The following Fedora 19 Security updates need testing: Age URL 78 https://admin.fedoraproject.org/updates/FEDORA-2013-17836/davfs2-1.4.7-3.fc19 57 https://admin.fedoraproject.org/updates/FEDORA-2013-19262/quassel-0.9.1-1.fc19 50 https://admin.fedoraproject.org/updates/FEDORA-2013-19963/openstack-glance-2013.1.4-1.fc19 9 https://admin.fedoraproject.org/updates/FEDORA-2013-22776/gimp-2.8.10-4.fc19 7 https://admin.fedoraproject.org/updates/FEDORA-2013-22919/net-snmp-5.7.2-13.fc19 7 https://admin.fedoraproject.org/updates/FEDORA-2013-22900/dcraw-9.19-4.fc19 7 https://admin.fedoraproject.org/updates/FEDORA-2013-22924/ufraw-0.19.2-10.fc19 6 https://admin.fedoraproject.org/updates/FEDORA-2013-22996/munin-2.0.18-2.fc19 6 https://admin.fedoraproject.org/updates/FEDORA-2013-23016/munin-2.0.19-1.fc19 4 https://admin.fedoraproject.org/updates/FEDORA-2013-23141/python-setuptools-0.6.49-1.fc19 4 https://admin.fedoraproject.org/updates/FEDORA-2013-23062/rubygem-i18n-0.6.1-4.fc19 3 https://admin.fedoraproject.org/updates/FEDORA-2013-23206/ack-2.12-1.fc19 1 https://admin.fedoraproject.org/updates/FEDORA-2013-23315/libreswan-3.7-1.fc19 0 https://admin.fedoraproject.org/updates/FEDORA-2013-23432/openttd-1.3.3-1.fc19 0 https://admin.fedoraproject.org/updates/FEDORA-2013-23437/v8-3.14.5.10-3.fc19 The following Fedora 19 Critical Path updates have yet to be approved: Age URL 23 https://admin.fedoraproject.org/updates/FEDORA-2013-21772/unzip-6.0-11.fc19 13 https://admin.fedoraproject.org/updates/FEDORA-2013-22509/llvm-3.3-3.fc19 13 https://admin.fedoraproject.org/updates/FEDORA-2013-22421/gvfs-1.16.4-2.fc19 13 https://admin.fedoraproject.org/updates/FEDORA-2013-22463/gvfs-1.16.4-1.fc19 13 https://admin.fedoraproject.org/updates/FEDORA-2013-22512/highlight-3.16.1-1.fc19 6 https://admin.fedoraproject.org/updates/FEDORA-2013-22229/qt-4.8.5-11.fc19 4 https://admin.fedoraproject.org/updates/FEDORA-2013-23155/langtable-0.0.23-1.fc19 4 https://admin.fedoraproject.org/updates/FEDORA-2013-23141/python-setuptools-0.6.49-1.fc19 4 https://admin.fedoraproject.org/updates/FEDORA-2013-23080/nautilus-3.8.2-2.fc19 4 https://admin.fedoraproject.org/updates/FEDORA-2013-22324/mutter-3.8.4-2.fc19,clutter-1.14.4-6.fc19 3 https://admin.fedoraproject.org/updates/FEDORA-2013-23219/iscsi-initiator-utils-6.2.0.873-17.fc19 3 https://admin.fedoraproject.org/updates/FEDORA-2013-23225/colord-1.0.5-2.fc19 1 https://admin.fedoraproject.org/updates/FEDORA-2013-23305/libfm-1.1.4-1.fc19 0 https://admin.fedoraproject.org/updates/FEDORA-2013-23380/cryptsetup-1.6.3-1.fc19 0 https://admin.fedoraproject.org/updates/FEDORA-2013-23419/gcc-4.8.2-7.fc19 0 https://admin.fedoraproject.org/updates/FEDORA-2013-23412/xorg-x11-drv-synaptics-1.7.1-6.fc19 The following builds have been pushed to Fedora 19 updates-testing ReviewBoard-1.7.20-1.fc19 aqbanking-5.0.25-4.fc19 certmonger-0.69-1.fc19 cntlm-0.92.3-4.fc19 cntlm-0.92.3-5.fc19 cryptsetup-1.6.3-1.fc19 docky-2.2.0-1.fc19 doge-2.2.0-1.fc19 fedora-review-0.5.1-1.fc19 gcc-4.8.2-7.fc19 gfal2-util-0.2.1-1.fc19 globus-gram-audit-3.2-8.fc19 globus-gram-job-manager-13.53-2.fc19 globus-gram-job-manager-slurm-1.2-2.fc19 globus-scheduler-event-generator-4.7-7.fc19 inn-2.5.3-14.fc19 knot-1.3.4-1.fc19 libburn-1.3.4-1.fc19 libisoburn-1.3.4-1.fc19 libisofs-1.3.4-1.fc19 libmemcached-1.0.16-2.fc19 libreoffice-4.1.3.2-12.fc19 mspdebug-0.22-1.fc19 opensmtpd-5.4.1p1-1.fc19 openttd-1.3.3-1.fc19 php-bartlett-PHP-CompatInfo-2.26.0-1.fc19 pyfits-3.1.3-1.fc19 python-djblets-0.7.27-1.fc19 python-elasticsearch-0.4.3-3.fc19 python-moksha-hub-1.2.2-1.fc19 qt-creator-3.0.0-1.fc19 rpmlint-1.5-6.fc19 rubygem-kramdown-1.3.0-1.fc19 rubygem-narray-0.6.0.8-9.fc19 tar-1.26-28.fc19 v8-3.14.5.10-3.fc19 wallpapoz-0.6.2-7.fc19 warzone2100-3.1.1-1.fc19 xorg-x11-drv-synaptics-1.7.1-6.fc19 Details about builds: ================================================================================ ReviewBoard-1.7.20-1.fc19 (FEDORA-2013-23405) Web-based code review tool -------------------------------------------------------------------------------- Update Information: * Thu Dec 12 2013 Stephen Gallagher <sgallagh@xxxxxxxxxx> - 1.7.20-1 - New upstream bugfix release 1.7.20 - http://www.reviewboard.org/docs/releasenotes/reviewboard/1.7.20/ - Web API Changes: * When posting a review request and using submit-as, the given username will now be looked up in the auth backend (LDAP, Active Directory, etc.), instead of just the local database. - Bug Fixes: * Accessing file attachments without review UIs through the API no longer causes an HTTP 500 error. * Fields in the administration UI containing JSON will no longer cause errors during save. Furthermore, the JSON is now valid and properly editable. * Usernames with plus signs are now allowed. - Internal Changes * Rewrote the Mercurial support to use the command line tool. -------------------------------------------------------------------------------- ChangeLog: * Thu Dec 12 2013 Stephen Gallagher <sgallagh@xxxxxxxxxx> - 1.7.20-1 - New upstream bugfix release 1.7.20 - http://www.reviewboard.org/docs/releasenotes/reviewboard/1.7.20/ - Web API Changes: * When posting a review request and using submit-as, the given username will now be looked up in the auth backend (LDAP, Active Directory, etc.), instead of just the local database. - Bug Fixes: * Accessing file attachments without review UIs through the API no longer causes an HTTP 500 error. * Fields in the administration UI containing JSON will no longer cause errors during save. Furthermore, the JSON is now valid and properly editable. * Usernames with plus signs are now allowed. - Internal Changes * Rewrote the Mercurial support to use the command line tool. -------------------------------------------------------------------------------- ================================================================================ aqbanking-5.0.25-4.fc19 (FEDORA-2013-23407) A library for online banking functions and financial data import/export -------------------------------------------------------------------------------- Update Information: This update fixes