The following Fedora 20 Security updates need testing: Age URL 64 https://admin.fedoraproject.org/updates/FEDORA-2013-19198/quassel-0.9.1-1.fc20 26 https://admin.fedoraproject.org/updates/FEDORA-2013-22042/varnish-3.0.4-2.fc20 24 https://admin.fedoraproject.org/updates/FEDORA-2013-22130/chicken-4.8.0.5-1.fc20 18 https://admin.fedoraproject.org/updates/FEDORA-2013-22575/subversion-1.8.5-2.fc20 16 https://admin.fedoraproject.org/updates/FEDORA-2013-22713/hdapsd-20090401.20131204git401ca60-1.fc20 15 https://admin.fedoraproject.org/updates/FEDORA-2013-22809/net-snmp-5.7.2-16.fc20 10 https://admin.fedoraproject.org/updates/FEDORA-2013-23116/python-swiftclient-1.8.0-1.fc20 9 https://admin.fedoraproject.org/updates/FEDORA-2013-23177/samba-4.1.3-2.fc20 8 https://admin.fedoraproject.org/updates/FEDORA-2013-23250/libreswan-3.7-1.fc20 7 https://admin.fedoraproject.org/updates/FEDORA-2013-23339/openttd-1.3.3-1.fc20 6 https://admin.fedoraproject.org/updates/FEDORA-2013-23361/v8-3.14.5.10-3.fc20 3 https://admin.fedoraproject.org/updates/FEDORA-2013-23260/libgadu-1.12.0-0.2.rc1.fc20 1 https://admin.fedoraproject.org/updates/FEDORA-2013-23594/perl-Proc-Daemon-0.14-9.fc20 1 https://admin.fedoraproject.org/updates/FEDORA-2013-23589/openstack-keystone-2013.2.1-1.fc20 1 https://admin.fedoraproject.org/updates/FEDORA-2013-23524/openstack-nova-2013.2.1-2.fc20 1 https://admin.fedoraproject.org/updates/FEDORA-2013-23603/gnupg-1.4.16-2.fc20 1 https://admin.fedoraproject.org/updates/FEDORA-2013-23636/rubygem-actionpack-4.0.0-2.fc20 1 https://admin.fedoraproject.org/updates/FEDORA-2013-23654/seamonkey-2.23-1.fc20 1 https://admin.fedoraproject.org/updates/FEDORA-2013-23659/ibus-chewing-1.4.4-1.fc20 1 https://admin.fedoraproject.org/updates/FEDORA-2013-23680/openstack-glance-2013.2.1-1.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2013-23749/libjpeg-turbo-1.3.0-2.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2013-23734/boinc-client-7.2.33-2.git1994cc8.fc20 The following Fedora 20 Critical Path updates have yet to be approved: Age URL 38 https://admin.fedoraproject.org/updates/FEDORA-2013-21163/libproxy-0.4.11-8.fc20 10 https://admin.fedoraproject.org/updates/FEDORA-2013-23111/python-setuptools-1.4.2-1.fc20 8 https://admin.fedoraproject.org/updates/FEDORA-2013-23240/mash-0.6.02-1.fc20 8 https://admin.fedoraproject.org/updates/FEDORA-2013-23243/libfm-1.1.4-1.fc20 4 https://admin.fedoraproject.org/updates/FEDORA-2013-23444/libtevent-0.9.20-1.fc20,libtalloc-2.1.0-3.fc20 4 https://admin.fedoraproject.org/updates/FEDORA-2013-23451/gupnp-0.20.9-1.fc20 1 https://admin.fedoraproject.org/updates/FEDORA-2013-23668/lvm2-2.02.103-5.fc20 1 https://admin.fedoraproject.org/updates/FEDORA-2013-23572/iscsi-initiator-utils-6.2.0.873-17.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2013-23698/libselinux-2.2.1-4.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2013-23725/crontabs-1.11-7.20130830git.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2013-23723/libdvdnav-4.2.1-1.fc20,libdvdread-4.2.1-1.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2013-23712/NetworkManager-0.9.9.0-22.git20131003.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2013-23721/krb5-1.11.3-38.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2013-23749/libjpeg-turbo-1.3.0-2.fc20 The following builds have been pushed to Fedora 20 updates-testing NetworkManager-0.9.9.0-22.git20131003.fc20 arprec-2.2.17-1.fc20 bip-0.8.9-2.fc20 bluedevil-2.0.0-0.8.20131219.fc20 boinc-client-7.2.33-2.git1994cc8.fc20 crontabs-1.11-7.20130830git.fc20 davix-0.2.8-2.fc20 docker-io-0.7.2-2.fc20 epix-1.2.13-3.fc20 gmetric4j-1.0.3-2.fc20 gnome-abrt-0.3.4-1.fc20 gnome-transliteration-0.0.3-2.fc20 h5py-2.2.1-1.fc20 ibus-typing-booster-1.2.8-1.fc20 krb5-1.11.3-38.fc20 libbluedevil-2.0-0.4.20131220.fc20 libdvdnav-4.2.1-1.fc20 libdvdread-4.2.1-1.fc20 libjpeg-turbo-1.3.0-2.fc20 libmodbus-3.0.5-1.fc20 libreoffice-4.1.4.2-2.fc20 libselinux-2.2.1-4.fc20 libzip-0.11.2-1.fc20 mingw-libzip-0.11.2-1.fc20 nini-1.1.0-4.fc20 python-caja-1.4.0-4.fc20 python-fedora-0.3.33-1.fc20 python-halite-0.1.13-1.fc20 salt-0.17.4-1.fc20 schroot-1.6.5-4.fc20 setroubleshoot-plugins-3.0.59-1.fc20 sssd-1.11.3-1.fc20 systemd-ui-3-1.fc20 trustedqsl-2.0.1-1.fc20 vim-command-t-1.6-1.fc20 Details about builds: ================================================================================ NetworkManager-0.9.9.0-22.git20131003.fc20 (FEDORA-2013-23712) Network connection manager and user applications -------------------------------------------------------------------------------- Update Information: This update fixes an issue with CPU usage when using IPv6 networks with DNSSL and RDNSS capability. This update fixes dependency problems with boot-time services that depend on networking, ensures that incorrect RA-provided IPv6 default routes are ignored, and sets the IPv4 broadcast address correctly. -------------------------------------------------------------------------------- ChangeLog: * Thu Dec 19 2013 Dan Williams <dcbw@xxxxxxxxxx> - 0.9.9.0-22.git20131003 - core: fix IPv6 router