Fedora 20 updates-testing report

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



The following Fedora 20 Security updates need testing:
 Age  URL
   6  https://admin.fedoraproject.org/updates/FEDORA-2013-17171/hplip-3.13.9-2.fc20
   4  https://admin.fedoraproject.org/updates/FEDORA-2013-17338/seamonkey-2.21-1.fc20
   3  https://admin.fedoraproject.org/updates/FEDORA-2013-17398/xpdf-3.03-8.fc20
   2  https://admin.fedoraproject.org/updates/FEDORA-2013-17413/ReviewBoard-1.7.14-1.fc20,python-djblets-0.7.18-1.fc20
   1  https://admin.fedoraproject.org/updates/FEDORA-2013-17506/libvirt-1.1.2-3.fc20
   0  https://admin.fedoraproject.org/updates/FEDORA-2013-17603/rubygems-2.0.10-106.fc20
   0  https://admin.fedoraproject.org/updates/FEDORA-2013-17627/wireshark-1.10.2-7.fc20


The following Fedora 20 Critical Path updates have yet to be approved:
 Age URL
  12  https://admin.fedoraproject.org/updates/FEDORA-2013-16638/libndp-1.0-2.fc20
   8  https://admin.fedoraproject.org/updates/FEDORA-2013-16940/device-mapper-persistent-data-0.2.7-1.fc20
   8  https://admin.fedoraproject.org/updates/FEDORA-2013-16949/langtable-0.0.15-1.fc20
   7  https://admin.fedoraproject.org/updates/FEDORA-2013-17086/btrfs-progs-0.20.rc1.20130917git194aa4a-1.fc20
   7  https://admin.fedoraproject.org/updates/FEDORA-2013-17082/perl-parent-0.228-1.fc20
   6  https://admin.fedoraproject.org/updates/FEDORA-2013-17159/libproxy-0.4.11-7.fc20
   5  https://admin.fedoraproject.org/updates/FEDORA-2013-17244/thunderbird-24.0-2.fc20
   3  https://admin.fedoraproject.org/updates/FEDORA-2013-17385/kde-settings-20-3.fc20.1
   2  https://admin.fedoraproject.org/updates/FEDORA-2013-17442/keyutils-1.5.6-2.fc20
   2  https://admin.fedoraproject.org/updates/FEDORA-2013-17496/libselinux-2.1.13-19.fc20
   2  https://admin.fedoraproject.org/updates/FEDORA-2013-17486/rootfiles-8.1-14.fc20
   2  https://admin.fedoraproject.org/updates/FEDORA-2013-17410/rygel-0.19.7-1.fc20
   1  https://admin.fedoraproject.org/updates/FEDORA-2013-17582/PackageKit-0.8.11-2.fc20
   0  https://admin.fedoraproject.org/updates/FEDORA-2013-17672/cronie-1.4.11-4.fc20
   0  https://admin.fedoraproject.org/updates/FEDORA-2013-17639/policycoreutils-2.1.14-81.fc20
   0  https://admin.fedoraproject.org/updates/FEDORA-2013-17645/empathy-3.10.0-1.fc20,telepathy-glib-0.21.2-1.fc20
   0  https://admin.fedoraproject.org/updates/FEDORA-2013-17667/gstreamer1-plugins-bad-free-1.2.0-1.fc20,gstreamer1-plugins-good-1.2.0-1.fc20,gstreamer1-plugins-base-1.2.0-1.fc20,gstreamer1-1.2.0-1.fc20


The following builds have been pushed to Fedora 20 updates-testing

    cronie-1.4.11-4.fc20
    empathy-3.10.0-1.fc20
    fail2ban-0.9-0.3.git1f1a561.fc20
    git-cola-1.8.5-1.fc20
    gpaste-3.5-1.fc20
    graphite-web-0.9.12-3.fc20
    gstreamer1-1.2.0-1.fc20
    gstreamer1-plugins-bad-free-1.2.0-1.fc20
    gstreamer1-plugins-base-1.2.0-1.fc20
    gstreamer1-plugins-good-1.2.0-1.fc20
    hawtjni-1.9-1.fc20
    imagefactory-plugins-1.1.3-2.fc20
    jetring-0.20-3.fc20
    keyrings-filesystem-1-1.fc20
    libuv-0.10.17-1.fc20
    libvirt-1.1.2-4.fc20
    mfiler4-1.2.6-1.fc20
    mod_cluster-1.2.6-1.fc20
    mongo-java-driver-2.11.3-1.fc20
    munin-2.0.17-6.fc20
    nemo-extensions-1.8.0-0.3.git3e366de.fc20
    nodejs-0.10.19-1.fc20
    opensips-1.10.0-1.fc20
    openstack-packstack-2013.2.1-0.10.dev763.fc20
    perl-Pod-Spell-1.08-1.fc20
    perl-YAML-Tiny-1.56-1.fc20
    policycoreutils-2.1.14-81.fc20
    pspp-0.8.1-1.fc20
    python-apsw-3.8.0.r2-2.fc20
    python-bucky-0.2.6-3.fc20
    python-carbon-0.9.12-2.fc20
    python-flask-script-0.6.2-1.fc20
    python-llvmpy-0.12.0-7.fc20
    qemu-1.6.0-8.fc20
    qt5-qtbase-5.1.1-5.fc20
    qt5-qtquickcontrols-5.1.1-2.fc20
    qt5-qtwayland-5.1.0-0.1.20130826git3b0b90b.fc20
    rubygems-2.0.10-106.fc20
    telepathy-glib-0.21.2-1.fc20
    virt-manager-0.10.0-3.gita2e52067.fc20
    vpnc-0.5.3-19.svn457.fc20
    wireshark-1.10.2-7.fc20
    xyzsh-1.5.1-1.fc20
    yum-langpacks-0.4.1-2.fc20

Details about builds:


================================================================================
 cronie-1.4.11-4.fc20 (FEDORA-2013-17672)
 Cron daemon for executing programs at set times
--------------------------------------------------------------------------------
Update Information:

Cron jobs sometimes don't run e.g. when environment is using XDG_RUNTIME_DIR.

