The following Fedora 20 Security updates need testing: Age URL 113 https://admin.fedoraproject.org/updates/FEDORA-2014-5897/nrpe-2.15-2.fc20 62 https://admin.fedoraproject.org/updates/FEDORA-2014-7551/asterisk-11.10.2-2.fc20 62 https://admin.fedoraproject.org/updates/FEDORA-2014-7613/perl-Email-Address-1.905-1.fc20 21 https://admin.fedoraproject.org/updates/FEDORA-2014-9092/libplist-1.11-2.fc20,libusbmuxd-1.0.9-2.fc20,libimobiledevice-1.1.6-2.fc20,usbmuxd-1.0.9-0.4.c24463e.fc20,ifuse-1.1.3-3.fc20,libgpod-0.8.3-2.fc20,upower-0.9.23-3.fc20,gvfs-1.18.3-3.fc20 14 https://admin.fedoraproject.org/updates/FEDORA-2014-9281/drupal6-6.33-1.fc20 7 https://admin.fedoraproject.org/updates/FEDORA-2014-9344/sks-1.1.5-2.fc20 7 https://admin.fedoraproject.org/updates/FEDORA-2014-9476/cinnamon-screensaver-2.2.4-3.fc20 7 https://admin.fedoraproject.org/updates/FEDORA-2014-9472/xen-4.3.2-7.fc20 7 https://admin.fedoraproject.org/updates/FEDORA-2014-9474/pipelight-0.2.7.3-3.fc20 7 https://admin.fedoraproject.org/updates/FEDORA-2014-9457/pen-0.25.1-1.fc20 3 https://admin.fedoraproject.org/updates/FEDORA-2014-9540/python-pillow-2.2.1-5.fc20 3 https://admin.fedoraproject.org/updates/FEDORA-2014-9542/perl-Plack-1.0031-1.fc20 3 https://admin.fedoraproject.org/updates/FEDORA-2014-9555/phpMyAdmin-4.2.7.1-1.fc20 3 https://admin.fedoraproject.org/updates/FEDORA-2014-9583/mediawiki-1.23.2-1.fc20 3 https://admin.fedoraproject.org/updates/FEDORA-2014-9581/jakarta-commons-httpclient-3.1-15.fc20 1 https://admin.fedoraproject.org/updates/FEDORA-2014-9617/httpcomponents-client-4.2.5-4.fc20 1 https://admin.fedoraproject.org/updates/FEDORA-2014-9648/springframework-security-3.1.7-1.fc20 1 https://admin.fedoraproject.org/updates/FEDORA-2014-9641/polkit-qt-0.112.0-1.fc20 1 https://admin.fedoraproject.org/updates/FEDORA-2014-9596/GraphicsMagick-1.3.20-1.fc20 1 https://admin.fedoraproject.org/updates/FEDORA-2014-9591/distcc-3.2rc1-8.fc20 1 https://admin.fedoraproject.org/updates/FEDORA-2014-9662/cas-client-3.3.3-1.fc20 1 https://admin.fedoraproject.org/updates/FEDORA-2014-9621/ca-certificates-2014.2.1-1.0.fc20 1 https://admin.fedoraproject.org/updates/FEDORA-2014-9636/subversion-1.8.10-1.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2014-9676/webalizer-2.23_08-1.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2014-9712/file-5.19-4.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2014-9706/rubygem-activerecord-4.0.0-5.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2014-9694/smack-3.2.2-5.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2014-9684/php-5.5.16-1.fc20 The following Fedora 20 Critical Path updates have yet to be approved: Age URL 7 https://admin.fedoraproject.org/updates/FEDORA-2014-9459/satyr-0.14-2.fc20 7 https://admin.fedoraproject.org/updates/FEDORA-2014-9462/poppler-data-0.4.7-1.fc20 7 https://admin.fedoraproject.org/updates/FEDORA-2014-8287/dhcp-4.2.7-2.fc20 3 https://admin.fedoraproject.org/updates/FEDORA-2014-9527/perl-Socket-2.015-1.fc20 1 https://admin.fedoraproject.org/updates/FEDORA-2014-9658/libwacom-0.10-1.fc20 1 https://admin.fedoraproject.org/updates/FEDORA-2014-9641/polkit-qt-0.112.0-1.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2014-9674/sqlite-3.8.6-2.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2014-9685/cogl-1.16.0-3.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2014-9712/file-5.19-4.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2014-9673/cups-1.7.5-3.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2014-9682/selinux-policy-3.12.1-181.fc20 The following builds have been pushed to Fedora 20 updates-testing ceph-0.80.5-8.fc20 cogl-1.16.0-3.fc20 cups-1.7.5-3.fc20 eclipse-photran-8.1.5-1.fc20 file-5.19-4.fc20 flare-0.19-2.fc20 flare-engine-0.19-3.fc20 freemind-1.0.1-4.fc20 geard-0-0.16.gite2502a6.fc20 inxi-2.2.1-1.fc20 kactivities-4.13.3-4.fc20 libfreenect-0.5.0-1.fc20 mcabber-0.10.3-1.fc20 mirmon-2.10-1.fc20 monitorix-3.6.0-1.fc20 nepomuk-core-4.13.3-2.fc20 nodejs-proxy-agent-1.1.0-1.fc20 perl-CPAN-Reporter-1.2011-1.fc20 perl-Devel-CheckBin-0.02-2.fc20 perl-Module-Data-0.007-1.fc20 perl-POSIX-strftime-Compiler-0.40-1.fc20 perl-Type-Tiny-1.000002-1.fc20 perl-Unicode-Casing-0.15-1.fc20 php-5.5.16-1.fc20 php-horde-Horde-Core-2.13.1-1.fc20 php-theseer-autoload-1.15.1-1.fc20 qt-creator-3.2.0-1.fc20 rubygem-activerecord-4.0.0-5.fc20 rubygem-serialport-1.3.1-3.fc20 selinux-policy-3.12.1-181.fc20 smack-3.2.2-5.fc20 sqlite-3.8.6-2.fc20 sssd-1.11.6-2.fc20 webalizer-2.23_08-1.fc20 zeitgeist-0.9.16-0.2.20140808.git.ce9affa.fc20 Details about builds: ================================================================================ ceph-0.80.5-8.fc20 (FEDORA-2014-9535) User space components of the Ceph file system -------------------------------------------------------------------------------- Update Information: We need to downgrade the package to the latest stable version for fedora 20 as well. This package also fixes many bugs (several of them filed against rawhide). -------------------------------------------------------------------------------- ChangeLog: * Thu Aug 21 2014 Boris Ranto <branto@xxxxxxxxxx> - 1:0.80.5-8 - Revert the previous change - Fix bz 1118504, second attempt (yasm appears to be the package that caused this * Wed Aug 20 2014 Boris Ranto <branto@xxxxxxxxxx> - 1:0.80.5-7 - Several more merges from