The following Fedora 19 Security updates need testing: Age URL 20 https://admin.fedoraproject.org/updates/FEDORA-2013-14029/zabbix-2.0.6-3.fc19 7 https://admin.fedoraproject.org/updates/FEDORA-2013-14758/acpid-2.0.19-5.fc19 7 https://admin.fedoraproject.org/updates/FEDORA-2013-14814/python-glanceclient-0.9.0-3.fc19 7 https://admin.fedoraproject.org/updates/FEDORA-2013-14852/python-django14-1.4.6-1.fc19 6 https://admin.fedoraproject.org/updates/FEDORA-2013-14891/python-virtualenv-1.10.1-1.fc19 6 https://admin.fedoraproject.org/updates/FEDORA-2013-14910/drupal7-entity-1.2-1.fc19 2 https://admin.fedoraproject.org/updates/FEDORA-2013-15049/ssmtp-2.64-9.fc19 0 https://admin.fedoraproject.org/updates/FEDORA-2013-14998/php-5.5.3-1.fc19 0 https://admin.fedoraproject.org/updates/FEDORA-2013-15146/python-2.7.5-4.fc19 0 https://admin.fedoraproject.org/updates/FEDORA-2013-15147/drupal7-theme-zen-5.4-1.fc19 0 https://admin.fedoraproject.org/updates/FEDORA-2013-15169/ansible-1.2.3-2.fc19 0 https://admin.fedoraproject.org/updates/FEDORA-2013-15196/perl-Module-Metadata-1.000015-1.fc19 The following Fedora 19 Critical Path updates have yet to be approved: Age URL 12 https://admin.fedoraproject.org/updates/FEDORA-2013-14572/rygel-0.18.4-1.fc19 7 https://admin.fedoraproject.org/updates/FEDORA-2013-14859/realmd-0.14.5-1.fc19 7 https://admin.fedoraproject.org/updates/FEDORA-2013-14863/pcmanfm-1.1.2-1.fc19 7 https://admin.fedoraproject.org/updates/FEDORA-2013-14853/libfm-1.1.2-1.fc19 7 https://admin.fedoraproject.org/updates/FEDORA-2013-14756/lorax-19.6-1.fc19 7 https://admin.fedoraproject.org/updates/FEDORA-2013-14737/libtiff-4.0.3-7.fc19 3 https://admin.fedoraproject.org/updates/FEDORA-2013-15025/langtable-0.0.11-1.fc19 2 https://admin.fedoraproject.org/updates/FEDORA-2013-15041/openldap-2.4.36-1.fc19 0 https://admin.fedoraproject.org/updates/FEDORA-2013-15178/samba-4.0.9-1.fc19 0 https://admin.fedoraproject.org/updates/FEDORA-2013-15146/python-2.7.5-4.fc19 0 https://admin.fedoraproject.org/updates/FEDORA-2013-15185/pygpgme-0.3-8.fc19 0 https://admin.fedoraproject.org/updates/FEDORA-2013-15175/file-5.11-11.fc19 0 https://admin.fedoraproject.org/updates/FEDORA-2013-15176/hwdata-0.255-1.fc19 0 https://admin.fedoraproject.org/updates/FEDORA-2013-15182/perl-Encode-2.52-1.fc19 0 https://admin.fedoraproject.org/updates/FEDORA-2013-15132/gupnp-0.20.5-1.fc19 The following builds have been pushed to Fedora 19 updates-testing alexandria-0.6.9-6.fc19 ansible-1.2.3-2.fc19 canl-java-1.2.1-1.fc19 clean-2.4-16.fc19 cntlm-0.92.3-1.fc19 drupal7-i18n-1.10-1.fc19 drupal7-theme-zen-5.4-1.fc19 evolution-ews-3.8.5-2.fc19 file-5.11-11.fc19 freediams-0.9.0-0.1.beta1.fc19 freemedforms-0.9.0-0.1.beta1.fc19 glite-lbjp-common-gss-3.2.13-2.fc19 hwdata-0.255-1.fc19 imapsync-1.564-1.fc19 inxi-1.9.14-1.fc19 mingw-glew-1.10.0-2.fc19 mock-1.1.33-1.fc19 mongodb-2.2.6-1.fc19 mpdris2-0.4-1.fc19 pam_krb5-2.4.6-1.fc19 pdfshuffler-0.6.0-3.fc19 peervpn-0.036-1.fc19 perl-Encode-2.52-1.fc19 perl-Module-Metadata-1.000015-1.fc19 perl-Parallel-Runner-0.013-4.fc19 perl-Perl6-Caller-0.100-2.fc19 perl-true-0.18-2.fc19 php-5.5.3-1.fc19 psacct-6.6.1-6.fc19 pygpgme-0.3-8.fc19 python-2.7.5-4.fc19 python-Bottleneck-0.6.0-1.fc19 python-pyroute2-0.1.11-1.fc19 qemu-sanity-check-1.1.3-4.fc19 rubygem-marc-0.6.0-1.fc19 samba-4.0.9-1.fc19 savanna-image-elements-0.3-0.2.88511begit.fc19 sddm-0.2.0-0.1.20130821gite707e229.fc19 setroubleshoot-plugins-3.0.58-2.fc19 system-config-printer-1.4.2-1.fc19 tudu-0.9-1.fc19 unetbootin-0-15.585bzr.fc19 xemacs-21.5.34-1.fc19 Details about builds: ================================================================================ alexandria-0.6.9-6.fc19 (FEDORA-2013-15197) Book collection manager -------------------------------------------------------------------------------- Update Information: Search providers using Z39.50 were not working correctly due to misuse of rubygem-zoom. This new rpm will fix the issue. -------------------------------------------------------------------------------- ChangeLog: * Wed Aug 21 2013 Mamoru TASAKA <mtasaka@xxxxxxxxxxxxxxxxx> - 0.6.9-6 - Change ZOOM::Connection.count to string to make z3950 provider work again * Sat Aug 3 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.6.9-5.1 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ ansible-1.2.3-2.fc19 (FEDORA-2013-15169) SSH-based configuration management, deployment, and task execution system -------------------------------------------------------------------------------- Update Information: Fixes CVE-2013-4260 and CVE-2013-4259 See: https://groups.google.com/forum/#!topic/ansible-project/UVDYW0HGcNg for more information. -------------------------------------------------------------------------------- ChangeLog: * Wed Aug 21 2013 Kevin Fenzi <kevin@xxxxxxxxx> 1.2.3-2 - Update to 1.2.3 - Fixes CVE-2013-4260 and CVE-2013-4259 * Sat Aug 3 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.2.2-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #998223 - CVE-2013-4259 ansible: insecure location for ssh ControlMaster socket https://bugzilla.redhat.com/show_bug.cgi?id=998223 [ 2 ] Bug #998227 - CVE-2013-4260 ansible: predictible filename used for failed result in world writable directory https://bugzilla.redhat.com/show_bug.cgi?id=998227 -------------------------------------------------------------------------------- ================================================================================ canl-java-1.2.1-1.fc19 (FEDORA-2013-15143) EMI Common Authentication library - bindings for Java -------------------------------------------------------------------------------- Update