The following Fedora 19 Security updates need testing: Age URL 214 https://admin.fedoraproject.org/updates/FEDORA-2013-19963/openstack-glance-2013.1.4-1.fc19 27 https://admin.fedoraproject.org/updates/FEDORA-2014-5896/nrpe-2.15-2.fc19 22 https://admin.fedoraproject.org/updates/FEDORA-2014-6046/cifs-utils-6.3-2.fc19 18 https://admin.fedoraproject.org/updates/FEDORA-2014-5759/cups-filters-1.0.53-2.fc19 16 https://admin.fedoraproject.org/updates/FEDORA-2014-6255/smb4k-1.1.2-1.fc19 16 https://admin.fedoraproject.org/updates/FEDORA-2014-6233/dpkg-1.16.14-1.fc19 15 https://admin.fedoraproject.org/updates/FEDORA-2014-6331/dovecot-2.2.13-1.fc19 7 https://admin.fedoraproject.org/updates/FEDORA-2014-6553/chicken-4.8.0.6-2.fc19 7 https://admin.fedoraproject.org/updates/FEDORA-2014-6569/openssh-6.2p2-8.fc19 7 https://admin.fedoraproject.org/updates/FEDORA-2014-6577/moodle-2.4.10-1.fc19 5 https://admin.fedoraproject.org/updates/FEDORA-2014-6594/libtiff-4.0.3-10.fc19 5 https://admin.fedoraproject.org/updates/FEDORA-2014-6597/drupal7-views-3.8-1.fc19 4 https://admin.fedoraproject.org/updates/FEDORA-2014-6645/libgadu-1.12.0-0.5.rc3.fc19 1 https://admin.fedoraproject.org/updates/FEDORA-2014-6717/libpng-1.5.13-3.fc19 1 https://admin.fedoraproject.org/updates/FEDORA-2014-6716/readline-6.2-7.fc19 0 https://admin.fedoraproject.org/updates/FEDORA-2014-6818/check-mk-1.2.4p2-2.fc19 The following Fedora 19 Critical Path updates have yet to be approved: Age URL 163 https://admin.fedoraproject.org/updates/FEDORA-2013-22326/fedora-bookmarks-15-5.fc19 89 https://admin.fedoraproject.org/updates/FEDORA-2014-3245/testdisk-6.14-2.fc19.1,ntfs-3g-2014.2.15-1.fc19 13 https://admin.fedoraproject.org/updates/FEDORA-2014-6361/btrfs-progs-3.14.1-1.fc19 12 https://admin.fedoraproject.org/updates/FEDORA-2014-6422/taglib-1.9.1-5.fc19 12 https://admin.fedoraproject.org/updates/FEDORA-2014-6335/squashfs-tools-4.3-4.fc19 11 https://admin.fedoraproject.org/updates/FEDORA-2014-6447/xfsprogs-3.2.0-1.fc19 10 https://admin.fedoraproject.org/updates/FEDORA-2014-6462/libxfce4ui-4.10.0-11.fc19 7 https://admin.fedoraproject.org/updates/FEDORA-2014-6587/libnl3-3.2.22-3.fc19 7 https://admin.fedoraproject.org/updates/FEDORA-2014-6578/ibus-1.5.7-2.fc19 5 https://admin.fedoraproject.org/updates/FEDORA-2014-6613/langtable-0.0.24-2.fc19 2 https://admin.fedoraproject.org/updates/FEDORA-2014-6708/webkitgtk3-2.0.4-3.fc19,webkitgtk-2.0.4-3.fc19 1 https://admin.fedoraproject.org/updates/FEDORA-2014-6716/readline-6.2-7.fc19 1 https://admin.fedoraproject.org/updates/FEDORA-2014-6717/libpng-1.5.13-3.fc19 0 https://admin.fedoraproject.org/updates/FEDORA-2014-6814/device-mapper-persistent-data-0.3.2-1.fc19 The following builds have been pushed to Fedora 19 updates-testing antimicro-2.3.3-1.fc19 check-mk-1.2.4p2-2.fc19 device-mapper-persistent-data-0.3.2-1.fc19 geeqie-1.1-19.fc19 gpaw-0.10.0.11364-3.fc19 hylafax+-5.5.5-1.fc19 jpegoptim-1.4.1-1.fc19 kbibtex-0.5.1-1.fc19 libreoffice-4.1.6.2-4.fc19 mozilla-noscript-2.6.8.26-1.fc19 rubygem-openscap-0.1.0-5.fc19 uthash-1.9.9-6.fc19 Details about builds: ================================================================================ antimicro-2.3.3-1.fc19 (FEDORA-2014-6802) Graphical program used to map keyboard buttons and mouse controls to a gamepad -------------------------------------------------------------------------------- Update Information: Initial package. Antimicro is a graphical program used to map keyboard buttons and mouse controls to a gamepad. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1100961 - Review Request: antimicro - Graphical program used to map keyboard buttons and mouse controls to a gamepad https://bugzilla.redhat.com/show_bug.cgi?id=1100961 -------------------------------------------------------------------------------- ================================================================================ check-mk-1.2.4p2-2.fc19 (FEDORA-2014-6818) A new general purpose Nagios-plugin for retrieving data -------------------------------------------------------------------------------- Update Information: - Install the mk-job binary on /usr/bin. - Make sure the proper permissions are given to /var/lib/check_mk_agent/job to prevent any hard or symlink to be created by a normal user and pointing to any file on the filesystem exposing it on the check-mk-agent output being run as root. -------------------------------------------------------------------------------- ChangeLog: * Tue May 27 2014 Andrea Veri <averi@xxxxxxxxxxxxxxxxx> - 1.2.4p2-2 - Install the mk-job binary on /usr/bin. - Make sure the proper permissions are given to /var/lib/check_mk_agent/job to prevent any hard or symlink to be created by a normal user and pointing to any file on the filesystem exposing it on the check-mk-agent output being run as root. Fixes BZ #1101669. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1101669 - CVE-2014-0243 check-mk: arbitrary file disclosure flaw as root https://bugzilla.redhat.com/show_bug.cgi?id=1101669 -------------------------------------------------------------------------------- ================================================================================ device-mapper-persistent-data-0.3.2-1.fc19 (FEDORA-2014-6814) Device-mapper persistent data tools -------------------------------------------------------------------------------- Update Information: New upstream version 0.3.2 introducing era_{check,dump,invalidate} New upstream version 0.2.8 introducing cache_{check,dump,repair,restore} -------------------------------------------------------------------------------- ChangeLog: * Wed May 28 2014 Heinz Mauelshagen <heinzm@xxxxxxxxxx> - 0.3.2-1 - New upstream version 0.3.2 introducing era_{check,dump,invalidate} * Fri Oct 18 2013 Heinz Mauelshagen <heinzm@xxxxxxxxxx> - 0.2.8-1 - New upstream version 0.2.8 introducing cache_{check,dump,repair,restore} -------------------------------------------------------------------------------- ================================================================================ geeqie-1.1-19.fc19 (FEDORA-2014-6817) Image browser and viewer -------------------------------------------------------------------------------- Update Information: This update includes a fix for avoiding a crash when opening collections that contain non-existent files, includes a fix for handling of filenames with % in them, and is built with LCMS2 (which is said to give better results and better performance, too). This update also no longer prints the CMS screen profileID MD5 value, which either broke a tooltip or even could crash Geeqie. -------------------------------------------------------------------------------- ChangeLog: * Wed May 28 2014 Michael Schwendt <mschwendt@xxxxxxxxxxxxxxxxx> - 1.1-19 - Don't print CMS screen profileID garbage that crashes g_markup (this should also fix #1051660). * Tue May 27 2014 Michael Schwendt <mschwendt@xxxxxxxxxxxxxxxxx> - 1.1-18 - Merge fix for avoiding crash due to inexistent files in collections. This also replaces the history path_list patch. * Sun Jan 26 2014 Michael Schwendt <mschwendt@xxxxxxxxxxxxxxxxx> - 1.1-17 - Merge image-overlay.c fix for handling of filenames with % in them. * Mon Dec 9 2013 Michael Schwendt <mschwendt@xxxxxxxxxxxxxxxxx> - 1.1-16 - Add LCMS2 patch from Geeqie-devel list, fix HAVE_LCMS and build with lcms2-devel instead of lcms-devel. * Tue Dec 3 2013 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> - 1.1-15 - rebuild (exiv2) * Sat Nov 16 2013 Michael Schwendt <mschwendt@xxxxxxxxxxxxxxxxx> - 1.1-14 - Conditionalize ufraw BR/R for