The following Fedora 20 Security updates need testing: Age URL 91 https://admin.fedoraproject.org/updates/FEDORA-2014-5897/nrpe-2.15-2.fc20 71 https://admin.fedoraproject.org/updates/FEDORA-2014-6551/chicken-4.8.0.6-2.fc20 69 https://admin.fedoraproject.org/updates/FEDORA-2014-6615/drupal7-views-3.8-1.fc20 41 https://admin.fedoraproject.org/updates/FEDORA-2014-7551/asterisk-11.10.2-2.fc20 40 https://admin.fedoraproject.org/updates/FEDORA-2014-7613/perl-Email-Address-1.905-1.fc20 31 https://admin.fedoraproject.org/updates/FEDORA-2014-7936/python3-3.3.2-16.fc20 22 https://admin.fedoraproject.org/updates/FEDORA-2014-8065/rubygem-activerecord-4.0.0-4.fc20 20 https://admin.fedoraproject.org/updates/FEDORA-2014-5497/openstack-keystone-2013.2.3-5.fc20 18 https://admin.fedoraproject.org/updates/FEDORA-2014-8334/python-bottle-0.12.6-1.fc20 15 https://admin.fedoraproject.org/updates/FEDORA-2014-8412/mosquitto-1.3.2-1.fc20 13 https://admin.fedoraproject.org/updates/FEDORA-2014-8458/gd-2.1.0-6.fc20 9 https://admin.fedoraproject.org/updates/FEDORA-2014-8189/krb5-1.11.5-10.fc20 6 https://admin.fedoraproject.org/updates/FEDORA-2014-8865/exim-4.80.1-7.fc20 6 https://admin.fedoraproject.org/updates/FEDORA-2014-8790/trafficserver-4.2.1.1-0.fc20 5 https://admin.fedoraproject.org/updates/FEDORA-2014-8901/ansible-1.6.10-1.fc20 1 https://admin.fedoraproject.org/updates/FEDORA-2014-8976/libndp-1.4-1.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2014-9063/pixman-0.30.0-4.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2014-9052/drupal7-date-2.8-1.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2014-9092/libplist-1.11-2.fc20,libusbmuxd-1.0.9-2.fc20,libimobiledevice-1.1.6-2.fc20,usbmuxd-1.0.9-0.4.c24463e.fc20,ifuse-1.1.3-3.fc20,libgpod-0.8.3-2.fc20,upower-0.9.23-3.fc20,gvfs-1.18.3-3.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2014-9082/tor-0.2.4.23-1.fc20 The following Fedora 20 Critical Path updates have yet to be approved: Age URL 9 https://admin.fedoraproject.org/updates/FEDORA-2014-8189/krb5-1.11.5-10.fc20 4 https://admin.fedoraproject.org/updates/FEDORA-2014-8922/gnome-shell-3.10.4-8.fc20,mutter-3.10.4-3.fc20 3 https://admin.fedoraproject.org/updates/FEDORA-2014-8938/gssdp-0.14.9-1.fc20 3 https://admin.fedoraproject.org/updates/FEDORA-2014-8949/ibus-1.5.8-1.fc20 1 https://admin.fedoraproject.org/updates/FEDORA-2014-9024/evolution-3.10.4-3.fc20 1 https://admin.fedoraproject.org/updates/FEDORA-2014-8976/libndp-1.4-1.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2014-9092/libplist-1.11-2.fc20,libusbmuxd-1.0.9-2.fc20,libimobiledevice-1.1.6-2.fc20,usbmuxd-1.0.9-0.4.c24463e.fc20,ifuse-1.1.3-3.fc20,libgpod-0.8.3-2.fc20,upower-0.9.23-3.fc20,gvfs-1.18.3-3.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2014-9063/pixman-0.30.0-4.fc20 The following builds have been pushed to Fedora 20 updates-testing Xnee-3.19-1.fc20 anki-2.0.28-1.fc20 apache-commons-logging-1.1.3-8.fc20 cockpit-0.18-1.fc20 cross-gcc-4.9.1-1.fc20 curl-7.32.0-12.fc20 drupal7-date-2.8-1.fc20 drupal7-features-2.1-1.fc20 golang-github-codegangsta-cli-1.1.0-1.fc20 golang-github-docker-libcontainer-1.1.0-6.fc20 golang-github-tchap-go-patricia-1.0.1-4.fc20 groonga-4.0.4-1.fc20 gvfs-1.18.3-3.fc20 ifuse-1.1.3-3.fc20 libgpod-0.8.3-2.fc20 libguestfs-1.26.7-1.fc20 libimobiledevice-1.1.6-2.fc20 libplist-1.11-2.fc20 libusbmuxd-1.0.9-2.fc20 lmiwbem-0.2.0-9.fc20 mariadb-galera-5.5.38-1.fc20 mlpack-1.0.9-1.fc20 nicotine+-1.2.16-9.fc20 nomacs-2.0.2-1.fc20 numactl-2.0.9-2.fc20 opendkim-2.9.2-1.fc20 packagedb-cli-2.5-1.fc20 pcaro-hermit-fonts-1.21-4.fc20 perl-App-CSV-0.08-3.fc20 perl-Exception-Tiny-0.2.1-2.fc20 perl-Mail-GnuPG-0.20-1.fc20 php-guzzlehttp-guzzle-4.1.4-1.fc20 php-guzzlehttp-streams-1.4.0-1.fc20 php-symfony-icu-1.2.2-1.fc20 phpMyAdmin-4.2.7-1.fc20 pixman-0.30.0-4.fc20 poezio-0.8.1-1.fc20 python-httpretty-0.8.3-1.fc20 python-rhsm-1.12.5-1.fc20 python-six-1.7.3-1.fc20 python-tox-1.7.1-2.fc20 python-virtualenv-1.11.6-1.fc20 retrace-server-1.12-2.fc20 subscription-manager-1.12.11-1.fc20 t-digest-3.0-1.fc20 tor-0.2.4.23-1.fc20 tpm-tools-1.3.8-6.fc20 uid_wrapper-1.0.2-1.fc20 upower-0.9.23-3.fc20 usbmuxd-1.0.9-0.4.c24463e.fc20 Details about builds: ================================================================================ Xnee-3.19-1.fc20 (FEDORA-2014-9090) X11 environment recorder -------------------------------------------------------------------------------- Update Information: Update to latest version -------------------------------------------------------------------------------- ChangeLog: * Wed Jul 30 2014 Matthieu Saulnier <fantom@xxxxxxxxxxxxxxxxx> - 3.19-1 - Update to 3.19 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1095296 - Xnee-3.19 is available https://bugzilla.redhat.com/show_bug.cgi?id=1095296 -------------------------------------------------------------------------------- ================================================================================ anki-2.0.28-1.fc20 (FEDORA-2014-9071) Flashcard program for using space repetition learning -------------------------------------------------------------------------------- Update Information: Update to new bugfix upstream release 2.0.28. * More reliable media sync. * New default Anki folder is ~/Documents/Anki (Anki will use a previous Anki folder if it exists, please rename it manually if you wish to use the new location.) * Compatibility with new online synchronization protocol version. * Minor enhancements. * Minor bug fixes. Please see http://www.ankisrs.net/docs/changes.html for details. -------------------------------------------------------------------------------- ChangeLog: * Wed Jul 30 2014 Christian Krause <chkr@xxxxxxxxxxxxxxxxx> - 2.0.28-1 - Update to new upstream version 2.0.28 (BZ 1123961) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1123961 - anki-2.0.28 is available https://bugzilla.redhat.com/show_bug.cgi?id=1123961 -------------------------------------------------------------------------------- ================================================================================ apache-commons-logging-1.1.3-8.fc20 (FEDORA-2014-9062) Apache Commons Logging -------------------------------------------------------------------------------- Update Information: This update fixes a bug that caused diffirent Commons Logging JAR files to have identical OSGi Bundle-SymbolicName and therefore made them unusable in OSGi environments, such as Eclipse. -------------------------------------------------------------------------------- ChangeLog: * Thu Jul 31 2014 Mikolaj Izdebski <mizdebsk@xxxxxxxxxx> - 1.1.3-8 - Generate different Bundle-SymbolicName for different JARs - Resolves: rhbz#1123055 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1123055 - OSGi info duplicated/clashing across jars