The following Fedora 20 Security updates need testing: Age URL 111 https://admin.fedoraproject.org/updates/FEDORA-2014-5897/nrpe-2.15-2.fc20 61 https://admin.fedoraproject.org/updates/FEDORA-2014-7551/asterisk-11.10.2-2.fc20 60 https://admin.fedoraproject.org/updates/FEDORA-2014-7613/perl-Email-Address-1.905-1.fc20 42 https://admin.fedoraproject.org/updates/FEDORA-2014-8065/rubygem-activerecord-4.0.0-4.fc20 20 https://admin.fedoraproject.org/updates/FEDORA-2014-9092/libplist-1.11-2.fc20,libusbmuxd-1.0.9-2.fc20,libimobiledevice-1.1.6-2.fc20,usbmuxd-1.0.9-0.4.c24463e.fc20,ifuse-1.1.3-3.fc20,libgpod-0.8.3-2.fc20,upower-0.9.23-3.fc20,gvfs-1.18.3-3.fc20 13 https://admin.fedoraproject.org/updates/FEDORA-2014-9281/drupal6-6.33-1.fc20 6 https://admin.fedoraproject.org/updates/FEDORA-2014-9361/php-htmlpurifier-htmlpurifier-4.6.0-1.fc20 6 https://admin.fedoraproject.org/updates/FEDORA-2014-9344/sks-1.1.5-2.fc20 6 https://admin.fedoraproject.org/updates/FEDORA-2014-9380/struts-1.3.10-10.fc20 6 https://admin.fedoraproject.org/updates/FEDORA-2014-9407/fish-2.1.0-11.fc20 5 https://admin.fedoraproject.org/updates/FEDORA-2014-9476/cinnamon-screensaver-2.2.4-3.fc20 5 https://admin.fedoraproject.org/updates/FEDORA-2014-9472/xen-4.3.2-7.fc20 5 https://admin.fedoraproject.org/updates/FEDORA-2014-9474/pipelight-0.2.7.3-3.fc20 5 https://admin.fedoraproject.org/updates/FEDORA-2014-9457/pen-0.25.1-1.fc20 2 https://admin.fedoraproject.org/updates/FEDORA-2014-9540/python-pillow-2.2.1-5.fc20 2 https://admin.fedoraproject.org/updates/FEDORA-2014-9542/perl-Plack-1.0031-1.fc20 2 https://admin.fedoraproject.org/updates/FEDORA-2014-9555/phpMyAdmin-4.2.7.1-1.fc20 2 https://admin.fedoraproject.org/updates/FEDORA-2014-9583/mediawiki-1.23.2-1.fc20 2 https://admin.fedoraproject.org/updates/FEDORA-2014-9581/jakarta-commons-httpclient-3.1-15.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2014-9617/httpcomponents-client-4.2.5-4.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2014-9648/springframework-security-3.1.7-1.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2014-9641/polkit-qt-0.112.0-1.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2014-9596/GraphicsMagick-1.3.20-1.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2014-9591/distcc-3.2rc1-8.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2014-9621/ca-certificates-2014.2.1-1.0.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2014-9636/subversion-1.8.10-1.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2014-9662/cas-client-3.3.3-1.fc20 The following Fedora 20 Critical Path updates have yet to be approved: Age URL 5 https://admin.fedoraproject.org/updates/FEDORA-2014-9459/satyr-0.14-2.fc20 5 https://admin.fedoraproject.org/updates/FEDORA-2014-9462/poppler-data-0.4.7-1.fc20 5 https://admin.fedoraproject.org/updates/FEDORA-2014-8287/dhcp-4.2.7-2.fc20 2 https://admin.fedoraproject.org/updates/FEDORA-2014-9527/perl-Socket-2.015-1.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2014-9609/firewalld-0.3.11-1.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2014-9658/libwacom-0.10-1.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2014-9641/polkit-qt-0.112.0-1.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2014-9656/sqlite-3.8.6-1.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2014-9621/ca-certificates-2014.2.1-1.0.fc20 The following builds have been pushed to Fedora 20 updates-testing GraphicsMagick-1.3.20-1.fc20 MUMPS-4.10.0-17.fc20 baloo-4.13.3-3.fc20 ca-certificates-2014.2.1-1.0.fc20 cas-client-3.3.3-1.fc20 davix-0.3.6-2.fc20 distcc-3.2rc1-8.fc20 fedora-dockerfiles-0-0.11.git0d2f49b.fc20 firewalld-0.3.11-1.fc20 flickcurl-1.26-1.fc20 freesteam-2.1-5.20140724svn753.fc20 grsync-1.2.5-1.fc20 heat-cfntools-1.2.6-3.fc20 hovercraft-1.1-7.fc20 httpcomponents-client-4.2.5-4.fc20 kdepim-4.13.3-12.fc20 knot-1.5.1-1.fc20 libcss-0.3.0-2.fc20 libreport-2.2.3-2.fc20 libspnav-0.2.3-1.fc20 libteam-1.12-1.fc20 libwacom-0.10-1.fc20 nodejs-i18n-transform-1.0.2-1.fc20 nodejs-pac-proxy-agent-0.1.2-1.fc20 nodejs-socks-proxy-agent-0.1.2-1.fc20 nodejs-sprintf-0.1.4-1.fc20 nodejs-strip-json-comments-1.0.1-1.fc20 nordugrid-arc-4.2.0-1.fc20 nordugrid-arc-doc-1.5.0-1.fc20 openal-soft-1.16.0-1.fc20 oxygen-fonts-0.4.0-2.fc20 perl-MooX-ConfigFromFile-0.002-1.fc20 perl-Type-Tiny-1.000000-1.fc20 php-aws-sdk-2.6.15-2.fc20 php-jsonlint-1.2.0-1.fc20 php-scssphp-0.0.15-1.fc20 polkit-qt-0.112.0-1.fc20 python-alembic-0.6.6-1.fc20 python-backlash-0.0.6-1.fc20 python-chameleon-2.16-1.fc20 python-diff-cover-0.6.0-1.fc20 python-dogpile-cache-0.5.4-1.fc20 python-fedmsg-meta-fedora-infrastructure-0.2.19-1.fc20 python-txzmq-0.7.3-1.fc20 python-zope-exceptions-4.0.7-1.fc20 python-zope-i18nmessageid-4.0.3-1.fc20 python-zope-interface-4.1.1-1.fc20 python-zope-proxy-4.1.4-1.fc20 python-zope-schema-4.4.1-1.fc20 python-zope-testing-4.1.3-1.fc20 root-5.34.20-1.fc20 spacenavd-0.6-1.fc20 spnavcfg-0.3-1.fc20 springframework-security-3.1.7-1.fc20 sqlite-3.8.6-1.fc20 subversion-1.8.10-1.fc20 t-prot-3.1-1.fc20 Details about builds: ================================================================================ GraphicsMagick-1.3.20-1.fc20 (FEDORA-2014-9596) An ImageMagick fork, offering faster image generation and better quality -------------------------------------------------------------------------------- Update Information: New stable upstream release, patched for CVE-2014-1947. See also: http://www.graphicsmagick.org/NEWS.html#august-16-2014 -------------------------------------------------------------------------------- ChangeLog: * Wed Aug 20 2014 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 1.3.20-1 - 1.3.20, CVE-2014-1947 (#1064098,#1083082) * Fri Aug 15 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.3.19-9 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild * Wed Aug 13 2014 Orion Poplawski <orion@xxxxxxxxxxxxx> - 1.3.19-8 - Rebuild for libjbig soname bump * Fri Jun 6 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.3.19-7 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1064098 - CVE-2014-1947 ImageMagick: PSD writing layer name buffer overflow ("L%02ld") https://bugzilla.redhat.com/show_bug.cgi?id=1064098 -------------------------------------------------------------------------------- ================================================================================ MUMPS-4.10.0-17.fc20 (FEDORA-2014-9599) A MUltifrontal Massively Parallel sparse direct Solver -------------------------------------------------------------------------------- Update Information: *Some MPI packaging fixes *Changed MUMPS sequential build -------------------------------------------------------------------------------- ChangeLog: * Tue Jun 24 2014 Antonio Trande <sagitter@xxxxxxxxxxxxxxxxx> - 4.10.0-17 - Some MPI packaging fixes - Changed MUMPS sequential build * Fri Jun 6 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 4.10.0-16 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Sat May 3 2014 Tom Callaway <spot@xxxxxxxxxxxxxxxxx> - 4.10.0-15 - rebuild against new scalapack tree of blacs -------------------------------------------------------------------------------- ================================================================================ baloo-4.13.3-3.fc20 (FEDORA-2014-9576) A framework for searching and managing metadata -------------------------------------------------------------------------------- Update Information: Improve coinstallability with kf5-baloo -------------------------------------------------------------------------------- ChangeLog: * Tue Aug 19 2014 Daniel Vrátil <dvratil@xxxxxxxxxx> - 4.13.3-3 - Fix upgrade path for -akonadi (Obsoletes baloo < 4.13.3-2) * Mon Aug 18 2014 Daniel Vrátil <dvratil@xxxxxxxxxx> - 4.13.3-2 - Improve coinstallability with kf5-baloo - Move Akonadi indexer to -akonadi subpackage - Move stores and plugins to -libs subpackage -------------------------------------------------------------------------------- ================================================================================ ca-certificates-2014.2.1-1.0.fc20 (FEDORA-2014-9621) The Mozilla CA root certificate bundle -------------------------------------------------------------------------------- Update Information: This is an update to the latest released set of CA certificates according to the Mozilla CA Policy. It's the same set that has been released in NSS versions 3.16.4 and 3.17. It's noteworthy that several CA certificates with a weak key size of 1024-bits have been removed, prior to their expiration. (It is expected that additional CA certificates with weak 1024-bit keys will be removed in future releases.) The removed CA certificates have been used to issue end-entity and intermediate-CA certificates which are still valid. Those certificates are likely to be rejected when using this upated ca-certificates package. The owners of affected certificates should contact their CA and ask for replacement certificates. In some scenarios it might be sufficient to install an alternative intermediate CA certificate (e.g. on a TLS server), allowing an alternative trust chain to another root CA certificate to be found. More information about the