Cron daemon unit file should use KillMode=process to kill dependent processes.
--------------------------------------------------------------------------------
ChangeLog:

* Wed Sep 25 2013 Marcela Mašláňová <mmaslano@xxxxxxxxxx> - 1.4.11-4
- some jobs are not executed because not all environment variables are set 995590
- cronie's systemd script use "KillMode=process" 919290
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #919290 - should cronie's systemd script use "KillMode=process"?
        https://bugzilla.redhat.com/show_bug.cgi?id=919290
  [ 2 ] Bug #995590 - Cron job runs, but doesn't do anything
        https://bugzilla.redhat.com/show_bug.cgi?id=995590
--------------------------------------------------------------------------------


================================================================================
 empathy-3.10.0-1.fc20 (FEDORA-2013-17645)
 Instant Messaging Client for GNOME
--------------------------------------------------------------------------------
Update Information:

Stable releases. For changes, please refer to:

http://lists.freedesktop.org/archives/telepathy/2013-September/006505.html

http://lists.freedesktop.org/archives/telepathy/2013-September/006504.html
--------------------------------------------------------------------------------
ChangeLog:

* Tue Sep 24 2013 Brian Pepple <bpepple@xxxxxxxxxxxxxxxxx> - 3.10.0-1
- Update to 3.10.0.
--------------------------------------------------------------------------------


================================================================================
 fail2ban-0.9-0.3.git1f1a561.fc20 (FEDORA-2013-17620)
 Ban IPs that make too many password failures
--------------------------------------------------------------------------------
Update Information:

Update to current 0.9 git branch.  Better systemd journal support.
--------------------------------------------------------------------------------
ChangeLog:

* Tue Sep 24 2013 Orion Poplawski <orion@xxxxxxxxxxxxx> - 0.9-0.3.git1f1a561
- Update to current 0.9 git branch
- Rebase init patch, drop jail.d and notmp patch applied upstream
--------------------------------------------------------------------------------


================================================================================
 git-cola-1.8.5-1.fc20 (FEDORA-2013-17648)
 A sleek and powerful git GUI
--------------------------------------------------------------------------------
Update Information:

Let's terminate bugs.
--------------------------------------------------------------------------------
ChangeLog:

* Wed Sep 25 2013 Christopher Meng <rpm@xxxxxxxx> - 1.8.5-1
- Update to 1.8.5(BZ#1011796) with fix for BZ#886826.
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1011796 - git-cola-1.8.5 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=1011796
  [ 2 ] Bug #886826 - [abrt] git-cola-1.8.0-1.fc18: decorators.py:84:interruptable:OSError: [Errno 2] No such file or directory
        https://bugzilla.redhat.com/show_bug.cgi?id=886826
--------------------------------------------------------------------------------


================================================================================
 gpaste-3.5-1.fc20 (FEDORA-2013-17637)
 Clipboard management system
--------------------------------------------------------------------------------
Update Information:

* Compatibility with gnome-shell 3.9.90 and above
* The gnome-shell applet has totally been rewritten and is now more intuitive.
* Port to newer glib
* Don’t use deprecated stuff from gtk+
* The X11 keybinder is now optional
* New keybinding to sync the clipboard to the primary selection
* New keybinding to sync the primary selection to the clipboard

--------------------------------------------------------------------------------
ChangeLog:

* Wed Sep 25 2013 Mohamed El Morabity <pikachu.2014@xxxxxxxxx> - 3.5-1
- Update to 3.5
* Mon Sep 23 2013 Mohamed El Morabity <melmorabity@xxxxxxxxxxxxxxxxx> - 3.5-0.2.20130922gitf124a2f
- Update to a newer snapshot
* Wed Sep 18 2013 Mohamed El Morabity <melmorabity@xxxxxxxxxxxxxxxxx> - 3.5-0.1.20130918git6ab4033
- Update to a newer snapshot
--------------------------------------------------------------------------------


================================================================================
 graphite-web-0.9.12-3.fc20 (FEDORA-2013-17630)
 A Django webapp for enterprise scalable realtime graphing
--------------------------------------------------------------------------------
Update Information:

Tested against ami-05355a6c.
Don't ship js/ext/resources/*.swf (RHBZ#1000253)
Don't ship js/ext/resources/*.swf (RHBZ#1000253)
Don't ship js/ext/resources/*.swf (RHBZ#1000253)
Don't ship js/ext/resources/*.swf (RHBZ#1000253)
--------------------------------------------------------------------------------
ChangeLog:

* Tue Sep 24 2013 Jonathan Steffan <jsteffan@xxxxxxxxxxxxxxxxx> - 0.9.12-3
- Reorder Requires conditionals to fix amzn1 issues (RHBZ#1007300)
- Ensure python-whisper is also updated
* Tue Sep 17 2013 Jonathan Steffan <jsteffan@xxxxxxxxxxxxxxxxx> - 0.9.12-2
- Don't ship js/ext/resources/*.swf (RHBZ#1000253)
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1007300 - Installation on AWS (CentOS) fails
        https://bugzilla.redhat.com/show_bug.cgi?id=1007300
  [ 2 ] Bug #1000253 - graphite-web contains bundled Flash files
        https://bugzilla.redhat.com/show_bug.cgi?id=1000253
--------------------------------------------------------------------------------


================================================================================
 gstreamer1-1.2.0-1.fc20 (FEDORA-2013-17667)
 GStreamer streaming media framework runtime
--------------------------------------------------------------------------------
Update Information:

Latest stable release. For list of changes please refer to:

http://lists.freedesktop.org/archives/gstreamer-announce/2013-September/000294.html
--------------------------------------------------------------------------------
ChangeLog:

* Tue Sep 24 2013 Brian Pepple <bpepple@xxxxxxxxxxxxxxxxx> - 1.2.0-1
- Update to 1.2.0.
--------------------------------------------------------------------------------


================================================================================
 gstreamer1-plugins-bad-free-1.2.0-1.fc20 (FEDORA-2013-17667)
 GStreamer streaming media framework "bad" plugins
--------------------------------------------------------------------------------
Update Information:

Latest stable release. For list of changes please refer to:

http://lists.freedesktop.org/archives/gstreamer-announce/2013-September/000294.html
--------------------------------------------------------------------------------
ChangeLog:

* Tue Sep 24 2013 Brian Pepple <bpepple@xxxxxxxxxxxxxxxxx> - 1.2.0-1
- Update to 1.2.0.
--------------------------------------------------------------------------------


================================================================================
 gstreamer1-plugins-base-1.2.0-1.fc20 (FEDORA-2013-17667)
 GStreamer streaming media framework base plugins
--------------------------------------------------------------------------------
Update Information:

Latest stable release. For list of changes please refer to:

http://lists.freedesktop.org/archives/gstreamer-announce/2013-September/000294.html
--------------------------------------------------------------------------------
ChangeLog:

* Tue Sep 24 2013 Brian Pepple <bpepple@xxxxxxxxxxxxxxxxx> - 1.2.0-1
- Update to 1.2.0.
--------------------------------------------------------------------------------


================================================================================
 gstreamer1-plugins-good-1.2.0-1.fc20 (FEDORA-2013-17667)
 GStreamer plugins with good code and licensing
--------------------------------------------------------------------------------
Update Information:

Latest stable release. For list of changes please refer to:

http://lists.freedesktop.org/archives/gstreamer-announce/2013-September/000294.html
--------------------------------------------------------------------------------
ChangeLog:

* Tue Sep 24 2013 Brian Pepple <bpepple@xxxxxxxxxxxxxxxxx> - 1.2.0-1
- Update to 1.2.0.
--------------------------------------------------------------------------------


================================================================================
 hawtjni-1.9-1.fc20 (FEDORA-2013-17602)
 Code generator that produces the JNI code
--------------------------------------------------------------------------------
Update Information:

Upstream release 1.9
--------------------------------------------------------------------------------
ChangeLog:

