The following Fedora 20 Security updates need testing: Age URL 63 https://admin.fedoraproject.org/updates/FEDORA-2013-22130/chicken-4.8.0.5-1.fc20 49 https://admin.fedoraproject.org/updates/FEDORA-2013-23116/python-swiftclient-1.8.0-1.fc20 40 https://admin.fedoraproject.org/updates/FEDORA-2013-23636/rubygem-actionpack-4.0.0-2.fc20 32 https://admin.fedoraproject.org/updates/FEDORA-2013-24018/varnish-3.0.5-1.fc20 18 https://admin.fedoraproject.org/updates/FEDORA-2014-0579/flite-1.3-21.fc20 17 https://admin.fedoraproject.org/updates/FEDORA-2014-0602/graphviz-2.34.0-8.fc20 13 https://admin.fedoraproject.org/updates/FEDORA-2014-0792/libinfinity-0.5.5-1.fc20 12 https://admin.fedoraproject.org/updates/FEDORA-2014-0926/memcached-1.4.17-1.fc20 11 https://admin.fedoraproject.org/updates/FEDORA-2014-0978/ibus-chewing-1.4.6-1.fc20 6 https://admin.fedoraproject.org/updates/FEDORA-2014-1341/perl-MARC-XML-1.0.2-1.fc20 5 https://admin.fedoraproject.org/updates/FEDORA-2014-1396/moodle-2.5.4-1.fc20 4 https://admin.fedoraproject.org/updates/FEDORA-2014-1481/mupdf-1.1-5.fc20 3 https://admin.fedoraproject.org/updates/FEDORA-2014-1552/xen-4.3.1-8.fc20 1 https://admin.fedoraproject.org/updates/FEDORA-2014-1619/tntnet-2.2.1-2.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2014-1742/quassel-0.9.2-1.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2014-1463/openstack-nova-2013.2.1-4.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2014-1647/lightdm-gtk-1.6.1-3.fc20 The following Fedora 20 Critical Path updates have yet to be approved: Age URL 77 https://admin.fedoraproject.org/updates/FEDORA-2013-21163/libproxy-0.4.11-8.fc20 11 https://admin.fedoraproject.org/updates/FEDORA-2014-0987/anaconda-20.25.16-1.fc20 7 https://admin.fedoraproject.org/updates/FEDORA-2014-1276/pcre-8.33-4.fc20 7 https://admin.fedoraproject.org/updates/FEDORA-2014-1197/colord-1.1.6-1.fc20 7 https://admin.fedoraproject.org/updates/FEDORA-2014-1231/libwacom-0.8-2.fc20 5 https://admin.fedoraproject.org/updates/FEDORA-2014-1395/krb5-1.11.3-39.fc20 4 https://admin.fedoraproject.org/updates/FEDORA-2014-1480/crda-1.1.3_2013.11.27-3.fc20 4 https://admin.fedoraproject.org/updates/FEDORA-2014-1436/libnl3-3.2.24-1.fc20 4 https://admin.fedoraproject.org/updates/FEDORA-2014-1448/network-manager-applet-0.9.9.0-8.git20140123.fc20 3 https://admin.fedoraproject.org/updates/FEDORA-2014-1535/clutter-1.16.2-3.fc20 1 https://admin.fedoraproject.org/updates/FEDORA-2014-1606/libgsf-1.14.29-1.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2014-1733/NetworkManager-0.9.9.0-27.git20131003.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2014-1710/librepo-1.5.2-2.fc20 The following builds have been pushed to Fedora 20 updates-testing ATpy-0.9.7-3.fc20 NetworkManager-0.9.9.0-27.git20131003.fc20 asciinema-0.9.7-3.fc20 asciinema-0.9.7-4.fc20 atanks-5.8-1.fc20 certmonger-0.71.2-1.fc20 copr-1.26-1.fc20 coq-8.4pl3-2.fc20 diskimage-builder-0.1.5-2.fc20 drupal7-webform-4.0-0.1.beta1.fc20 freeipa-3.3.4-1.fc20 gappa-1.1.0-1.fc20 gnucash-2.6.1-1.fc20 gnucash-docs-2.6.1-1.fc20 gnulib-0-6.20140127git.fc20 goldendict-1.5-0.2.RC1.fc20 gramps-4.0.3-1.fc20 gtksourceview3-3.10.2-1.fc20 kernel-3.12.9-300.fc20 knot-1.4.2-2.fc20 latexmk-4.40-1.fc20 librepo-1.5.2-2.fc20 libuv-0.10.23-1.fc20 libvirt-1.1.3.3-3.fc20 lpf-0.1-6.36e5aa0.fc20 man-pages-it-3.56-1.fc20 man-pages-it-3.56-2.fc20 mathgl-2.2-2.fc20 mingw-opus-1.1-1.fc20 nodejs-0.10.25-1.fc20 openstack-savanna-2014.1.b2-3.fc20 openwsman-2.4.3-1.fc20 perl-Text-CSV_XS-1.03-1.fc20 perl-Text-Haml-0.990115-1.fc20 plotutils-2.6-10.fc20 povray-3.7-0.2.20131116git39ce8a2.fc20 python-django-savanna-2014.1.b2-1.fc20 python-fmn-consumer-0.2.2-1.fc20 python-fmn-lib-0.2.2-1.fc20 python-fmn-web-0.2.2-1.fc20 python-nose-parameterized-0.3.3-2.fc20 quassel-0.9.2-1.fc20 roxterm-2.8.1-1.fc20 salt-0.17.5-1.fc20 selinux-policy-3.12.1-121.fc20 tkabber-1.0-1.svn2114.fc20 tkabber-plugins-1.0-1.svn2114.fc20 trinity-1.3-1.fc20 v8-3.14.5.10-4.fc20 x2goserver-4.0.1.13-2.fc20 xnoise-0.2.21-1.fc20 Details about builds: ================================================================================ ATpy-0.9.7-3.fc20 (FEDORA-2014-1668) Astronomical Tables in Python -------------------------------------------------------------------------------- Update Information: Build with python3 support Add a missing requires in python(3)-astropy -------------------------------------------------------------------------------- ChangeLog: * Mon Jan 27 2014 Sergio Pascual <sergiopr@xxxxxxxxxxxxxxxxx> - 0.9.7-3 - Activate python3 build * Mon Jan 27 2014 Sergio Pascual <sergiopr@xxxxxxxxxxxxxxxxx> - 0.9.7-2.1 - Minor EVR update to rebuild * Thu Jan 16 2014 Sergio Pascual <sergiopr@xxxxxxxxxxxxxxxxx> - 0.9.7-2 - Add a requirement on python-astropy - Macro fixes -------------------------------------------------------------------------------- ================================================================================ NetworkManager-0.9.9.0-27.git20131003.fc20 (FEDORA-2014-1733) Network connection manager and user applications -------------------------------------------------------------------------------- Update Information: The update fixes couple of issues: - core: fix reading physical port id for sysfs - libnm-glib: export get_gateway() and get_searches() functions - libnm-glib: new functions for bindings to get nameservers - libnm-glib: chain up the parent constructed() of NMRemoteConnection - core: exit cleanly if D-Bus cannot be initialized (rh #1057738) - dhcp: don't add an IPv6 address if one wasn't given (rh #1048046) - core: Add host route for DHCP4 server if outside assigned subnet (bgo #721767) (rh #983325) - vpn: handle missing tunnel interface for IP-based VPNs (bgo #721724) (rh #1030068) (rh #865883) - core: only log about IPv6 Commit the first time (rh #1044757) -------------------------------------------------------------------------------- ChangeLog: * Tue Jan 28 2014 Jiří Klimeš <jklimes@xxxxxxxxxx> - 0.9.9.0-27.git20131003 - core: fix reading physical port id for sysfs - libnm-glib: export get_gateway() and get_searches() functions - libnm-glib: new functions for bindings to get nameservers - libnm-glib: chain up the parent constructed() of NMRemoteConnection - core: exit cleanly if D-Bus cannot be initialized (rh #1057738) - dhcp: don't add an IPv6 address if one wasn't given (rh #1048046) - core: Add host route for DHCP4 server if outside assigned subnet (bgo #721767) (rh #983325) - vpn: handle missing tunnel interface for IP-based VPNs (bgo #721724) (rh #1030068) (rh #865883) - core: only log about IPv6 Commit the first time (rh #1044757) -------------------------------------------------------------------------------- References: [ 1 ] Bug #983325 - NetworkManager does not add route for dhcp server https://bugzilla.redhat.com/show_bug.cgi?id=983325 [ 2 ] Bug #1057738 - [abrt] NetworkManager: _g_log_abort(): NetworkManager killed by SIGABRT https://bugzilla.redhat.com/show_bug.cgi?id=1057738 [ 3 ] Bug #1048046 - NetLink errors during IPv6 initialization https://bugzilla.redhat.com/show_bug.cgi?id=1048046 [ 4 ] Bug #865883 - NetworkManager issues when using networkmanager-openswan plugin https://bugzilla.redhat.com/show_bug.cgi?id=865883 [ 5 ] Bug #1044757 - Continuous IPv6 router solicitation loop https://bugzilla.redhat.com/show_bug.cgi?id=1044757 -------------------------------------------------------------------------------- ================================================================================ asciinema-0.9.7-3.fc20 (FEDORA-2014-1670) Command line recorder for asciinema.org service -------------------------------------------------------------------------------- Update Information: Asciinema is a free and open source solution for recording the terminal sessions and sharing them on the web. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1034492 - Review Request: asciinema - Record and upload terminal sessions https://bugzilla.redhat.com/show_bug.cgi?id=1034492 -------------------------------------------------------------------------------- ================================================================================ asciinema-0.9.7-4.fc20 (FEDORA-2014-1688) Command line recorder for asciinema.org service -------------------------------------------------------------------------------- Update Information: Add support for EPEL6 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1034492 - Review Request: asciinema - Record and upload terminal sessions https://bugzilla.redhat.com/show_bug.cgi?id=1034492 -------------------------------------------------------------------------------- ================================================================================ atanks-5.8-1.fc20 (FEDORA-2014-1703) Remake of a classic DOS game "Scorched Earth" -------------------------------------------------------------------------------- Update Information: Fix for a few gcc-specific crashes. -------------------------------------------------------------------------------- ChangeLog: * Mon Jan 27 2014 Jonathan Ciesla <limburgher@xxxxxxxxx> - 5.8-1 - 5.8, fixes for some gcc-specific crashes. -------------------------------------------------------------------------------- ================================================================================ certmonger-0.71.2-1.fc20 (FEDORA-2014-1695) Certificate status monitor and PKI enrollment client -------------------------------------------------------------------------------- Update Information: This update avoids an assertion failure which can occur when the certmonger service attempts to reconnect to the message bus after losing a connection to the message bus. It also corrects a logic error which could cause it to dereference a NULL pointer while attempting to load its data files from disk. This update fixes crashes in the daemon when there are errors reading some of its data files or errors saving newly-obtained certificates to disk. -------------------------------------------------------------------------------- ChangeLog: * Mon Jan 27 2014 Nalin Dahyabhai <nalin@xxxxxxxxxx> 0.71-1 - check for cases where we fail to allocate memory while reading a request or CA entry from disk (John Haxby) - only handle one watch at a time, which should avoid abort() during attempts to reconnect to the message bus after losing our connection to it (#1055521) * Fri Jan 24 2014 Daniel Mach <dmach@xxxxxxxxxx> - 0.70-2 - Mass rebuild 2014-01-24 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1055521 - [abrt] certmonger: _dbus_abort(): certmonger killed by SIGABRT https://bugzilla.redhat.com/show_bug.cgi?id=1055521 [ 2 ] Bug #995022 - certmonger coredumps when certificates cannot be created due to permissions https://bugzilla.redhat.com/show_bug.cgi?id=995022 [ 3 ] Bug #1043017 - [abrt] certmonger-0.67-1.fc19: strcmp: Process /usr/sbin/certmonger was killed by signal 11 (SIGSEGV) https://bugzilla.redhat.com/show_bug.cgi?id=1043017 -------------------------------------------------------------------------------- ================================================================================ copr-1.26-1.fc20 (FEDORA-2014-1735) Cool Other Package Repo -------------------------------------------------------------------------------- Update Information: Resolves: #1044085 - move timezone modification out of template and make it actually work Resolves: #1044085 - frontend: display time in user timezone Resolves: #1054472 - Fix deleting multiple SRPMs Resolves: #1054082 - general: encode to utf8 if err in mimetext Resolves: #1055594 - mockremote: always unquote pkg url Resolves: #1054086 - change vendor tag Resolves: #1055499 - do not replace version with $releasever on rawhide Resolves: #1055119 - do not propagate https until it is properly signed Resolves: #1054341 - be more verbose about allowed licenses Resolves: #1054594 - temporary disable https in repo file Resolves: #1044158 - do not require fas username prior to login Resolves: #1053142 - only build copr-cli on el6 Resolves: #1052075 - do not set chroots on repeated build Resolves: #1052071 - do not throw ISE when copr does not exist Resolves: #1052073 - correctly parse malformed chroot Resolves: #1050952 - check if copr_url exist in config -------------------------------------------------------------------------------- ChangeLog: * Tue Jan 28 2014 Miroslav Suchý <miroslav@xxxxxxxx> 1.26-1 - lower testing date - move localized_time into filters - [frontend] update user data after login - [frontend] use iso-8601 date * Mon Jan 27 2014 Miroslav Suchý <msuchy@xxxxxxxxxx> 1.25-1 - 1044085 - move timezone modification out of template and make it actually work - clean up temp data if any - [db] timezone can be nullable - [frontend] actually save the timezone to model - fix colision of revision id - 1044085 - frontend: display time in user timezone - [frontend] rebuild stuck task - disable test on i386 - use experimental createrepo_c to get rid of lock on temp files - [frontend] - do not throw ISE when build_id is malformed - [tests] add test for BuildLogic.add - [tests] add test for build resubmission - [frontend] permission checking is done in BuildLogic.add - [frontend] remove BuildLogic.new, use BL.add only - [api] fix validation error handling - [cli] fix initial_pkgs and repos not sent to backend - [frontend] fix BuildsLogic.new not assigning copr to build - [frontend] allow resubmitting builds from monitor - [frontend] allow GET on repeat_build - [frontend] 1050904 - monitor shows not submitted chroots - [frontend] rename active_mock_chroots to active_chroots - [frontend] rename MockChroot.chroot_name to .name - [frontend] 1054474 - drop Copr.build_count nonsense - [tests] fix https and repo generation - [tests] return exit code from manage.py test - 1054472 - Fix deleting multiple SRPMs - [spec] tighten acl on copr-be.conf - [backend] - add missing import - 1054082 - general: encode to utf8 if err in mimetext - [backend] lock log file before writing - 1055594 - mockremote: always unquote pkg url - 1054086 - change vendor tag - mockremote: rawhide instead of $releasever in repos when in rawhide chroot - 1055499 - do not replace version with $releasever on rawhide - 1055119 - do not propagate https until it is properly signed - fix spellings on chroot edit page - 1054341 - be more verbose about allowed licenses - 1054594 - temporary disable https in repo file * Thu Jan 16 2014 Miroslav Suchý <msuchy@xxxxxxxxxx> 1.24-1 - add BR python-markdown - [fronted] don't add description to .repo files - [spec] fix with_tests conditional - add build deletion - 1044158 - do not require fas username prior to login - replace http with https in copr-cli and in generated repo file - [cli] UX changes - explicitely state that pkgs is URL - 1053142 - only build copr-cli on el6 - [frontend] correctly handle mangled chroot - [frontend] do not traceback when user malform url - [frontend] change default description and instructions to sound more dangerously - 1052075 - do not set chroots on repeated build - 1052071 - do not throw ISE when copr does not exist * Mon Jan 13 2014 Miroslav Suchý <msuchy@xxxxxxxxxx> 1.23-1 - [backend] rhel7-beta do not have comps - 1052073 - correctly parse malformed chroot * Fri Jan 10 2014 Miroslav Suchý <msuchy@xxxxxxxxxx> 1.22-1 - [backend] if we could not spawn VM, wait a moment and try again - [backend] use createrepo_c instead of createrepo - 1050952 - check if copr_url exist in config - [frontend] replace newlines in description by space in repo file -------------------------------------------------------------------------------- References: [ 1 ] Bug #1044085 - [RFE] make the times and dates displayed in the frontend location aware https://bugzilla.redhat.com/show_bug.cgi?id=1044085 [ 2 ] Bug #1054472 - Deleting multiSRPM build leads to Internal Server Error https://bugzilla.redhat.com/show_bug.cgi?id=1054472 [ 