The following Fedora 19 Security updates need testing: Age URL 84 https://admin.fedoraproject.org/updates/FEDORA-2013-14814/python-glanceclient-0.9.0-3.fc19 40 https://admin.fedoraproject.org/updates/FEDORA-2013-17836/davfs2-1.4.7-3.fc19 27 https://admin.fedoraproject.org/updates/FEDORA-2013-18794/phpMyAdmin-3.5.8.2-1.fc19 19 https://admin.fedoraproject.org/updates/FEDORA-2013-19262/quassel-0.9.1-1.fc19 12 https://admin.fedoraproject.org/updates/FEDORA-2013-19997/openstack-glance-2013.1.4-2.fc19 12 https://admin.fedoraproject.org/updates/FEDORA-2013-19963/openstack-glance-2013.1.4-1.fc19 8 https://admin.fedoraproject.org/updates/FEDORA-2013-20202/mantis-1.2.15-3.fc19 7 https://admin.fedoraproject.org/updates/FEDORA-2013-20373/openstack-keystone-2013.1.4-2.fc19 7 https://admin.fedoraproject.org/updates/FEDORA-2013-20340/spice-0.12.4-3.fc19 5 https://admin.fedoraproject.org/updates/FEDORA-2013-20443/poppler-0.22.1-5.fc19 3 https://admin.fedoraproject.org/updates/FEDORA-2013-20555/xen-4.2.3-7.fc19 2 https://admin.fedoraproject.org/updates/FEDORA-2013-20628/gnutls-3.1.16-1.fc19 0 https://admin.fedoraproject.org/updates/FEDORA-2013-20744/krb5-1.11.3-11.fc19 0 https://admin.fedoraproject.org/updates/FEDORA-2013-20814/python-djblets-0.7.23-1.fc19,ReviewBoard-1.7.17-1.fc19 0 https://admin.fedoraproject.org/updates/FEDORA-2013-20829/wireshark-1.10.3-2.fc19 The following Fedora 19 Critical Path updates have yet to be approved: Age URL 7 https://admin.fedoraproject.org/updates/FEDORA-2013-20355/colord-1.0.4-1.fc19 5 https://admin.fedoraproject.org/updates/FEDORA-2013-20438/plymouth-0.8.9-0.2013.03.26.1.fc19 5 https://admin.fedoraproject.org/updates/FEDORA-2013-20443/poppler-0.22.1-5.fc19 4 https://admin.fedoraproject.org/updates/FEDORA-2013-20487/acl-2.2.51-10.fc19 2 https://admin.fedoraproject.org/updates/FEDORA-2013-20628/gnutls-3.1.16-1.fc19 2 https://admin.fedoraproject.org/updates/FEDORA-2013-20619/soprano-2.9.4-2.fc19 2 https://admin.fedoraproject.org/updates/FEDORA-2013-20645/langtable-0.0.18-1.fc19 0 https://admin.fedoraproject.org/updates/FEDORA-2013-20818/libbluray-0.4.0-1.fc19 0 https://admin.fedoraproject.org/updates/FEDORA-2013-20801/kbd-1.15.5-8.fc19 0 https://admin.fedoraproject.org/updates/FEDORA-2013-20792/gnome-online-accounts-3.8.5-1.fc19 0 https://admin.fedoraproject.org/updates/FEDORA-2013-20744/krb5-1.11.3-11.fc19 0 https://admin.fedoraproject.org/updates/FEDORA-2013-20715/firewalld-0.3.8-1.fc19 0 https://admin.fedoraproject.org/updates/FEDORA-2013-20710/evolution-data-server-3.8.5-6.fc19 The following builds have been pushed to Fedora 19 updates-testing ProDy-1.4.8-1.fc19 ReviewBoard-1.7.17-1.fc19 alienarena-7.66-1.fc19 ardour3-3.5.74-2.fc19 cmocka-0.3.2-1.fc19 drupal6-backup_migrate-2.8-1.fc19 drupal7-backup_migrate-2.8-1.fc19 drupal7-rules-2.6-1.fc19 elixir-0.11.0-1.fc19 felix-scr-annotations-1.9.6-2.fc19 gnome-online-accounts-3.8.5-1.fc19 kamoso-2.0.2-14.fc19 kbd-1.15.5-8.fc19 kpartsplugin-0.0.1-0.10.20120723.fc19 libbluray-0.4.0-1.fc19 libltc-1.1.2-1.fc19 libvirt-1.0.5.7-1.fc19 midori-0.5.5-2.fc19 mingw-hidapi-0.7.0-2.a88c724.fc19 mlpack-1.0.7-1.fc19 ocaml-camlidl-1.05-18.fc19.1 openlmi-tools-0.9-3.fc19 php-gliph-0.1.5-1.fc19 python-alchimia-0.4-3.fc19 python-djblets-0.7.23-1.fc19 qemu-1.4.2-13.fc19 recoll-1.19.8-1.fc19 rubygem-cinch-2.0.10-1.fc19 rubygem-equalizer-0.0.7-2.fc19 rubygem-redis-namespace-1.3.1-1.fc19 rubygem-shoulda-context-1.1.6-1.fc19 scilab-5.4.1-5.fc19 sddm-0.2.0-0.16.20130914git50ca5b20.fc19 tetex-elsevier-0.1.20090917-11.fc19 thunderbird-lightning-2.6.2-3.fc19 tubo-5.0.10-2.fc19 wireshark-1.10.3-2.fc19 Details about builds: ================================================================================ ProDy-1.4.8-1.fc19 (FEDORA-2013-20820) Application for protein structure, dynamics and sequence analysis -------------------------------------------------------------------------------- Update Information: Update to 1.4.8 -------------------------------------------------------------------------------- ChangeLog: * Wed Nov 6 2013 Antonio Trande <sagitter@xxxxxxxxxxxxxxxxx> 1.4.8-1 - Re-defined required packages for EPEL (still unused) - Update to 1.4.8 -------------------------------------------------------------------------------- ================================================================================ ReviewBoard-1.7.17-1.fc19 (FEDORA-2013-20814) Web-based code review tool -------------------------------------------------------------------------------- Update Information: - New upstream security release 1.7.17 - http://www.reviewboard.org/docs/releasenotes/reviewboard/1.7.17/ - Resolves: CVE-2013-4519 - Security Fixes: * Fixed XSS vulnerabilities for the 'Branch' field and uploaded file captions. * Added a 'X-Frame-Options' header to prevent clickjacking. - New Features: * Remove the need for SSH keys for GitHub repositories. * Improved validation for GitHub repositories. * Added support for permissions on Local Sites. - Performance Improvements: * Reduced query counts on all pages. * Reduced query counts in the web API when returning empty lists. - Extensibility: * Extensions using the ``configure_extension`` view an now pass in a custom ``template_name`` pointing to a template for the configuration page, if it needs additional customization. * Enabling, disabling or reconfiguring extensions will now invalidate the caches for pages, ensuring that hooks will take affect. * Extension configuration now works properly on subdirectory installs. - Bug Fixes: * Fixed showing private review requests on a submitter page. * The description for submitted or discarded review requests is now shown on the diff viewer. * Discarding, reopening and then closing a review request no longer makes the review request private. * Fixed a naming conflict with older PyCrypto