The following Fedora 19 Security updates need testing: Age URL 194 https://admin.fedoraproject.org/updates/FEDORA-2013-19963/openstack-glance-2013.1.4-1.fc19 23 https://admin.fedoraproject.org/updates/FEDORA-2014-5024/smb4k-1.1.1-2.fc19 19 https://admin.fedoraproject.org/updates/FEDORA-2014-5308/srm-1.2.13-1.fc19 9 https://admin.fedoraproject.org/updates/FEDORA-2014-5759/cups-filters-1.0.53-1.fc19 6 https://admin.fedoraproject.org/updates/FEDORA-2014-5896/nrpe-2.15-2.fc19 6 https://admin.fedoraproject.org/updates/FEDORA-2014-5903/miniupnpc-1.9-1.fc19,megaglest-3.9.1-2.fc19,0ad-0.0.15-4.fc19 5 https://admin.fedoraproject.org/updates/FEDORA-2014-5938/rxvt-unicode-9.20-1.fc19 5 https://admin.fedoraproject.org/updates/FEDORA-2014-5941/xen-4.2.4-4.fc19 4 https://admin.fedoraproject.org/updates/FEDORA-2014-5974/python-fmn-web-0.2.4-3.fc19 4 https://admin.fedoraproject.org/updates/FEDORA-2014-5948/python-fedora-0.3.34-1.fc19 4 https://admin.fedoraproject.org/updates/FEDORA-2014-5984/php-5.5.12-1.fc19 2 https://admin.fedoraproject.org/updates/FEDORA-2014-6028/mingw-qt-4.8.6-1.fc19 2 https://admin.fedoraproject.org/updates/FEDORA-2014-5999/mingw-qt5-qtbase-5.2.1-3.fc19 1 https://admin.fedoraproject.org/updates/FEDORA-2014-6046/cifs-utils-6.3-2.fc19 0 https://admin.fedoraproject.org/updates/FEDORA-2014-6083/qt-4.8.6-5.fc19 0 https://admin.fedoraproject.org/updates/FEDORA-2014-6127/rubygem-actionpack-3.2.13-6.fc19 The following Fedora 19 Critical Path updates have yet to be approved: Age URL 142 https://admin.fedoraproject.org/updates/FEDORA-2013-22326/fedora-bookmarks-15-5.fc19 68 https://admin.fedoraproject.org/updates/FEDORA-2014-3245/testdisk-6.14-2.fc19.1,ntfs-3g-2014.2.15-1.fc19 12 https://admin.fedoraproject.org/updates/FEDORA-2014-5620/abrt-2.2.1-1.fc19,libreport-2.2.2-2.fc19 11 https://admin.fedoraproject.org/updates/FEDORA-2014-5665/curl-7.29.0-18.fc19 8 https://admin.fedoraproject.org/updates/FEDORA-2014-5809/xorg-x11-drv-synaptics-1.7.4-9.fc19 7 https://admin.fedoraproject.org/updates/FEDORA-2014-5818/libssh2-1.4.3-7.fc19 7 https://admin.fedoraproject.org/updates/FEDORA-2014-5867/kde-workspace-4.11.9-2.fc19 7 https://admin.fedoraproject.org/updates/FEDORA-2014-5448/ibus-1.5.7-1.fc19 1 https://admin.fedoraproject.org/updates/FEDORA-2014-6047/gupnp-0.20.11-1.fc19 0 https://admin.fedoraproject.org/updates/FEDORA-2014-6113/xorg-x11-drv-evdev-2.8.4-1.fc19 0 https://admin.fedoraproject.org/updates/FEDORA-2014-6075/selinux-policy-3.12.1-74.26.fc19 0 https://admin.fedoraproject.org/updates/FEDORA-2014-6126/policycoreutils-2.1.14-46.8.fc19 0 https://admin.fedoraproject.org/updates/FEDORA-2014-6083/qt-4.8.6-5.fc19 0 https://admin.fedoraproject.org/updates/FEDORA-2014-5590/libcap-ng-0.7.4-1.fc19 The following builds have been pushed to Fedora 19 updates-testing ansible-1.6.1-1.fc19 canl-c-2.1.4-1.fc19 fldigi-3.21.82-1.fc19 ghc-optparse-applicative-0.8.0.1-2.fc19 glite-px-proxyrenewal-1.3.35-1.fc19 gnulib-0-8.20140504git.fc19 jspecview-2-8.1649svn.fc19 libcap-ng-0.7.4-1.fc19 libreoffice-4.1.6.2-2.fc19 os-prober-1.58-6.fc19 perl-DateTime-1.06-2.fc19 perl-MooX-late-0.014-3.fc19 perl-Params-Validate-1.08-8.fc19 policycoreutils-2.1.14-46.8.fc19 qt-4.8.6-5.fc19 recoll-1.19.13-1.fc19 rubygem-actionpack-3.2.13-6.fc19 salt-2014.1.4-1.fc19 scl-utils-20140127-5.fc19 selinux-policy-3.12.1-74.26.fc19 suricata-2.0-1.fc19 webkitgtk-2.0.4-2.fc19 whois-5.1.2-1.fc19 wordpress-3.9-1.fc19 xorg-x11-drv-evdev-2.8.4-1.fc19 Details about builds: ================================================================================ ansible-1.6.1-1.fc19 (FEDORA-2014-6139) SSH-based configuration management, deployment, and task execution system -------------------------------------------------------------------------------- Update Information: Upstream bugfix release: https://github.com/ansible/ansible/blob/release1.6.1/CHANGELOG.md In particular, it fixes port not being closed with accelerate mode Update to upstream 1.6 release: https://github.com/ansible/ansible/blob/devel/CHANGELOG.md Update to upstream 1.6 release: https://github.com/ansible/ansible/blob/devel/CHANGELOG.md Update to upstream 1.6 release: https://github.com/ansible/ansible/blob/devel/CHANGELOG.md -------------------------------------------------------------------------------- ChangeLog: * Wed May 7 2014 Toshio Kuratomi <toshio@xxxxxxxxxxxxxxxxx> - 1.6.1-1 - Bugfix 1.6.1 release * Mon May 5 2014 Toshio Kuratomi <toshio@xxxxxxxxxxxxxxxxx> - 1.6-1 - Update to 1.6 - Drop accelerate fix, merged upstream - Refresh RHEL6 pycrypto patch. It was half-merged upstream. -------------------------------------------------------------------------------- ================================================================================ canl-c-2.1.4-1.fc19 (FEDORA-2014-6142) EMI Common Authentication library - bindings for C -------------------------------------------------------------------------------- Update Information: Fixed certificate chain validation errors. Affected were tools like gridsite's htproxyinfo and many others. -------------------------------------------------------------------------------- ChangeLog: * Tue May 6 2014 František Dvořák <valtri@xxxxxxxxxx> - 2.1.4-1 - New upstream version - Remove patch merged in upstream * Wed Jan 29 2014 František Dvořák <valtri@xxxxxxxxxx> - 2.1.3-2 - Patch to remove comment.sty LaTeX package (not available on RHEL7) -------------------------------------------------------------------------------- ================================================================================ fldigi-3.21.82-1.fc19 (FEDORA-2014-6100) Digital modem program for Linux -------------------------------------------------------------------------------- Update Information: =Version 3.21.82= 92a7d01: hash-fix b0db34c: RnA Analysis fa9e10a: Phase accumulator b7ce1cd: Base Directories c9c6f28: WF Height/Speed ca61d3f: RX Only 43fbe22: RTTY mem leak f470ce3: Olivia/Contestia custom b87e664: ARQ abort a9818aa: RTTY Custom Shift -------------------------------------------------------------------------------- ChangeLog: * Wed Apr 30 2014 Richard Shaw <hobbes1069@xxxxxxxxx> - 3.21.82-1 - Update to latest upstream release. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1092923 - fldigi-3.21.82 is available https://bugzilla.redhat.com/show_bug.cgi?id=1092923 -------------------------------------------------------------------------------- ================================================================================ ghc-optparse-applicative-0.8.0.1-2.fc19 (FEDORA-2014-6095) Utilities and combinators for parsing command line options -------------------------------------------------------------------------------- Update Information: Utilities and combinators for parsing command line options - http://hackage.haskell.org/package/optparse-applicative -------------------------------------------------------------------------------- References: [ 1 ] Bug #1086444 - Review Request: ghc-optparse-applicative - Utilities and combinators for parsing command line options https://bugzilla.redhat.com/show_bug.cgi?id=1086444 -------------------------------------------------------------------------------- ================================================================================ glite-px-proxyrenewal-1.3.35-1.fc19 (FEDORA-2014-6112) gLite proxyrenewal renews existing proxy certificates for grid users -------------------------------------------------------------------------------- Update Information: New release 1.3.35. Changes: * Make sure 1024-bit keys are explicitly requested from Globus for initiating proxy certificates, overriding the current Globus