The following Fedora 20 Security updates need testing: Age URL 61 https://admin.fedoraproject.org/updates/FEDORA-2014-5897/nrpe-2.15-2.fc20 41 https://admin.fedoraproject.org/updates/FEDORA-2014-6551/chicken-4.8.0.6-2.fc20 39 https://admin.fedoraproject.org/updates/FEDORA-2014-6615/drupal7-views-3.8-1.fc20 18 https://admin.fedoraproject.org/updates/FEDORA-2014-7348/ReviewBoard-1.7.26-2.fc20,python-django-evolution-0.6.9-4.fc20 13 https://admin.fedoraproject.org/updates/FEDORA-2014-5497/openstack-keystone-2013.2.3-4.fc20 12 https://admin.fedoraproject.org/updates/FEDORA-2014-7523/readline-6.2-10.fc20 10 https://admin.fedoraproject.org/updates/FEDORA-2014-7551/asterisk-11.10.2-2.fc20 10 https://admin.fedoraproject.org/updates/FEDORA-2014-7577/claws-mail-3.10.1-1.fc20,claws-mail-plugins-3.10.1-1.fc20 9 https://admin.fedoraproject.org/updates/FEDORA-2014-7613/perl-Email-Address-1.905-1.fc20 7 https://admin.fedoraproject.org/updates/FEDORA-2014-7657/couchdb-1.6.0-2.fc20,erlang-ibrowse-4.0.1-1.fc20 7 https://admin.fedoraproject.org/updates/FEDORA-2014-7697/dpkg-1.16.15-1.fc20 7 https://admin.fedoraproject.org/updates/FEDORA-2014-7682/seamonkey-2.26.1-1.fc20 5 https://admin.fedoraproject.org/updates/FEDORA-2014-7722/xen-4.3.2-6.fc20 5 https://admin.fedoraproject.org/updates/FEDORA-2014-7751/apt-cacher-ng-0.7.26-2.fc20 4 https://admin.fedoraproject.org/updates/FEDORA-2014-7779/mediawiki-1.21.11-1.fc20 4 https://admin.fedoraproject.org/updates/FEDORA-2014-7799/openstack-ceilometer-2013.2.3-2.fc20 4 https://admin.fedoraproject.org/updates/FEDORA-2014-7780/python-pycadf-0.5.1-1.fc20 2 https://admin.fedoraproject.org/updates/FEDORA-2014-7836/cacti-0.8.8b-7.fc20 1 https://admin.fedoraproject.org/updates/FEDORA-2014-7896/zarafa-7.1.10-1.fc20 1 https://admin.fedoraproject.org/updates/FEDORA-2014-7936/python3-3.3.2-16.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2014-7954/openstack-nova-2013.2.3-2.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2014-7964/owncloud-6.0.4-1.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2014-7992/file-5.19-1.fc20 The following Fedora 20 Critical Path updates have yet to be approved: Age URL 4 https://admin.fedoraproject.org/updates/FEDORA-2014-7789/libndp-1.3-1.fc20 2 https://admin.fedoraproject.org/updates/FEDORA-2014-7857/python-mako-1.0.0-1.fc20 2 https://admin.fedoraproject.org/updates/FEDORA-2014-7868/gnome-shell-3.10.4-6.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2014-7968/perl-Pod-Usage-1.64-1.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2014-7990/chrony-1.30-1.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2014-7992/file-5.19-1.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2014-7980/gdb-7.7.1-15.fc20 The following builds have been pushed to Fedora 20 updates-testing R-qtl-1.32.10-3.fc20 chrony-1.30-1.fc20 fence-agents-4.0.10-1.fc20 file-5.19-1.fc20 gdb-7.7.1-15.fc20 gfal2-python-1.5.0-1.fc20 gnupg-1.4.18-1.fc20 groonga-4.0.3-1.fc20 octomap-1.6.6-3.fc20 ovirt-guest-agent-1.0.10-1.fc20 perl-Geo-IPfree-1.1.4.1.6.7.0-1.fc20 perl-Pod-Usage-1.64-1.fc20 python3-dugong-3.1-1.fc20 root-5.34.18-4.fc20 rtl-sdr-0.5.3-1.fc20 scap-security-guide-0.1.5-2.fc20 ucblogo-6.0-14.fc20 Details about builds: ================================================================================ R-qtl-1.32.10-3.fc20 (FEDORA-2014-7976) Tools for analyzing QTL experiments -------------------------------------------------------------------------------- Update Information: - run tests also on secondary arches Version 1.32, 2014-05-28: Major changes: * None. Minor changes: * fitqtl with model="normal" now returns residuals as an attribute. * Added an additional argument to plot.scanone, bgrect, for making the background of the plotting region a different color. * Revised cleanGeno to work with any cross having two possible genotypes (i.e., not just bc but also riself, risib, dh, haploid). * Revised summary.cross so that overall genotype frequencies are given separately for autosomes and the X chromosome. * Fixed typo in a warning in add.threshold. * Fixed a bug in reduce2grid, regarding format of attributes * Fixed a bug in MQM: in some circumstances, the last marker was always included as cofactor; other cleanup in MQM code. Version 