3 ] Bug #1054082 - Could not raise Legal flag with non english character https://bugzilla.redhat.com/show_bug.cgi?id=1054082 [ 4 ] Bug #1055594 - src.rpm with URL containig escape sequence cannot be retrieved https://bugzilla.redhat.com/show_bug.cgi?id=1055594 [ 5 ] Bug #1054086 - Change Vendor tag https://bugzilla.redhat.com/show_bug.cgi?id=1054086 [ 6 ] Bug #1055499 - copr provides incorrectly repo for rawhide https://bugzilla.redhat.com/show_bug.cgi?id=1055499 [ 7 ] Bug #1055119 - [abrt] copr-cli: adapters.py:331:send:SSLError: [Errno 1] _ssl.c:504: error:14090086:SSL routines:SSL3_GET_SERVER_CERTIFICATE:certificate verify failed https://bugzilla.redhat.com/show_bug.cgi?id=1055119 [ 8 ] Bug #1054341 - Explicitely mentions the license restriction https://bugzilla.redhat.com/show_bug.cgi?id=1054341 [ 9 ] Bug #1044158 - Copr don't need to ask for username before it proceeds to OpenID FAS login https://bugzilla.redhat.com/show_bug.cgi?id=1044158 [ 10 ] Bug #1053142 - Please provide EPEL-6 packages for copr-cli https://bugzilla.redhat.com/show_bug.cgi?id=1053142 [ 11 ] Bug #1052075 - Traceback on repeat build https://bugzilla.redhat.com/show_bug.cgi?id=1052075 [ 12 ] Bug #1052071 - Traceback on project delete https://bugzilla.redhat.com/show_bug.cgi?id=1052071 [ 13 ] Bug #1052073 - Traceback on repo rendering https://bugzilla.redhat.com/show_bug.cgi?id=1052073 [ 14 ] Bug #1050952 - [abrt] copr-cli: ConfigParser.py:618:get:NoOptionError: No option 'copr_url' in section: 'copr-cli' https://bugzilla.redhat.com/show_bug.cgi?id=1050952 -------------------------------------------------------------------------------- ================================================================================ coq-8.4pl3-2.fc20 (FEDORA-2014-1667) Proof management system -------------------------------------------------------------------------------- Update Information: The hevea package was broken until recently, which caused the coq documentation to be broken. This is a rebuild to fix the documentation. Also, hevea is now supported on all architectures that support ocaml, so the documentation is available on ppc64 for the first time. Finally, an AppData file has been added. -------------------------------------------------------------------------------- ChangeLog: * Thu Jan 23 2014 Jerry James <loganjerry@xxxxxxxxx> - 8.4pl3-2 - Rebuild with fixed hevea package to get good HTML docs - Hevea is now available on all architectures that support ocaml - Drop Fedora 18 compatibility now that F-18 has reached EOL - Add AppData file -------------------------------------------------------------------------------- ================================================================================ diskimage-builder-0.1.5-2.fc20 (FEDORA-2014-1722) Image building tools for OpenStack -------------------------------------------------------------------------------- Update Information: rebase to 0.1.5 -------------------------------------------------------------------------------- ChangeLog: * Mon Jan 27 2014 Jeff Peeler <jpeeler@xxxxxxxxxx> 0.1.5-2 - add new requires: python-argparse, python-babel * Mon Jan 27 2014 Jeff Peeler <jpeeler@xxxxxxxxxx> 0.1.5-1 - rebase to 0.1.5 + patch to fix RHEL 6.5 boot (rhbz#1057217) -------------------------------------------------------------------------------- ================================================================================ drupal7-webform-4.0-0.1.beta1.fc20 (FEDORA-2014-1674) Webform is the module for making surveys in Drupal -------------------------------------------------------------------------------- Update Information: Webform is the module for making surveys in Drupal. After a submission, users may be sent an e-mail "receipt" as well as sending a notification to administrators. Results can be exported into Excel or other spreadsheet applications. Webform also provides some basic statistical review and has and extensive API for expanding its features. Some good examples could be contests, personalized contact forms, or petitions. Each of these could have a customized form for end-users to fill out. If you need to build a lot of customized, one-off forms, Webform is a more suitable solution than creating content types and using CCK or Field module. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1051753 - Review Request: drupal7-webform - Webform is the module for making surveys in Drupal https://bugzilla.redhat.com/show_bug.cgi?id=1051753 -------------------------------------------------------------------------------- ================================================================================ freeipa-3.3.4-1.fc20 (FEDORA-2014-1666) The Identity, Policy and Audit system -------------------------------------------------------------------------------- Update Information: * Update to upstream 3.3.4 * Install CA anchor into standard location (#928478) * ipa-client-install part of ipa-server-install fails on reinstall #1044994) * Remove mod_ssl workaround (RHEL bug #1029046) * Enable syncrepl plugin to support bind-dyndb-ldap 4.0 -------------------------------------------------------------------------------- ChangeLog: * Tue Jan 28 2014 Martin Kosek <mkosek@xxxxxxxxxx> - 3.3.4-1 - Update to upstream 3.3.4 - Install CA anchor into standard location (#928478) - ipa-client-install part of ipa-server-install fails on reinstall (#1044994) - Remove mod_ssl workaround (RHEL bug #1029046) - Enable syncrepl plugin to support bind-dyndb-ldap 4.0 -------------------------------------------------------------------------------- References: [ 1 ] Bug #928478 - Install CA anchor into standard location https://bugzilla.redhat.com/show_bug.cgi?id=928478 [ 2 ] Bug #1044994 - ipa-client-install part of ipa-server-install fails on reinstall https://bugzilla.redhat.com/show_bug.cgi?id=1044994 [ 3 ] Bug #1049322 - ipa-client-install fails while restarting the ntpd service https://bugzilla.redhat.com/show_bug.cgi?id=1049322 -------------------------------------------------------------------------------- ================================================================================ gappa-1.1.0-1.fc20 (FEDORA-2014-1712) Prove programs with floating-point or fixed-point arithmetic -------------------------------------------------------------------------------- Update Information: Upstream release notes for version 1.1.0: - proof graph: added detection and avoidance of slow convergence - main interface: added option -Echange-threshold to control detection of slow convergence -------------------------------------------------------------------------------- ChangeLog: * Mon Jan 27 2014 Jerry James <loganjerry@xxxxxxxxx> - 1.1.0-1 - New upstream version - Drop upstreamed patch and NEWS typo workaround -------------------------------------------------------------------------------- ================================================================================ gnucash-2.6.1-1.fc20 (FEDORA-2014-1730) Finance management application -------------------------------------------------------------------------------- Update Information: This updates GnuCash to the latest upstream bugfix release, and fixes a few packaging bugs. For more details on the bugs fixed upstream in this release, please see: http://gnucash.org/#n-140127-2.6.1.news -------------------------------------------------------------------------------- ChangeLog: * Mon Jan 27 2014 Bill Nottingham <notting@xxxxxxxxxx> - 2.6.1-1 - update to 2.6.1 (#1057990) - add dconf requires (#1058218) * Tue Jan 21 2014 Bill Nottingham <notting@xxxxxxxxxx> - 2.6.0-3 - fix %postun (#1056721) - rebuild for libdbi -------------------------------------------------------------------------------- References: [ 1 ] Bug #1058218 - Missing runtime dependency https://bugzilla.redhat.com/show_bug.cgi?id=1058218 [ 2 ] Bug #1057990 - gnucash-2.6.