https://bugzilla.redhat.com/show_bug.cgi?id=1123055 -------------------------------------------------------------------------------- ================================================================================ cockpit-0.18-1.fc20 (FEDORA-2014-9031) A user interface for Linux servers -------------------------------------------------------------------------------- Update Information: Update to 0.18 release Update to 0.16 release Update to 0.15 release Update to 0.14 release Update to 0.13 release Update to upstream 0.12 release Update to upstream 0.11 release Update to upstream 0.10 release Update to upstream 0.8 Update to upstream 0.5 release Update to upstream 0.4 release Update to upstream 0.3 release, including new UI look, and Docker container support Primary package. Update to upstream 0.9 release -------------------------------------------------------------------------------- References: [ 1 ] Bug #1061056 - Review Request: cockpit - A user interface for Linux servers https://bugzilla.redhat.com/show_bug.cgi?id=1061056 -------------------------------------------------------------------------------- ================================================================================ cross-gcc-4.9.1-1.fc20 (FEDORA-2014-9068) Cross C compiler -------------------------------------------------------------------------------- Update Information: Move to 4.9.1 to avoid incorrect stack red-zoning on x86_64 [gcc bz 61904] Add support for nios2 and build libgcc for cris Move to using gcc-4.9 Move to using gcc-4.9 Add support for nios2 and build libgcc for cris Move to using gcc-4.9 Move to using gcc-4.9 -------------------------------------------------------------------------------- ChangeLog: * Mon Jul 28 2014 David Howells <dhowells@xxxxxxxxxx> - 4.9.1-1 - Rebase on gcc-4.9.1-2 [gcc BZ 61904 / 61801]. * Fri Jul 18 2014 David Howells <dhowells@xxxxxxxxxx> - 4.9.0-4 - Enable libgcc building on cris [gcc BZ 61737]. - Add NIOS2 arch support. * Mon Jul 7 2014 David Howells <dhowells@xxxxxxxxxx> - 4.9.0-3 - Enable libgcc building on s390x [BZ 1116185]. * Mon Jun 16 2014 David Howells <dhowells@xxxxxxxxxx> - 4.9.0-2 - Rebase on gcc-4.9.0-14. * Mon Jun 16 2014 David Howells <dhowells@xxxxxxxxxx> - 4.9.0-1 - Move to gcc-4.9.0. -------------------------------------------------------------------------------- ================================================================================ curl-7.32.0-12.fc20 (FEDORA-2014-9070) A utility for getting files from remote servers (FTP, HTTP, and others) -------------------------------------------------------------------------------- Update Information: - fix endless loop with GSSAPI proxy auth (patches by David Woodhouse, #1118751) -------------------------------------------------------------------------------- ChangeLog: * Wed Jul 30 2014 Kamil Dudka <kdudka@xxxxxxxxxx> 7.32.0-12 - fix endless loop with GSSAPI proxy auth (patches by David Woodhouse, #1118751) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1118751 - Endless loop with GSSAPI authentication to proxy https://bugzilla.redhat.com/show_bug.cgi?id=1118751 -------------------------------------------------------------------------------- ================================================================================ drupal7-date-2.8-1.fc20 (FEDORA-2014-9052) This package contains both the Date module and a Date API module -------------------------------------------------------------------------------- Update Information: Update to upstream 2.8 release due to security fix for CVE-2014-5169 -------------------------------------------------------------------------------- ChangeLog: * Thu Jul 31 2014 Jared Smith <jsmith@xxxxxxxxxxxxxxxxx> 2.8-1 - Update to upstream 2.8 release - This release fixes an XSS issue, CVE-2014-5169 * Sat Jun 7 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 2.7-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1125283 - CVE-2014-5169 drupal7-date: Cross Site Scripting (XSS) https://bugzilla.redhat.com/show_bug.cgi?id=1125283 -------------------------------------------------------------------------------- ================================================================================ drupal7-features-2.1-1.fc20 (FEDORA-2014-9033) Provides feature management for Drupal -------------------------------------------------------------------------------- Update Information: Update to upstream 2.1 release for bug fixes. For more details, refer to: https://www.drupal.org/node/2311903 -------------------------------------------------------------------------------- ChangeLog: * Wed Jul 30 2014 Paul W. Frields <stickster@xxxxxxxxx> - 2.1-1 - Update to upstream 2.1 release for bug fixes * Sat Jun 7 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 2.0-7 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1124742 - drupal7-features-2.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1124742 -------------------------------------------------------------------------------- ================================================================================ golang-github-codegangsta-cli-1.1.0-1.fc20 (FEDORA-2014-9074) Package for building command line apps in Go -------------------------------------------------------------------------------- Update Information: 27ecc97192df1bf053a22b04463f2b51b8b8373e tagged 1.1.0 update to master commit 27ecc97192df1bf053a22b04463f2b51b8b8373e initial upload. correct cp args -------------------------------------------------------------------------------- References: [ 1 ] Bug #1114175 - Review Request: golang-github-codegangsta-cli - Package for building command line apps in Go https://bugzilla.redhat.com/show_bug.cgi?id=1114175 -------------------------------------------------------------------------------- ================================================================================ golang-github-docker-libcontainer-1.1.0-6.fc20 (FEDORA-2014-9080) Configuration options for containers -------------------------------------------------------------------------------- Update Information: Resolves: rhbz#1111916 - package review request -------------------------------------------------------------------------------- References: [ 1 ] Bug #1111916 - Review Request: golang-github-docker-libcontainer - Configuration options for containers https://bugzilla.redhat.com/show_bug.cgi?id=1111916 -------------------------------------------------------------------------------- ================================================================================ golang-github-tchap-go-patricia-1.0.1-4.fc20 (FEDORA-2014-9051) A generic patricia trie implemented in Go -------------------------------------------------------------------------------- Update Information: Resolves: rhbz#1117562 - package review request -------------------------------------------------------------------------------- References: [ 1 ] Bug #1117562 - Review Request: golang-github-tchap-go-patricia - A generic patricia trie implemented in Go https://bugzilla.redhat.com/show_bug.cgi?id=1117562 -------------------------------------------------------------------------------- ================================================================================ groonga-4.0.4-1.fc20 (FEDORA-2014-9047) An Embeddable Fulltext Search Engine -------------------------------------------------------------------------------- Update Information: Update to 4.0.4. See http://groonga.org/en/blog/2014/07/29/release.html Update to 4.0.3. See http://groonga.org/docs/news.html#release-4-0-3-2014-06-29 Update to 4.0.2. See http://groonga.org/en/blog/2014/05/29/release.html -------------------------------------------------------------------------------- ChangeLog: * Thu Jul 31 2014 HAYASHI Kentaro <hayashi@xxxxxxxxxxxxxx> - 4.0.4-1 - new upstream release. * Tue Jul 1 2014 HAYASHI Kentaro <hayashi@xxxxxxxxxxxxxx> - 4.0.3-1 - new upstream release. * Sat Jun 7 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 4.0.2-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Fri May 30 2014 HAYASHI Kentaro <hayashi@xxxxxxxxxxxxxx> - 4.0.2-1 - new upstream release. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1124156 - groonga-4.0.4 is available https://bugzilla.redhat.com/show_bug.cgi?id=1124156 -------------------------------------------------------------------------------- ================================================================================ gvfs-1.18.3-3.fc20 (FEDORA-2014-9092) Backends for the gio framework in GLib -------------------------------------------------------------------------------- Update Information: Add support for devices running iOS7 Fixes CVE-2013-2142: libimobiledevice: Insecure temporary file use when both $XDG_CONFIG_HOME and $HOME are unset http://www.openwall.com/lists/oss-security/2013/06/04/11 -------------------------------------------------------------------------------- ChangeLog: * Wed Jul 30 2014 Peter Robinson <pbrobinson@xxxxxxxxxxxxxxxxx> 1.18.3-3 - Rebuild for libimobiledevice for iOS7 -------------------------------------------------------------------------------- References: [ 1 ] Bug #970172 - CVE-2013-2142 libimobiledevice: Insecure temporary file use when both $XDG_CONFIG_HOME and $HOME are unset https://bugzilla.redhat.com/show_bug.cgi?id=970172 -------------------------------------------------------------------------------- ================================================================================ ifuse-1.1.3-3.fc20 (FEDORA-2014-9092) Mount Apple iPhone and iPod touch devices -------------------------------------------------------------------------------- Update Information: Add support for devices running iOS7 Fixes CVE-2013-2142: libimobiledevice: Insecure temporary file use when both $XDG_CONFIG_HOME and $HOME are unset http://www.openwall.com/lists/oss-security/2013/06/04/11 -------------------------------------------------------------------------------- ChangeLog: * Sat Jun 7 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.1.3-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Mon May 5 2014 Peter Robinson <pbrobinson@xxxxxxxxxxxxxxxxx> 1.1.3-2 - Rebuild for libimobiledevice 1.1.6 -------------------------------------------------------------------------------- References: [ 1 ] Bug #970172 - CVE-2013-2142 libimobiledevice: Insecure temporary file use when both $XDG_CONFIG_HOME and $HOME are unset https://bugzilla.redhat.com/show_bug.cgi?id=970172 -------------------------------------------------------------------------------- ================================================================================ libgpod-0.8.3-2.fc20 (FEDORA-2014-9092) Library to access the contents of an iPod -------------------------------------------------------------------------------- Update Information: Add support for devices running iOS7 Fixes CVE-2013-2142: libimobiledevice: Insecure temporary file use when both $XDG_CONFIG_HOME and $HOME are unset http://www.openwall.com/lists/oss-security/2013/06/04/11 -------------------------------------------------------------------------------- ChangeLog: * Wed Jul 30 2014 Peter Robinson <pbrobinson@xxxxxxxxxxxxxxxxx> 0.8.3-2 - Rebuild for libimobiledevice for iOS7 -------------------------------------------------------------------------------- References: [ 1 ] Bug #970172 - CVE-2013-2142 libimobiledevice: Insecure temporary file use when both $XDG_CONFIG_HOME and $HOME are unset https://bugzilla.redhat.com/show_bug.cgi?id=970172 -------------------------------------------------------------------------------- ================================================================================ libguestfs-1.26.7-1.fc20 (FEDORA-2014-9085) Access and modify virtual machine disk images -------------------------------------------------------------------------------- Update Information: New upstream version 1.26.7. New upstream version 1.26.6. Note this disables golang support since it is broken in Fedora 20. -------------------------------------------------------------------------------- ChangeLog: * Thu Jul 31 2014 Richard W.M. Jones <rjones@xxxxxxxxxx> - 1:1.26.7-1 - New upstream version 1.26.7. * Sun Jul 27 2014 Richard W.M. Jones <rjones@xxxxxxxxxx> - 1:1.26.6-1 - New upstream version 1.26.6. - Disable golang since the Fedora package is broken again. -------------------------------------------------------------------------------- ================================================================================ libimobiledevice-1.1.6-2.fc20 (FEDORA-2014-9092) Library for connecting to mobile devices -------------------------------------------------------------------------------- Update Information: Add support for devices running iOS7 Fixes CVE-2013-2142: libimobiledevice: Insecure temporary file use when both $XDG_CONFIG_HOME and $HOME are unset http://www.openwall.com/lists/oss-security/2013/06/04/11 -------------------------------------------------------------------------------- ChangeLog: * Sat Jun 7 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.1.6-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Mon May 5 2014 Peter Robinson <pbrobinson@xxxxxxxxxxxxxxxxx> 1.1.6-1 - New 1.1.6 release * Thu Apr 24 2014 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 1.1.5-5 - disable broken -python on rawhide * Wed Apr 23 2014 Peter Robinson <pbrobinson@xxxxxxxxxxxxxxxxx> 1.1.5-4 - Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #970172 - CVE-2013-2142 libimobiledevice: Insecure temporary file use when both $XDG_CONFIG_HOME and $HOME are unset https://bugzilla.redhat.com/show_bug.cgi?id=970172 -------------------------------------------------------------------------------- ================================================================================ libplist-1.11-2.fc20 (FEDORA-2014-9092) Library for manipulating Apple Binary and XML Property Lists -------------------------------------------------------------------------------- Update Information: Add support for devices running iOS7 Fixes CVE-2013-2142: libimobiledevice: Insecure temporary file use when both $XDG_CONFIG_HOME and $HOME are unset http://www.openwall.com/lists/oss-security/2013/06/04/11 -------------------------------------------------------------------------------- ChangeLog: * Sat Jun 7 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.11-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Sat Mar 22 2014 Peter Robinson <pbrobinson@xxxxxxxxxxxxxxxxx> 1.11-1 - New upstream 1.11 release -------------------------------------------------------------------------------- References: [ 1 ] Bug #970172 - CVE-2013-2142 libimobiledevice: Insecure temporary file use when both $XDG_CONFIG_HOME and $HOME are unset https://bugzilla.redhat.com/show_bug.cgi?id=970172 -------------------------------------------------------------------------------- ================================================================================ libusbmuxd-1.0.9-2.fc20 (FEDORA-2014-9092) Client library USB multiplex daemon for Apple's iOS devices -------------------------------------------------------------------------------- Update Information: Add support for devices running iOS7 Fixes CVE-2013-2142: libimobiledevice: Insecure temporary file use when both $XDG_CONFIG_HOME and $HOME are unset http://www.openwall.com/lists/oss-security/2013/06/04/11 -------------------------------------------------------------------------------- References: [ 1 ] Bug #970172 - CVE-2013-2142 libimobiledevice: Insecure temporary file use when both $XDG_CONFIG_HOME and $HOME are unset https://bugzilla.redhat.com/show_bug.cgi?id=970172 -------------------------------------------------------------------------------- ================================================================================ lmiwbem-0.2.0-9.fc20 (FEDORA-2014-9060) Python WBEM Client -------------------------------------------------------------------------------- Update Information: drop __all__ from lmiwbem.__init__.py -------------------------------------------------------------------------------- ChangeLog: * Thu Jul 31 2014 Peter Hatina <phatina@xxxxxxxxxx> - 0.2.0-9 - drop __all__ from lmiwbem.__init__.py -------------------------------------------------------------------------------- ================================================================================ mariadb-galera-5.5.38-1.fc20 (FEDORA-2014-9054) A community developed branch of MySQL -------------------------------------------------------------------------------- Update Information: This is an update to the upstream version 5.5.38, that fixes issues described at https://kb.askmonty.org/en/mariadb-5538-changelog/ -------------------------------------------------------------------------------- ChangeLog: * Mon Jul 28 2014 Honza Horak <hhorak@xxxxxxxxxx> - 1:5.5.38-1 - Rebase to 5.5.38 https://kb.askmonty.org/en/mariadb-5538-changelog/ * Sat Jun 7 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1:5.5.37-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ mlpack-1.0.9-1.fc20 (FEDORA-2014-9077) Scalable, fast C++ machine learning library -------------------------------------------------------------------------------- Update Information: Update to latest stable release. -------------------------------------------------------------------------------- ChangeLog: * Mon Jul 28 2014 Ryan Curtin <ryan@xxxxxxxxx> - 1.0.9-1 - Update to latest stable release. * Sat Jun 7 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.0.8-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Fri May 23 2014 Petr Machata <pmachata@xxxxxxxxxx> - 1.0.8-3 - Rebuild for boost 1.55.0 -------------------------------------------------------------------------------- ================================================================================ nicotine+-1.2.16-9.fc20 (FEDORA-2014-9044) A client for the SoulSeek file sharing network -------------------------------------------------------------------------------- Update Information: This update enables UPnP support in Nicotine+. It also fixes crashes on filelist scanning with corrupt files. -------------------------------------------------------------------------------- ChangeLog: * Thu Jul 31 2014 Mohamed El Morabity <melmorabity@xxxxxxxxxxxxxxxxx> - 1.2.16-9 - Fix #RHBZ 1009934 - Add python-miniupnpc as Requires for UPnP support - Spec cleanup -------------------------------------------------------------------------------- References: [ 1 ] Bug #1009934 - [abrt] nicotine+-1.2.16-7.fc19 https://bugzilla.redhat.com/show_bug.cgi?id=1009934 -------------------------------------------------------------------------------- ================================================================================ nomacs-2.0.2-1.fc20 (FEDORA-2014-9041) Lightweight image viewer -------------------------------------------------------------------------------- Update Information: Version bump. -------------------------------------------------------------------------------- ChangeLog: * Thu Jul 31 2014 TI_Eugene <ti.eugene@xxxxxxxxx> 2.0.2-1 - Version bump. * Sat Jun 7 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.6.4-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ numactl-2.0.9-2.fc20 (FEDORA-2014-9089) Library for tuning for Non Uniform Memory Access machines -------------------------------------------------------------------------------- Update Information: fixed segfault on non-NUMA systems (bz1080421) -------------------------------------------------------------------------------- ChangeLog: * Thu Jul 31 2014 Petr Holasek <pholasek@xxxxxxxxxx> 2.0.9-2 - fixed segfault on non-NUMA systems (bz1080421) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1080421 - [abrt] numactl: numa_distance(): numactl killed by SIGSEGV https://bugzilla.redhat.com/show_bug.cgi?id=1080421 -------------------------------------------------------------------------------- ================================================================================ opendkim-2.9.2-1.fc20 (FEDORA-2014-9038) A DomainKeys Identified Mail (DKIM) milter to sign and/or verify mail -------------------------------------------------------------------------------- Update Information: Updating to newer upstream source: 2.9.2 -------------------------------------------------------------------------------- ChangeLog: * Wed Jul 30 2014 Steve Jenkins <steve@xxxxxxxxxxxxxxxx> - 2.9.2-1 - Updated to use newer upstream 2.9.2 source code - Fixed invalid date in changelog * Sat Jun 7 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 2.9.0-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #973541 - opendkim-2.9.