The following Fedora 20 Security updates need testing: Age URL 41 https://admin.fedoraproject.org/updates/FEDORA-2013-17866/chicken-4.8.0.4-4.fc20 30 https://admin.fedoraproject.org/updates/FEDORA-2013-18705/phpMyAdmin-3.5.8.2-1.fc20 23 https://admin.fedoraproject.org/updates/FEDORA-2013-19198/quassel-0.9.1-1.fc20 15 https://admin.fedoraproject.org/updates/FEDORA-2013-19934/openstack-glance-2013.2-2.fc20 12 https://admin.fedoraproject.org/updates/FEDORA-2013-20138/mantis-1.2.15-3.fc20 10 https://admin.fedoraproject.org/updates/FEDORA-2013-19507/openstack-keystone-2013.2-2.fc20 3 https://admin.fedoraproject.org/updates/FEDORA-2013-20749/python-djblets-0.7.23-1.fc20,ReviewBoard-1.7.17-1.fc20 3 https://admin.fedoraproject.org/updates/FEDORA-2013-20687/krb5-1.11.3-29.fc20 2 https://admin.fedoraproject.org/updates/FEDORA-2013-20869/libvirt-1.1.3.1-1.fc20 1 https://admin.fedoraproject.org/updates/FEDORA-2013-20940/prboom-plus-2.5.1.3-3.fc20 1 https://admin.fedoraproject.org/updates/FEDORA-2013-20929/ibus-pinyin-1.5.0-5.fc20 1 https://admin.fedoraproject.org/updates/FEDORA-2013-20937/wireshark-1.10.3-3.fc20 1 https://admin.fedoraproject.org/updates/FEDORA-2013-20942/drupal7-context-3.1-1.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2013-21006/bip-0.8.9-1.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2013-21000/xen-4.3.1-2.fc20 The following Fedora 20 Critical Path updates have yet to be approved: Age URL 9 https://admin.fedoraproject.org/updates/FEDORA-2013-20393/phonon-4.6.0-9.fc20 8 https://admin.fedoraproject.org/updates/FEDORA-2013-20475/libevdev-0.4.1-1.fc20 7 https://admin.fedoraproject.org/updates/FEDORA-2013-20522/highlight-3.16.1-1.fc20 5 https://admin.fedoraproject.org/updates/FEDORA-2013-20596/gupnp-0.20.8-1.fc20,gssdp-0.14.6-1.fc20 4 https://admin.fedoraproject.org/updates/FEDORA-2013-20701/initial-setup-0.3.10-1.fc20 3 https://admin.fedoraproject.org/updates/FEDORA-2013-20780/libbluray-0.4.0-1.fc20 2 https://admin.fedoraproject.org/updates/FEDORA-2013-20836/cyrus-sasl-2.1.26-13.fc20 1 https://admin.fedoraproject.org/updates/FEDORA-2013-20939/libpcap-1.5.0-1.20131108git459712e.fc20 1 https://admin.fedoraproject.org/updates/FEDORA-2013-20935/libdrm-2.4.47-1.fc20 1 https://admin.fedoraproject.org/updates/FEDORA-2013-20951/xorg-x11-drv-qxl-0.1.1-2.fc20 1 https://admin.fedoraproject.org/updates/FEDORA-2013-20949/python-setuptools-1.3.1-1.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2013-21002/gdb-7.6.50.20130731-16.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2013-20999/libquvi-scripts-0.9.20131104-1.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2013-20946/heisenbug-kde-theme-19.90.5-1.fc20,sddm-0.2.0-0.16.20130914git50ca5b20.fc20,kde-settings-20-7.fc20 The following builds have been pushed to Fedora 20 updates-testing abe-1.1-20.fc20 appdata-tools-0.1.6-1.fc20 ardour3-3.5.74-2.fc20 bip-0.8.9-1.fc20 gdb-7.6.50.20130731-16.fc20 gnote-3.10.1-1.fc20 heisenbug-kde-theme-19.90.5-1.fc20 kde-settings-20-7.fc20 libltc-1.1.3-1.fc20 libquvi-scripts-0.9.20131104-1.fc20 lttv-1.5-4.fc20 manaplus-1.3.10.27.2-1.fc20 nfsometer-1.6-1.fc20 nodejs-mapnik-1.2.2-1.fc20 nodejs-srs-0.3.8-1.fc20 orthanc-0.7.2-1.fc20 plowshare-0.9.4-0.45.20131102git.fc20 pylibpcap-0.6.4-3.fc20 pyserial-2.6-7.fc20 python-couchdbkit-0.6.5-2.fc20 python-gnutls-1.2.4-3.fc20 qt5-qtaccountsservice-0.1.0-3.fc20 qt5-qtconfiguration-0.1.0-3.fc20 radicale-0.8-5.fc20 reposurgeon-2.41-1.fc20 sddm-0.2.0-0.16.20130914git50ca5b20.fc20 sugar-write-94-1.fc20 xen-4.3.1-2.fc20 Details about builds: ================================================================================ abe-1.1-20.fc20 (FEDORA-2013-21015) Scrolling, platform-jumping, ancient pyramid exploring game -------------------------------------------------------------------------------- Update Information: This update adds an AppData xml file. -------------------------------------------------------------------------------- ChangeLog: * Fri Nov 8 2013 Jerry James <loganjerry@xxxxxxxxx> - 1.1-20 - Add an AppData