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1057990 [ 3 ] Bug #1056721 - gnucash has syntax error in postun script https://bugzilla.redhat.com/show_bug.cgi?id=1056721 -------------------------------------------------------------------------------- ================================================================================ gnucash-docs-2.6.1-1.fc20 (FEDORA-2014-1730) Help files and documentation for the GnuCash personal finanace manager -------------------------------------------------------------------------------- Update Information: This updates GnuCash to the latest upstream bugfix release, and fixes a few packaging bugs. For more details on the bugs fixed upstream in this release, please see: http://gnucash.org/#n-140127-2.6.1.news -------------------------------------------------------------------------------- ChangeLog: * Mon Jan 27 2014 Bill Nottingham <notting@xxxxxxxxxx> - 2.6.1-1 - update to 2.6.1 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1058218 - Missing runtime dependency https://bugzilla.redhat.com/show_bug.cgi?id=1058218 [ 2 ] Bug #1057990 - gnucash-2.6.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1057990 [ 3 ] Bug #1056721 - gnucash has syntax error in postun script https://bugzilla.redhat.com/show_bug.cgi?id=1056721 -------------------------------------------------------------------------------- ================================================================================ gnulib-0-6.20140127git.fc20 (FEDORA-2014-1739) GNU Portability Library -------------------------------------------------------------------------------- Update Information: Update on 20140127. -------------------------------------------------------------------------------- ChangeLog: * Mon Jan 27 2014 Mosaab Alzoubi <moceap@xxxxxxxxxxx> - 0-6.20140127git - Update on 20140127. -------------------------------------------------------------------------------- ================================================================================ goldendict-1.5-0.2.RC1.fc20 (FEDORA-2014-1709) A feature-rich dictionary lookup program -------------------------------------------------------------------------------- Update Information: New Reborn of GoldenDict by 1.5RC ver. ----------- Spec changes: - Update to 1.5RC. - General clean of spec. - Using source from GitHub. - New URL. - Remove 3 fixes and patches, fixed in upstream. - Fix a date in changelog. - Use new desktop-files Fedora method. - DISABLE_INTERNAL_PLAYER=1 because ffmpeg not found in Fedora repos. - Add bzip2-devel,lzo-devel to BRs. - Use %%qmake_qt4 as suggestion by Christopher Meng (cickumqt/gmail.com) - Remove repeated BR. - Remove locale install lines, included in makeinstall function. -------------------------------------------------------------------------------- ChangeLog: * Fri Jan 17 2014 Mosaab Alzoubi <moceap@xxxxxxxxxxx> - 1.5-0.2.RC1 - Use %qmake_qt4 as suggestion by Christopher Meng (cickumqt/gmail.com) - Remove repeated BR. - Remove locale install lines, included in makeinstall function. * Tue Jan 14 2014 Mosaab Alzoubi <moceap@xxxxxxxxxxx> - 1.5-0.1.RC1 - Update to 1.5RC. - General clean of spec. - Using source from GitHub. - New URL. - Remove 3 fixes and patches, fixed in upstream. - Fix a date in changelog. - Use new desktop-files Fedora method. - DISABLE_INTERNAL_PLAYER=1 because ffmpeg not found in Fedora repos. - Add bzip2-devel,lzo-devel to BRs. -------------------------------------------------------------------------------- References: [ 1 ] Bug #991805 - [abrt] goldendict-1.0.1-8.fc19: exit: Process /usr/bin/goldendict was killed by signal 11 (SIGSEGV) https://bugzilla.redhat.com/show_bug.cgi?id=991805 [ 2 ] Bug #1025448 - [abrt] goldendict-1.0.1-8.fc19: realloc: Process /usr/bin/goldendict was killed by signal 6 (SIGABRT) https://bugzilla.redhat.com/show_bug.cgi?id=1025448 [ 3 ] Bug #1028413 - [abrt] goldendict-1.0.1-9.fc20: local_Rb_tree_increment: Process /usr/bin/goldendict was killed by signal 11 (SIGSEGV) https://bugzilla.redhat.com/show_bug.cgi?id=1028413 [ 4 ] Bug #1038266 - [abrt] goldendict-1.0.1-8.fc19: QString::free: Process /usr/bin/goldendict was killed by signal 6 (SIGABRT) https://bugzilla.redhat.com/show_bug.cgi?id=1038266 [ 5 ] Bug #1051586 - [abrt] goldendict: QListData::realloc(): goldendict killed by SIGABRT https://bugzilla.redhat.com/show_bug.cgi?id=1051586 -------------------------------------------------------------------------------- ================================================================================ gramps-4.0.3-1.fc20 (FEDORA-2014-1704) Genealogical Research and Analysis Management Programming System -------------------------------------------------------------------------------- Update Information: New upstream releases. https://gramps-project.org/2014/01/gramps-4-0-3-released/ https://gramps-project.org/2014/01/gramps-3-4-7-released/ -------------------------------------------------------------------------------- ChangeLog: * Tue Jan 28 2014 Jon Ciesla <limburgher@xxxxxxxxx> - 4.0.3-1 - Upstream maintenance release. -------------------------------------------------------------------------------- ================================================================================ gtksourceview3-3.10.2-1.fc20 (FEDORA-2014-1723) A library for viewing source files -------------------------------------------------------------------------------- Update Information: Update to 3.10.2 -------------------------------------------------------------------------------- ChangeLog: * Tue Jan 28 2014 Ignacio Casal Quinteiro <icq@xxxxxxxxx> - 3.10.2-1 - Update to 3.10.2 -------------------------------------------------------------------------------- ================================================================================ kernel-3.12.9-300.fc20 (FEDORA-2014-1726) The Linux kernel -------------------------------------------------------------------------------- Update Information: The 3.12.9 stable update contains a number of important fixes across the tree. -------------------------------------------------------------------------------- ChangeLog: * Mon Jan 27 2014 Justin M. Forbes <jforbes@xxxxxxxxxxxxxxxxx> - 3.12.9-300 - Backport new IPv6 address flag IFA_F_NOPREFIXROUTE and IFA_F_MANAGETEMPADDR (rhbz 1056711) - Linux v3.12.9 - i915: remove pm_qos request on error (rhbz 1057533) * Sun Jan 26 2014 Peter Robinson <pbrobinson@xxxxxxxxxxxxxxxxx> - Minor ARM config updates - Disable highbank cpuidle driver - Update CPU thermal scaling options for ARM -------------------------------------------------------------------------------- References: [ 1 ] Bug #1056711 - Backport new IPv6 address flag IFA_F_NOPREFIXROUTE and IFA_F_MANAGETEMPADDR https://bugzilla.redhat.com/show_bug.cgi?id=1056711 [ 2 ] Bug #1057533 - [abrt] BUG: unable to handle kernel paging request at fffffffffffffff8 https://bugzilla.redhat.com/show_bug.cgi?id=1057533 -------------------------------------------------------------------------------- ================================================================================ knot-1.4.2-2.fc20 (FEDORA-2014-1727) An authoritative DNS daemon -------------------------------------------------------------------------------- Update Information: - update to new upstream release - enable IDN support in client utilities -------------------------------------------------------------------------------- ChangeLog: * Mon Jan 27 2014 Jan Vcelak <jvcelak@xxxxxxxxxxxxxxxxx> 1.4.2-2 - enable IDN support in domain names * Mon Jan 27 2014 Jan Vcelak <jvcelak@xxxxxxxxxxxxxxxxx> 1.4.2-1 - update to 1.4.2 -------------------------------------------------------------------------------- ================================================================================ latexmk-4.40-1.fc20 (FEDORA-2014-1672) A make-like utility for LaTeX files -------------------------------------------------------------------------------- Update Information: Upstream release notes for version 4.40: - Fix failure to clean up correctly when root filename contains certain special characters in it (notably '['). [Technical