The following Fedora 19 Security updates need testing: Age URL 92 https://admin.fedoraproject.org/updates/FEDORA-2013-19262/quassel-0.9.1-1.fc19 85 https://admin.fedoraproject.org/updates/FEDORA-2013-19963/openstack-glance-2013.1.4-1.fc19 30 https://admin.fedoraproject.org/updates/FEDORA-2013-23592/rubygem-actionpack-3.2.13-3.fc19 22 https://admin.fedoraproject.org/updates/FEDORA-2013-24023/varnish-3.0.5-1.fc19 9 https://admin.fedoraproject.org/updates/FEDORA-2014-0467/libXfont-1.4.5-5.fc19 8 https://admin.fedoraproject.org/updates/FEDORA-2014-0574/flite-1.3-20.fc19 8 https://admin.fedoraproject.org/updates/FEDORA-2014-0567/strongswan-5.1.1-4.fc19 7 https://admin.fedoraproject.org/updates/FEDORA-2014-0094/rubygem-will_paginate-3.0.4-5.fc19 7 https://admin.fedoraproject.org/updates/FEDORA-2014-0621/graphviz-2.30.1-12.fc19 6 https://admin.fedoraproject.org/updates/FEDORA-2014-0719/openjpeg-1.5.1-8.fc19 3 https://admin.fedoraproject.org/updates/FEDORA-2013-22883/qt3-3.3.8b-56.fc19 3 https://admin.fedoraproject.org/updates/FEDORA-2014-0850/puppet-3.4.2-1.fc19 3 https://admin.fedoraproject.org/updates/FEDORA-2014-0797/libinfinity-0.5.5-1.fc19 2 https://admin.fedoraproject.org/updates/FEDORA-2014-0946/libmicrohttpd-0.9.33-1.fc19 2 https://admin.fedoraproject.org/updates/FEDORA-2014-0934/memcached-1.4.17-1.fc19 2 https://admin.fedoraproject.org/updates/FEDORA-2014-0970/rubygem-actionmailer-3.2.13-2.fc19,rubygem-actionpack-3.2.13-4.fc19,rubygem-activesupport-3.2.13-2.fc19 1 https://admin.fedoraproject.org/updates/FEDORA-2014-0980/drupal6-6.30-1.fc19 1 https://admin.fedoraproject.org/updates/FEDORA-2014-0983/drupal7-7.26-1.fc19 1 https://admin.fedoraproject.org/updates/FEDORA-2014-1004/ibus-chewing-1.4.6-1.fc19 0 https://admin.fedoraproject.org/updates/FEDORA-2014-1072/kernel-3.12.8-200.fc19 0 https://admin.fedoraproject.org/updates/FEDORA-2014-1090/libvirt-1.0.5.9-1.fc19 0 https://admin.fedoraproject.org/updates/FEDORA-2014-1092/libreswan-3.8-1.fc19 0 https://admin.fedoraproject.org/updates/FEDORA-2014-1100/nss-3.15.4-1.fc19,nss-softokn-3.15.4-1.fc19,nss-util-3.15.4-1.fc19 0 https://admin.fedoraproject.org/updates/FEDORA-2013-22932/qt-4.8.5-15.fc19 The following Fedora 19 Critical Path updates have yet to be approved: Age URL 58 https://admin.fedoraproject.org/updates/FEDORA-2013-21772/unzip-6.0-11.fc19 33 https://admin.fedoraproject.org/updates/FEDORA-2013-22326/fedora-bookmarks-15-5.fc19 13 https://admin.fedoraproject.org/updates/FEDORA-2014-0250/qtwebkit-2.3.3-3.fc19 9 https://admin.fedoraproject.org/updates/FEDORA-2014-0452/popt-1.16-2.fc19 9 https://admin.fedoraproject.org/updates/FEDORA-2014-0498/livecd-tools-19.8-1.fc19 8 https://admin.fedoraproject.org/updates/FEDORA-2014-0517/pcre-8.32-8.fc19 8 https://admin.fedoraproject.org/updates/FEDORA-2014-0437/satyr-0.13-1.fc19,abrt-2.1.11-1.fc19,libreport-2.1.11-1.fc19 7 https://admin.fedoraproject.org/updates/FEDORA-2014-0630/control-center-3.8.5-2.fc19,accountsservice-0.6.35-3.fc19 7 https://admin.fedoraproject.org/updates/FEDORA-2014-0639/rtkit-0.11-8.fc19 6 https://admin.fedoraproject.org/updates/FEDORA-2014-0719/openjpeg-1.5.1-8.fc19 3 https://admin.fedoraproject.org/updates/FEDORA-2014-0847/ibus-1.5.5-1.fc19 2 https://admin.fedoraproject.org/updates/FEDORA-2014-0948/yum-3.4.3-130.fc19 2 https://admin.fedoraproject.org/updates/FEDORA-2014-0938/firefox-26.0-5.fc19 2 https://admin.fedoraproject.org/updates/FEDORA-2014-0946/libmicrohttpd-0.9.33-1.fc19 1 https://admin.fedoraproject.org/updates/FEDORA-2014-1008/audit-2.3.3-1.fc19 0 https://admin.fedoraproject.org/updates/FEDORA-2014-1100/nss-3.15.4-1.fc19,nss-softokn-3.15.4-1.fc19,nss-util-3.15.4-1.fc19 0 https://admin.fedoraproject.org/updates/FEDORA-2014-0752/firewalld-0.3.9.2-1.fc19 The following builds have been pushed to Fedora 19 updates-testing Macaulay2-1.5-2.fc19 Singular-3.1.5-10.fc19 aqbanking-5.3.2-0.1.beta.fc19 backupninja-1.0.1-1.fc19 bugwarrior-0.6.3-3.fc19 duplicity-0.6.22-5.fc19 easytag-2.1.9-1.fc19 gedit-3.8.3-2.fc19 gnucash-2.4.15-1.fc19 golang-github-gorilla-context-0-0.22.git708054d.fc19 golang-github-kr-pty-0-0.18.git3b1f648.fc19 golang-github-syndtr-gocapability-0-0.5.git3454319.fc19 gwenhywfar-4.9.0-0.2.beta.fc19 hash-slinger-2.5-1.fc19 java-1.7.0-openjdk-1.7.0.60-2.4.4.1.fc19 kmymoney-4.6.4-3.fc19 libreswan-3.8-1.fc19 lua-json-1.3.2-2.fc19 luarocks-2.1.2-1.fc19 nss-3.15.4-1.fc19 nss-softokn-3.15.4-1.fc19 nss-util-3.15.4-1.fc19 perl-qpid_proton-0.6-1.fc19 pkgwat-0.10-1.fc19 python-rtslib-2.1.fb40-2.fc19 qt-4.8.5-15.fc19 rubygem-qpid_proton-0.6-1.fc19 