The following Fedora 19 Security updates need testing: Age URL 301 https://admin.fedoraproject.org/updates/FEDORA-2013-19963/openstack-glance-2013.1.4-1.fc19 113 https://admin.fedoraproject.org/updates/FEDORA-2014-5896/nrpe-2.15-2.fc19 64 https://admin.fedoraproject.org/updates/FEDORA-2014-7496/readline-6.2-8.fc19 62 https://admin.fedoraproject.org/updates/FEDORA-2014-7570/asterisk-11.10.2-2.fc19 62 https://admin.fedoraproject.org/updates/FEDORA-2014-6774/claws-mail-3.10.1-1.fc19,claws-mail-plugins-3.10.0-1.fc19,libetpan-1.5-1.fc19 62 https://admin.fedoraproject.org/updates/FEDORA-2014-7610/perl-Email-Address-1.905-1.fc19 53 https://admin.fedoraproject.org/updates/FEDORA-2014-7939/lzo-2.08-1.fc19 29 https://admin.fedoraproject.org/updates/FEDORA-2014-8771/ReviewBoard-1.7.27-1.fc19 15 https://admin.fedoraproject.org/updates/FEDORA-2014-9162/xulrunner-31.0-1.fc19 13 https://admin.fedoraproject.org/updates/FEDORA-2014-9305/krb5-1.11.3-25.fc19 7 https://admin.fedoraproject.org/updates/FEDORA-2014-9350/sks-1.1.5-2.fc19 7 https://admin.fedoraproject.org/updates/FEDORA-2014-9401/ppp-2.4.5-33.fc19 7 https://admin.fedoraproject.org/updates/FEDORA-2014-9493/xen-4.2.4-7.fc19 7 https://admin.fedoraproject.org/updates/FEDORA-2014-9399/pixman-0.30.0-5.fc19 7 https://admin.fedoraproject.org/updates/FEDORA-2014-9427/pipelight-0.2.7.3-3.fc19 3 https://admin.fedoraproject.org/updates/FEDORA-2014-9548/mediawiki-1.23.2-1.fc19 3 https://admin.fedoraproject.org/updates/FEDORA-2014-9536/python-pillow-2.0.0-14.gitd1c6db8.fc19 3 https://admin.fedoraproject.org/updates/FEDORA-2014-9544/perl-Plack-1.0031-1.fc19 3 https://admin.fedoraproject.org/updates/FEDORA-2014-9539/jakarta-commons-httpclient-3.1-15.fc19 3 https://admin.fedoraproject.org/updates/FEDORA-2014-9521/subversion-1.7.18-1.fc19 3 https://admin.fedoraproject.org/updates/FEDORA-2014-9534/phpMyAdmin-4.2.7.1-1.fc19 1 https://admin.fedoraproject.org/updates/FEDORA-2014-9646/springframework-security-3.1.7-1.fc19 1 https://admin.fedoraproject.org/updates/FEDORA-2014-9602/polkit-qt-0.112.0-1.fc19 1 https://admin.fedoraproject.org/updates/FEDORA-2014-9624/GraphicsMagick-1.3.20-1.fc19 1 https://admin.fedoraproject.org/updates/FEDORA-2014-9632/distcc-3.2rc1-4.fc19 1 https://admin.fedoraproject.org/updates/FEDORA-2014-9619/ca-certificates-2014.2.1-1.0.fc19 1 https://admin.fedoraproject.org/updates/FEDORA-2014-9629/httpcomponents-client-4.2.5-4.fc19 0 https://admin.fedoraproject.org/updates/FEDORA-2014-9679/php-5.5.16-1.fc19 0 https://admin.fedoraproject.org/updates/FEDORA-2014-9703/cups-1.6.4-9.fc19 The following Fedora 19 Critical Path updates have yet to be approved: Age URL 249 https://admin.fedoraproject.org/updates/FEDORA-2013-22326/fedora-bookmarks-15-5.fc19 175 https://admin.fedoraproject.org/updates/FEDORA-2014-3245/testdisk-6.14-2.fc19.1,ntfs-3g-2014.2.15-1.fc19 13 https://admin.fedoraproject.org/updates/FEDORA-2014-9305/krb5-1.11.3-25.fc19 7 https://admin.fedoraproject.org/updates/FEDORA-2014-9456/poppler-data-0.4.7-1.fc19 7 https://admin.fedoraproject.org/updates/FEDORA-2014-9453/vim-7.4.402-1.fc19 7 https://admin.fedoraproject.org/updates/FEDORA-2014-9432/selinux-policy-3.12.1-74.29.fc19 7 https://admin.fedoraproject.org/updates/FEDORA-2014-9399/pixman-0.30.0-5.fc19 7 https://admin.fedoraproject.org/updates/FEDORA-2014-9401/ppp-2.4.5-33.fc19 6 https://admin.fedoraproject.org/updates/FEDORA-2014-9513/curl-7.29.0-22.fc19 1 https://admin.fedoraproject.org/updates/FEDORA-2014-9602/polkit-qt-0.112.0-1.fc19 1 https://admin.fedoraproject.org/updates/FEDORA-2014-9619/ca-certificates-2014.2.1-1.0.fc19 0 https://admin.fedoraproject.org/updates/FEDORA-2014-9703/cups-1.6.4-9.fc19 The following builds have been pushed to Fedora 19 updates-testing cups-1.6.4-9.fc19 eclipse-photran-8.1.5-1.fc19 flare-0.19-2.fc19 flare-engine-0.19-3.fc19 