* Wed Sep 18 2013 Marek Goldmann <mgoldman@xxxxxxxxxx> - 1.9-1
- Upstream release 1.9
- hawtjni: missing barriers in cache initialization, RHBZ#957181
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #957181 - hawtjni: missing barriers in cache initialization
        https://bugzilla.redhat.com/show_bug.cgi?id=957181
--------------------------------------------------------------------------------


================================================================================
 imagefactory-plugins-1.1.3-2.fc20 (FEDORA-2013-17612)
 Default plugins for the Image Factory system image generation tool
--------------------------------------------------------------------------------
Update Information:

Allows for TinMan builds to be aborted if they fail.  Without this feature, TinMan can leak VMs.
--------------------------------------------------------------------------------
ChangeLog:

--------------------------------------------------------------------------------


================================================================================
 jetring-0.20-3.fc20 (FEDORA-2013-17605)
 GPG keyring maintenance using changesets
--------------------------------------------------------------------------------
Update Information:

Initial package.
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1009996 - Review Request: jetring - GPG keyring maintenance using changesets
        https://bugzilla.redhat.com/show_bug.cgi?id=1009996
--------------------------------------------------------------------------------


================================================================================
 keyrings-filesystem-1-1.fc20 (FEDORA-2013-17646)
 Keyrings filesystem layout
--------------------------------------------------------------------------------
Update Information:

Initial package.
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1010857 - Review Request: keyrings-filesystem - Keyrings filesystem layout
        https://bugzilla.redhat.com/show_bug.cgi?id=1010857
--------------------------------------------------------------------------------


================================================================================
 libuv-0.10.17-1.fc20 (FEDORA-2013-17647)
 Platform layer for node.js
--------------------------------------------------------------------------------
Update Information:

2013.09.24, node.js Version 0.10.19 (Stable)

* readline: handle input starting with control chars (Eric Schrock)

* configure: add mips-float-abi (soft, hard) option (Andrei Sedoi)

* stream: objectMode transforms allow falsey values (isaacs)

* tls: prevent duplicate values returned from read (Nathan Rajlich)

* tls: NPN protocols are now local to connections (Fedor Indutny)

2013.09.25, libuv Version 0.10.17 (Stable)

* build: remove GCC_WARN_ABOUT_MISSING_NEWLINE (Ben Noordhuis)

* darwin: fix 10.6 build error in fsevents.c (Ben Noordhuis)
--------------------------------------------------------------------------------
ChangeLog:

* Wed Sep 25 2013 T.C. Hollingsworth <tchollingsworth@xxxxxxxxx> - 1:0.10.17-1
- new upstream release 0.10.17
  https://github.com/joyent/libuv/blob/v0.10.17/ChangeLog
--------------------------------------------------------------------------------


================================================================================
 libvirt-1.1.2-4.fc20 (FEDORA-2013-17595)
 Library providing a simple virtualization API
--------------------------------------------------------------------------------
Update Information:

* Fix snapshot restore when VM has disabled usb support (bz #1011520)
--------------------------------------------------------------------------------
ChangeLog:

* Tue Sep 24 2013 Cole Robinson <crobinso@xxxxxxxxxx> - 1.1.2-4
- Fix snapshot restore when VM has disabled usb support (bz #1011520)
* Mon Sep 23 2013 Cole Robinson <crobinso@xxxxxxxxxx> - 1.1.2-3
- Sync with v1.1.2-maint
- Rebuild for libswan soname bump (bz #1009701)
- CVE-2013-4311: Insecure polkit usage (bz #1009539, bz #1005332)
- CVE-2013-4296: Invalid free memory stats (bz #1006173, bz #1009667)
- CVE-2013-4297: Invalid free in NBDDeviceAssociate (bz #1006505, bz #1006511)
- Fix virsh block-commit abort (bz #1010056)
* Wed Sep 18 2013 Daniel P. Berrange <berrange@xxxxxxxxxx> - 1.1.2-2
- Rebuild for soname break in openswman package
--------------------------------------------------------------------------------


================================================================================
 mfiler4-1.2.6-1.fc20 (FEDORA-2013-17622)
 2 pane file manager with a embedded shell
--------------------------------------------------------------------------------
Update Information:

New version 1.2.6 is released.
--------------------------------------------------------------------------------
ChangeLog:

* Wed Sep 25 2013 Mamoru TASAKA <mtasaka@xxxxxxxxxxxxxxxxx> - 1.2.6-1
- 1.2.6
--------------------------------------------------------------------------------


================================================================================
 mod_cluster-1.2.6-1.fc20 (FEDORA-2013-17671)
 Apache HTTP load balancer
--------------------------------------------------------------------------------
Update Information:

Upstream release 1.2.6.Final + apache 2.2/2.4 compatibility.
--------------------------------------------------------------------------------
ChangeLog:

* Wed Sep 25 2013 Marek Goldmann <mgoldman@xxxxxxxxxx> - 1.2.6-1
- Upstream release 1.2.6.Final
- Support for Apache 2.4 in mod_cluster.conf
--------------------------------------------------------------------------------


================================================================================
 mongo-java-driver-2.11.3-1.fc20 (FEDORA-2013-17668)
 A Java driver for MongoDB
--------------------------------------------------------------------------------
Update Information:

Update to latest upstream release.
--------------------------------------------------------------------------------
ChangeLog:

* Tue Sep 24 2013 Severin Gehwolf <sgehwolf@xxxxxxxxxx> - 2.11.3-1
- Update to latest upstream release.
* Thu Sep  5 2013 Omair Majid <omajid@xxxxxxxxxx> - 2.11.2-2
- Do not require -bson subpackage. The classes are present in both jars.
--------------------------------------------------------------------------------


================================================================================
 munin-2.0.17-6.fc20 (FEDORA-2013-17665)
 Network-wide graphing framework (grapher/gatherer)
--------------------------------------------------------------------------------
Update Information:

BZ# 989080 Add a missing requirement on crontabs to spec file
BZ# 993985: munin possibly affected by F-20 unversioned docdir change
Move Net::IP plugins to a subpackage for dep handling
--------------------------------------------------------------------------------
ChangeLog:

* Tue Sep 24 2013 D. Johnson <fenris02@xxxxxxxxxxxxxxxxx> - 2.0.17-6
- Move Net::IP plugins to a subpackage for dep handling
* Fri Aug 16 2013 D. Johnson <fenris02@xxxxxxxxxxxxxxxxx> - 2.0.17-5
- BZ# 993985: munin possibly affected by F-20 unversioned docdir change
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #989080 - Add a missing requirement on crontabs for the cron job to the spec file
        https://bugzilla.redhat.com/show_bug.cgi?id=989080
  [ 2 ] Bug #993985 - munin possibly affected by F-20 unversioned docdir change
        https://bugzilla.redhat.com/show_bug.cgi?id=993985
--------------------------------------------------------------------------------