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=973541 -------------------------------------------------------------------------------- ================================================================================ packagedb-cli-2.5-1.fc20 (FEDORA-2014-9069) A CLI for pkgdb -------------------------------------------------------------------------------- Update Information: Packagedb-cli Release 2.5 * Fix logging (cf rhbz#1123524) * Add the update_critpath -------------------------------------------------------------------------------- ChangeLog: * Wed Jul 30 2014 Pierre-Yves Chibon <pingou@xxxxxxxxxxxx> - 2.5-1 - Update to 2.5 - Fixes https://bugzilla.redhat.com/1123524 (Don't add stream handler to root logger in library) - Add the update_critpath method to pkgdb2client -------------------------------------------------------------------------------- References: [ 1 ] Bug #1123524 - Don't add stream handler to root logger in library https://bugzilla.redhat.com/show_bug.cgi?id=1123524 -------------------------------------------------------------------------------- ================================================================================ pcaro-hermit-fonts-1.21-4.fc20 (FEDORA-2014-9050) Hermit monospace fonts -------------------------------------------------------------------------------- Update Information: New package pcaro-hermit-fonts -------------------------------------------------------------------------------- References: [ 1 ] Bug #1124070 - Review Request: pcaro-hermit-fonts - Monospace fonts for programming https://bugzilla.redhat.com/show_bug.cgi?id=1124070 -------------------------------------------------------------------------------- ================================================================================ perl-App-CSV-0.08-3.fc20 (FEDORA-2014-9034) App::CSV Perl module -------------------------------------------------------------------------------- Update Information: New package to manage csv files via CLI :) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1062942 - Review Request: perl-App-CSV - The CSV command line Tool https://bugzilla.redhat.com/show_bug.cgi?id=1062942 -------------------------------------------------------------------------------- ================================================================================ perl-Exception-Tiny-0.2.1-2.fc20 (FEDORA-2014-9088) Tiny Perl exception interface -------------------------------------------------------------------------------- Update Information: This package contains Exception::Tiny. It is a simple exception interface. This is the implementation of the minimum required in order to implement exception handling so that anyone can understand the implementation. -------------------------------------------------------------------------------- ================================================================================ perl-Mail-GnuPG-0.20-1.fc20 (FEDORA-2014-9066) Process email with GPG -------------------------------------------------------------------------------- Update Information: -------------------------------------------------------------------------------- ChangeLog: * Wed Jul 30 2014 Ralf Corsépius <corsepiu@xxxxxxxxxxxxxxxxx> - 0.20-1 - Upstream update. -------------------------------------------------------------------------------- ================================================================================ php-guzzlehttp-guzzle-4.1.4-1.fc20 (FEDORA-2014-9078) PHP HTTP client and webservice framework -------------------------------------------------------------------------------- Update Information: 4.1.4 (2014-07-22) ------------------ * Fixed a bug that caused multi-part POST requests with more than one field to serialize incorrectly. * Paths can now be set to "0" * `ResponseInterface::xml` now accepts a `libxml_options` option and added a missing default argument that was required when parsing XML response bodies. * A `save_to` stream is now created lazily, which means that files are not created on disk unless a request succeeds. 4.1.3 (2014-07-15) ------------------ * Various fixes to multipart/form-data POST uploads * Wrapping function.php in an if-statement to ensure Guzzle can be used globally and in a Composer install * Fixed an issue with generating and merging in events to an event array * POST headers are only applied before sending a request to allow you to change the query aggregator used before uploading * Added much more robust query string parsing * Fixed various parsing and normalization issues with URLs * Fixing an issue where multi-valued headers were not being utilized correctly in the StreamAdapter -------------------------------------------------------------------------------- ChangeLog: * Wed Jul 30 2014 Shawn Iwinski <shawn.iwinski@xxxxxxxxx> - 4.1.4-1 - Updated to 4.1.4 (BZ #1124226) - Added %license usage -------------------------------------------------------------------------------- References: [ 1 ] Bug #1124226 - php-guzzlehttp-guzzle-4.1.4 is available https://bugzilla.redhat.com/show_bug.cgi?id=1124226 -------------------------------------------------------------------------------- ================================================================================ php-guzzlehttp-streams-1.4.0-1.fc20 (FEDORA-2014-9035) Provides a simple abstraction over streams of data -------------------------------------------------------------------------------- Update Information: 1.4.0 (2014-07-19) ------------------ * Added a LazyOpenStream 1.3.0 (2014-07-15) ------------------ * Added an AppendStream to stream over multiple stream one after the other. 1.2.0 (2014-07-15) ------------------ * Updated the ``detach()`` method to return the underlying stream resource or ``null`` if it does not wrap a resource. * Multiple fixes for how streams behave when the underlying resource is detached * Do not clear statcache when a stream does not have a 'uri' * Added a fix to LimitStream * Added a condition to ensure that functions.php can be required multiple times -------------------------------------------------------------------------------- ChangeLog: -------------------------------------------------------------------------------- References: [ 1 ] Bug #1124227 - php-guzzlehttp-streams-1.4.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1124227 -------------------------------------------------------------------------------- ================================================================================ php-symfony-icu-1.2.2-1.fc20 (FEDORA-2014-9040) Symfony Icu Component -------------------------------------------------------------------------------- Update Information: Updated to 1.2.2 Git diff: v1.2.1 to v1.2.2: https://github.com/symfony/Icu/compare/v1.2.1...v1.2.2 -------------------------------------------------------------------------------- ChangeLog: * Thu Jul 31 2014 Shawn Iwinski <shawn.iwinski@xxxxxxxxx> - 1.2.2-1 - Updated to 1.2.2 (BZ #1124230) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1124230 - php-symfony-icu-1.1.2/1.2.