connections to some OFX servers. -------------------------------------------------------------------------------- ChangeLog: * Thu Dec 12 2013 Bill Nottingham <notting@xxxxxxxxxx> - 5.0.25-4 - add upstream patches for OFXDirectConnect (#1040224) * Tue Aug 6 2013 Bill Nottingham <notting@xxxxxxxxxx> - 5.0.25-3 - Fix for UnversionedDocDirs feature (#993669) * Sat Aug 3 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 5.0.25-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1040224 - 403 Error - TD Bank https://bugzilla.redhat.com/show_bug.cgi?id=1040224 -------------------------------------------------------------------------------- ================================================================================ certmonger-0.69-1.fc19 (FEDORA-2013-23409) Certificate status monitor and PKI enrollment client -------------------------------------------------------------------------------- Update Information: This update fixes crashes in the daemon when there are errors reading some of its data files or errors saving newly-obtained certificates to disk. -------------------------------------------------------------------------------- ChangeLog: * Mon Dec 9 2013 Nalin Dahyabhai <nalin@xxxxxxxxxx> 0.69-1 - tweak how we decide whether we're on the master or a minion when we're told to use certmaster as a CA - clean up one of the tests so that it doesn't have to work around internal logging producing duplicate messages - when logging errors while setting up to contact xmlrpc servers, explicitly note that the error is client-side - don't abort() due to incorrect locking when an attempt to save an issued certificate to the designated location fails (part of #1032760/#1033333, ticket #22) - when reading an issued certificate from an enrollment helper, ignore noise before or after the certificate itself (more of #1032760/1033333, ticket #22) - run subprocesses in a cleaned-up environment (more of #1032760/1033333, ticket #22) - clear the ca-error that we saved when we had an error talking to the CA if we subsequently succeed in talking to the CA - various other static-analysis fixes * Thu Aug 29 2013 Nalin Dahyabhai <nalin@xxxxxxxxxx> 0.68-1 - notice when the OpenSSL RNG isn't seeded - notice when saving certificates or keys fails due to filesystem-related permission denial (#996581) * Tue Aug 6 2013 Nalin Dahyabhai <nalin@xxxxxxxxxx> 0.67-3 - pull up a patch from master to adapt self-tests to certutil's diagnostic output having changed (#992050) * Sat Aug 3 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.67-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #995022 - certmonger coredumps when certificates cannot be created due to permissions https://bugzilla.redhat.com/show_bug.cgi?id=995022 [ 2 ] Bug #1043017 - [abrt] certmonger-0.67-1.fc19: strcmp: Process /usr/sbin/certmonger was killed by signal 11 (SIGSEGV) https://bugzilla.redhat.com/show_bug.cgi?id=1043017 -------------------------------------------------------------------------------- ================================================================================ cntlm-0.92.3-4.fc19 (FEDORA-2013-23417) Fast NTLM authentication proxy with tunneling -------------------------------------------------------------------------------- Update Information: This update ensures that /run/cntlm exists upon package installation. -------------------------------------------------------------------------------- ChangeLog: * Thu Dec 12 2013 Sandro Mani <manisandro@xxxxxxxxx> - 0.92.3-4 - Really create /run/cntlm/ on install -------------------------------------------------------------------------------- References: [ 1 ] Bug #1042358 - cntlm fails to start: can't create pid file https://bugzilla.redhat.com/show_bug.cgi?id=1042358 -------------------------------------------------------------------------------- ================================================================================ cntlm-0.92.3-5.fc19 (FEDORA-2013-23421) Fast NTLM authentication proxy with tunneling -------------------------------------------------------------------------------- Update Information: Set correct permissions on /run/cntlm. -------------------------------------------------------------------------------- ChangeLog: * Fri Dec 13 2013 Sandro Mani <manisandro@xxxxxxxxx> - 0.92.3-5 - Set correct permissions on /run/cntlm/ * Thu Dec 12 2013 Sandro Mani <manisandro@xxxxxxxxx> - 0.92.3-4 - Really create /run/cntlm/ on install -------------------------------------------------------------------------------- References: [ 1 ] Bug #1042358 - cntlm fails to start: can't create pid file https://bugzilla.redhat.com/show_bug.cgi?id=1042358 -------------------------------------------------------------------------------- ================================================================================ cryptsetup-1.6.3-1.fc19 (FEDORA-2013-23380) A utility for setting up encrypted disks -------------------------------------------------------------------------------- Update Information: Update to cryptsetup 1.6.3. -------------------------------------------------------------------------------- ChangeLog: * Fri Dec 13 2013 Milan Broz <gmazyland@xxxxxxxxx> - 1.6.3-1 - Update to cryptsetup 1.6.3. -------------------------------------------------------------------------------- ================================================================================ docky-2.2.0-1.fc19 (FEDORA-2013-23434) Advanced dock application written in Mono -------------------------------------------------------------------------------- Update Information: 2.2.0 "Sneak it in you system" (2013-05-02) =============================================================================== * New Feature Release + new docklets: - NetworkMonitor * update translations CORE: * Accept dropping of every file when no MimeType specified (LP: #986693) * Docky click area larger than visible in panel mode (LP: #730959) * Gconf key to suppress compositing warning. (LP: #754064) * Error building with mono 3 (LP: #1097805) DOCKLETS: * CPU Monitor Docklet doesn't launch System Monitor in KDE (LP: #779181) * Add systemd support for SessionManager -------------------------------------------------------------------------------- ChangeLog: * Thu Sep 19 2013 Christopher Meng <rpm@xxxxxxxx> - 2.2.0-1 - Update to 2.2.0(BZ#958779) * Sat Aug 3 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 2.1.4-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #909443 - Docky crashes regularly - Once per hour. https://bugzilla.redhat.com/show_bug.cgi?id=909443 [ 2 ] Bug #958779 - docky-2.2.