphone: - ICE support (RFC5245): allows peer to peer audio & video connections without media relay server - UPnP (Universal Plug and Play): allows device-to-device networking of personal computers, networked home appliances and wireless devices - Audio call and conference recording Linphone 3.6 also integrates the following new features: - Call statistics - An improved buddy list management interface - Hebrew and Serb language support See https://www.linphone.org/eng/linphone/news/linphone-3.6-for-desktop.html -------------------------------------------------------------------------------- ChangeLog: * Thu Jul 18 2013 Petr Pisar <ppisar@xxxxxxxxxx> - 7:4.10.5-3 - Perl 5.18 rebuild * Mon Jul 8 2013 Alexey Kurov <nucleo@xxxxxxxxxxxxxxxxx> - 7:4.10.5-2 - rebuild for linphone-3.6.1 -------------------------------------------------------------------------------- References: [ 1 ] Bug #823208 - no video input device https://bugzilla.redhat.com/show_bug.cgi?id=823208 [ 2 ] Bug #988488 - Linphone cannot register with sip proxy (cannot read cert -> tls error) https://bugzilla.redhat.com/show_bug.cgi?id=988488 -------------------------------------------------------------------------------- ================================================================================ libcutl-1.7.1-1.fc19 (FEDORA-2013-13874) C++ utility library from Code Synthesis -------------------------------------------------------------------------------- Update Information: Initial release of libcutl for Fedora and EPEL. -------------------------------------------------------------------------------- References: [ 1 ] Bug #975309 - Review Request: libcutl - C++ utility library from Code Synthesis https://bugzilla.redhat.com/show_bug.cgi?id=975309 -------------------------------------------------------------------------------- ================================================================================ libreport-2.1.6-2.fc19 (FEDORA-2013-13903) Generic library for reporting various problems -------------------------------------------------------------------------------- Update Information: This update includes a new upstream release which fixes the bugs listed and introduces: * exploitability analysis * ABRT configuration GUI * replacement of btparser by satyr * movement of non-configuration files to /usr/share/libreport/ -------------------------------------------------------------------------------- ChangeLog: * Mon Jul 29 2013 Jakub Filak <jfilak@xxxxxxxxxx> 2.1.6-2 - link with gobject libraries - use RHTSupport in RHEL workflows * Fri Jul 26 2013 Jakub Filak <jfilak@xxxxxxxxxx> 2.1.6-1 - add related packages version in emergency event - replace functions deprecated in Gtk-3.10 with their substitutes - fixed the bugzilla private group names rhbz#985881 - workflows: add Anaconda work flow for RHEL - add missing manual pages for configuration files, binaries and scripts - added options to create private bz tickets rhbz#803772 - skip the workflow selection if there is only 1 available closes #167 - added missing workflows for Fedora rhbz#866027 - spec: double up percent signs in chagelog entries - spec: make anaconda package description more generic - spec: install RHEL anaconda work flow - spec: added new workflow files rhbz#866027 - spec: build only workflow subpkg relevant for host's OS - spec: install all manual pages - spec: install only documentation files - spec: drop unnecessary Obsoletes and Provides - spec: add manual pages to packages - spec: specify all config files - spec: replace btparser with satyr - move non-conf XML files from /etc/libreport/ to /usr/share/libreport/ - Update satyr support, drop btparser compatibility - fixed typo in config file related #866027 - resize the config window upon collapsing Advanced section - rhbz: test xmlrpc env for errors in abrt_xmlrpc_call_params() - rhbz: test rhbz_new_bug() return value for errors - wizard: show accurate messages - spec: add dependency on fros rhbz#958979 - use fros instead of hard dependency on recordmydesktop rhbz#958979 - Resolves: #965937, #973167 -------------------------------------------------------------------------------- References: [ 1 ] Bug #956912 - gnome-abrt removes invalid problems from the list while it is being sorted https://bugzilla.redhat.com/show_bug.cgi?id=956912 [ 2 ] Bug #965937 - collapsing Advanced section in configuration doesn't change size of window https://bugzilla.redhat.com/show_bug.cgi?id=965937 [ 3 ] Bug #967499 - gnome-abrt crashes if a new directory problem is invalid https://bugzilla.redhat.com/show_bug.cgi?id=967499 [ 4 ] Bug #973125 - problem detected -> no problem detected https://bugzilla.redhat.com/show_bug.cgi?id=973125 [ 5 ] Bug #973167 - Screen says "proceed to next step", but there is no next step https://bugzilla.redhat.com/show_bug.cgi?id=973167 -------------------------------------------------------------------------------- ================================================================================ linphone-3.6.1-2.fc19 (FEDORA-2013-13833) Phone anywhere in the whole world by using the Internet -------------------------------------------------------------------------------- Update