packages, such as the default package on CentOS 6.4. * Users with the 'can_change_status' permission no longer need the 'can_edit_reviewrequest' permission in order to close or reopen review requests. * Switching a repository from using a hosting service to Custom no longer reverts back to the hosting service. * Fixed editing a repository if its associated hosting service can't be loaded (such as if an extension providing that hosting service is disabled). * Many diff validation errors weren't being shown on the New Review Request page, generating 500 errors instead. * Fixed caching issues with the Blocks field on review requests. * Editing JSON text fields in the administration UI now works, validates, and won't result in warnings in the log. * Fixed breakages with looking up URLs internally with Local Sites. -------------------------------------------------------------------------------- ChangeLog: * Tue Nov 5 2013 Stephen Gallagher <sgallagh@xxxxxxxxxx> - 1.7.17-1 - New upstream security release 1.7.17 - http://www.reviewboard.org/docs/releasenotes/reviewboard/1.7.17/ - Resolves: CVE-2013-4519 - Security Fixes: * Fixed XSS vulnerabilities for the 'Branch' field and uploaded file captions. * Added a 'X-Frame-Options' header to prevent clickjacking. - New Features: * Remove the need for SSH keys for GitHub repositories. * Improved validation for GitHub repositories. * Added support for permissions on Local Sites. - Performance Improvements: * Reduced query counts on all pages. * Reduced query counts in the web API when returning empty lists. - Extensibility: * Extensions using the ``configure_extension`` view an now pass in a custom ``template_name`` pointing to a template for the configuration page, if it needs additional customization. * Enabling, disabling or reconfiguring extensions will now invalidate the caches for pages, ensuring that hooks will take affect. * Extension configuration now works properly on subdirectory installs. - Bug Fixes: * Fixed showing private review requests on a submitter page. * The description for submitted or discarded review requests is now shown on the diff viewer. * Discarding, reopening and then closing a review request no longer makes the review request private. * Fixed a naming conflict with older PyCrypto packages, such as the default package on CentOS 6.4. * Users with the 'can_change_status' permission no longer need the 'can_edit_reviewrequest' permission in order to close or reopen review requests. * Switching a repository from using a hosting service to Custom no longer reverts back to the hosting service. * Fixed editing a repository if its associated hosting service can't be loaded (such as if an extension providing that hosting service is disabled). * Many diff validation errors weren't being shown on the New Review Request page, generating 500 errors instead. * Fixed caching issues with the Blocks field on review requests. * Editing JSON text fields in the administration UI now works, validates, and won't result in warnings in the log. * Fixed breakages with looking up URLs internally with Local Sites. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1027010 - CVE-2013-4519 ReviewBoard: two XSS vulnerabilities https://bugzilla.redhat.com/show_bug.cgi?id=1027010 -------------------------------------------------------------------------------- ================================================================================ alienarena-7.66-1.fc19 (FEDORA-2013-20816) Multiplayer retro sci-fi deathmatch game -------------------------------------------------------------------------------- Update Information: Add appdata, update to 7.66. Updated autotools to 2.69 and added License: tag to alienarena-data package. Added aarch64 by autoconf 2.69 and added License: entry to alienarena-data package -------------------------------------------------------------------------------- ChangeLog: * Tue Nov 5 2013 Tom Callaway <spot@xxxxxxxxxxxxxxxxx> - 7.66-1 - update to 7.66 - add appdata file (bz 1023990) * Wed Sep 4 2013 Chandler Wilkerson <chwilk@xxxxxxxx> - 7.65-5 - Added aarch64 patch pending upstream move to autoconf 2.69 in next release (bz 924982) - Tweaked license line of alienarena-data package to match license text. (bz 888201) * Fri Aug 16 2013 Tom Callaway <spot@xxxxxxxxxxxxxxxxx> - 7.65-4 - fix license text (bz 888201) * Sat Aug 3 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 7.65-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1023990 - Appdata file for Alien Arena https://bugzilla.redhat.com/show_bug.cgi?id=1023990 [ 2 ] Bug #924982 - alienarena: Does not support aarch64 in f19 and rawhide https://bugzilla.redhat.com/show_bug.cgi?id=924982 [ 3 ] Bug #888201 - Alienarena-data (Game data) is non-commercial use https://bugzilla.redhat.com/show_bug.cgi?id=888201 -------------------------------------------------------------------------------- ================================================================================ ardour3-3.5.74-2.fc19 (FEDORA-2013-20198) Digital Audio Workstation -------------------------------------------------------------------------------- Update Information: Add ardour v3.x and libltc to Fedora. -------------------------------------------------------------------------------- References: [ 1 ] Bug #929044 - Ardour version 3 package request https://bugzilla.redhat.com/show_bug.cgi?id=929044 [ 2 ] Bug #1022255 - Review Request: libltc - Linear/Longitudinal Time Code (LTC) Library https://bugzilla.redhat.com/show_bug.cgi?id=1022255 [ 3 ] Bug #1007099 - Review Request: ardour3 - Digital Audio Workstation https://bugzilla.redhat.com/show_bug.cgi?id=1007099 -------------------------------------------------------------------------------- ================================================================================ cmocka-0.3.2-1.fc19 (FEDORA-2013-20787) Lightweight library to simplify and generalize unit tests for C -------------------------------------------------------------------------------- Update Information: Update to cmocka 0.3.2. -------------------------------------------------------------------------------- ChangeLog: * Wed Nov 6 2013 - Andreas Schneider <asn@xxxxxxxxxx> - 0.3.2-1 - Update to version 0.3.2. - Include API documentation. -------------------------------------------------------------------------------- ================================================================================ drupal6-backup_migrate-2.8-1.fc19 (FEDORA-2013-20826) Database backup, restore, and migrate module for Drupal 6 -------------------------------------------------------------------------------- Update Information: - Update to upstream 2.8 release for bug fixes - Upstream changelog for this release is available at https://drupal.org/node/2128473 -------------------------------------------------------------------------------- ChangeLog: * Wed Nov 6 2013 Peter Borsa <peter.borsa@xxxxxxxxx> - 2.8-1 - Update to upstream 2.8 release for bug fixes - Upstream changelog for this release is available at https://drupal.org/node/2128473 * Sat Aug 3 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 2.7-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1027124 - drupal6-backup_migrate-2.8 is available https://bugzilla.redhat.com/show_bug.cgi?id=1027124 -------------------------------------------------------------------------------- ================================================================================ drupal7-backup_migrate-2.8-1.fc19 (FEDORA-2013-20790) Database backup, restore, and migrate module for Drupal 7 -------------------------------------------------------------------------------- Update Information: - Update to upstream 2.8 release for bug fixes - Upstream changelog for this release is available at https://drupal.org/node/2128465 -------------------------------------------------------------------------------- ChangeLog: * Wed Nov 6 2013 Peter Borsa <peter.borsa@xxxxxxxxx> - 2.8-1 - Update to upstream 2.8 release for bug fixes - Upstream changelog for this release is available at https://drupal.org/node/2128465 * Sat Aug 3 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 2.7-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1027127 - drupal7-backup_migrate-2.8 is available https://bugzilla.redhat.com/show_bug.cgi?id=1027127 -------------------------------------------------------------------------------- ================================================================================ drupal7-rules-2.6-1.fc19 (FEDORA-2013-20809) It allows site administrators to define conditionally executed actions -------------------------------------------------------------------------------- Update Information: - Update to upstream 2.6 release for bug fixes - Upstream changelog for this release is available at https://drupal.org/node/2123171 -------------------------------------------------------------------------------- ChangeLog: * Wed Nov 6 2013 Peter Borsa <peter.borsa@xxxxxxxxx> - 2.6-1 - Update to upstream 2.6 release for bug fixes - Upstream changelog for this release is available at https://drupal.org/node/2123171 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1024829 - drupal7-rules-2.6 is available https://bugzilla.redhat.com/show_bug.cgi?id=1024829 -------------------------------------------------------------------------------- ================================================================================ elixir-0.11.0-1.fc19 (FEDORA-2013-20821) A modern approach to programming for the Erlang VM -------------------------------------------------------------------------------- Update Information: Latest upstream release -------------------------------------------------------------------------------- ChangeLog: * Sat Nov 2 2013 Ricky Elrod <codeblock@xxxxxxxxxxxxxxxxx> - 0.11.0-1 - Update to upstream 0.11.0. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1025991 - elixir-0.11.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1025991 -------------------------------------------------------------------------------- ================================================================================ felix-scr-annotations-1.9.6-2.fc19 (FEDORA-2013-20810) Annotations for SCR -------------------------------------------------------------------------------- Update Information: Initial import (#1002706). -------------------------------------------------------------------------------- References: [ 1 ] Bug #1002706 - Review Request: felix-scr-annotations - Annotations for SCR https://bugzilla.redhat.com/show_bug.cgi?id=1002706 -------------------------------------------------------------------------------- ================================================================================ gnome-online-accounts-3.8.5-1.fc19 (FEDORA-2013-20792) Provide online accounts information -------------------------------------------------------------------------------- Update Information: Fixes: 1. https://bugzilla.gnome.org/show_bug.cgi?id=710363 2. https://bugzilla.gnome.org/show_bug.cgi?id=709955 3. https://bugzilla.gnome.org/show_bug.cgi?id=709953 -------------------------------------------------------------------------------- ChangeLog: * Wed Nov 6 2013 Debarshi Ray <rishi@xxxxxxxxxxxxxxxxx> - 3.8.5-1 - Update to 3.8.5 -------------------------------------------------------------------------------- ================================================================================ kamoso-2.0.2-14.fc19 (FEDORA-2013-20730) Application for taking pictures and videos from a webcam -------------------------------------------------------------------------------- Update Information: Fixed missing