freemind-1.0.1-4.fc19 geard-0-0.16.gite2502a6.fc19 hawtbuf-1.9-10.fc19 innotop-1.9.1-6.fc19 inxi-2.2.1-1.fc19 mcabber-0.10.3-1.fc19 monitorix-3.6.0-1.fc19 nepomuk-core-4.11.5-2.fc19 nodejs-proxy-agent-1.1.0-1.fc19 perl-Devel-CheckBin-0.02-2.fc19 perl-POSIX-strftime-Compiler-0.40-1.fc19 perl-Type-Tiny-1.000002-1.fc19 perl-Unicode-Casing-0.15-1.fc19 php-5.5.16-1.fc19 pyp2rpm-1.0.1-3.fc19 qt-creator-3.2.0-1.fc19 rubygem-serialport-1.3.1-3.fc19 Details about builds: ================================================================================ cups-1.6.4-9.fc19 (FEDORA-2014-9703) CUPS printing system -------------------------------------------------------------------------------- Update Information: Upstream patches have been applied to prevent long-running Get-Jobs operations preventing other requests from being handled, and to fix the order of completed jobs in Get-Jobs responses. This update fixes a security flaw potentially leading to a disclosure of information. -------------------------------------------------------------------------------- ChangeLog: * Thu Aug 21 2014 Tim Waugh <twaugh@xxxxxxxxxx> - 1:1.6.4-9 - Upstream patch for STR #4396, pre-requisite for STR #2913 patch. - Upstream patch for STR #2913 to limit Get-Jobs replies to 500 jobs (bug #421671). * Mon Aug 11 2014 Tim Waugh <twaugh@xxxxxxxxxx> - 1:1.6.4-8 - Fix conf/log file reading for authenticated users (STR #4461). * Wed Jul 23 2014 Jiri Popelka <jpopelka@xxxxxxxxxx> - 1:1.6.4-7 - CVE-2014-5029, CVE-2014-5030, CVE-2014-5031 (#1122601) * Mon Jul 14 2014 Jiri Popelka <jpopelka@xxxxxxxxxx> - 1:1.6.4-6 - CVE-2014-3537 (#1119303) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1115576 - CVE-2014-3537 cups: insufficient checking leads to privilege escalation https://bugzilla.redhat.com/show_bug.cgi?id=1115576 [ 2 ] Bug #1122600 - CVE-2014-5029 cups: Incomplete fix for CVE-2014-3537 https://bugzilla.redhat.com/show_bug.cgi?id=1122600 -------------------------------------------------------------------------------- ================================================================================ eclipse-photran-8.1.5-1.fc19 (FEDORA-2014-9672) Fortran Development Tools (Photran) for Eclipse -------------------------------------------------------------------------------- Update Information: Update to 8.1.5 -------------------------------------------------------------------------------- ChangeLog: * Wed Aug 20 2014 Orion Poplawski <orion@xxxxxxxxxxxxx> - 8.1.5-1 - Update to 8.1.5 -------------------------------------------------------------------------------- ================================================================================ flare-0.19-2.fc19 (FEDORA-2014-9680) A single player, 2D-isometric, action Role-Playing Game -------------------------------------------------------------------------------- Update Information: New release v0.19 -------------------------------------------------------------------------------- ChangeLog: * Wed Aug 20 2014 Erik Schilling <ablu.erikschilling@xxxxxxxxxxxxxx> - 0.19-2 - Fixed cmake dependency * Tue Aug 19 2014 Erik Schilling <ablu.erikschilling@xxxxxxxxxxxxxx> 0.19-1 - New release - Splitted out engine code into flare-engine package * Sat Aug 16 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.18-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild * Fri Jun 13 2014 Hans de Goede <hdegoede@xxxxxxxxxx> - 0.18-5 - Rebuild for new SDL_gfx * Sat Jun 7 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.18-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Sat Aug 3 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.18-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1071554 - Review Request: flare-engine - A single player, 2D-isometric, action Role-Playing Engine https://bugzilla.redhat.com/show_bug.cgi?id=1071554 [ 2 ] Bug #1052191 - flare-0.19 is