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=1124230 -------------------------------------------------------------------------------- ================================================================================ phpMyAdmin-4.2.7-1.fc20 (FEDORA-2014-9056) Handle the administration of MySQL over the World Wide Web -------------------------------------------------------------------------------- Update Information: phpMyAdmin 4.2.7.0 (2014-07-31) =============================== - Broken links on home page - Overlap in navigation panel - Action icons not in horizontal order - s_attention.png is missing - Uncaught TypeError: Cannot call method 'substr' of undefined - PMA 4.2.x and HHVM - mysql_doc_template is not defined -------------------------------------------------------------------------------- ChangeLog: * Thu Jul 31 2014 Robert Scheck <robert@xxxxxxxxxxxxxxxxx> 4.2.7-1 - Upgrade to 4.2.7 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1125363 - phpMyAdmin-4.2.7 is available https://bugzilla.redhat.com/show_bug.cgi?id=1125363 -------------------------------------------------------------------------------- ================================================================================ pixman-0.30.0-4.fc20 (FEDORA-2014-9063) Pixel manipulation library -------------------------------------------------------------------------------- Update Information: CVE-2013-6425, added patches from https://bugzilla.redhat.com/show_bug.cgi?id=1043743 -------------------------------------------------------------------------------- ChangeLog: * Wed Jul 30 2014 Jared Smith <jsmith@xxxxxxxxxxxxxxxxx> - 0.30.0-4 - Added patches from https://bugzilla.redhat.com/show_bug.cgi?id=1043743 - These patches address CVE-2013-6425 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1037975 - CVE-2013-6425 pixman: integer underflow when handling trapezoids https://bugzilla.redhat.com/show_bug.cgi?id=1037975 -------------------------------------------------------------------------------- ================================================================================ poezio-0.8.1-1.fc20 (FEDORA-2014-9075) IRC-like jabber (XMPP) console client -------------------------------------------------------------------------------- Update Information: Update to latest version -------------------------------------------------------------------------------- ChangeLog: * Wed Jul 30 2014 Matthieu Saulnier <fantom@xxxxxxxxxxxxxxxxx> - 0.8.1-1 - Update to 0.8.1 stable release * Sat Jun 7 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.8-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Thu May 22 2014 Bohuslav Kabrda <bkabrda@xxxxxxxxxx> - 0.8-2 - Rebuilt for https://fedoraproject.org/wiki/Changes/Python_3.4 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1119433 - poezio-0.8.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1119433 -------------------------------------------------------------------------------- ================================================================================ python-httpretty-0.8.3-1.fc20 (FEDORA-2014-9042) HTTP request mock tool for Python -------------------------------------------------------------------------------- Update Information: HTTP request mock tool for Python -------------------------------------------------------------------------------- References: [ 1 ] Bug #1036755 - Review Request: python-httpretty - HTTP client mock for Python https://bugzilla.redhat.com/show_bug.cgi?id=1036755 -------------------------------------------------------------------------------- ================================================================================ python-rhsm-1.12.5-1.fc20 (FEDORA-2014-9064) A Python library to communicate with a Red Hat Unified Entitlement Platform -------------------------------------------------------------------------------- Update Information: Fix for Bugzilla #1122772 and #1120431 -------------------------------------------------------------------------------- ChangeLog: * Fri Jul 25 2014 jesus m. rodriguez <jesusr@xxxxxxxxxx> 1.12.5-1 - 1120431: Support for complex path matching. (bkearney@xxxxxxxxxx) * Thu Jul 3 2014 jesus m. rodriguez <jesusr@xxxxxxxxxx> 1.12.4-1 - Add required bz flags to tito releasers. (dgoodwin@xxxxxxxxxx) - Remove pyqver verbose flag. (alikins@xxxxxxxxxx) - Use tox.ini to setup pep8 for 'make stylish' (alikins@xxxxxxxxxx) - Update pyqver setup. Set min version of 2.7. (alikins@xxxxxxxxxx) - Add libcrypto to list of libs to link to. (bcourt@xxxxxxxxxx) -------------------------------------------------------------------------------- ================================================================================ python-six-1.7.3-1.fc20 (FEDORA-2014-9032) Python 2 and 3 compatibility utilities -------------------------------------------------------------------------------- Update Information: - Latest upstream -------------------------------------------------------------------------------- ChangeLog: * Thu Jul 31 2014 Pádraig Brady <pbrady@xxxxxxxxxx> - 1.7.3-1 - Latest upstream * Sat Jun 7 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.6.1-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Thu May 8 2014 Orion Poplawski <orion@xxxxxxxxxxxxx> - 1.6.1-2 - Rebuild for Python 3.4 -------------------------------------------------------------------------------- ================================================================================ python-tox-1.7.1-2.fc20 (FEDORA-2014-9084) Virtualenv-based automation of test activities -------------------------------------------------------------------------------- Update Information: Tox 1.7.1 requires virtualenv >= 1.11.2 -------------------------------------------------------------------------------- ChangeLog: * Wed Jul 30 2014 Matthias Runge <mrunge@xxxxxxxxxx> - 1.7.1-2 - require virtualenv >= 1.11.2 (rhbz#1122603) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1122603 - Tox 1.7.1 requires virtualenv>=1.11.2 https://bugzilla.redhat.com/show_bug.cgi?id=1122603 -------------------------------------------------------------------------------- ================================================================================ python-virtualenv-1.11.6-1.fc20 (FEDORA-2014-9084) Tool to create isolated Python environments -------------------------------------------------------------------------------- Update Information: Tox 1.7.1 requires virtualenv >= 1.11.2 -------------------------------------------------------------------------------- ChangeLog: * Wed Jul 9 2014 Matthias Runge <mrunge@xxxxxxxxxx> - 1.11.6-1 - update to 1.11.6: Upstream updated setuptools to 3.6, updated pip to 1.5.6 * Sun Jun 8 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.10.1-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1122603 - Tox 1.7.1 requires virtualenv>=1.11.2 https://bugzilla.redhat.com/show_bug.cgi?id=1122603 -------------------------------------------------------------------------------- ================================================================================ retrace-server-1.12-2.fc20 (FEDORA-2014-9086) Application for remote coredump analysis -------------------------------------------------------------------------------- Update Information: update to 1.12 -------------------------------------------------------------------------------- ChangeLog: * Thu Jul 31 2014 Michal Toman <mtoman@xxxxxxxxxx> 1.12-1 - do not run kmem on vmcores by default - fix group readability of vmcores - add support for lzop compression - add DeleteFailedTaskAfter config option - add arch-based remote execution - add set-success and set-fail actions to retrace-server-interact - add config sanity checks to retrace-server-cleanup -------------------------------------------------------------------------------- ================================================================================ subscription-manager-1.12.11-1.fc20 (FEDORA-2014-9064) Tools and libraries for subscription and repository management -------------------------------------------------------------------------------- Update Information: Fix for Bugzilla #1122772 and #1120431 -------------------------------------------------------------------------------- ChangeLog: * Wed Jul 30 2014 Alex Wood <awood@xxxxxxxxxx> 1.12.11-1 - 1124726: Man page entry for '--no-subscriptions' option (wpoteat@xxxxxxxxxx) - 1122772: yum repolist now displays warning when appropriate. (csnyder@xxxxxxxxxx) * Fri Jul 25 2014 jesus m. rodriguez <jesusr@xxxxxxxxxx> 1.12.10-1 - Revert "1114132: subman-gui and other tools are disabled in container mode." (jesusr@xxxxxxxxxx) - Revert "include dirent.h" (jesusr@xxxxxxxxxx) * Fri Jul 25 2014 jesus m. rodriguez <jesusr@xxxxxxxxxx> 1.12.9-1 - include dirent.h (jesusr@xxxxxxxxxx) * Fri Jul 25 2014 jesus m. rodriguez <jesusr@xxxxxxxxxx> 1.12.8-1 - 1039577: simplify reposgui gpgcheck control (ckozak@xxxxxxxxxx) - 1046132: Makes rhsm-icon slightly less annoying. (csnyder@xxxxxxxxxx) - 1054632: Adds '7.x' to how to launch section of manual. (csnyder@xxxxxxxxxx) - 1065158: Prompt for environment on registration when necessary (ckozak@xxxxxxxxxx) - 1114126: Container mode message is written to stderr (csnyder@xxxxxxxxxx) - 1114132: subman-gui and other tools are disabled in container mode. (csnyder@xxxxxxxxxx) - 1115499: Allow enable/disable repos in same command. (dgoodwin@xxxxxxxxxx) - 1118012: Fixes several typos in man page. (csnyder@xxxxxxxxxx) - 1121251: rhsm-debug system does not bash-complete for "--no-subscriptions" (wpoteat@xxxxxxxxxx) - 1121272: fix typo that blocked enabling repos via CLI (ckozak@xxxxxxxxxx) - cleanup and fix gui pool reselection on refresh (ckozak@xxxxxxxxxx) - Force subscription-manager yum plugin to respect the managed root (rholy@xxxxxxxxxx) - Force product-id yum plugin to respect the managed root (rholy@xxxxxxxxxx) - Display other overrides in the gui (ckozak@xxxxxxxxxx) * Thu Jul 3 2014 jesus m. rodriguez <jesusr@xxxxxxxxxx> 1.12.7-1 - 1114117: Allow subscriptions to be excluded from rhsm-debug data collection (wpoteat@xxxxxxxxxx) - Remove debugging print line from managerlib (ckozak@xxxxxxxxxx) * Mon Jun 30 2014 jesus m. rodriguez <jesusr@xxxxxxxxxx> 1.12.6-1 - 1022622: Modifies --no-overlap to show pools which provide products not already covered. (csnyder@xxxxxxxxxx) - Reload ostree_config after updating remotes. (alikins@xxxxxxxxxx) - Fix iniparse tidy import. (alikins@xxxxxxxxxx) - Remove noise debug logging. (alikins@xxxxxxxxxx) - Include 'tls-ca-path' for ostree remote configs. (alikins@xxxxxxxxxx) - Use iniparse.util.tidy if installed. (alikins@xxxxxxxxxx) - Fix odd ostree repo config whitespace issues. (alikins@xxxxxxxxxx) - Always update ostree refspec when adding remotes. (alikins@xxxxxxxxxx) * Thu Jun 26 2014 Adrian Likins <alikins@xxxxxxxxxx> 1.12.5-1 - Merge pull request #978 from candlepin/alikins/ostree_gpg_http (alikins@xxxxxxxxxx) - Merge pull request #979 from candlepin/csnyder/help_message_identity_force (jmrodri@xxxxxxxxx) - Use rhsm.baseurl for ostree urls as well. (alikins@xxxxxxxxxx) - Handle Content.gpg="http://" as gpg-verify=false (alikins@xxxxxxxxxx) - 1107810: Updates help message for identity --force. (csnyder@xxxxxxxxxx) - Merge pull request #977 from candlepin/alikins/handle_no_origin (dgoodwin@rm- rf.ca) - Merge pull request #974 from cgwalters/doc-typos (jmrodri@xxxxxxxxx) - Merge pull request #973 from candlepin/alikins/1112282_cond_ostree_rpm (jmrodri@xxxxxxxxx) - make has_ostree use macro value NOT hardcoded value. (jesusr@xxxxxxxxxx) - Handle missing or empty ostree origin file. (alikins@xxxxxxxxxx) - Fix saving ostree remote configs with gpg set. (alikins@xxxxxxxxxx) - plugin/ostree: Fix doc typos (walters@xxxxxxxxxx) - Merge pull request #972 from candlepin/ckozak/fix_custom_fact_log (jmrodri@xxxxxxxxx) - Merge pull request #968 from candlepin/alikins/setup_py (jmrodri@xxxxxxxxx) - 1112282: Dont build ostree plugin subpackage < 7 (alikins@xxxxxxxxxx) - Merge pull request #966 from candlepin/alikins/1108257_rhel_5_workstation_special (c4kofony@xxxxxxxxx) - Add required bz flags to tito releaser definition. (dgoodwin@xxxxxxxxxx) - 1112326: remove extra '/' from custom fact loading error logging (ckozak@xxxxxxxxxx) - Allow tests to run in any TZ (mstead@xxxxxxxxxx) - Temp ignore use of subprocess.check_output (alikins@xxxxxxxxxx) - Add test cases for 'rhel-5-workstation' tags. (alikins@xxxxxxxxxx) - 1108257: special case prod tag rhel-5-workstation (alikins@xxxxxxxxxx) - Add a simple setup.py. (alikins@xxxxxxxxxx) - Merge pull request #965 from candlepin/alikins/good_enthusiasm_pep8 (dgoodwin @rm-rf.ca) - Turn off verbose mode of pyqver. (alikins@xxxxxxxxxx) - make stylish cleanups for new pep8 (alikins@xxxxxxxxxx) - Add tox.ini with ignores for pep8 indention (alikins@xxxxxxxxxx) * Thu Jun 19 2014 Devan Goodwin <dgoodwin@xxxxxxxx> 1.12.4-1 - Fix broken logging statement in container mode. (dgoodwin@xxxxxxxxxx) - 1067035: Move Subscription Manager version for better layout (wpoteat@xxxxxxxxxx) -------------------------------------------------------------------------------- ================================================================================ t-digest-3.0-1.fc20 (FEDORA-2014-9081) A new data structure for on-line accumulation of