The following Fedora 19 Security updates need testing: Age URL 113 https://admin.fedoraproject.org/updates/FEDORA-2013-19963/openstack-glance-2013.1.4-1.fc19 58 https://admin.fedoraproject.org/updates/FEDORA-2013-23592/rubygem-actionpack-3.2.13-3.fc19 50 https://admin.fedoraproject.org/updates/FEDORA-2013-24023/varnish-3.0.5-1.fc19 32 https://admin.fedoraproject.org/updates/FEDORA-2014-0797/libinfinity-0.5.5-1.fc19 18 https://admin.fedoraproject.org/updates/FEDORA-2014-1734/quassel-0.9.2-1.fc19 13 https://admin.fedoraproject.org/updates/FEDORA-2014-1916/chrony-1.29.1-1.fc19 13 https://admin.fedoraproject.org/updates/FEDORA-2014-1910/ibus-chewing-1.4.10.1-1.fc19 10 https://admin.fedoraproject.org/updates/FEDORA-2014-2083/thunderbird-24.3.0-1.fc19 9 https://admin.fedoraproject.org/updates/FEDORA-2014-2140/python-gnupg-0.3.6-1.fc19 5 https://admin.fedoraproject.org/updates/FEDORA-2014-2239/python-tahrir-0.5.1-1.fc19 5 https://admin.fedoraproject.org/updates/FEDORA-2014-2253/python-tahrir-0.5.2-1.fc19 5 https://admin.fedoraproject.org/updates/FEDORA-2014-2261/perl-Capture-Tiny-0.24-1.fc19 5 https://admin.fedoraproject.org/updates/FEDORA-2014-2324/seamonkey-2.24-1.fc19 5 https://admin.fedoraproject.org/updates/FEDORA-2014-2260/NetworkManager-ssh-0.9.2-0.2.20140209git46247c2.fc19 4 https://admin.fedoraproject.org/updates/FEDORA-2014-2387/numpy-1.7.2-8.fc19 4 https://admin.fedoraproject.org/updates/FEDORA-2014-2340/xstream-1.3.1-5.1.fc19 4 https://admin.fedoraproject.org/updates/FEDORA-2014-2341/libgadu-1.12.0-0.3.rc2.fc19 2 https://admin.fedoraproject.org/updates/FEDORA-2014-2445/augeas-1.2.0-1.fc19 2 https://admin.fedoraproject.org/updates/FEDORA-2014-2506/lighttpd-1.4.34-3.fc19 2 https://admin.fedoraproject.org/updates/FEDORA-2014-2534/oath-toolkit-2.4.1-1.fc19 2 https://admin.fedoraproject.org/updates/FEDORA-2014-2439/maradns-2.0.09-1.fc19 2 https://admin.fedoraproject.org/updates/FEDORA-2014-2484/drupal6-ctools-1.11-1.fc19 1 https://admin.fedoraproject.org/updates/FEDORA-2014-2588/gnutls-3.1.20-3.fc19 1 https://admin.fedoraproject.org/updates/FEDORA-2014-2578/drupal7-ctools-1.4-1.fc19 1 https://admin.fedoraproject.org/updates/FEDORA-2014-2556/kernel-3.12.11-200.fc19 1 https://admin.fedoraproject.org/updates/FEDORA-2014-2606/kernel-3.12.11-201.fc19 1 https://admin.fedoraproject.org/updates/FEDORA-2014-2612/drupal6-image_resize_filter-1.14-1.fc19 1 https://admin.fedoraproject.org/updates/FEDORA-2014-2565/mingw-gnutls-3.1.21-1.fc19 0 https://admin.fedoraproject.org/updates/FEDORA-2014-2615/drupal6-filefield-3.12-1.fc19 0 https://admin.fedoraproject.org/updates/FEDORA-2014-2638/xen-4.2.3-16.fc19 The following Fedora 19 Critical Path updates have yet to be approved: Age URL 62 https://admin.fedoraproject.org/updates/FEDORA-2013-22326/fedora-bookmarks-15-5.fc19 25 https://admin.fedoraproject.org/updates/FEDORA-2014-1324/firefox-26.0-6.fc19 13 https://admin.fedoraproject.org/updates/FEDORA-2014-1958/livecd-tools-19.9-1.fc19 13 https://admin.fedoraproject.org/updates/FEDORA-2014-1916/chrony-1.29.1-1.fc19 11 https://admin.fedoraproject.org/updates/FEDORA-2014-2022/gupnp-tools-0.8.9-1.fc19,gupnp-av-0.12.5-1.fc19,gupnp-0.20.10-1.fc19,gssdp-0.14.7-1.fc19 9 https://admin.fedoraproject.org/updates/FEDORA-2014-0752/firewalld-0.3.9.3-1.fc19 8 https://admin.fedoraproject.org/updates/FEDORA-2014-2053/kde-workspace-4.11.6-2.fc19 7 https://admin.fedoraproject.org/updates/FEDORA-2014-2208/krb5-1.11.3-20.fc19 5 https://admin.fedoraproject.org/updates/FEDORA-2014-1255/tigervnc-1.3.0-9.fc19 4 https://admin.fedoraproject.org/updates/FEDORA-2014-2346/sqlite-3.8.3-1.fc19 4 https://admin.fedoraproject.org/updates/FEDORA-2014-2337/libreport-2.1.12-2.fc19,abrt-2.1.12-2.fc19 2 https://admin.fedoraproject.org/updates/FEDORA-2014-2446/libvpx-1.3.0-3.fc19 2 https://admin.fedoraproject.org/updates/FEDORA-2014-2541/yum-3.4.3-135.fc19 2 https://admin.fedoraproject.org/updates/FEDORA-2014-2498/rpm-4.11.2-1.fc19 1 https://admin.fedoraproject.org/updates/FEDORA-2014-2556/kernel-3.12.11-200.fc19 1 https://admin.fedoraproject.org/updates/FEDORA-2014-2588/gnutls-3.1.20-3.fc19 1 https://admin.fedoraproject.org/updates/FEDORA-2014-2544/libusb-0.1.5-3.fc19 0 https://admin.fedoraproject.org/updates/FEDORA-2014-2619/vim-7.4.179-1.fc19 The following builds have been