icons. -------------------------------------------------------------------------------- ChangeLog: * Wed Nov 6 2013 Alexey Kurov <nucleo@xxxxxxxxxxxxxxxxx> - 2.0.2-14 - Requires: kde-runtime (#986964) * Tue Nov 5 2013 Alexey Kurov <nucleo@xxxxxxxxxxxxxxxxx> - 2.0.2-13 - Requires: oxygen-icon-theme (#986964) * Sat Aug 3 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 2.0.2-12 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #986964 - all Kamoso icons are missing https://bugzilla.redhat.com/show_bug.cgi?id=986964 -------------------------------------------------------------------------------- ================================================================================ kbd-1.15.5-8.fc19 (FEDORA-2013-20801) Tools for configuring the console (keyboard, virtual terminals, etc.) -------------------------------------------------------------------------------- Update Information: Added PAM config for vlock. This updated package includes plain xkb layouts converted for console. -------------------------------------------------------------------------------- ChangeLog: * Wed Nov 6 2013 Vitezslav Crhonek <vcrhonek@xxxxxxxxxx> - 1.15.5-8 - Add PAM config for vlock Resolves: #913309 * Wed Aug 28 2013 Vitezslav Crhonek <vcrhonek@xxxxxxxxxx> - 1.15.5-7 - Convert also plain layouts (no variant) -------------------------------------------------------------------------------- References: [ 1 ] Bug #913309 - vlock doesn't have a PAM configuration https://bugzilla.redhat.com/show_bug.cgi?id=913309 [ 2 ] Bug #981870 - Keyboard layout "no" is broken in virtual consoles after Fedora 18 -> 19 upgrade https://bugzilla.redhat.com/show_bug.cgi?id=981870 [ 3 ] Bug #983277 - umlauts bug in the console CTRL+ALT+F2 https://bugzilla.redhat.com/show_bug.cgi?id=983277 -------------------------------------------------------------------------------- ================================================================================ kpartsplugin-0.0.1-0.10.20120723.fc19 (FEDORA-2013-20828) KParts technology to embed file viewers into non-KDE browsers -------------------------------------------------------------------------------- Update Information: Update to latest upstream release, now includes systemsettings configuration module -------------------------------------------------------------------------------- ChangeLog: * Wed Nov 6 2013 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 0.0.1-0.10.20120723 - update to 20120723 * Sat Aug 3 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.0.1-0.9.20120419 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ libbluray-0.4.0-1.fc19 (FEDORA-2013-20818) Library to access Blu-Ray disks for video playback -------------------------------------------------------------------------------- Update Information: Upstream changelog : http://git.videolan.org/gitweb.cgi/libbluray.git/?p=libbluray.git;a=blob_plain;f=ChangeLog;hb=0.4.0 -------------------------------------------------------------------------------- ChangeLog: * Fri Sep 20 2013 Xavier Bachelot <xavier@xxxxxxxxxxxx> 0.4.0-1 - Update to 0.4.0. - Fix rpath issues with some test utilities. * Sat Aug 3 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.2.3-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1015755 - current version is 0.4.0 https://bugzilla.redhat.com/show_bug.cgi?id=1015755 -------------------------------------------------------------------------------- ================================================================================ libltc-1.1.2-1.fc19 (FEDORA-2013-20198) Linear/Longitudinal Time Code (LTC) Library -------------------------------------------------------------------------------- Update Information: Add ardour v3.x and libltc to Fedora. -------------------------------------------------------------------------------- References: [ 1 ] Bug #929044 - Ardour version 3 package request https://bugzilla.redhat.com/show_bug.cgi?id=929044 [ 2 ] Bug #1022255 - Review Request: libltc - Linear/Longitudinal Time Code (LTC) Library https://bugzilla.redhat.com/show_bug.cgi?id=1022255 [ 3 ] Bug #1007099 - Review Request: ardour3 - Digital Audio Workstation https://bugzilla.redhat.com/show_bug.cgi?id=1007099 -------------------------------------------------------------------------------- ================================================================================ libvirt-1.0.5.7-1.fc19 (FEDORA-2013-20798) Library providing a simple virtualization API -------------------------------------------------------------------------------- Update Information: Fix memory limit to not incorrectly invoke OOM killer on qemu (bz #966939) -------------------------------------------------------------------------------- ChangeLog: * Wed Nov 6 2013 Cole Robinson <crobinso@xxxxxxxxxx> - 1.0.5.7-1 - Rebased to version 1.0.5.7 - Fix memory limit to not incorrectly invoke OOM killer on qemu (bz #966939) -------------------------------------------------------------------------------- References: [ 1 ] Bug #966939 - Memory cgroup out of memory: Kill process <PID> (qemu-system-x86) score 302 or sacrifice child https://bugzilla.redhat.com/show_bug.cgi?id=966939 -------------------------------------------------------------------------------- ================================================================================ midori-0.5.5-2.fc19 (FEDORA-2013-20788) A lightweight GTK+ web browser -------------------------------------------------------------------------------- Update Information: Properly update mime database in post/postun -------------------------------------------------------------------------------- ChangeLog: * Wed Nov 6 2013 Kevin Fenzi <kevin@xxxxxxxxx> 0.5.5-2 - Add update-desktop-database scriptlet. Fixes bug #1003658 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1003658 - Midori is not available