affected CA certificates and other recent modifications can be found in the NSS release notes for version 3.16.3 at https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.16.3_release_notes with amendments to the changes as explained in the NSS release notes for version 3.16.4 https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.16.4_release_notes -------------------------------------------------------------------------------- ChangeLog: * Thu Aug 14 2014 Kai Engert <kaie@xxxxxxxxxx> - 2014.2.1-1.0 - Update to CKBI 2.1 from NSS 3.16.4 - Fix rhbz#1130226 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1130226 - Ensure neutral-trust CA certificates will be loaded by p11-kit-trust https://bugzilla.redhat.com/show_bug.cgi?id=1130226 -------------------------------------------------------------------------------- ================================================================================ cas-client-3.3.3-1.fc20 (FEDORA-2014-9662) Jasig CAS Client for Java -------------------------------------------------------------------------------- Update Information: - update to 3.3.3 - fix CVE-2014-4172 (rhbz#1131371) -------------------------------------------------------------------------------- ChangeLog: * Tue Aug 19 2014 gil cattaneo <puntogil@xxxxxxxxx> 3.3.3-1 - update to 3.3.3 - fix CVE-2014-4172 (rhbz#1131371) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1131350 - CVE-2014-4172 cas-client: Bypass of security constraints via URL parameter injection https://bugzilla.redhat.com/show_bug.cgi?id=1131350 -------------------------------------------------------------------------------- ================================================================================ davix-0.3.6-2.fc20 (FEDORA-2014-9622) Toolkit for Http-based file management -------------------------------------------------------------------------------- Update Information: davix 0.3.6 release, see RELEASE-NOTES for changes Update to release 0.3.4 -------------------------------------------------------------------------------- ChangeLog: * Tue Aug 12 2014 Adrien Devresse <adevress at cern.ch> - 0.3.6-2 - davix 0.3.6 release, see RELEASE-NOTES for changes * Tue Jul 22 2014 Adrien Devresse <adevress at cern.ch> - 0.3.4-1 - Update to release 0.3.4 -------------------------------------------------------------------------------- ================================================================================ distcc-3.2rc1-8.fc20 (FEDORA-2014-9591) Distributed C/C++ compilation -------------------------------------------------------------------------------- Update Information: Fix CVE-2014-4607 by upgrading to minilzo 2.08 -------------------------------------------------------------------------------- ChangeLog: * Wed Aug 20 2014 Andy Grover <agrover@xxxxxxxxxx> - 3.2rc1-8 - Add patch distcc-minilzo-2.08.patch, to fix CVE-2014-4607 (BZ 1131791) * Sat Aug 16 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 3.2rc1-7 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild * Sat Jun 7 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 3.2rc1-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1112418 - CVE-2014-4607 lzo: lzo1x_decompress_safe() integer overflow https://bugzilla.redhat.com/show_bug.cgi?id=1112418 -------------------------------------------------------------------------------- ================================================================================ fedora-dockerfiles-0-0.11.git0d2f49b.fc20 (FEDORA-2014-9593) Example dockerfiles to assist standing up containers quickly -------------------------------------------------------------------------------- Update Information: Handled the following: * No debuginfo * more dockerfiles * deprecation of -rm flag by docker.io * fixes the deprecation of -rm flag by upstream * adds new dockerfiles archful as per docker-io -------------------------------------------------------------------------------- ChangeLog: * Sat Aug 16 2014 Aditya Patawari <adimania@xxxxxxxxxxxxxxxxx> - 0-0.11.git - we don't want debug package since it is noarch * Sat Aug 16 2014 Aditya Patawari <adimania@xxxxxxxxxxxxxxxxx> - 0-0.10.git - fixing the source file with a version bump * Sat Aug 16 2014 Aditya Patawari <adimania@xxxxxxxxxxxxxxxxx> - 0-0.9.git - more dockerfiles with bugfixes * Sat Aug 16 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0-0.8.git122ef5d - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild * Tue Jul 1 2014 Lokesh Mandvekar <lsm5@xxxxxxxxxxxxxxxxx> - 0-0.7.git - archful as per docker-io * Sat Jun 7 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0-0.6.git122ef5d - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1116655 - fedora-dockerfiles-debuginfo is empty https://bugzilla.redhat.com/show_bug.cgi?id=1116655 [ 2 ] Bug #1121111 - various README.md is out of date for shipped version of docker https://bugzilla.redhat.com/show_bug.cgi?id=1121111 -------------------------------------------------------------------------------- ================================================================================ firewalld-0.3.11-1.fc20 (FEDORA-2014-9609) A firewall daemon with D-Bus interface providing a dynamic firewall -------------------------------------------------------------------------------- Update Information: New upstream bug-fix release. Notable change: ipp-client service has been removed from all zones. -------------------------------------------------------------------------------- ChangeLog: * Wed Aug 20 2014 Jiri Popelka <jpopelka@xxxxxxxxxx> - 0.3.11-1 - firewalld: - improve error messages - check built-in chains in direct chain handling functions (RHBZ#1120619) - dbus_to_python() check whether input is of expected type (RHBZ#1122018) - handle negative timeout values (RHBZ#1124476) - warn when Command/Uid/Use/Context already in lockdown whitelist (RHBZ#1126405) - make --lockdown-{on,off} work again (RHBZ#1111573) - firewall-cmd: - --timeout now accepts time units (RHBZ#994044) - firewall-config: - show active (not default) zones in bold (RHBZ#993655) - configuration: - remove ipp-client service from all zones (RHBZ#1105639). - fallbacks for missing values in firewalld.conf - create missing dirs under /etc if needed - add -Es to python command in lockdown-whitelist.xml (RHBZ#1099065) - docs: - 'direct' methods concern only chains/rules added via 'direct' (RHBZ#1120619) - --remove-[interface/source] don't need a zone to be specified (RHBZ#1125851) - various fixes in firewalld.zone(5), firewalld.dbus(5), firewalld.direct(5) - others: - rpm macros for easier packaging of e.g. services -------------------------------------------------------------------------------- References: [ 1 ] Bug #1120619 - firewalld should prevent to create chains that collide with chain names used by firewalld https://bugzilla.redhat.com/show_bug.cgi?id=1120619 [ 2 ] Bug #1122018 - Firewalld should accept only valid argument types https://bugzilla.redhat.com/show_bug.cgi?id=1122018 [ 3 ] Bug #1124476 - Firewalld should not accept negative timeouts in D-Bus API https://bugzilla.redhat.com/show_bug.cgi?id=1124476 [ 4 ] Bug #1105639 - Remove ipp-client from various zones https://bugzilla.redhat.com/show_bug.cgi?id=1105639 [ 5 ] Bug #1125851 - Zone x Sources conflicts are handled differently than mentioned in documentation https://bugzilla.redhat.com/show_bug.cgi?id=1125851 -------------------------------------------------------------------------------- ================================================================================ flickcurl-1.26-1.fc20 (FEDORA-2014-9655) C library for the Flickr API -------------------------------------------------------------------------------- Update Information: 2014-08-17 Flickcurl Version 1.26 Released * Switch all API endpoints and image URLs to https protocol after announcement on 2014-04-30 that everything is going https only. * Fixed utility documentation: args consistency for PER-PAGE / PAGE. * Added new extras: url_q, url_n and url_c for new image sizes. * Configuration and build improvements for newer automake and autoconf. * Add new internal convienience libraries libmtwist and libgetopt. * Added build-time utility mangen to generate manpage and extras. * Generate and accept the new staticflickr.com domain for image URIs as well as the existing static.flickr.com. * Multiple error path allocation fixes, several memory leak fixes and a few overflows found via Coverity. -------------------------------------------------------------------------------- ChangeLog: * Tue Aug 19 2014 Christopher Meng <rpm@xxxxxxxx> - 1.26-1 - Update to 1.26 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1131017 - flickcurl-1.26 is available https://bugzilla.redhat.com/show_bug.cgi?id=1131017 -------------------------------------------------------------------------------- ================================================================================ freesteam-2.1-5.20140724svn753.fc20 (FEDORA-2014-9618) Calculate the properties of water and steam -------------------------------------------------------------------------------- Update Information: * freesteam-ascend sub-package requires ascend now -------------------------------------------------------------------------------- ChangeLog: * Tue Aug 19 2014 Antonio Trande <sagitter@xxxxxxxxxxxxxxxxx> - 2.1-5.20140724svn753 - freesteam-ascend sub-package requires ascend now * Sat Aug 16 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 2.1-4.20140724svn753 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ grsync-1.2.5-1.fc20 (FEDORA-2014-9613) A Gtk+ GUI for rsync -------------------------------------------------------------------------------- Update Information: This update fixes some crashes and some minor problems in the code. It also includes new and updated translations. -------------------------------------------------------------------------------- ChangeLog: * Thu Aug 21 2014 Christoph Wickert <cwickert@xxxxxxxxxxxxxxxxx> - 1.2.5-1 - Update to 1.2.5 * Sat Aug 16 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.2.4-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild * Sat Jun 7 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.2.4-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1048343 - [abrt] grsync: munmap_chunk(): grsync killed by SIGABRT https://bugzilla.redhat.com/show_bug.cgi?id=1048343 [ 2 ] Bug #1048937 - [abrt] grsync: standard_free(): grsync killed by SIGABRT https://bugzilla.redhat.com/show_bug.cgi?id=1048937 -------------------------------------------------------------------------------- ================================================================================ heat-cfntools-1.2.6-3.fc20 (FEDORA-2014-9612) Tools required to be installed on Heat provisioned cloud instances -------------------------------------------------------------------------------- Update Information: fix dependencies to include external commands (rhbz#1130964) -------------------------------------------------------------------------------- ChangeLog: * Tue Aug 19 2014 Jeff Peeler <jpeeler@xxxxxxxxxx> 1.2.6-3 - fix dependencies to include external commands (rhbz#1130964) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1130964 - wget dependency is not described https://bugzilla.redhat.com/show_bug.cgi?id=1130964 -------------------------------------------------------------------------------- ================================================================================ hovercraft-1.1-7.fc20 (FEDORA-2014-9595) Makes impress.js presentations from reStructuredText -------------------------------------------------------------------------------- Update Information: Include manpage and docs -------------------------------------------------------------------------------- ChangeLog: * Wed Aug 20 2014 Ralph Bean <rbean@xxxxxxxxxx> - 1.1-7 - Include docs and manpage. * Sat Jun 7 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.1-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Wed May 14 2014 Bohuslav Kabrda <bkabrda@xxxxxxxxxx> - 1.1-5 - Rebuilt for https://fedoraproject.org/wiki/Changes/Python_3.4 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1098816 - Include documentation https://bugzilla.redhat.com/show_bug.cgi?id=1098816 -------------------------------------------------------------------------------- ================================================================================ httpcomponents-client-4.2.5-4.fc20 (FEDORA-2014-9617) HTTP agent implementation based on httpcomponents HttpCore -------------------------------------------------------------------------------- Update Information: Security fix for CVE-2014-3577 -------------------------------------------------------------------------------- ChangeLog: * Mon Aug 18 2014 Michal Srb <msrb@xxxxxxxxxx> - 4.2.5-4 - Fix MITM security vulnerability - Resolves: CVE-2014-3577 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1129074 - CVE-2014-3577 Apache HttpComponents client: Hostname verification susceptible to MITM attack https://bugzilla.redhat.com/show_bug.cgi?id=1129074 -------------------------------------------------------------------------------- ================================================================================ kdepim-4.13.3-12.fc20 (FEDORA-2014-9576) KDE PIM (Personal Information Manager) applications -------------------------------------------------------------------------------- Update Information: Improve coinstallability with kf5-baloo -------------------------------------------------------------------------------- ChangeLog: * Tue Aug 19 2014 Daniel Vrátil <dvratil@xxxxxxxxxx> 7:4.13.3-12 - make sure baloo-akonadi is installed * Wed Jul 23 2014 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 7:4.13.3-11 - -common: fix -libs dep (typo wrt epoch) * Tue Jul 22 2014 Daniel Vrátil <dvratil@xxxxxxxxxx> - 7:4.13.3-10 - split monolithic kdepim package into per-app subpackages - drop some old build deps (nepomuk-related mostly) -------------------------------------------------------------------------------- ================================================================================ knot-1.5.1-1.fc20 (FEDORA-2014-9633) An authoritative DNS daemon -------------------------------------------------------------------------------- Update Information: new upstream release: - logging: unified logging messages - logging: support for systemd journal - DDNS: processing updates in bulk - DDNS: fix signing of responses with TSIG - DDNS: fix prerequisites checking in apex node - DNSSEC: fix domain names conversion to canonical format before signing - DNSSEC: semantic checks for signing keys - EDNS: fix inclusion of OPT record into some packets - knsupdate: fix use of zone origin for deletions -------------------------------------------------------------------------------- ChangeLog: * Tue Aug 19 2014 Jan Vcelak <jvcelak@xxxxxxxxxxxxxxxxx> 1.5.1-1 - new upstream release: + logging: unified logging messages + logging: support for systemd journal + DDNS: processing updates in bulk + DDNS: fix signing of responses with TSIG + DDNS: fix prerequisites checking in apex node + DNSSEC: fix domain names conversion to canonical format before signing + DNSSEC: semantic checks for signing keys + EDNS: fix inclusion of OPT record into some packets + knsupdate: fix use of zone origin for deletions * Sun Aug 17 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.5.0-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ libcss-0.3.0-2.fc20 (FEDORA-2014-9639) A CSS parser and selection engine -------------------------------------------------------------------------------- Update Information: CSS (Cascading Style Sheet) parser and selection engine written in C -------------------------------------------------------------------------------- ================================================================================ libreport-2.2.3-2.fc20 (FEDORA-2014-9657) Generic library for reporting various problems -------------------------------------------------------------------------------- Update Information: - add the "Repeat" button to the reporting wizard - fix a bug in logging causing reporter-ureport to crash - reporter-ureport: attach anonymous commen - GUI improvements -------------------------------------------------------------------------------- ChangeLog: * Wed Aug 20 2014 Jakub Filak <jfilak@xxxxxxxxxx> 2.2.3-2 - add the "Repeat" button to the reporting wizard - a bunch of GUI improvements - fix a bug in logging causing reporter-ureport to crash - reporter-ureport: attach anonymous comment - Resolves: #1120871, #1120879, #1120881, #1122690 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1120871 - Remove horizontal scrolling on "review the data before it gets reported" page https://bugzilla.redhat.com/show_bug.cgi?id=1120871 [ 2 ] Bug #1120879 - Dialogs opened with Preferences -> configure should be transient for their parents https://bugzilla.redhat.com/show_bug.cgi?id=1120879 [ 3 ] Bug #1120881 - Nothing happens when clicking configure button on preferences dialog https://bugzilla.redhat.com/show_bug.cgi?id=1120881 [ 4 ] Bug #1122690 - reporter-ureport killed by SIGSEGV https://bugzilla.redhat.com/show_bug.cgi?id=1122690 -------------------------------------------------------------------------------- ================================================================================ libspnav-0.2.3-1.fc20 (FEDORA-2014-9592) Open source alternative to 3DConnextion drivers -------------------------------------------------------------------------------- Update Information: Minor bug fixes. No new features. -------------------------------------------------------------------------------- ChangeLog: * Mon Aug 18 2014 Richard Shaw <hobbes1069@xxxxxxxxx> - 0.2.3-1 - Update to latest upstream release. * Sun Aug 17 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.2.2-8 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild * Sat Jun 7 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.2.2-7 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ libteam-1.12-1.fc20 (FEDORA-2014-9626) Library for controlling team network device -------------------------------------------------------------------------------- Update Information: - 1.12 release - teamd: teamd_state_val_dump move TEAMD_BUG_ON so it can be actually triggered - teamd: fix coverity error in teamd_sriov_physfn_addr - libteamdctl: adjust doc comments to be processed by doxygen - remove forgotten src dir - libteam: stringify.c adjust doc comments to be processed by doxygen - libteam: ports.c adjust doc comments to be processed by doxygen - libteam: options.c adjust doc comments to be processed by doxygen - libteam: ifinfo.c adjust doc comments to be processed by doxygen - libteam: libteam.c adjust doc comments to be processed by doxygen - add doxygen html doc generation into autoconf - teamd: tipc: use TIPC_MAX_*_NAME for buffers and check len - fix strncmp len in ifname2ifindex - teamd: fix incorrect usage of sizeof in __str_sockaddr -------------------------------------------------------------------------------- ChangeLog: * Tue Aug 19 2014 Jiri Pirko <jpirko@xxxxxxxxxx> - 1.12-1 - 1.12 release - teamd: teamd_state_val_dump move TEAMD_BUG_ON so it can be actually triggered - teamd: fix coverity error in teamd_sriov_physfn_addr - libteamdctl: adjust doc comments to be processed by doxygen - remove forgotten src dir - libteam: stringify.c adjust doc comments to be processed by doxygen - libteam: ports.c adjust doc comments to be processed by doxygen - libteam: options.c adjust doc comments to be processed by doxygen - libteam: ifinfo.c adjust doc comments to be processed by doxygen - libteam: libteam.c adjust doc comments to be processed by doxygen - add doxygen html doc generation into autoconf - teamd: tipc: use TIPC_MAX_*_NAME for buffers and check len - fix strncmp len in ifname2ifindex - teamd: fix incorrect usage of sizeof in __str_sockaddr * Sun Aug 17 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.11-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ libwacom-0.10-1.fc20 (FEDORA-2014-9658) Tablet Information Client Library -------------------------------------------------------------------------------- Update Information: libwacom 0.10, fixes bluetooth tablet detection -------------------------------------------------------------------------------- ChangeLog: * Wed Aug 20 2014 Peter Hutterer <peter.hutterer@xxxxxxxxxx> 0.10-1 - libwacom 0.10 * Sun Aug 17 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.9-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild * Sat Jun 7 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.9-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Thu Mar 20 2014 Peter Hutterer <peter.hutterer@xxxxxxxxxx> 0.9-2 - Generate the rules file from the database * Tue Mar 4 2014 Peter Hutterer <peter.hutterer@xxxxxxxxxx> 0.9-1 - libwacom 0.9 -------------------------------------------------------------------------------- ================================================================================ nodejs-i18n-transform-1.0.2-1.fc20 (FEDORA-2014-9653) i18n transforms to a json object. -------------------------------------------------------------------------------- Update Information: Upstream has released new version -------------------------------------------------------------------------------- ChangeLog: * Tue Aug 19 2014 Anish Patil <apatil@xxxxxxxxxx> - 1.0.2-1 - Upstream has released new tarball -------------------------------------------------------------------------------- References: [ 1 ] Bug #1124480 - nodejs-i18n-transform-1.0.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=1124480 -------------------------------------------------------------------------------- ================================================================================ nodejs-pac-proxy-agent-0.1.2-1.fc20 (FEDORA-2014-9606) A PAC file proxy `http.Agent` implementation for HTTP -------------------------------------------------------------------------------- Update Information: Initial packaging -------------------------------------------------------------------------------- References: [ 1 ] Bug #1122228 - Review Request: nodejs-pac-proxy-agent - A PAC file proxy `http.Agent` implementation for HTTP https://bugzilla.redhat.com/show_bug.cgi?id=1122228 -------------------------------------------------------------------------------- ================================================================================ nodejs-socks-proxy-agent-0.1.2-1.fc20 (FEDORA-2014-9652) A SOCKS (v4a) proxy http.Agent implementation -------------------------------------------------------------------------------- Update Information: Initial packaging -------------------------------------------------------------------------------- References: [ 1 ] Bug #1122239 - Review Request: nodejs-socks-proxy-agent - A SOCKS (v4a) proxy http.Agent implementation https://bugzilla.redhat.com/show_bug.cgi?id=1122239 -------------------------------------------------------------------------------- ================================================================================ nodejs-sprintf-0.1.4-1.fc20 (FEDORA-2014-9634) JavaScript sprintf implementation -------------------------------------------------------------------------------- Update Information: Upstream has released new version -------------------------------------------------------------------------------- ChangeLog: * Tue Aug 19 2014 Anish Patil <apatil@xxxxxxxxxx> - 0.1.4-1 - Upstream has released new version -------------------------------------------------------------------------------- References: [ 1 ] Bug #1130041 - nodejs-sprintf-0.1.4 is available https://bugzilla.redhat.com/show_bug.cgi?id=1130041 -------------------------------------------------------------------------------- ================================================================================ nodejs-strip-json-comments-1.0.1-1.fc20 (FEDORA-2014-9600) Strip comments from JSON -------------------------------------------------------------------------------- Update Information: Upstream has released new tarball -------------------------------------------------------------------------------- ChangeLog: * Tue Aug 19 2014 Anish Patil <apatil@xxxxxxxxxx> - 1.0.1-1 - Upstream has released new version * Sat Jun 7 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.1.3-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1124188 - nodejs-strip-json-comments-1.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1124188 -------------------------------------------------------------------------------- ================================================================================ nordugrid-arc-4.2.0-1.fc20 (FEDORA-2014-9661) Advanced Resource Connector Grid Middleware -------------------------------------------------------------------------------- Update Information: ARC 4.2.0 -------------------------------------------------------------------------------- ChangeLog: * Mon Aug 18 2014 Mattias Ellert <mattias.ellert@xxxxxxxxxxxx> - 4.2.0-1 - 4.2.0 Final Release - Drop patch nordugrid-arc-twisted.patch - Build for EPEL 7 (without xmlsec) * Sun Aug 17 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 4.1.0-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild * Wed Jul 2 2014 Mattias Ellert <mattias.ellert@xxxxxxxxxxxx> - 4.1.0-4 - Rebuilt for xrootd 4 * Sat Jun 7 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 4.1.0-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Wed May 28 2014 Kalev Lember <kalevlember@xxxxxxxxx> - 4.1.0-2 - Rebuilt for https://fedoraproject.org/wiki/Changes/Python_3.4 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1096587 - Architecture conflict between i686 and x86_64 https://bugzilla.redhat.com/show_bug.cgi?id=1096587 -------------------------------------------------------------------------------- ================================================================================ nordugrid-arc-doc-1.5.0-1.fc20 (FEDORA-2014-9661) Advanced Resource Connector Documentation -------------------------------------------------------------------------------- Update Information: ARC 4.2.0 -------------------------------------------------------------------------------- ChangeLog: * Mon Aug 18 2014 Mattias Ellert <mattias.ellert@xxxxxxxxxxxx> - 1.5.0-1 - 1.5.0 Final Release * Sat Jun 7 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.4.0-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1096587 - Architecture conflict between i686 and x86_64 https://bugzilla.redhat.com/show_bug.cgi?id=1096587 -------------------------------------------------------------------------------- ================================================================================ openal-soft-1.16.0-1.fc20 (FEDORA-2014-9628) Open Audio Library -------------------------------------------------------------------------------- Update Information: New upstream release -------------------------------------------------------------------------------- ChangeLog: * Sun Aug 17 2014 François Cami <fcami@xxxxxxxxxxxxxxxxx> - 1.16.0-1 - New upstream release * Sun Aug 17 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.15.1-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild * Sat Jun 7 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.15.1-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1130901 - Update OpenAL-Soft to 1.16 https://bugzilla.redhat.com/show_bug.cgi?id=1130901 -------------------------------------------------------------------------------- ================================================================================ oxygen-fonts-0.4.0-2.fc20 (FEDORA-2014-9650) Oxygen fonts created by the KDE Community -------------------------------------------------------------------------------- Update Information: Import oxygen-fonts into F20 -------------------------------------------------------------------------------- ================================================================================ perl-MooX-ConfigFromFile-0.002-1.fc20 (FEDORA-2014-9649) Moo eXtension for initializing objects from config file -------------------------------------------------------------------------------- Update Information: Initial release -------------------------------------------------------------------------------- References: [ 1 ] Bug #1127720 - Review Request: perl-MooX-ConfigFromFile - Moo eXtension for initializing objects from config file https://bugzilla.redhat.com/show_bug.cgi?id=1127720 -------------------------------------------------------------------------------- ================================================================================ perl-Type-Tiny-1.000000-1.fc20 (FEDORA-2014-9614) Tiny, yet Moo(se)-compatible type constraint -------------------------------------------------------------------------------- Update Information: -------------------------------------------------------------------------------- ChangeLog: * Mon Aug 18 2014 Ralf Corsépius <corsepiu@xxxxxxxxxxxxxxxxx> - 1.000000-1 - Upstream update. -------------------------------------------------------------------------------- ================================================================================ php-aws-sdk-2.6.15-2.fc20 (FEDORA-2014-9627) Amazon Web Services framework for PHP -------------------------------------------------------------------------------- Update Information: ## **RPM install changed from PEAR install (`/usr/share/pear/AWSSDKforPHP/Aws`) to Composer-ish install (`/usr/share/php/Aws`)** 2.6.15 (2014-08-14) ------------------- * Added support for signing requests to the Amazon CloudSearch Domains client. * Added support for creating anonymous clients. 2.6.14 (2014-08-11) ------------------- * Added support for tagging to the Elastic Load Balancing client. 2.6.13 (2014-07-31) ------------------- * Added support for configurable idle timeouts to the Elastic Load Balancing client. * Added support for Lifecycle Hooks, Detach Instances, and Standby to the AutoScaling client. * Added support for creating Amazon ElastiCache for Memcached clusters with nodes in multiple availability zones. * Added minor fixes to the Amazon EC2 model for ImportVolume, DescribeNetworkInterfaceAttribute, and DeleteVpcPeeringConnection * Added support for getGeoLocation and listGeoLocations to the Amazon Route 53 client. * Added support for Amazon Route 53 Domains. * Fixed an issue with deleting nested folders in the Amazon S3 stream wrapper. * Fixed an issue with the Amazon S3 sync abstraction to ensure that S3->S3 communication works correctly. * Added stricter validation to the Amazon SNS MessageValidator. 2.6.12 (2014-07-16) ------------------- * Added support for adding attachments to support case communications to the AWS Support API client. * Added support for credential reports and password rotation features to the AWS IAM client. * Added the `ap-northeast-1`, `ap-southeast-1`, and `ap-southeast-2` regions to the Amazon Kinesis client. * Added a `listFilter` stream context option that can be used when using `opendir()` and the Amazon S3 stream wrapper. This option is used to filter out specific objects from the files yielded from the stream wrapper. * Fixed #322 so that the download sync builder ignores objects that have a `GLACIER` storage class. * Fixed an issue with the S3 SSE-C logic so that HTTPS is only required when the SSE-C parameters are provided. * Updated the Travis configuration to include running HHVM tests. 2.6.11 (2014-07-09) ------------------- * Added support for **Amazon Cognito Identity**. * Added support for **Amazon Cognito Sync**. * Added support for **Amazon CloudWatch Logs**. * Added support for editing existing health checks and associating health checks with tags to the Amazon Route 53 client. * Added the ModifySubnetAttribute operation to the Amazon EC2 client. 2.6.10 (2014-07-02) ------------------- * Added the `ap-northeast-1`, `ap-southeast-1`, and `sa-east-1` regions to the Amazon CloudTrail client. * Added the `eu-west-1` and `us-west-2` regions to the Amazon Kinesis client. * Fixed an issue with the SignatureV4 implementation when used with Amazon S3. * Fixed an issue with a test that was causing failures when run on EC2 instances that have associated Instance Metadata credentials. 2.6.9 (2014-06-26) ------------------ * Added support for the CloudSearchDomain client, which allows you to search and upload documents to your CloudSearch domains. * Added support for delivery notifications to the Amazon SES client. * Updated the CloudFront client to support the 2014-05-31 API. * Merged PR #316 as a better solution for issue #309. 2.6.8 (2014-06-20) ------------------ * Added support for closed captions to the Elastic Transcoder client. * Added support for IAM roles to the Elastic MapReduce client. * Updated the S3 PostObject to ease customization. * Fixed an issue in some EC2 waiters by merging PR #306. * Fixed an issue with the DynamoDB `WriteRequestBatch` by merging PR #310. * Fixed issue #309, where the `url_stat()` logic in the S3 Stream Wrapper was affected by a change in PHP 5.5.13. 2.6.7 (2014-06-12) ------------------ * Added support for Amazon S3 server-side encryption using customer-provided encryption keys. * Updated Amazon SNS to support message attributes. * Updated the Amazon Redshift model to support new cluster parameters. * Updated PHPUnit dev dependency to 4.* to work around a PHP serializing bug. 2.6.6 (2014-05-29) ------------------ * Added support for the [Desired Partition Count scaling option](http://aws.amazon.com/releasenotes/2440176739861815) to the CloudSearch client. Hebrew is also now a supported language. * Updated the STS service description to the latest version. * [Docs] Updated some of the documentation about credential profiles. * Fixed an issue with the regular expression in the `S3Client::isValidBucketName` method. See #298. 2.6.5 (2014-05-22) ------------------ * Added cross-region support for the Amazon EC2 CopySnapshot operation. * Added AWS Relational Database (RDS) support to the AWS OpsWorks client. * Added support for tagging environments to the AWS Elastic Beanstalk client. * Refactored the signature version 4 implementation to be able to pre-sign most operations. 2.6.4 (2014-05-20) ------------------ * Added support for lifecycles on versioning enabled buckets to the Amazon S3 client. * Fixed an Amazon S3 sync issue which resulted in unnecessary transfers when no `$keyPrefix` argument was utilized. * Corrected the `CopySourceIfMatch` and `CopySourceIfNoneMatch` parameter for Amazon S3 to not use a timestamp shape. * Corrected the sending of Amazon S3 PutBucketVersioning requests that utilize the `MFADelete` parameter. 2.6.3 (2014-05-14) ------------------ * Added the ability to modify Amazon SNS topic settings to the UpdateStack operation of the AWS CloudFormation client. * Added support for the us-west-1, ap-southeast-2, and eu-west-1 regions to the AWS CloudTrail client. * Removed no longer utilized AWS CloudTrail shapes from the model. 2.6.2 (2014-05-06) ------------------ * Added support for Amazon SQS message attributes. * Fixed Amazon S3 multi-part uploads so that manually set ContentType values are not overwritten. * No longer recalculating file sizes when an Amazon S3 socket timeout occurs because this was causing issues with multi-part uploads and it is very unlikely ever the culprit of a socket timeout. * Added better environment variable detection. 2.6.1 (2014-04-25) ------------------ * Added support for the `~/.aws/credentials` INI file and credential profiles (via the `profile` option) as a safer alternative to using explicit credentials with the `key` and `secret` options. * Added support for query filters and improved conditional expressions to the Amazon DynamoDB client. * Added support for the `ChefConfiguration` parameter to a few operations on the AWS OpsWorks Client. * Added support for Redis cache cluster snapshots to the Amazon ElastiCache client. * Added support for the `PlacementTenancy` parameter to the `CreateLaunchConfiguration` operation of the Auto Scaling client. * Added support for the new R3 instance types to the Amazon EC2 client. * Added the `SpotInstanceRequestFulfilled` waiter to the Amazon EC2 client (see #241). * Improved the S3 Stream Wrapper by adding support for deleting pseudo directories (#264), updating error handling (#276), and fixing `is_link()` for non-existent keys (#268). * Fixed #252 and updated the DynamoDB `WriteRequestBatch` abstraction to handle batches that were completely rejected due to exceeding provisioned throughput. * Updated the SDK to support Guzzle 3.9.x 2.6.0 (2014-03-25) ------------------ * [BC] Updated the Amazon CloudSearch client to use the new 2013-01-01 API version (see [their release notes](http://aws.amazon.com/releasenotes/6125075708216342)). This API version of CloudSearch is significantly different than the previous one, and is not backwards compatible. See the [Upgrading Guide](https://github.com/aws/aws-sdk-php/blob/master/UPGRADING.md) for more details. * Added support for the VPC peering features to the Amazon EC2 client. * Updated the Amazon EC2 client to use the new 2014-02-01 API version. * Added support for [resize progress data and the Cluster Revision Number parameter](http://aws.amazon.com/releasenotes/0485739709714318) to the Amazon Redshift client. * Added the `ap-northeast-1`, `ap-southeast-2`, and `sa-east-1` regions to the Amazon CloudSearch client. 