The following Fedora 20 Security updates need testing: Age URL 63 https://admin.fedoraproject.org/updates/FEDORA-2014-5897/nrpe-2.15-2.fc20 43 https://admin.fedoraproject.org/updates/FEDORA-2014-6551/chicken-4.8.0.6-2.fc20 41 https://admin.fedoraproject.org/updates/FEDORA-2014-6615/drupal7-views-3.8-1.fc20 21 https://admin.fedoraproject.org/updates/FEDORA-2014-7348/ReviewBoard-1.7.26-2.fc20,python-django-evolution-0.6.9-4.fc20 15 https://admin.fedoraproject.org/updates/FEDORA-2014-5497/openstack-keystone-2013.2.3-4.fc20 14 https://admin.fedoraproject.org/updates/FEDORA-2014-7523/readline-6.2-10.fc20 13 https://admin.fedoraproject.org/updates/FEDORA-2014-7551/asterisk-11.10.2-2.fc20 13 https://admin.fedoraproject.org/updates/FEDORA-2014-7577/claws-mail-3.10.1-1.fc20,claws-mail-plugins-3.10.1-1.fc20 12 https://admin.fedoraproject.org/updates/FEDORA-2014-7613/perl-Email-Address-1.905-1.fc20 9 https://admin.fedoraproject.org/updates/FEDORA-2014-7697/dpkg-1.16.15-1.fc20 7 https://admin.fedoraproject.org/updates/FEDORA-2014-7799/openstack-ceilometer-2013.2.3-2.fc20 7 https://admin.fedoraproject.org/updates/FEDORA-2014-7780/python-pycadf-0.5.1-1.fc20 5 https://admin.fedoraproject.org/updates/FEDORA-2014-7836/cacti-0.8.8b-7.fc20 4 https://admin.fedoraproject.org/updates/FEDORA-2014-7896/zarafa-7.1.10-1.fc20 3 https://admin.fedoraproject.org/updates/FEDORA-2014-7936/python3-3.3.2-16.fc20 3 https://admin.fedoraproject.org/updates/FEDORA-2014-7954/openstack-nova-2013.2.3-2.fc20 3 https://admin.fedoraproject.org/updates/FEDORA-2014-7964/owncloud-6.0.4-1.fc20 1 https://admin.fedoraproject.org/updates/FEDORA-2014-8032/ansible-1.6.6-1.fc20 1 https://admin.fedoraproject.org/updates/FEDORA-2014-8021/docker-io-1.0.0-6.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2014-7657/couchdb-1.6.0-6.fc20,erlang-ibrowse-4.0.1-1.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2014-8059/dbus-1.6.12-9.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2014-8065/rubygem-activerecord-4.0.0-3.fc20 The following Fedora 20 Critical Path updates have yet to be approved: Age URL 7 https://admin.fedoraproject.org/updates/FEDORA-2014-7789/libndp-1.3-1.fc20 5 https://admin.fedoraproject.org/updates/FEDORA-2014-7857/python-mako-1.0.0-1.fc20 5 https://admin.fedoraproject.org/updates/FEDORA-2014-7868/gnome-shell-3.10.4-6.fc20 2 https://admin.fedoraproject.org/updates/FEDORA-2014-7968/perl-Pod-Usage-1.64-1.fc20 2 https://admin.fedoraproject.org/updates/FEDORA-2014-7980/gdb-7.7.1-15.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2014-8083/fftw-3.3.4-3.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2014-8077/xorg-x11-xauth-1.0.9-1.fc20 The following builds have been pushed to Fedora 20 updates-testing 389-ds-base-1.3.2.19-1.fc20 bleachbit-1.2-1.fc20 brd-1.0-2.fc20 celestia-1.6.1-15.fc20 couchdb-1.6.0-6.fc20 diskimage-builder-0.1.15-3.fc20 elpa-2013.11-3.008.fc20 erlang-ibrowse-4.0.1-1.fc20 fftw-3.3.4-3.fc20 jupp-27-1.fc20 mksh-50-1.fc20 rcssserver3d-0.6.8.1-1.fc20 xorg-x11-xauth-1.0.9-1.fc20 Details about builds: ================================================================================ 389-ds-base-1.3.2.19-1.fc20 (FEDORA-2014-8071) 389 Directory Server (base) -------------------------------------------------------------------------------- Update Information: 389-ds-base-1.3.2.19 release - several bug fixes 389-ds-base-1.3.2.3 release - several bug fixes -------------------------------------------------------------------------------- ChangeLog: * Thu Jul 3 2014 Noriko Hosoi <nhosoi@xxxxxxxxxx> - 1.3.2.19-1 - Bump version to 1.3.2.19 - Ticket 47779 - Potential deadlock after startup if a dna configuration change is made - Ticket 47839 - 389-ds production segfault: __memcpy_sse2_unaligned... * Tue Jul 1 2014 Noriko Hosoi <nhosoi@xxxxxxxxxx> - 1.3.2.18-1 - Release 1.3.2.18 - Ticket 47750 - Creating a glue fails if one above level is a conflict or missing - Ticket 47763 - winsync plugin modify is broken - Ticket 47821 - deref plugin cannot handle complex acis - Ticket 47831 - server restart wipes out index config if there is a default index - Ticket 47817 - The error result text message should be obtained just prior to sending result - Ticket 47815 - Add operations rejected by betxn plugins remain in cache - Ticket 47809 - find a way