1.32, 2014-05-28: Major changes: * None. Minor changes: * fitqtl with model="normal" now returns residuals as an attribute. * Added an additional argument to plot.scanone, bgrect, for making the background of the plotting region a different color. * Revised cleanGeno to work with any cross having two possible genotypes (i.e., not just bc but also riself, risib, dh, haploid). * Revised summary.cross so that overall genotype frequencies are given separately for autosomes and the X chromosome. * Fixed typo in a warning in add.threshold. * Fixed a bug in reduce2grid, regarding format of attributes * Fixed a bug in MQM: in some circumstances, the last marker was always included as cofactor; other cleanup in MQM code. Version 1.32, 2014-05-28: Major changes: * None. Minor changes: * fitqtl with model="normal" now returns residuals as an attribute. * Added an additional argument to plot.scanone, bgrect, for making the background of the plotting region a different color. * Revised cleanGeno to work with any cross having two possible genotypes (i.e., not just bc but also riself, risib, dh, haploid). * Revised summary.cross so that overall genotype frequencies are given separately for autosomes and the X chromosome. * Fixed typo in a warning in add.threshold. * Fixed a bug in reduce2grid, regarding format of attributes * Fixed a bug in MQM: in some circumstances, the last marker was always included as cofactor; other cleanup in MQM code. Version 1.32, 2014-05-28: Major changes: * None. Minor changes: * fitqtl with model="normal" now returns residuals as an attribute. * Added an additional argument to plot.scanone, bgrect, for making the background of the plotting region a different color. * Revised cleanGeno to work with any cross having two possible genotypes (i.e., not just bc but also riself, risib, dh, haploid). * Revised summary.cross so that overall genotype frequencies are given separately for autosomes and the X chromosome. * Fixed typo in a warning in add.threshold. * Fixed a bug in reduce2grid, regarding format of attributes * Fixed a bug in MQM: in some circumstances, the last marker was always included as cofactor; other cleanup in MQM code. -------------------------------------------------------------------------------- ChangeLog: * Tue Jul 1 2014 Jakub Čajka <jcajka@xxxxxxxxxx> - 1.32.10-3 - Changed stack limit on ppc64 and s390x to allow checks to pass * Sat Jun 28 2014 Mattias Ellert <mattias.ellert@xxxxxxxxxxxx> - 1.32.10-2 - Disable checks on ppc64 * Wed Jun 25 2014 Mattias Ellert <mattias.ellert@xxxxxxxxxxxx> - 1.32.10-1 - Update to 1.32.10 - Use R-core-devel instead of R-devel as BR - Re-enable checks * Fri Jun 6 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.31.9-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ chrony-1.30-1.fc20 (FEDORA-2014-7990) An NTP client/server -------------------------------------------------------------------------------- Update Information: This is update to the latest upstream release. It includes many enhancements and bug fixes. http://chrony.tuxfamily.org/News.html -------------------------------------------------------------------------------- ChangeLog: * Tue Jul 1 2014 Miroslav Lichvar <mlichvar@xxxxxxxxxx> 1.30-1 - update to 1.30 - enable debug messages * Mon Jun 9 2014 Miroslav Lichvar <mlichvar@xxxxxxxxxx> 1.30-0.1.pre1 - update to 1.30-pre1 - execute test suite - avoid calling systemctl in helper script - call chronyc directly from logrotate and NM dispatcher scripts - add conflict with systemd-timesyncd service * Sat Jun 7 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.29.1-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ fence-agents-4.0.10-1.fc20 (FEDORA-2014-7978) Fence Agents for Red Hat Cluster -------------------------------------------------------------------------------- Update Information: new upstream release -------------------------------------------------------------------------------- ChangeLog: -------------------------------------------------------------------------------- ================================================================================ file-5.19-1.fc20 (FEDORA-2014-7992) A utility for determining file types -------------------------------------------------------------------------------- Update