Fedora, since it's not available with RHEL and EPEL and is optional at run-time. - Drop %defattr usage. * Tue Aug 6 2013 Michael Schwendt <mschwendt@xxxxxxxxxxxxxxxxx> - 1.1-13 - For F-20 unversioned docdirs feature we need to build with configure --with-readmedir=... to override the internal GQ_HELPDIR. * Sat Aug 3 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.1-12 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild * Fri Jun 7 2013 Michael Schwendt <mschwendt@xxxxxxxxxxxxxxxxx> - 1.1-11 - Define _hardened_build 1 to please rpm-chksec. -------------------------------------------------------------------------------- ================================================================================ gpaw-0.10.0.11364-3.fc19 (FEDORA-2014-6815) A grid-based real-space PAW method DFT code -------------------------------------------------------------------------------- Update Information: A grid-based real-space PAW method DFT code -------------------------------------------------------------------------------- References: [ 1 ] Bug #1087812 - Review Request: gpaw - A grid-based real-space PAW method DFT code https://bugzilla.redhat.com/show_bug.cgi?id=1087812 -------------------------------------------------------------------------------- ================================================================================ hylafax+-5.5.5-1.fc19 (FEDORA-2014-6787) An enterprise-strength fax server -------------------------------------------------------------------------------- Update Information: Update to 5.5.5 fixes several bugs plus add uucp dependency. -------------------------------------------------------------------------------- ChangeLog: * Mon May 26 2014 Lee Howard <faxguy@xxxxxxxxxxxxxxxx> - 5.5.5-1 - update to 5.5.5 * Thu Apr 24 2014 Lee Howard <faxguy@xxxxxxxxxxxxxxxx> - 5.5.4-3 - add uucp dependency for build and install, bug 998737 * Sat Sep 14 2013 Lee Howard <faxguy@xxxxxxxxxxxxxxxx> - 5.5.4-2 - fix preun stop call to hylafax+ (and not hylafax) -------------------------------------------------------------------------------- References: [ 1 ] Bug #998737 - /var/spool/hylafax has incorrect ownership and other hylafax+ RPM problems https://bugzilla.redhat.com/show_bug.cgi?id=998737 -------------------------------------------------------------------------------- ================================================================================ jpegoptim-1.4.1-1.fc19 (FEDORA-2014-6800) Utility to optimize JPEG files -------------------------------------------------------------------------------- Update Information: Update to version 1.4.1 -------------------------------------------------------------------------------- ChangeLog: * Wed May 28 2014 Denis Fateyev <denis@xxxxxxxxxxx> - 1.4.1-1 - Update to version 1.4.1 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1100425 - jpegoptim-1.4.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1100425 -------------------------------------------------------------------------------- ================================================================================ kbibtex-0.5.1-1.fc19 (FEDORA-2014-6790) A BibTeX editor for KDE -------------------------------------------------------------------------------- Update Information: Update to 0.5.1 -------------------------------------------------------------------------------- ChangeLog: * Wed May 28 2014 Robin Lee <cheeselee@xxxxxxxxxxxxxxxxx> - 0.5.1-1 - Update to 0.5.1 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1084965 - kbibtex-0.5.