file to try to fix the selinux issue (1118504) * Sun Aug 17 2014 Kalev Lember <kalevlember@xxxxxxxxx> - 1:0.80.5-6 - Obsolete ceph-libcephfs * Sat Aug 16 2014 Boris Ranto <branto@xxxxxxxxxx> - 1:0.80.5-5 - Do not require xfsprogs/xfsprogs-devel for el6 - Require gperftools-devel for non-ppc*/s390* architectures only - Do not require junit -- no need to build libcephfs-test.jar - Build without libxfs for el6 - Build without tcmalloc for ppc*/s390* architectures - Location of mkcephfs must depend on a rhel release - Use epoch in the Requires fields [1130700] * Sat Aug 16 2014 Boris Ranto <branto@xxxxxxxxxx> - 1:0.80.5-4 - Use the proper version name in Obsoletes * Fri Aug 15 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1:0.80.5-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild * Fri Aug 15 2014 Boris Ranto <branto@xxxxxxxxxx> - 1:0.80.5-2 - Add the arm pthread hack * Fri Aug 15 2014 Boris Ranto <branto@xxxxxxxxxx> - 1:0.80.5-1 - Bump the Epoch, we need to keep the latest stable, not development, ceph version in fedora - Use the upstream spec file with the ceph-libs split - Add libs-compat subpackage [1116546] - use fedora in rhel 7 checks - obsolete libcephfs [1116614] - depend on redhat-lsb-core for the initscript [1108696] * Wed Aug 13 2014 Kalev Lember <kalevlember@xxxxxxxxx> - 0.81.0-6 - Add obsoletes to keep the upgrade path working (#1118510) * Mon Jul 7 2014 Kaleb S. KEITHLEY <kkeithle[at]redhat.com> - 0.81.0-5 - revert to old spec until after f21 branch * Fri Jul 4 2014 Kaleb S. KEITHLEY <kkeithle[at]redhat.com> - temporary exclude f21/armv7hl. N.B. it builds fine on f20/armv7hl. * Fri Jul 4 2014 Kaleb S. KEITHLEY <kkeithle[at]redhat.com> - 0.81.0-4 - upstream ceph.spec file * Tue Jul 1 2014 Kaleb S. KEITHLEY <kkeithle[at]redhat.com> - 0.81.0-3 - upstream ceph.spec file * Sat Jun 7 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.81.0-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Thu Jun 5 2014 Kaleb S. KEITHLEY <kkeithle[at]redhat.com> - el6 ppc64 likewise for tcmalloc, merge from origin/el6 * Thu Jun 5 2014 Kaleb S. KEITHLEY <kkeithle[at]redhat.com> - el6 ppc64 does not have gperftools, merge from origin/el6 * Thu Jun 5 2014 Kaleb S. KEITHLEY <kkeithle[at]redhat.com> - 0.81.0-1 - ceph-0.81.0 * Wed Jun 4 2014 Peter Robinson <pbrobinson@xxxxxxxxxxxxxxxxx> 0.80.1-5 - gperftools now available on aarch64/ppc64 * Fri May 23 2014 Petr Machata <pmachata@xxxxxxxxxx> - 0.80.1-4 - Rebuild for boost 1.55.0 * Fri May 23 2014 David Tardon <dtardon@xxxxxxxxxx> - 0.80.1-3 - rebuild for boost 1.55.0 * Wed May 14 2014 Kaleb S. KEITHLEY <kkeithle[at]redhat.com> - 0.80.1-2 - build epel-6 - exclude %{_libdir}/ceph/erasure-code in base package * Tue May 13 2014 Kaleb S. KEITHLEY <kkeithle[at]redhat.com> - 0.80.1-1 - Update to latest stable upstream release, BZ 1095201 - PIE, _hardened_build, BZ 955174 * Thu Feb 6 2014 Ken Dreyer <ken.dreyer@xxxxxxxxxxx> - 0.72.2-2 - Move plugins from -devel into -libs package (#891993). Thanks Michael Schwendt. * Mon Jan 6 2014 Ken Dreyer <ken.dreyer@xxxxxxxxxxx> 0.72.2-1 - Update to latest stable upstream release - Use HTTPS for URLs - Submit Automake 1.12 patch upstream - Move unversioned shared libs from ceph-libs into ceph-devel * Wed Dec 18 2013 Marcin Juszkiewicz <mjuszkiewicz@xxxxxxxxxx> 0.67.3-4 - build without tcmalloc on aarch64 (no gperftools) * Sat Nov 30 2013 Peter Robinson <pbrobinson@xxxxxxxxxxxxxxxxx> 0.67.3-3 - gperftools not currently available on aarch64 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1108696 - Ceph missing dependency on redhat-lsb-core https://bugzilla.redhat.com/show_bug.cgi?id=1108696 [ 2 ] Bug #1116546 - ceph-libs are obsoleted but not provided https://bugzilla.redhat.com/show_bug.cgi?id=1116546 -------------------------------------------------------------------------------- ================================================================================ cogl-1.16.0-3.fc20 (FEDORA-2014-9685) A library for using 3D graphics hardware to draw pretty pictures -------------------------------------------------------------------------------- Update Information: This update fixes an issue that could lead to 3rd party libGL providers not working. -------------------------------------------------------------------------------- ChangeLog: * Fri Aug 22 2014 Kalev Lember <kalevlember@xxxxxxxxx> - 1.16.0-3 - Remove lib64 rpaths (#1132876) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1132876 - Rpath issue with cogl https://bugzilla.redhat.com/show_bug.cgi?id=1132876 -------------------------------------------------------------------------------- ================================================================================ cups-1.7.5-3.fc20 (FEDORA-2014-9673) CUPS printing system -------------------------------------------------------------------------------- Update Information: Upstream patches have been applied to prevent long-running Get-Jobs operations preventing other requests from being handled, and to fix the order of completed jobs in Get-Jobs responses. -------------------------------------------------------------------------------- ChangeLog: * Wed Aug 20 2014 Tim Waugh <twaugh@xxxxxxxxxx> - 1:1.7.5-3 - Upstream patch for STR #4396, pre-requisite for STR #2913 patch. - Upstream patch for STR #2913 to limit Get-Jobs replies to 500 jobs (bug #421671). * Mon Aug 