Information: This is the Java part of the EMI caNl -- the Common Authentication Library. Supplements the existing canl-c and canl-c++ packages that provide the C and C++ APIs. -------------------------------------------------------------------------------- References: [ 1 ] Bug #912681 - Review Request: canl-java - EMI Common Authentication library - bindings for Java https://bugzilla.redhat.com/show_bug.cgi?id=912681 -------------------------------------------------------------------------------- ================================================================================ clean-2.4-16.fc19 (FEDORA-2013-15179) The Clean language compiler -------------------------------------------------------------------------------- Update Information: Added some more external libraries -------------------------------------------------------------------------------- ChangeLog: * Sat Aug 3 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 2.4-16 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild * Mon Apr 22 2013 Patrick Uiterwijk <puiterwijk@xxxxxxxxx> - 2.4-15 - Added Gast, Parsers and WrapDebug libraries * Tue Mar 26 2013 Peter Robinson <pbrobinson@xxxxxxxxxxxxxxxxx> 2.4-14 - Fix name-version syntax - Fix x86 arch bits, fix sub package NV requires -------------------------------------------------------------------------------- ================================================================================ cntlm-0.92.3-1.fc19 (FEDORA-2013-15160) Fast NTLM authentication proxy with tunneling -------------------------------------------------------------------------------- Update Information: Update to bugfix release 0.92.3. -------------------------------------------------------------------------------- ChangeLog: * Thu Aug 22 2013 Sandro Mani <manisandro@xxxxxxxxx> - 0.92.3-1 - Update to 0.92.3 * Sat Aug 3 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.92-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #850060 - Introduce new systemd-rpm macros in cntlm spec file https://bugzilla.redhat.com/show_bug.cgi?id=850060 [ 2 ] Bug #955329 - cntlm package should be built with PIE flags https://bugzilla.redhat.com/show_bug.cgi?id=955329 [ 3 ] Bug #847888 - CNTLM : buffer overflow on socket.c https://bugzilla.redhat.com/show_bug.cgi?id=847888 -------------------------------------------------------------------------------- ================================================================================ drupal7-i18n-1.10-1.fc19 (FEDORA-2013-15156) Collection of modules to extend Drupal core multilingual capabilities -------------------------------------------------------------------------------- Update Information: - Update to upstream 1.10 release for security and bug fixes - Upstream changelog for this release is available at https://drupal.org/node/2070589 -------------------------------------------------------------------------------- ChangeLog: * Thu Aug 22 2013 Peter Borsa <peter.borsa@xxxxxxxxx> - 1.10-1 - Update to upstream 1.10 release for security and bug fixes - Upstream changelog for this release is available at https://drupal.org/node/2070589 * Sat Aug 3 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.9-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #999331 - drupal7-i18n-1.10 is available https://bugzilla.redhat.com/show_bug.cgi?id=999331 -------------------------------------------------------------------------------- ================================================================================ drupal7-theme-zen-5.4-1.fc19 (FEDORA-2013-15147) Zen is a powerful, yet simple, HTML5 starting theme -------------------------------------------------------------------------------- Update Information: - Update to upstream 5.4 release for security and bug fixes - SA-CONTRIB-2013-070 https://drupal.org/node/2071157 - Upstream changelog for this release is available at https://drupal.org/node/2071055 -------------------------------------------------------------------------------- ChangeLog: * Thu Aug 22 2013 Peter Borsa <peter.borsa@xxxxxxxxx> - 5.4-1 - Update to upstream 5.4 release for security and bug fixes - SA-CONTRIB-2013-070 https://drupal.org/node/2071157 - Upstream changelog for this release is available at https://drupal.org/node/2071055 -------------------------------------------------------------------------------- ================================================================================ evolution-ews-3.8.5-2.fc19 (FEDORA-2013-15167) Evolution extension for Exchange Web Services -------------------------------------------------------------------------------- Update Information: An update which fixes regression in creating a new appointment (not a meeting). -------------------------------------------------------------------------------- ChangeLog: * Fri Aug 16 2013 David Woodhouse <David.Woodhouse@xxxxxxxxx> - 3.8.5-2 - Merge regression fix for BGO #702922 -------------------------------------------------------------------------------- References: [ 1 ] Bug #999357 - Can not create new appointments in Evolution https://bugzilla.redhat.com/show_bug.cgi?id=999357 -------------------------------------------------------------------------------- ================================================================================ file-5.11-11.fc19 (FEDORA-2013-15175) A utility for determining file types -------------------------------------------------------------------------------- Update Information: This update adds support for journald log files recognition (bug #985072). -------------------------------------------------------------------------------- ChangeLog: * Thu Aug 22 2013 Jan Kaluza <jkaluza@xxxxxxxxxx> - 5.11-11 - fix #985072 - add support for journald files * Mon Jun 17 2013 Jan Kaluza <jkaluza@xxxxxxxxxx> - 5.11-10 - build python-magic as noarch - fix netpbm detection -------------------------------------------------------------------------------- References: [ 1 ] Bug #985072 - file fails to recognize systemd journal files (no entry in /etc/magic) https://bugzilla.redhat.com/show_bug.cgi?id=985072 -------------------------------------------------------------------------------- ================================================================================ freediams-0.9.0-0.1.beta1.fc19 (FEDORA-2013-15170) The pharmaceutical prescription assistant -------------------------------------------------------------------------------- Update Information: Update to latest upstream release. -------------------------------------------------------------------------------- ChangeLog: * Fri Aug 16 2013 Ankur Sinha <ankursinha AT fedoraproject DOT org> 0.9.0-0.1.beta1 - Update to 0.9.0.beta1 * Sat Aug 3 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.7.5-9 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #974508 - freemedforms-0.9.0%7Ebeta1 is available https://bugzilla.redhat.com/show_bug.cgi?id=974508 -------------------------------------------------------------------------------- ================================================================================ freemedforms-0.9.0-0.1.beta1.fc19 (FEDORA-2013-15170) The freemedforms application suite metapackage -------------------------------------------------------------------------------- Update Information: Update to latest upstream release. -------------------------------------------------------------------------------- ChangeLog: * Thu Aug 15 2013 Ankur Sinha <ankursinha AT fedoraproject DOT org> 0.9.0-0.1.beta1 - Based on Eric's spec - Update to 0.9.0~beta1 - Update build system 0.9.0 - Adding some comments - Correcting some package content - Rpaths, but internal libraries so OK * Sun May 19 2013 Ankur Sinha <ankursinha AT fedoraproject DOT org> 0.8.2.1-1 - Update to 0.8.2.1 -------------------------------------------------------------------------------- References: [ 1 ] Bug #974508 - freemedforms-0.9.0%7Ebeta1 is available https://bugzilla.redhat.com/show_bug.cgi?id=974508 -------------------------------------------------------------------------------- ================================================================================ glite-lbjp-common-gss-3.2.13-2.fc19 (FEDORA-2013-15150) Wrapper of Globus GSS/SSL implementation used by gLite LB and JP -------------------------------------------------------------------------------- Update Information: glite-security-gss wraps GSS functions (and several non-GSS Globus calls) to a secure network communication library with strict timing control (via timeout arguments) of all remote operations. -------------------------------------------------------------------------------- References: [ 1 ] Bug #877817 - Review Request: glite-lbjp-common-gss - Wrapper of Globus GSS/SSL implementation for gLite https://bugzilla.redhat.com/show_bug.cgi?id=877817 -------------------------------------------------------------------------------- ================================================================================ hwdata-0.255-1.fc19 (FEDORA-2013-15176) Hardware identification and configuration data -------------------------------------------------------------------------------- Update Information: Vendor, PCI and usb ids update. -------------------------------------------------------------------------------- ChangeLog: * Wed Aug 21 2013 Michal Minar <miminar@xxxxxxxxxx> 0.255-1 - Data files update. * Wed Aug 7 2013 Michal Minar <miminar@xxxxxxxxxx> 0.254-1 - Data files update. * Sun Jul 21 2013 Michal Minar <miminar@xxxxxxxxxx> 0.251-1 - Data files update. * Sat Jul 6 2013 Michal Minar <miminar@xxxxxxxxxx> 0.250-1 - Data files update. -------------------------------------------------------------------------------- ================================================================================ imapsync-1.564-1.fc19 (FEDORA-2013-15186) Tool to migrate email between IMAP servers -------------------------------------------------------------------------------- Update Information: Update to 1.564 - several bugfixes -------------------------------------------------------------------------------- ChangeLog: * Mon Aug 19 2013 Nick Bebout <nb@xxxxxxxxxxxxxxxxx> - 1.564-1 - Upgrade to 1.564 * Sun Aug 4 2013 Nick Bebout <nb@xxxxxxxxxxxxxxxxx> - 1.558-1 - Upgrade to 1.558 -------------------------------------------------------------------------------- ================================================================================ inxi-1.9.14-1.fc19 (FEDORA-2013-15194) A full featured system information script -------------------------------------------------------------------------------- Update Information: Update to new version, Disable builtin update. Update to new version. -------------------------------------------------------------------------------- ChangeLog: * Thu Aug 22 2013 Vasiliy N. Glazov <vascom2@xxxxxxxxx> 1.9.14-1 - Update to new version - Disable builtin update * Mon Aug 19 2013 Vasiliy N. Glazov <vascom2@xxxxxxxxx> 1.9.13-1 - Update to new version -------------------------------------------------------------------------------- ================================================================================ mingw-glew-1.10.0-2.fc19 (FEDORA-2013-15148) MinGW Windows GLEW library -------------------------------------------------------------------------------- Update Information: This update removes