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=958779 -------------------------------------------------------------------------------- ================================================================================ doge-2.2.0-1.fc19 (FEDORA-2013-23394) MOTD script based on the doge meme -------------------------------------------------------------------------------- Update Information: wow such new package, much install -------------------------------------------------------------------------------- References: [ 1 ] Bug #1021160 - Review Request: doge - wow very terminal doge https://bugzilla.redhat.com/show_bug.cgi?id=1021160 -------------------------------------------------------------------------------- ================================================================================ fedora-review-0.5.1-1.fc19 (FEDORA-2013-23423) Review tool for fedora rpm packages -------------------------------------------------------------------------------- Update Information: Update to latest upstream version fixes several bugs and enables split of Java guidelines plugin into separate package. >From upstream NEWS file: 0.5.1 ===== - Added framework for moving plugins out of the fedora-review source tree; the java plugin is now external. This feature is still experimental. - Hide some tests when they are not applicable (#229). - Fix a bug in make_dist (#228). - Added stub plugins for Ocaml and Haskell allowing static linkage (#220, #221). - Add a fonts plugin running repo-fonts-audit (#215). - Enhance systemd config files handling (#214, #193). - Update CheckStaticLibs to current GL (#222). - CheckStaticLibs: fix typo causing false positives (bz 1012873). - Added new XML report designed for batch testing( #197). - Fixed a bad bug where deprecations was honored in non-applicable shell tests (498fa464b). - Make paths in licensecheck.txt relative to source dir (ee29d7e). - Handle inconsistent yum caches (bz #1028332). - Fix some EPEL5 glitches (bz #1040353, bz #1040369). - Add command line option to koji-download-scratch (bz #1027616). Update dependency on licensecheck script and fix phpci plugin dependency Update dependency on licensecheck script and fix phpci plugin dependency -------------------------------------------------------------------------------- ChangeLog: * Fri Dec 13 2013 Stanislav Ochotnicky <sochotnicky@xxxxxxxxxx> - 0.5.1-1 - Update to latest upstream (0.5.1) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1012873 - static test should check provides static not requires https://bugzilla.redhat.com/show_bug.cgi?id=1012873 [ 2 ] Bug #1028332 - fails during `repoquery -l filesystem`-stage https://bugzilla.redhat.com/show_bug.cgi?id=1028332 [ 3 ] Bug #1040353 - Confusing output with EPEL5 flag https://bugzilla.redhat.com/show_bug.cgi?id=1040353 [ 4 ] Bug #1040369 - fedora-review complains about missing %defattr with -D EPEL5 https://bugzilla.redhat.com/show_bug.cgi?id=1040369 [ 5 ] Bug #1027616 - fedora-review: Allow overriding Koji hub address in koji-download-scratch https://bugzilla.redhat.com/show_bug.cgi?id=1027616 [ 6 ] Bug #971875 - phpci command renamed to phpcompatinfo https://bugzilla.redhat.com/show_bug.cgi?id=971875 [ 7 ] Bug #1016309 - Add dependency on %{_bindir}/licensecheck https://bugzilla.redhat.com/show_bug.cgi?id=1016309 -------------------------------------------------------------------------------- ================================================================================ gcc-4.8.2-7.fc19 (FEDORA-2013-23419) Various compilers (C, C++, Objective-C, Java, ...) -------------------------------------------------------------------------------- Update Information: This fixes std::nth_element as well as lots of other bugs. -------------------------------------------------------------------------------- ChangeLog: * Thu Dec 12 2013 Jakub Jelinek <jakub@xxxxxxxxxx> 4.8.2-7 - update from the 4.8 branch - PRs libgomp/59467, rtl-optimization/58295, target/56807, testsuite/59442 - fix LRA coalescing for real (PR middle-end/59470) * Wed Dec 11 2013 Jakub Jelinek <jakub@xxxxxxxxxx> 4.8.2-6 - temporarily revert PR middle-end/58956 to avoid libstdc++ miscompilation on i?86 (PR middle-end/59470) * Mon Dec 9 2013 Jakub Jelinek <jakub@xxxxxxxxxx> 4.8.2-5 - update from the 4.8 branch - PRs ada/59382, bootstrap/57683, c++/58162, c++/59031, c++/59032, c++/59044, c++/59052, c++/59268, c++/59297, c/59280, c/59351, fortran/57445, fortran/58099, fortran/58471, fortran/58771, middle-end/58742, middle-end/58941, middle-end/58956, middle-end/59011, middle-end/59037, middle-end/59138, rtl-optimization/58726, target/50751, target/51244, target/56788, target/58854, target/58864, target/59021, target/59088, target/59101, target/59153, target/59163, target/59207, target/59343, target/59405, tree-optimization/57517, tree-optimization/58137, tree-optimization/58143, tree-optimization/58653, tree-optimization/58794, tree-optimization/59014, tree-optimization/59047, tree-optimization/59139, tree-optimization/59164, tree-optimization/59288, tree-optimization/59330, tree-optimization/59334, tree-optimization/59358, tree-optimization/59388 - aarch64 gcj enablement (#1023789) - look for libgfortran.spec and libitm.spec in %{_lib} rather than lib subdirs (#1023789) * Mon Nov 11 2013 Jakub Jelinek <jakub@xxxxxxxxxx> 4.8.2-4 - update from the 4.8 branch - PRs plugins/52872, regression/58985, target/59034 * Wed Nov 6 2013 Jakub Jelinek <jakub@xxxxxxxxxx> 4.8.2-3 - update from the 4.8 branch - PRs