default of 512 bits * Hardened build has been enabled, result binaries are more secured now -------------------------------------------------------------------------------- ChangeLog: * Tue May 6 2014 František Dvořák <valtri@xxxxxxxxxx> - 1.3.35-1 - Release glite-px-proxyrenewal 1.3.35 - Enable hardened build - Update patches, add EPEL 7 support - Simplify scriptlets -------------------------------------------------------------------------------- ================================================================================ gnulib-0-8.20140504git.fc19 (FEDORA-2014-6072) GNU Portability Library -------------------------------------------------------------------------------- Update Information: Update GNULIB on 20140504 -------------------------------------------------------------------------------- ChangeLog: * Sun May 4 2014 Mosaab Alzoubi <moceap@xxxxxxxxxxx> - 0-8.20140504git - Update on 20140504. -------------------------------------------------------------------------------- ================================================================================ jspecview-2-8.1649svn.fc19 (FEDORA-2014-6106) JAVA applets for the display of JCAMP-DX and AnIML/CML spectral files -------------------------------------------------------------------------------- Update Information: Update to newest upstream. Remove bundled libraries (BZ #1095316). -------------------------------------------------------------------------------- ChangeLog: * Wed May 7 2014 Susi Lehtola <jussilehtola@xxxxxxxxxxxxxxxxx> - 2-8.1649svn - Remove bundled libraries (BZ #1095316). - Update to revision 1649. * Thu Mar 6 2014 Michal Srb <msrb@xxxxxxxxxx> - 2-7.1464svn - Remove unneeded BR: itext -------------------------------------------------------------------------------- References: [ 1 ] Bug #1095316 - jspecview: Embeds classes from icedtea-web https://bugzilla.redhat.com/show_bug.cgi?id=1095316 -------------------------------------------------------------------------------- ================================================================================ libcap-ng-0.7.4-1.fc19 (FEDORA-2014-5590) An alternate posix capabilities library -------------------------------------------------------------------------------- Update Information: Add CAPNG_INIT_SUPP_GRP to capng_change_id. Update the autotools components. Dynamically detect last capability. -------------------------------------------------------------------------------- ChangeLog: * Thu Apr 24 2014 Steve Grubb <sgrubb@xxxxxxxxxx> 0.7.4-1 - New upstream release * Thu Nov 14 2013 Steve Grubb <sgrubb@xxxxxxxxxx> 0.7.3-6 - Rebuild to pickup current CAP_LAST_CAP * Sat Aug 3 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.7.3-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild * Tue Jul 2 2013 Karsten Hopp <karsten@xxxxxxxxxx> 0.7.3-4 - bump release and rebuild to fix dependencies on PPC -------------------------------------------------------------------------------- ================================================================================ libreoffice-4.1.6.2-2.fc19 (FEDORA-2014-6099) Free Software Productivity Suite -------------------------------------------------------------------------------- Update Information: Resolves: fdo#78294 default null-date, fdo#76663 matrix in PRODUCT new upstream release -------------------------------------------------------------------------------- ChangeLog: * Tue May 6 2014 Eike Rathke <erack@xxxxxxxxxx> - 1:4.1.6.2-2 - Resolves: fdo#78294 default null-date for document import is 1899-12-30 - Resolves: fdo#76663 let's not skip the first element of a matrix in PRODUCT * Tue Apr 29 2014 David Tardon <dtardon@xxxxxxxxxx> - 1:4.1.6.2-1 - new upstream release -------------------------------------------------------------------------------- ================================================================================ os-prober-1.58-6.fc19 (FEDORA-2014-6117) Probes disks on the system for installed operating systems -------------------------------------------------------------------------------- Update Information: - Fix separate /usr partitions for usrmove distros (bug #1044760) - Fix umount error when directory is temporarily busy (bug #903906) -------------------------------------------------------------------------------- ChangeLog: * Tue May 6 2014 Hedayat Vatankhah <hedayat.fwd+rpmchlog@xxxxxxxxx> - 1.58-6 - Fix separate /usr partitions for usrmove distros (bug #1044760) - Fix umount error when directory is temporarily busy (bug #903906) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1044760 - os-prober doesn't find other os https://bugzilla.redhat.com/show_bug.cgi?id=1044760 [ 2 ] Bug #903906 - grub2-mkconfig produces a umount error https://bugzilla.redhat.com/show_bug.cgi?id=903906 -------------------------------------------------------------------------------- ================================================================================ perl-DateTime-1.06-2.fc19 (FEDORA-2014-6131) Date and time object -------------------------------------------------------------------------------- Update Information: This release fixes clobberting a DateTime object after failed truncate() call. -------------------------------------------------------------------------------- ChangeLog: * Wed May 7 2014 Petr Pisar <ppisar@xxxxxxxxxx> - 2:1.06-2 - Restore object after failed truncate() call (bug #1095104) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1095104 - If truncate(to=>'week') fails, it will clobber the object https://bugzilla.redhat.com/show_bug.cgi?id=1095104 -------------------------------------------------------------------------------- ================================================================================ perl-MooX-late-0.014-3.fc19 (FEDORA-2014-6090) Easily translate Moose code to Moo -------------------------------------------------------------------------------- Update Information: -------------------------------------------------------------------------------- References: [ 1 ] Bug #1079618 - Review Request: perl-MooX-late - Easily translate Moose code to Moo https://bugzilla.redhat.com/show_bug.cgi?id=1079618 -------------------------------------------------------------------------------- ================================================================================ perl-Params-Validate-1.08-8.fc19 (FEDORA-2014-6074) Params-Validate Perl module -------------------------------------------------------------------------------- Update Information: -------------------------------------------------------------------------------- ChangeLog: * Wed May 7 2014 Ralf Corsépius <corsepiu@xxxxxxxxxxxxxxxxx> - 1.08-8 - Use aspell-en instead of hunspell. * Tue May 6 2014 Ralf Corsépius <corsepiu@xxxxxxxxxxxxxxxxx> - 1.08-7 - Add "'globals" to Params-Validate-1.08.diff (FTBFS RHBZ #1094169). - Remove %defattr. * Wed Aug 14 2013 Jitka Plesnikova <jplesnik@xxxxxxxxxx> - 1.08-6 - Perl 5.18 re-rebuild of bootstrapped packages * Sun Aug 4 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.08-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild * Wed Jul 24 2013 Petr Pisar <ppisar@xxxxxxxxxx> - 1.08-4 - Perl 5.18 rebuild * Thu Jul 18 2013 Ralf Corsépius <corsepiu@xxxxxxxxxxxxxxxxx> - 1.08-3 - Adjust license tag (RHBZ #977787). * Thu Jul 18 2013 Ralf Corsépius <corsepiu@xxxxxxxxxxxxxxxxx> - 1.08-2 - Add %bcond --without release-tests. - Skip release tests when bootstrapping (RHBZ #982253). -------------------------------------------------------------------------------- ================================================================================ policycoreutils-2.1.14-46.8.fc19 (FEDORA-2014-6126) SELinux policy core utilities -------------------------------------------------------------------------------- Update Information: seunshare: Use setcurrent before setexec from luto@xxxxxxxxxxxxxx -------------------------------------------------------------------------------- ChangeLog: * Mon Apr 7 2014 Miroslav Grepl <mgrepl@xxxxxxxxxx> - 2.1.14-46.8 - seunshare: Use setcurrent before setexec from luto@xxxxxxxxxxxxxx * Fri Jan 3 2014 Miroslav Grepl <mgrepl@xxxxxxxxxx> - 2.1.14-46.7 - policycoreutils-python should require checkpolicy -------------------------------------------------------------------------------- ================================================================================ qt-4.8.6-5.fc19 (FEDORA-2014-6083) Qt toolkit -------------------------------------------------------------------------------- Update Information: New upstream stable bugfix release, as well as a fix for: DoS vulnerability in the GIF image handler (QTBUG-38367). See also http://blog.qt.digia.com/blog/2014/04/24/qt-4-8-6-released/ -------------------------------------------------------------------------------- ChangeLog: * Mon May 5 2014 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> - 4.8.6-5 - drop f21 gcc-4.9 workarounds (they didn't work) - omit qt-cupsEnumDests.patch, again, pending more testing (#980952) * Fri Apr 25 2014 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 4.8.6-4 - -fno-tree-vrp (#1091482) * Fri Apr 25 2014 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 4.8.6-3 - try -fno-delete-null-pointer-checks to workaround bug #1091482 * Thu Apr 24 2014 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 4.8.6-2 - DoS vulnerability in the GIF image handler (QTBUG-38367) * Thu Apr 24 2014 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 4.8.6-1 - 4.8.6 (final) * Tue Apr 15 2014 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 4.8.6-0.2.rc2 - 4.8.6-rc2 * Tue Apr 1 2014 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> - 4.8.6-0.1.rc1 - 4.8.6-rc1 * Wed Mar 26 2014 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 4.8.5-24 - support ppc64le arch (#1081216) * Sat Mar 8 2014 Kevin Kofler <Kevin@xxxxxxxxxxxxxxxx> 4.8.5-23 - fix QMAKE_STRIP handling (#1074041) * Fri Mar 7 2014 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 4.8.5-22 - respin mysql_config patch * Fri Mar 7 2014 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 4.8.5-21 - restore qt-cupsEnumDests.patch (#980952) * Thu Mar 6 2014 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 4.8.5-20 - systemtrayicon plugin support (from kubuntu) * Tue Feb 18 2014 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 4.8.5-19 - cleanup QMAKE_STRIP handling * Wed Feb 12 2014 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 4.8.5-18 - rebuild (libicu) * Sat Feb 1 2014 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 4.8.5-17 - better %rpm_macros_dir handling * Sun Jan 26 2014 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 4.8.5-16 - macros.qt4: ++%_qt4_examplesdir (keep %_qt4_examples around for compatibility) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1088142 - CVE-2014-0190 qt: NULL pointer dereference flaw in QGIFFormat::fillRect https://bugzilla.redhat.com/show_bug.cgi?id=1088142 -------------------------------------------------------------------------------- ================================================================================ recoll-1.19.13-1.fc19 (FEDORA-2014-6134) Desktop full text search tool with Qt GUI -------------------------------------------------------------------------------- Update Information: Update to latest upstream release recoll 1.19.13, fixing threading and index issues. -------------------------------------------------------------------------------- ChangeLog: * Tue May 