seren-0.0.17-1.fc19 subtitleeditor-0.41.0-1.fc19 twirssi-2.6.3-1.fc19 vim-jedi-0.7.0-3.fc19 Details about builds: ================================================================================ Macaulay2-1.5-2.fc19 (FEDORA-2014-1130) System for algebraic geometry and commutative algebra -------------------------------------------------------------------------------- Update Information: Refresh to final Macaulay2-1.5 release, enable factory-gftables package (shared between Singular/Macaulay2) -------------------------------------------------------------------------------- ChangeLog: * Tue Jul 30 2013 Petr Machata <pmachata@xxxxxxxxxx> - 1.5-2 - Rebuild for boost 1.54.0 * Thu May 23 2013 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 1.5-1 - Release: 1 (using non-snapshot release tarball now) * Tue May 21 2013 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> - 1.5-0.7.20130401 - update to 20130401 r15955 snapshot release - (Build)Requires: factory-gftables (see bug #965655) - refresh INFO_FILES content -------------------------------------------------------------------------------- ================================================================================ Singular-3.1.5-10.fc19 (FEDORA-2014-1130) Computer Algebra System for polynomial computations -------------------------------------------------------------------------------- Update Information: Refresh to final Macaulay2-1.5 release, enable factory-gftables package (shared between Singular/Macaulay2) -------------------------------------------------------------------------------- ChangeLog: * Tue Jan 14 2014 Jerry James <loganjerry@xxxxxxxxx> - 3.1.5-10 - Update normaliz interface for normaliz 2.8 and later * Mon Nov 25 2013 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> - 3.1.5-9 - ExclusiveArch: %ix86 x86_64 * Fri Aug 16 2013 pcpa <paulo.cesar.pereira.de.andrade@xxxxxxxxx> - 3.1.5-8 - Correct underlink problem (#991920#c1) * Thu Aug 1 2013 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> - 3.1.5-7 - rebuild * Tue May 21 2013 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> - 3.1.5-6 - factory-gftables.noarch subpkg (#965655) -------------------------------------------------------------------------------- ================================================================================ aqbanking-5.3.2-0.1.beta.fc19 (FEDORA-2014-1101) A library for online banking functions and financial data import/export -------------------------------------------------------------------------------- Update Information: This updates AqBanking to the latest upstream release, adding support for SEPA transfers. It also updates GnuCash to the latest 2.4 bugfix release. -------------------------------------------------------------------------------- ChangeLog: * Fri Jan 17 2014 Bill Nottingham <notting@xxxxxxxxxx> - 5.3.2beta-0.2 - bump to 5.3.2beta * Wed Jan 15 2014 Bill Nottingham <notting@xxxxxxxxxx> - 5.3.1beta-0.1 - update to latest upstream - disable aqebics for now -------------------------------------------------------------------------------- References: [ 1 ] Bug #1047126 - Support for SEPA in aqbanking https://bugzilla.redhat.com/show_bug.cgi?id=1047126 -------------------------------------------------------------------------------- ================================================================================ backupninja-1.0.1-1.fc19 (FEDORA-2014-1102) Lightweight, extensible backup system -------------------------------------------------------------------------------- Update Information: Backupninja package initial submission -------------------------------------------------------------------------------- References: [ 1 ] Bug #1048963 - Review Request: backupninja - Lightweight, extensible backup system https://bugzilla.redhat.com/show_bug.cgi?id=1048963 -------------------------------------------------------------------------------- ================================================================================ bugwarrior-0.6.3-3.fc19 (FEDORA-2014-1134) Sync github, bitbucket, and trac issues with taskwarrior -------------------------------------------------------------------------------- Update Information: Add dependency on python-keyring. -------------------------------------------------------------------------------- ChangeLog: * Sat Jan 18 2014 Ralph Bean <rbean@xxxxxxxxxx> - 0.6.3-3 - Added dep on python-keyring. - Annotated the comment about python-jira. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1036078 - bugwarrior does not work on Fedora 19 -- missing deps - conflicting requirement https://bugzilla.redhat.com/show_bug.cgi?id=1036078 -------------------------------------------------------------------------------- ================================================================================ duplicity-0.6.22-5.fc19 (FEDORA-2014-1099) Encrypted bandwidth-efficient backup using rsync algorithm -------------------------------------------------------------------------------- Update Information: Added patch to fix Amazon s3 backup Added runtime requirement to python-dropbox -------------------------------------------------------------------------------- ChangeLog: * Fri Jan 17 2014 Rahul Sundaram <sundaram@xxxxxxxxxxxxxxxxx> - 0.6.22-5 - Added patch to fix Amazon s3 backup (#1048068) * Mon Jan 13 2014 Rahul Sundaram <sundaram@xxxxxxxxxxxxxxxxx> - 0.6.22-4 - Added runtime requirement to python-dropbox (#1048656) * Fri Dec 27 2013 Rahul Sundaram <sundaram@xxxxxxxxxxxxxxxxx> - 0.6.22-3 - Fix ssl cert enforcement (rhbz#960860) - Fix bogus date in changelog * Thu Dec 26 2013 Robert Scheck <robert@xxxxxxxxxxxxxxxxx> 0.6.22-2 - Added runtime requirement to python-paramiko (#819272, #918933) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1048068 - backup to s3 fails with traceback https://bugzilla.redhat.com/show_bug.cgi?id=1048068 [ 2 ] Bug #1048656 - duplicity prints a non-fatal error message https://bugzilla.redhat.com/show_bug.cgi?id=1048656 -------------------------------------------------------------------------------- ================================================================================ easytag-2.1.9-1.fc19 (FEDORA-2014-1132) Tag editor for mp3, ogg, flac and other music files -------------------------------------------------------------------------------- Update Information: Update to 2.1.9 (#1051759) * Lots of general refactoring and stability improvements * Replace most mini buttons with GtkEntry icons * Many memory leak and invalid read fixes, found with Valgrind, cppcheck and the CLang static analyzer * Fix crash when the MusicBrainz CDDB search fails * Remove ancient libmpg123 code and use id3lib for reading the MPEG header * Use GtkDialog for child windows * Many fixes when building for MinGW * Rearrange menus and adjust keyboard accelerators to better fit with the GNOME HIG * Abhinav Jangda’s numerous bug fixes and porting to GIO/GFile * Darshan’s column resizing and reordering patches * Use GApplication for application life cycle * Remove several custom icons and instead use the themed equivalents * Do not split FLAC and Ogg tags by default * Drop old Vorbis comment compatibility (XMMS and COMMENT fields) * Mathias Reineke’s total tracks support, and several other fixes * Adrian Bunk’s FLAC ID3 tag and obsolete translation improvements * Do not set a custom wmclass on the scanner window * Stop installing TODO, HACKING and THANKS files * DocBook XML man page * Marius Gavrilescu’s improvement for illustration image filenames * Dominique Leuenberger’s licence and build improvements * Florian Müllner’s GTK+ 3 deprecation fixes * Ekaterina Gerasimova’s Mallard help, and removal of the outdated user guide * Enrico Nicoletto, Rafael Ferreira and Antonio Fernandes C. Neto’s Brazilian Portuguese translation updates * Marek Černocký’s Czech translation update * Osman Karagöz’s Turkish translation * Gil Forcada’s Catalan translation * Balázs Úr’s Hungarian translation update * Christian Kirbach’s German translation update * Aurimas Černius’s Lithuanian translation update * Stas Solovey’s Russian translation update * Matej Urbančič and Martin Srebotnjak’s Slovenian translation updates * Мирослав Николић’s Serbian translation update * Piotr Drąg’s Polish translation update * Milagros Infante Montero’s Spanish translation update -------------------------------------------------------------------------------- ChangeLog: * Fri Jan 17 2014 David King <amigadave@xxxxxxxxxxxxx> 2.1.9-1 - Update to 2.1.9 (#1051759) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1051759 - easytag-2.1.9 is available https://bugzilla.redhat.com/show_bug.cgi?id=1051759 [ 2 ] Bug #1027408 - [abrt] easytag-2.1.7-3.fc19: gtk_tree_store_get_path: Process /usr/bin/easytag was killed by signal 11 (SIGSEGV) https://bugzilla.redhat.com/show_bug.cgi?id=1027408 [ 3 ] Bug #1051903 - easytag.desktop: usage of MIME type "x-directory/normal" is discouraged https://bugzilla.redhat.com/show_bug.cgi?id=1051903 -------------------------------------------------------------------------------- ================================================================================ gedit-3.8.3-2.fc19 (FEDORA-2014-1107) Text editor for the GNOME desktop -------------------------------------------------------------------------------- Update Information: This update fixes a bug which prevented shell commands from working when used in gedit 'snippets'. The fix is backported from the upstream master branch of gedit. The bug was reported as GNOME bug #707026. -------------------------------------------------------------------------------- ChangeLog: * Fri Jan 17 2014 Adam Williamson <awilliam@xxxxxxxxxx> - 2:3.8.3-2 - Backport upstream fix for shell commands in snippets (BGO #707026) -------------------------------------------------------------------------------- ================================================================================ gnucash-2.4.15-1.fc19 (FEDORA-2014-1101) Finance management application -------------------------------------------------------------------------------- Update Information: This updates AqBanking to the latest upstream release, adding support for SEPA transfers. It also updates GnuCash to the latest 2.4 bugfix release. -------------------------------------------------------------------------------- ChangeLog: * Fri Jan 17 2014 Bill Nottingham <notting@xxxxxxxxxx> - 2.4.15-1 - update to 2.4.15 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1047126 - Support for SEPA in aqbanking https://bugzilla.redhat.com/show_bug.cgi?id=1047126 -------------------------------------------------------------------------------- ================================================================================ golang-github-gorilla-context-0-0.22.git708054d.fc19 (FEDORA-2014-1093) A golang registry for global request variables -------------------------------------------------------------------------------- Update Information: golang exclusivearch for el6+ revert golang >= 1.2 requirement -------------------------------------------------------------------------------- ChangeLog: * Wed Jan 15 2014 Lokesh Mandvekar <lsm5@xxxxxxxxxx> 0-0.22.git708054d - golang exclusivearch for el6+ - add check * Wed Jan 15 2014 Lokesh Mandvekar <lsm5@xxxxxxxxxx> 0-0.21.git708054d - revert golang 1.2 requirement * Wed Jan 15 2014 Lokesh Mandvekar <lsm5@xxxxxxxxxx> 0-0.20.git708054d - require golang 1.2 and up -------------------------------------------------------------------------------- ================================================================================ golang-github-kr-pty-0-0.18.git3b1f648.fc19 (FEDORA-2014-1106) PTY interface for Go -------------------------------------------------------------------------------- Update Information: exclusivearch for el6+ revert golang >= 1.2 version requirement -------------------------------------------------------------------------------- ChangeLog: * Wed Jan 15 2014 Lokesh Mandvekar <lsm5@xxxxxxxxxx> 0-0.18.git3b1f648 - exclusivearch for el6+ * Wed Jan 15 2014 Lokesh Mandvekar <lsm5@xxxxxxxxxx> 0-0.17.git3b1f648 - revert golang >= 1.2 version requirement * Wed Jan 15 2014 Lokesh Mandvekar <lsm5@xxxxxxxxxx> 0-0.16.git3b1f648 - require golang 1.2 and up -------------------------------------------------------------------------------- ================================================================================ golang-github-syndtr-gocapability-0-0.5.git3454319.fc19 (FEDORA-2014-1108) POSIX capability library for the Go programming language -------------------------------------------------------------------------------- Update Information: exclusivearch for el6+ -------------------------------------------------------------------------------- ChangeLog: * Fri Jan 17 2014 Lokesh Mandvekar <lsm5@xxxxxxxxxx> 0-0.5.git3454319 - exclusivearch for el6+ * Fri Jan 17 2014 Lokesh Mandvekar <lsm5@xxxxxxxxxx> 0-0.4.git3454319 - require golang as runtime dep -------------------------------------------------------------------------------- ================================================================================ gwenhywfar-4.9.0-0.2.beta.fc19 (FEDORA-2014-1101) A multi-platform helper library for other libraries -------------------------------------------------------------------------------- Update Information: This updates AqBanking to the latest upstream release, adding support for SEPA transfers. It also updates GnuCash to the latest 2.4 bugfix release. -------------------------------------------------------------------------------- ChangeLog: * Wed Jan 15 2014 Bill Nottingham <notting@xxxxxxxxxx> - 4.9.0-0.2.beta - update to latest upstream * Sat Aug 3 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 