c++/58282, c++/58979, fortran/58355, fortran/58989, libstdc++/58839, libstdc++/58912, libstdc++/58952, lto/57084, middle-end/58789, rtl-optimization/58079, rtl-optimization/58831, rtl/58542, target/58690, target/58779, target/58792, target/58838, tree-optimization/57488, tree-optimization/58805, tree-optimization/58984 - fix ICEs in get_bit_range (PR middle-end/58970) - fix ICEs in RTL loop unswitching (PR rtl-optimization/58997) * Sun Oct 20 2013 Jakub Jelinek <jakub@xxxxxxxxxx> 4.8.2-2 - update from the 4.8 branch - PRs c++/58596, libstdc++/58800 - power8 TImode fix (#1014053, PR target/58673) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1025072 - libstdc++/58800 (the bug, not the fix) just got backported to Fedora 19 and 20 https://bugzilla.redhat.com/show_bug.cgi?id=1025072 -------------------------------------------------------------------------------- ================================================================================ gfal2-util-0.2.1-1.fc19 (FEDORA-2013-23399) GFAL2 utility tools -------------------------------------------------------------------------------- Update Information: gfal2-util initial import -------------------------------------------------------------------------------- References: [ 1 ] Bug #1027383 - Review Request: gfal2-util - GFAL2 utility tools https://bugzilla.redhat.com/show_bug.cgi?id=1027383 -------------------------------------------------------------------------------- ================================================================================ globus-gram-audit-3.2-8.fc19 (FEDORA-2013-23392) Globus Toolkit - GRAM Jobmanager Auditing -------------------------------------------------------------------------------- Update Information: Directory ownership fixes. -------------------------------------------------------------------------------- ChangeLog: * Fri Dec 13 2013 Mattias Ellert <mattias.ellert@xxxxxxxxxxxx> - 3.2-8 - Proper ownership of /etc/globus and /var/lib/globus * Sat Aug 3 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 3.2-7 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ globus-gram-job-manager-13.53-2.fc19 (FEDORA-2013-23392) Globus Toolkit - GRAM Jobmanager -------------------------------------------------------------------------------- Update Information: Directory ownership fixes. -------------------------------------------------------------------------------- ChangeLog: * Fri Dec 13 2013 Mattias Ellert <mattias.ellert@xxxxxxxxxxxx> - 13.53-2 - Proper ownership of /etc/globus -------------------------------------------------------------------------------- ================================================================================ globus-gram-job-manager-slurm-1.2-2.fc19 (FEDORA-2013-23418) Globus Toolkit - SLURM Job Manager Support -------------------------------------------------------------------------------- Update Information: New package from Globus Toolkit 5.2.5. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1028165 - Review Request: globus-gram-job-manager-slurm - Globus Toolkit - SLURM Job Manager Support https://bugzilla.redhat.com/show_bug.cgi?id=1028165 -------------------------------------------------------------------------------- ================================================================================ globus-scheduler-event-generator-4.7-7.fc19 (FEDORA-2013-23392) Globus Toolkit - Scheduler Event Generator -------------------------------------------------------------------------------- Update Information: Directory ownership fixes. -------------------------------------------------------------------------------- ChangeLog: * Fri Dec 13 2013 Mattias Ellert <mattias.ellert@xxxxxxxxxxxx> - 4.7-7 - Proper ownership of /etc/globus/scheduler-event-generator/available -------------------------------------------------------------------------------- ================================================================================ inn-2.5.3-14.fc19 (FEDORA-2013-23389) The InterNetNews system, an Usenet news server -------------------------------------------------------------------------------- Update Information: Fix an issue with innd-nntpsend.service. -------------------------------------------------------------------------------- ChangeLog: * Sat Dec 14 2013 Jochen Schmitt <Jochen herr-schmitt de> - 2.5.3-14 - Fix typo in innd-nntpsend.service (#1043126) * Sat Aug 3 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 2.5.3-13 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild * Wed Jul 17 2013 Petr Pisar <ppisar@xxxxxxxxxx> - 2.5.3-12 - Perl 5.18 rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1043126 - Installation of INN causes keyword 'conditionPathExists' error line in /var/log/messages https://bugzilla.redhat.com/show_bug.cgi?id=1043126 -------------------------------------------------------------------------------- ================================================================================ knot-1.3.4-1.fc19 (FEDORA-2013-23390) An authoritative DNS daemon -------------------------------------------------------------------------------- Update Information: update to 1.3.4 - improved zone loading error messages - correct control socket permissions - improved log syntax documentation - fixed wrong assertions in DDNS prerequisites checking - fixed processing of some malformed DNS packets - fixed notify messages being ignored in some cases - fix crash in particular additionals processing - race condition in event cancelation - journal corruption after failed transactions -------------------------------------------------------------------------------- ChangeLog: * Fri Dec 13 2013 Jan Vcelak <jvcelak@xxxxxxxxxxxxxxxxx> 1.3.4-1 - update to 1.3.4 + improved zone loading error messages + correct control socket permissions + improved log syntax documentation + fixed wrong assertions in DDNS prerequisites checking + fixed processing of some malformed DNS packets + fixed notify messages being ignored in some cases + fix crash in particular additionals processing + race condition in event cancelation + journal corruption after failed transactions -------------------------------------------------------------------------------- ================================================================================ libburn-1.3.4-1.fc19 (FEDORA-2013-23400) Library for reading, mastering and writing optical discs -------------------------------------------------------------------------------- Update Information: Changes towards previous version 1.3.2 ====================================== libburn novelties ----------------- * Bug fix: Drive error reports were ignored during blanking and formatting * Bug fix: Drive LG BH16NS40 stalls on inspection of unformatted DVD+RW * New API call burn_disc_pretend_full_uncond() libisofs novelties ------------------ * Giving sort weight 2 as default to El Torito boot images * Encoding HFS+ names in UTF-16 rather than UCS-2 libisoburn and xorriso novelties -------------------------------- * Bug fix: Command -blank "as_needed" formatted blank BD-R. * Bug fix: -as mkisofs option -log-file put the log file into the image * Bug fix: -cut_out did not add x-permission to r-permission of directory * Bug fix: Command -zisofs did not accept all options emitted by -status -zisofs * Bug fix: -blank force:... failed on appendable or closed media * New command -read_speed * New -close mode "as_needed", new -as cdrecord option --multi_if_possible * New -alter_date types: a-c , m-c , b-c , c -------------------------------------------------------------------------------- ChangeLog: * Sat Dec 14 2013 Robert Scheck <robert@xxxxxxxxxxxxxxxxx> 1.3.4-1 - Update to upstream 1.3.4 (#1043068) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1043071 - libisofs-1.3.4 is available https://bugzilla.redhat.com/show_bug.cgi?id=1043071 [ 2 ] Bug #1043068 - libburn-1.3.4 is available https://bugzilla.redhat.com/show_bug.cgi?id=1043068 [ 3 ] Bug #1043070 - libisoburn-1.3.4 is available https://bugzilla.redhat.com/show_bug.cgi?id=1043070 -------------------------------------------------------------------------------- ================================================================================ libisoburn-1.3.4-1.fc19 (FEDORA-2013-23400) Library to enable creation and expansion of ISO-9660 filesystems -------------------------------------------------------------------------------- Update Information: Changes towards previous version 1.3.2 ====================================== libburn novelties ----------------- * Bug fix: Drive error reports were ignored during blanking and formatting * Bug fix: Drive LG BH16NS40 stalls on inspection of unformatted DVD+RW * New API call burn_disc_pretend_full_uncond() libisofs novelties ------------------ * Giving sort weight 2 as default to El Torito boot images * Encoding HFS+ names in UTF-16 rather than UCS-2 libisoburn and xorriso novelties -------------------------------- * Bug fix: Command -blank "as_needed" formatted blank BD-R. * Bug fix: -as mkisofs option -log-file put the log file into the image * Bug fix: -cut_out did not add x-permission to r-permission of directory * Bug fix: Command -zisofs did not accept all options emitted by -status -zisofs * Bug fix: -blank force:... failed on appendable or closed media * New command -read_speed * New -close mode "as_needed", new -as cdrecord option --multi_if_possible * New -alter_date types: a-c , m-c , b-c , c -------------------------------------------------------------------------------- ChangeLog: * Sat Dec 14 2013 Robert Scheck <robert@xxxxxxxxxxxxxxxxx> 1.3.4-1 - Upgrade to 1.3.4 (#1043070) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1043071 - libisofs-1.3.4 is available https://bugzilla.redhat.com/show_bug.cgi?id=1043071 [ 2 ] Bug #1043068 - libburn-1.3.4 is available https://bugzilla.redhat.com/show_bug.cgi?id=1043068 [ 3 ] Bug #1043070 - libisoburn-1.3.4 is available https://bugzilla.redhat.com/show_bug.cgi?id=1043070 -------------------------------------------------------------------------------- ================================================================================ libisofs-1.3.4-1.fc19 (FEDORA-2013-23400) Library to create ISO 9660 disk images -------------------------------------------------------------------------------- Update Information: Changes towards previous version 1.3.2 ====================================== libburn novelties ----------------- * Bug fix: Drive error reports were ignored during blanking and formatting * Bug fix: Drive LG BH16NS40 stalls on inspection of unformatted DVD+RW * New API call burn_disc_pretend_full_uncond() libisofs novelties ------------------ * Giving sort weight 2 as default to El Torito boot images * Encoding HFS+ names in UTF-16 rather than UCS-2 libisoburn and xorriso novelties -------------------------------- * Bug fix: Command -blank "as_needed" formatted blank BD-R. * Bug fix: -as mkisofs option -log-file put the log file into the image * Bug fix: -cut_out did not add x-permission to r-permission of directory * Bug fix: Command -zisofs did not accept all options emitted by -status -zisofs * Bug fix: -blank force:... failed on appendable or closed media * New command -read_speed * New -close mode "as_needed", new -as cdrecord option --multi_if_possible * New -alter_date types: a-c , m-c , b-c , c -------------------------------------------------------------------------------- ChangeLog: * Sat Dec 14 2013 Robert Scheck <robert@xxxxxxxxxxxxxxxxx> 1.3.4-1 - Upgrade to 1.3.4 (#1043071) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1043071 - libisofs-1.3.4 is available https://bugzilla.redhat.com/show_bug.cgi?id=1043071 [ 2 ] Bug #1043068 - libburn-1.3.4 is available https://bugzilla.redhat.com/show_bug.cgi?id=1043068 [ 3 ] Bug #1043070 - libisoburn-1.3.4 is available https://bugzilla.redhat.com/show_bug.cgi?id=1043070 -------------------------------------------------------------------------------- ================================================================================ libmemcached-1.0.16-2.fc19 (FEDORA-2013-23436) Client library and command line tools for memcached server -------------------------------------------------------------------------------- Update Information: * Libraries are now provided in libmemcached-libs package * Fix #1041351: add provides for