================================================================================
 nemo-extensions-1.8.0-0.3.git3e366de.fc20 (FEDORA-2013-17644)
 Extensions for Nemo
--------------------------------------------------------------------------------
Update Information:

new
--------------------------------------------------------------------------------


================================================================================
 nodejs-0.10.19-1.fc20 (FEDORA-2013-17647)
 JavaScript runtime
--------------------------------------------------------------------------------
Update Information:

2013.09.24, node.js Version 0.10.19 (Stable)

* readline: handle input starting with control chars (Eric Schrock)

* configure: add mips-float-abi (soft, hard) option (Andrei Sedoi)

* stream: objectMode transforms allow falsey values (isaacs)

* tls: prevent duplicate values returned from read (Nathan Rajlich)

* tls: NPN protocols are now local to connections (Fedor Indutny)

2013.09.25, libuv Version 0.10.17 (Stable)

* build: remove GCC_WARN_ABOUT_MISSING_NEWLINE (Ben Noordhuis)

* darwin: fix 10.6 build error in fsevents.c (Ben Noordhuis)
--------------------------------------------------------------------------------
ChangeLog:

* Wed Sep 25 2013 T.C. Hollingsworth <tchollingsworth@xxxxxxxxx> - 0.10.19-1
- new upstream release 0.10.19
  http://blog.nodejs.org/2013/09/24/node-v0-10-19-stable/
--------------------------------------------------------------------------------


================================================================================
 opensips-1.10.0-1.fc20 (FEDORA-2013-17604)
 Open Source SIP Server
--------------------------------------------------------------------------------
Update Information:

- Ver. 1.10.0
 - Drop support for Fedora 17 and earlier (still maintain support for EL5)
 - New external module - rest_client
 - New external module - xmlrpc_ng (contains mi_xmlrpc_ng)
 - New internal module - db_cachedb
 - New internal module - mathops
 - Disabled new external module - sngtc (requires a proprietary library)
--------------------------------------------------------------------------------
ChangeLog:

* Wed Sep 25 2013 Peter Lemenkov <lemenkov@xxxxxxxxx> - 1.10.0-1
- Ver. 1.10.0
- Drop support for Fedora 17 and earlier (still maintain support for EL5)
- New external module - rest_client
- New external module - xmlrpc_ng (contains mi_xmlrpc_ng)
- New internal module - db_cachedb
- New internal module - mathops
- Disabled new external module - sngtc (requires a proprietary library)
* Fri Sep  6 2013 Peter Lemenkov <lemenkov@xxxxxxxxx> - 1.9.1-2
- Proper directory for storing tmpfile
--------------------------------------------------------------------------------


================================================================================
 openstack-packstack-2013.2.1-0.10.dev763.fc20 (FEDORA-2013-17601)
 Openstack Install Utility
--------------------------------------------------------------------------------
Update Information:

Adds db_sync for Heat installation
Fix for puppet-ceilometer python-pymongo issue
This update contains two Cinder plugin fixes
Ceilometer and Heat support added!
Fix for Nova plugin
--------------------------------------------------------------------------------
ChangeLog:

* Tue Sep 24 2013 Martin Mágr <mmagr@xxxxxxxxxx> - 2013.2.1-0.10.dev763
- Adds "default-storage-engine=InnoDB" to /etc/my.cnf (#980593)
- Accepts more CLI options (#985361)
- Added GRE support (#1004397)
* Mon Sep  9 2013 Martin Mágr <mmagr@xxxxxxxxxx> - 2013.2.1-0.9.dev756
- Use python-pymongo for EL distros too (#1006401)
* Mon Sep  9 2013 Martin Mágr <mmagr@xxxxxxxxxx> - 2013.2.1-0.8.dev754
- Fixed KeyErrors in case VlanManager is not used (#1006214)
* Mon Sep  9 2013 Martin Mágr <mmagr@xxxxxxxxxx> - 2013.2.1-0.7.dev752
- Cinder fixes
* Mon Sep  9 2013 Martin Mágr <mmagr@xxxxxxxxxx> - 2013.2.1-0.6.dev749
- Added posibility to change Nova network manager (#915365)
- Support for Ceilometer installation (#967310)
- Support for Heat installation (#967309)
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1007497 - Openstack Installer: packstack does not create tables in Heat db.
        https://bugzilla.redhat.com/show_bug.cgi?id=1007497
  [ 2 ] Bug #1006401 - explicit check for pymongo is incorrect
        https://bugzilla.redhat.com/show_bug.cgi?id=1006401
  [ 3 ] Bug #1006214 - Openstack Installer: packstack fails to install allinone, ERROR : 'CONFIG_NOVA_NETWORK_VLAN_START'
        https://bugzilla.redhat.com/show_bug.cgi?id=1006214
--------------------------------------------------------------------------------


================================================================================
 perl-Pod-Spell-1.08-1.fc20 (FEDORA-2013-17657)
 A formatter for spell-checking POD
--------------------------------------------------------------------------------
Update Information:

Update to the latest build
Update to the latest version
--------------------------------------------------------------------------------
ChangeLog:

* Wed Sep 25 2013 Jitka Plesnikova <jplesnik@xxxxxxxxxx> - 1.08-1
- 1.08 bump
* Fri Sep 20 2013 Jitka Plesnikova <jplesnik@xxxxxxxxxx> - 1.07-1
- 1.07 bump
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1011814 - perl-Pod-Spell-1.08 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=1011814
  [ 2 ] Bug #1008407 - perl-Pod-Spell-1.07 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=1008407
--------------------------------------------------------------------------------


================================================================================
 perl-YAML-Tiny-1.56-1.fc20 (FEDORA-2013-17643)
 Read/Write YAML files with as little code as possible
--------------------------------------------------------------------------------
Update Information:

Current upstream maintenance release.
--------------------------------------------------------------------------------
ChangeLog:

* Wed Sep 25 2013 Paul Howarth <paul@xxxxxxxxxxxx> 1.56-1
- Update to 1.56
  - read_string documentation error fixed (CPAN RT#74409)
  - Re-release with fixed compile test
- Go back to Module::Build::Tiny flow
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1011816 - perl-YAML-Tiny-1.56 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=1011816
--------------------------------------------------------------------------------


================================================================================
 policycoreutils-2.1.14-81.fc20 (FEDORA-2013-17639)
 SELinux policy core utilities
--------------------------------------------------------------------------------
Update Information:

- Add back in the help png files
- Begin Adding support for file equivalency.
- Random fixes for sepolicy gui
  * Do not prompt for password until you make a change
  * Add user mappings and selinux users page
  * lots of code cleanup
- Verify homedir is owned by user before mounting over it with seunshare
- Fix fixfiles to handle Relabel properly
- Fix semanage fcontext -e / command to allow "/"
- Add Miroslav Grepl setsebool patch to give better error message on bad boolean names
- Additional help screens for sepolicy gui

--------------------------------------------------------------------------------
ChangeLog:

* Wed Sep 18 2013 Dan Walsh <dwalsh@xxxxxxxxxx> - 2.1.14-81
- Add back in the help png files
- Begin Adding support for file equivalency.
* Wed Sep  4 2013 Dan Walsh <dwalsh@xxxxxxxxxx> - 2.1.14-80
- Random fixes for sepolicy gui
  * Do not prompt for password until you make a change
  * Add user mappings and selinux users page
  * lots of code cleanup

- Verify homedir is owned by user before mounting over it with seunshare
- Fix fixfiles to handle Relabel properly
- Fix semanage fcontext -e / command to allow "/"
* Wed Sep  4 2013 Dan Walsh <dwalsh@xxxxxxxxxx> - 2.1.14-79
- Add Miroslav Grepl setsebool patch to give better error message on bad boolean names
- Additional help screens for sepolicy gui
--------------------------------------------------------------------------------


================================================================================
 pspp-0.8.1-1.fc20 (FEDORA-2013-17651)
 A program for statistical analysis of sampled data
--------------------------------------------------------------------------------
Update Information:

* Ver. 0.8.1
--------------------------------------------------------------------------------
ChangeLog:

* Tue Sep 24 2013 Peter Lemenkov <lemenkov@xxxxxxxxx> - 0.8.1-1
- Ver. 0.8.1
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1011394 - pspp-0.8.1 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=1011394
--------------------------------------------------------------------------------


================================================================================
 python-apsw-3.8.0.r2-2.fc20 (FEDORA-2013-17642)
 Another Python SQLite Wrapper
--------------------------------------------------------------------------------
Update Information:

update to 3.8.0.r2
--------------------------------------------------------------------------------
ChangeLog:

* Tue Sep 24 2013 Marcel Wysocki <maci@xxxxxxxxxx> - 3.8.0.r2-1
- update to 3.8.0-r2
--------------------------------------------------------------------------------


================================================================================
 python-bucky-0.2.6-3.fc20 (FEDORA-2013-17616)
 CollectD and StatsD adapter for Graphite
--------------------------------------------------------------------------------
Update Information:

Update requires (RHBZ#953834), adding python-setuptools
Add dependency on collectd and update to 0.2.6.
Update to 0.2.6.
Update to 0.2.6.
Update to 0.2.6.
Update to 0.2.6.
Update to 0.2.6.
Add dependency on collectd and update to 0.2.6.
Update to 0.2.6.
Update to 0.2.6.
Update to 0.2.6.
Update to 0.2.6.
Update to 0.2.6.
Add dependency on collectd and update to 0.2.6.
Update to 0.2.6.
Update to 0.2.6.
Update to 0.2.6.
Update to 0.2.6.
Update to 0.2.6.
Add dependency on collectd and update to 0.2.6.
Update to 0.2.6.
Update to 0.2.6.
Update to 0.2.6.
Update to 0.2.6.
Update to 0.2.6.
Add dependency on collectd and update to 0.2.6.
Update to 0.2.6.
Update to 0.2.6.
Update to 0.2.6.
Update to 0.2.6.
Update to 0.2.6.
--------------------------------------------------------------------------------
ChangeLog:

* Tue Sep 24 2013 Jonathan Steffan <jsteffan@xxxxxxxxxxxxxxxxx> - 0.2.6-3
- Update requires (RHBZ#953834), adding python-setuptools
* Thu Sep 19 2013 Jonathan Steffan <jsteffan@xxxxxxxxxxxxxxxxx> - 0.2.6-2
- Update requires (RHBZ#953834)
* Tue Sep 17 2013 Jonathan Steffan <jsteffan@xxxxxxxxxxxxxxxxx> - 0.2.6-1
- Update to 0.2.6
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #953834 - missing dependencies python-setuptools collectd
        https://bugzilla.redhat.com/show_bug.cgi?id=953834
--------------------------------------------------------------------------------


================================================================================
 python-carbon-0.9.12-2.fc20 (FEDORA-2013-17658)
 Back-end data caching and persistence daemon for Graphite
--------------------------------------------------------------------------------
Update Information:

Add strict python-whisper Requires (RHBZ#1010432), Don't cleanup user and user data on package remove (RHBZ#1010430)
--------------------------------------------------------------------------------
ChangeLog:

* Tue Sep 24 2013 Jonathan Steffan <jsteffan@xxxxxxxxxxxxxxxxx> - 0.9.12-2
- Add strict python-whisper Requires (RHBZ#1010432)
- Don't cleanup user and user data on package remove (RHBZ#1010430)
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1010432 - python-carbon-0.9.12 should require python-whisper >= 0.9.12
        https://bugzilla.redhat.com/show_bug.cgi?id=1010432
  [ 2 ] Bug #1010430 - python-carbon deletes user-created data on uninstall; shouldn't per packaging guidelines
        https://bugzilla.redhat.com/show_bug.cgi?id=1010430
--------------------------------------------------------------------------------


================================================================================
 python-flask-script-0.6.2-1.fc20 (FEDORA-2013-17636)
 Scripting support for Flask
--------------------------------------------------------------------------------
Update Information:

Update source to latest upstream version
Build python3 version as a subpackage
--------------------------------------------------------------------------------
ChangeLog:

* Wed Sep 25 2013 Robert Kuska <rkuska@xxxxxxxxxx> - 0.6.2-1
- Updated source to latest upstream version and added python3 support
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1010812 - Support for python3
        https://bugzilla.redhat.com/show_bug.cgi?id=1010812
--------------------------------------------------------------------------------


================================================================================
 python-llvmpy-0.12.0-7.fc20 (FEDORA-2013-17608)
 Python bindings for LLVM
--------------------------------------------------------------------------------
Update Information:

Adds a python3 subpackage
--------------------------------------------------------------------------------
ChangeLog:

* Tue Sep 24 2013 Sergio Pascual <sergiopr@xxxxxxxxxxxxxxxxx> - 0.12.0-7
- Added s390(x) tracker bug
* Tue Sep 24 2013 Dan Horák <dan[at]danny.cz> - 0.12.0-6
- Exclude s390(x)
* Mon Sep 16 2013 Sergio Pascual <sergiopr@xxxxxxxxxxxxxxxxx> - 0.12.0-5
- Support Python3
--------------------------------------------------------------------------------


================================================================================
 qemu-1.6.0-8.fc20 (FEDORA-2013-17670)
 QEMU is a FAST! processor emulator
--------------------------------------------------------------------------------
Update Information:

* Fix -vga qxl with -display vnc (bz #948717)
* Fix USB crash when installing reactos (bz #1005495)
* Don't ship x86 kvm wrapper on arm (bz #1005581)
--------------------------------------------------------------------------------
ChangeLog:

* Tue Sep 24 2013 Cole Robinson <crobinso@xxxxxxxxxx> - 2:1.6.0-8
- Fix -vga qxl with -display vnc (bz #948717)
- Fix USB crash when installing reactos (bz #1005495)
- Don't ship x86 kvm wrapper on arm (bz #1005581)
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #948717 - When using “-vga qxl” together with “-display vnc=:5” or “-display  sdl” qemu displays  pixel garbage
        https://bugzilla.redhat.com/show_bug.cgi?id=948717
  [ 2 ] Bug #1005495 - [abrt] qemu-system-x86-1.6.0-6.fc20: object_dynamic_cast_assert: Process /usr/bin/qemu-system-x86_64 was killed by signal 6 (SIGABRT)
        https://bugzilla.redhat.com/show_bug.cgi?id=1005495
  [ 3 ] Bug #1005581 - On ARM, qemu-kvm runs qemu-system-x86_64
        https://bugzilla.redhat.com/show_bug.cgi?id=1005581
--------------------------------------------------------------------------------


================================================================================
 qt5-qtbase-5.1.1-5.fc20 (FEDORA-2013-17611)
 Qt5 - QtBase components
--------------------------------------------------------------------------------
Update Information:

fix big endian builds
--------------------------------------------------------------------------------
ChangeLog:

* Mon Sep 23 2013 Dan Horák <dan[at]danny.cz> - 5.1.1-5
- fix big endian builds
* Wed Sep 11 2013 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 5.1.1-4
- macros.qt5: use newer location, use unexpanded macros
* Sat Sep  7 2013 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 5.1.1-3
- ExcludeArch: ppc64 ppc (#1005482)
* Fri Sep  6 2013 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 5.1.1-2
- BR: pkgconfig(libudev) pkgconfig(xkbcommon) pkgconfig(xcb-xkb)
--------------------------------------------------------------------------------


================================================================================
 qt5-qtquickcontrols-5.1.1-2.fc20 (FEDORA-2013-17609)
 Qt5 - module with set of QtQuick controls
--------------------------------------------------------------------------------
Update Information:

New package.
--------------------------------------------------------------------------------


================================================================================
 qt5-qtwayland-5.1.0-0.1.20130826git3b0b90b.fc20 (FEDORA-2013-17659)
 Qt5 - Wayland platform support and QtCompositor module
--------------------------------------------------------------------------------
Update Information:

New package.
--------------------------------------------------------------------------------


================================================================================
 rubygems-2.0.10-106.fc20 (FEDORA-2013-17603)
 The Ruby standard for packaging ruby libraries
--------------------------------------------------------------------------------
Update Information:

Previously a security flow was found on rubygems for validating versions with a regular expression which is vulnerable to denial of service due to backtracking. Although this was thought to be fixed in the previous rubygems, the fix was found imcomplete and the imcompleteness is now assigned as  CVE-2013-4363.

A packaging bug was found that a directory was not properly owned.

This new rpm will fix this issue.
--------------------------------------------------------------------------------
ChangeLog:

* Wed Sep 25 2013 Mamoru TASAKA <mtasaka@xxxxxxxxxxxxxxxxx> - 2.0.10-106
- Update to 2.0.10 (fix for CVE-2013-4363 included)
* Mon Sep 23 2013 Mamoru TASAKA <mtasaka@xxxxxxxxxxxxxxxxx> - 2.0.9-105
- Update to 2.0.9
- Fix %gem_dir/doc ownership (bug 1008866)
- Patch for CVE-2013-4363
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1008866 - /usr/share/gems/doc ownership
        https://bugzilla.redhat.com/show_bug.cgi?id=1008866
--------------------------------------------------------------------------------


================================================================================
 telepathy-glib-0.21.2-1.fc20 (FEDORA-2013-17645)
 GLib bindings for Telepathy
--------------------------------------------------------------------------------
Update Information:

Stable releases. For changes, please refer to:

http://lists.freedesktop.org/archives/telepathy/2013-September/006505.html

http://lists.freedesktop.org/archives/telepathy/2013-September/006504.html
--------------------------------------------------------------------------------
ChangeLog:

* Tue Sep 24 2013 Brian Pepple <bpepple@xxxxxxxxxxxxxxxxx> - 0.21.2-1
- Update to 0.21.2.
--------------------------------------------------------------------------------


================================================================================
 virt-manager-0.10.0-3.gita2e52067.fc20 (FEDORA-2013-17628)
 Virtual Machine Manager
--------------------------------------------------------------------------------
Update Information:

* Sync with git
* Don't try to launch multiple ssh askpass dialogs at once (bz #811346)
* Fix confusion when multiple progress dialogs are run (bz #1003101)
* Fix error adding macvtap nic (bz #1006324)
* Add an appdata file (bz #1011120)
* virt-install: fix nfs:// style URLs (bz #1011177)
* Fix spice with TLS (bz #904295)
* Reduce impact of memory leak (bz #972371)
* Fix parsing rawhide .treeinfo (bz #989162)
--------------------------------------------------------------------------------
ChangeLog:

* Tue Sep 24 2013 Cole Robinson <crobinso@xxxxxxxxxx> - 0.10.0-3.gita2e52067
- Sync with git
- Don't try to launch multiple ssh askpass dialogs at once (bz #811346)
- Fix confusion when multiple progress dialogs are run (bz #1003101)
- Fix error adding macvtap nic (bz #1006324)
- Add an appdata file (bz #1011120)
- virt-install: fix nfs:// style URLs (bz #1011177)
- Fix spice with TLS (bz #904295)
- Reduce impact of memory leak (bz #972371)
- Fix parsing rawhide .treeinfo (bz #989162)
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #811346 - remote spice connection without ssh keys opens many askpass dialogs at once
        https://bugzilla.redhat.com/show_bug.cgi?id=811346
  [ 2 ] Bug #1003101 - virt-manager: concurrent save or restore confuses progress meter
        https://bugzilla.redhat.com/show_bug.cgi?id=1003101
  [ 3 ] Bug #1006324 - Adding network hw in Virt-manager: Error adding device: internal error: No <source> 'dev' attribute specified with <interface type='direct'/>
        https://bugzilla.redhat.com/show_bug.cgi?id=1006324
  [ 4 ] Bug #1011120 - Please include an AppData file
        https://bugzilla.redhat.com/show_bug.cgi?id=1011120
  [ 5 ] Bug #1011177 - virt-install is dies on nfs:// adresses but man page says they are accepted
        https://bugzilla.redhat.com/show_bug.cgi?id=1011177
  [ 6 ] Bug #746011 - When running yum while starting virt-manager, it hangs on Searching for available hypervisors and the search cannot be canceled.
        https://bugzilla.redhat.com/show_bug.cgi?id=746011
--------------------------------------------------------------------------------


================================================================================
 vpnc-0.5.3-19.svn457.fc20 (FEDORA-2013-17629)
 IPSec VPN client compatible with Cisco equipment
--------------------------------------------------------------------------------
Update Information:

Added support for unbound
--------------------------------------------------------------------------------
ChangeLog:

* Mon Sep 23 2013 Paul Wouters <pwouters@xxxxxxxxxx> - 0.5.3-19.svn457
- Add support for dynamically reconfiguring unbound DNS (rhbz#865092)
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #865092 - Patch: Add support for unbound to vpnc-script
        https://bugzilla.redhat.com/show_bug.cgi?id=865092
--------------------------------------------------------------------------------