solicitation loop (rh #1044757) * Thu Dec 12 2013 Dan Williams <dcbw@xxxxxxxxxx> - 0.9.9.0-21.git20131003 - core: wait for link before declaring startup complete (rh #1034921) - core: ignore RA-provided IPv6 default routes (rh #1029213) - core: set IPv4 broadcast address correctly (rh #1032819) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1044757 - Continuous IPv6 router solicitation loop https://bugzilla.redhat.com/show_bug.cgi?id=1044757 [ 2 ] Bug #1034921 - Remote shares try to mount before network is up https://bugzilla.redhat.com/show_bug.cgi?id=1034921 [ 3 ] Bug #1029213 - NetworkManager consumes 100% CPU printing 'add_object(): Netlink error: Invalid address for specified address family' https://bugzilla.redhat.com/show_bug.cgi?id=1029213 [ 4 ] Bug #1032819 - broadcast address not configured https://bugzilla.redhat.com/show_bug.cgi?id=1032819 -------------------------------------------------------------------------------- ================================================================================ arprec-2.2.17-1.fc20 (FEDORA-2013-23695) Software package for performing arbitrary precision arithmetic -------------------------------------------------------------------------------- Update Information: new upstream release: v2.2.17 -------------------------------------------------------------------------------- ChangeLog: * Fri Dec 20 2013 Björn Esser <bjoern.esser@xxxxxxxxx> - 2.2.17-1 - new upstream release: v2.2.17 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1045344 - arprec-2.2.17 is available https://bugzilla.redhat.com/show_bug.cgi?id=1045344 -------------------------------------------------------------------------------- ================================================================================ bip-0.8.9-2.fc20 (FEDORA-2013-23702) IRC Bouncer -------------------------------------------------------------------------------- Update Information: Switched to using systemd macros in .spec -------------------------------------------------------------------------------- ChangeLog: * Wed Dec 18 2013 Brian C. Lane <bcl@xxxxxxxxxx> 0.8.9-2 - Scriptlets replaced with new systemd macros (#850046) -------------------------------------------------------------------------------- References: [ 1 ] Bug #850046 - Introduce new systemd-rpm macros in bip spec file https://bugzilla.redhat.com/show_bug.cgi?id=850046 -------------------------------------------------------------------------------- ================================================================================ bluedevil-2.0.0-0.8.20131219.fc20 (FEDORA-2013-23719) Bluetooth stack for KDE -------------------------------------------------------------------------------- Update Information: Fresh bluedevil snapshot, includes many bug (particularly crasher) fixes. -------------------------------------------------------------------------------- ChangeLog: * Thu Dec 19 2013 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 2.0.0-0.8.20131219 - 20131219 snapshot * Thu Dec 19 2013 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 2.0.0-0.7.20131128 - try out crash fixer (kde review 114433) * Thu Dec 12 2013 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> - 2.0.0-0.6.20131128 - Obsolete dep on obexd (#998218) - noarch -devel subpkg -------------------------------------------------------------------------------- References: [ 1 ] Bug #998218 - Obsolete dep on obexd https://bugzilla.redhat.com/show_bug.cgi?id=998218 -------------------------------------------------------------------------------- ================================================================================ boinc-client-7.2.33-2.git1994cc8.fc20 (FEDORA-2013-23734) The BOINC client core -------------------------------------------------------------------------------- Update Information: *Updates Boinc to 7.2.33. *Remove the "Can't connect to boinc-client" notify at startup. *Fix "GPU not detected" problem. *Fix security vulnerability #957811 **Please note for "GPU not detected" bug** If you still have this problem after updating, you need to run boinc with your user, not with boinc user. To do that, add your user to boinc group: 'useradd -G boinc <your_username>' Disable boinc daemon: 'systemctl disable boinc-client.service' 'systemctl stop boinc-client.service' Change directory and files permissions: 'chmod -R g+rw /var/lib/boinc' 'chmod g+rw /var/log/boinc*' Logout and login again. Now run boinc using this command (under your user): '/usr/bin/boinc_gpu' If you want to autostart boinc after login you need to configure your DE to do that. See instruction specific to your DE on how to do that. -------------------------------------------------------------------------------- ChangeLog: * Tue Dec 17 2013 Mattia Verga <mattia.verga@xxxxxxxxxx> - 7.2.33-2.git1994cc8 - Change default attribute of /var/lib/boinc to give write permission to boinc group - Fix systemd requires as described in guidelines * Tue Dec 17 2013 Mattia Verga <mattia.verga@xxxxxxxxxx> - 7.2.33-1.git1994cc8 - Update to 7.2.33 - Removed no more needed X11 patch - Removed boinc