to remove replication plugin errors messages "changelog iteration code returned a dummy entry with csn %s, skipping ..." - Ticket 47704 - invalid sizelimits in aci group evaluation - Ticket 47813 - remove "goto bail" from previous commit - Ticket 47813 - managed entry plugin fails to update member pointer on modrdn operation - Ticket 47808 - If be_txn plugin fails in ldbm_back_add, adding entry is double freed. - Ticket 47770 - #481 breaks possibility to reassemble memberuid list * Thu May 29 2014 Noriko Hosoi <nhosoi@xxxxxxxxxx> - 1.3.2.17-1 - Release 1.3.2.17 - Ticket 47446 - logconv.pl memory continually grows - Ticket 47713 - Logconv.pl with an empty access log gives lots of errors - Ticket 47806 - Failed deletion of aci: no such attribute - bump version - Ticket 47720 - Normalization from old DN format to New DN format doesnt handel condition properly when there is space in a suffix after the seperator operator. - Ticket 47670 - Aci warnings in error log - Ticket 47721 - Schema Replication Issue (follow up) - Ticket 47721 - Schema Replication Issue (follow up + cleanup) - Ticket 47721 - Schema Replication Issue - Ticket 47676 - (cont.) Replication of the schema fails 'master branch' -> 1.2.11 or 1.3.1 - Ticket 47676 - Replication of the schema fails 'master branch' -> 1.2.11 or 1.3.1 - Ticket 47541 - Fix Jenkins errors - Ticket 47541 - Replication of the schema may overwrite consumer 'attributetypes' even if consumer definition is a superset - Ticket 47804 - db2bak.pl error with changelogdb - Ticket 47780 - Some VLV search request causes memory leaks - Ticket 47787 - A replicated MOD fails (Unwilling to perform) if it targets a tombstone - Ticket 47764 - Problem with deletion while replicated - Ticket 47750 - Creating a glue fails if one above level is a conflict or missing; Ticket 47696 - Large Searches Hang - Possibly entryrdn related - Ticket 47772 - fix coverity issue - Ticket 47793 - Server crashes if uniqueMember is invalid syntax and memberOf plugin is enabled. - Ticket 47792 - database plugins need a way to call betxn plugins - Ticket 47707 - 389 DS Server crashes and dies while handles paged searches from clients - Ticket 47792 - code cleanup - Ticket 47779 - Need to lock server list when removing list - Ticket 47771 - Move parentsdn initialization to avoid crash - Ticket 47779 - Part of DNA shared configuration is deleted after server restart - Ticket 346 - Slow ldapmodify operation time for large quantities of multi-valued attribute values - Ticket 47782 - Parent numbordinate count can be incorrectly updated if an error occurs - Ticket 47772 - empty modify returns LDAP_INVALID_DN_SYNTAX - Ticket 47774 - mem leak in do_search - rawbase not freed upon certain errors - Ticket 47773 - mem leak in do_bind when there is an error - Ticket 47771 - Performing deletes during tombstone purging results in operation errors - Ticket 47767 - Nested tombstones become orphaned after purge - Ticket 47766 - Tombstone purging can crash the server if the backend is stopped/disabled - Ticket 47759 - Crash in replication when server is under write load - Ticket 47740 - Fix coverity issues(part 7) - Ticket 47748 - Simultaneous adding a user and binding as the user could fail in the password policy check - Ticket 47743 - Memory leak with proxy auth control - Ticket 47740 - Crash caused by changes to certmap.c - Ticket 47733 - ds logs many "Operation error fetching Null DN" messages - Ticket 47740 - Fix coverity issues: null deferences - Part 6 - Ticket 47732 - ds logs many "SLAPI_PLUGIN_BE_TXN_POST_DELETE_FN plugin returned error" messages - Ticket 47740 - Coverity issue in 1.3.3 - Ticket 47735 - e_uniqueid fails to set if an entry is a conflict entry - Ticket 47740 - Fix coverity issues - Part 5 - Ticket 47740 - Fix coverity erorrs - Part 4 - Ticket 47640 - Fix coverity issues - part 3 - Ticket 47740 - Fix sync plugin resource leaks - Ticket 47538 - RFE: repl-monitor.pl plain text output, cmdline config options - Ticket 47740 - Coverity Fixes (Mark - part 1) - Ticket 47734 - Change made in resolving ticket #346 fails on Debian SPARC64 - Ticket 47722 - Fixed filter not correctly identified - Ticket 47722 - rsearch filter error on any search filter -------------------------------------------------------------------------------- ================================================================================ bleachbit-1.2-1.fc20 (FEDORA-2014-8075) Python utility to free disk space and improve privacy -------------------------------------------------------------------------------- Update Information: BleachBit 1.2 fixes overwriting free disk space. -------------------------------------------------------------------------------- ChangeLog: * Fri Jun 20 2014 Christopher Meng <rpm@xxxxxxxx> - 1.2-1 - Update to 1.2 * Sat Jun 7 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.1-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1106347 - bleachbit-1.