================================================================================
 wireshark-1.10.2-7.fc20 (FEDORA-2013-17627)
 Network traffic analyzer
--------------------------------------------------------------------------------
Update Information:

dumpcap now stores temporary capture files in /var/tmp
* Convert automake/pkgconfig files into patches (better upstream integration)
* Restored category in the *.desktop file
* Install another one necessary header file - frame_data_sequence.h

* Add basic OpenFlow dissector
* Ver. 1.10.2

* Ver. 1.10.1
fix missing ws_symbol_export.h
* Ver. 1.10.2

* Ver. 1.10.1
fix missing ws_symbol_export.h
* Enhance desktop integration (*.desktop and MIME-related files)
* Add basic OpenFlow dissector
* Ver. 1.10.2

* Ver. 1.10.1
fix missing ws_symbol_export.h
* Ver. 1.10.2

* Ver. 1.10.1
fix missing ws_symbol_export.h
* Enhance desktop integration (*.desktop and MIME-related files)
* Add basic OpenFlow dissector
* Ver. 1.10.2

* Ver. 1.10.1
fix missing ws_symbol_export.h
* Ver. 1.10.2

* Ver. 1.10.1
fix missing ws_symbol_export.h
* Ver. 1.10.2
* Various security fixes
--------------------------------------------------------------------------------
ChangeLog:

* Tue Sep 24 2013 Peter Hatina <phatina@xxxxxxxxxx> - 1.10.2-7
- fix build error caused by symbols clash
* Tue Sep 17 2013 Peter Hatina <phatina@xxxxxxxxxx> - 1.10.2-6
- move default temporary directory to /var/tmp
* Fri Sep 13 2013 Peter Lemenkov <lemenkov@xxxxxxxxx> - 1.10.2-5
- Convert automake/pkgconfig files into patches (better upstream integration)
- Restored category in the *.desktop file
- Install another one necessary header file - frame_data_sequence.h
* Thu Sep 12 2013 Peter Lemenkov <lemenkov@xxxxxxxxx> - 1.10.2-4
- Enhance desktop integration (*.desktop and MIME-related files)
* Thu Sep 12 2013 Peter Lemenkov <lemenkov@xxxxxxxxx> - 1.10.2-3
- Fix building on Fedora 18 (no perl-podlators)
* Thu Sep 12 2013 Peter Lemenkov <lemenkov@xxxxxxxxx> - 1.10.2-2
- Add an OpenFlow dissector
* Wed Sep 11 2013 Peter Lemenkov <lemenkov@xxxxxxxxx> - 1.10-2-1
- Ver. 1.10.2
- Actually remove the console helper
* Mon Sep  9 2013 Peter Lemenkov <lemenkov@xxxxxxxxx> - 1.10.1-1
- Ver. 1.10.1
- Backported rtpproxy dissector module
* Wed Sep  4 2013 Peter Hatina <phatina@xxxxxxxxxx> - 1.10.0-11
- fix missing ws_symbol_export.h
* Wed Sep  4 2013 Peter Hatina <phatina@xxxxxxxxxx> - 1.10.0-10
- fix tap iostat overflow
* Wed Sep  4 2013 Peter Hatina <phatina@xxxxxxxxxx> - 1.10.0-9
- fix sctp bytes graph crash
* Wed Sep  4 2013 Peter Hatina <phatina@xxxxxxxxxx> - 1.10.0-8
- fix string overrun in plugins/profinet
* Tue Sep  3 2013 Peter Hatina <phatina@xxxxxxxxxx> - 1.10.0-7
- fix BuildRequires - libgcrypt-devel
* Tue Sep  3 2013 Peter Hatina <phatina@xxxxxxxxxx> - 1.10.0-6
- fix build parameter -fstack-protector-all
* Sun Aug  4 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.10.0-5
- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #990155 - CVE-2013-4920 wireshark: DoS (application crash) in the P1 dissector (wnpa-sec-2013-42)
        https://bugzilla.redhat.com/show_bug.cgi?id=990155
  [ 2 ] Bug #990156 - CVE-2013-4921 wireshark: Off-by-one (application crash) in the Radiotap dissector (wnpa-sec-2013-43)
        https://bugzilla.redhat.com/show_bug.cgi?id=990156
  [ 3 ] Bug #990157 - CVE-2013-4922 wireshark: Double-free in the DCOM ISystemActivator dissector (wnpa-sec-2013-44)
        https://bugzilla.redhat.com/show_bug.cgi?id=990157
  [ 4 ] Bug #990160 - CVE-2013-4923 wireshark: Memory leak (DoS, memory consumption) in the DCOM ISystemActivator dissector (wnpa-sec-2013-44)
        https://bugzilla.redhat.com/show_bug.cgi?id=990160
  [ 5 ] Bug #990163 - CVE-2013-4924 wireshark: Assertion failure in the DCOM ISystemActivator dissector (wnpa-sec-2013-44)
        https://bugzilla.redhat.com/show_bug.cgi?id=990163
  [ 6 ] Bug #990164 - CVE-2013-4925 wireshark: Integer signedness error in the DCOM ISystemActivator dissector (wnpa-sec-2013-44)
        https://bugzilla.redhat.com/show_bug.cgi?id=990164
  [ 7 ] Bug #990165 - CVE-2013-4926 wireshark: DoS in the DCOM ISystemActivator dissector due improper remaining data to process presence check (wnpa-sec-2013-44)
        https://bugzilla.redhat.com/show_bug.cgi?id=990165
  [ 8 ] Bug #990166 - CVE-2013-4927 wireshark: Integer signedness error in the Bluetooth SDP dissector (wnpa-sec-2013-45)
        https://bugzilla.redhat.com/show_bug.cgi?id=990166
  [ 9 ] Bug #972679 - CVE-2013-4074 wireshark: DoS (crash) in the CAPWAP dissector (wnpa-sec-2013-32)
        https://bugzilla.redhat.com/show_bug.cgi?id=972679
  [ 10 ] Bug #972680 - CVE-2013-4075 wireshark: DoS (crash) in the GMR-1 BCCH dissector (wnpa-sec-2013-33)
        https://bugzilla.redhat.com/show_bug.cgi?id=972680
  [ 11 ] Bug #972681 - CVE-2013-4076 wireshark: Invalid free in the PPP dissector (wnpa-sec-2013-34)
        https://bugzilla.redhat.com/show_bug.cgi?id=972681
  [ 12 ] Bug #972682 - CVE-2013-4077 wireshark: Array index error in the NBAP dissector (wnpa-sec-2013-35)
        https://bugzilla.redhat.com/show_bug.cgi?id=972682
  [ 13 ] Bug #972683 - CVE-2013-4078 wireshark: DoS (infinite loop) in the RDP dissector (wnpa-sec-2013-36)
        https://bugzilla.redhat.com/show_bug.cgi?id=972683
  [ 14 ] Bug #972684 - CVE-2013-4079 wireshark: DoS (infinite loop, application hang) in the GSM CBCH dissector (wnpa-sec-2013-37)
        https://bugzilla.redhat.com/show_bug.cgi?id=972684
  [ 15 ] Bug #972685 - CVE-2013-4080 wireshark: DoS (infinite loop, CPU & memory consumption) in the Assa Abloy R3 dissector (wnpa-sec-2013-38)
        https://bugzilla.redhat.com/show_bug.cgi?id=972685
  [ 16 ] Bug #972686 - CVE-2013-4081 wireshark: DoS (infinite loop) in the HTTP dissector (wnpa-sec-2013-39)
        https://bugzilla.redhat.com/show_bug.cgi?id=972686
  [ 17 ] Bug #972687 - CVE-2013-4082 wireshark: Heap-based buffer overflow in the Ixia IxVeriWave file parser (wnpa-sec-2013-40)
        https://bugzilla.redhat.com/show_bug.cgi?id=972687
  [ 18 ] Bug #972688 - CVE-2013-4083 wireshark: Invalid free in the DCP ETSI dissector (wnpa-sec-2013-41)
        https://bugzilla.redhat.com/show_bug.cgi?id=972688
  [ 19 ] Bug #990167 - CVE-2013-4928 wireshark: Integer signedness error in the Bluetooth OBEX dissector (wnpa-sec-2013-46)
        https://bugzilla.redhat.com/show_bug.cgi?id=990167
  [ 20 ] Bug #990168 - CVE-2013-4929 wireshark: DoS (infinite loop) in the DIS dissector (wnpa-sec-2013-47)
        https://bugzilla.redhat.com/show_bug.cgi?id=990168
  [ 21 ] Bug #990169 - CVE-2013-4930 wireshark: Assertion failure in the DVB-CI dissector (wnpa-sec-2013-48)
        https://bugzilla.redhat.com/show_bug.cgi?id=990169
  [ 22 ] Bug #990170 - CVE-2013-4931 wireshark: DoS (infinite loop) in the GSM RR dissector (wnpa-sec-2013-49)
        https://bugzilla.redhat.com/show_bug.cgi?id=990170
  [ 23 ] Bug #990172 - CVE-2013-4932 wireshark: Multiple array index errors in the GSM A Common dissector (wnpa-sec-2013-50)
        https://bugzilla.redhat.com/show_bug.cgi?id=990172
  [ 24 ] Bug #990175 - CVE-2013-4933 wireshark: DoS (application crash) in the Netmon file parser (wnpa-sec-2013-51)
        https://bugzilla.redhat.com/show_bug.cgi?id=990175
  [ 25 ] Bug #990178 - CVE-2013-4934 wireshark: DoS (application crash) in the Netmon file parser (wnpa-sec-2013-51) (A different flaw than CVE-2013-4933)
        https://bugzilla.redhat.com/show_bug.cgi?id=990178
  [ 26 ] Bug #990179 - CVE-2013-4935 wireshark: DoS (application crash) in the ASN.1 PER dissector (wnpa-sec-2013-52)
        https://bugzilla.redhat.com/show_bug.cgi?id=990179
  [ 27 ] Bug #965111 - wireshark: DoS (infinite loop) in the MySQL dissector (wnpa-sec-2013-30, upstream #8458)
        https://bugzilla.redhat.com/show_bug.cgi?id=965111
  [ 28 ] Bug #965190 - CVE-2013-3559 wireshark: DoS (crash) in the DCP ETSI dissector (wnpa-sec-2013-27, upstream #8231, #8540, #8541)
        https://bugzilla.redhat.com/show_bug.cgi?id=965190
  [ 29 ] Bug #965192 - CVE-2013-3558 wireshark: DoS (crash) in the PPP CCP dissector (wnpa-sec-2013-26, upstream #8638)
        https://bugzilla.redhat.com/show_bug.cgi?id=965192
  [ 30 ] Bug #965193 - CVE-2013-3557 wireshark: DoS (crash) in the ASN.1 BER dissector (wnpa-sec-2013-25, upstream #8599)
        https://bugzilla.redhat.com/show_bug.cgi?id=965193
  [ 31 ] Bug #965194 - CVE-2013-3555 wireshark: DoS (crash) in the GTPv2 dissector (wnpa-sec-2013-24, upstream #8493)
        https://bugzilla.redhat.com/show_bug.cgi?id=965194
  [ 32 ] Bug #965195 - wireshark: DoS (excessive CPU consumption) in the RELOAD dissector (wnpa-sec-2013-23, upstream #8362, #8546)
        https://bugzilla.redhat.com/show_bug.cgi?id=965195
  [ 33 ] Bug #965110 - wireshark: DoS (large loop) in the ETCH dissector (wnpa-sec-2013-31, upstream #8464)
        https://bugzilla.redhat.com/show_bug.cgi?id=965110
  [ 34 ] Bug #965112 - CVE-2013-3562 wireshark: DoS (stack overflow, crash) in the Websocket dissector (wnpa-sec-2013-29, upstream #8448, #8499)
        https://bugzilla.redhat.com/show_bug.cgi?id=965112
  [ 35 ] Bug #965186 - CVE-2013-3560 wireshark: DoS (crash) in the MPEG DSM-CC dissector (wnpa-sec-2013-28, upstream #8481)
        https://bugzilla.redhat.com/show_bug.cgi?id=965186
--------------------------------------------------------------------------------