manager notification patch see bug #990693 - Add patch to fix Italian locale dir - Enabled parallel make - Removed boincmgr wrap - Fix checkin_notes - Added boinc_gpu wrapper to fix GPU detection (see instruction on how to use it) - Build now requires mariadb-devel instead of mysql-devel as actual default for Fedora - Fix trim script for new directory and not remove html dir for build error - Remove scripts for update from sysV to systemd -------------------------------------------------------------------------------- References: [ 1 ] Bug #957771 - CVE-2013-2298 boinc-client: Multiple stack overflow flaws when parsing XML files https://bugzilla.redhat.com/show_bug.cgi?id=957771 [ 2 ] Bug #957795 - boinc-client: Format string flaw by writing account file https://bugzilla.redhat.com/show_bug.cgi?id=957795 -------------------------------------------------------------------------------- ================================================================================ crontabs-1.11-7.20130830git.fc20 (FEDORA-2013-23725) Root crontab files used to schedule the execution of programs -------------------------------------------------------------------------------- Update Information: Missing man-page run-parts. Again. -------------------------------------------------------------------------------- ChangeLog: * Fri Aug 30 2013 Marcela Mašláňová <mmaslano@xxxxxxxxxx> 1.11-7.20121102git - fix man page link 971583 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1027240 - run-parts man page https://bugzilla.redhat.com/show_bug.cgi?id=1027240 -------------------------------------------------------------------------------- ================================================================================ davix-0.2.8-2.fc20 (FEDORA-2013-23709) Toolkit for Http-based file management -------------------------------------------------------------------------------- Update Information: Update 0.2.8-2 -------------------------------------------------------------------------------- ChangeLog: -------------------------------------------------------------------------------- ================================================================================ docker-io-0.7.2-2.fc20 (FEDORA-2013-23717) Automates deployment of containerized applications -------------------------------------------------------------------------------- Update Information: require xz to work with ubuntu images (BZ 1045220). upstream release bump to v0.7.2 -------------------------------------------------------------------------------- ChangeLog: * Thu Dec 19 2013 Lokesh Mandvekar <lsm5@xxxxxxxxxx> - 0.7.2-2 - require xz to work with ubuntu images (BZ #1045220) * Wed Dec 18 2013 Lokesh Mandvekar <lsm5@xxxxxxxxxx> - 0.7.2-1 - upstream release bump to v0.7.2 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1045220 - Pulling the "ubuntu" image from upstream fails https://bugzilla.redhat.com/show_bug.cgi?id=1045220 [ 2 ] Bug #1044373 - docker-io-0.7.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=1044373 -------------------------------------------------------------------------------- ================================================================================ epix-1.2.13-3.fc20 (FEDORA-2013-23707) Utilities for mathematically accurate figures -------------------------------------------------------------------------------- Update Information: New package. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1043305 - Review Request: epix - Utilities for mathematically accurate figures https://bugzilla.redhat.com/show_bug.cgi?id=1043305 -------------------------------------------------------------------------------- ================================================================================ gmetric4j-1.0.3-2.fc20 (FEDORA-2013-23746) JVM instrumentation to Ganglia -------------------------------------------------------------------------------- Update Information: remove Boot Class-Path. -------------------------------------------------------------------------------- References: [ 1 ] Bug #991624 - Review Request: gmetric4j - JVM instrumentation to Ganglia https://bugzilla.redhat.com/show_bug.cgi?id=991624 -------------------------------------------------------------------------------- ================================================================================ gnome-abrt-0.3.4-1.fc20 (FEDORA-2013-23714) A utility for viewing problems that have occurred with the system -------------------------------------------------------------------------------- Update Information: - Do not use deprecated GObject API - Make gnome-abrt compatible with Python GObject < 3.7.2 - Do not fail if there is no Problem D-Bus service - Make all labels selectable - Run xdg-open for problem directory nonblocking -------------------------------------------------------------------------------- ChangeLog: * Thu Dec 19 2013 Jakub Filak <jfilak@xxxxxxxxxx> 0.3.4-1 - Do not use deprecated GObject API - Make gnome-abrt compatible with Python GObject < 3.7.2 - Do not fail if there is no Problem D-Bus service - Make all labels selectable - Run xdg-open for problem