11 2014 Tim Waugh <twaugh@xxxxxxxxxx> - 1:1.7.5-2 - Fix conf/log file reading for authenticated users (STR #4461). * Fri Aug 1 2014 Jiri Popelka <jpopelka@xxxxxxxxxx> - 1:1.7.5-1 - 1.7.5 -------------------------------------------------------------------------------- References: [ 1 ] Bug #421671 - With MaxJobs=0, PreserveJobFiles=On cupsd uses 100% CPU https://bugzilla.redhat.com/show_bug.cgi?id=421671 -------------------------------------------------------------------------------- ================================================================================ eclipse-photran-8.1.5-1.fc20 (FEDORA-2014-9701) Fortran Development Tools (Photran) for Eclipse -------------------------------------------------------------------------------- Update Information: Update to 8.1.5 -------------------------------------------------------------------------------- ChangeLog: * Wed Aug 20 2014 Orion Poplawski <orion@xxxxxxxxxxxxx> - 8.1.5-1 - Update to 8.1.5 -------------------------------------------------------------------------------- ================================================================================ file-5.19-4.fc20 (FEDORA-2014-9712) A utility for determining file types -------------------------------------------------------------------------------- Update Information: Fix for CVE-2014-3587. -------------------------------------------------------------------------------- ChangeLog: * Fri Aug 22 2014 Jan Kaluza <jkaluza@xxxxxxxxxx> - 5.19-4 - fix #1132787 - CVE-2014-3587 * Sat Aug 16 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 5.19-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild * Sat Jul 12 2014 Tom Callaway <spot@xxxxxxxxxxxxxxxxx> - 5.19-2 - fix license handling -------------------------------------------------------------------------------- References: [ 1 ] Bug #1128587 - CVE-2014-3587 file: incomplete fix for CVE-2012-1571 in cdf_read_property_info https://bugzilla.redhat.com/show_bug.cgi?id=1128587 -------------------------------------------------------------------------------- ================================================================================ flare-0.19-2.fc20 (FEDORA-2014-9695) A single player, 2D-isometric, action Role-Playing Game -------------------------------------------------------------------------------- Update Information: New release v0.19 -------------------------------------------------------------------------------- ChangeLog: * Wed Aug 20 2014 Erik Schilling <ablu.erikschilling@xxxxxxxxxxxxxx> - 0.19-2 - Fixed cmake dependency * Tue Aug 19 2014 Erik Schilling <ablu.erikschilling@xxxxxxxxxxxxxx> 0.19-1 - New release - Splitted out engine code into flare-engine package * Sat Aug 16 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.18-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild * Fri Jun 13 2014 Hans de Goede <hdegoede@xxxxxxxxxx> - 0.18-5 - Rebuild for new SDL_gfx * Sat Jun 7 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.18-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1071554 - Review Request: flare-engine - A single player, 2D-isometric, action Role-Playing Engine https://bugzilla.redhat.com/show_bug.cgi?id=1071554 [ 2 ] Bug #1052191 - flare-0.19 is available https://bugzilla.redhat.com/show_bug.cgi?id=1052191 -------------------------------------------------------------------------------- ================================================================================ flare-engine-0.19-3.fc20 (FEDORA-2014-9695) A single player, 2D-isometric, action Role-Playing Engine -------------------------------------------------------------------------------- Update Information: New release v0.19 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1071554 - Review Request: flare-engine - A single player, 2D-isometric, action Role-Playing Engine https://bugzilla.redhat.com/show_bug.cgi?id=1071554 [ 2 ] Bug #1052191 - flare-0.19 is available https://bugzilla.redhat.com/show_bug.cgi?id=1052191 -------------------------------------------------------------------------------- ================================================================================ freemind-1.0.1-4.fc20 (FEDORA-2014-9668) Free mind mapping software -------------------------------------------------------------------------------- Update Information: Put freemind base dir on classpath (resolves rhbz#1114025) -------------------------------------------------------------------------------- ChangeLog: * Wed Aug 20 2014 Michael Simacek <msimacek@xxxxxxxxxx> - 1.0.1-4 - Put freemind base dir on classpath (resolves rhbz#1114025) * Sat Jun 7 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.0.1-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1114025 - export doesn't work - .xsl resources are not found https://bugzilla.redhat.com/show_bug.cgi?id=1114025 -------------------------------------------------------------------------------- ================================================================================ geard-0-0.16.gite2502a6.fc20 (FEDORA-2014-9688) Geard -------------------------------------------------------------------------------- Update Information: update to master commit e2502a6e33a117b23be05443854ac83b7e45a977 New builds from upstream master at commit id 06df437 Latest version of geard from upstream. update to latest master 3c781d0cd8a961a85449d362fb5d8c88c5a34a22 Update to latest upstream