as a choice of default browser in Gnome https://bugzilla.redhat.com/show_bug.cgi?id=1003658 -------------------------------------------------------------------------------- ================================================================================ mingw-hidapi-0.7.0-2.a88c724.fc19 (FEDORA-2013-20822) Library for communicating with USB and Bluetooth HID devices -------------------------------------------------------------------------------- Update Information: Initial build of mingw-hidapi package -------------------------------------------------------------------------------- References: [ 1 ] Bug #1022317 - Review Request: mingw-hidapi - Library for communicating with USB and Bluetooth HID devices https://bugzilla.redhat.com/show_bug.cgi?id=1022317 -------------------------------------------------------------------------------- ================================================================================ mlpack-1.0.7-1.fc19 (FEDORA-2013-20789) Scalable, fast C++ machine learning library -------------------------------------------------------------------------------- Update Information: Update to latest stable version. -------------------------------------------------------------------------------- ChangeLog: * Sun Nov 3 2013 Ryan Curtin <gth671b@xxxxxxxxxxxxxxx> - 1.0.7-1 - Update to latest stable release. * Tue Aug 6 2013 Ryan Curtin <gth671b@xxxxxxxxxxxxxxx> - 1.0.6-6 - Add no_exclude_build.patch so that Koji builds don't exclude all the code from Doxygen. * Tue Aug 6 2013 Ryan Curtin <gth671b@xxxxxxxxxxxxxxx> - 1.0.6-5 - Require graphviz (dot) for generation of Doxygen graphs. * Tue Aug 6 2013 Ryan Curtin <gth671b@xxxxxxxxxxxxxxx> - 1.0.6-4 - Use /usr/share/doc/mlpack-1.0.7 for F20 change to unversioned documentation directory names. - Do not package HTML documentation in main package. * Sat Aug 3 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.0.6-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild * Sat Jul 27 2013 pmachata@xxxxxxxxxx - 1.0.6-2 - Rebuild for boost 1.54.0 -------------------------------------------------------------------------------- ================================================================================ ocaml-camlidl-1.05-18.fc19.1 (FEDORA-2013-20813) Stub code generator and COM binding for Objective Caml -------------------------------------------------------------------------------- Update Information: Add META file. -------------------------------------------------------------------------------- ChangeLog: * Tue Nov 5 2013 Richard W.M. Jones <rjones@xxxxxxxxxx> - 1.05-18.fc19.1 - Add META file (RHBZ#1026991). -------------------------------------------------------------------------------- References: [ 1 ] Bug #1026991 - ocaml-camlidl does not install META file for use with findlib https://bugzilla.redhat.com/show_bug.cgi?id=1026991 -------------------------------------------------------------------------------- ================================================================================ openlmi-tools-0.9-3.fc19 (FEDORA-2013-20827) Set of CLI tools for Openlmi providers -------------------------------------------------------------------------------- Update Information: - fix instance deletion - fix passing LMIInstance argumetns to method calls Upgrade to v0.9. -------------------------------------------------------------------------------- ChangeLog: * Wed Nov 6 2013 Peter Hatina <phatina@xxxxxxxxxx> - 0.9-3 - fix passing instance references to method call * Wed Nov 6 2013 Peter Hatina <phatina@xxxxxxxxxx> - 0.9-2 - fix instance deletion * Mon Nov 4 2013 Peter Hatina <phatina@xxxxxxxxxx> - 0.9-1 - upgrade to v0.9 * Mon Nov 4 2013 Peter Hatina <phatina@xxxxxxxxxx> - 0.8-2 - dropped openlmi-python-base dependency -------------------------------------------------------------------------------- References: [ 1 ] Bug #1025973 - openlmi-tools is impossible to install due to missing dependency https://bugzilla.redhat.com/show_bug.cgi?id=1025973 -------------------------------------------------------------------------------- ================================================================================ php-gliph-0.1.5-1.fc19 (FEDORA-2013-20823) A graph library for PHP -------------------------------------------------------------------------------- Update Information: Gliph is a graph library for PHP. It provides graph building blocks and data structures for use by other PHP applications. It is (currently) designed for use with in-memory graphs, not for interaction with a graph database like Neo4J (http://neo4j.org/). -------------------------------------------------------------------------------- References: [ 1 ] Bug #1022644 - Review Request: php-gliph - A graph library for PHP https://bugzilla.redhat.com/show_bug.cgi?id=1022644 -------------------------------------------------------------------------------- ================================================================================ python-alchimia-0.4-3.fc19 (FEDORA-2013-20796) A Python library that integrates Twisted with SqlAlchemy -------------------------------------------------------------------------------- Update Information: alchimia lets you use most of the SQLAlchemy-core API with Twisted, it does not allow you to use the ORM. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1019428 - Review Request: python-alchimia - A Python library that integrates Twisted with SqlAlchemy https://bugzilla.redhat.com/show_bug.cgi?id=1019428 -------------------------------------------------------------------------------- ================================================================================ python-djblets-0.7.23-1.fc19 (FEDORA-2013-20814) A collection of useful classes and functions for Django -------------------------------------------------------------------------------- Update Information: - New upstream security release 1.7.17 - http://www.reviewboard.org/docs/releasenotes/reviewboard/1.7.17/ - Resolves: CVE-2013-4519 - Security Fixes: * Fixed XSS vulnerabilities for the 'Branch' field and uploaded file captions. * Added a 'X-Frame-Options' header to prevent clickjacking. - New Features: * Remove the need for SSH keys for GitHub repositories. * Improved validation for GitHub repositories. * Added support for permissions on Local Sites. - Performance Improvements: * Reduced query counts on all pages. * Reduced query counts in the web API when returning empty lists. - Extensibility: * Extensions using the ``configure_extension`` view an now pass in a custom ``template_name`` pointing to a template for the configuration page, if it needs additional customization. * Enabling, disabling or reconfiguring extensions will now invalidate the caches for pages, ensuring that hooks will take affect. * Extension configuration now works properly on subdirectory installs. - Bug Fixes: * Fixed showing private review requests on a submitter page. * The description for submitted or discarded review requests is now shown on the diff viewer. * Discarding, reopening and then closing a review request no longer makes the review request private. * Fixed a naming conflict with older PyCrypto packages, such as the default package on CentOS 6.4. * Users with the 'can_change_status' permission no longer need the 'can_edit_reviewrequest' permission in order to close or reopen review requests. * Switching a repository from using a hosting service to Custom no longer reverts back to the hosting service. * Fixed editing a repository if its associated hosting service can't be loaded (such as if an extension providing that hosting service is disabled). * Many diff validation errors weren't being shown on the New Review Request page, generating 500 errors instead. * Fixed caching issues with the Blocks field on review requests. * Editing JSON text fields in the administration UI now works, validates, and won't result in warnings in the log. * Fixed breakages with looking up URLs internally with Local Sites. -------------------------------------------------------------------------------- ChangeLog: * Tue Nov 5 2013 Stephen Gallagher <sgallagh@xxxxxxxxxx> - 0.7.23-1 - New upstream release 0.7.23 - http://downloads.reviewboard.org/releases/Djblets/0.7/Djblets-0.7.21.NEWS * djblets.webapi: * Added a has_list_access_permissions function, which is used to determine access to a list resource. - http://downloads.reviewboard.org/releases/Djblets/0.7/Djblets-0.7.22.NEWS * djblets.extensions: * AJAX_SERIAL is updated when extensions are enabled/disabled or their configuration changes, allowing templates using AJAX_SERIAL as part of their cache to invalidate. * djblets.siteconfig: * Reduced query counts for installs using siteconfig. * djblets.webapi: * Reduced query counts when returning payloads for list resources with no entries. * Common attribute lookups on WebAPIResource are now cached. - http://downloads.reviewboard.org/releases/Djblets/0.7/Djblets-0.7.23.NEWS * djblets.extensions: * Fix URL errors when configuring extensions with a custom SITE_ROOT. * djblets.util.fields: * JSONFields can now be safely edited through the administration UI, complete with validation. * jquery.gravy: * Fixed hiding the pencil icons on an inlineEditor when disabled. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1027010 - CVE-2013-4519 ReviewBoard: two XSS vulnerabilities https://bugzilla.redhat.com/show_bug.cgi?id=1027010 -------------------------------------------------------------------------------- ================================================================================ qemu-1.4.2-13.fc19 (FEDORA-2013-20824) QEMU is a FAST! processor emulator -------------------------------------------------------------------------------- Update Information: * ksmtuned: Fix matching qemu w/o set_process_name (bz #1012604) * ksmtuned: Fix committed_memory when no qemu running (bz #1012610) * Make sure bridge helper is setuid (bz #1017660) -------------------------------------------------------------------------------- ChangeLog: * Tue Nov 5 2013 Cole Robinson <crobinso@xxxxxxxxxx> - 2:1.4.2-13 - ksmtuned: Fix matching qemu w/o set_process_name (bz #1012604) - ksmtuned: Fix committed_memory when no qemu running (bz #1012610) - Make sure bridge helper is setuid (bz #1017660) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1012604 - ksmtuned can’t handle libvirt WITHOUT set_process_name=1 https://bugzilla.redhat.com/show_bug.cgi?id=1012604 [ 2 ] Bug #1012610 - ksmtuned committed_memory() still returns "", not 0, when no qemu running https://bugzilla.redhat.com/show_bug.cgi?id=1012610 [ 3 ] Bug #1017660 - /usr/libexec/qemu-bridge-helper is missing its setuid bit https://bugzilla.redhat.com/show_bug.cgi?id=1017660 -------------------------------------------------------------------------------- ================================================================================ recoll-1.19.8-1.fc19 (FEDORA-2013-20811) Desktop full text search tool with Qt GUI -------------------------------------------------------------------------------- Update Information: Update to latest upstream release recoll 1.19.8, will hopefully fix some bugs too. -------------------------------------------------------------------------------- ChangeLog: * Tue Nov 5 2013 Terje Rosten <terje.rosten@xxxxxxx> - 1.19.8-1 - 1.19.8 * Sun Aug 4 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.19.4-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #980947 - [abrt] recoll-1.19.4-2.fc18: inflate_table: Process /usr/bin/recoll was killed by signal 11 (SIGSEGV) https://bugzilla.redhat.com/show_bug.cgi?id=980947 [ 2 ] Bug #989483 - [abrt] recoll-1.19.4-2.fc19: deallocate: Process /usr/bin/recollindex was killed by signal 11 (SIGSEGV) https://bugzilla.redhat.com/show_bug.cgi?id=989483 [ 3 ] Bug #995796 - [abrt] recoll-1.19.4-2.fc18: operator delete: Process /usr/bin/recollindex was killed by signal 6 (SIGABRT) https://bugzilla.redhat.com/show_bug.cgi?id=995796 [ 4 ] Bug #979371 - [abrt] recoll-1.19.4-2.fc18: deallocate: Process /usr/bin/recollindex was killed by signal 6 (SIGABRT) https://bugzilla.redhat.com/show_bug.cgi?id=979371 [ 5 ] Bug #995699 - [abrt] recoll-1.19.4-2.fc18: std::_Rb_tree<std::string, std::pair<std::string const, std::string>, std::_Select1st<std::pair<std::string const, std::string> >, std::less<std::string>, std::allocator<std::pair<std::string const, std::string> > ... https://bugzilla.redhat.com/show_bug.cgi?id=995699 -------------------------------------------------------------------------------- ================================================================================ rubygem-cinch-2.0.10-1.fc19 (FEDORA-2013-20793) An IRC Bot Building Framework -------------------------------------------------------------------------------- Update Information: Rebased on Cinch 2.0.10. -------------------------------------------------------------------------------- ChangeLog: * Wed Nov 6 2013 Darryl L. Pierce <dpierce@xxxxxxxxxx> - 2.0.10-1 - Rebased on Cinch 2.0.10. -------------------------------------------------------------------------------- ================================================================================ rubygem-equalizer-0.0.7-2.fc19 (FEDORA-2013-20791) Module to define equality, equivalence and inspection methods -------------------------------------------------------------------------------- Update Information: First Fedora release. rubygem-equalizer is a module to define equality, equivalence and inspection methods. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1025930 - Review Request: rubygem-equalizer - Module to define equality, equivalence and inspection methods https://bugzilla.redhat.com/show_bug.cgi?id=1025930 -------------------------------------------------------------------------------- ================================================================================ rubygem-redis-namespace-1.3.1-1.fc19 (FEDORA-2013-20805) Namespaces Redis commands -------------------------------------------------------------------------------- Update Information: New Fedora package. rubygem-redis-namespace adds a Redis::Namespace class which can be used to namespace calls to Redis. This is useful when using a single instance of Redis with multiple, different applications. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1025984 - Review Request: rubygem-redis-namespace - Namespaces Redis commands https://bugzilla.redhat.com/show_bug.cgi?id=1025984 -------------------------------------------------------------------------------- ================================================================================ rubygem-shoulda-context-1.1.6-1.fc19 (FEDORA-2013-20803) Context framework extracted from Shoulda -------------------------------------------------------------------------------- Update Information: This update removes deprecation warnings with Rails 4. -------------------------------------------------------------------------------- ChangeLog: -------------------------------------------------------------------------------- References: [ 1 ] Bug #1026732 - rubygem-shoulda-context-1.1.6 is available https://bugzilla.redhat.com/show_bug.cgi?id=1026732 -------------------------------------------------------------------------------- ================================================================================ scilab-5.4.1-5.fc19 (FEDORA-2013-20819) Scientific software package for numerical computations -------------------------------------------------------------------------------- Update Information: add the bwidget dependency -------------------------------------------------------------------------------- ChangeLog: * Wed Nov 6 2013 Clément David <c.david86@xxxxxxxxx> - 5.4.1-5 - Add the bwidget dependency -------------------------------------------------------------------------------- References: [ 1 ] Bug #1026735 - Scilab 5.4.1 dependency on bwidget package seems to be missing https://bugzilla.redhat.com/show_bug.cgi?id=1026735 -------------------------------------------------------------------------------- ================================================================================ sddm-0.2.0-0.16.20130914git50ca5b20.fc19 (FEDORA-2013-19291) QML based X11 desktop manager -------------------------------------------------------------------------------- Update Information: Improved session selection, and use basic fedora (non-userlist) theme by default. -------------------------------------------------------------------------------- ChangeLog: * Tue Oct 15 2013 Martin Briza <mbriza@xxxxxxxxxx> - 0.2.0-0.16.20130914git50ca5b20 - Fixed the Fedora theme wallpaper path * Tue Oct 15 2013 Martin Briza <mbriza@xxxxxxxxxx> - 0.2.0-0.15.20130914git50ca5b20 - Added XDMCP support patch - Modified the config to reflect the added XDMCP support (disabled by default) * Tue Oct 15 2013 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> - 0.2.0-0.14.20130914git50ca5b20 - sddm.conf: CurrentTheme=fedora * Mon Oct 14 2013 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> - 0.2.0-0.13.20130914git50ca5b20 - include standard theme/config here, Obsoletes: kde-settings-sddm - sddm.conf: SessionCommand=/etc/X11/xinit/Xsession * Mon Oct 14 2013 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> - 0.2.0-0.12.20130914git50ca5b20 - -themes: Obsoletes: sddm ... for upgrade path * Mon Oct 14 2013 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> - 0.2.0-0.11.20130914git50ca5b20 - -themes subpkg * Sat