statistics -------------------------------------------------------------------------------- Update Information: A new data structure for accurate on-line accumulation of rank-based statistics such as quantiles and trimmed means. The t-digest algorithm is also very parallel friendly making it useful in map-reduce and parallel streaming applications. The t-digest construction algorithm uses a variant of 1-dimensional k-means clustering to product a data structure that is related to the Q-digest. This t-digest data structure can be used to estimate quantiles or compute other rank statistics. The advantage of the t-digest over the Q-digest is that the t-digest can handle floating point values while the Q-digest is limited to integers. With small changes, the t-digest can handle any values from any ordered set that has something akin to a mean. The accuracy of quantile estimates produced by t-digests can be orders of magnitude more accurate than those produced by Q-digests in spite of the fact that t-digests are more compact when stored on disk. In summary, the particularly interesting characteristics of the t-digest are that it has smaller summaries than Q-digest works on doubles as well as integers. provides part per million accuracy for extreme quantiles and typically <1000 ppm accuracy for middle quantiles is fast is very simple has a reference implementation that has > 90% test coverage can be used with map-reduce very easily because digests can be merged -------------------------------------------------------------------------------- References: [ 1 ] Bug #1121402 - Review Request: t-digest https://bugzilla.redhat.com/show_bug.cgi?id=1121402 -------------------------------------------------------------------------------- ================================================================================ tor-0.2.4.23-1.fc20 (FEDORA-2014-9082) Anonymizing overlay network for TCP (The onion router) -------------------------------------------------------------------------------- Update Information: Security fix for CVE-2014-5117 -------------------------------------------------------------------------------- ChangeLog: * Thu Jul 31 2014 Jamie Nguyen <jamielinux@xxxxxxxxxxxxxxxxx> - 0.2.4.23-1 - update to upstream release 0.2.4.23 - CVE-2014-5117: potential for traffic-confirmation attacks -------------------------------------------------------------------------------- References: [ 1 ] Bug #1124964 - CVE-2014-5117 tor: potential for traffic-confirmation attacks https://bugzilla.redhat.com/show_bug.cgi?id=1124964 -------------------------------------------------------------------------------- ================================================================================ tpm-tools-1.3.8-6.fc20 (FEDORA-2014-9079) Management tools for the TPM hardware -------------------------------------------------------------------------------- Update Information: This update fixes the ability of tpm-tools to use NVRAM areas. Previously this functionality was disabled by a patch that worked around a build issue in v1.3.7. The patch is no longer necessary with v1.3.8 and it has been dropped. -------------------------------------------------------------------------------- ChangeLog: * Thu Apr 3 2014 Michal Schmidt <mschmidt@xxxxxxxxxx> - 1.3.8-6 - Fix FTBFS with current autotools (#1083627) - Drop tpm-tools-1.3.7-build.patch, the package builds without it (#952372) -------------------------------------------------------------------------------- References: [ 1 ] Bug #952372 - tpm-tools-1.3.7-build.patch comments out necessary functionality https://bugzilla.redhat.com/show_bug.cgi?id=952372 -------------------------------------------------------------------------------- ================================================================================ uid_wrapper-1.0.2-1.fc20 (FEDORA-2014-9036) A wrapper for privilege separation -------------------------------------------------------------------------------- Update Information: Update to version 1.0.2. -------------------------------------------------------------------------------- ChangeLog: * Thu Jul 31 2014 - Andreas Schneider <asn@xxxxxxxxxx> - 1.0.2-1 - Update to version 1.0.2. -------------------------------------------------------------------------------- ================================================================================ upower-0.9.23-3.fc20 (FEDORA-2014-9092) Power Management Service -------------------------------------------------------------------------------- Update Information: Add support for devices running iOS7 Fixes CVE-2013-2142: libimobiledevice: Insecure temporary file use when both $XDG_CONFIG_HOME and $HOME are unset http://www.openwall.com/lists/oss-security/2013/06/04/11 -------------------------------------------------------------------------------- ChangeLog: * Wed Jul 30 2014 Peter Robinson <pbrobinson@xxxxxxxxxxxxxxxxx> 0.9.23-3 - Rebuild for libimobiledevice for iOS7 -------------------------------------------------------------------------------- References: [ 1 ] Bug #970172 - CVE-2013-2142 libimobiledevice: Insecure temporary file use when both $XDG_CONFIG_HOME and $HOME are unset https://bugzilla.redhat.com/show_bug.cgi?id=970172 -------------------------------------------------------------------------------- ================================================================================ usbmuxd-1.0.9-0.4.c24463e.fc20 (FEDORA-2014-9092) Daemon for communicating with Apple's iOS devices -------------------------------------------------------------------------------- Update Information: Add support for devices running iOS7 Fixes CVE-2013-2142: libimobiledevice: Insecure temporary file use when both $XDG_CONFIG_HOME and $HOME are unset http://www.openwall.com/lists/oss-security/2013/06/04/11 -------------------------------------------------------------------------------- ChangeLog: * Wed Jul 30 2014 Peter Robinson <pbrobinson@xxxxxxxxxxxxxxxxx> 1.0.9-0.4.c24463e - Add upstream patch for systemd support * Sun Jun 8 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.0.9-0.3.c24463e - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Mon Apr 21 2014 Peter Robinson <pbrobinson@xxxxxxxxxxxxxxxxx> 1.0.9-0.2 - Minor update * Mon Apr 21 2014 Peter Robinson <pbrobinson@xxxxxxxxxxxxxxxxx> 1.0.9-0.1 - Initial 1.0.9 snapshot -------------------------------------------------------------------------------- References: [ 1 ] Bug #970172 - CVE-2013-2142 libimobiledevice: Insecure temporary file use when both $XDG_CONFIG_HOME and $HOME are unset https://bugzilla.redhat.com/show_bug.cgi?id=970172 -------------------------------------------------------------------------------- -- test mailing list test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe: https://admin.fedoraproject.org/mailman/listinfo/test