issue: these characters had special meaning when previously interpreted as metacharacters in a glob operation.] -------------------------------------------------------------------------------- ChangeLog: * Mon Jan 27 2014 Jerry James <loganjerry@xxxxxxxxx> - 4.40-1 - Update to 4.40: - Fix failure to clean up correctly when root filename contains '['. -------------------------------------------------------------------------------- ================================================================================ librepo-1.5.2-2.fc20 (FEDORA-2014-1710) Repodata downloading library -------------------------------------------------------------------------------- Update Information: Ignore the rsync urls silently Update to 1.5.2 -------------------------------------------------------------------------------- ChangeLog: * Tue Jan 28 2014 Tomas Mlcoch <tmlcoch at redhat.com> - 1.5.2-2 - Ignore rsyc mirrors silently. * Thu Jan 16 2014 Tomas Mlcoch <tmlcoch at redhat.com> - 1.5.2-1 - Better download resume logic -------------------------------------------------------------------------------- ================================================================================ libuv-0.10.23-1.fc20 (FEDORA-2014-1671) Platform layer for node.js -------------------------------------------------------------------------------- Update Information: 2014.01.23, Version 0.10.25 (Stable) * v8: Fix enumeration for objects with lots of properties * child_process: fix spawn() optional arguments (Sam Roberts) * cluster: report more errors to workers (Fedor Indutny) * domains: exit() only affects active domains (Ryan Graham) * src: OnFatalError handler must abort() (Timothy J Fontaine) * stream: writes may return false but forget to emit drain (Yang Tianyang) 2014.01.23, libuv Version 0.10.23 (Stable) * linux: relax assumption on /proc/stat parsing (Luca Bruno) * process: close stdio after dup2'ing it (Fedor Indutny) -------------------------------------------------------------------------------- ChangeLog: * Mon Jan 27 2014 T.C. Hollingsworth <tchollingsworth@xxxxxxxxx> - 1:0.10.23-1 - new upstream release 0.10.23 https://github.com/joyent/libuv/blob/v0.10.23/ChangeLog -------------------------------------------------------------------------------- ================================================================================ libvirt-1.1.3.3-3.fc20 (FEDORA-2014-1677) Library providing a simple virtualization API -------------------------------------------------------------------------------- Update Information: * Update to openwsman-2.4.3 wsmancli without function: Connection failed. response code = 0 (bz 1052397) -------------------------------------------------------------------------------- ChangeLog: * Mon Jan 27 2014 Cole Robinson <crobinso@xxxxxxxxxx> - 1.1.3.3-3 - Rebuild for openwsman soname bump -------------------------------------------------------------------------------- ================================================================================ lpf-0.1-6.36e5aa0.fc20 (FEDORA-2014-1714) Local package factory - build non-redistributable rpms -------------------------------------------------------------------------------- Update Information: Patch for bz 1057878 added. -------------------------------------------------------------------------------- ChangeLog: * Mon Jan 27 2014 Alec Leamas <leamas.alec@xxxxxxxxx> - 0.1-6.36e5aa0 - Patch for bz #1057878 added. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1057878 - Cannot build lpf-skype package on x86_64 https://bugzilla.redhat.com/show_bug.cgi?id=1057878 -------------------------------------------------------------------------------- ================================================================================ man-pages-it-3.56-1.fc20 (FEDORA-2014-1719) Italian man (manual) pages from the Linux Documentation Project -------------------------------------------------------------------------------- Update Information: update to 3.56. -------------------------------------------------------------------------------- ChangeLog: * Mon Jan 27 2014 Mike FABIAN <mfabian@xxxxxxxxxx> - 3.56-1 - update to 3.56. -------------------------------------------------------------------------------- ================================================================================ man-pages-it-3.56-2.fc20 (FEDORA-2014-1713) Italian man (manual) pages from the Linux Documentation Project -------------------------------------------------------------------------------- Update Information: upstream tar ball man-pages-it-3.56.tar.xz has been changed, some files had been missing -------------------------------------------------------------------------------- ChangeLog: * Tue Jan 28 2014 Mike FABIAN <mfabian@xxxxxxxxxx> - 3.56-2 - upstream tar ball man-pages-it-3.56.tar.xz has been changed, some files had been missing * Mon Jan 27 2014 Mike FABIAN <mfabian@xxxxxxxxxx> - 3.56-1 - update to 3.56. -------------------------------------------------------------------------------- ================================================================================ mathgl-2.2-2.fc20 (FEDORA-2014-1737) Cross-platform library for making high-quality scientific graphics -------------------------------------------------------------------------------- Update Information: Update to 2.2. -------------------------------------------------------------------------------- ChangeLog: * Thu Jan 16 2014 Dmitrij S. Kryzhevich <krege@xxxxxxx> - 2.2-2 - Drop bogus ocatave support. For a time. * Wed Dec 25 2013 Dmitrij S. Kryzhevich <krege@xxxxxxx> - 2.2-1 - Update to 2.2. - Fix bogus dates. - Fix issue with docdirs. -------------------------------------------------------------------------------- References: [ 1 ] Bug #998168 - Duplicated documentation with conflicts https://bugzilla.redhat.com/show_bug.cgi?id=998168 -------------------------------------------------------------------------------- ================================================================================ mingw-opus-1.1-1.fc20 (FEDORA-2014-1686) Audio codec for use in low-delay speech and audio communication -------------------------------------------------------------------------------- Update Information: The Opus codec is designed for interactive speech and audio transmission over the Internet. It is designed by the IETF Codec Working Group and incorporates technology from Skype's SILK codec and Xiph.Org's CELT codec. These packages are MinGW compiled opus library for Win32 and Win64 target. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1058088 - Review Request: mingw-opus - Audio codec for use in low-delay speech and audio communication https://bugzilla.redhat.com/show_bug.cgi?id=1058088 -------------------------------------------------------------------------------- ================================================================================ nodejs-0.10.25-1.fc20 (FEDORA-2014-1671) JavaScript runtime -------------------------------------------------------------------------------- Update Information: 2014.01.23, Version 0.10.25 (Stable) * v8: Fix enumeration for objects with lots of properties * child_process: fix spawn() optional arguments (Sam Roberts) * cluster: report more errors to workers (Fedor Indutny) * domains: exit() only affects active domains (Ryan Graham) * src: OnFatalError handler must abort() (Timothy J Fontaine) * stream: writes may return false but forget to emit drain (Yang Tianyang) 2014.01.23, libuv Version 0.10.23 (Stable) * linux: relax assumption on /proc/stat parsing (Luca Bruno) * process: close stdio after dup2'ing it (Fedor Indutny) -------------------------------------------------------------------------------- ChangeLog: * Mon Jan 27 2014 T.C. Hollingsworth <tchollingsworth@xxxxxxxxx> - 0.10.25-1 - new upstream release 0.10.25 http://blog.nodejs.org/2014/01/23/node-v0-10-25-stable/ -------------------------------------------------------------------------------- ================================================================================ openstack-savanna-2014.1.b2-3.fc20 (FEDORA-2014-1678) Apache Hadoop cluster management on OpenStack -------------------------------------------------------------------------------- Update Information: Update to 2014.1.b2 -------------------------------------------------------------------------------- ChangeLog: * Mon Jan 27 2014 Matthew Farrellee <matt@redhat> - 2014.1.b2-3 - Require stevedore >= 0.13 * Mon Jan 27 2014 Matthew Farrellee <matt@redhat> - 2014.1.b2-2 - Added space around paramiko requires * Mon Jan 27 2014 Matthew Farrellee <matt@redhat> - 2014.1.b2-1 - 2014.1.b2 release -------------------------------------------------------------------------------- ================================================================================ openwsman-2.4.3-1.fc20 (FEDORA-2014-1677) Open source Implementation of WS-Management -------------------------------------------------------------------------------- Update Information: * Update to openwsman-2.4.3 wsmancli without function: Connection failed. response code = 0 (bz 1052397) -------------------------------------------------------------------------------- ChangeLog: * Thu Jan 23 2014 Vitezslav Crhonek <vcrhonek@xxxxxxxxxx> - 2.4.3-1 - Update to openwsman-2.4.3 * Tue Jan 7 2014 Vitezslav Crhonek <vcrhonek@xxxxxxxxxx> - 2.4.0-3 - Start the service using SSL by default * Mon Sep 30 2013 Vitezslav Crhonek <vcrhonek@xxxxxxxxxx> - 2.4.0-2 - Build with full relro - Fix provides/requires - Fix pam.d config (patch by Ales Ledvinka) Resolves: #1013018 * Tue Sep 17 2013 Vitezslav Crhonek <vcrhonek@xxxxxxxxxx> - 2.4.0-1 - Update to openwsman-2.4.0 - Fix bogus date in %changelog -------------------------------------------------------------------------------- ================================================================================ perl-Text-CSV_XS-1.03-1.fc20 (FEDORA-2014-1707) Comma-separated values manipulation routines -------------------------------------------------------------------------------- Update Information: A new build of Text::CSV_XS is available. This release introduces suppot for RFC7111. -------------------------------------------------------------------------------- ChangeLog: * Tue Jan 28 2014 Petr Šabata <contyk@xxxxxxxxxx> - 1.03-1 - 1.03 bump -------------------------------------------------------------------------------- References: [ 1 ] Bug #1058009 - perl-Text-CSV_XS-1.03 is available https://bugzilla.redhat.com/show_bug.cgi?id=1058009 -------------------------------------------------------------------------------- ================================================================================ perl-Text-Haml-0.990115-1.fc20 (FEDORA-2014-1679) Haml Perl implementation -------------------------------------------------------------------------------- Update Information: -------------------------------------------------------------------------------- References: [ 1 ] Bug #1054830 - Review Request: perl-Text-Haml - Haml Perl implementation https://bugzilla.redhat.com/show_bug.cgi?id=1054830 -------------------------------------------------------------------------------- ================================================================================ plotutils-2.6-10.fc20 (FEDORA-2014-1697) GNU vector and raster graphics utilities and libraries -------------------------------------------------------------------------------- Update Information: Support AARCH64 and prevent problems with -Werror=format-security -------------------------------------------------------------------------------- ChangeLog: * Wed Dec 4 2013 Stanislav Ochotnicky <sochotnicky@xxxxxxxxxx> - 2.6-10 - Fix FTBFS when "-Werror=format-security" is used * Tue Nov 26 2013 Stanislav Ochotnicky <sochotnicky@xxxxxxxxxx> - 2.6-9 - Apply aarch64 support patch (#926356) -------------------------------------------------------------------------------- References: [ 1 ] Bug #926356 - plotutils: Does not support aarch64 in f19 and rawhide https://bugzilla.redhat.com/show_bug.cgi?id=926356 -------------------------------------------------------------------------------- ================================================================================ povray-3.7-0.2.20131116git39ce8a2.fc20 (FEDORA-2014-1705) The Persistence of Vision Ray Tracer -------------------------------------------------------------------------------- Update Information: -------------------------------------------------------------------------------- References: [ 1 ] Bug #1055436 - Review Request: povray - The Persistence of Vision Ray Tracer https://bugzilla.redhat.com/show_bug.cgi?id=1055436 -------------------------------------------------------------------------------- ================================================================================ python-django-savanna-2014.1.b2-1.fc20 (FEDORA-2014-1698) Savanna project dashboard -------------------------------------------------------------------------------- Update Information: Update to 2014.1.b2 -------------------------------------------------------------------------------- ChangeLog: * Mon Jan 27 2014 Matthew Farrellee <matt@redhat> - 2014.1.b2-1 - 2014.1.b2 release -------------------------------------------------------------------------------- ================================================================================ python-fmn-consumer-0.2.2-1.fc20 (FEDORA-2014-1708) Backend worker daemon for Fedora Notifications -------------------------------------------------------------------------------- Update Information: android backend. Latest upstream. Initial packaging. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1037898 - Review Request: python-fmn-consumer - Backend worker daemon for Fedora Notifications https://bugzilla.redhat.com/show_bug.cgi?id=1037898 -------------------------------------------------------------------------------- ================================================================================ python-fmn-lib-0.2.2-1.fc20 (FEDORA-2014-1699) Internal API components and model for Fedora Notifications -------------------------------------------------------------------------------- Update Information: minor api enhancements. Latest upstream. Latest upstream. -------------------------------------------------------------------------------- ChangeLog: -------------------------------------------------------------------------------- ================================================================================ python-fmn-web-0.2.2-1.fc20 (FEDORA-2014-1691) Frontend Web Application for Fedora Notifications -------------------------------------------------------------------------------- Update Information: android frontend pieces. Latest upstream. Latest upstream. Latest upstream. -------------------------------------------------------------------------------- ChangeLog: * Mon Jan 27 2014 Ralph Bean <rbean@xxxxxxxxxx> - 0.2.2-1 - Latest upstream. - Android linkage pieces. * Thu Jan 23 2014 Ralph Bean <rbean@xxxxxxxxxx> - 0.2.1-2 - Add forgotten deps on datanommer, python-arrow, and fedmsg.meta. * Thu Jan 23 2014 Ralph Bean <rbean@xxxxxxxxxx> - 0.2.1-1 - Latest upstream. - Frontpage facelift. - Show matching messages for a filter if datanommer is available. * Wed Jan 22 2014 Ralph Bean <rbean@xxxxxxxxxx> - 0.2.0-2 - Correct installation of static dir. -------------------------------------------------------------------------------- ================================================================================ python-nose-parameterized-0.3.3-2.fc20 (FEDORA-2014-1690) Decorator for parameterized testing with Nose -------------------------------------------------------------------------------- Update Information: Initial import -------------------------------------------------------------------------------- References: [ 1 ] Bug #1056435 - Review Request: python-nose-parameterized - Decorator for parameterized testing with Nose