pushed to Fedora 19 updates-testing clamtk-5.04-1.fc19 drupal6-filefield-3.12-1.fc19 drupal7-context-3.2-1.fc19 drupal7-fivestar-2.0-0.7.alpha3.fc19 drupal7-libraries-2.2-1.fc19 drupal7-login_destination-1.1-1.fc19 drupal7-taxonomy_access_fix-2.0-1.fc19 dvdbackup-0.4.2-1.fc19 fsarchiver-0.6.18-1.fc19 gimagereader-2.91-0.2git20140216.fc19 php-Pimple-1.1.1-1.fc19 python-markdown2-2.2.0-1.fc19 root-5.34.15-1.fc19 sugar-memorize-47-1.fc19 sugar-pippy-57-1.fc19 sugar-turtleart-199-1.fc19 vim-7.4.179-1.fc19 xapian-bindings-1.2.17-1.fc19 xapian-core-1.2.17-1.fc19 xen-4.2.3-16.fc19 Details about builds: ================================================================================ clamtk-5.04-1.fc19 (FEDORA-2014-2621) Easy to use graphical user interface for Clam anti virus -------------------------------------------------------------------------------- Update Information: Update to 5.04. -------------------------------------------------------------------------------- ChangeLog: * Sat Feb 15 2014 Dave M. <dave.nerd@xxxxxxxxx> - 5.04-1 - Updated to release 5.04. -------------------------------------------------------------------------------- ================================================================================ drupal6-filefield-3.12-1.fc19 (FEDORA-2014-2615) Defines a file field type -------------------------------------------------------------------------------- Update Information: Updated to 3.12 * Release notes: https://drupal.org/node/2194103 * SA-CONTRIB-2014-015 -------------------------------------------------------------------------------- ChangeLog: * Fri Feb 14 2014 Shawn Iwinski <shawn.iwinski@xxxxxxxxx> - 1:3.12-1 - Updated to 3.12 (BZ #1064729; release notes https://drupal.org/node/2194103) - Security BZ #1064841, #1064842, 1064843 - SA-CONTRIB-2014-015 - Spec cleanup * Sat Aug 3 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1:3.11-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1064841 - drupal6-filefield: access bypass https://bugzilla.redhat.com/show_bug.cgi?id=1064841 -------------------------------------------------------------------------------- ================================================================================ drupal7-context-3.2-1.fc19 (FEDORA-2014-2630) Allows contextual conditions and reactions management -------------------------------------------------------------------------------- Update Information: Updated to 3.2 * Release notes: https://drupal.org/node/2183729 -------------------------------------------------------------------------------- ChangeLog: * Sat Feb 15 2014 Shawn Iwinski <shawn.iwinski@xxxxxxxxx> - 3.2-1 - Updated to 3.2 (BZ #1059560; release notes https://drupal.org/node/2183729) - Spec cleanup -------------------------------------------------------------------------------- References: [ 1 ] Bug #1059560 - drupal7-context-3.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=1059560 -------------------------------------------------------------------------------- ================================================================================ drupal7-fivestar-2.0-0.7.alpha3.fc19 (FEDORA-2014-2623) Enables fivestar ratings on content, users, etc -------------------------------------------------------------------------------- Update Information: Updated to 2.0-alpha3 * Release notes: https://drupal.org/node/2186899 -------------------------------------------------------------------------------- ChangeLog: * Sat Feb 15 2014 Shawn Iwinski <shawn.iwinski@xxxxxxxxx> - 2.0-0.7.alpha3 - Add build require drupal7-rpmbuild * Sat Feb 15 2014 Shawn Iwinski <shawn.iwinski@xxxxxxxxx> - 2.0-0.6.alpha3 - Updated to 2.0-alpha3 (BZ #1060464; release notes https://drupal.org/node/2186899) - Spec cleanup * Sat Aug 3 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 2.0-0.5.alpha2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1060464 - drupal7-fivestar-2.0-alpha3 is available https://bugzilla.redhat.com/show_bug.cgi?id=1060464 -------------------------------------------------------------------------------- ================================================================================ drupal7-libraries-2.2-1.fc19 (FEDORA-2014-2628) Allows version-dependent and shared usage of external libraries -------------------------------------------------------------------------------- Update Information: Updated to 2.2 * Release notes: https://drupal.org/node/2192173 -------------------------------------------------------------------------------- ChangeLog: * Sat Feb 15 2014 Shawn Iwinski <shawn.iwinski@xxxxxxxxx> - 2.2-1 - Updated to 2.2 (BZ #1063727; release notes https://drupal.org/node/2192173) - Spec cleanup * Sat Aug 3 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 2.1-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild * Thu Mar 14 2013 Peter Borsa <peter.borsa@xxxxxxxxx> - 2.1-1 - Update to 2.1 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1063727 - drupal7-libraries-2.