file -------------------------------------------------------------------------------- ================================================================================ appdata-tools-0.1.6-1.fc20 (FEDORA-2013-21011) Tools for AppData files -------------------------------------------------------------------------------- Update Information: - New upstream release - Add a style rule to require 300 chars of <p> content before <ul> - Add an --output-format parameter that can optionally output HTML or XML - Allow GFDL as an acceptable content licence - Generate appdata.rng from appdata.rnc at build time - Host an online version of the AppData validation tool - Install included RELAX NG schema and make it automatically loadable by Emacs - Support the 'codec' AppData kind - Validate AppData files with metadata keys -------------------------------------------------------------------------------- ChangeLog: * Fri Nov 8 2013 Richard Hughes <richard@xxxxxxxxxxx> 0.1.6-1 - New upstream release - Fix up several warnings spotted when building with -Wformat - Fix the schema install logic * Fri Nov 8 2013 Richard Hughes <richard@xxxxxxxxxxx> 0.1.5-1 - New upstream release - Add a style rule to require 300 chars of <p> content before <ul> - Add an --output-format parameter that can optionally output HTML or XML - Add simple APPDATA_XML m4 macro - Allow GFDL as an acceptable content licence - Generate appdata.rng from appdata.rnc at build time - Host an online version of the AppData validation tool - Ignore the <compulsory_for_desktop> private key - Install included RELAX NG schema and make it automatically loadable by Emacs - Support the 'codec' AppData kind - Validate AppData files with metadata keys -------------------------------------------------------------------------------- ================================================================================ ardour3-3.5.74-2.fc20 (FEDORA-2013-20094) Digital Audio Workstation -------------------------------------------------------------------------------- Update Information: Add ardour v3.x and libltc to Fedora. -------------------------------------------------------------------------------- References: [ 1 ] Bug #929044 - Ardour version 3 package request https://bugzilla.redhat.com/show_bug.cgi?id=929044 [ 2 ] Bug #1022255 - Review Request: libltc - Linear/Longitudinal Time Code (LTC) Library https://bugzilla.redhat.com/show_bug.cgi?id=1022255 [ 3 ] Bug #1007099 - Review Request: ardour3 - Digital Audio Workstation https://bugzilla.redhat.com/show_bug.cgi?id=1007099 -------------------------------------------------------------------------------- ================================================================================ bip-0.8.9-1.fc20 (FEDORA-2013-21006) IRC Bouncer -------------------------------------------------------------------------------- Update Information: * Upstream v0.8.9 * CVE-2013-4550 - failed SSL handshake resource leak -------------------------------------------------------------------------------- ChangeLog: * Sat Nov 9 2013 Brian C. Lane <bcl@xxxxxxxxxx> 0.8.9-1 - Upstream v0.8.9 - CVE-2013-4550 - failed SSL handshake resource leak - Removed 2 patches included in new version -------------------------------------------------------------------------------- References: [ 1 ] Bug #1028605 - CVE-2013-4550 bip: failed SSL handshake resource leak https://bugzilla.redhat.com/show_bug.cgi?id=1028605 -------------------------------------------------------------------------------- ================================================================================ gdb-7.6.50.20130731-16.fc20 (FEDORA-2013-21002) A GNU source-level debugger for C, C++, Fortran, Go and other languages -------------------------------------------------------------------------------- Update Information: Fix explicit Class:: inside class scope (Keith Seitz). -------------------------------------------------------------------------------- ChangeLog: * Sat Nov 9 2013 Jan Kratochvil <jan.kratochvil@xxxxxxxxxx> - 7.6.50.20130731-16.fc20 - Fix