https://bugzilla.redhat.com/show_bug.cgi?id=1056435 -------------------------------------------------------------------------------- ================================================================================ quassel-0.9.2-1.fc20 (FEDORA-2014-1742) A modern distributed IRC system -------------------------------------------------------------------------------- Update Information: Update to latest release of Quassel from upstream. Fix CVE-2013-4422 - Postgresql, possible SQL injection vulnerability New package for EPEL - quassel IRC Fix CVE-2013-4422 - Postgresql, possible SQL injection vulnerability New package for EPEL - quassel IRC Fix CVE-2013-4422 - Postgresql, possible SQL injection vulnerability New package for EPEL - quassel IRC -------------------------------------------------------------------------------- ChangeLog: * Fri Jan 24 2014 Adam Miller <maxamillion@xxxxxxxxxxxxxxxxx> - 0.9.2-1 - Update to latest upstream release * Tue Oct 15 2013 Adam Miller <maxamillion@xxxxxxxxxxxxxxxxx> - 0.9.1-1 - Update to latest upstream release - Fix for CVE-2013-4422 (BZ#1017437) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1017437 - CVE-2013-4422 quassel: potential SQL injection flaw https://bugzilla.redhat.com/show_bug.cgi?id=1017437 -------------------------------------------------------------------------------- ================================================================================ roxterm-2.8.1-1.fc20 (FEDORA-2014-1681) A fast terminal emulator -------------------------------------------------------------------------------- Update Information: Version 2.8.1 Author: Tony Houghton <h@xxxxxxxxxxx> Date: Thu, 16 Jan 2014 17:55:49 +0000 * Replaced SourceForge logo with text * Don't use vte bg options when deprecated * Added --disable-nls build option synonym * Fixed column terminator for search completion * Escape apostrophes in ui file * Removed Input Methods submenus * Don't create too many encodings submenus -------------------------------------------------------------------------------- ChangeLog: * Tue Jan 28 2014 Christopher Meng <rpm@xxxxxxxx> - 2.8.1-1 - Update to 2.8.1(#1055308) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1055308 - roxterm-2.8.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1055308 -------------------------------------------------------------------------------- ================================================================================ salt-0.17.5-1.fc20 (FEDORA-2014-1725) A parallel remote execution system -------------------------------------------------------------------------------- Update Information: Update to bugfix release 0.17.5. -------------------------------------------------------------------------------- ChangeLog: * Mon Jan 27 2014 Erik Johnson <erik@xxxxxxxxxxxxx> - 0.17.5-1 - Update to bugfix release 0.17.5 -------------------------------------------------------------------------------- ================================================================================ selinux-policy-3.12.1-121.fc20 (FEDORA-2014-1700) SELinux policy configuration -------------------------------------------------------------------------------- Update Information: - Allow gdm to create /var/gdm with correct labeling - Allow domains to append rkhunterl lib files. #1057982 - Allow systemd_tmpfiles_t net_admin to communicate with journald - Add interface to getattr on an isid_type for any type of file - Update libs_filetrans_named_content() to have support for /usr/lib/debug directory - Allow initrc_t domtrans to authconfig if unconfined is enabled - Allow docker and mount on devpts chr_file - Allow docker to transition to unconfined_t if boolean set - init calling needs to be optional in domain.te - Allow uncofined domain types to handle transient unit files - Fix labeling for vfio devices - Allow net_admin capability and send system log msgs - Allow lldpad send dgram to NM - Add networkmanager_dgram_send() - rkhunter_var_lib_t is correct type - Back port pcp policy from rawhide - Allow openlmi-storage to read removable devices - Allow system cron jobs to manage rkhunter lib files - Add rkhunter_manage_lib_files() - Fix ftpd_use_fusefs boolean to allow manage also symlinks - Allow smbcontrob block_suspend cap2 - Allow slpd to read network and system state info - Allow NM domtrans to iscsid_t if iscsiadm is executed - Allow slapd to send a signal itself - Allow sslget running as pki_ra_t to contact port 8443, the secure port of the CA. - Fix plymouthd_create_log() interface - Add rkhunter policy with files type definition for /var/lib/rkhunter until it is fixed in rkhunter package - Add mozilla_plugin_exec_t for /usr/lib/firefox/plugin-container - Allow postfix and cyrus-imapd to work out of box - Allow fcoemon to talk with unpriv user domain using unix_stream_socket - Dontaudit domains that are calling into journald to net_admin - Add rules to allow vmtools to do what it does - snapperd is D-Bus service -------------------------------------------------------------------------------- ChangeLog: * Mon Jan 27 2014 Miroslav Grepl<mgrepl@xxxxxxxxxx> 3.12.1-121 - Allow gdm to create /var/gdm with correct labeling - Allow domains to append rkhunterl lib files. #1057982 - Allow systemd_tmpfiles_t net_admin to communicate with journald - Add interface to getattr on an isid_type for any type of file - Update libs_filetrans_named_content() to have support for /usr/lib/debug directory - Allow initrc_t domtrans to authconfig if unconfined is enabled - Allow docker and mount on devpts chr_file - Allow docker to transition to unconfined_t if boolean set - init calling needs to be optional in domain.te - Allow uncofined domain types to handle transient unit files - Fix labeling for vfio devices - Allow net_admin capability and send system log msgs - Allow lldpad send dgram to NM - Add networkmanager_dgram_send() - rkhunter_var_lib_t is correct type - Back port pcp policy from rawhide - Allow openlmi-storage to read removable devices - Allow system cron jobs to manage rkhunter lib files - Add rkhunter_manage_lib_files() - Fix ftpd_use_fusefs boolean to allow manage also symlinks - Allow smbcontrob block_suspend cap2 - Allow slpd to read network and system state info - Allow NM domtrans to iscsid_t if iscsiadm is executed - Allow slapd to send a signal itself - Allow sslget running as pki_ra_t to contact port 8443, the secure port of the CA. - Fix plymouthd_create_log() interface - Add rkhunter policy with files type definition for /var/lib/rkhunter until it is fixed in rkhunter package - Add mozilla_plugin_exec_t for /usr/lib/firefox/plugin-container - Allow postfix and cyrus-imapd to work out of box - Allow fcoemon to talk with unpriv user domain using unix_stream_socket - Dontaudit domains that are calling into journald to net_admin - Add rules to allow vmtools to do what it does - snapperd is D-Bus service - Allow OpenLMI PowerManagement to call 'systemctl --force reboot' - Add haproxy_connect_any boolean - Allow haproxy also to use http cache port by default - Allow haproxy to work as simple HTTP proxy. HAProxy For TCP And HTTP Based Applications - Allow docker to use the network and build images - Allow docker to read selinux files for labeling, and mount on devpts chr_file - Allow domains that transition to svirt_sandbox to send it signals * Tue Jan 21 2014 Miroslav Grepl<mgrepl@xxxxxxxxxx> 3.12.1-120 - Allow apache to write to the owncloud data directory in /var/www/html... - Allow consolekit to create log dir - Add support for icinga CGI scripts - Add support for icinga - Allow kdumpctl_t to create kdump lock file - Allow kdump to create lnk lock file - Allow nscd_t block_suspen capability - Allow unconfined domain types to manage own transient unit file - Allow systemd domains to handle transient init unit files - Add interfaces to handle transient -------------------------------------------------------------------------------- References: [ 1 ] Bug #1027148 - avc: denied { setattr } for pid=183 comm="systemd-tmpfile" during boot https://bugzilla.redhat.com/show_bug.cgi?id=1027148 [ 2 ] Bug #1054337 - SELinux is preventing lots of random domains the 'net_admin' capabilities. https://bugzilla.redhat.com/show_bug.cgi?id=1054337 [ 3 ] Bug #1055763 - SELinux is preventing /usr/sbin/httpd from 'write' accesses on the file /var/www/html/owncloud/data/owncloud.db. https://bugzilla.redhat.com/show_bug.cgi?id=1055763 [ 4 ] Bug #1057460 - SELinux is preventing /usr/lib64/dbus-1/dbus-daemon-launch-helper from 'execute' accesses on the file /usr/sbin/snapperd. https://bugzilla.redhat.com/show_bug.cgi?id=1057460 [ 5 ] Bug #1057488 - SELinux is preventing /usr/bin/vmtoolsd from 'write' accesses on the directory /tmp. https://bugzilla.redhat.com/show_bug.cgi?id=1057488 [ 6 ] Bug #1057804 - Socket avc access denied talking to (pki) Cerificate Authority https://bugzilla.redhat.com/show_bug.cgi?id=1057804 [ 7 ] Bug #1057982 - SElinux prevents the rkhunter daily log being sent to root https://bugzilla.redhat.com/show_bug.cgi?id=1057982 [ 8 ] Bug #1058325 - SELinux is preventing /usr/libexec/pegasus/cimprovagt from 'getattr' accesses on the blk_file /dev/sr0. https://bugzilla.redhat.com/show_bug.cgi?id=1058325 [ 9 ] Bug #1057898 - Update 3.12.1-119 breaks snapperd https://bugzilla.redhat.com/show_bug.cgi?id=1057898 -------------------------------------------------------------------------------- ================================================================================ tkabber-1.0-1.svn2114.fc20 (FEDORA-2014-1665) Client for the Jabber instant messaging system -------------------------------------------------------------------------------- Update Information: Update to 1.0+ release. -------------------------------------------------------------------------------- ChangeLog: * Tue Jan 28 2014 Dmitrij S. Kryzhevich <krege@xxxxxxx> - 1.0-1.svn2114 - Update to 1.0+ svn, revision 2114. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1051781 - tkabber-1.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1051781 -------------------------------------------------------------------------------- ================================================================================ tkabber-plugins-1.0-1.svn2114.fc20 (FEDORA-2014-1665) Additional plugins for tkabber -------------------------------------------------------------------------------- Update Information: Update to 1.0+ release. -------------------------------------------------------------------------------- ChangeLog: * Tue Jan 28 2014 Dmitrij S. Kryzhevich <krege@xxxxxxx> - 1.0-1.svn2114 - Update to 1.0+ svn, revision 2114. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1051781 - tkabber-1.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1051781 -------------------------------------------------------------------------------- ================================================================================ trinity-1.3-1.fc20 (FEDORA-2014-1685) System call fuzz tester -------------------------------------------------------------------------------- Update Information: This new package is a system call fuzz tester. It makes syscalls at random, with random arguments. Where Trinity differs from other fuzz testers is that the arguments it passes are not purely random. We found some bugs in the past by just passing random values, but once the really dumb bugs were found, these dumb fuzzers would just run and run. The problem was if a syscall took for example a file descriptor as an argument, one of the first things it would try to do was validate that fd. Being garbage, the kernel would just reject it as -EINVAL of course. So on startup, Trinity creates a list of file descriptors, by opening pipes, scanning sysfs, procfs, /dev, and creates a bunch of sockets using random network protocols. Then when a syscall needs an fd, it gets passed one of these at random. File descriptors aren't the only thing Trinity knows about. Every syscall has its arguments annotated, and where possible it tries to provide something at least semi-sensible. "Length" arguments for example get passed one of a whole bunch of potentially interesting values. (Powers of 2 +/-1 are a good choice for triggering off-by-one bugs it seems). Trinity also shares those file descriptors between multiple threads, which causes havoc sometimes. If a child process successfully creates an mmap, the pointer is stored, and fed to subsequent syscalls, sometimes with hilarious results. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1055771 - Review Request: trinity - System call fuzz tester https://bugzilla.redhat.com/show_bug.cgi?id=1055771 -------------------------------------------------------------------------------- ================================================================================ v8-3.14.5.10-4.fc20 (FEDORA-2014-1671) JavaScript Engine -------------------------------------------------------------------------------- Update Information: 2014.01.23, Version 0.10.25 (Stable) * v8: Fix enumeration for objects with lots of properties * child_process: fix spawn() optional arguments (Sam Roberts) * cluster: report more errors to workers (Fedor Indutny) * domains: exit() only affects active domains (Ryan Graham) * src: OnFatalError handler must abort() (Timothy J Fontaine) * stream: writes may return false but forget to emit drain (Yang Tianyang) 2014.01.23, libuv Version 0.10.23 (Stable) * linux: relax assumption on /proc/stat parsing (Luca Bruno) * process: close stdio after dup2'ing it (Fedor Indutny) -------------------------------------------------------------------------------- ChangeLog: * Mon Jan 27 2014 T.C. Hollingsworth <tchollingsworth@xxxxxxxxx> - 1:3.14.5.10-4 - backport fix for enumeration for objects with lots of properties -------------------------------------------------------------------------------- ================================================================================ x2goserver-4.0.1.13-2.fc20 (FEDORA-2014-1738) X2Go Server -------------------------------------------------------------------------------- Update Information: Fix xinitrd.d path in Xsession - Update to 4.0.1.13 - Add xsession sub-package - Fix sound - Fix sound - Fix sound - Update to 4.0.1.13 - Add xsession sub-package - Fix sound - Fix sound - Fix sound - Update to 4.0.1.13 - Add xsession sub-package - Fix sound -------------------------------------------------------------------------------- ChangeLog: * Mon Jan 27 2014 Orion Poplawski <orion@xxxxxxxxxxxxx> - 4.0.1.13-2 - Fix xinitrd.d path in Xsession * Sun Jan 26 2014 Orion Poplawski <orion@xxxxxxxxxxxxx> - 4.0.1.13-1 - Update 4.0.1.13 - Add xsession sub-package * Tue Jan 7 2014 Orion Poplawski <orion@xxxxxxxxxxxxx> - 4.0.1.12-1 - Update 4.0.1.12 * Mon Jan 6 2014 Orion Poplawski <orion@xxxxxxxxxxxxx> - 4.0.1.11-1 - Update 4.0.1.11 - Drop mimetype patch applied upstream -------------------------------------------------------------------------------- References: [ 1 ] Bug #1038834 - /etc/x2go/Xsession script broken https://bugzilla.redhat.com/show_bug.cgi?id=1038834 -------------------------------------------------------------------------------- ================================================================================ xnoise-0.2.21-1.fc20 (FEDORA-2014-1731) Tracklist-centric Media Player -------------------------------------------------------------------------------- Update Information: * Fix crasher bug with screen saver management * Add new screen saver manager * Update some translations -------------------------------------------------------------------------------- ChangeLog: * Mon Jan 27 2014 Michel Salim <salimma@xxxxxxxxxxxxxxxxx> - 0.2.21-1 - Update to 0.2.21 -------------------------------------------------------------------------------- -- test mailing list test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe: https://admin.fedoraproject.org/mailman/listinfo/test