4.3.3-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1047126 - Support for SEPA in aqbanking https://bugzilla.redhat.com/show_bug.cgi?id=1047126 -------------------------------------------------------------------------------- ================================================================================ hash-slinger-2.5-1.fc19 (FEDORA-2014-1143) Generate various DNS records such as RFC-4255 SSHFP and RFC-698 TLSA -------------------------------------------------------------------------------- Update Information: Update to 2.5 which has OPENPGPKEY (draft 02) support -------------------------------------------------------------------------------- ChangeLog: * Sat Jan 18 2014 Paul Wouters <pwouters@xxxxxxxxxx> - 2.5-1 - Update to 2.5 which has OPENPGPKEY (draft 02) support - Added python-gnupg requires * Sat Aug 3 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 2.2-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ java-1.7.0-openjdk-1.7.0.60-2.4.4.1.fc19 (FEDORA-2014-1122) OpenJDK Runtime Environment -------------------------------------------------------------------------------- Update Information: Security update to icedtea 2.4.4 http://www.oracle.com/technetwork/topics/security/cpujan2014-1972949.html Now also arm32,ppc(64),s390(x) are updated and buildable. -------------------------------------------------------------------------------- ChangeLog: * Fri Jan 17 2014 Jiri Vanek <jvanek@xxxxxxxxxx> - 1.7.0.51-2.4.4.1.f19 - added zero fix for alternative arches - patch412 zero-x32.diff to try to fix zero builds build -------------------------------------------------------------------------------- ================================================================================ kmymoney-4.6.4-3.fc19 (FEDORA-2014-1101) Personal finance -------------------------------------------------------------------------------- Update Information: This updates AqBanking to the latest upstream release, adding support for SEPA transfers. It also updates GnuCash to the latest 2.4 bugfix release. -------------------------------------------------------------------------------- ChangeLog: * Thu Jan 16 2014 Bill Nottingham <notting@xxxxxxxxxx> - 4.6.4-3 - rebuild (aqbanking) * Mon Dec 16 2013 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 4.6.4-2 - rebuild (kdchart) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1047126 - Support for SEPA in aqbanking https://bugzilla.redhat.com/show_bug.cgi?id=1047126 -------------------------------------------------------------------------------- ================================================================================ libreswan-3.8-1.fc19 (FEDORA-2014-1092) IPsec implementation with IKEv1 and IKEv2 keying protocols -------------------------------------------------------------------------------- Update Information: Updated to 3.8, fixes CVE-2013-6467 (rhbz#1054102) -------------------------------------------------------------------------------- ChangeLog: * Sat Jan 18 2014 Paul Wouters <pwouters@xxxxxxxxxx> - 3.8-1 - Updated to 3.8, fixes rhbz#CVE-2013-6467 (rhbz#1054102) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1054102 - libreswan-3.8 is available https://bugzilla.redhat.com/show_bug.cgi?id=1054102 -------------------------------------------------------------------------------- ================================================================================ lua-json-1.3.2-2.fc19 (FEDORA-2014-1135) JSON Parser/Constructor for Lua -------------------------------------------------------------------------------- Update Information: Fixes incompatibility between previous version (1.2.2) and lua-lpeg 0.12 -------------------------------------------------------------------------------- ChangeLog: * Sat Jan 18 2014 Michel Salim <salimma@xxxxxxxxxxxxxxxxx> - 1.3.2-2 - Generalize spec to build on both Lua 5.1 and 5.2 * Fri May 10 2013 Tom Callaway <spot@xxxxxxxxxxxxxxxxx> - 1.3.2-1 - update to 1.3.2, rebuild for lua 5.2 -------------------------------------------------------------------------------- References: [ 1 ] Bug #985789 - lua-json doesn't work with current lua-lpeg https://bugzilla.redhat.com/show_bug.cgi?id=985789 -------------------------------------------------------------------------------- ================================================================================ luarocks-2.1.2-1.fc19 (FEDORA-2014-1094) A deployment and management system for Lua modules -------------------------------------------------------------------------------- Update Information: Changes in 2.1.2: http://lua-users.org/lists/lua-l/2014-01/msg00257.html * a new command, "luarocks doc <module>" that tries to find any installed documentation. * a rocks_provided configuration entry in which you can preload dependencies that are already fulfilled in your system; a few defaults are included * generated script wrappers are now more robust * Minor performance improvements * Support for "named trees", so you can label your rocks trees and use flags such as --tree=system or --tree=user instead of the full path * `luarocks` with no arguments presents more useful diagnostics * plus assorted bugfixes Changes in 2.1.1: http://lua-users.org/lists/lua-l/2013-10/msg00800.html * Remote manifests are now compressed and locally cached, making commands faster * New command "write_rockspec" which generates rockspec file templates * detection of multiarch directories on Linux * New --force=fast option for 'luarocks remove' * New --local-tree flag for 'luarocks-admin make-manifest' * Improved error checking * plus assorted bugfixes Changes in 2.1.0: http://lua-users.org/lists/lua-l/2013-08/msg00137.html * accesses manifest-{5.1,5.2} in remote servers to provide properly filtered results for Lua 5.1 or 5.2 * Remove old versions when installing a new one and old versions are no longer needed to honor dependencies. * 'make bootstrap' is now an advertised option for installing LuaRocks itself as a rock on Unix systems * 'luarocks purge --old-versions' for cleaning up a local tree * --keep flag to produce the old behavior of keeping old versions around (can be made permanent setting keep_old_versions=true in the config file) * security config options 'accepted_build_types' and 'hooks_enabled' * 'lua_version' is now available as a global for your config.lua * new flags --lr-path, --lr-cpath, --lr-bin for 'luarocks path' for use in scripts * friendlier error messages * plus bugfixes -------------------------------------------------------------------------------- ChangeLog: * Thu Jan 16 2014 Michel Salim <salimma@xxxxxxxxxxxxxxxxx> - 2.1.2-1 - Update to 2.1.2 -------------------------------------------------------------------------------- References: [ 1 ] Bug #995808 - luarocks-2.1.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=995808 -------------------------------------------------------------------------------- ================================================================================ nss-3.15.4-1.fc19 (FEDORA-2014-1100) Network Security Services -------------------------------------------------------------------------------- Update Information: Update of the nss, nss-softokn, and nss-util packages to nss-3.15.4, a patch release for NSS 3.15 which includes the following security-relevant bug: (CVE-2013-1740) When false start is enabled, libssl will sometimes return unencrypted, unauthenticated data from PR_Recv For further details refer to the nss upstream release notes at https://developer.mozilla.org/en-US/docs/NSS/NSS_3.15.4_release_notes -------------------------------------------------------------------------------- ChangeLog: * Fri Jan 17 2014 Elio Maldonado <emaldona@xxxxxxxxxx> - 3.15.4-1 - Update to nss-3.15.4 (hg tag NSS_3_15_4_RTM) - Resolves: Bug 1049229 - nss-3.15.4 is available - Resolves: Bug 1054456 - CVE-2013-1740 nss: false start PR_Recv information disclosure security issue - Update pem sources to latest from the interim upstream for pem - Remove no longer needed patches - Update pem/rsawrapr.c patch on account of upstream changes to freebl/softoken - Update iquote.patch on account of upstream changes - Add comments documenting the iquote patch - Selective merge from master and f20 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1053725 - CVE-2013-1740 nss: false start PR_Recv information disclosure security issue https://bugzilla.redhat.com/show_bug.cgi?id=1053725 -------------------------------------------------------------------------------- ================================================================================ nss-softokn-3.15.4-1.fc19 (FEDORA-2014-1100) Network Security Services Softoken Module -------------------------------------------------------------------------------- Update Information: Update of the nss, nss-softokn, and nss-util packages to nss-3.15.4, a patch release for NSS 3.15 which includes the following security-relevant bug: (CVE-2013-1740) When false start is enabled, libssl will sometimes return unencrypted, unauthenticated data from PR_Recv For further details refer to the nss upstream release notes at https://developer.mozilla.org/en-US/docs/NSS/NSS_3.15.4_release_notes -------------------------------------------------------------------------------- ChangeLog: * Tue Jan 7 2014 Elio Maldonado <emaldona@xxxxxxxxxx> - 3.15.3-2 - Update to NSS_3_15_4_RTM - Resolves: Bug 1049229 - nss-3.15.4 is available -------------------------------------------------------------------------------- References: [ 1 ] Bug #1053725 - CVE-2013-1740 nss: false start PR_Recv information disclosure security issue https://bugzilla.redhat.com/show_bug.cgi?id=1053725 -------------------------------------------------------------------------------- ================================================================================ nss-util-3.15.4-1.fc19 (FEDORA-2014-1100) Network Security Services Utilities Library -------------------------------------------------------------------------------- Update Information: Update of the nss, nss-softokn, and nss-util packages to nss-3.15.4, a patch release for NSS 3.15 which includes the following security-relevant bug: (CVE-2013-1740) When false start is enabled, libssl will sometimes return unencrypted, unauthenticated data from PR_Recv For further details refer to the nss upstream release notes at https://developer.mozilla.org/en-US/docs/NSS/NSS_3.15.4_release_notes -------------------------------------------------------------------------------- ChangeLog: * Tue Jan 7 2014 Elio Maldonado <emaldona@xxxxxxxxxx> - 3.15.4-1 - Update to NSS_3_15_4_RTM - Resolves: Bug 1049229 - nss-3.15.4 is available -------------------------------------------------------------------------------- References: [ 1 ] Bug #1053725 - CVE-2013-1740 nss: false start PR_Recv information disclosure security issue https://bugzilla.redhat.com/show_bug.cgi?id=1053725 -------------------------------------------------------------------------------- ================================================================================ perl-qpid_proton-0.6-1.fc19 (FEDORA-2014-1125) Perl language bindings for Qpid Proton -------------------------------------------------------------------------------- Update Information: Rebased on Qpid Proton 0.6. Rebased on Proton 0.5. -------------------------------------------------------------------------------- ChangeLog: * Fri Jan 17 2014 Darryl L. Pierce <dpierce@xxxxxxxxxx> - 0.6-1 - Rebased on Qpid Proton 0.6. -------------------------------------------------------------------------------- ================================================================================ pkgwat-0.10-1.fc19 (FEDORA-2014-1104) CLI tool for querying the fedora packages webapp -------------------------------------------------------------------------------- Update Information: Add shortened options for pagination. -------------------------------------------------------------------------------- ChangeLog: * Fri Jan 17 2014 Ralph Bean <rbean@xxxxxxxxxx> - 0.10-1 - Added short flags for pagination. -------------------------------------------------------------------------------- ================================================================================ python-rtslib-2.1.fb40-2.fc19 (FEDORA-2014-1141) API for Linux kernel LIO SCSI target -------------------------------------------------------------------------------- Update Information: fix fcoe wwn issue -------------------------------------------------------------------------------- ChangeLog: * Fri Jan 17 2014 Andy Grover <agrover@xxxxxxxxxx> - 2.1.fb40-2 - Add fix-fcoe.patch -------------------------------------------------------------------------------- ================================================================================ qt-4.8.5-15.fc19 (FEDORA-2013-22932) Qt toolkit -------------------------------------------------------------------------------- Update Information: Qt Project Security Advisory: XML Entity Expansion Denial of Service (CVE-2013-4549) See also http://lists.qt-project.org/pipermail/announce/2013-December/000036.html In addition, this update: * adds support for the aarch64 architecture, * fixes QTBUG-35459, a too low character limit for XML entities enforced by the fix for CVE-2013-4549 that was breaking real-world XML files (in particular, the KatePart Lilypond syntax highlighting description), * fixes QTBUG-35460, a misspelling in the error message produced by the CVE-2013-4549 fix when the character limit for XML entities was exceeded. -------------------------------------------------------------------------------- ChangeLog: * Fri Jan 17 2014 Kevin Kofler <Kevin@xxxxxxxxxxxxxxxx> - 4.8.5-15 - drop "Discover printers shared by CUPS 1.6 (#980952)" (#1054312, #980952#c18) * Mon Jan 13 