Information: The new version 3.6 includes significant user interface improvements as well as new text messaging features such as delivery notifications and chat messaging storage. Three new major core features are now supported by Linphone: - ICE support (RFC5245): allows peer to peer audio & video connections without media relay server - UPnP (Universal Plug and Play): allows device-to-device networking of personal computers, networked home appliances and wireless devices - Audio call and conference recording Linphone 3.6 also integrates the following new features: - Call statistics - An improved buddy list management interface - Hebrew and Serb language support See https://www.linphone.org/eng/linphone/news/linphone-3.6-for-desktop.html -------------------------------------------------------------------------------- ChangeLog: * Sat Jul 27 2013 Alexey Kurov <nucleo@xxxxxxxxxxxxxxxxx> - 3.6.1-2 - use /etc/ssl/certs/ca-bundle.crt root_ca - fix armv7hl compilation * Sun Jul 7 2013 Alexey Kurov <nucleo@xxxxxxxxxxxxxxxxx> - 3.6.1-1 - linphone-3.6.1 * Fri Apr 26 2013 Jon Ciesla <limburgher@xxxxxxxxx> - 3.5.2-8 - Drop desktop vendor tag. * Sat Mar 23 2013 Alexey Kurov <nucleo@xxxxxxxxxxxxxxxxx> - 3.5.2-7 - autoreconf in %prep (#926078) * Thu Feb 14 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 3.5.2-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #823208 - no video input device https://bugzilla.redhat.com/show_bug.cgi?id=823208 [ 2 ] Bug #988488 - Linphone cannot register with sip proxy (cannot read cert -> tls error) https://bugzilla.redhat.com/show_bug.cgi?id=988488 -------------------------------------------------------------------------------- ================================================================================ mapnik-2.0.2-2.fc19 (FEDORA-2013-13881) Free Toolkit for developing mapping applications -------------------------------------------------------------------------------- Update Information: Update to the 2.0.2 release for postgis 2.x compatibility. -------------------------------------------------------------------------------- ChangeLog: * Mon Jul 29 2013 Tom Hughes <tom@xxxxxxxxxx> - 2.0.2-2 - Update to 2.0.2 release -------------------------------------------------------------------------------- References: [ 1 ] Bug #988389 - Mapnik (2.0.0-13.fc19) not compatible with current PostGIS (2.0.3-1.fc19) https://bugzilla.redhat.com/show_bug.cgi?id=988389 -------------------------------------------------------------------------------- ================================================================================ mate-file-manager-sendto-1.6.0-2.fc19 (FEDORA-2013-13920) MATE file manager send to -------------------------------------------------------------------------------- Update Information: some spec file improvements -------------------------------------------------------------------------------- ChangeLog: * Sun Jul 28 2013 Wolfgang Ulbrich <chat-to-me@xxxxxxxxx> - 1.6.0-2 - own directories - clean BRs - remove gsettings convert file - sort file section - improve find language -------------------------------------------------------------------------------- ================================================================================ mate-image-viewer-1.6.1-1.fc19 (FEDORA-2013-13905) Eye of MATE image viewer -------------------------------------------------------------------------------- Update Information: Various bugfixes, latest upstream release -------------------------------------------------------------------------------- ChangeLog: * Mon Jul 29 2013 Dan Mashal <dan.mashal@xxxxxxxxxxxxxxxxx> - 1.6.1-1 - Update to latest 1.6.1 stable release. -------------------------------------------------------------------------------- ================================================================================ mingw-libsqlite3x-20071018-19.fc19 (FEDORA-2013-13853) MinGW Windows C++ Wrapper for the SQLite3 embeddable SQL database engine -------------------------------------------------------------------------------- Update Information: rebuild due to mingw64 unresolved symbol -------------------------------------------------------------------------------- ChangeLog: * Mon Jul 29 2013 Thomas Sailer <t.sailer@xxxxxxxxxxxxxx> - 20071018-19 - Rebuild to fix mingw64 unresolved symbols -------------------------------------------------------------------------------- ================================================================================ mingw-libxml++-2.36.0-3.fc19 (FEDORA-2013-13914) MinGW Windows C++ wrapper for the libxml2 XML parser library -------------------------------------------------------------------------------- Update Information: rebuild due to mingw64 unresolved symbol -------------------------------------------------------------------------------- ChangeLog: * Mon Jul 29 2013 Thomas Sailer <t.sailer@xxxxxxxxxxxxxx> - 2.36.0-3 - Rebuild for mingw64 unresolved symbols -------------------------------------------------------------------------------- ================================================================================ nodejs-pause-0.0.1-3.fc19 (FEDORA-2013-13915) Node.js module to pause streams -------------------------------------------------------------------------------- Update Information: Rebuild to restrict to compatible architectures. -------------------------------------------------------------------------------- ChangeLog: -------------------------------------------------------------------------------- ================================================================================ nodejs-pubcontrol-0.3.2-2.fc19 (FEDORA-2013-13886) HTTP Extensible Pubsub Control Protocol (EPCP) library for Node.js -------------------------------------------------------------------------------- Update Information: Rebuild to restrict to compatible architectures. -------------------------------------------------------------------------------- ChangeLog: -------------------------------------------------------------------------------- ================================================================================ nodejs-q-0.9.6-2.fc19 (FEDORA-2013-13873) A tool for making and composing asynchronous promises in JavaScript -------------------------------------------------------------------------------- Update Information: Rebuild to restrict to compatible architectures. -------------------------------------------------------------------------------- ChangeLog: * Sun Jul 28 2013 Jamie Nguyen <jamielinux@xxxxxxxxxxxxxxxxx> - 0.9.6-2 - restrict to compatible arches -------------------------------------------------------------------------------- ================================================================================ nodejs-q-io-1.9.1-2.fc19 (FEDORA-2013-13893) Interfaces for IO using Q promises in JavaScript on Node.js -------------------------------------------------------------------------------- Update Information: Rebuild to restrict to compatible architectures. -------------------------------------------------------------------------------- ChangeLog: * Sun Jul 28 2013 Jamie Nguyen <jamielinux@xxxxxxxxxxxxxxxxx> - 1.9.1-2 - restrict to compatible arches -------------------------------------------------------------------------------- ================================================================================ nodejs-qs-0.6.5-3.fc19 (FEDORA-2013-13882) Query string parser for Node.js -------------------------------------------------------------------------------- Update Information: Rebuild to restrict to compatible architectures. -------------------------------------------------------------------------------- ChangeLog: * Sun Jul 28 2013 Jamie Nguyen <jamielinux@xxxxxxxxxxxxxxxxx> - 0.6.5-3 - add ExclusiveArch logic -------------------------------------------------------------------------------- ================================================================================ nodejs-range-parser-0.0.4-5.fc19 (FEDORA-2013-13894) Range header field string parser for Node.js -------------------------------------------------------------------------------- Update Information: Rebuild to restrict to compatible architectures. -------------------------------------------------------------------------------- ChangeLog: * Sun Jul 28 2013 Jamie Nguyen <jamielinux@xxxxxxxxxxxxxxxxx> - 0.0.4-5 - restrict to compatible arches * Wed Jun 19 2013 T.C. Hollingsworth <tchollingsworth@xxxxxxxxx> - 0.0.4-4 - rebuild for missing npm(nodejs-range-parser) provides on EL6 -------------------------------------------------------------------------------- ================================================================================ nodejs-require-cs-0.4.4-1.fc19 (FEDORA-2013-13884) An AMD loader plugin for CoffeeScript -------------------------------------------------------------------------------- Update Information: Update to upstream release 0.4.4, which is a minor bugfix release mainly to support more recent versions of its dependencies. -------------------------------------------------------------------------------- ChangeLog: * Sun Jul 28 2013 Jamie Nguyen <jamielinux@xxxxxxxxxxxxxxxxx> - 0.4.4-1 - update to upstream release 0.4.4 - restrict to compatible arches - upstream have now included a LICENSE file so use that instead -------------------------------------------------------------------------------- ================================================================================ nodejs-requirejs-2.1.8-1.fc19 (FEDORA-2013-13840) Node.js adapter for RequireJS, for loading AMD modules -------------------------------------------------------------------------------- Update Information: Update to upstream release 2.1.8, which is a minor bugfix release. You can view the associated commits here: * https://github.com/jrburke/r.js/commits/2.1.8 -------------------------------------------------------------------------------- ChangeLog: * Sun Jul 28 2013 Jamie Nguyen <jamielinux@xxxxxxxxxxxxxxxxx> - 2.1.8-1 - update to upstream release 2.1.8 - restrict to compatible arches -------------------------------------------------------------------------------- ================================================================================ nodejs-revalidator-0.1.5-2.fc19 (FEDORA-2013-13843) A