================================================================================
 xyzsh-1.5.1-1.fc20 (FEDORA-2013-17617)
 Interactive shell and text processing tool
--------------------------------------------------------------------------------
Update Information:

New version 1.5.1 is released.
--------------------------------------------------------------------------------
ChangeLog:

* Wed Sep 25 2013 Mamoru TASAKA <mtasaka@xxxxxxxxxxxxxxxxx> - 1.5.1-1
- 1.5.1
--------------------------------------------------------------------------------


================================================================================
 yum-langpacks-0.4.1-2.fc20 (FEDORA-2013-17666)
 Langpacks plugin for yum
--------------------------------------------------------------------------------
Update Information:

Fix issue of yum-langpacks commands that slows down yum runs
--------------------------------------------------------------------------------
ChangeLog:

* Wed Sep 25 2013 Parag Nemade <pnemade AT redhat DOT com> - 0.4.1-2
- Fix issue of yum-langpacks commands that slows down yum runs (rh#1011670)
* Thu Sep 12 2013 Parag Nemade <pnemade AT redhat DOT com> - 0.4.1-1
- Fix yum langavailable command output (rh#1006695)
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1011670 - [PATCH] yum-langpackages slows down yum runs a lot, due to langtable and loading groups.
        https://bugzilla.redhat.com/show_bug.cgi?id=1011670
--------------------------------------------------------------------------------

-- 
test mailing list
test@xxxxxxxxxxxxxxxxxxxxxxx
To unsubscribe:
https://admin.fedoraproject.org/mailman/listinfo/test





[Index of Archives]     [Fedora Desktop]     [Fedora SELinux]     [Photo Sharing]     [Yosemite Forum]     [KDE Users]

  Powered by Linux