available https://bugzilla.redhat.com/show_bug.cgi?id=1052191 -------------------------------------------------------------------------------- ================================================================================ flare-engine-0.19-3.fc19 (FEDORA-2014-9680) A single player, 2D-isometric, action Role-Playing Engine -------------------------------------------------------------------------------- Update Information: New release v0.19 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1071554 - Review Request: flare-engine - A single player, 2D-isometric, action Role-Playing Engine https://bugzilla.redhat.com/show_bug.cgi?id=1071554 [ 2 ] Bug #1052191 - flare-0.19 is available https://bugzilla.redhat.com/show_bug.cgi?id=1052191 -------------------------------------------------------------------------------- ================================================================================ freemind-1.0.1-4.fc19 (FEDORA-2014-9665) Free mind mapping software -------------------------------------------------------------------------------- Update Information: Put freemind base dir on classpath (resolves rhbz#1114025) -------------------------------------------------------------------------------- ChangeLog: * Wed Aug 20 2014 Michael Simacek <msimacek@xxxxxxxxxx> - 1.0.1-4 - Put freemind base dir on classpath (resolves rhbz#1114025) * Sat Jun 7 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.0.1-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1114025 - export doesn't work - .xsl resources are not found https://bugzilla.redhat.com/show_bug.cgi?id=1114025 -------------------------------------------------------------------------------- ================================================================================ geard-0-0.16.gite2502a6.fc19 (FEDORA-2014-9704) Geard -------------------------------------------------------------------------------- Update Information: update to master commit e2502a6e33a117b23be05443854ac83b7e45a977 Latest version of geard from upstream. update to latest master 3c781d0cd8a961a85449d362fb5d8c88c5a34a22 Update to latest upstream git snapshot of geard. update to latest master 3c781d0cd8a961a85449d362fb5d8c88c5a34a22 make tests more resilient release 6 -------------------------------------------------------------------------------- ChangeLog: * Thu Aug 21 2014 Lokesh Mandvekar <lsm5@xxxxxxxxxxxxxxxxx> - 0-0.16.git - update to master commit e2502a6e33a117b23be05443854ac83b7e45a977 * Sat Aug 16 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0-0.15.git06df437 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild * Mon Jul 21 2014 Adam Miller <maxamillion@xxxxxxxxxxxxxxxxx> - 0-0.14.git06df437 - New builds from upstream master at commit id 06df437 * Wed Jul 2 2014 Adam Miller <maxamillion@xxxxxxxxxxxxxxxxx> - 0-0.13.git6850c8d - New builds from upstream master at commit id 6850c8d * Wed Jun 11 2014 Adam Miller <maxamillion@xxxxxxxxxxxxxxxxx> - 0-0.12.1.git8b2dcfc - Remove sti binary as per upstream feedback - Conditionally patch for selinux F20 vs F21+ * Wed Jun 11 2014 Adam Miller <maxamillion@xxxxxxxxxxxxxxxxx> - 0-0.12.git8b2dcfc - New builds from upstream master at commit id 8b2dcfc - Add sti binary * Mon Jun 9 2014 Adam Miller <maxamillion@xxxxxxxxxxxxxxxxx> - 0-0.11.git8b2dcfc - New builds from upstream master at commit id 8b2dcfc * Sat Jun 7 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0-0.10.git3c781d0 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Thu May 29 2014 Lokesh Mandvekar <lsm5@xxxxxxxxxx> - 0-0.9.git - update to latest master 3c781d0cd8a961a85449d362fb5d8c88c5a34a22 - Require docker-io to fix BZ 1097638 - selinux fix in master 0-0.9 not required in f20 * Sat May 17 2014 Lokesh Mandvekar <lsm5@xxxxxxxxxx> - 0-0.8.git - update to latest master - make sure required package is docker-io * Wed May 