Sep 21 2013 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> - 0.2.0-0.10.20130914git50ca5b20 - use %_qt4_importdir, %systemd_requires macros - own %_datadir/apps/sddm - fix Release - drop explicit Requires: pam (let rpm autodeps handle it) * Mon Sep 16 2013 Martin Briza <mbriza@xxxxxxxxxx> - 0.2.0-0.9.20130914git50ca5b20 - Requires: kde-settings-sddm * Mon Sep 16 2013 Martin Briza <mbriza@xxxxxxxxxx> - 0.2.0-0.8.20130914git50ca5b20 - Moved the config to the kde-settings-sddm package * Sat Sep 14 2013 Martin Briza <mbriza@xxxxxxxxxx> - 0.2.0-0.7.20130914git50ca5b20 - Removed the nonfree font from the package, replaced with "Sans" - Temporarily set my own repository as the origin to avoid having the font in the srpm - Changing the source also brings us a few new commits and removes Patch1 for PAM * Mon Sep 9 2013 Martin Briza <mbriza@xxxxxxxxxx> - 0.2.0-0.6.20130821gite707e229 - Added the patch, forgot to apply it, now it's okay * Mon Sep 9 2013 Martin Briza <mbriza@xxxxxxxxxx> - 0.2.0-0.5.20130821gite707e229 - Set a better order of the X sessions selection and hidden the Custom one (#1004902) -------------------------------------------------------------------------------- ================================================================================ tetex-elsevier-0.1.20090917-11.fc19 (FEDORA-2013-20794) Elsevier LaTeX style files and documentation -------------------------------------------------------------------------------- Update Information: fix install tree; spec sync with f20 and up -------------------------------------------------------------------------------- ChangeLog: * Tue Nov 5 2013 Michael J Gruber <mjg@xxxxxxxxxxxxxxxxx> - 0.1.20090917-11 - Use the actual texlive local tree, not the documented one (#971778). * Sun Nov 3 2013 Ville Skyttä <ville.skytta@xxxxxx> - 0.1.20090917-10 - Honor setups with unversioned doc dirs (#993901). * Sun Aug 4 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.1.20090917-9 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #971778 - tetex-elsevier after an update still in a "wrong" path https://bugzilla.redhat.com/show_bug.cgi?id=971778 [ 2 ] Bug #993901 - tetex-elsevier possibly affected by F-20 unversioned docdir change https://bugzilla.redhat.com/show_bug.cgi?id=993901 -------------------------------------------------------------------------------- ================================================================================ thunderbird-lightning-2.6.2-3.fc19 (FEDORA-2013-20800) The calendar extension to Thunderbird -------------------------------------------------------------------------------- Update Information: Add upstream patch to fix caldav sync -------------------------------------------------------------------------------- ChangeLog: * Mon Nov 4 2013 Orion Poplawski <orion@xxxxxxxxxxxxx> - 2.6.2-3 - Add upstream patch to fix caldav sync -------------------------------------------------------------------------------- References: [ 1 ] Bug #1024012 - CalDAV: Unexpected response, status: HTTP/1.1 507 Insufficient Storage https://bugzilla.redhat.com/show_bug.cgi?id=1024012 -------------------------------------------------------------------------------- ================================================================================ tubo-5.0.10-2.fc19 (FEDORA-2013-20795) Library to thread process std-in/std-err/std-out from fork() child -------------------------------------------------------------------------------- Update Information: *Update to 5.0.10 *'example' and 'tuboexec' binaries are now packaged *Added glib2-devel BR New package. -------------------------------------------------------------------------------- ChangeLog: * Wed Nov 6 2013 Antonio Trande <sagitter@xxxxxxxxxxxxxxxxx> 5.0.10-2 - Added glib2-devel BR * Wed Nov 6 2013 Antonio Trande <sagitter@xxxxxxxxxxxxxxxxx> 5.0.10-1 - Update to 5.0.10 - 'example' and 'tuboexec' binaries are now packaged -------------------------------------------------------------------------------- References: [ 1 ] Bug #1016807 - Review Request: tubo - Library to thread process std-in/std-err/std-out from fork() child https://bugzilla.redhat.com/show_bug.cgi?id=1016807 -------------------------------------------------------------------------------- ================================================================================ wireshark-1.10.3-2.fc19 (FEDORA-2013-20829) Network traffic analyzer -------------------------------------------------------------------------------- Update Information: Harden dumpcap capabilities * Ver. 1.10.3 -------------------------------------------------------------------------------- ChangeLog: * Wed Nov 6 2013 Peter Hatina <phatina@xxxxxxxxxx> - 1.10.3-2 - harden dumpcap capabilities * Sat Nov 2 2013 Peter Lemenkov <lemenkov@xxxxxxxxx> - 1.10.3-1 - Ver. 1.10.3 - Dropped upsteamed patch no. 13 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1026534 - CVE-2013-6336 wireshark: IEEE 802.15.4 dissector crash (wnpa-sec-2013-61) https://bugzilla.redhat.com/show_bug.cgi?id=1026534 [ 2 ] Bug #1026538 - CVE-2013-6337 wireshark: NBAP dissector crash (wnpa-sec-2013-62) https://bugzilla.redhat.com/show_bug.cgi?id=1026538 [ 3 ] Bug #1026539 - CVE-2013-6338 wireshark: SIP dissector crash (wnpa-sec-2013-63) https://bugzilla.redhat.com/show_bug.cgi?id=1026539 [ 4 ] Bug #1026540 - CVE-2013-6339 wireshark: ActiveMQ OpenWire dissector large loop (wnpa-sec-2013-64) https://bugzilla.redhat.com/show_bug.cgi?id=1026540 [ 5 ] Bug #1026541 - CVE-2013-6340 wireshark: TCP dissector crash (wnpa-sec-2013-65) https://bugzilla.redhat.com/show_bug.cgi?id=1026541 -------------------------------------------------------------------------------- -- test mailing list test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe: https://admin.fedoraproject.org/mailman/listinfo/test