bundled(bobjenkins-hash) * Fix #1037707: apply libpthread workaround -------------------------------------------------------------------------------- ChangeLog: * Sat Dec 14 2013 Remi Collet <remi@xxxxxxxxxxxxxxxxx> - 1.0.16-2 - move libraries in new libs sub packages - add provides for bundled(bobjenkins-hash) #1041351 - apply libpthread workaround #1037707 - spec cleanups * Tue Dec 3 2013 Ruben Kerkhof <ruben@xxxxxxxxxxxxxxxx> 1.0.16-2 - Fix linking against libpthread as a workaround for libtool bug #661333 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1037707 - failure to link against libmemcached https://bugzilla.redhat.com/show_bug.cgi?id=1037707 -------------------------------------------------------------------------------- ================================================================================ libreoffice-4.1.3.2-12.fc19 (FEDORA-2013-23386) Free Software Productivity Suite -------------------------------------------------------------------------------- Update Information: A bunch of fixes to slide sorting to weed out crashes -------------------------------------------------------------------------------- ChangeLog: * Thu Dec 12 2013 Caolán McNamara <caolanm@xxxxxxxxxx> - 1:4.1.3.2-12 - make dragging and dropping slides stop crashing -------------------------------------------------------------------------------- ================================================================================ mspdebug-0.22-1.fc19 (FEDORA-2013-23435) Debugger and gdb proxy for MSP430 MCUs -------------------------------------------------------------------------------- Update Information: Update to 0.22 -------------------------------------------------------------------------------- ChangeLog: * Sat Dec 14 2013 Rob Spanton <rspanton@xxxxxxxxxx> - 0.22-1 - Update to 0.22 - Remove missing includes patch now that it\'s upstream * Sat Aug 3 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.21-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ opensmtpd-5.4.1p1-1.fc19 (FEDORA-2013-23406) Free implementation of the server-side SMTP protocol as defined by RFC 5321 -------------------------------------------------------------------------------- Update Information: OpenSMTPD package initial submission -------------------------------------------------------------------------------- References: [ 1 ] Bug #1021719 - Review Request: opensmtpd - Minimalistic but powerful smtp server https://bugzilla.redhat.com/show_bug.cgi?id=1021719 -------------------------------------------------------------------------------- ================================================================================ openttd-1.3.3-1.fc19 (FEDORA-2013-23432) Transport system simulation game -------------------------------------------------------------------------------- Update Information: Fixes CVE-2013-6411: DoS using forcefully crashed aircrafts -------------------------------------------------------------------------------- ChangeLog: * Thu Dec 12 2013 Felix Kaechele <felix@xxxxxxxxxx> - 1.3.3-1 - update to 1.3.3 - fixes CVE-2013-6411 * Sat Sep 21 2013 Felix Kaechele <heffer@xxxxxxxxxxxxxxxxx> - 1.3.2-3 - another try at a rebuild to fix BZ#989786 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1035991 - CVE-2013-6411 openttd: DoS using forcefully crashed aircrafts https://bugzilla.redhat.com/show_bug.cgi?id=1035991 -------------------------------------------------------------------------------- ================================================================================ php-bartlett-PHP-CompatInfo-2.26.0-1.fc19 (FEDORA-2013-23428) Find out version and the extensions required for a piece of code to run -------------------------------------------------------------------------------- Update Information: Version 2.26.0 (2013-12-13) Additions and changes: * add both support to PHP 5.4.23 and 5.5.7 * add new riak reference 1.0.0 * update yaml reference to 1.1.1 * update zip reference to 1.12.3 * update memcached reference to 2.2.0b1 (GH-112 by Remi Collet) * update http reference to 2.0.3 (GH-110 by Remi Collet) Bug fixes: * fix notice error when matching internal function arguments and signature used in implementation (thanks to Remi Collet to noticed me) * fix notice error on list reference report when filter reference option is active * GH-111: missing cli_get_process_title and cli_set_process_title (by Remi Collet) -------------------------------------------------------------------------------- ChangeLog: * Fri Dec 13 2013 Remi Collet <remi@xxxxxxxxxxxxxxxxx> - 2.26.0-1 - Update to 2.26.0 (stable) -------------------------------------------------------------------------------- ================================================================================ pyfits-3.1.3-1.fc19 (FEDORA-2013-23384) Python interface to FITS -------------------------------------------------------------------------------- Update Information: new upstream release, with bugfixes (see http://www.stsci.edu/institute/software_hardware/pyfits/release) -------------------------------------------------------------------------------- ChangeLog: * Fri Dec 13 2013 Sergio Pascual <sergiopr@xxxxxxxxxxxxxxxxx> - 3.1.3-1 - New upstream 3.1.3 (bugfixes) -------------------------------------------------------------------------------- ================================================================================ python-djblets-0.7.27-1.fc19 (FEDORA-2013-23405) A collection of useful classes and functions for Django -------------------------------------------------------------------------------- Update Information: * Thu Dec 12 2013 Stephen Gallagher <sgallagh@xxxxxxxxxx> - 1.7.20-1 - New upstream bugfix release 1.7.20 - http://www.reviewboard.org/docs/releasenotes/reviewboard/1.7.20/ - Web API Changes: * When posting a review request and using submit-as, the given username will now be looked up in the auth backend (LDAP, Active Directory, etc.), instead of just the local database. - Bug Fixes: * Accessing file attachments without review UIs through the API no longer causes an HTTP 500 error. * Fields in the administration UI