explicit Class:: inside class scope (BZ 874817, Keith Seitz). * Tue Nov 5 2013 Jan Kratochvil <jan.kratochvil@xxxxxxxxxx> - 7.6.50.20130731-15.fc20 - [aarch64] Backport two fixes (BZ 1026484). * Sun Nov 3 2013 Jan Kratochvil <jan.kratochvil@xxxxxxxxxx> - 7.6.50.20130731-14.fc20 - Fix /usr/bingdb-add-index to also use -iex 'set auto-load no'. * Wed Oct 30 2013 Jan Kratochvil <jan.kratochvil@xxxxxxxxxx> - 7.6.50.20130731-13.fc20 - [rhel5] Fix /etc/gdbinit compatibility with python-2.4. -------------------------------------------------------------------------------- ================================================================================ gnote-3.10.1-1.fc20 (FEDORA-2013-21004) Note-taking application -------------------------------------------------------------------------------- Update Information: New upstream release: 3.10.1 "You teach best what you most need to learn" - 2013/10/27 Fixes: * Add missing space in user visible string (#709494) * Fix spell-check breaking note links (#703664) * Fix note rename dialog freeze * Fix formatting breaking links (#702160, #702239) * Fix internal links merging with other links * Fix crash when disabling note add-in * Fix build without C++11 (#710949) Translations: * Updated translations: - Brazilian Portuguese (pt_BR) - Czech (cs) - Hungarian (hu) - Latvian (lv) - Lithuanian (lt) - Polish (pl) - Slovenian (sl) - Spanish (es) * Updated Spanish manual (es) -------------------------------------------------------------------------------- ChangeLog: * Sat Nov 9 2013 Ankur Sinha <ankursinha AT fedoraproject DOT org> 3.10.1-1 - Update to 3.10.1 - News: http://ftp.gnome.org/pub/GNOME/sources/gnote/3.10/gnote-3.10.1.news -------------------------------------------------------------------------------- References: [ 1 ] Bug #972484 - gnote-3.11.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=972484 -------------------------------------------------------------------------------- ================================================================================ heisenbug-kde-theme-19.90.5-1.fc20 (FEDORA-2013-20946) Heisenbug KDE Theme -------------------------------------------------------------------------------- Update Information: Add some default settings polish: - drop kde-settings-sddm - includes default sddm configuration and basic fedora (non-userlist) theme in sddm packaging instead. - kdmrc: ConfigVersion 2.4, GrabInput=Always (#631767) - kdmrc: ServerAttempts=2,ServerTimeout=60 (#967521) - kmixrc: VolumeFeedback=true - gpg-agent isn't started automatically with KDE anymore (#845492) -------------------------------------------------------------------------------- ChangeLog: * Wed Oct 16 2013 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 19.90.5-1 - drop sddm theme (moved to sddm packaging) -------------------------------------------------------------------------------- References: [ 1 ] Bug #631767 - kdm shutdown menu lacks focus, keyboard control https://bugzilla.redhat.com/show_bug.cgi?id=631767 [ 2 ] Bug #845492 - gpg-agent isn't started automatically with KDE anymore https://bugzilla.redhat.com/show_bug.cgi?id=845492 -------------------------------------------------------------------------------- ================================================================================ kde-settings-20-7.fc20 (FEDORA-2013-20946) Config files for kde -------------------------------------------------------------------------------- Update Information: Add some default settings polish: - drop kde-settings-sddm - includes default sddm configuration and basic fedora (non-userlist) theme in sddm packaging instead. - kdmrc: ConfigVersion 2.4, GrabInput=Always (#631767) - kdmrc: ServerAttempts=2,ServerTimeout=60 (#967521) - kmixrc: VolumeFeedback=true - gpg-agent isn't started automatically with KDE anymore (#845492) -------------------------------------------------------------------------------- ChangeLog: * Fri Nov 8 2013 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 20-7 - kdmrc: ServerAttempts=2,ServerTimeout=60 (#967521) * Thu Nov 7 2013 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 20-6 - kmixrc: VolumeFeedback=true - kdmrc: ConfigVersion 2.4 - gpg-agent isn't started automatically with KDE anymore (#845492) * Mon Oct 14 2013 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 20-4 - drop -sddm -------------------------------------------------------------------------------- References: [ 1 ] Bug #631767 - kdm shutdown menu lacks focus, keyboard control https://bugzilla.redhat.com/show_bug.cgi?id=631767 [ 2 ] Bug #845492 - gpg-agent isn't started automatically with KDE anymore https://bugzilla.redhat.com/show_bug.cgi?id=845492 -------------------------------------------------------------------------------- ================================================================================ libltc-1.1.3-1.fc20 (FEDORA-2013-20094) Linear/Longitudinal Time Code (LTC) Library -------------------------------------------------------------------------------- Update Information: Add ardour v3.x and libltc to Fedora. -------------------------------------------------------------------------------- References: [ 1 ] Bug #929044 - Ardour version 3 package request https://bugzilla.redhat.com/show_bug.cgi?id=929044 [ 2 ] Bug #1022255 - Review Request: libltc - Linear/Longitudinal Time Code (LTC) Library https://bugzilla.redhat.com/show_bug.cgi?id=1022255 [ 3 ] Bug #1007099 - Review Request: ardour3 - Digital Audio Workstation https://bugzilla.redhat.com/show_bug.cgi?id=1007099 -------------------------------------------------------------------------------- ================================================================================ libquvi-scripts-0.9.20131104-1.fc20 (FEDORA-2013-20999) Embedded lua scripts that libquvi uses for parsing the media details -------------------------------------------------------------------------------- Update Information: v0.9.20131104 Mohamed El Morabity: - Fix support for arte.tv [485ce77] Toni Gundogdu: - media: Add support for tube.majestyc.net [47a1639] - media: Add support for vzaar.com [343db67] - media/lego.lua: Update ID pattern [ab8c084] - media/liveleak.lua: Ignore fac3book iframe src values [bf18023] - media/metacafe.lua: Relicense under AGPLv3+ [0593317] - Move website/metacafe.lua to media/ [47d3d3d] - Remove query_formats function [e0731b8] - Rewrite ident function [3231cbf] - Rewrite parse function [b13ee5f] - media/tagtele.lua: Relicense under AGPLv3+ [af8dcb3] - Move website/tagtele.lua to media/ [118a92e] - Remove query_formats function [6e73a9a] - Rewrite ident function [60da497] - Rewrite parse function [cc40857] - media/tapuz.lua: Relicense under AGPLv3+ [22c0ba7] - Move website/tapuz.lua to media/ [f80a844] - Remove query_formats function [2f9cb5f] - Rewrite ident function [b44e053] - Rewrite parse function [5f5bb57] - media/videobash.lua: Relicense under AGPLv3+ [5a1a49b] - Move website/videobash.lua to media/ [6adcc15] - Remove query_formats function [b1b1d5f] - Rewrite ident function [fa6ef82] - Rewrite parse function [b712d04] - media/vimeo.lua: Mark as FIXME [c5e7cc8] - scan: Add support for embedded vzaar.com media URLs [2d8bfc3] -------------------------------------------------------------------------------- ChangeLog: * Sat Nov 9 2013 Christopher Meng <rpm@xxxxxxxx> - 0.9.20131104-1 - New version. * Sun Oct 20 2013 Christopher Meng <rpm@xxxxxxxx> - 0.9.20131012-1 - New version. - Add missing lua dep again(BZ#1021156). -------------------------------------------------------------------------------- ================================================================================ lttv-1.5-4.fc20 (FEDORA-2013-21007) Linux Trace Toolkit Viewer -------------------------------------------------------------------------------- Update Information: New upstream release LTTV or Linux Trace Toolkit Viewer is a modular stand-alone viewer for kernel and userspace traces. So just grab your CTF trace file and check it. It may not be so pretty to look at, but its fast and usable. I have checked it and it seems to work just fine for me. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1024127 - Review Request: lttv - Linux Trace Toolkit Viewer https://bugzilla.redhat.com/show_bug.cgi?id=1024127 -------------------------------------------------------------------------------- ================================================================================ manaplus-1.3.10.27.2-1.fc20 (FEDORA-2013-21012) OpenSource 2D MMORPG client for Evol Online and The Mana World -------------------------------------------------------------------------------- Update Information: New upstream release including bug fixes and enhancements. ChangeLog: https://www.gitorious.org/manaplus/manaplus/source/94aee6b81132884686bce4473d67380c57c72fff:ChangeLog -------------------------------------------------------------------------------- ChangeLog: * Sat Nov 9 2013 Bruno Wolff III <bruno@xxxxxxxx> - 1.3.10.27.2-1 - Update to upstream 1.3.10.27.2 - ChangeLog: https://www.gitorious.org/manaplus/manaplus/source/94aee6b81132884686bce4473d67380c57c72fff:ChangeLog - Temporarily, the -n option is needed for %setup -------------------------------------------------------------------------------- ================================================================================ nfsometer-1.6-1.fc20 (FEDORA-2013-20997) NFS Performance Framework Tool -------------------------------------------------------------------------------- Update Information: NFSometer v1.6: This version includes bugfixes, code cleanups and speedups and style/layout changes to reports NFSometer v1.5: This version includes several bugfixes, including one that caused a traceback when parsing results from older kernels. NFSometer v1.4 : This version has a redesign of reports, many bugfixes and several new features. NFSometer is a performance measurement framework for running workloads and reporting results across NFS protocol versions, NFS options and Linux NFS client implementations. Updated to the latest upstream release: 1.5 -------------------------------------------------------------------------------- ChangeLog: * Fri Nov 8 2013 Peter Robinson <pbrobinson@xxxxxxxxxxxxxxxxx> 1.6-1 - Update to 1.6 -------------------------------------------------------------------------------- ================================================================================ nodejs-mapnik-1.2.2-1.fc20 (FEDORA-2013-21014) Bindings to Mapnik tile rendering library for Node.js -------------------------------------------------------------------------------- Update Information: Update node modules to latest version -------------------------------------------------------------------------------- ChangeLog: * Fri Nov 8 2013 Tom Hughes <tom@xxxxxxxxxx> - 1.2.2-1 - Update to 1.2.2 upstream release -------------------------------------------------------------------------------- References: [ 1 ] Bug #1027750 - nodejs-srs-0.3.8 is available https://bugzilla.redhat.com/show_bug.cgi?id=1027750 [ 2 ] Bug #1027746 - nodejs-mapnik-1.2.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=1027746 -------------------------------------------------------------------------------- ================================================================================ nodejs-srs-0.3.8-1.fc20 (FEDORA-2013-21014) Spatial reference library for Node.js -------------------------------------------------------------------------------- Update Information: Update node modules to latest version -------------------------------------------------------------------------------- ChangeLog: * Fri Nov 8 2013 Tom Hughes <tom@xxxxxxxxxx> - 0.3.8-1 - Update to 0.3.8 upstream release * Sun Nov 3 2013 Tom Hughes <tom@xxxxxxxxxx> - 0.3.7-1 - Update to 0.3.7 upstream release * Wed Oct 30 2013 Tom Hughes <tom@xxxxxxxxxx> - 0.3.6-2 - Rebuild with correct source archive * Wed Oct 30 2013 Tom Hughes <tom@xxxxxxxxxx> - 0.3.6-1 - Update to 0.3.6 upstream release -------------------------------------------------------------------------------- References: [ 1 ] Bug #1027750 - nodejs-srs-0.3.8 is available https://bugzilla.redhat.com/show_bug.cgi?id=1027750 [ 2 ] Bug #1027746 - nodejs-mapnik-1.2.