cross-browser/Node.js validator used by resourceful -------------------------------------------------------------------------------- Update Information: Rebuild to restrict to compatible architectures. -------------------------------------------------------------------------------- ChangeLog: -------------------------------------------------------------------------------- ================================================================================ nodejs-ronn-0.4.0-3.fc19 (FEDORA-2013-13835) Markdown to roff/html converter -------------------------------------------------------------------------------- Update Information: Rebuild to restrict to compatible architectures. -------------------------------------------------------------------------------- ChangeLog: * Sun Jul 28 2013 Jamie Nguyen <jamielinux@xxxxxxxxxxxxxxxxx> - 0.4.0-3 - restrict to compatible arches -------------------------------------------------------------------------------- ================================================================================ nodejs-runforcover-0.0.2-4.fc19 (FEDORA-2013-13877) Require plugin for JS code coverage -------------------------------------------------------------------------------- Update Information: Rebuild to restrict to compatible architectures. -------------------------------------------------------------------------------- ChangeLog: * Sun Jul 28 2013 Jamie Nguyen <jamielinux@xxxxxxxxxxxxxxxxx> - 0.0.2-4 - restrict to compatible arches - enable tests -------------------------------------------------------------------------------- ================================================================================ nodejs-sax-0.5.4-2.fc19 (FEDORA-2013-13891) A streaming SAX-style XML parser in JavaScript for Node.js -------------------------------------------------------------------------------- Update Information: Rebuild to restrict to compatible architectures. -------------------------------------------------------------------------------- ChangeLog: * Sun Jul 28 2013 Jamie Nguyen <jamielinux@xxxxxxxxxxxxxxxxx> - 0.5.4-2 - restrict to compatible arches -------------------------------------------------------------------------------- ================================================================================ nodejs-should-1.2.2-3.fc19 (FEDORA-2013-13842) A test framework agnostic BDD-style assertions for Node.js -------------------------------------------------------------------------------- Update Information: Rebuild to restrict to compatible architectures. -------------------------------------------------------------------------------- ChangeLog: * Sun Jul 28 2013 Jamie Nguyen <jamielinux@xxxxxxxxxxxxxxxxx> - 1.2.2-3 - restrict to compatible arches * Wed Jun 19 2013 T.C. Hollingsworth <tchollingsworth@xxxxxxxxx> - 1.2.2-2 - rebuild for missing npm(should) provides on EL6 -------------------------------------------------------------------------------- ================================================================================ nodejs-showdown-0.3.1-5.fc19 (FEDORA-2013-13838) A JavaScript port of the original Perl version of Markdown -------------------------------------------------------------------------------- Update Information: Rebuild to restrict to compatible architectures. -------------------------------------------------------------------------------- ChangeLog: * Mon Jul 29 2013 Jamie Nguyen <jamielinux@xxxxxxxxxxxxxxxxx> - 0.3.1-5 - restrict to compatible arches - enable tests * Wed Jun 19 2013 T.C. Hollingsworth <tchollingsworth@xxxxxxxxx> - 0.3.1-4 - rebuild for missing npm(showdown) provides on EL6 -------------------------------------------------------------------------------- ================================================================================ openfst-1.3.3-3.fc19 (FEDORA-2013-13829) Weighted finite-state transducer library -------------------------------------------------------------------------------- Update Information: This update fixes some broken symbolic links. The broken links *may* (but are not known to) interfere with the correct operation of the openfst binaries. -------------------------------------------------------------------------------- ChangeLog: * Mon Jul 29 2013 Jerry James <loganjerry@xxxxxxxxx> - 1.3.3-3 - Fix broken symlinks (bz 989685) -------------------------------------------------------------------------------- References: [ 1 ] Bug #989685 - x86-64 RPM for v1.3.3 creates symlinks to invalid locations https://bugzilla.redhat.com/show_bug.cgi?id=989685 -------------------------------------------------------------------------------- ================================================================================ openshift-origin-cartridge-cron-1.4-1.9.1-2.fc19 (FEDORA-2013-13830) Embedded cron support for express -------------------------------------------------------------------------------- Update Information: Add a missing requirement on crontabs to spec file (#989089) -------------------------------------------------------------------------------- ChangeLog: * Sat Jul 27 2013 Jóhann B. Guðmundsson <johannbg@xxxxxxxxxxxxxxxxx> - 1.9.1-2 - Add a missing requirement