2014 Kevin Kofler <Kevin@xxxxxxxxxxxxxxxx> - 4.8.5-14 - fix QTBUG-35459 (too low entityCharacterLimit=1024 for CVE-2013-4549) - fix QTBUG-35460 (error message for CVE-2013-4549 is misspelled) * Mon Dec 23 2013 Peter Robinson <pbrobinson@xxxxxxxxxxxxxxxxx> 4.8.5-13 - Add support for aarch64 (#1046360) * Thu Dec 5 2013 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 4.8.5-12 - XML Entity Expansion Denial of Service (CVE-2013-4549) -------------------------------------------------------------------------------- ================================================================================ rubygem-qpid_proton-0.6-1.fc19 (FEDORA-2014-1116) Ruby language bindings for the Qpid Proton messaging framework -------------------------------------------------------------------------------- Update Information: Rebased on Proton 0.6. -------------------------------------------------------------------------------- ChangeLog: * Fri Jan 17 2014 Darryl L. Pierce <dpierce@xxxxxxxxxx> - 0.6-1 - Rebased on Proton 0.6. -------------------------------------------------------------------------------- ================================================================================ seren-0.0.17-1.fc19 (FEDORA-2014-1144) Simple VoIP program to create conferences from the terminal -------------------------------------------------------------------------------- Update Information: Version bump -------------------------------------------------------------------------------- ChangeLog: -------------------------------------------------------------------------------- ================================================================================ subtitleeditor-0.41.0-1.fc19 (FEDORA-2014-1127) GTK+2 tool to edit subtitles for GNU/Linux/*BSD -------------------------------------------------------------------------------- Update Information: Updated to latest release, added patch to make subtitles visible again. -------------------------------------------------------------------------------- ChangeLog: * Thu Jan 16 2014 Artur Szymczak <artur.szymczak@xxxxxxxxxxx> - 0.41.0-1 - Updated to latest release. - Dropping the temporary patch (subtitleeditor-0.40.0-glib.patch) - Fixed upstream. - Added patch for rhbz #906226 (upstream #20793) * Sun Aug 4 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.40.0-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #906226 - subtitleeditor doesn't show subtitles in video window. https://bugzilla.redhat.com/show_bug.cgi?id=906226 [ 2 ] Bug #926577 - subtitleeditor: Does not support aarch64 in f19 and rawhide https://bugzilla.redhat.com/show_bug.cgi?id=926577 -------------------------------------------------------------------------------- ================================================================================ twirssi-2.6.3-1.fc19 (FEDORA-2014-1126) An Irssi script to interact with Twitter -------------------------------------------------------------------------------- Update Information: Update to 2.6.3 (bz#1054485) -------------------------------------------------------------------------------- ChangeLog: * Thu Jan 16 2014 Julian C. Dunn <jdunn@xxxxxxxxxxxx> 2.6.3-1 - Update to 2.6.3 (bz#1054485) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1054485 - twirssi 2.6.3 is now available https://bugzilla.redhat.com/show_bug.cgi?id=1054485 -------------------------------------------------------------------------------- ================================================================================ vim-jedi-0.7.0-3.fc19 (FEDORA-2014-1105) The Jedi vim plugin -------------------------------------------------------------------------------- Update Information: some files are missing in RPM package (jedi_vim.py) Update to vim-jedi-0.7.0 (#1047228) -------------------------------------------------------------------------------- ChangeLog: * Sat Jan 18 2014 Petr Hracek <phracek@xxxxxxxxxx> - 0.7.0-3 - some files are missing in RPM package (jedi_vim.py) * Fri Jan 17 2014 Petr Hracek <phracek@xxxxxxxxxx> - 0.7.0-2 - some files are missing in RPM package * Wed Jan 15 2014 Petr Hracek <phracek@xxxxxxxxxx> - 0.7.0-1 - Update to vim-jedi-0.7.0 (#1047228) * Sun Aug 4 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.5.0-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1047228 - vim-jedi-0.7.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1047228 -------------------------------------------------------------------------------- -- test mailing list test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe: https://admin.fedoraproject.org/mailman/listinfo/test