6 2014 Terje Rosten <terje.rosten@xxxxxxx> - 1.19.13-1 - 1.19.13 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1085800 - [abrt] recoll: ole.py:60:byteOrder:IndexError: string index out of range https://bugzilla.redhat.com/show_bug.cgi?id=1085800 [ 2 ] Bug #1076619 - [abrt] recoll: _M_find_node(): recollindex killed by SIGSEGV https://bugzilla.redhat.com/show_bug.cgi?id=1076619 [ 3 ] Bug #1059716 - [abrt] recoll: _M_dispose(): recollindex killed by SIGABRT https://bugzilla.redhat.com/show_bug.cgi?id=1059716 [ 4 ] Bug #1059737 - [abrt] recoll: ole.py:231:parse:OverflowError: Python int too large to convert to C long https://bugzilla.redhat.com/show_bug.cgi?id=1059737 [ 5 ] Bug #1060634 - [abrt] recoll: ole.py:431:getSectorIDChain:IndexError: list index out of range https://bugzilla.redhat.com/show_bug.cgi?id=1060634 -------------------------------------------------------------------------------- ================================================================================ rubygem-actionpack-3.2.13-6.fc19 (FEDORA-2014-6127) Web-flow and rendering framework putting the VC in MVC -------------------------------------------------------------------------------- Update Information: Fix for CVE-2014-0130 - Avoid directory traversal -------------------------------------------------------------------------------- ChangeLog: * Wed May 7 2014 Josef Stribny <jstribny@xxxxxxxxxx> - 1:3.2.13-6 - Fix for CVE-2014-0130 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1095105 - CVE-2014-0130 rubygem-actionpack: directory traversal issue https://bugzilla.redhat.com/show_bug.cgi?id=1095105 -------------------------------------------------------------------------------- ================================================================================ salt-2014.1.4-1.fc19 (FEDORA-2014-6124) A parallel remote execution system -------------------------------------------------------------------------------- Update Information: Update to bugfix release 2014.1.4 -------------------------------------------------------------------------------- ChangeLog: * Tue May 6 2014 Erik Johnson <erik@xxxxxxxxxxxxx> - 2014.1.4-1 - Update to bugfix release 2014.1.4 -------------------------------------------------------------------------------- ================================================================================ scl-utils-20140127-5.fc19 (FEDORA-2014-6105) Utilities for alternative packaging -------------------------------------------------------------------------------- Update Information: Due to cleanup in rpm, this update is required to make scl-utils-build working. Changed script paths in __os_install_post macro. -------------------------------------------------------------------------------- ChangeLog: * Wed May 7 2014 Albert Uchytil <auchytil@xxxxxxxxxx> - 20140127-5 - changed __os_install_post script paths to keep up with rpm (#1093074) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1093074 - scl-utils: /usr/lib/rpm/redhat/brp-strip-static-archive: No such file or directory https://bugzilla.redhat.com/show_bug.cgi?id=1093074 -------------------------------------------------------------------------------- ================================================================================ selinux-policy-3.12.1-74.26.fc19 (FEDORA-2014-6075) SELinux policy configuration -------------------------------------------------------------------------------- Update Information: Update sandbox_transition() to call sandbox_dyntrasition(). See http://koji.fedoraproject.org/koji/buildinfo?buildID=506047 -------------------------------------------------------------------------------- ChangeLog: * Fri May 2 2014 Miroslav Grepl <mgrepl@xxxxxxxxxx> 3.12.1-74.26 - Update sandbox_transition() to call sandbox_dyntrasition(). * Fri May 2 2014 Lukas Vrabec <lvrabec@xxxxxxxxxx> 