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=1027746 -------------------------------------------------------------------------------- ================================================================================ orthanc-0.7.2-1.fc20 (FEDORA-2013-21010) RESTful DICOM server for healthcare and medical research -------------------------------------------------------------------------------- Update Information: New upstream version of Orthanc -------------------------------------------------------------------------------- ChangeLog: * Fri Nov 8 2013 Sebastien Jodogne <s.jodogne@xxxxxxxxx> 0.7.2-1 - New upstream version * Wed Oct 30 2013 Sebastien Jodogne <s.jodogne@xxxxxxxxx> 0.7.1-1 - New upstream version - Fix for big endian architectures (bug #985748) - Packaging of the Orthanc Client library * Mon Sep 16 2013 Sebastien Jodogne <s.jodogne@xxxxxxxxx> 0.6.1-1 - New upstream version -------------------------------------------------------------------------------- ================================================================================ plowshare-0.9.4-0.45.20131102git.fc20 (FEDORA-2013-20994) Download and upload files from file-sharing websites -------------------------------------------------------------------------------- Update Information: New upstream snapshot. -------------------------------------------------------------------------------- ChangeLog: * Fri Nov 8 2013 Elder Marco <eldermarco@xxxxxxxxxxxxxxxxx> - 0.9.4-0.45.20131102git - New upstream snapshot -------------------------------------------------------------------------------- ================================================================================ pylibpcap-0.6.4-3.fc20 (FEDORA-2013-21013) A Python module for libpcap -------------------------------------------------------------------------------- Update Information: Python module for the libpcap packet capture library, based on the original python libpcap module by Aaron Rhodes. -------------------------------------------------------------------------------- References: [ 1 ] Bug #902006 - Review Request: pylibpcap - A Python module for libpcap https://bugzilla.redhat.com/show_bug.cgi?id=902006 -------------------------------------------------------------------------------- ================================================================================ pyserial-2.6-7.fc20 (FEDORA-2013-21005) Python serial port access library -------------------------------------------------------------------------------- Update Information: Add python3 support. -------------------------------------------------------------------------------- ChangeLog: -------------------------------------------------------------------------------- References: [ 1 ] Bug #1003447 - Please add python3 support https://bugzilla.redhat.com/show_bug.cgi?id=1003447 -------------------------------------------------------------------------------- ================================================================================ python-couchdbkit-0.6.5-2.fc20 (FEDORA-2013-21009) CouchDB framework in Python -------------------------------------------------------------------------------- Update Information: New RPM. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1013669 - Review Request: python-couchdbkit - CouchDB framework in Python https://bugzilla.redhat.com/show_bug.cgi?id=1013669 -------------------------------------------------------------------------------- ================================================================================ python-gnutls-1.2.4-3.fc20 (FEDORA-2013-21008) Python wrapper for the GNUTLS library -------------------------------------------------------------------------------- Update Information: This fixes removes the gnutls-extras code as that library no longer exists, sets the library version to .28 instead of .26 and changes the test for openpgp. There is the possibility that there could be regressions however the package as is is completely