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=1063727 -------------------------------------------------------------------------------- ================================================================================ drupal7-login_destination-1.1-1.fc19 (FEDORA-2014-2645) Customize the destination that the user is redirected to after login -------------------------------------------------------------------------------- Update Information: Updated to 1.1 * Release notes: https://drupal.org/node/1869598 -------------------------------------------------------------------------------- ChangeLog: * Sat Feb 15 2014 Shawn Iwinski <shawn.iwinski@xxxxxxxxx> - 1.1-1 - Updated to 1.1 (BZ #1059997; release notes https://drupal.org/node/1869598) - Spec cleanup * Sat Aug 3 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.0-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1059997 - drupal7-login_destination-1.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1059997 -------------------------------------------------------------------------------- ================================================================================ drupal7-taxonomy_access_fix-2.0-1.fc19 (FEDORA-2014-2639) Fixes the crooked access checks for Taxonomy pages -------------------------------------------------------------------------------- Update Information: Updated to 2.0 * Release notes: https://drupal.org/node/2152445 -------------------------------------------------------------------------------- ChangeLog: * Sat Feb 15 2014 Shawn Iwinski <shawn.iwinski@xxxxxxxxx> - 2.0-1 - Updated to 2.0 (BZ #1060000; release notes https://drupal.org/node/2152445) * Sat Aug 3 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.1-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1060000 - drupal7-taxonomy_access_fix-2.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1060000 -------------------------------------------------------------------------------- ================================================================================ dvdbackup-0.4.2-1.fc19 (FEDORA-2014-2633) Command line tool for ripping video DVDs -------------------------------------------------------------------------------- Update Information: What is new in version 0.4.2 (2012-06-24)? New Features: Added new command line option -p, --progress: Print progress report while copying from the DVD; thanks to flipflip for the patch. Added new translations from Launchpad: Danish (da), English (United Kingdom) (en_GB), Estonian (et), Portuguese (pt), Slovak (sk), Turkish (tr) New complete translation: English (United Kingdom) (en_GB), French (fr), Italian (it), Slovak (sk) Changes: Convert DVD title to lower case, but let every word in the title start with an upper case letter and replace underscores with spaces. Bug fixes: Print the correct vob file name in which the read error happens. Thanks to Kolja Nowak for the patch. (Closes: #585560, LP: #648752) Fix DVD title detection on FreeBSD. Thanks to Emanuel Haupt. Fix copying of fragmented chapters. Thanks to Christian Kuehnke for the patch. (LP: #648920) -------------------------------------------------------------------------------- ChangeLog: * Fri Feb 14 2014 Christopher Meng <rpm@xxxxxxxx> - 0.4.2-1 - Update to 0.4.2 * Sat Aug 3 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.4.1-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ fsarchiver-0.6.18-1.fc19 (FEDORA-2014-2635) Safe and flexible file-system backup/deployment tool -------------------------------------------------------------------------------- Update Information: New upstream release: * Prepared release sources using autoconf-2.69 to