directory nonblocking - Resolves: #1043968 * Wed Dec 18 2013 Jakub Filak <jfilak@xxxxxxxxxx> 0.3.3-3 - Fix translations -------------------------------------------------------------------------------- References: [ 1 ] Bug #1043968 - The text in abrt reports can't be selected to copy to a clipboard https://bugzilla.redhat.com/show_bug.cgi?id=1043968 -------------------------------------------------------------------------------- ================================================================================ gnome-transliteration-0.0.3-2.fc20 (FEDORA-2013-23737) Off Line transliteration tool -------------------------------------------------------------------------------- Update Information: Initial build -------------------------------------------------------------------------------- References: [ 1 ] Bug #846206 - Review Request: gnome-transliteration - Transliteration tool for GNU\Linux platform https://bugzilla.redhat.com/show_bug.cgi?id=846206 -------------------------------------------------------------------------------- ================================================================================ h5py-2.2.1-1.fc20 (FEDORA-2013-23748) A Python interface to the HDF5 library -------------------------------------------------------------------------------- Update Information: This release fixes a critical bug reported by Jim Parker on December 7th, which affects code using HDF5 compound types. We recommend that all users of h5py 2.2.0 upgrade to avoid crashes or possible data corruption. Scope of bug ------------ The issue affects a feature introduced in h5py 2.2.0, in which HDF5 compound datasets may be updated in-place, by specifying a field name or names when writing to the dataset: >>> dataset['field_name'] = value Under certain conditions, h5py can supply uninitialized memory to the HDF5 conversion machinery, leading (in the case reported) to a segmentation fault. It is also possible for other fields of the type to be corrupted. This issue affects only code which updates a subset of the fields in the compound type. Programs reading from a compound type, writing all fields, or using other datatypes, are not affected; nor are versions of h5py prior to 2.2.0. More information ---------------- Github issue: https://github.com/h5py/h5py/issues/372 Original thread: https://groups.google.com/forum/#!topic/h5py/AbUOZ1MXf3U -------------------------------------------------------------------------------- ChangeLog: * Thu Dec 19 2013 Orion Poplawski <orion@xxxxxxxxxxxxx> - 2.2.1-1 - 2.2.1 -------------------------------------------------------------------------------- ================================================================================ ibus-typing-booster-1.2.8-1.fc20 (FEDORA-2013-23687) A typing booster engine for the IBus platform -------------------------------------------------------------------------------- Update Information: - Change of IME name for oriya language Resolves: rhbz#1045299 - Fixed issue multiple instances of setup menu Resolves: rhbz#1045294 -------------------------------------------------------------------------------- ChangeLog: * Fri Dec 20 2013 Anish Patil <apatil@xxxxxxxxxx> - 1.2.8-1 - Change of IME name for oriya language Resolves: rhbz#1045299 - Fixed issue multiple instances of setup menu Resolves: rhbz#1045294 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1045294 - Ibus typing booster set up menu's instance should start only once https://bugzilla.redhat.com/show_bug.cgi?id=1045294 [ 2 ] Bug #1045299 - change of IME name for oriya language https://bugzilla.redhat.com/show_bug.cgi?id=1045299 -------------------------------------------------------------------------------- ================================================================================ krb5-1.11.3-38.fc20 (FEDORA-2013-23721) The Kerberos network authentication system -------------------------------------------------------------------------------- Update Information: This update refreshes backported OTP functionality to more closely match the behavior of the recent 1.12 upstream release. The main notable change is that in the krb5.conf file, the "secret" configuration setting, which was previously used to hold the secret that is shared between a KDC and a RADIUS server which it uses for checking one-time passwords, is now interpreted as the pathname for a file which contains that secret. This update also backports a fix to prevent applications which use the krb5_copy_context() function from crashing. The package also contains backported interoperability, memory management, and error reporting fixes for the SPNEGO GSSAPI mechanism, and a memory leak fix for servers using GSSAPI when they encounter certain errors. -------------------------------------------------------------------------------- ChangeLog: * Thu Dec 19 2013 Nalin Dahyabhai <nalin@xxxxxxxxxx> - 1.11.3-38 - pull in fix from master to make reporting of errors encountered by the SPNEGO mechanism work better (RT#7045, part of #1043962) * Thu Dec 19 2013 Nalin Dahyabhai <nalin@xxxxxxxxxx> - update a test wrapper