unuseable so this is should be an improvement. -------------------------------------------------------------------------------- ChangeLog: * Fri Nov 8 2013 Nathanael Noblet <nathanael@xxxxxxx> - 1.2.4-3 - Fix bug #1015332 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1015332 - python-gnutls isn't tracking the gnutls version https://bugzilla.redhat.com/show_bug.cgi?id=1015332 -------------------------------------------------------------------------------- ================================================================================ qt5-qtaccountsservice-0.1.0-3.fc20 (FEDORA-2013-20995) Qt5 - AccountService addon -------------------------------------------------------------------------------- Update Information: Newly imported package -------------------------------------------------------------------------------- ================================================================================ qt5-qtconfiguration-0.1.0-3.fc20 (FEDORA-2013-21001) Qt5 - QtConfiguration module -------------------------------------------------------------------------------- Update Information: Newly imported package -------------------------------------------------------------------------------- References: [ 1 ] Bug #1011501 - Review Request: qt5-qtaccountsservice - Qt5 - AccountService addon https://bugzilla.redhat.com/show_bug.cgi?id=1011501 -------------------------------------------------------------------------------- ================================================================================ radicale-0.8-5.fc20 (FEDORA-2013-21003) A simple CalDAV (calendar) and CardDAV (contact) server -------------------------------------------------------------------------------- Update Information: Add SELinux policy and httpd config enhancements Add SELinux policy and update httpd config -------------------------------------------------------------------------------- ChangeLog: * Fri Nov 8 2013 Juan Orti Alcaine <jorti@xxxxxxxxxxxxxxxxx> - 0.8-5 - Hardcode _selinux_policy_version in F20 because of #999584 * Thu Oct 3 2013 Juan Orti Alcaine <jorti@xxxxxxxxxxxxxxxxx> - 0.8-4 - Update httpd config file and add SELinux policy. Bug #1014408 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1014408 - [PATCH] add SELinux policy and httpd configuration improvements for radicale https://bugzilla.redhat.com/show_bug.cgi?id=1014408 -------------------------------------------------------------------------------- ================================================================================ reposurgeon-2.41-1.fc20 (FEDORA-2013-20998) SCM Repository Manipulation Tool -------------------------------------------------------------------------------- Update Information: Fixed a fatal bug when reading any symlink from a live Subversion repo. Added svn_no_autoignores option. -------------------------------------------------------------------------------- ChangeLog: * Sat Nov 9 2013 Christopher Meng <rpm@xxxxxxxx> - 2.41-1 - Bugfix release. -------------------------------------------------------------------------------- ================================================================================ sddm-0.2.0-0.16.20130914git50ca5b20.fc20 (FEDORA-2013-20946) QML based X11 desktop manager -------------------------------------------------------------------------------- Update Information: Add some default settings polish: - drop kde-settings-sddm - includes default sddm configuration and basic fedora (non-userlist) theme in sddm packaging instead. - kdmrc: ConfigVersion 2.4, GrabInput=Always (#631767) - kdmrc: ServerAttempts=2,ServerTimeout=60 (#967521) - kmixrc: VolumeFeedback=true - gpg-agent isn't started automatically with KDE anymore (#845492) -------------------------------------------------------------------------------- ChangeLog: * Tue Oct 15 2013 Martin Briza <mbriza@xxxxxxxxxx> - 0.2.0-0.16.20130914git50ca5b20 - Fixed the Fedora theme wallpaper path * Tue Oct 15 2013 Martin Briza <mbriza@xxxxxxxxxx> - 0.2.0-0.15.20130914git50ca5b20 - Added XDMCP support patch - Modified