7 2014 Lokesh Mandvekar <lsm5@xxxxxxxxxx> - 0-0.7.git - make tests more resilient * Fri May 2 2014 Lokesh Mandvekar <lsm5@xxxxxxxxxx> - 0-0.6.git - release 6 * Tue Apr 29 2014 Colin Walters <walters@xxxxxxxxxx> - 0-0.5.1.git - Change requires to be /usr/bin/docker to adapt to package rename -------------------------------------------------------------------------------- References: [ 1 ] Bug #1097638 - It will install the docker as dependency by default but not docker-io if install the geard via yum directly on Fedora20 https://bugzilla.redhat.com/show_bug.cgi?id=1097638 -------------------------------------------------------------------------------- ================================================================================ hawtbuf-1.9-10.fc19 (FEDORA-2014-9683) A rich byte buffer library -------------------------------------------------------------------------------- Update Information: First build for EPEL7. -------------------------------------------------------------------------------- ChangeLog: * Wed Aug 20 2014 Darryl L. Pierce <dpierce@xxxxxxxxxx> - 1.9-10 - First build for EPEL7. - Resolves: BZ#1110028 - Added conditions so the specfile can be used across releases. * Sat Jun 7 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.9-9 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Fri Mar 28 2014 Michael Simacek <msimacek@xxxxxxxxxx> - 1.9-8 - Use Requires: java-headless rebuild (#1067528) * Sat Aug 3 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.9-7 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild * Fri Jul 5 2013 gil cattaneo <puntogil@xxxxxxxxx> 1.9-6 - switch to XMvn - minor changes to adapt to current guideline -------------------------------------------------------------------------------- References: [ 1 ] Bug #1110028 - hawtbuf : please provide EL6 and EL7 versions in EPEL https://bugzilla.redhat.com/show_bug.cgi?id=1110028 -------------------------------------------------------------------------------- ================================================================================ innotop-1.9.1-6.fc19 (FEDORA-2014-9711) A MySQL and InnoDB monitor program -------------------------------------------------------------------------------- Update Information: This update enables innotop to play nicely with MariaDB 10.0 servers Innotop does not work with MariaDB 10 -------------------------------------------------------------------------------- ChangeLog: * Thu Aug 21 2014 Fabio Alessandro Locati <fabiolocati@xxxxxxxxx> - 1.9.1-6 - Solving last pieces of mess * Wed Aug 20 2014 Fabio Alessandro Locati <fabiolocati@xxxxxxxxx> - 1.9.1-5 - Fix bogous date in changelog - Fix mixture of spaces and tabs * Wed Aug 20 2014 Fabio Alessandro Locati <fabiolocati@xxxxxxxxx> - 1.9.1-4 - Fix previously bad applied patch * Mon Aug 11 2014 Luis Bazan <lbazan@xxxxxxxxxxxxxxxxx> - 1.9.1-3 - fix changelog * Mon Aug 11 2014 Luis Bazan <lbazan@xxxxxxxxxxxxxxxxx> - 1.9.1-2 - add patch fix BZ# 1128704 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1128704 - Innotop does not work with MariaDB 10 https://bugzilla.redhat.com/show_bug.cgi?id=1128704 -------------------------------------------------------------------------------- ================================================================================ inxi-2.2.1-1.fc19 (FEDORA-2014-9699) A full featured system information script -------------------------------------------------------------------------------- Update Information: Update to 2.2.1 -------------------------------------------------------------------------------- ChangeLog: * Fri Aug 22 2014 Vasiliy N. Glazov <vascom2@xxxxxxxxx> 2.2.1-1 - Update to 2.2.1 -------------------------------------------------------------------------------- ================================================================================ mcabber-0.10.3-1.fc19 (FEDORA-2014-9702) Console Jabber instant messaging client -------------------------------------------------------------------------------- Update Information: This update contains various bug fixes and improvements. Upstream changelog: http://mcabber.com/files/ChangeLog -------------------------------------------------------------------------------- ChangeLog: * Thu Aug 21 2014 Till Maas <opensource@xxxxxxxxx> - 0.10.3-1 - Update to new upstream release * Sun Aug 17 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.10.2-7 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild * Sat Jun 7 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.10.2-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Sun Oct 13 2013 Till Maas <opensource@xxxxxxxxx> - 0.10.2-5 - Harden build * Wed Aug 21 2013 Paul Wouters <pwouters@xxxxxxxxxx> - 0.10.2-4 - Ensure to BuildRequires: libotr-devel >= 4.0.0 * Tue Aug 6 2013 Till Maas <opensource@xxxxxxxxx> - 0.10.2-3 - Support libotr4 with patch from debian * Sat Aug 3 2013 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.10.2-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1096084 - mcabber-0.10.3 is available https://bugzilla.redhat.com/show_bug.cgi?id=1096084 -------------------------------------------------------------------------------- ================================================================================ monitorix-3.6.0-1.fc19 (FEDORA-2014-9700) A free, open source, lightweight system monitoring tool -------------------------------------------------------------------------------- Update Information: This new version introduces two new graphs; one that is Linux specific to monitor an unlimited number of user processes (including CPU usage, memory usage, disk usage, network usage, opened files, number of threads, number of voluntary and involuntary context switches and number of instances of the same process). The other new graph is to monitor also an unlimited number of virtual machines (using the libvirt manager) and also covers CPU, memory, disk and network usages. The rest of changes and bugs fixed are, as always, reflected in the Changes file. -------------------------------------------------------------------------------- ChangeLog: * Wed Aug 20 2014 Jordi Sanfeliu <jordi@xxxxxxxxxxxx> - 3.6.0-1 - Updated to 3.6.0. * Sat Jun 7 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 3.5.1-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ nepomuk-core-4.11.5-2.fc19 (FEDORA-2014-9693) Nepomuk Core utilities and libraries -------------------------------------------------------------------------------- Update Information: $estore libnepomukcleaner.so symlink. -------------------------------------------------------------------------------- ChangeLog: * Thu Aug 21 2014 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 4.11.5-2 - restore libnepomukcleaner.so symlink (#1132497) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1132497 - missing soft link /usr/lib64/libnepomukcleaner.so https://bugzilla.redhat.com/show_bug.cgi?id=1132497 -------------------------------------------------------------------------------- ================================================================================ nodejs-proxy-agent-1.1.0-1.fc19 (FEDORA-2014-9664) Maps proxy protocols to http.Agent implementations -------------------------------------------------------------------------------- Update Information: Initial packaging -------------------------------------------------------------------------------- References: [ 1 ] Bug #1122231 - Review Request: nodejs-proxy-agent - Maps proxy protocols to http.Agent implementations https://bugzilla.redhat.com/show_bug.cgi?id=1122231 -------------------------------------------------------------------------------- ================================================================================ perl-Devel-CheckBin-0.02-2.fc19 (FEDORA-2014-9677) Check that a command is available -------------------------------------------------------------------------------- Update Information: This is the first Fedora release of perl-Devel-CheckBin. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1130581 - Review Request: perl-Devel-CheckBin - Check that a command is available https://bugzilla.redhat.com/show_bug.cgi?id=1130581 -------------------------------------------------------------------------------- ================================================================================ perl-POSIX-strftime-Compiler-0.40-1.fc19 (FEDORA-2014-9698) GNU C library compatible strftime for loggers and servers -------------------------------------------------------------------------------- Update Information: -------------------------------------------------------------------------------- ChangeLog: * Thu Aug 21 2014 Ralf Corsépius <corsepiu@xxxxxxxxxxxxxxxxx> - 0.40-1 - Fix Australia/Darwin test (RHBZ#1132033). -------------------------------------------------------------------------------- References: [ 1 ] Bug #1132033 - perl-POSIX-strftime-Compiler-0.32-1.fc22 FTBFS: t/04_tzset.t tests fail after upgrading tzdata to 2014f https://bugzilla.redhat.com/show_bug.cgi?id=1132033 -------------------------------------------------------------------------------- ================================================================================ perl-Type-Tiny-1.000002-1.fc19 (FEDORA-2014-9678) Tiny, yet Moo(se)-compatible type constraint -------------------------------------------------------------------------------- Update Information: -------------------------------------------------------------------------------- ChangeLog: * Fri Aug 22 2014 Ralf Corsépius <corsepiu@xxxxxxxxxxxxxxxxx> - 1.000002-1 - Upstream update. - Update deps. * Mon Aug 18 2014 Ralf Corsépius <corsepiu@xxxxxxxxxxxxxxxxx> - 1.000000-1 - Upstream update. -------------------------------------------------------------------------------- ================================================================================ perl-Unicode-Casing-0.15-1.fc19 (FEDORA-2014-9713) Perl extension to override system case changing functions -------------------------------------------------------------------------------- Update Information: This release fixes returning value in debugging mode. -------------------------------------------------------------------------------- ChangeLog: * Fri Aug 22 2014 Petr Pisar <ppisar@xxxxxxxxxx> - 0.15-1 - 0.15 bump -------------------------------------------------------------------------------- References: [ 1 ] Bug #1132870 - perl-Unicode-Casing-0.15 is available https://bugzilla.redhat.com/show_bug.cgi?id=1132870 -------------------------------------------------------------------------------- ================================================================================ php-5.5.16-1.fc19 (FEDORA-2014-9679) PHP scripting language for creating dynamic web sites -------------------------------------------------------------------------------- Update Information: 21 Aug 2014, PHP 5.5.16 Core: * Fixed bug #67693 (incorrect push to the empty array) (Tjerk) * Fixed bug #67717 (segfault in dns_get_record). (CVE-2014-3597) (Remi) COM: * Fixed missing type checks in com_event_sink (Yussuf Khalil, Stas). Fileinfo: * Fixed bug #67705 (extensive backtracking in rule regular expression). (CVE-2014-3538) (Remi) * Fixed bug #67716 (Segfault in cdf.c). (CVE-2014-3587) (Remi) FPM: * Fixed bug #67635 (php links to systemd libraries without using pkg-config). (pacho@xxxxxxxxxx, Remi) GD: * Fixed bug #66901 (php-gd 'c_color' NULL pointer dereference). (CVE-2014-2497) (Remi) * Fixed bug #67730 (Null byte injection possible with imagexxx functions). (CVE-2014-5120) (Ryan Mauger) Milter: * Fixed