git snapshot of geard. update to latest master 3c781d0cd8a961a85449d362fb5d8c88c5a34a22 make tests more resilient release 6 -------------------------------------------------------------------------------- ChangeLog: * Thu Aug 21 2014 Lokesh Mandvekar <lsm5@xxxxxxxxxxxxxxxxx> - 0-0.16.git - update to master commit e2502a6e33a117b23be05443854ac83b7e45a977 * Sat Aug 16 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0-0.15.git06df437 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild * Mon Jul 21 2014 Adam Miller <maxamillion@xxxxxxxxxxxxxxxxx> - 0-0.14.git06df437 - New builds from upstream master at commit id 06df437 * Wed Jul 2 2014 Adam Miller <maxamillion@xxxxxxxxxxxxxxxxx> - 0-0.13.git6850c8d - New builds from upstream master at commit id 6850c8d * Wed Jun 11 2014 Adam Miller <maxamillion@xxxxxxxxxxxxxxxxx> - 0-0.12.1.git8b2dcfc - Remove sti binary as per upstream feedback - Conditionally patch for selinux F20 vs F21+ * Wed Jun 11 2014 Adam Miller <maxamillion@xxxxxxxxxxxxxxxxx> - 0-0.12.git8b2dcfc - New builds from upstream master at commit id 8b2dcfc - Add sti binary * Mon Jun 9 2014 Adam Miller <maxamillion@xxxxxxxxxxxxxxxxx> - 0-0.11.git8b2dcfc - New builds from upstream master at commit id 8b2dcfc * Sat Jun 7 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0-0.10.git3c781d0 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Thu May 29 2014 Lokesh Mandvekar <lsm5@xxxxxxxxxx> - 0-0.9.git - update to latest master 3c781d0cd8a961a85449d362fb5d8c88c5a34a22 - Require docker-io to fix BZ 1097638 - selinux fix in master 0-0.9 not required in f20 * Sat May 17 2014 Lokesh Mandvekar <lsm5@xxxxxxxxxx> - 0-0.8.git - update to latest master - make sure required package is docker-io * Wed May 7 2014 Lokesh Mandvekar <lsm5@xxxxxxxxxx> - 0-0.7.git - make tests more resilient * Fri May 2 2014 Lokesh Mandvekar <lsm5@xxxxxxxxxx> - 0-0.6.git - release 6 * Tue Apr 29 2014 Colin Walters <walters@xxxxxxxxxx> - 0-0.5.1.git - Change requires to be /usr/bin/docker to adapt to package rename -------------------------------------------------------------------------------- References: [ 1 ] Bug #1097638 - It will install the docker as dependency by default but not docker-io if install the geard via yum directly on Fedora20 https://bugzilla.redhat.com/show_bug.cgi?id=1097638 -------------------------------------------------------------------------------- ================================================================================ inxi-2.2.1-1.fc20 (FEDORA-2014-9697) A full featured system information script -------------------------------------------------------------------------------- Update Information: Update to 2.2.1 -------------------------------------------------------------------------------- ChangeLog: * Fri Aug 22 2014 Vasiliy N. Glazov <vascom2@xxxxxxxxx> 2.2.1-1 - Update to 2.2.1 -------------------------------------------------------------------------------- ================================================================================ kactivities-4.13.3-4.fc20 (FEDORA-2014-9681) API for using and interacting with Activities -------------------------------------------------------------------------------- Update Information: Move KCM to -libs so that we can configure activities even when running kf5-kactivities -------------------------------------------------------------------------------- ChangeLog: * Thu Aug 21 2014 Daniel Vrátil <dvratil@xxxxxxxxxx> - 4.13.3-4 - Move KCM to -libs so that we can configure activities even when running kf5-kactivities * Sat Aug 16 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 4.13.3-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild * Thu Aug 7 2014 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 4.13.3-2 - -nepomuk-devel subpkg -------------------------------------------------------------------------------- ================================================================================ libfreenect-0.5.0-1.fc20 (FEDORA-2014-9710) Device driver for the Kinect -------------------------------------------------------------------------------- Update Information: update to release 0.5.0 (rhbz#1124171) -------------------------------------------------------------------------------- ChangeLog: * Tue Aug 19 2014 Jiri Kastner <jkastner /at/ redhat /dot/ com> - 0.5.0-1 - update to release 0.5.0 (rhbz#1124171) - Move openni plugin to libdir/openni2/Drivers (rhbz#1094787) * Sun Aug 17 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.4.3-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild * Sat Jun 7 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.4.3-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Sun Jun 1 2014 Rich Mattes <richmattes@xxxxxxxxx> - 0.4.3-1 - Update to release 0.4.3 - Move openni plugin to libdir/openni2/ (rhbz#1094787) * Mon May 5 2014 Rich Mattes <richmattes@xxxxxxxxx> - 0.4.2-1 - Update to release 0.4.2 - Add platform detection for aarch64 * Fri May 2 2014 Rich Mattes <richmattes@xxxxxxxxx> - 0.4.1-1 - Update to release 0.4.1 * Fri Nov 22 2013 Rich Mattes <richmattes@xxxxxxxxx> - 0.2.0-1 - Update to release 0.2.0 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1124171 - libfreenect-0.5.