the config to reflect the added XDMCP support (disabled by default) * Tue Oct 15 2013 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> - 0.2.0-0.14.20130914git50ca5b20 - sddm.conf: CurrentTheme=fedora * Mon Oct 14 2013 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> - 0.2.0-0.13.20130914git50ca5b20 - include standard theme/config here, Obsoletes: kde-settings-sddm - sddm.conf: SessionCommand=/etc/X11/xinit/Xsession * Mon Oct 14 2013 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> - 0.2.0-0.12.20130914git50ca5b20 - -themes: Obsoletes: sddm ... for upgrade path * Mon Oct 14 2013 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> - 0.2.0-0.11.20130914git50ca5b20 - -themes subpkg * Sat Sep 21 2013 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> - 0.2.0-0.10.20130914git50ca5b20 - use %_qt4_importdir, %systemd_requires macros - own %_datadir/apps/sddm - fix Release - drop explicit Requires: pam (let rpm autodeps handle it) -------------------------------------------------------------------------------- References: [ 1 ] Bug #631767 - kdm shutdown menu lacks focus, keyboard control https://bugzilla.redhat.com/show_bug.cgi?id=631767 [ 2 ] Bug #845492 - gpg-agent isn't started automatically with KDE anymore https://bugzilla.redhat.com/show_bug.cgi?id=845492 -------------------------------------------------------------------------------- ================================================================================ sugar-write-94-1.fc20 (FEDORA-2013-20996) Word processor for Sugar -------------------------------------------------------------------------------- Update Information: New upstream v94 release -------------------------------------------------------------------------------- ChangeLog: * Fri Nov 8 2013 Peter Robinson <pbrobinson@xxxxxxxxxxxxxxxxx> 94-1 - Update to v94 * Mon Oct 14 2013 Peter Robinson <pbrobinson@xxxxxxxxxxxxxxxxx> 93-1 - Update to v93 -------------------------------------------------------------------------------- ================================================================================ xen-4.3.1-2.fc20 (FEDORA-2013-21000) Xen is a virtual machine monitor -------------------------------------------------------------------------------- Update Information: Host crash due to HVM guest VMX instruction execution -------------------------------------------------------------------------------- ChangeLog: * Sat Nov 9 2013 Michael Young <m.a.young@xxxxxxxxxxxx> - 4.3.1-2 - Host crash due to HVM guest VMX instruction execution [XSA-75, CVE-2013-4551] (#1028599) * Fri Nov 1 2013 Michael Young <m.a.young@xxxxxxxxxxxx> - 4.3.1-1 - update to xen-4.3.1 - Lock order reversal between page allocation and grant table locks [XSA-73, CVE-2013-4494] (#1026248) * Tue Oct 29 2013 Michael Young <m.a.young@xxxxxxxxxxxx> - 4.3.0-10 - ocaml xenstored mishandles oversized message replies [XSA-72, CVE-2013-4416] (#1024450) * Thu Oct 24 2013 Michael Young <m.a.young@xxxxxxxxxxxx> - 4.3.0-9 - systemd changes to allow oxenstored to be used instead of xenstored (#1022640) * Thu Oct 10 2013 Michael Young <m.a.young@xxxxxxxxxxxx> - 4.3.0-8 - security fixes (#1017843) Information leak through outs instruction emulation in 64-bit PV guests [XSA-67, CVE-2013-4368] possible null dereference when parsing vif ratelimiting info [XSA-68, CVE-2013-4369] misplaced free in ocaml xc_vcpu_getaffinity stub [XSA-69, CVE-2013-4370] use-after-free in libxl_list_cpupool under memory pressure [XSA-70, CVE-2013-4371] qemu disk backend (qdisk) resource leak (Fedora doesn't build this qemu) [XSA-71, CVE-2013-4375] -------------------------------------------------------------------------------- References: [ 1 ] Bug #1028599 - CVE-2013-4551 xen: Host crash due to guest VMX instruction execution https://bugzilla.redhat.com/show_bug.cgi?id=1028599 -------------------------------------------------------------------------------- -- test mailing list test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe: https://admin.fedoraproject.org/mailman/listinfo/test