bug #67715 (php-milter does not build and crashes randomly). (Mike) OpenSSL: * Fixed missing type checks in OpenSSL options (Yussuf Khalil, Stas). readline: * Fixed bug #55496 (Interactive mode doesn't force a newline before the prompt). (Bob, Johannes) * Fixed bug #67496 (Save command history when exiting interactive shell with control-c). (Dmitry Saprykin, Johannes) Sessions: * Fixed missing type checks in php_session_create_id (Yussuf Khalil, Stas). ODBC: * Fixed bug #60616 (odbc_fetch_into returns junk data at end of multi-byte char fields). (Keyur) -------------------------------------------------------------------------------- ChangeLog: * Thu Aug 21 2014 Remi Collet <rcollet@xxxxxxxxxx> 5.5.16-1 - Update to 5.5.16 http://www.php.net/releases/5_5_16.php - fix zts-php-config --php-binary output #1124605 - move zts-php from php-devel to php-cli - revert fix for 67724 because of 67865 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1128587 - CVE-2014-3587 file: incomplete fix for CVE-2012-1571 in cdf_read_property_info https://bugzilla.redhat.com/show_bug.cgi?id=1128587 [ 2 ] Bug #1132793 - CVE-2014-5120 gd: NUL byte injection in filenames passed to image handling functions https://bugzilla.redhat.com/show_bug.cgi?id=1132793 -------------------------------------------------------------------------------- ================================================================================ pyp2rpm-1.0.1-3.fc19 (FEDORA-2014-9670) Convert Python packages to RPM SPECFILES -------------------------------------------------------------------------------- Update Information: Add rpmdevtools to requires Fix unicode format error when formatting packager name -------------------------------------------------------------------------------- ChangeLog: * Fri Aug 22 2014 Robert Kuska <rkuska@xxxxxxxxxx> - 1.0.1-3 - Add patch to fix unicode issue - Add rpmdevtools to requires -------------------------------------------------------------------------------- ================================================================================ qt-creator-3.2.0-1.fc19 (FEDORA-2014-9687) Cross-platform IDE for Qt -------------------------------------------------------------------------------- Update Information: Update to version 3.2.0, see https://qt.gitorious.org/qt-creator/qt-creator/source/ebf45ac67702b5c8e835756089d28cce44fca427:dist/changes-3.2.0 for details. -------------------------------------------------------------------------------- ChangeLog: * Thu Aug 21 2014 Sandro Mani <manisandro@xxxxxxxxx> - 3.2.0-1 - 3.2.0 release -------------------------------------------------------------------------------- References: [ 1 ] Bug #1118386 - [abrt] qt-creator: CPlusPlus::Parser::parsePrimaryExpression(): qtcreator killed by SIGSEGV https://bugzilla.redhat.com/show_bug.cgi?id=1118386 -------------------------------------------------------------------------------- ================================================================================ rubygem-serialport-1.3.1-3.fc19 (FEDORA-2014-9709) Ruby library that provides a class for using RS-232 serial ports -------------------------------------------------------------------------------- Update Information: Update to serialport 1.3.1 -------------------------------------------------------------------------------- ChangeLog: * Thu Aug 21 2014 Alejandro Pérez <aeperezt@xxxxxxxxxxxxxxxxx> - 1.3.1-3 --fixed lib path * Mon Aug 18 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.3.1-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild * Fri Aug 8 2014 Alejandro Pérez <aeperezt@xxxxxxxxxxxxxxxxx> - 1.3.1-1 - Initial package -------------------------------------------------------------------------------- -- test mailing list test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe: https://admin.fedoraproject.org/mailman/listinfo/test