add support for new architectures (RHBZ#925370) * Applied patch from Berix to preserve the number of inode blocks per group on ext filesystems * Added support for recent btrfs features (up to linux-3.14) * Run mkfs.btrfs with option "-f" so that it does not fail on devices with pre-existing filesystems -------------------------------------------------------------------------------- ChangeLog: * Sat Feb 15 2014 Adel Gadllah <adel.gadllah@xxxxxxxxx> - 0.6.18-1 - Update to 0.6.18 - Fixes RH#925370 * Sat Aug 3 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.6.17-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ gimagereader-2.91-0.2git20140216.fc19 (FEDORA-2014-2625) OCR application -------------------------------------------------------------------------------- Update Information: This update works around the the application crashing at exit when using the libsane-hpaio driver by disabling searching for scanners accross the network. Initial package. -------------------------------------------------------------------------------- References: [ 1 ] Bug #653917 - Review Request: gimagereader - A tesseract OCR front-end https://bugzilla.redhat.com/show_bug.cgi?id=653917 -------------------------------------------------------------------------------- ================================================================================ php-Pimple-1.1.1-1.fc19 (FEDORA-2014-2616) A simple dependency injection container for PHP -------------------------------------------------------------------------------- Update Information: Updated to 1.1.1 * Change log: https://github.com/fabpot/Pimple/compare/v1.1.0...v1.1.1 -------------------------------------------------------------------------------- ChangeLog: * Sat Feb 15 2014 Shawn Iwinski <shawn.iwinski@xxxxxxxxx> 1.1.1-1 - Updated to 1.1.1 (BZ #1061119) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1061119 - php-Pimple-2.0.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1061119 -------------------------------------------------------------------------------- ================================================================================ python-markdown2-2.2.0-1.fc19 (FEDORA-2014-2643) A fast and complete Python implementation of Markdown -------------------------------------------------------------------------------- Update Information: Update to the latest stable version. Changes in python-markdown2 2.2.0: - [issue #135] Fix fenced code blocks odd rendering. - [pull #138] specify shell in Makefile - [pull #130] break-on-newline extra - [pull #140] Allow html-classes for img - [pull #122] Allow parentheses in urls -------------------------------------------------------------------------------- ChangeLog: * Wed Feb 5 2014 Thomas Moschny <thomas.moschny@xxxxxx> - 2.2.0-1 - Update to 2.2.0. - Modernize spec file. * Sun Aug 4 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 2.1.0-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ root-5.34.15-1.fc19 (FEDORA-2014-2617) Numerical data analysis framework -------------------------------------------------------------------------------- Update Information: ROOT 5.34.05 http://root.cern.ch/drupal/content/root-version-v5-34-00-patch-release-notes -------------------------------------------------------------------------------- ChangeLog: * Fri Feb 14 2014 Mattias Ellert <mattias.ellert@xxxxxxxxxxxx> - 5.34.15-1 - Update to 5.34.15 - Drop patch root-davix.patch * Thu Jan 9 2014 Mattias Ellert <mattias.ellert@xxxxxxxxxxxx> - 5.34.14-3 - Rebuild for cfitsio 3.360 -------------------------------------------------------------------------------- ================================================================================ sugar-memorize-47-1.fc19 (FEDORA-2014-2647) Memorize for Sugar -------------------------------------------------------------------------------- Update Information: New updated bugfix Activities -------------------------------------------------------------------------------- ChangeLog: * Sat Feb 15 2014 Peter Robinson <pbrobinson@xxxxxxxxxxxxxxxxx> 47-1 - Update to 47 * Sun Jan 12 2014 Peter Robinson <pbrobinson@xxxxxxxxxxxxxxxxx> 46-1 - Update to v46, build using sugar gtk3 support * Thu Oct 17 2013 Peter Robinson <pbrobinson@xxxxxxxxxxxxxxxxx> 45-3 - Add gstreamer-python runtime dependency * Sun Aug 4 