on crontabs to spec file (#989089) * Wed May 8 2013 Adam Miller <admiller@xxxxxxxxxx> 1.9.1-1 - bump_minor_versions for sprint 28 (admiller@xxxxxxxxxx) * Mon May 6 2013 Adam Miller <admiller@xxxxxxxxxx> 1.8.2-1 - Add Cartridge-Vendor to manifest.yml in v1. (asari.ruby@xxxxxxxxx) * Thu Apr 25 2013 Adam Miller <admiller@xxxxxxxxxx> 1.8.1-1 - Update outdated links in 'cartridges' directory. (asari.ruby@xxxxxxxxx) - Bug 928675 (asari.ruby@xxxxxxxxx) - bump_minor_versions for sprint 2.0.26 (tdawson@xxxxxxxxxx) * Fri Apr 12 2013 Adam Miller <admiller@xxxxxxxxxx> 1.7.4-1 - SELinux, ApplicationContainer and UnixUser model changes to support oo-admin- ctl-gears operating on v1 and v2 cartridges. (rmillner@xxxxxxxxxx) * Wed Apr 10 2013 Adam Miller <admiller@xxxxxxxxxx> 1.7.3-1 - Bug 950224: Remove unnecessary Endpoints (ironcladlou@xxxxxxxxx) - Delete move/pre-move/post-move hooks, these hooks are no longer needed. (rpenta@xxxxxxxxxx) * Mon Apr 8 2013 Adam Miller <admiller@xxxxxxxxxx> 1.7.2-1 - Moving root cron configuration out of cartridges and into node (calfonso@xxxxxxxxxx) * Thu Mar 28 2013 Adam Miller <admiller@xxxxxxxxxx> 1.7.1-1 - bump_minor_versions for sprint 26 (admiller@xxxxxxxxxx) * Thu Mar 14 2013 Adam Miller <admiller@xxxxxxxxxx> 1.6.2-1 - Refactor Endpoints to support frontend mapping (ironcladlou@xxxxxxxxx) - Merge pull request #1625 from tdawson/tdawson/remove-obsoletes (dmcphers+openshiftbot@xxxxxxxxxx) - minor cleanup of some cartridge spec files (tdawson@xxxxxxxxxx) - remove old obsoletes (tdawson@xxxxxxxxxx) * Thu Mar 7 2013 Adam Miller <admiller@xxxxxxxxxx> 1.6.1-1 - bump_minor_versions for sprint 25 (admiller@xxxxxxxxxx) -------------------------------------------------------------------------------- References: [ 1 ] Bug #989089 - Add a missing requirement on crontabs for the cron job to the spec file https://bugzilla.redhat.com/show_bug.cgi?id=989089 -------------------------------------------------------------------------------- ================================================================================ ortp-0.22.0-1.fc19 (FEDORA-2013-13833) A C library implementing the RTP protocol (RFC3550) -------------------------------------------------------------------------------- Update Information: The new version 3.6 includes significant user interface improvements as well as new text messaging features such as delivery notifications and chat messaging storage. Three new major core features are now supported by Linphone: - ICE support (RFC5245): allows peer to peer audio & video connections without media relay server - UPnP (Universal Plug and Play): allows device-to-device networking of personal computers, networked home appliances and wireless devices - Audio call and conference recording Linphone 3.6 also integrates the following new features: - Call statistics - An improved buddy list management interface - Hebrew and Serb language support See https://www.linphone.org/eng/linphone/news/linphone-3.6-for-desktop.html -------------------------------------------------------------------------------- ChangeLog: * Sun Jul 7 2013 Alexey Kurov <nucleo@xxxxxxxxxxxxxxxxx> - 0.22.0-0 - ortp-0.22.0 -------------------------------------------------------------------------------- References: [ 1 ] Bug #823208 - no video input device https://bugzilla.redhat.com/show_bug.cgi?id=823208 [ 2 ] Bug #988488 - Linphone cannot register with sip proxy (cannot read cert -> tls error) https://bugzilla.redhat.com/show_bug.cgi?id=988488 -------------------------------------------------------------------------------- ================================================================================ oz-0.11.0-1.fc19 (FEDORA-2013-13868) Library and utilities for automated guest OS installs -------------------------------------------------------------------------------- Update Information: Update to Oz 0.11.0. See http://clalance.blogspot.com/ for a list of features. -------------------------------------------------------------------------------- ChangeLog: * Sun Jul 28 2013 Chris Lalancette <clalancette@xxxxxxxxx> - 0.11.0-1 - Update to release 0.11.0 -------------------------------------------------------------------------------- ================================================================================ perl-Locale-SubCountry-1.62-1.fc19 (FEDORA-2013-13899) ISO 3166-2 two letter subcountry codes -------------------------------------------------------------------------------- Update Information: This release removes non-ASCII characters from the documentaion. -------------------------------------------------------------------------------- ChangeLog: * Mon Jul 29 2013 Petr Pisar <ppisar@xxxxxxxxxx> - 1.62-1 - 1.62 bump -------------------------------------------------------------------------------- References: [ 1 ] Bug #987393 - perl-Locale-SubCountry-1.62 is available https://bugzilla.redhat.com/show_bug.cgi?id=987393 -------------------------------------------------------------------------------- ================================================================================ python-alembic-0.4.2-3.fc19 (FEDORA-2013-13864) Database migration