3.12.1-74.25 - Add interface sysnet_manage_ifconfig_run - Added sysnet_filetrans_named_content_ifconfig interface - Added dnsmasq_read_state interface - Add some rules from F20 branch in quantum policy - Allow exim to use pam stack to check passwords * Mon Apr 14 2014 Lukas Vrabec <lvrabec@xxxxxxxxxx> 3.12.1-74.24 - Add modutils_dontaudit_exec_insmod interface - Allow rabbitmq to bind to amanda port - Allow kill capability to winbind_t - Dontaudit exec insmod in boinc policy - Allow exim to use pam stack to check passwords * Fri Mar 21 2014 Lukas Vrabec <lvrabec@xxxxxxxxxx> 3.12.1-74.23 - Add bumblebee to unconfined_domain * Thu Mar 20 2014 Lukas Vrabec <lvrabec@xxxxxxxxxx> 3.12.1-74.22 - Allow couchdb to listen on port 6984 - Added kernel_dontaudit_access_check_proc interface - Added modutils_signal_insmod interface - Add xserver_manage_xkb_libs interface - Fixed ftp_home_dir boolean - Added policy for bumblebee * Mon Mar 17 2014 Lukas Vrabec <lvrabec@xxxxxxxxxx> 3.12.1-74.21 - Added sysnet_domtrans_ifconfig in neutron policy * Mon Mar 17 2014 Lukas Vrabec <lvrabec@xxxxxxxxxx> 3.12.1-74.20 - Backported quantum and neutron rules from rawhide - Allow couchdb can manage rabbitmq files - Added couchdb_manage_files interface - Fixed quantum policy - Allow snort to manage its log files - Allow procman to list doveconf_etc_t - Dontaudit unpriv users creating rawip_socket, will be blocked by DAC - Allow postgresql to read network state -------------------------------------------------------------------------------- References: [ 1 ] Bug #993279 - SELinux is preventing /usr/lib64/erlang/erts-5.10.1/bin/beam from 'name_bind' accesses on the tcp_socket . https://bugzilla.redhat.com/show_bug.cgi?id=993279 [ 2 ] Bug #1076250 - SELinux policy for freeipa does not work when admin is in sysadm_t https://bugzilla.redhat.com/show_bug.cgi?id=1076250 [ 3 ] Bug #1082631 - SELinux is preventing /usr/bin/bash from 'read' accesses on the file /usr/bin/kmod. https://bugzilla.redhat.com/show_bug.cgi?id=1082631 [ 4 ] Bug #1083111 - Upcoming varnish-4.0.0 release needs changes in selinux policy https://bugzilla.redhat.com/show_bug.cgi?id=1083111 [ 5 ] Bug #1023610 - SELinux is preventing /usr/bin/postgres from 'read' accesses on the file unix. https://bugzilla.redhat.com/show_bug.cgi?id=1023610 [ 6 ] Bug #1026851 - selinux with procmail and doveadm https://bugzilla.redhat.com/show_bug.cgi?id=1026851 [ 7 ] Bug #1028178 - SELinux is preventing /usr/lib64/chromium-browser/chromium-browser from 'write' accesses on the sock_file bumblebee.socket. https://bugzilla.redhat.com/show_bug.cgi?id=1028178 [ 8 ] Bug #1066124 - ftp_home_dir set to off allows FTP login to user home directory https://bugzilla.redhat.com/show_bug.cgi?id=1066124 [ 9 ] Bug #1072642 - SELinux is preventing /usr/lib64/erlang/erts-5.10.4/bin/beam.smp from 'create' accesses on the file couchdb.pid. https://bugzilla.redhat.com/show_bug.cgi?id=1072642 [ 10 ] Bug #1072983 - Wrong SELinux policies set for neutron-dhcp-agent https://bugzilla.redhat.com/show_bug.cgi?id=1072983 [ 11 ] Bug #1076672 - SELinux is preventing /usr/sbin/snort-plain from 'write' accesses on the file /var/log/snort/snort.log.1394809020. https://bugzilla.redhat.com/show_bug.cgi?id=1076672 -------------------------------------------------------------------------------- ================================================================================ suricata-2.0-1.fc19 (FEDORA-2014-6115) Intrusion Detection System -------------------------------------------------------------------------------- Update Information: Performance, stability, and accuracy improvements. Upgrade guide is here: https://redmine.openinfosecfoundation.org/projects/suricata/wiki/Upgrading_Suricata_14_to_Suricata_20 -------------------------------------------------------------------------------- ChangeLog: * Wed Mar 26 2014 Steve Grubb <sgrubb@xxxxxxxxxx> 2.0-1 - Major new upstream release with new features -------------------------------------------------------------------------------- ================================================================================ webkitgtk-2.0.4-2.fc19 (FEDORA-2014-6135) GTK+ Web content engine library -------------------------------------------------------------------------------- Update Information: This update fixes a build problem on PPC, there are no changes for other archs. -------------------------------------------------------------------------------- ChangeLog: * Wed May 7 2014 Karsten Hopp <karsten@xxxxxxxxxx> 2.0.4-2 - update libatomic patch (PPC) -------------------------------------------------------------------------------- ================================================================================ whois-5.1.2-1.fc19 (FEDORA-2014-6141) Improved WHOIS client -------------------------------------------------------------------------------- Update Information: This release uses whois.nic. servers for new generic TLDs. It adds records for TLDs aw., and zm. It updates records for TLDs mk., tc., and vu. It adds records for Japanese and Korean ASNs. It fixes some invalid ASN and network entries. It updates disclaimer filters. It renames Norwegian translation from 'no' to 'nb' to reflect it's the Bokmål. -------------------------------------------------------------------------------- ChangeLog: * Wed May 7 2014 Petr Pisar <ppisar@xxxxxxxxxx> - 5.1.2-1 - 5.1.2 bump -------------------------------------------------------------------------------- References: [ 1 ] Bug #1094738 - whois-5.1.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=1094738 -------------------------------------------------------------------------------- ================================================================================ wordpress-3.9-1.fc19 (FEDORA-2014-6144) Blog tool and publishing platform -------------------------------------------------------------------------------- Update Information: WordPress 3.9 “Smith” Official annoucement: http://wordpress.org/news/2014/04/smith/ -------------------------------------------------------------------------------- ChangeLog: * Wed May 7 2014 Remi Collet <remi@xxxxxxxxxxxxxxxxx> - 3.9-1 - update to 3.9 “Smith” -------------------------------------------------------------------------------- ================================================================================ xorg-x11-drv-evdev-2.8.4-1.fc19 (FEDORA-2014-6113) Xorg X11 evdev input driver -------------------------------------------------------------------------------- Update Information: Don't crash if we have more than MAXDEVICES devices evdev 2.8.3, fixes horizontal scrolling on Microsoft mice Update to 2.8.1, includes a patch we already carried, fixes potential crashes on MT devices without legacy axes and a potential misconfiguration on wheel emulation inertia (must be > 0 now) -------------------------------------------------------------------------------- ChangeLog: * Thu May 8 2014 Peter Hutterer <peter.hutterer@xxxxxxxxxx> 2.8.4-1 - evdev 2.8.4 * Tue Apr 29 2014 Peter Hutterer <peter.hutterer@xxxxxxxxxx> 2.8.3-1 - evdev 2.8.3 * Mon Oct 7 2013 Peter Hutterer <peter.hutterer@xxxxxxxxxx> 2.8.2-1 - evdev 2.8.2 * Sun Aug 4 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 2.8.1-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #869065 - Horizontal scrolling with microsoft mouse scrolls vertically https://bugzilla.redhat.com/show_bug.cgi?id=869065 -------------------------------------------------------------------------------- -- test mailing list test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe: https://admin.fedoraproject.org/mailman/listinfo/test