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 45-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ sugar-pippy-57-1.fc19 (FEDORA-2014-2647) Pippy for Sugar -------------------------------------------------------------------------------- Update Information: New updated bugfix Activities -------------------------------------------------------------------------------- ChangeLog: * Sat Feb 15 2014 Peter Robinson <pbrobinson@xxxxxxxxxxxxxxxxx> 57-1 - Release 57 * Thu Feb 6 2014 Peter Robinson <pbrobinson@xxxxxxxxxxxxxxxxx> 56-1 - Release 56 * Thu Jan 16 2014 Peter Robinson <pbrobinson@xxxxxxxxxxxxxxxxx> 55-1 - Release 55 -------------------------------------------------------------------------------- ================================================================================ sugar-turtleart-199-1.fc19 (FEDORA-2014-2647) Turtle Art activity for sugar -------------------------------------------------------------------------------- Update Information: New updated bugfix Activities -------------------------------------------------------------------------------- ChangeLog: * Sat Feb 15 2014 Peter Robinson <pbrobinson@xxxxxxxxxxxxxxxxx> 199-1 - release 199 -------------------------------------------------------------------------------- ================================================================================ vim-7.4.179-1.fc19 (FEDORA-2014-2619) The VIM editor -------------------------------------------------------------------------------- Update Information: Lots of stability fixes, see README.patches for the complete list. -------------------------------------------------------------------------------- ChangeLog: * Sat Feb 15 2014 Karsten Hopp <karsten@xxxxxxxxxx> 7.4.179-1 - patchlevel 179 * Wed Jan 29 2014 Karsten Hopp <karsten@xxxxxxxxxx> 7.4.160-1 - patchlevel 160 * Tue Dec 17 2013 Karsten Hopp <karsten@xxxxxxxxxx> 7.4.131-1 - patchlevel 131 * Wed Nov 20 2013 Karsten Hopp <karsten@xxxxxxxxxx> 7.4.094-1 - patchlevel 094 * Tue Oct 15 2013 Karsten Hopp <karsten@xxxxxxxxxx> 7.4.052-1 - patchlevel 052 -------------------------------------------------------------------------------- ================================================================================ xapian-bindings-1.2.17-1.fc19 (FEDORA-2014-2642) Bindings for the Xapian Probabilistic Information Retrieval Library -------------------------------------------------------------------------------- Update Information: New upstream 1.2.17 bugfix release -------------------------------------------------------------------------------- ChangeLog: * Sat Feb 15 2014 Peter Robinson <pbrobinson@xxxxxxxxxxxxxxxxx> 1.2.17-1 - Update to 1.2.17 -------------------------------------------------------------------------------- ================================================================================ xapian-core-1.2.17-1.fc19 (FEDORA-2014-2642) The Xapian Probabilistic Information Retrieval Library -------------------------------------------------------------------------------- Update Information: New upstream 1.2.17 bugfix release -------------------------------------------------------------------------------- ChangeLog: * Sat Feb 15 2014 Peter Robinson <pbrobinson@xxxxxxxxxxxxxxxxx> 1.2.17-1 - Update to 1.2.17 -------------------------------------------------------------------------------- ================================================================================ xen-4.2.3-16.fc19 (FEDORA-2014-2638) Xen is a virtual machine monitor -------------------------------------------------------------------------------- Update Information: use-after-free in xc_cpupool_getinfo() under memory pressure -------------------------------------------------------------------------------- ChangeLog: * Wed Feb 12 2014 Michael Young <m.a.young@xxxxxxxxxxxx> - 4.2.3-16 - use-after-free in xc_cpupool_getinfo() under memory pressure [XSA-88, CVE-2014-1950] (#1064491) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1064490 - CVE-2014-1950 xen: use-after-free in xc_cpupool_getinfo() under memory pressure (XSA-88) https://bugzilla.redhat.com/show_bug.cgi?id=1064490 -------------------------------------------------------------------------------- -- test mailing list test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe: https://admin.fedoraproject.org/mailman/listinfo/test