to properly handle things that the new libkrad does, and add python-pyrad as a build requirement so that we can run its tests * Wed Dec 18 2013 Nalin Dahyabhai <nalin@xxxxxxxxxx> - 1.11.3-37 - backport fixes to krb5_copy_context (RT#7807, #1044735/#1044739) * Wed Dec 18 2013 Nalin Dahyabhai <nalin@xxxxxxxxxx> - 1.11.3-36 - backport fix to avoid double-freeing in the client when we're configured to use a clpreauth module that isn't actually a clpreauth module (#1035203) * Wed Dec 18 2013 Nalin Dahyabhai <nalin@xxxxxxxxxx> - 1.11.3-35 - pull in fix from master to return a NULL pointer rather than allocating zero bytes of memory if we read a zero-length input token (RT#7794, part of - pull in fix from master to ignore an empty token from an acceptor if we've already finished authenticating (RT#7797, part of #1043962) - pull in fix from master to avoid a memory leak when a mechanism's init_sec_context function fails (RT#7803, part of #1043962) - pull in fix from master to avoid a memory leak in a couple of error cases which could occur while obtaining acceptor credentials (RT#7805, part of #1043962) * Tue Dec 17 2013 Nalin Dahyabhai <nalin@xxxxxxxxxx> - 1.11.3-34 - backport additional changes to libkrad to make it function more like the version in upstream 1.12, and a few things in the OTP plugin as well (most visibly, that the secret that's shared with the RADIUS server is read from a file rather than used directly) (#1040056) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1044739 - krb5_copy_context seg faults https://bugzilla.redhat.com/show_bug.cgi?id=1044739 -------------------------------------------------------------------------------- ================================================================================ libbluedevil-2.0-0.4.20131220.fc20 (FEDORA-2013-23719) A Qt wrapper for bluez -------------------------------------------------------------------------------- Update Information: Fresh bluedevil snapshot, includes many bug (particularly crasher) fixes. -------------------------------------------------------------------------------- ChangeLog: * Fri Dec 20 2013 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 2.0-0.4.20131220 - libbluedevil-2.0 20131220 bluez5 branch snapshot * Thu Dec 19 2013 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 2.0-0.3.20131219 - libbluedevil-2.0 20131219 bluez5 branch snapshot -------------------------------------------------------------------------------- References: [ 1 ] Bug #998218 - Obsolete dep on obexd https://bugzilla.redhat.com/show_bug.cgi?id=998218 -------------------------------------------------------------------------------- ================================================================================ libdvdnav-4.2.1-1.fc20 (FEDORA-2013-23723) A library for reading DVD video discs based on Ogle code -------------------------------------------------------------------------------- Update Information: >From upstream changelogs: **libdvdread** (4.2.1) * fix huge memory consumption when reading DVDs: "Up" and "Dark Knight" * fix segfault when reading DVDs: "The Express", "Transformers 3" and "Cars 2" **libdvdnav** (4.2.1) * fixed failed assertion on menu-less DVDs * fixed playback issues on multi-angle DVDs * fixed crash when playing a DVD from different region than currently set in the DVD drive * fixed segfaults when reading certain DVDs (including "Jack Reacher", "Ghost Protocol", "Inside Man", "Tangled" and "The Dictator") -------------------------------------------------------------------------------- ChangeLog: * Thu Dec 19 2013 Dominik Mierzejewski <rpm[AT]greysector.net> 4.2.1-1 - update to 4.2.1 - drop obsolete/redundant specfile elements - add upstream URL * Tue Sep 10 2013 Dominik Mierzejewski <rpm[AT]greysector.net> 4.2.0-6 - fix segfault when cell is empty, patch by Simo Sorce, bug #902037 -------------------------------------------------------------------------------- References: [ 1 ] Bug #902037 - vlc segfault in dvdnav_describe_title_chapters () from /lib64/libdvdnav.so.4 when trying to play a DVD https://bugzilla.redhat.com/show_bug.cgi?id=902037 -------------------------------------------------------------------------------- ================================================================================ libdvdread-4.2.1-1.fc20 (FEDORA-2013-23723) A library for reading DVD video discs based on Ogle code -------------------------------------------------------------------------------- Update Information: >From upstream changelogs: **libdvdread** (4.2.1) * fix huge memory consumption when reading DVDs: "Up" and "Dark Knight" * fix segfault when reading DVDs: "The Express", "Transformers 3" and "Cars 2" **libdvdnav** (4.2.1) * fixed failed assertion on menu-less DVDs * fixed playback issues on multi-angle DVDs * fixed crash when playing a DVD from different region than currently set in the DVD drive * fixed segfaults when reading certain DVDs (including "Jack Reacher", "Ghost Protocol", "Inside Man", "Tangled" and "The Dictator") -------------------------------------------------------------------------------- ChangeLog: * Thu Dec 19 2013 Dominik Mierzejewski <rpm@xxxxxxxxxxxxxx> 4.2.1-1 - updated to 4.2.1 release - drop obsolete/redundant specfile elements - add upstream URL - add missing provides for bundled md5 copylib -------------------------------------------------------------------------------- References: [ 1 ] Bug #902037 - vlc segfault in dvdnav_describe_title_chapters () from /lib64/libdvdnav.so.4 when trying to play a DVD https://bugzilla.redhat.com/show_bug.cgi?id=902037 -------------------------------------------------------------------------------- ================================================================================ libjpeg-turbo-1.3.0-2.fc20 (FEDORA-2013-23749) A MMX/SSE2 accelerated library for manipulating JPEG image files -------------------------------------------------------------------------------- Update Information: Apply fixes CVE-2013-6629, CVE-2013-6630 -------------------------------------------------------------------------------- ChangeLog: * Thu Dec 19 2013 Petr Hracek <phracek@xxxxxxxxxx> - 1.3.0-2 - Apply fixes CVE-2013-6629, CVE-2013-6630 (#20131737) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1031737 - CVE-2013-6629 CVE-2013-6630 libjpeg-turbo: various flaws [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1031737 -------------------------------------------------------------------------------- ================================================================================ libmodbus-3.0.5-1.fc20 (FEDORA-2013-23750) A Modbus library -------------------------------------------------------------------------------- Update Information: New upstream release; new EPEL6 branch -------------------------------------------------------------------------------- ChangeLog: * Thu Dec 19 2013 John Morris <john@xxxxxxxxxxx> - 3.0.5-1 - new upstream release - new Fedora EPEL6 branch -------------------------------------------------------------------------------- References: [ 1 ] Bug #1039212 - Build for EPEL6 https://bugzilla.redhat.com/show_bug.cgi?id=1039212 -------------------------------------------------------------------------------- ================================================================================ libreoffice-4.1.4.2-2.fc20 (FEDORA-2013-23697) Free Software Productivity Suite -------------------------------------------------------------------------------- Update Information: rebuild against new libstdc++ to fix std::nth_element -------------------------------------------------------------------------------- ChangeLog: * Wed Dec 18 2013 Caolán McNamara <caolanm@xxxxxxxxxx> - 1:4.1.4.2-2 - Resolves: rhbz#1040708 rebuild against new libstdc++ to fix std::nth_element -------------------------------------------------------------------------------- References: [ 1 ] Bug #1040708 - std::nth_element crash: LibreOffice needs to be rebuilt against libstdc++-dev with gcc#58800 fixed https://bugzilla.redhat.com/show_bug.cgi?id=1040708 -------------------------------------------------------------------------------- ================================================================================ libselinux-2.2.1-4.fc20 (FEDORA-2013-23698) SELinux library and simple utilities -------------------------------------------------------------------------------- Update Information: Add golang support Remove requirement for pthread Update to latest upstream Add support for policy compression -------------------------------------------------------------------------------- ChangeLog: * Wed Dec 18 2013 Dan Walsh <dwalsh@xxxxxxxxxx> - 2.2.1-4 - Mv selinux.go to /usr/share/gocode/src/selinux * Tue Dec 17 2013 Dan Walsh <dwalsh@xxxxxxxxxx> - 2.2.1-3 - Add golang support to selinux. * Thu Dec 5 2013 Dan Walsh <dwalsh@xxxxxxxxxx> - 2.2.1-2 - Remove togglesebool man page * Mon Nov 25 2013 Dan Walsh <dwalsh@xxxxxxxxxx> - 2.2.1-1 - Update to upstream * Remove -lpthread from pkg-config file; it is not required. - Add support for policy compressed with xv * Thu Oct 31 2013 Dan Walsh <dwalsh@xxxxxxxxxx> - 2.2-1 - Update to upstream * Fix avc_has_perm() returns -1 even when SELinux is in permissive mode. * Support overriding Makefile RANLIB from Sven Vermeulen. * Update pkgconfig definition from Sven Vermeulen. * Mount sysfs before trying to mount selinuxfs from Sven Vermeulen. * Fix man pages from Laurent Bigonville. * Support overriding PATH and LIBBASE in Makefiles from Laurent Bigonville. * Fix LDFLAGS usage from Laurent Bigonville * Avoid shadowing stat in load_mmap from Joe MacDonald. * Support building on older PCRE libraries from Joe MacDonald. * Fix handling of temporary file in sefcontext_compile from Dan Walsh. * Fix procattr cache from Dan Walsh. * Define python constants for getenforce result from Dan Walsh. * Fix label substitution handling of / from Dan Walsh. * Add selinux_current_policy_path from Dan Walsh. * Change get_context_list to only return good matches from Dan Walsh. * Support udev-197 and higher from Sven Vermeulen and Dan Walsh. * Add support for local substitutions from Dan Walsh. * Change setfilecon to not return ENOSUP if