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1124171 [ 2 ] Bug #1094787 - kinect drivers path for openni https://bugzilla.redhat.com/show_bug.cgi?id=1094787 -------------------------------------------------------------------------------- ================================================================================ mcabber-0.10.3-1.fc20 (FEDORA-2014-9689) Console Jabber instant messaging client -------------------------------------------------------------------------------- Update Information: This update contains various bug fixes and improvements. Upstream changelog: http://mcabber.com/files/ChangeLog -------------------------------------------------------------------------------- ChangeLog: * Thu Aug 21 2014 Till Maas <opensource@xxxxxxxxx> - 0.10.3-1 - Update to new upstream release * Sun Aug 17 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.10.2-7 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild * Sat Jun 7 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.10.2-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Sun Oct 13 2013 Till Maas <opensource@xxxxxxxxx> - 0.10.2-5 - Harden build * Wed Aug 21 2013 Paul Wouters <pwouters@xxxxxxxxxx> - 0.10.2-4 - Ensure to BuildRequires: libotr-devel >= 4.0.0 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1096084 - mcabber-0.10.3 is available https://bugzilla.redhat.com/show_bug.cgi?id=1096084 -------------------------------------------------------------------------------- ================================================================================ mirmon-2.10-1.fc20 (FEDORA-2014-9666) Monitor the status of mirrors -------------------------------------------------------------------------------- Update Information: * Probe only one site-url with "mirmon -get url site-url". -------------------------------------------------------------------------------- ChangeLog: * Fri Aug 22 2014 Christopher Meng <rpm@xxxxxxxx> - 2.10-1 - Update to 2.10 * Sat Jun 7 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 2.9-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ monitorix-3.6.0-1.fc20 (FEDORA-2014-9705) A free, open source, lightweight system monitoring tool -------------------------------------------------------------------------------- Update Information: This new version introduces two new graphs; one that is Linux specific to monitor an unlimited number of user processes (including CPU usage, memory usage, disk usage, network usage, opened files, number of threads, number of voluntary and involuntary context switches and number of instances of the same process). The other new graph is to monitor also an unlimited number of virtual machines (using the libvirt manager) and also covers CPU, memory, disk and network usages. The rest of changes and bugs fixed are, as always, reflected in the Changes file. -------------------------------------------------------------------------------- ChangeLog: * Wed Aug 20 2014 Jordi Sanfeliu <jordi@xxxxxxxxxxxx> - 3.6.0-1 - Updated to 3.6.0. * Sat Jun 7 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 3.5.1-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ nepomuk-core-4.13.3-2.fc20 (FEDORA-2014-9667) Nepomuk Core utilities and libraries -------------------------------------------------------------------------------- Update Information: Restore libnepomukcleaner.so symlink. -------------------------------------------------------------------------------- ChangeLog: * Thu Aug 21 2014 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 4.13.3-2 - restore libnepomukcleaner.so symlink (#1132497) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1132497 - missing soft link /usr/lib64/libnepomukcleaner.so https://bugzilla.redhat.com/show_bug.cgi?id=1132497 -------------------------------------------------------------------------------- ================================================================================ nodejs-proxy-agent-1.1.0-1.fc20 (FEDORA-2014-9692) Maps proxy protocols to http.Agent implementations -------------------------------------------------------------------------------- Update Information: Initial packaging -------------------------------------------------------------------------------- References: [ 1 ] Bug #1122231 - Review Request: nodejs-proxy-agent - Maps proxy protocols to http.Agent implementations https://bugzilla.redhat.com/show_bug.cgi?id=1122231 -------------------------------------------------------------------------------- ================================================================================ perl-CPAN-Reporter-1.2011-1.fc20 (FEDORA-2014-9669) Adds CPAN Testers reporting to CPAN.pm -------------------------------------------------------------------------------- Update Information: Initial release -------------------------------------------------------------------------------- References: [ 1 ] Bug #1127169 - Review Request: perl-CPAN-Reporter - Adds CPAN Testers reporting to CPAN.pm https://bugzilla.redhat.com/show_bug.cgi?id=1127169 -------------------------------------------------------------------------------- ================================================================================ perl-Devel-CheckBin-0.02-2.fc20 (FEDORA-2014-9690) Check that a command is available -------------------------------------------------------------------------------- Update Information: This is the first Fedora release of perl-Devel-CheckBin. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1130581 - Review Request: perl-Devel-CheckBin - Check that a command is available https://bugzilla.redhat.com/show_bug.cgi?id=1130581 -------------------------------------------------------------------------------- ================================================================================ perl-Module-Data-0.007-1.fc20 (FEDORA-2014-9708) Introspect context information about modules in @INC -------------------------------------------------------------------------------- Update Information: Initial release -------------------------------------------------------------------------------- References: [ 1 ] Bug #1128409 - Review Request: perl-Module-Data - Introspect context information about modules in @INC https://bugzilla.redhat.com/show_bug.cgi?id=1128409 -------------------------------------------------------------------------------- ================================================================================ perl-POSIX-strftime-Compiler-0.40-1.fc20 (FEDORA-2014-9696) GNU C library compatible strftime for loggers and servers -------------------------------------------------------------------------------- Update Information: -------------------------------------------------------------------------------- ChangeLog: * Thu Aug 21 2014 Ralf Corsépius <corsepiu@xxxxxxxxxxxxxxxxx> - 0.40-1 - Fix Australia/Darwin test (RHBZ#1132033). -------------------------------------------------------------------------------- References: [ 1 ] Bug #1132033 - perl-POSIX-strftime-Compiler-0.32-1.fc22 FTBFS: t/04_tzset.t tests fail after upgrading tzdata to 2014f https://bugzilla.redhat.com/show_bug.cgi?id=1132033 -------------------------------------------------------------------------------- ================================================================================ perl-Type-Tiny-1.000002-1.fc20 (FEDORA-2014-9675) Tiny, yet Moo(se)-compatible type constraint -------------------------------------------------------------------------------- Update Information: -------------------------------------------------------------------------------- ChangeLog: * Fri Aug 22 2014 Ralf Corsépius <corsepiu@xxxxxxxxxxxxxxxxx> - 1.000002-1 - Upstream update. - Update deps. * Mon Aug 18 2014 Ralf Corsépius <corsepiu@xxxxxxxxxxxxxxxxx> - 1.000000-1 - Upstream update. -------------------------------------------------------------------------------- ================================================================================ perl-Unicode-Casing-0.15-1.fc20 (FEDORA-2014-9671) Perl extension to override system case changing functions -------------------------------------------------------------------------------- Update Information: This release fixes returning value in debugging mode. -------------------------------------------------------------------------------- ChangeLog: * Fri Aug 22 2014 Petr Pisar <ppisar@xxxxxxxxxx> - 0.15-1 - 0.15 bump -------------------------------------------------------------------------------- References: [ 1 ] Bug #1132870 - perl-Unicode-Casing-0.15 is available https://bugzilla.redhat.com/show_bug.cgi?id=1132870 -------------------------------------------------------------------------------- ================================================================================ php-5.5.16-1.fc20 (FEDORA-2014-9684) PHP scripting language for creating dynamic web sites -------------------------------------------------------------------------------- Update Information: 21 Aug 2014, PHP 5.5.16 Core: * Fixed bug #67693 (incorrect push to the empty array) (Tjerk) * Fixed bug #67717 (segfault in dns_get_record). (CVE-2014-3597) (Remi) COM: * Fixed missing type checks in com_event_sink (Yussuf Khalil, Stas). Fileinfo: * Fixed bug #67705 (extensive backtracking in rule regular expression). (CVE-2014-3538) (Remi) * Fixed bug #67716 (Segfault in cdf.c). (CVE-2014-3587) (Remi) FPM: * Fixed bug #67635 (php links to systemd libraries without using pkg-config). (pacho@xxxxxxxxxx, Remi) GD: * Fixed bug #66901 (php-gd 'c_color' NULL pointer dereference). (CVE-2014-2497) (Remi) * Fixed bug #67730 (Null byte injection possible with imagexxx functions). (CVE-2014-5120) (Ryan Mauger) Milter: * Fixed bug #67715 (php-milter does not build and crashes randomly). (Mike) OpenSSL: * Fixed missing type checks in OpenSSL options (Yussuf Khalil, Stas). readline: * Fixed bug #55496 (Interactive mode doesn't force a newline before the prompt). (Bob, Johannes) * Fixed bug #67496 (Save command history when exiting interactive shell with control-c). (Dmitry Saprykin, Johannes) Sessions: * Fixed missing type checks in php_session_create_id (Yussuf Khalil, Stas). ODBC: * Fixed bug #60616 (odbc_fetch_into returns junk data at end of multi-byte char fields). (Keyur) -------------------------------------------------------------------------------- ChangeLog: * Thu Aug 21 2014 Remi Collet <rcollet@xxxxxxxxxx> 5.5.16-1 - Update to 5.5.16 http://www.php.net/releases/5_5_16.php - fix zts-php-config --php-binary output #1124605 - move zts-php from php-devel to php-cli - revert fix for 67724 because of 67865 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1128587 - CVE-2014-3587 file: incomplete fix for CVE-2012-1571 in cdf_read_property_info https://bugzilla.redhat.com/show_bug.cgi?id=1128587 [ 2 ] Bug #1132793 - CVE-2014-5120 gd: NUL byte injection in filenames passed to image handling functions https://bugzilla.redhat.com/show_bug.cgi?id=1132793 -------------------------------------------------------------------------------- ================================================================================ php-horde-Horde-Core-2.13.1-1.fc20 (FEDORA-2014-9691) Horde Core Framework libraries -------------------------------------------------------------------------------- Update Information: Horde_Core 2.13.1 * [mms] Ensure persistently stored data is not overwritten by another session. * [mms] Fix boostrapping DB object when using SQL as the Horde cache driver (Bug #13439). * [mjr] Support ITEMOPERATIONS_EMPTYFOLDER requests via ActiveSync. * [mjr] Fetch correct data for EAS ItemSettings requests. * [jan] Catch exception from application in portal block (Bug #13427). * [jan] Fix returning session start time from session handler (Bug #13428). * [mjr] Add support for synchronizing user-defined IMAP flags as EAS Email categories. * [mjr] Fix BC break when detecting the ActiveSync state driver. -------------------------------------------------------------------------------- ChangeLog: * Fri Aug 22 2014 Remi Collet <remi@xxxxxxxxxxxxxxxxx> - 2.13.1-1 - Update to 2.13.1 -------------------------------------------------------------------------------- ================================================================================ php-theseer-autoload-1.15.1-1.fc20 (FEDORA-2014-9326) A tool and library to generate autoload code -------------------------------------------------------------------------------- Update Information: Upstream Changelog: Release 1.15.1 * Fix regression for sorted static require lists Release 1.15.0 * Added support for composer.json parsing * Added (optional) caching * Added explicit wildcard support for directory name matching * Changed error messages on unit redeclarations * Some code cleanup and refactoring of internals -------------------------------------------------------------------------------- ChangeLog: * Thu Aug 14 2014 Remi Collet <remi@xxxxxxxxxxxxxxxxx> - 1.15.1-1 - Update to 1.15.1 * Tue Aug 12 2014 Remi Collet <remi@xxxxxxxxxxxxxxxxx> - 1.15.0-1 - Update to 1.15.0 -------------------------------------------------------------------------------- ================================================================================ qt-creator-3.2.0-1.fc20 (FEDORA-2014-9707) Cross-platform IDE for Qt -------------------------------------------------------------------------------- Update Information: Update to version 3.2.0, see https://qt.gitorious.org/qt-creator/qt-creator/source/ebf45ac67702b5c8e835756089d28cce44fca427:dist/changes-3.2.0 for details. -------------------------------------------------------------------------------- ChangeLog: * Sun Aug 10 2014 Sandro Mani <manisandro@xxxxxxxxx> - 3.2.0-1 - 3.2.0 release -------------------------------------------------------------------------------- References: [ 1 ] Bug #1118386 - [abrt] qt-creator: CPlusPlus::Parser::parsePrimaryExpression(): qtcreator killed by SIGSEGV https://bugzilla.redhat.com/show_bug.cgi?id=1118386 -------------------------------------------------------------------------------- ================================================================================ rubygem-activerecord-4.0.0-5.fc20 (FEDORA-2014-9706) Implements the ActiveRecord pattern for ORM -------------------------------------------------------------------------------- Update Information: Fix CVE-2014-3514: vulnerability in the create_with -------------------------------------------------------------------------------- ChangeLog: * Tue Aug 19 2014 Josef Strzibny <jstribny@xxxxxxxxxx> - 1:4.0.0-5 - Fix CVE-2014-3514: vulnerability in the create_with -------------------------------------------------------------------------------- ================================================================================ rubygem-serialport-1.3.1-3.fc20 (FEDORA-2014-9663) Ruby library that provides a class for using RS-232 serial ports -------------------------------------------------------------------------------- Update Information: Update to serialport 1.3.1 -------------------------------------------------------------------------------- ChangeLog: * Thu Aug 21 2014 Alejandro Pérez <aeperezt@xxxxxxxxxxxxxxxxx> - 1.3.1-3 --fixed lib path * Mon Aug 18 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.3.1-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild * Fri Aug 8 2014 Alejandro Pérez <aeperezt@xxxxxxxxxxxxxxxxx> - 1.3.1-1 - Initial package -------------------------------------------------------------------------------- ================================================================================ selinux-policy-3.12.1-181.fc20 (FEDORA-2014-9682) SELinux policy configuration -------------------------------------------------------------------------------- Update Information: More info: http://koji.fedoraproject.org/koji/buildinfo?buildID=569460 -------------------------------------------------------------------------------- ChangeLog: * Wed Aug 20 2014 Lukas Vrabec <lvrabec@xxxxxxxxxx> 3.12.1-181 - Allow docker lots more access. - Added interface kernel_dontaudit_setsched - Added interface kernel_signull - Allow qpid to read passwd files BZ (#1130086) - Allow sendmail to append dead.letter located in var/spool/nagios/dead.letter. - Allow mdadm to seng signull kernel_t which is proces type of mdadm on early boot. - geoclue needs to connect to http