tool for SQLAlchemy -------------------------------------------------------------------------------- Update Information: Depend on python-setuptools. -------------------------------------------------------------------------------- ChangeLog: * Mon Jul 29 2013 Ralph Bean <rbean@xxxxxxxxxx> - 0.4.2-3 - Add forgotten dep on python-setuptools. * Wed May 29 2013 Toshio Kuratomi <toshio@xxxxxxxxxxxxxxxxx> - 0.4.2-2 - Workaround setuptools to load the correct SQLAlchemy version for the alembic script. https://bugzilla.redhat.com/show_bug.cgi?id=968404 -------------------------------------------------------------------------------- References: [ 1 ] Bug #989016 - python-alembic is missing the dependency requirement python-setuptools https://bugzilla.redhat.com/show_bug.cgi?id=989016 -------------------------------------------------------------------------------- ================================================================================ python-djblets-0.7.16-1.fc19 (FEDORA-2013-13850) A collection of useful classes and functions for Django -------------------------------------------------------------------------------- Update Information: As with all ReviewBoard updates, you will need to run 'rb-site upgrade /path/to/site' for all installed sites after applying this update. == Action Required == The default Apache configuration is now more strict with how it serves up file attachments. This does not apply to existing installations. See http://support.beanbaginc.com/support/solutions/articles/110173-securing-file-attachments for details. == Description == - New upstream release 1.7.12 - http://www.reviewboard.org/docs/releasenotes/reviewboard/1.7.12/ - Security Fixes: * Function names in diff headers are no longer rendered as HTML. * If a user’s full name contained HTML, the Submitters list would render it as HTML, without escaping it. This was an XSS vulnerability. * The default Apache configuration is now more strict with how it serves up file attachments. This does not apply to existing installations. See http://support.beanbaginc.com/support/solutions/articles/110173-securing-file-attachments for details. * Uploaded files are now renamed to include a hash, preventing users from uploading malicious filenames, and making filenames unguessable. * Recaptcha support has been updated to use the new URLs provided by Google. - New Features: * Added a X-ReviewRequest-Repository header for e-mails. - Extension Improvements: * Extensions can now specify their list of app directories. * Extensions can now specify the author’s URL. * Improved the look and feel for extension configuration. * Improved the functionality for extension configuration. * Improved the list of available extensions. - Bug Fixes: * Fixed the “Show Whitespace Changes” toggle. * Fixed compatibility with modern versions of django-storages. * Draft comments on file attachments are no longer shown to all users. * Fixed issues with console windows appearing when invoking Clear Case requests on Python 2.7.x and Windows 7. * Review requests on Local Sites are now guaranteed to have the proper ID. * Fixed starring review requests on Local Sites. -------------------------------------------------------------------------------- ChangeLog: * Mon Jul 29 2013 Stephen Gallagher <sgallagh@xxxxxxxxxx> - 0.7.16-1 - New upstream release 0.7.16 - This release contains security fixes in the datagrid - JavaScript: * autoSizeTextArea now cleans up its hidden proxy elements when destroyed. * inlineEditor can be told not to focus a textarea by default by setting 'focusOnOpen' to false. * modalBox can place itself in an element other than <body> by setting the 'container' option to the element. * modalBox takes a 'boxID' option that, if specified, will set the ID of the modalBox element. * funcQueue now takes an optional context parameter for callback functions. - djblets.datagrid: * Data pulled from the database and rendered into cells are always escaped now. * Columns can now specify an image_class instead of an image_url. * Added a JavaScript reload() function that can be called on a datagrid element to trigger a dynamic reload from the server. - djblets.extensions: * Extensions can now specify their list of app directories. * Extensions can now specify the author's URL. * Improved the look and feel for extension configuration. * Improved the functionality for extension configuration. * Improved the list of available extensions. -------------------------------------------------------------------------------- ================================================================================ python-flask-0.9-7.fc19 (FEDORA-2013-13913) A micro-framework for Python based on Werkzeug, Jinja 2 and good intentions -------------------------------------------------------------------------------- Update Information: wrong requires on sphinx (RHBZ #989361) -------------------------------------------------------------------------------- ChangeLog: * Mon Jul 29 2013 Haïkel Guémar <hguemar@xxxxxxxxxxxxxxxxx> - 1:0.9-7 - fix wrong requires on sphinx (RHBZ #989361) -------------------------------------------------------------------------------- References: [ 1 ] Bug #989361 - python-flask requires python-sphinx at runtime for no reason https://bugzilla.redhat.com/show_bug.cgi?id=989361 -------------------------------------------------------------------------------- ================================================================================ python-keystoneclient-0.2.3-6.fc19 (FEDORA-2013-13919) Client library for OpenStack Identity API -------------------------------------------------------------------------------- Update Information: Selective backports from stable/grizzly: * Ec2Signer: Initial support for v4 signature verification. * Default signing_dir to secure temp dir. * Fix memcache encryption middleware. (CVE-2013-2166, CVE-2013-2167) * Check token expiry. (CVE-2013-2104) * Allow secure user password update. (CVE-2013-2013) -------------------------------------------------------------------------------- ChangeLog: * Mon Jul 29 2013 Jakub Ruzicka <jruzicka@xxxxxxxxxx> 0.2.3-6 - Allow secure user password update. (CVE-2013-2013) * Thu Jul 25 2013 Jakub Ruzicka <jruzicka@xxxxxxxxxx> 0.2.3-5 - Ec2Signer: Initial support for v4 signature verification. - Default signing_dir to secure temp dir. - Fix memcache encryption middleware. (CVE-2013-2166, CVE-2013-2167) * Tue May 28 2013 Jakub Ruzicka <jruzicka@xxxxxxxxxx> 0.2.3-4 - Check token expiry. (CVE-2013-2104) -------------------------------------------------------------------------------- References: [ 1 ] Bug #974271 - CVE-2013-2166 CVE-2013-2167 python-keystoneclient: middleware memcache encryption and signing bypass https://bugzilla.redhat.com/show_bug.cgi?id=974271 [ 2 ] Bug #965852 - CVE-2013-2104 OpenStack Keystone: Missing expiration check in Keystone PKI token validation https://bugzilla.redhat.com/show_bug.cgi?id=965852 -------------------------------------------------------------------------------- ================================================================================ python-pbr-0.5.19-2.fc19 (FEDORA-2013-13878) Python Build Reasonableness -------------------------------------------------------------------------------- Update Information: This build fixed a packaging issue for EL6 and was built to be conjunct. Update to latest stable version, it should be safe for all users -------------------------------------------------------------------------------- ChangeLog: * Fri Jul 26 2013 Matthias Runge <mrunge@xxxxxxxxxx> - 0.5.19-2 - remove one buildrequires: python-sphinx * Mon Jul 22 2013 Matthias Runge <mrunge@xxxxxxxxxx> - 0.5.19-1 - update to python-pbr-0.5.19 (rhbz#983008) * Mon Jun 24 2013 Matthias Runge <mrunge@xxxxxxxxxx> - 0.5.17-1 - update to python-pbr-0.5.17 (rhbz#976026) * Wed Jun 12 2013 Matthias Runge <mrunge@xxxxxxxxxx> - 0.5.16-1 - update to 0.5.16 (rhbz#973553) * Tue Jun 11 2013 Matthias Runge <mrunge@xxxxxxxxxx> - 0.5.14-1 - update to 0.5.14 (rhbz#971736) -------------------------------------------------------------------------------- References: [ 1 ] Bug #983008 - python-pbr-0.5.18 is available https://bugzilla.redhat.com/show_bug.cgi?id=983008 -------------------------------------------------------------------------------- ================================================================================ python-zc-buildout-2.1.0-3.fc19 (FEDORA-2013-13858) System for managing development buildouts -------------------------------------------------------------------------------- Update Information: More modern buildout. -------------------------------------------------------------------------------- ChangeLog: * Tue Mar 26 2013 Ralph Bean <rbean@xxxxxxxxxx> - 2.1.0-3 - Fixed py2/py3 conflict over %{_bindir}/buildout. * Mon Mar 25 2013 Ralph Bean <rbean@xxxxxxxxxx> - 2.1.0-2 - Add BuildRequires on python-six where python-manuel doesn't pull it in. * Sun Mar 24 2013 Ralph Bean <rbean@xxxxxxxxxx> - 2.1.0-1 - Latest upstream - Uncommented %check section. Got it working! * Mon Feb 25 2013 Ralph Bean <rbean@xxxxxxxxxx> - 2.0.1-1 - Latest upstream. - Added python3 subpackage. - Added %check section but left it commented out (not working under mock). -------------------------------------------------------------------------------- References: [ 1 ] Bug #987790 - Buildout is stuck on version 1.5.2 on F19 https://bugzilla.redhat.com/show_bug.cgi?id=987790 -------------------------------------------------------------------------------- ================================================================================ qbzr-0.23.1-1.fc19 (FEDORA-2013-13918) Bazaar plugin for Qt interface to most Bazaar operations -------------------------------------------------------------------------------- Update Information: Just a few bugfixes. Upstream release notes: https://groups.google.com/forum/#!topic/qbzr/59NuDm19mFA -------------------------------------------------------------------------------- ChangeLog: * Mon Jul 29 2013 Toshio Kuratomi <toshio@xxxxxxxxxxxxxxxxx> - 0.23.1-1 - Upstream maintainance release; just a few bugfixes - Upstream release notes: https://groups.google.com/forum/#!topic/qbzr/59NuDm19mFA -------------------------------------------------------------------------------- ================================================================================ rubygem-cinch-2.0.6-1.fc19 (FEDORA-2013-13906) An IRC Bot Building Framework -------------------------------------------------------------------------------- Update Information: Rebased on Cinch 2.0.6. -------------------------------------------------------------------------------- ChangeLog: * Mon Jul 29 2013 Darryl L. Pierce <dpierce@xxxxxxxxxx> - 2.0.6-1 - Rebased on Cinch 2.0.6. -------------------------------------------------------------------------------- ================================================================================ rubygem-cinch-2.0.7-1.fc19 (FEDORA-2013-13890) An IRC Bot Building Framework -------------------------------------------------------------------------------- Update Information: Rebased on Cinch 2.0.7. -------------------------------------------------------------------------------- ChangeLog: * Mon Jul 29 2013 Darryl L. Pierce <dpierce@xxxxxxxxxx> - 2.0.7-1 - Rebased on Cinch 2.0.7. * Mon Jul 29 2013 Darryl L. Pierce <dpierce@xxxxxxxxxx> - 2.0.6-1 - Rebased on Cinch 2.0.6. -------------------------------------------------------------------------------- ================================================================================ rubygem-sanitize-2.0.6-2.fc19 (FEDORA-2013-13910) Whitelist-based HTML sanitizer -------------------------------------------------------------------------------- Update Information: Whitelist-based HTML sanitizer -------------------------------------------------------------------------------- References: [ 1 ] Bug #989132 - Review Request: rubygem-sanitize - Whitelist-based HTML sanitizer https://bugzilla.redhat.com/show_bug.cgi?id=989132 -------------------------------------------------------------------------------- ================================================================================ snmp4j-2.2.2-1.fc19 (FEDORA-2013-13856) The Object Oriented SNMP API for Java Managers and Agents -------------------------------------------------------------------------------- Update Information: Initial import (#976052). -------------------------------------------------------------------------------- References: [ 1 ] Bug #976052 - Review Request: snmp4j - The Object Oriented SNMP API for Java Managers and Agents https://bugzilla.redhat.com/show_bug.cgi?id=976052 -------------------------------------------------------------------------------- ================================================================================ splix-2.0.1-0.18.20121128svn.fc19 (FEDORA-2013-13845) Driver for QPDL/SPL2 printers (Samsung and several Xerox printers) -------------------------------------------------------------------------------- Update Information: This update adds device ID for Samsung-CLP-310. -------------------------------------------------------------------------------- ChangeLog: * Sat Jul 27 2013 Jiri Popelka <jpopelka@xxxxxxxxxx> - 2.0.1-0.18.20121128svn - Add Device ID for Samsung CLP-310 (#988926) -------------------------------------------------------------------------------- References: [ 1 ] Bug #988926 - Samsung clp-310 printer installed and configured but not printing... https://bugzilla.redhat.com/show_bug.cgi?id=988926 -------------------------------------------------------------------------------- ================================================================================ tuna-0.11.1-1.fc19 (FEDORA-2013-13851) Application tuning GUI & command line utility -------------------------------------------------------------------------------- Update Information: update to 0.11.1 with fixes for 919212,974035,974027 -------------------------------------------------------------------------------- ChangeLog: * Mon Jul 29 2013 Jiri Kastner <jkastner@xxxxxxxxxx> - 0.11.1-1 - New upstream release -------------------------------------------------------------------------------- References: [ 1 ] Bug #919212 - RFE use polkit to authorize the tuna GUI https://bugzilla.redhat.com/show_bug.cgi?id=919212 [ 2 ] Bug #974035 - configuration not loaded, when missing /proc/sys entry https://bugzilla.redhat.com/show_bug.cgi?id=974035 [ 3 ] Bug #974027 - non-root users can't run tuna https://bugzilla.redhat.com/show_bug.cgi?id=974027 -------------------------------------------------------------------------------- ================================================================================ weasyprint-0.19.2-3.fc19 (FEDORA-2013-13895) Utility to render HTML and CSS to PDF -------------------------------------------------------------------------------- Update Information: Utility and Python library to render HTML and CSS to PDF -------------------------------------------------------------------------------- References: [ 1 ] Bug #986608 - Review Request: weasyprint - Utility and Python library to render HTML and CSS to PDF https://bugzilla.redhat.com/show_bug.cgi?id=986608 -------------------------------------------------------------------------------- -- test mailing list test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe: https://admin.fedoraproject.org/mailman/listinfo/test