Information: Security update to new File version 5.19 fixing 8 CVEs found in previous two months. -------------------------------------------------------------------------------- ChangeLog: * Wed Jun 25 2014 Jan Kaluza <jkaluza@xxxxxxxxxx> - 5.19-1 - fix #1011789 - update to version 5.19 * Sat Jun 7 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 5.14-22 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Tue May 27 2014 Kalev Lember <kalevlember@xxxxxxxxx> - 5.14-21 - Rebuilt for https://fedoraproject.org/wiki/Changes/Python_3.4 -------------------------------------------------------------------------------- References: [ 1 ] Bug #805197 - CVE-2012-1571 file: out of bounds read in CDF parser https://bugzilla.redhat.com/show_bug.cgi?id=805197 [ 2 ] Bug #1091842 - CVE-2014-0207 file: cdf_read_short_sector insufficient boundary check https://bugzilla.redhat.com/show_bug.cgi?id=1091842 [ 3 ] Bug #1098222 - CVE-2014-0235 file: extensive backtracking in awk rule regular expression (incomplete fix for CVE-2013-7345) https://bugzilla.redhat.com/show_bug.cgi?id=1098222 [ 4 ] Bug #1104858 - CVE-2014-3480 file: cdf_count_chain insufficient boundary check https://bugzilla.redhat.com/show_bug.cgi?id=1104858 [ 5 ] Bug #1104863 - CVE-2014-3478 file: mconvert incorrect handling of truncated pascal string size https://bugzilla.redhat.com/show_bug.cgi?id=1104863 [ 6 ] Bug #1104869 - CVE-2014-3479 file: cdf_check_stream_offset insufficient boundary check https://bugzilla.redhat.com/show_bug.cgi?id=1104869 [ 7 ] Bug #1107544 - CVE-2014-3487 file: cdf_read_property_info insufficient boundary check https://bugzilla.redhat.com/show_bug.cgi?id=1107544 [ 8 ] Bug #1098193 - CVE-2014-0237 file: cdf_unpack_summary_info() excessive looping DoS https://bugzilla.redhat.com/show_bug.cgi?id=1098193 -------------------------------------------------------------------------------- ================================================================================ gdb-7.7.1-15.fc20 (FEDORA-2014-7980) A GNU source-level debugger for C, C++, Fortran, Go and other languages -------------------------------------------------------------------------------- Update Information: Fix crash on optimized-out entry data values (BZ 1111910). -------------------------------------------------------------------------------- ChangeLog: * Tue Jul 1 2014 Jan Kratochvil <jan.kratochvil@xxxxxxxxxx> - 7.7.1-15.fc21 - Fix memory errors with demangled name hash (Tom Tromey). * Mon Jun 30 2014 Jan Kratochvil <jan.kratochvil@xxxxxxxxxx> - 7.7.1-14.fc21 - Fix crash on optimized-out entry data values (BZ 1111910). -------------------------------------------------------------------------------- References: [ 1 ] Bug #1111910 - [abrt] gdb: __memcmp_sse4_1(): gdb killed by SIGSEGV https://bugzilla.redhat.com/show_bug.cgi?id=1111910 -------------------------------------------------------------------------------- ================================================================================ gfal2-python-1.5.0-1.fc20 (FEDORA-2014-7971) Python bindings for gfal 2 -------------------------------------------------------------------------------- Update Information: Update for upstream release 1.5.0 -------------------------------------------------------------------------------- ChangeLog: * Tue Jul 1 2014 Alejandro Alvarez <aalvarez at cern.ch> - 1.5.0-1 - Update for release 1.5.0 -------------------------------------------------------------------------------- ================================================================================ gnupg-1.4.18-1.fc20 (FEDORA-2014-7991) A GNU utility for secure communication and data storage -------------------------------------------------------------------------------- Update Information: New upstream v1.4.18 Fix a regression in 1.4.17 if more than one keyid is given to --recv-keys et al. Cap RSA and Elgamal keysize at 4096 bit also for unattended key generation. -------------------------------------------------------------------------------- ChangeLog: * Mon Jun 30 2014 Brian C. Lane <bcl@xxxxxxxxxx> 1.4.18-1 - New upstream v1.4.18 - Fix a regression in 1.4.17 if more than one keyid is given to --recv-keys et al. - Cap RSA and Elgamal keysize at 4096 bit