context is already correct from Dan Walsh. * Python wrapper leak fixes from Dan Walsh. * Export SELINUX_TRANS_DIR definition in selinux.h from Dan Walsh. * Add selinux_systemd_contexts_path from Dan Walsh. * Add selinux_set_policy_root from Dan Walsh. * Add man page for sefcontext_compile from Dan Walsh. * Fri Oct 4 2013 Dan Walsh <dwalsh@xxxxxxxxxx> - 2.1.13-21 - Add systemd_contexts support - Do substitutions on a local sub followed by a dist sub * Thu Oct 3 2013 Dan Walsh <dwalsh@xxxxxxxxxx> - 2.1.13-20 - Eliminate requirement on pthread library, by applying patch for Jakub Jelinek Resolves #1013801 -------------------------------------------------------------------------------- ================================================================================ libzip-0.11.2-1.fc20 (FEDORA-2013-23699) C library for reading, creating, and modifying zip archives -------------------------------------------------------------------------------- Update Information: 0.11.2 [2013/12/19] * Support querying/setting operating system and external attributes. * For newly added files, set operating system to UNIX, permissions to 0666 (0777 for directories). * Fix bug when writing zip archives containing files bigger than 4GB. -------------------------------------------------------------------------------- ChangeLog: * Thu Dec 19 2013 Remi Collet <remi@xxxxxxxxxxxxxxxxx> - 0.11.2-1 - update to 0.11.2 - run test during build -------------------------------------------------------------------------------- ================================================================================ mingw-libzip-0.11.2-1.fc20 (FEDORA-2013-23752) C library for reading, creating, and modifying zip archives -------------------------------------------------------------------------------- Update Information: Update to 0.11.2, see http://hg.nih.at/libzip/file/5e14f593fbdd/NEWS for details. -------------------------------------------------------------------------------- ChangeLog: * Thu Dec 19 2013 Sandro Mani <manisandro@xxxxxxxxx> - 0.11.2-1 - Update to 0.11.2 -------------------------------------------------------------------------------- ================================================================================ nini-1.1.0-4.fc20 (FEDORA-2013-23696) .NET configuration library -------------------------------------------------------------------------------- Update Information: fix build on secondary arches Remove BuildArch. -------------------------------------------------------------------------------- ChangeLog: * Thu Dec 19 2013 Dan Horák <dan[at]danny.cz> - 1.1.0-4 - set ExclusiveArch * Fri Dec 13 2013 Christopher Meng <rpm@xxxxxxxx> - 1.1.0-3 - No noarch. -------------------------------------------------------------------------------- ================================================================================ python-caja-1.4.0-4.fc20 (FEDORA-2013-23684) Python bindings for Caja -------------------------------------------------------------------------------- Update Information: - rebuild for caja rename in f21 - add python2 stacks -------------------------------------------------------------------------------- ChangeLog: * Wed Dec 18 2013 Wolfgang Ulbrich <chat-to-me@xxxxxxxxx> - 1:1.4.0-4 - rebuild for caja rename in f21 - add python2 stacks -------------------------------------------------------------------------------- ================================================================================ python-fedora-0.3.33-1.fc20 (FEDORA-2013-23688) Python modules for talking to Fedora Infrastructure Services -------------------------------------------------------------------------------- Update Information: Update to 0.3.33 final with numerous bugfixes to the flask_fas_openid adapter. -------------------------------------------------------------------------------- ChangeLog: * Thu Dec 19 2013 Toshio Kuratomi <toshio@xxxxxxxxxxxxxxxxx> - 0.3.33-1 - Update for final release with numerous flask_fas_openid fixes -------------------------------------------------------------------------------- ================================================================================ python-halite-0.1.13-1.fc20 (FEDORA-2013-23724) SaltStack Web UI -------------------------------------------------------------------------------- Update Information: Update to version 0.1.13. -------------------------------------------------------------------------------- ChangeLog: -------------------------------------------------------------------------------- ================================================================================ salt-0.17.4-1.fc20 (FEDORA-2013-23732) A parallel remote execution system -------------------------------------------------------------------------------- Update Information: Update to bugfix release 0.17.4. -------------------------------------------------------------------------------- ChangeLog: * Thu Dec 19 2013 Erik Johnson <erik@xxxxxxxxxxxxx> - 0.17.4-1 - Update to bugfix release 0.17.4 -------------------------------------------------------------------------------- ================================================================================ schroot-1.6.5-4.fc20 (FEDORA-2013-23693) Execute commands in a chroot environment -------------------------------------------------------------------------------- Update Information: Make schroot binary suid. Otherwise only root can use it. -------------------------------------------------------------------------------- ChangeLog: * Thu Dec 19 2013 Zach Carter <z.carter@xxxxxx> - 1.6.5-4 - Make sure schroot is suid (BZ1045006) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1045006 - schroot fails to lock session file https://bugzilla.redhat.com/show_bug.cgi?id=1045006 -------------------------------------------------------------------------------- ================================================================================ setroubleshoot-plugins-3.0.59-1.fc20 (FEDORA-2013-23728) Analysis plugins for use with setroubleshoot -------------------------------------------------------------------------------- Update Information: Update translations, make sure > f19 version -------------------------------------------------------------------------------- ChangeLog: * Wed Dec 4 2013 Dan Walsh <dwalsh@xxxxxxxxxx> - 3.0.59-1 - Update Translations -------------------------------------------------------------------------------- References: [ 1 ] Bug #1044722 - F20 version older than F19, upgrade impossible https://bugzilla.redhat.com/show_bug.cgi?id=1044722 -------------------------------------------------------------------------------- ================================================================================ sssd-1.11.3-1.fc20 (FEDORA-2013-23700) System Security Services Daemon -------------------------------------------------------------------------------- Update Information: New upstream release 1.11.3 https://fedorahosted.org/sssd/wiki/Releases/Notes-1.11.3 -------------------------------------------------------------------------------- ChangeLog: -------------------------------------------------------------------------------- ================================================================================ systemd-ui-3-1.fc20 (FEDORA-2013-23755) Graphical front-end for systemd -------------------------------------------------------------------------------- Update Information: New pure bugfix upstream release. Rebuilding with current vala seems to fix segmentation fault issues from #744439. -------------------------------------------------------------------------------- ChangeLog: * Thu Dec 19 2013 Zbigniew Jędrzejewski-Szmek <zbyszek@xxxxxxxxx> 3-1 - version 3 -------------------------------------------------------------------------------- References: [ 1 ] Bug #874988 - Might need to add a category to systemadm.desktop https://bugzilla.redhat.com/show_bug.cgi?id=874988 [ 2 ] Bug #980207 - red color used for inactive services falsely suggests problems https://bugzilla.redhat.com/show_bug.cgi?id=980207 [ 3 ] Bug #980204 - Snapshot Error https://bugzilla.redhat.com/show_bug.cgi?id=980204 [ 4 ] Bug #744439 - systemadm tends to crash when services change state https://bugzilla.redhat.com/show_bug.cgi?id=744439 [ 5 ] Bug #980203 - systemd System Manager Display Size Problem https://bugzilla.redhat.com/show_bug.cgi?id=980203 -------------------------------------------------------------------------------- ================================================================================ trustedqsl-2.0.1-1.fc20 (FEDORA-2013-23738) TrustedQSL ham-radio applications -------------------------------------------------------------------------------- Update Information: - Update to version 2.0.1. - Add conditionals for EPEL-6. -------------------------------------------------------------------------------- ChangeLog: * Thu Dec 19 2013 Richard Shaw <hobbes1069@xxxxxxxxx> - 2.0.1-1 - Update to version 2.0.1. - Add conditionals for EPEL-6. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1013145 - trustedqsl-2.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1013145 [ 2 ] Bug #991687 - [abrt] trustedqsl-1.13-4.fc18: _M_data: Process /usr/bin/tqsl was killed by signal 11 (SIGSEGV) https://bugzilla.redhat.com/show_bug.cgi?id=991687 -------------------------------------------------------------------------------- ================================================================================ vim-command-t-1.6-1.fc20 (FEDORA-2013-23747) An extremely fast, intuitive mechanism for opening files in VIM -------------------------------------------------------------------------------- Update Information: Update to command-t 1.6. -------------------------------------------------------------------------------- ChangeLog: * Thu Dec 19 2013 Vít Ondruch <vondruch@xxxxxxxxxx> - 1.6-1 - Update to command-t 1.6. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1011406 - vim-command-t-1.6 is available https://bugzilla.redhat.com/show_bug.cgi?id=1011406 -------------------------------------------------------------------------------- -- test mailing list test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe: https://admin.fedoraproject.org/mailman/listinfo/test