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1084965 -------------------------------------------------------------------------------- ================================================================================ libreoffice-4.1.6.2-4.fc19 (FEDORA-2014-6816) Free Software Productivity Suite -------------------------------------------------------------------------------- Update Information: Resolves: fdo#70455 loading .xlsx some formulas with range operator are corrupted, https://bugs.freedesktop.org/show_bug.cgi?id=70455 Various fixes to address reported loss of images on save, especially in impress -------------------------------------------------------------------------------- ChangeLog: * Wed May 28 2014 Eike Rathke <erack@xxxxxxxxxx> - 1:4.1.6.2-4 - Resolves: fdo#70455 loading .xlsx some formulas with range operator are corrupted * Tue May 27 2014 Caolán McNamara <caolanm@xxxxxxxxxx> - 1:4.1.6.2-3 - Resolves: rhbz#1084822 Pictures Replaced With Placeholder After Save, Close & Re-Open. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1084822 - Inserted Pictures Replaced With Placeholder After Save, Close & Re-Open. https://bugzilla.redhat.com/show_bug.cgi?id=1084822 -------------------------------------------------------------------------------- ================================================================================ mozilla-noscript-2.6.8.26-1.fc19 (FEDORA-2014-6807) JavaScript white list extension for Mozilla Firefox -------------------------------------------------------------------------------- Update Information: This is mainly a bugfix update. The full changelog can be found at: http://noscript.net/changelog -------------------------------------------------------------------------------- ChangeLog: * Wed May 28 2014 Thomas Spura <tomspur@xxxxxxxxxxxxxxxxx> - 2.6.8.26-1 - update to 2.6.8.26 (#1094684) * Tue Apr 15 2014 Thomas Spura <tomspur@xxxxxxxxxxxxxxxxx> - 2.6.8.20-1 - update to 2.6.8.20 (#1064214) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1094684 - mozilla-noscript-2.6.8.26 is available https://bugzilla.redhat.com/show_bug.cgi?id=1094684 -------------------------------------------------------------------------------- ================================================================================ rubygem-openscap-0.1.0-5.fc19 (FEDORA-2014-6804) A FFI wrapper around the OpenSCAP library -------------------------------------------------------------------------------- Update Information: A new package born! A new package born! -------------------------------------------------------------------------------- ================================================================================ uthash-1.9.9-6.fc19 (FEDORA-2014-6812) A hash table for C structures -------------------------------------------------------------------------------- Update Information: add `%global debug_package %{nil}` to avoid empty debuginfo-pkg -------------------------------------------------------------------------------- ChangeLog: * Wed May 28 2014 Björn Esser <bjoern.esser@xxxxxxxxx> - 1.9.9-6 - add `%global debug_package %{nil}` to avoid empty debuginfo-pkg. * Thu May 22 2014 Björn Esser <bjoern.esser@xxxxxxxxx> - 1.9.9-5 - revert "Root package should be noarch too". - add provides %{name} for -devel subpkg. - add a note about why the mainpkg is arched. * Wed May 21 2014 Peter Robinson <pbrobinson@xxxxxxxxxxxxxxxxx> 1.9.9-4 - Root package should be noarch too * Wed May 21 2014 Peter Robinson <pbrobinson@xxxxxxxxxxxxxxxxx> 1.9.9-3 - Build as noarch * Sun May 18 2014 Christopher Meng <rpm@xxxxxxxx> - 1.9.9-2 - Move all files to -devel subpkg. * Sat Mar 29 2014 Christopher Meng <rpm@xxxxxxxx> - 1.9.9-1 - Update to 1.9.9 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1101930 - uthash-debuginfo-1.9.9-5 is empty https://bugzilla.redhat.com/show_bug.cgi?id=1101930 -------------------------------------------------------------------------------- -- test mailing list test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe: https://admin.fedoraproject.org/mailman/listinfo/test