and http_cache ports -------------------------------------------------------------------------------- References: [ 1 ] Bug #1127078 - SELinux is preventing /usr/sbin/httpd from 'search' accesses on the directory . https://bugzilla.redhat.com/show_bug.cgi?id=1127078 [ 2 ] Bug #1130792 - SELinux is preventing /usr/sbin/ssmtp from 'append' accesses on the file . https://bugzilla.redhat.com/show_bug.cgi?id=1130792 [ 3 ] Bug #1131274 - SELinux is preventing /usr/sbin/mdadm from using the 'signull' accesses on a process. https://bugzilla.redhat.com/show_bug.cgi?id=1131274 [ 4 ] Bug #1131280 - SELinux is preventing /usr/libexec/geoclue from 'name_connect' accesses on the tcp_socket . https://bugzilla.redhat.com/show_bug.cgi?id=1131280 -------------------------------------------------------------------------------- ================================================================================ smack-3.2.2-5.fc20 (FEDORA-2014-9694) Open Source XMPP (Jabber) client library -------------------------------------------------------------------------------- Update Information: - fix for CVE-2014-5075 (rhbz#1127277) -------------------------------------------------------------------------------- ChangeLog: * Thu Aug 21 2014 gil cattaneo <puntogil@xxxxxxxxx> 3.2.2-5 - fix for CVE-2014-5075 (rhbz#1127277) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1127276 - CVE-2014-5075 smack: MitM vulnerability https://bugzilla.redhat.com/show_bug.cgi?id=1127276 -------------------------------------------------------------------------------- ================================================================================ sqlite-3.8.6-2.fc20 (FEDORA-2014-9674) Library that implements an embeddable SQL database engine -------------------------------------------------------------------------------- Update Information: Update to 3.8.6 - Fixed dependency on Tcl 8.6, from this version on the Tcl version should be automatically chosen based on Fedora version. -------------------------------------------------------------------------------- ChangeLog: * Tue Aug 19 2014 Jan Stanek <jstanek@xxxxxxxxxx> - 3.8.6-2 - Added auto-selection of Tcl version based on Fedora version * Tue Aug 19 2014 Jan Stanek <jstanek@xxxxxxxxxx> - 3.8.6-1 - Updated to version 3.8.6 (http://www.sqlite.org/releaselog/3_8_6.html) * Mon Aug 18 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 3.8.5-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild * Wed Jun 11 2014 Peter Robinson <pbrobinson@xxxxxxxxxxxxxxxxx> 3.8.5-2 - Re-enable tests on aarch64 now they pass again -------------------------------------------------------------------------------- References: [ 1 ] Bug #1131122 - sqlite-3.8.6 is available https://bugzilla.redhat.com/show_bug.cgi?id=1131122 -------------------------------------------------------------------------------- ================================================================================ sssd-1.11.6-2.fc20 (FEDORA-2014-9715) System Security Services Daemon -------------------------------------------------------------------------------- Update Information: Fixes a crash when running on the IPA server -------------------------------------------------------------------------------- ChangeLog: -------------------------------------------------------------------------------- ================================================================================ webalizer-2.23_08-1.fc20 (FEDORA-2014-9676) A flexible Web server log file analysis program -------------------------------------------------------------------------------- Update Information: Update to new stable version 2.23_08. -------------------------------------------------------------------------------- ChangeLog: * Thu Aug 21 2014 Jan Kaluza <jkaluza@xxxxxxxxxx> - 2.23_08-1 - update to new version 2.23-08 (#1119536) * Mon Aug 18 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 2.23_05-11 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild * Sun Jun 8 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 2.23_05-10 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #902853 - webalizer: stack-based buffer overflow by importing cache from tab file https://bugzilla.redhat.com/show_bug.cgi?id=902853 -------------------------------------------------------------------------------- ================================================================================ zeitgeist-0.9.16-0.2.20140808.git.ce9affa.fc20 (FEDORA-2014-9714) Framework providing Desktop activity awareness -------------------------------------------------------------------------------- Update Information: checkout the latest snapshot from upstream to see if it can solve the issue, if not, I will report this to upstream. -------------------------------------------------------------------------------- ChangeLog: * Thu Aug 21 2014 Christopher Meng <rpm@xxxxxxxx> - 0.9.16-0.2.20140808.git.ce9affa - Introduce python-zeitgeist subpkg - Mark xdg autostart file as noreplace for better UX, Fix BZ#863222 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1130769 - Empathy and Contacts crash on start https://bugzilla.redhat.com/show_bug.cgi?id=1130769 -------------------------------------------------------------------------------- -- test mailing list test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe: https://admin.fedoraproject.org/mailman/listinfo/test