also for unattended key generation. -------------------------------------------------------------------------------- ================================================================================ groonga-4.0.3-1.fc20 (FEDORA-2014-7977) An Embeddable Fulltext Search Engine -------------------------------------------------------------------------------- Update Information: Update to 4.0.3. See http://groonga.org/docs/news.html#release-4-0-3-2014-06-29 Update to 4.0.2. See http://groonga.org/en/blog/2014/05/29/release.html -------------------------------------------------------------------------------- ChangeLog: * Tue Jul 1 2014 HAYASHI Kentaro <hayashi@xxxxxxxxxxxxxx> - 4.0.3-1 - new upstream release. * Sat Jun 7 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 4.0.2-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Fri May 30 2014 HAYASHI Kentaro <hayashi@xxxxxxxxxxxxxx> - 4.0.2-1 - new upstream release. -------------------------------------------------------------------------------- ================================================================================ octomap-1.6.6-3.fc20 (FEDORA-2014-7970) Efficient Probabilistic 3D Mapping Framework Based on Octrees -------------------------------------------------------------------------------- Update Information: Initial import of octomap -------------------------------------------------------------------------------- References: [ 1 ] Bug #1107422 - Review Request: octomap - Efficient Probabilistic 3D Mapping Framework Based on Octrees https://bugzilla.redhat.com/show_bug.cgi?id=1107422 -------------------------------------------------------------------------------- ================================================================================ ovirt-guest-agent-1.0.10-1.fc20 (FEDORA-2014-7969) The oVirt Guest Agent -------------------------------------------------------------------------------- Update Information: Update to upstream ovirt-3.5 / ovirt-guest-agent 1.0.10 Fix of broken dependency. Even though oVirt depends on the qemu-guest-agent for features only implemented in it, the dependency has to be removed since it couldn't be resolved. This is an update that fixes problems with Single Sign On on oVirt with fedora 20+ Additional it provides an update to use logind for session locking -------------------------------------------------------------------------------- ChangeLog: * Tue Jul 1 2014 Vinzenz Feenstra <evilissimo@xxxxxxxxxx> - 1.0.10-1 - Update to upstream version 1.0.10 * Mon Mar 31 2014 Vinzenz Feenstra <evilissimo@xxxxxxxxxx> - 1.0.9-3 - The ovirt-guest-agent-gdm-plugin is now noarch * Mon Mar 31 2014 Vinzenz Feenstra <evilissimo@xxxxxxxxxx> - 1.0.9-2 - Support for logind based session locking -------------------------------------------------------------------------------- ================================================================================ perl-Geo-IPfree-1.1.4.1.6.7.0-1.fc20 (FEDORA-2014-7972) Look up the country of an IPv4 Address -------------------------------------------------------------------------------- Update Information: This release updates IP address database. -------------------------------------------------------------------------------- ChangeLog: * Tue Jul 1 2014 Petr Pisar <ppisar@xxxxxxxxxx> - 1.1.4.1.6.7.0-1 - 1.141670 bump -------------------------------------------------------------------------------- ================================================================================ perl-Pod-Usage-1.64-1.fc20 (FEDORA-2014-7968) Print a usage message from embedded POD documentation -------------------------------------------------------------------------------- Update Information: This release corrects documentation. -------------------------------------------------------------------------------- ChangeLog: * Tue Jul 1 2014 Petr Pisar <ppisar@xxxxxxxxxx> - 1.64-1 - 1.64 bump -------------------------------------------------------------------------------- References: [ 1 ] Bug #1115055 - perl-Pod-Usage-1.64 is available https://bugzilla.redhat.com/show_bug.cgi?id=1115055 -------------------------------------------------------------------------------- ================================================================================ python3-dugong-3.1-1.fc20 (FEDORA-2014-7984) Python 3.x HTTP 1.1 client module -------------------------------------------------------------------------------- Update Information: Dependency for s3ql 2.8+ -------------------------------------------------------------------------------- References: [ 1 ] Bug #1111689 - Review Request: python3-dugong - Python 3.x HTTP 1.1 client module https://bugzilla.redhat.com/show_bug.cgi?id=1111689 -------------------------------------------------------------------------------- ================================================================================ root-5.34.18-4.fc20 (FEDORA-2014-7985) Numerical data analysis framework -------------------------------------------------------------------------------- Update Information: Add missing package dependency: root-gui-ged requires root-tree-player -------------------------------------------------------------------------------- ChangeLog: * Mon Jun 30 2014 Mattias Ellert <mattias.ellert@xxxxxxxxxxxx> - 5.34.18-4 - Add Requires on root-tree-player to root-gui-ged * Sun Jun 8 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 5.34.18-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Sun May 4 2014 Mattias Ellert <mattias.ellert@xxxxxxxxxxxx> - 5.34.18-2 - Rebuild for ruby 2.1 - Fix build failure on F21 (missing symbol in libProofx linking) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1105802 - Unable to modify certain parameters of plots https://bugzilla.redhat.com/show_bug.cgi?id=1105802 -------------------------------------------------------------------------------- ================================================================================ rtl-sdr-0.5.3-1.fc20 (FEDORA-2014-7989) SDR utilities for Realtek RTL2832 based DVB-T dongles -------------------------------------------------------------------------------- Update Information: This is new version of rtl-sdr package. -------------------------------------------------------------------------------- ChangeLog: * Tue Jul 1 2014 Jaroslav Škarvada <jskarvad@xxxxxxxxxx> - 0.5.3-1 - New version Resolves: rhbz#1114342 - Dropped rtl-sdr-0-lib64-fix patch (upstreamed) - Enabled detaching of kernel driver * Sun Jun 8 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0-0.4.20130403git4a068f56 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1114342 - rtl-sdr-0.5.3 is available https://bugzilla.redhat.com/show_bug.cgi?id=1114342 -------------------------------------------------------------------------------- ================================================================================ scap-security-guide-0.1.5-2.fc20 (FEDORA-2014-7983) Security guidance and baselines in SCAP formats -------------------------------------------------------------------------------- Update Information: Rebase the RHEL part of SSG to the latest upstream version (0.1.18) -------------------------------------------------------------------------------- ChangeLog: * Tue Jul 1 2014 Šimon Lukašík <slukasik@xxxxxxxxxx> - 0.1.5-2 - Rebase the RHEL part of SSG to the latest upstream version (0.1.18) - Add STIG DISCLAIMER to the shipped documentation -------------------------------------------------------------------------------- ================================================================================ ucblogo-6.0-14.fc20 (FEDORA-2014-7982) An interpreter for the Logo programming language -------------------------------------------------------------------------------- Update Information: Fix FTBFS (#992830) using patch by Dave Allan -------------------------------------------------------------------------------- ChangeLog: * Tue Jul 1 2014 Matěj Cepl <mcepl@xxxxxxxxxx> - 6.0-14 - Fix FTBFS (#992830) using patch by Dave Allan * Sun Jun 8 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 6.0-13 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Sun Aug 4 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 6.0-12 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #992830 - ucblogo: FTBFS in rawhide https://bugzilla.redhat.com/show_bug.cgi?id=992830 -------------------------------------------------------------------------------- -- test mailing list test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe: https://admin.fedoraproject.org/mailman/listinfo/test