the GLU requirement from the pkgconfig file. Update to version 1.10.0, adds support for OpenGL 4.4. -------------------------------------------------------------------------------- ChangeLog: * Mon Aug 19 2013 Sandro Mani <manisandro@xxxxxxxxx> - 1.10.0-2 - Remove glu requirement in pkgconfig file * Thu Aug 8 2013 Sandro Mani <manisandro@xxxxxxxxx> - 1.10.0-1 - Update to 1.10.0 * Sat Aug 3 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.9.0-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ mock-1.1.33-1.fc19 (FEDORA-2013-15203) Builds packages inside chroots -------------------------------------------------------------------------------- Update Information: Removed f17 configs and added f20 configs -------------------------------------------------------------------------------- ChangeLog: * Wed Aug 21 2013 Clark Williams <williams@xxxxxxxxxx> - 1.1.33-1 - removed f17 configs - added f20 configs - fixed mockchain to use mock config default setup [BZ# 962573] - remove bogus lockfile dir in _setupDirs() [BZ# 894305] * Sat Aug 3 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.1.32-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #953519 - After changing config_opts['chrootgid'], the process still runs with mock group privileges https://bugzilla.redhat.com/show_bug.cgi?id=953519 [ 2 ] Bug #962573 - mockchain fails on complicated config files https://bugzilla.redhat.com/show_bug.cgi?id=962573 [ 3 ] Bug #894305 - directory /var/lock/rpm unowned https://bugzilla.redhat.com/show_bug.cgi?id=894305 -------------------------------------------------------------------------------- ================================================================================ mongodb-2.2.6-1.fc19 (FEDORA-2013-15161) High-performance, schema-free document-oriented database -------------------------------------------------------------------------------- Update Information: Update to version 2.2.6, fix for bug #971595 -------------------------------------------------------------------------------- ChangeLog: * Wed Aug 21 2013 Troy Dawson <tdawson@xxxxxxxxxx> - 2.2.6-1 - Bumped version up to 2.2.6 - Added Requires: v8 (#971595) -------------------------------------------------------------------------------- References: [ 1 ] Bug #971595 - Install of mongodb is broken by the provides of 'libv8.so.3' https://bugzilla.redhat.com/show_bug.cgi?id=971595 -------------------------------------------------------------------------------- ================================================================================ mpdris2-0.4-1.fc19 (FEDORA-2013-15152) Provide MPRIS 2 support to mpd -------------------------------------------------------------------------------- Update Information: * New package!! mpDris2 provides MPRIS 2 support to mpd (Music Player Daemon). mpDris2 is run in the user session and monitors a local or distant mpd server -------------------------------------------------------------------------------- References: [ 1 ] Bug #912048 - Review Request: mpdris2 - Provide MPRIS 2 support to mpd https://bugzilla.redhat.com/show_bug.cgi?id=912048 -------------------------------------------------------------------------------- ================================================================================ pam_krb5-2.4.6-1.fc19 (FEDORA-2013-15174) A Pluggable Authentication Module for Kerberos 5 -------------------------------------------------------------------------------- Update Information: The pam_krb5 module did not properly set up credential caches for the user if its "mappings" option had been used to map a user to a principal name in a non-default realm. This update corrects the behavior. -------------------------------------------------------------------------------- ChangeLog: * Wed Aug 21 2013 Nalin Dahyabhai <nalin@xxxxxxxxxx> - 2.4.6-1 - handle ccache creation correctly for users who are mapped to principal names in realms other than the default (#999604) * Sat Aug 3 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 2.4.5-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #999604 - failure in creation of credential cache for users whose principal does not belong to the default realm https://bugzilla.redhat.com/show_bug.cgi?id=999604 -------------------------------------------------------------------------------- ================================================================================ pdfshuffler-0.6.0-3.fc19 (FEDORA-2013-15145) PDF file merging, rearranging, and splitting -------------------------------------------------------------------------------- Update Information: * Thu Aug 22 2013 Fabian Affolter <mail@xxxxxxxxxxxxxxxxxx> - 0.6.0-3 - Patch removed - Rebuilt -------------------------------------------------------------------------------- ChangeLog: * Thu Aug 22 2013 Fabian Affolter <mail@xxxxxxxxxxxxxxxxxx> - 0.6.0-3 - Patch removed - Rebuilt * Sat Aug 3 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.6.0-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild * Wed Jun 26 2013 Fabian Affolter <mail@xxxxxxxxxxxxxxxxxx> - 0.6.0-1 - Spec file cleaned - Switch to release package -------------------------------------------------------------------------------- References: [ 1 ] Bug #952721 - [abrt] pdfshuffler-0.6.0-0.3.20120302svn64.fc18: INT_cairo_restore: Process /usr/bin/python2.7 was killed by signal 11 (SIGSEGV) https://bugzilla.redhat.com/show_bug.cgi?id=952721 [ 2 ] Bug #953363 - [abrt] pdfshuffler-0.6.0-0.3.20120302svn64.fc18: INT_cairo_get_matrix: Process /usr/bin/python2.7 was killed by signal 11 (SIGSEGV) https://bugzilla.redhat.com/show_bug.cgi?id=953363 [ 3 ] Bug #953365 - [abrt] pdfshuffler-0.6.0-0.3.20120302svn64.fc18: INT_cairo_new_path: Process /usr/bin/python2.7 was killed by signal 11 (SIGSEGV) https://bugzilla.redhat.com/show_bug.cgi?id=953365 [ 4 ] Bug #957866 - [abrt] pdfshuffler-0.6.0-0.3.20120302svn64.fc18: INT_cairo_new_path: Process /usr/bin/python2.7 was killed by signal 11 (SIGSEGV) https://bugzilla.redhat.com/show_bug.cgi?id=957866 [ 5 ] Bug #999005 - [abrt] pdfshuffler-0.6.0-0.4.20120302svn64.fc19: INT_cairo_transform: Process /usr/bin/python2.7 was killed by signal 11 (SIGSEGV) https://bugzilla.redhat.com/show_bug.cgi?id=999005 -------------------------------------------------------------------------------- ================================================================================ peervpn-0.036-1.fc19 (FEDORA-2013-15153) A VPN software using full mesh network topology -------------------------------------------------------------------------------- Update Information: Update to 0.036. -------------------------------------------------------------------------------- ChangeLog: * Thu Aug 22 2013 Jan Cholasta <jcholast@xxxxxxxxxx> - 0.036-1 - Updated to 0.036. -------------------------------------------------------------------------------- ================================================================================ perl-Encode-2.52-1.fc19 (FEDORA-2013-15182) Character encodings in Perl -------------------------------------------------------------------------------- Update Information: Update to the latest version 2.52 -------------------------------------------------------------------------------- ChangeLog: * Wed Aug 21 2013 Jitka Plesnikova <jplesnik@xxxxxxxxxx> - 2.52-1 - 2.52 bump -------------------------------------------------------------------------------- References: [ 1 ] Bug #997833 - perl-Encode-2.52 is available https://bugzilla.redhat.com/show_bug.cgi?id=997833 -------------------------------------------------------------------------------- ================================================================================ perl-Module-Metadata-1.000015-1.fc19 (FEDORA-2013-15196) Gather package and POD information from perl module files -------------------------------------------------------------------------------- Update Information: This update clarifies the module's documentation about the code it executes, i.e. it does "eval" a module to determine its version number. Previously it said that it did not execute unsafe code. -------------------------------------------------------------------------------- ChangeLog: * Wed Aug 21 2013 Paul Howarth <paul@xxxxxxxxxxxx> - 1.000015-1 - Update to 1.000015 - Change wording about safety/security to satisfy CVE-2013-1437 * Wed Aug 14 2013 Jitka Plesnikova <jplesnik@xxxxxxxxxx> - 1.000014-4 - Perl 5.18 re-rebuild of bootstrapped packages * Sat Aug 3 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.000014-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild * Fri Jul 12 2013 Petr Pisar <ppisar@xxxxxxxxxx> - 1.000014-2 - Perl 5.18 rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #996281 - CVE-2013-1437 perl-Module-Metadata: incorrectly documents that it does not execute unsafe code https://bugzilla.redhat.com/show_bug.cgi?id=996281 -------------------------------------------------------------------------------- ================================================================================ perl-Parallel-Runner-0.013-4.fc19 (FEDORA-2013-15172) An object to manage running things in parallel processes -------------------------------------------------------------------------------- Update Information: This is the first Fedora release of perl-Parallel-Runner. -------------------------------------------------------------------------------- References: [ 1 ] Bug #997549 - Review Request: perl-Parallel-Runner - An object to manage running things in parallel processes https://bugzilla.redhat.com/show_bug.cgi?id=997549 -------------------------------------------------------------------------------- ================================================================================ perl-Perl6-Caller-0.100-2.fc19 (FEDORA-2013-15187) OO caller() interface -------------------------------------------------------------------------------- Update Information: This is the first Fedora release of perl-Perl6-Caller. -------------------------------------------------------------------------------- References: [ 1 ] Bug #998434 - Review Request: perl-Perl6-Caller - OO caller() interface https://bugzilla.redhat.com/show_bug.cgi?id=998434 -------------------------------------------------------------------------------- ================================================================================ perl-true-0.18-2.fc19 (FEDORA-2013-15155) Automatically return a true value when a file is required -------------------------------------------------------------------------------- Update Information: This is the first Fedora release of perl-true. -------------------------------------------------------------------------------- References: [ 1 ] Bug #998465 - Review Request: perl-true - Automatically return a true value when a file is required https://bugzilla.redhat.com/show_bug.cgi?id=998465 -------------------------------------------------------------------------------- ================================================================================ php-5.5.3-1.fc19 (FEDORA-2013-14998) PHP scripting language for creating dynamic web sites -------------------------------------------------------------------------------- Update Information: Version 5.5.3, 22 Aug 2013 Openssl: + Fixed UMR in fix for CVE-2013-4248. Version 5.5.2, 15-Aug-2013 Core: * Fixed bug #65372 (Segfault in gc_zval_possible_root when return reference fails). * Fixed value of FILTER_SANITIZE_FULL_SPECIAL_CHARS constant (previously was erroneously set to FILTER_SANITIZE_SPECIAL_CHARS value). * Fixed bug #65304 (Use of max int in array_sum). * Fixed bug #65291 (get_defined_constants() causes PHP to crash in a very limited case). * Fixed bug #62691 (solaris sed has no -i switch). * Fixed bug #61345 (CGI mode - make install don't work). * Fixed bug #61268 (--enable-dtrace leads make to clobber Zend/zend_dtrace.d). DOM: * Added flags option to DOMDocument::schemaValidate() and DOMDocument::schemaValidateSource(). Added LIBXML_SCHEMA_CREATE flag. OPcache: * Added opcache.restrict_api configuration directive that may limit usage of OPcahce API functions only to patricular script(s). * Added support for glob symbols in blacklist entries (?, *, **). * Fixed bug #65338 (Enabling both php_opcache and php_wincache AVs on shutdown). Openssl: * Fixed handling null bytes in subjectAltName (CVE-2013-4248). PDO_mysql: * Fixed bug #65299 (pdo mysql parsing errors). Phar: * Fixed bug #65028 (Phar::buildFromDirectory creates corrupt archives for some specific contents). Pgsql: * Fixed bug #62978 (Disallow possible SQL injections with pg_select()/pg_update() /pg_delete()/pg_insert()). * Fixed bug #65336 (pg_escape_literal/identifier() silently returns false). Sessions: * Implemented strict sessions RFC (https://wiki.php.net/rfc/strict_sessions) which protects against session fixation attacks and session collisions (CVE-2011-4718). * Fixed possible buffer overflow under Windows. Note: Not a security fix. * Changed session.auto_start to PHP_INI_PERDIR. SOAP: * Fixed bug #65018 (SoapHeader problems with SoapServer). SPL: * Fixed bug #65328 (Segfault when getting SplStack object Value). * Added RecursiveTreeIterator setPostfix and getPostifx methods. * Fixed bug #61697 (spl_autoload_functions returns lambda functions incorrectly). Streams: * Fixed bug #65268 (select() implementation uses outdated tick API). -------------------------------------------------------------------------------- ChangeLog: * Wed Aug 21 2013 Remi Collet <rcollet@xxxxxxxxxx> - 5.5.3-1 - update to 5.5.3 * Mon Aug 19 2013 Remi Collet <rcollet@xxxxxxxxxx> - 5.5.2-1 - update to 5.5.2, fixes for CVE-2011-4718 + CVE-2013-4248 - improve system libzip patch -------------------------------------------------------------------------------- References: [ 1 ] Bug #996774 - CVE-2011-4718 php: session fixation vulnerability allows remote hijacking of sessions https://bugzilla.redhat.com/show_bug.cgi?id=996774 [ 2 ] Bug #997097 - CVE-2013-4248 php: hostname check bypassing vulnerability in SSL client https://bugzilla.redhat.com/show_bug.cgi?id=997097 -------------------------------------------------------------------------------- ================================================================================ psacct-6.6.1-6.fc19 (FEDORA-2013-15165) Utilities for monitoring process activities -------------------------------------------------------------------------------- Update Information: Unifying the default file locations across the acct tools. -------------------------------------------------------------------------------- ChangeLog: * Wed Aug 21 2013 Jaromir Capik <jcapik@xxxxxxxxxx> - 6.6.1-6 - Unifying the default file paths (#985150) * Wed Jul 31 2013 Jaromir Capik <jcapik@xxxxxxxxxx> - 6.6.1-5 - Dropping psacct-6.3.2-man-pages.patch - (Re)introducing modified dump-acct man page * Wed Jul 31 2013 Jaromir Capik <jcapik@xxxxxxxxxx> - 6.6.1-4 - RH man page scan (#948523) -------------------------------------------------------------------------------- References: [ 1 ] Bug #985150 - Use consistent location for the accounting file /var/account vs /var/log/account https://bugzilla.redhat.com/show_bug.cgi?id=985150 -------------------------------------------------------------------------------- ================================================================================ pygpgme-0.3-8.fc19 (FEDORA-2013-15185) Python module for working with OpenPGP messages -------------------------------------------------------------------------------- Update Information: - add ENCRYPT_NO_ENCRYPT_TO, pubkey_algo and hash_algo -------------------------------------------------------------------------------- ChangeLog: * Thu Aug 22 2013 Till Maas <opensource@xxxxxxxxx> - 0.3-8 - Add patches for ENCRYPT_NO_ENCRYPT_TO, pubkey_algo and hash_algo (#975815) * Sun Aug 4 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.3-7 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #975815 - ENCRYPT_NO_ENCRYPT_TO pubkey_algo and hash_algo missing https://bugzilla.redhat.com/show_bug.cgi?id=975815 -------------------------------------------------------------------------------- ================================================================================ python-2.7.5-4.fc19 (FEDORA-2013-15146) An interpreted, interactive, object-oriented programming language -------------------------------------------------------------------------------- Update Information: Fix for CVE-2013-4238 -------------------------------------------------------------------------------- ChangeLog: * Mon Aug 19 2013 Matej Stuchlik <mstuchli@xxxxxxxxxx> - 2.7.5-4 - Added fix for CVE-2013-4238 (rhbz#998430) -------------------------------------------------------------------------------- References: [ 1 ] Bug #996381 - CVE-2013-4238 python: hostname check bypassing vulnerability in SSL module https://bugzilla.redhat.com/show_bug.cgi?id=996381 -------------------------------------------------------------------------------- ================================================================================ python-Bottleneck-0.6.0-1.fc19 (FEDORA-2013-15162) Collection of fast NumPy array functions written in Cython -------------------------------------------------------------------------------- Update Information: python-Bottleneck is a collection of fast NumPy array functions written in Cython. -------------------------------------------------------------------------------- References: [ 1 ] Bug #999563 - Review Request: python-Bottleneck - Collection of fast NumPy array functions written in Cython https://bugzilla.redhat.com/show_bug.cgi?id=999563 -------------------------------------------------------------------------------- ================================================================================ python-pyroute2-0.1.11-1.fc19 (FEDORA-2013-15202) Pure Python netlink library -------------------------------------------------------------------------------- Update Information: IPRSocket objects added -------------------------------------------------------------------------------- ChangeLog: * Thu Aug 22 2013 Peter V. Saveliev <peet@xxxxxxxxxx> 0.1.11-1 - IPRSocket threadless objects - rtnl: tc filters improvements * Sun Aug 4 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.1.10-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ qemu-sanity-check-1.1.3-4.fc19 (FEDORA-2013-15189) Simple qemu and Linux kernel sanity checker -------------------------------------------------------------------------------- Update Information: New package. -------------------------------------------------------------------------------- References: [ 1 ] Bug #999108 - Review Request: qemu-sanity-check - Simple qemu and Linux kernel sanity checker https://bugzilla.redhat.com/show_bug.cgi?id=999108 -------------------------------------------------------------------------------- ================================================================================ rubygem-marc-0.6.0-1.fc19 (FEDORA-2013-15168) Ruby library for MARC catalog -------------------------------------------------------------------------------- Update Information: New version 0.6.0 is released. -------------------------------------------------------------------------------- ChangeLog: * Tue Aug 20 2013 Mamoru TASAKA <mtasaka@xxxxxxxxxxxxxxxxx> - 0.6.0-1 - 0.6.0 * Sun Aug 4 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.5.1-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ samba-4.0.9-1.fc19 (FEDORA-2013-15178) Server and Client software to interoperate with Windows machines -------------------------------------------------------------------------------- Update Information: Update to 4.0.9 -------------------------------------------------------------------------------- ChangeLog: * Tue Aug 20 2013 - Guenther Deschner <gdeschner@xxxxxxxxxx> 2:4.0.9-1 - Update to Samba 4.0.9 -------------------------------------------------------------------------------- ================================================================================ savanna-image-elements-0.3-0.2.88511begit.fc19 (FEDORA-2013-15163) Savanna diskimage-builder elements -------------------------------------------------------------------------------- Update Information: Diskimage-builder elements for Savanna -------------------------------------------------------------------------------- References: [ 1 ] Bug #998702 - Review Request: savanna-image-elements - Savanna diskimage-builder elements https://bugzilla.redhat.com/show_bug.cgi?id=998702 -------------------------------------------------------------------------------- ================================================================================ sddm-0.2.0-0.1.20130821gite707e229.fc19 (FEDORA-2013-15166) QML based X11 desktop manager -------------------------------------------------------------------------------- Update Information: Updated to the latest upstream release. Apologies to everybody who downloaded the previous update. It wasn't versioned right, we'll continue with this one. -------------------------------------------------------------------------------- ChangeLog: * Thu Aug 22 2013 Martin Briza <mbriza@xxxxxxxxxx> - 0.2.0-0.1.20130821gite707e229 - Fixed the package version * Wed Aug 21 2013 Martin Briza <mbriza@xxxxxxxxxx> - 0.2.0-0.130821.git.e707e229 - Imported the latest upstream git commit * Mon Aug 19 2013 Martin Briza <mbriza@xxxxxxxxxx> - 0.1.0-7 - Set the build to be hardened * Tue Aug 6 2013 Martin Briza <mbriza@xxxxxxxxxx> - 0.1.0-6 - Added mate-keyring to PAM config (#993397) -------------------------------------------------------------------------------- References: [ 1 ] Bug #993397 - missing mate-keyring pam authorization for MATE desktop https://bugzilla.redhat.com/show_bug.cgi?id=993397 [ 2 ] Bug #994161 - xsessionerror log won't be updated if using sddm https://bugzilla.redhat.com/show_bug.cgi?id=994161 [ 3 ] Bug #997187 - F19 SDDM Hangs when System Settings - Account Details Changed at session logoff https://bugzilla.redhat.com/show_bug.cgi?id=997187 -------------------------------------------------------------------------------- ================================================================================ setroubleshoot-plugins-3.0.58-2.fc19 (FEDORA-2013-15177) Analysis plugins for use with setroubleshoot -------------------------------------------------------------------------------- Update Information: - Update Translations - Add restorecon_source plugin, to check the source program is labeled correclty. - Fix restorecon.py to handle customized_files properly. - Fix debug message in sandbox-connect plugin -------------------------------------------------------------------------------- ChangeLog: * Thu Aug 22 2013 Dan Walsh <dwalsh@xxxxxxxxxx> - 3.0.58-2 - Remove change to pkgdoc * Thu Aug 22 2013 Dan Walsh <dwalsh@xxxxxxxxxx> - 3.0.58-1 - Update Translations * Fri Aug 16 2013 Dan Walsh <dwalsh@xxxxxxxxxx> - 3.0.57-1 - Add restorecon_source plugin, to check the source program is labeled correclty. - Fix restorecon.py to handle customized_files properly. - Update Translations * Sun Jul 21 2013 Dan Walsh <dwalsh@xxxxxxxxxx> - 3.0.55-1 - Fix debug message in sandbox-connect plugin - Update Translations -------------------------------------------------------------------------------- ================================================================================ system-config-printer-1.4.2-1.fc19 (FEDORA-2013-15201) A printer administration tool -------------------------------------------------------------------------------- Update Information: New upstream release, fixing several bugs and updating translations. -------------------------------------------------------------------------------- ChangeLog: * Tue Aug 20 2013 Tim Waugh <twaugh@xxxxxxxxxx> 1.4.2-1 - 1.4.2. * Sun Aug 4 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.4.1-10 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild * Thu Jul 4 2013 Tim Waugh <twaugh@xxxxxxxxxx> 1.4.1-9 - Fixed source URL. -------------------------------------------------------------------------------- References: [ 1 ] Bug #953878 - "Print Settings" - Name of dialogue box in English https://bugzilla.redhat.com/show_bug.cgi?id=953878 [ 2 ] Bug #957733 - s-c-printer will allow you to add a Samba printer even when samba-client is not installed, will only fail after the long, tedious process is complete https://bugzilla.redhat.com/show_bug.cgi?id=957733 [ 3 ] Bug #981873 - [abrt] system-config-printer-1.4.1-7.fc19: types.py:113:function:TypeError: foreach() takes exactly 3 arguments (2 given) https://bugzilla.redhat.com/show_bug.cgi?id=981873 [ 4 ] Bug #984284 - [abrt] system-config-printer-1.4.1-7.fc19: newprinter.py:2522:entry_changed:UnicodeDecodeError: 'ascii' codec can't decode byte 0xaa in position 52: ordinal not in range(128) https://bugzilla.redhat.com/show_bug.cgi?id=984284 [ 5 ] Bug #986939 - [abrt] system-config-printer-libs-1.4.1-7.fc19: urllib.py:1142:splitnport:TypeError: expected string or buffer https://bugzilla.redhat.com/show_bug.cgi?id=986939 [ 6 ] Bug #989050 - [abrt] system-config-printer-1.4.1-8.fc19: errordialogs.py:55:show_IPP_Error:UnicodeDecodeError: 'ascii' codec can't decode byte 0xc3 in position 4: ordinal not in range(128) https://bugzilla.redhat.com/show_bug.cgi?id=989050 [ 7 ] Bug #989096 - [abrt] system-config-printer-libs-1.4.1-8.fc19: jobviewer.py:692:toggle_window_display:AttributeError: 'gtk.gdk.X11Window' object has no attribute 'property_change' https://bugzilla.redhat.com/show_bug.cgi?id=989096 [ 8 ] Bug #994506 - [abrt] system-config-printer-1.4.1-8.fc19: types.py:113:function:TypeError: Argument 0 does not allow None as a value https://bugzilla.redhat.com/show_bug.cgi?id=994506 [ 9 ] Bug #998277 - [abrt] system-config-printer-libs-1.4.1-8.fc19: jobviewer.py:999:display_auth_info_dialog:KeyError: 'auth-info-required' https://bugzilla.redhat.com/show_bug.cgi?id=998277 -------------------------------------------------------------------------------- ================================================================================ tudu-0.9-1.fc19 (FEDORA-2013-15171) A simple, command line interface to do list application -------------------------------------------------------------------------------- Update Information: * Adding support for double-with characters and fixing some bugs. -------------------------------------------------------------------------------- ChangeLog: * Wed Aug 21 2013 Eric "Sparks" Christensen <sparks@xxxxxxxxxxxxxxxxx> - 0.9-1 - Updated to version 0.9 - Adding support for double-with characters and fixing some bugs. * Sun Aug 4 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.8.2-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ unetbootin-0-15.585bzr.fc19 (FEDORA-2013-15192) Create bootable Live USB drives for a variety of Linux distributions -------------------------------------------------------------------------------- Update Information: Update to 585. -------------------------------------------------------------------------------- ChangeLog: * Thu Aug 22 2013 Susi Lehtola <jussilehtola@xxxxxxxxxxxxxxxxx> - 0-15.585bzr - Update to 585. * Sun Aug 4 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0-14.581bzr - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ xemacs-21.5.34-1.fc19 (FEDORA-2013-15183) Different version of Emacs -------------------------------------------------------------------------------- Update Information: See http://www.xemacs.org/Releases/21.5.34.html for the bug fixes and new features in this release. -------------------------------------------------------------------------------- ChangeLog: * Thu Aug 22 2013 Jerry James <loganjerry@xxxxxxxxx> - 21.5.34-1 - New upstream version - Drop upstreamed -menubar, -aarch64, and -texinfo patches - Drop unnecessary sed BR * Sun Aug 4 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 21.5.33-7 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild * Wed Jun 19 2013 Jerry James <loganjerry@xxxxxxxxx> - 21.5.33-6 - Rebuild for libpng 1.6 -------------------------------------------------------------------------------- -- test mailing list test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe: https://admin.fedoraproject.org/mailman/listinfo/test