containing JSON will no longer cause errors during save. Furthermore, the JSON is now valid and properly editable. * Usernames with plus signs are now allowed. - Internal Changes * Rewrote the Mercurial support to use the command line tool. -------------------------------------------------------------------------------- ChangeLog: * Thu Dec 12 2013 Stephen Gallagher <sgallagh@xxxxxxxxxx> - 0.7.27-1 - New upstream release 0.7.27 - http://downloads.reviewboard.org/releases/Djblets/0.7/Djblets-0.7.25.NEWS * djblets.auth: * Added some human-readable labels for RegistrationForm. * RegistrationForm subclasses that make use of fields that normalize to non-strings no longer fail to save. * djblets.webapi: * Usernames with plus signs in them are now matched in the API. - http://downloads.reviewboard.org/releases/Djblets/0.7/Djblets-0.7.26.NEWS * djblets.util.fields: * Fixed JSONField in the administration UI. * djblets.webapi: * Added support for web API authentication backends. - http://downloads.reviewboard.org/releases/Djblets/0.7/Djblets-0.7.27.NEWS * Fixed a regression with the new webapi auth backend support -------------------------------------------------------------------------------- ================================================================================ python-elasticsearch-0.4.3-3.fc19 (FEDORA-2013-23415) Client for Elasticsearch -------------------------------------------------------------------------------- Update Information: First release of python-elasticsearch -------------------------------------------------------------------------------- ================================================================================ python-moksha-hub-1.2.2-1.fc19 (FEDORA-2013-23398) Hub components for Moksha -------------------------------------------------------------------------------- Update Information: Fix memory leak in the websocket server. -------------------------------------------------------------------------------- ChangeLog: * Fri Dec 13 2013 Ralph Bean <rbean@xxxxxxxxxx> - 1.2.2-1 - Latest upstream fixing a memory leak in the websocket server. * Sun Aug 4 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.2.1-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ qt-creator-3.0.0-1.fc19 (FEDORA-2013-23404) Lightweight and cross-platform IDE for Qt -------------------------------------------------------------------------------- Update Information: Update to release 3.0.0, see https://blog.qt.digia.com/blog/2013/12/12/qt-creator-3-0-released/ for details. -------------------------------------------------------------------------------- ChangeLog: * Thu Dec 12 2013 Sandro Mani <manisandro@xxxxxxxxx> - 3.0.0-1 - 3.0.0 stable release * Sun Dec 1 2013 Sandro Mani <manisandro@xxxxxxxxx> - 3.0.0-0.2.rc1 - 3.0.0 rc1 release * Wed Oct 23 2013 Jaroslav Reznik <jreznik@xxxxxxxxxx> - 3.0.0-0.1.beta - 3.0.0 beta release -------------------------------------------------------------------------------- ================================================================================ rpmlint-1.5-6.fc19 (FEDORA-2013-23427) Tool for checking common errors in RPM packages -------------------------------------------------------------------------------- Update Information: Fix bug with packages containing unicode in their name. -------------------------------------------------------------------------------- ChangeLog: * Thu Dec 12 2013 Tom Callaway <spot@xxxxxxxxxxxxxxxxx> - 1.5-6 - fix unicode naming bug (bz 1036310) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1036310 - [abrt] rpmlint-1.5-5.fc19: TagsCheck.py:490:spell_check:UnicodeDecodeError: 'ascii' codec can't decode byte 0xc3 in position 11: ordinal not in range(128) https://bugzilla.redhat.com/show_bug.cgi?id=1036310 -------------------------------------------------------------------------------- ================================================================================ rubygem-kramdown-1.3.0-1.fc19 (FEDORA-2013-23393) Fast, pure-Ruby Markdown-superset converter -------------------------------------------------------------------------------- Update Information: New version 1.3.0 is released. -------------------------------------------------------------------------------- ChangeLog: -------------------------------------------------------------------------------- ================================================================================ rubygem-narray-0.6.0.8-9.fc19 (FEDORA-2013-23425) N-dimensional Numerical Array class for Ruby -------------------------------------------------------------------------------- Update Information: fixed the way ruby(abi) is required - dropped the symlinks in %{ruby_vendorarchdir}, except for <= el6 - fixed directory ownerships on <= el6 - use BuildRequires: rubygems-devel on el6, too several improvements for RHEL <= 6 and added needed bits for RHEL <= 5\nadded needed Provides adapted Requires: ruby(abi) = 1.9.1 for Fedora 18, only fixed symlinks in %{ruby_vendorarchdir} -------------------------------------------------------------------------------- ChangeLog: * Fri Dec 13 2013 Björn Esser <bjoern.esser@xxxxxxxxx> - 0.6.0.8-9 - fixed the way ruby(abi) is required - dropped the symlinks in %{ruby_vendorarchdir}, except for <= el6 - fixed directory ownerships on <= el6 - use BuildRequires: rubygems-devel on el6, too * Tue Dec 10 2013 Björn Esser <bjoern.esser@xxxxxxxxx> - 0.6.0.8-8 - fixed symlinks in %{ruby_vendorarchdir} * Tue Dec 10 2013 Björn Esser <bjoern.esser@xxxxxxxxx> - 0.6.0.8-7 - adapted Requires: ruby(abi) = 1.9.1 for Fedora 18, only * Tue Dec 10 2013 Björn Esser <bjoern.esser@xxxxxxxxx> - 0.6.0.8-6 - several improvements for RHEL <= 6 and added needed bits for RHEL <= 5 - added needed Provides -------------------------------------------------------------------------------- References: [ 1 ] Bug #1040936 - rubygem-narray has dependency for invalid version of ryby(abi) https://bugzilla.redhat.com/show_bug.cgi?id=1040936 -------------------------------------------------------------------------------- ================================================================================ tar-1.26-28.fc19 (FEDORA-2013-23388) A GNU file archiving program -------------------------------------------------------------------------------- Update Information: Fix --compare with --listed-incremental. -------------------------------------------------------------------------------- ChangeLog: * Thu Dec 12 2013 Pavel Raiskup <praiskup@xxxxxxxxxx> - 1.26-28 - fix --compare with --listed-incremental (#1040702) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1040702 - tar --compare --listed-incremental does not work https://bugzilla.redhat.com/show_bug.cgi?id=1040702 -------------------------------------------------------------------------------- ================================================================================ v8-3.14.5.10-3.fc19 (FEDORA-2013-23437) JavaScript Engine -------------------------------------------------------------------------------- Update Information: This update resolves multiple security vulnerabilities in the V8 JavaScript just-in-time compiler. -- Common Vulnerabilities and Exposures assigned an identifier CVE-2013-6640 to the following vulnerability: Name: CVE-2013-6640 URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6640 Assigned: 20131105 Reference: http://code.google.com/p/v8/source/detail?r=17801 Reference: http://googlechromereleases.blogspot.com/2013/12/stable-channel-update.html Reference: https://code.google.com/p/chromium/issues/detail?id=319860 The DehoistArrayIndex function in hydrogen-dehoist.cc in Google V8 before 3.22.24.7, as used in Google Chrome before 31.0.1650.63, allows remote attackers to cause a denial of service (out-of-bounds read) via JavaScript code that sets a variable to the value of an array element with a crafted index. -- Common Vulnerabilities and Exposures assigned an identifier CVE-2013-6639 to the following vulnerability: Name: CVE-2013-6639 URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-6639 Assigned: 20131105 Reference: http://code.google.com/p/v8/source/detail?r=17801 Reference: http://googlechromereleases.blogspot.com/2013/12/stable-channel-update.html Reference: https://code.google.com/p/chromium/issues/detail?id=319835 The DehoistArrayIndex function in hydrogen-dehoist.cc in Google V8 before 3.22.24.7, as used in Google Chrome before 31.0.1650.63, allows remote attackers to cause a denial of service (out-of-bounds write) or possibly have unspecified other impact via JavaScript code that sets the value of an array element with a crafted index. -------------------------------------------------------------------------------- ChangeLog: * Fri Dec 13 2013 T.C. Hollingsworth <tchollingsworth@xxxxxxxxx> - 1:3.14.5.10-3 - backport fix for out-of-bounds read DoS (RHBZ#1039889; CVE-2013-6640) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1039888 - CVE-2013-6639 v8: DoS (out-of-bounds write) in DehoistArrayIndex function in hydrogen-dehoist.cc https://bugzilla.redhat.com/show_bug.cgi?id=1039888 [ 2 ] Bug #1039889 - CVE-2013-6640 v8: DoS (out-of-bounds read) in DehoistArrayIndex function in hydrogen-dehoist.cc https://bugzilla.redhat.com/show_bug.cgi?id=1039889 -------------------------------------------------------------------------------- ================================================================================ wallpapoz-0.6.2-7.fc19 (FEDORA-2013-23396) Gnome Multi Backgrounds and Wallpapers Configuration Tool -------------------------------------------------------------------------------- Update Information: Also support CINNAMON desktop -------------------------------------------------------------------------------- ChangeLog: * Thu Dec 12 2013 Mamoru TASAKA <mtasaka@xxxxxxxxxxxxxxxxx> - 0.6.2-7 - Support CINNAMON (bug 1029554, leigh scott) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1029554 - When I set background pic it goes back to default image for new windows space and when I login https://bugzilla.redhat.com/show_bug.cgi?id=1029554 -------------------------------------------------------------------------------- ================================================================================ warzone2100-3.1.1-1.fc19 (FEDORA-2013-23382) Innovative 3D real-time strategy -------------------------------------------------------------------------------- Update Information: Update to 3.1.1; https://raw.github.com/Warzone2100/warzone2100/3.1.1/ChangeLog -------------------------------------------------------------------------------- ChangeLog: * Thu Dec 12 2013 Jan Synáček <jsynacek@xxxxxxxxxx> - 3.1.1-1 - Update to 3.1.1 (#1040915) * Mon Nov 18 2013 Dave Airlie <airlied@xxxxxxxxxx> - 3.1.0-4 - rebuilt for GLEW 1.10 * Sun Aug 4 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 3.1.0-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1040915 - warzone2100-3.1.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1040915 -------------------------------------------------------------------------------- ================================================================================ xorg-x11-drv-synaptics-1.7.1-6.fc19 (FEDORA-2013-23412) Xorg X11 Synaptics touchpad input driver -------------------------------------------------------------------------------- Update Information: Automatically configure the right and middle buttons on the Lenovo T440 touchpad. Buttons are the full height of the touchpad, with a 40%/20%/40% split between left, middle, right. -------------------------------------------------------------------------------- ChangeLog: * Fri Dec 13 2013 Peter Hutterer <peter.hutterer@xxxxxxxxxx> 1.7.1-6 - Match for T440s and move the softbuttons to the top of the touchpad (#1035469) * Sun Aug 4 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.7.1-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1035469 - clickpad with trackpoint doesn't have top buttons by default https://bugzilla.redhat.com/show_bug.cgi?id=1035469 -------------------------------------------------------------------------------- -- test mailing list test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe: https://admin.fedoraproject.org/mailman/listinfo/test