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=1106347 -------------------------------------------------------------------------------- ================================================================================ brd-1.0-2.fc20 (FEDORA-2014-8069) Scans directories and files for damage due to decay of storage medium -------------------------------------------------------------------------------- Update Information: Initial release. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1112434 - Review Request: brd - Scans directories and files for damage due to decay of storage medium https://bugzilla.redhat.com/show_bug.cgi?id=1112434 -------------------------------------------------------------------------------- ================================================================================ celestia-1.6.1-15.fc20 (FEDORA-2014-8080) OpenGL real-time visual space simulation -------------------------------------------------------------------------------- Update Information: Fix startup, thanks to a patch from Chris Rankin -------------------------------------------------------------------------------- ChangeLog: * Thu Jul 3 2014 Richard Hughes <richard@xxxxxxxxxxx> - 1.6.1-15 - Fix startup, thanks to a patch from Chris Rankin - Resolves: #1045632 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1045632 - [abrt] celestia: luaD_throw(): celestia killed by SIGABRT https://bugzilla.redhat.com/show_bug.cgi?id=1045632 -------------------------------------------------------------------------------- ================================================================================ couchdb-1.6.0-6.fc20 (FEDORA-2014-7657) A document database server, accessible via a RESTful JSON API -------------------------------------------------------------------------------- Update Information: - erlang-ibrowse: ver. 4.0.1 - erlang-ibrowse: support only Fedora 18+, EL6+ - erlang-ibrowse: added patch for CouchDB 1.6.0 - CouchDB: ver. 1.6.0 - CouchDB: silence stdout/stderr to prevent redundant flooding of /var/log/messages CouchDB already logs these messages to /var/log/couchdb/couch.log Instead print the log filename to stdout, in case a user who ran it from the CLI is confused about where the messages went. - CouchDB: -couch_ini accepts .ini or a .d/ directory. For directories it reads any *.ini file. Fixes #1002277. -------------------------------------------------------------------------------- ChangeLog: * Thu Jul 3 2014 Warren Togami <wtogami@xxxxxxxxx> - 1.6.0-6 - silence stdout/stderr to prevent redundant flooding of /var/log/messages CouchDB already logs these messages to /var/log/couchdb/couch.log Instead print the log filename to stdout, in case a user who ran it from the CLI is confused about where the messages went. - -couch_ini accepts .ini or a .d/ directory. For directories it reads any *.ini file. Fixes #1002277. * Mon Jun 23 2014 Peter Lemenkov <lemenkov@xxxxxxxxx> - 1.6.0-2 - Fix building with sligntly older gcc/glibc * Sun Jun 22 2014 Peter Lemenkov <lemenkov@xxxxxxxxx> - 1.6.0-1 - Ver. 1.6.0 * Sat Jun 7 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.5.0-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Fri Feb 14 2014 David Tardon <dtardon@xxxxxxxxxx> - 1.5.0-2 - rebuild for new ICU -------------------------------------------------------------------------------- References: [ 1 ] Bug #1082168 - CVE-2014-2668 couchdb: remote denial of service flaw https://bugzilla.redhat.com/show_bug.cgi?id=1082168 -------------------------------------------------------------------------------- ================================================================================ diskimage-builder-0.1.15-3.fc20 (FEDORA-2014-8074) Image building tools for OpenStack -------------------------------------------------------------------------------- Update Information: Add patch Remove-fixfiles-from-rpm-distro-finalize.patch -------------------------------------------------------------------------------- ChangeLog: * Wed Jul 2 2014 James Slagle <jslagle@xxxxxxxxxx> - 0.1.15-3 - Add patch Remove-fixfiles-from-rpm-distro-finalize.patch * Sat Jun 7 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.1.15-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ elpa-2013.11-3.008.fc20 (FEDORA-2014-8068) High-performance library for parallel solution of eigenvalue problems -------------------------------------------------------------------------------- Update Information: ELPA is a Fortran-based high-performance computational library for the (massively) parallel solution of symmetric or Hermitian, standard or generalized eigenvalue problems. http://elpa.rzg.mpg.de/ -------------------------------------------------------------------------------- References: [ 1 ] Bug #1112864 - Review Request: elpa - High-performance library for parallel solution of eigenvalue problems https://bugzilla.redhat.com/show_bug.cgi?id=1112864 -------------------------------------------------------------------------------- ================================================================================ erlang-ibrowse-4.0.1-1.fc20 (FEDORA-2014-7657) Erlang HTTP client -------------------------------------------------------------------------------- Update Information: - erlang-ibrowse: ver. 4.0.1 - erlang-ibrowse: support only Fedora 18+, EL6+ - erlang-ibrowse: added patch for CouchDB 1.6.0 - CouchDB: ver. 1.6.0 - CouchDB: silence stdout/stderr to prevent redundant flooding of /var/log/messages CouchDB already logs these messages to /var/log/couchdb/couch.log Instead print the log filename to stdout, in case a user who ran it from the CLI is confused about where the messages went. - CouchDB: -couch_ini accepts .ini or a .d/ directory. For directories it reads any *.ini file. Fixes #1002277. -------------------------------------------------------------------------------- ChangeLog: * Mon Jun 23 2014 Peter Lemenkov <lemenkov@xxxxxxxxx> - 4.0.1-1 - Ver. 4.0.1 - Support only Fedora 18+, EL6+ - Added patch for CouchDB 1.6.0 * Sat Jun 7 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 2.2.0-9 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1082168 - CVE-2014-2668 couchdb: remote denial of service flaw https://bugzilla.redhat.com/show_bug.cgi?id=1082168 -------------------------------------------------------------------------------- ================================================================================ fftw-3.3.4-3.fc20 (FEDORA-2014-8083) A Fast Fourier Transform library -------------------------------------------------------------------------------- Update Information: Flip on AVX on x86 processors. -------------------------------------------------------------------------------- ChangeLog: * Thu Jul 3 2014 Conrad Meyer <cemeyer@xxxxxx> - 3.3.4-3 - Build with --enable-avx (rhbz# 1114964) * Sat Jun 7 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 3.3.4-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1114964 - no AVX support https://bugzilla.redhat.com/show_bug.cgi?id=1114964 -------------------------------------------------------------------------------- ================================================================================ jupp-27-1.fc20 (FEDORA-2014-8086) Compact and feature-rich WordStar-compatible editor -------------------------------------------------------------------------------- Update Information: Changes for jupp 27 =================== * Completely rewritten wctype and wctrans code to go with the completely rewritten wcwidth code from earlier. Accompanying update from Unicode 3.0.0 (and even there I’m sceptic) to Unicode 7.0.0… * Minor fixes to C language syntax highlighting; use it for NXC too * Fix compilation on SuSE Linux 1.0 (portability) * Stop trying to match ed(1) diffs for highlighting (false positives) * Fix a prototype mistake (Michael Tautschnig) and a missing joe macro * Add cp437 encoding -------------------------------------------------------------------------------- ChangeLog: * Thu Jul 3 2014 Robert Scheck <robert@xxxxxxxxxxxxxxxxx> 27-1 - Upgrade to 27 * Sun Jun 8 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 26-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ mksh-50-1.fc20 (FEDORA-2014-8076) MirBSD enhanced version of the Korn Shell -------------------------------------------------------------------------------- Update Information: R50 is a recommended bugfix release: * Fix initial IFS whitespace not being ignored when expanding * MKSH_BINSHREDUCED no longer mistakenly enables brace expansion * Explain more clearly Vi input mode limitations in the manpage * Improve error reporting of the check.pl script (which needs a maintainer since I don’t speak any perl(1), really), for lewellyn * Use $TMPDIR in test.sh for scratch space * Check that the scratch space is not mounted noexec * Use termcap(5) names, not terminfo(5) names, in tput(1) examples, for improved portability (e.g. to MidnightBSD) * Avoid C99 Undefined Behaviour in mirtoconf LFS test (inspired by Debian #742780) * Fix ${!foo} for when foo is unset * Improve nameref error checking (LP#1277691) * Fix readonly bypass found by Bert Münnich * Improved system reporting for Mac OS X * Explain better [[ extglob handling in the manpage * Remove arr=([index]=value) syntax due to regressions * IFS-split arithmetic expansions as per POSIX 201x * Add more detailed Authors section to manpage * Fix set ±p issue for good: drop privs unless requested * Improve signal handling and use a more canonical probing order * Fix return values $? and ${PIPESTATUS[*]} interaction with set -o pipefail and COMSUBs * Detect ENOEXEC ELF files and use a less confusing error message * Update to Unicode 7.0.0 * Shut up valgrind in the $RANDOM code * Use -fstack-protector-strong in favour of -fstack-protector-all * Fix access-after-free crash spotted by Enjolras via IRC -------------------------------------------------------------------------------- ChangeLog: * Thu Jul 3 2014 Robert Scheck <robert@xxxxxxxxxxxxxxxxx> 50-1 - Upgrade to 50 * Sat Jun 7 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 49-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ rcssserver3d-0.6.8.1-1.fc20 (FEDORA-2014-8070) Robocup 3D Soccer Simulation Server -------------------------------------------------------------------------------- Update Information: Latest version for RoboCup 2014 Update to 0.6.8 with some enhancements for RoboCup 2014 competitions. Update to 0.6.8 with some enhancements for RoboCup 2014 competitions. -------------------------------------------------------------------------------- ChangeLog: * Fri Jul 4 2014 Hedayat Vatankhah <hedayat.fwd+rpmchlog@xxxxxxxxx> - 0.6.8.1-1 - Update to 0.6.8.1 with bug fixes for RoboCup 2014 * Sun Jun 8 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.6.8-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Sat May 31 2014 Hedayat Vatankhah <hedayat.fwd+rpmchlog@xxxxxxxxx> - 0.6.8-1 - Update to version 0.6.8 * Fri May 23 2014 David Tardon <dtardon@xxxxxxxxxx> - 0.6.7-4 - rebuild for boost 1.55.0 -------------------------------------------------------------------------------- ================================================================================ xorg-x11-xauth-1.0.9-1.fc20 (FEDORA-2014-8077) X.Org X11 X authority utilities -------------------------------------------------------------------------------- Update Information: - Rebase to 1.0.9 (rhbz#1018603) - Fixes ssh -Y failure from remote GDM session (rhbz#505545) -------------------------------------------------------------------------------- ChangeLog: * Thu Jul 3 2014 Hans de Goede <hdegoede@xxxxxxxxxx> - 1:1.0.9-1 - Rebase to 1.0.9 (rhbz#1018603) - Fixes ssh -Y failure from remote GDM session (rhbz#505545) * Sun Jun 8 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1:1.0.7-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1018603 - xorg-x11-xauth-1.0.9 is available https://bugzilla.redhat.com/show_bug.cgi?id=1018603 [ 2 ] Bug #505545 - ssh -Y fails from remote GDM session https://bugzilla.redhat.com/show_bug.cgi?id=505545 -------------------------------------------------------------------------------- -- test mailing list test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe: https://admin.fedoraproject.org/mailman/listinfo/test