2.5.4 (2014-03-20) ------------------ * Added support for [access logs](http://docs.aws.amazon.com/ElasticLoadBalancing/latest/DeveloperGuide/access-log-collection.html) to the Elastic Load Balancing client. * Updated the Elastic Load Balancing client to the latest API version. * Added support for the `AWS_SECRET_ACCESS_KEY` environment variables. * Updated the Amazon CloudFront client to use the 2014-01-31 API version. See [their release notes](http://aws.amazon.com/releasenotes/1900016175520505). * Updates the AWS OpsWorks client to the latest API version. * Amazon S3 Stream Wrapper now works correctly with pseudo folder keys created by the AWS Management Console. * Amazon S3 Stream Wrapper now implements `mkdir()` for nested folders similar to the AWS Management Console. * Addressed an issue with Amazon S3 presigned-URLs where X-Amz-* headers were not being added to the query string. * Addressed an issue with the Amazon S3 directory sync where paths that contained dot-segments were not properly resolved. Removing the dot segments consistently helps to ensure that files are uploaded to their intended destinations and that file key comparisons are accurately performed when determining which files to upload. -------------------------------------------------------------------------------- ChangeLog: * Sun Aug 17 2014 Shawn Iwinski <shawn.iwinski@xxxxxxxxx> - 2.6.15-2 - Obsolete php-channel-aws - Compat direcory structure with old PEAR pkg * Fri Aug 15 2014 Shawn Iwinski <shawn.iwinski@xxxxxxxxx> - 2.6.15-1 - Updated to 2.6.15 (BZ #1126610) - PEAR install changed to Composer-ish install * Mon Aug 4 2014 Shawn Iwinski <shawn.iwinski@xxxxxxxxx> - 2.6.1-3 - Fix php-guzzle-Guzzle max version (3.9.0 => 3.9.9) * Sat Jun 7 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 2.6.1-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Sun May 4 2014 Joseph Marrero <jmarrero@xxxxxxxxxxxxxxxxx> - 2.6.1-1 - Update to latest upstream release -------------------------------------------------------------------------------- References: [ 1 ] Bug #1047812 - Make package PSR-0 compliant https://bugzilla.redhat.com/show_bug.cgi?id=1047812 [ 2 ] Bug #1126610 - php-aws-sdk-2.6.15 is available https://bugzilla.redhat.com/show_bug.cgi?id=1126610 -------------------------------------------------------------------------------- ================================================================================ php-jsonlint-1.2.0-1.fc20 (FEDORA-2014-9638) JSON Lint for PHP -------------------------------------------------------------------------------- Update Information: ### [1.2.0 (2014-07-20)](https://github.com/Seldaek/jsonlint/releases/tag/1.2.0) * Added support for linting multiple files at once in `jsonlint` * Added a -q/--quiet flag to suppress the output * Fixed error output being on STDOUT instead of STDERR * Fixed parameter parsing -------------------------------------------------------------------------------- ChangeLog: * Wed Aug 20 2014 Shawn Iwinski <shawn.iwinski@xxxxxxxxx> - 1.2.0-1 - Updated to 1.2.0 (BZ #1124228) - Added option to build without tests ("--without tests") - Added bin * Mon Jun 9 2014 Remi Collet <remi@xxxxxxxxxxxxxxxxx> - 1.1.2-2 - fix FTBFS, include path during test - upstream patch for latest PHPUnit - provides php-composer(seld/jsonlint) * Sat Jun 7 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.1.2-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1124228 - php-jsonlint-1.2.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1124228 -------------------------------------------------------------------------------- ================================================================================ php-scssphp-0.0.15-1.fc20 (FEDORA-2014-9615) A compiler for SCSS written in PHP -------------------------------------------------------------------------------- Update Information: ## [v0.0.15](https://github.com/leafo/scssphp/tree/v0.0.15) ## [v0.0.14](https://github.com/leafo/scssphp/tree/v0.0.14) 3.2.x compatibility fixes: * @keyframes $name - didn't work inside mixin (@sergeylukin) * Bourbon transform(translateX()) didn't work (@dovy and @greynor) ## [v0.0.13](https://github.com/leafo/scssphp/tree/v0.0.13) Note: the cached .imports file has been replaced by .meta files; to reclaim disk space (or inodes), you can safely remove the .imports files * If-None-Match and ETag support (@NSmithUK) * normalize quotation marks (@NoxNebula) * improve handling of escape sequence in selectors (@matt3224) * add "scss_formatter_crunched" which strips comments * internal: generate more accurate parse tree -------------------------------------------------------------------------------- ChangeLog: * Tue Aug 19 2014 Shawn Iwinski <shawn.iwinski@xxxxxxxxx> - 0.0.15-1 - Updated to 0.0.15 (BZ #1126612) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1126612 - php-scssphp-0.1.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1126612 -------------------------------------------------------------------------------- ================================================================================ polkit-qt-0.112.0-1.fc20 (FEDORA-2014-9641) Qt bindings for PolicyKit -------------------------------------------------------------------------------- Update Information: updated to the new release of polkit-qt -------------------------------------------------------------------------------- ChangeLog: * Thu Jul 10 2014 Martin Bříza <mbriza@xxxxxxxxxx> - 0.112.0-1 - polkit-qt-1-0.112.0 * Sat Jun 7 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.103.0-11 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1094890 - CVE-2014-5033 polkit-qt: insecure calling of polkit https://bugzilla.redhat.com/show_bug.cgi?id=1094890 -------------------------------------------------------------------------------- ================================================================================ python-alembic-0.6.6-1.fc20 (FEDORA-2014-9597) Database migration tool for SQLAlchemy -------------------------------------------------------------------------------- Update Information: Latest upstream -------------------------------------------------------------------------------- ChangeLog: * Wed Aug 20 2014 Ralph Bean <rbean@xxxxxxxxxx> - 0.6.6-1 - Latest upstream. - Modernized python macros. - Re-enabled python3 tests. - Cleaned up the description formatting. * Sat Jun 7 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.6.5-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Tue May 27 2014 Kalev Lember <kalevlember@xxxxxxxxx> - 0.6.5-2 - Rebuilt for https://fedoraproject.org/wiki/Changes/Python_3.4 * Tue May 6 2014 Ralph Bean <rbean@xxxxxxxxxx> - 0.6.5-1 - Latest upstream. * Tue Feb 4 2014 Ralph Bean <rbean@xxxxxxxxxx> - 0.6.3-1 - Latest upstream. * Tue Jan 28 2014 Ralph Bean <rbean@xxxxxxxxxx> - 0.6.2-2 - Simplify some nested conditionals. - Attempt a better rhel conditional. - Added buildtime dep on python-mock for the test suite. * Tue Jan 28 2014 Ralph Bean <rbean@xxxxxxxxxx> - 0.6.2-1 - Latest upstream. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1082312 - python-alembic-0.6.6 is available https://bugzilla.redhat.com/show_bug.cgi?id=1082312 -------------------------------------------------------------------------------- ================================================================================ python-backlash-0.0.6-1.fc20 (FEDORA-2014-9616) Standalone WebOb port of the Werkzeug Debugger -------------------------------------------------------------------------------- Update Information: Latest upstream -------------------------------------------------------------------------------- ChangeLog: * Wed Aug 20 2014 Ralph Bean <rbean@xxxxxxxxxx> - 0.0.6-1 - Latest upstream. * Sat Jun 7 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.0.4-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Tue May 27 2014 Kalev Lember <kalevlember@xxxxxxxxx> - 0.0.4-2 - Rebuilt for https://fedoraproject.org/wiki/Changes/Python_3.4 * Wed Jan 22 2014 Ralph Bean <rbean@xxxxxxxxxx> - 0.0.4-1 - Latest upstream - Fixed python3 requires. - Remove patch now that it has been pushed upstream. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1074966 - python-backlash-0.0.6 is available https://bugzilla.redhat.com/show_bug.cgi?id=1074966 -------------------------------------------------------------------------------- ================================================================================ python-chameleon-2.16-1.fc20 (FEDORA-2014-9604) XML-based template compiler -------------------------------------------------------------------------------- Update Information: Latest upstream -------------------------------------------------------------------------------- ChangeLog: * Wed Aug 20 2014 Ralph Bean <rbean@xxxxxxxxxx> - 2.16-1 - Latest upstream. - Modernize python2 macros. * Sat Jun 7 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 2.15-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Wed May 14 2014 Bohuslav Kabrda <bkabrda@xxxxxxxxxx> - 2.15-2 - Rebuilt for https://fedoraproject.org/wiki/Changes/Python_3.4 * Fri Apr 11 2014 Ralph Bean <rbean@xxxxxxxxxx> - 2.15-1 - Latest upstream. * Fri Jan 17 2014 Ralph Bean <rbean@xxxxxxxxxx> - 2.11-4 - Add dependency on ordereddict for el6. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1094715 - python-chameleon-2.16 is available https://bugzilla.redhat.com/show_bug.cgi?id=1094715 -------------------------------------------------------------------------------- ================================================================================ python-diff-cover-0.6.0-1.fc20 (FEDORA-2014-9611) Automatically find diff lines that need test coverage -------------------------------------------------------------------------------- Update Information: New package python-diff-cover -------------------------------------------------------------------------------- References: [ 1 ] Bug #1082656 - Review Request: python-diff-cover - Automatically find diff lines that need test coverage https://bugzilla.redhat.com/show_bug.cgi?id=1082656 -------------------------------------------------------------------------------- ================================================================================ python-dogpile-cache-0.5.4-1.fc20 (FEDORA-2014-9594) A caching front-end based on the Dogpile lock -------------------------------------------------------------------------------- Update Information: Latest upstream http://dogpilecache.readthedocs.org/en/latest/changelog.html#change-0.5.4 -------------------------------------------------------------------------------- ChangeLog: * Wed Aug 20 2014 Ralph Bean <rbean@xxxxxxxxxx> - 0.5.4-1 - Latest upstream. * Sat Jun 7 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.5.3-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Fri May 30 2014 Bohuslav Kabrda <bkabrda@xxxxxxxxxx> - 0.5.3-2 - Rebuilt for https://fedoraproject.org/wiki/Changes/Python_3.4 * Tue Jan 28 2014 Ralph Bean <rbean@xxxxxxxxxx> - 0.5.3-1 - Latest upstream. - Modernize python3 conditional. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1111878 - python-dogpile-cache-0.5.4 is available https://bugzilla.redhat.com/show_bug.cgi?id=1111878 -------------------------------------------------------------------------------- ================================================================================ python-fedmsg-meta-fedora-infrastructure-0.2.19-1.fc20 (FEDORA-2014-9660) Metadata providers for Fedora Infrastructure's fedmsg deployment -------------------------------------------------------------------------------- Update Information: Latest upstream with fixes for pkgdb and jenkins messages. Fixes to jenkins messages. New Fedora-College processor. Fixes to jenkins messages. -------------------------------------------------------------------------------- ChangeLog: * Wed Aug 20 2014 Ralph Bean <rbean@xxxxxxxxxx> - 0.2.19-1 - Latest upstream with jenkins and pkgdb fixes. - Remove patches. * Wed Aug 13 2014 Ralph Bean <rbean@xxxxxxxxxx> - 0.2.18-3 - Upstream patches to fix further problems with the jenkins processor. * Sun Aug 10 2014 Ralph Bean <rbean@xxxxxxxxxx> - 0.2.18-2 - Patch out time-sensitive test. * Sat Aug 9 2014 Ralph Bean <rbean@xxxxxxxxxx> - 0.2.18-1 - Fix test suite. * Sat Aug 9 2014 Ralph Bean <rbean@xxxxxxxxxx> - 0.2.17-1 - Bugfixes to jenkins messages. * Sat Aug 9 2014 Ralph Bean <rbean@xxxxxxxxxx> - 0.2.16-1 - Remove patch. - Handle fedora college messages. -------------------------------------------------------------------------------- ================================================================================ python-txzmq-0.7.3-1.fc20 (FEDORA-2014-9659) Twisted bindings for ZeroMQ -------------------------------------------------------------------------------- Update Information: Latest upstream with support for zmq reconnect options -------------------------------------------------------------------------------- ChangeLog: * Wed Aug 20 2014 Ralph Bean <rbean@xxxxxxxxxx> - 0.7.3-1 - Latest upstream with support for zmq reconnect options. * Sat Jun 7 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.7.2-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Sat Apr 19 2014 Ralph Bean <rbean@xxxxxxxxxx> - 0.7.2-1 - Latest upstream with python3 support -- woot, woot! -------------------------------------------------------------------------------- ================================================================================ python-zope-exceptions-4.0.7-1.fc20 (FEDORA-2014-9630) Zope Exceptions -------------------------------------------------------------------------------- Update Information: Latest upstream -------------------------------------------------------------------------------- ChangeLog: * Wed Aug 20 2014 Ralph Bean <rbean@xxxxxxxxxx> - 4.0.7-1 - Latest uptream. * Sun Jun 8 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 4.0.6-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Wed May 14 2014 Bohuslav Kabrda <bkabrda@xxxxxxxxxx> - 4.0.6-3 - Rebuilt for https://fedoraproject.org/wiki/Changes/Python_3.4 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1078768 - python-zope-exceptions-4.0.7 is available https://bugzilla.redhat.com/show_bug.cgi?id=1078768 -------------------------------------------------------------------------------- ================================================================================ python-zope-i18nmessageid-4.0.3-1.fc20 (FEDORA-2014-9644) Message Identifiers for internationalization -------------------------------------------------------------------------------- Update Information: Latest upstream -------------------------------------------------------------------------------- ChangeLog: * Wed Aug 20 2014 Ralph Bean <rbean@xxxxxxxxxx> - 4.0.3-1 - Latest upstream. - Modernize python macros. * Sun Aug 17 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 4.0.2-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild * Sun Jun 8 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 4.0.2-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Wed May 14 2014 Bohuslav Kabrda <bkabrda@xxxxxxxxxx> - 4.0.2-3 - Rebuilt for https://fedoraproject.org/wiki/Changes/Python_3.4 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1078769 - python-zope-i18nmessageid-4.0.3 is available https://bugzilla.redhat.com/show_bug.cgi?id=1078769 -------------------------------------------------------------------------------- ================================================================================ python-zope-interface-4.1.1-1.fc20 (FEDORA-2014-9642) Zope 3 Interface Infrastructure -------------------------------------------------------------------------------- Update Information: Latest upstream -------------------------------------------------------------------------------- ChangeLog: * Wed Aug 20 2014 Ralph Bean <rbean@xxxxxxxxxx> - 4.1.1-1 - Latest upstream. - Modernized python macros. * Sun Aug 17 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 4.1.0-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild * Sun Jun 8 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 4.1.0-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Wed May 14 2014 Bohuslav Kabrda <bkabrda@xxxxxxxxxx> - 4.1.0-2 - Rebuilt for https://fedoraproject.org/wiki/Changes/Python_3.4 * Wed Feb 12 2014 Ralph Bean <rbean@xxxxxxxxxx> - 4.1.0-1 - Latest upstream. - Change .zip back to .tar.gz. - Drop fedora 12 conditional. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1078770 - python-zope-interface-4.1.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1078770 -------------------------------------------------------------------------------- ================================================================================ python-zope-proxy-4.1.4-1.fc20 (FEDORA-2014-9603) Generic Transparent Proxies -------------------------------------------------------------------------------- Update Information: Latest upstream -------------------------------------------------------------------------------- ChangeLog: * Wed Aug 20 2014 Ralph Bean <rbean@xxxxxxxxxx> - 4.1.4-1 - Latest upstream. - Modernized python macros. * Sun Aug 17 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 4.1.3-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild * Sun Jun 8 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 4.1.3-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Wed May 14 2014 Bohuslav Kabrda <bkabrda@xxxxxxxxxx> - 4.1.3-2 - Rebuilt for https://fedoraproject.org/wiki/Changes/Python_3.4 * Tue Jan 28 2014 Ralph Bean <rbean@xxxxxxxxxx> - 4.1.3-1 - Latest upstream -------------------------------------------------------------------------------- References: [ 1 ] Bug #1078771 - python-zope-proxy-4.1.4 is available https://bugzilla.redhat.com/show_bug.cgi?id=1078771 -------------------------------------------------------------------------------- ================================================================================ python-zope-schema-4.4.1-1.fc20 (FEDORA-2014-9651) Zope 3 schemas -------------------------------------------------------------------------------- Update Information: Latest upstream -------------------------------------------------------------------------------- ChangeLog: * Wed Aug 20 2014 Ralph Bean <rbean@xxxxxxxxxx> - 4.4.1-1 - Latest upstream. - Modernized python macros. * Sun Jun 8 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 4.4.0-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Wed May 14 2014 Bohuslav Kabrda <bkabrda@xxxxxxxxxx> - 4.4.0-2 - Rebuilt for https://fedoraproject.org/wiki/Changes/Python_3.4 * Tue Jan 28 2014 Ralph Bean <rbean@xxxxxxxxxx> - 4.4.0-1 - Latest upstream. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1078772 - python-zope-schema-4.4.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1078772 -------------------------------------------------------------------------------- ================================================================================ python-zope-testing-4.1.3-1.fc20 (FEDORA-2014-9640) Zope Testing Framework -------------------------------------------------------------------------------- Update Information: Latest upstream -------------------------------------------------------------------------------- ChangeLog: * Wed Aug 20 2014 Ralph Bean <rbean@xxxxxxxxxx> - 4.1.3-1 - Latest upstream. - Modernized python macros. * Sun Jun 8 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 4.1.2-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Wed May 14 2014 Bohuslav Kabrda <bkabrda@xxxxxxxxxx> - 4.1.2-3 - Rebuilt for https://fedoraproject.org/wiki/Changes/Python_3.4 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1078773 - python-zope-testing-4.1.3 is available https://bugzilla.redhat.com/show_bug.cgi?id=1078773 -------------------------------------------------------------------------------- ================================================================================ root-5.34.20-1.fc20 (FEDORA-2014-9631) Numerical data analysis framework -------------------------------------------------------------------------------- Update Information: For details see; http://root.cern.ch/drupal/content/root-version-v5-34-00-patch-release-notes -------------------------------------------------------------------------------- ChangeLog: * Wed Aug 20 2014 Mattias Ellert <mattias.ellert@xxxxxxxxxxxx> - 5.34.20-1 - Update to 5.34.20 - Re-enable xrootd support for F21+ and EPEL7 (now ported to xrootd 4) - Do not depend on wine's fonts - Drop patch root-gccopt.patch * Mon Aug 18 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 5.34.19-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ spacenavd-0.6-1.fc20 (FEDORA-2014-9592) A free, compatible alternative for 3Dconnexion's input drivers -------------------------------------------------------------------------------- Update Information: Minor bug fixes. No new features. -------------------------------------------------------------------------------- ChangeLog: * Mon Aug 18 2014 Richard Shaw <hobbes1069@xxxxxxxxx> - 0.6-1 - Update to latest upstream release. * Mon Aug 18 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.5-9 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild * Sun Jun 8 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.5-8 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ spnavcfg-0.3-1.fc20 (FEDORA-2014-9592) Spacenav daemon interactive configuration program -------------------------------------------------------------------------------- Update Information: Minor bug fixes. No new features. -------------------------------------------------------------------------------- ChangeLog: * Mon Aug 18 2014 Richard Shaw <hobbes1069@xxxxxxxxx> - 0.3-1 - Update to latest upstream release. * Mon Aug 18 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.2.1-8 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild * Sun Jun 8 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.2.1-7 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ springframework-security-3.1.7-1.fc20 (FEDORA-2014-9648) Modular Java/J2EE application security framework -------------------------------------------------------------------------------- Update Information: Security fix for CVE-2014-3527 -------------------------------------------------------------------------------- ChangeLog: * Tue Aug 19 2014 Michal Srb <msrb@xxxxxxxxxx> - 3.1.7-1 - Update to upstream release 3.1.7 - Resolves: CVE-2014-3527 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1131359 - CVE-2014-3527 Spring Security CAS: Access control bypass via untrusted infomation usage in proxy ticket authentication https://bugzilla.redhat.com/show_bug.cgi?id=1131359 -------------------------------------------------------------------------------- ================================================================================ sqlite-3.8.6-1.fc20 (FEDORA-2014-9656) Library that implements an embeddable SQL database engine -------------------------------------------------------------------------------- Update Information: Update to latest upstream version. -------------------------------------------------------------------------------- ChangeLog: * Tue Aug 19 2014 Jan Stanek <jstanek@xxxxxxxxxx> - 3.8.6-1 - Updated to version 3.8.6 (http://www.sqlite.org/releaselog/3_8_6.html) * Mon Aug 18 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 3.8.5-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild * Wed Jun 11 2014 Peter Robinson <pbrobinson@xxxxxxxxxxxxxxxxx> 3.8.5-2 - Re-enable tests on aarch64 now they pass again -------------------------------------------------------------------------------- References: [ 1 ] Bug #1131122 - sqlite-3.8.6 is available https://bugzilla.redhat.com/show_bug.cgi?id=1131122 -------------------------------------------------------------------------------- ================================================================================ subversion-1.8.10-1.fc20 (FEDORA-2014-9636) A Modern Concurrent Version Control System -------------------------------------------------------------------------------- Update Information: This update includes the latest stable release of **Apache Subversion**, version **1.8.10**. **Client-side bugfixes:** * guard against md5 hash collisions when finding cached credentials * ra_serf: properly match wildcards in SSL certs. * ra_serf: ignore the CommonName in SSL certs where there are Subject Alt Names * ra_serf: fix a URI escaping bug that prevented deleting locked paths * rm: Display the proper URL when deleting a URL in the commit log editor * log: Fix another instance of broken pipe error * copy: Properly handle props not present or excluded on cross wc copy * copy: Fix copying parents of locally deleted nodes between wcs * externals: Properly delete ancestor directories of externals when removing the external by changing svn:externals. * ra_serf: fix memory lifetime of some hash values **Server-side bugfixes:** * fsfs: omit config file when creating pre-1.5 format repos **Bindings:** * ruby: removing warning about Ruby 1.9 support being new. * python: fix notify_func callbacks -------------------------------------------------------------------------------- ChangeLog: * Mon Aug 18 2014 Joe Orton <jorton@xxxxxxxxxx> - 1.8.10-1 - update to 1.8.10 (#1129100, #1128884, #1125800) * Mon Aug 18 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.8.9-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild * Sun Jun 8 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.8.9-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1125800 - subversion: credentials leak via MD5 collision [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1125800 [ 2 ] Bug #1129100 - subversion-1.8.10 is available https://bugzilla.redhat.com/show_bug.cgi?id=1129100 [ 3 ] Bug #1128884 - CVE-2014-3522 subversion: incorrect SSL certificate validation in Serf RA (repository access) layer [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1128884 -------------------------------------------------------------------------------- ================================================================================ t-prot-3.1-1.fc20 (FEDORA-2014-9620) A filter which improves the readability of email messages and Usenet posts -------------------------------------------------------------------------------- Update Information: T-prot 3.1 adds support for mutt-kz, a fork of mutt availible by copr to Fedora users. -------------------------------------------------------------------------------- ChangeLog: * Tue Aug 19 2014 Emmanuel Seyman <emmanuel@xxxxxxxxx> - 3.1-1 - Update to 3.1 -------------------------------------------------------------------------------- -- test mailing list test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe: https://admin.fedoraproject.org/mailman/listinfo/test