The following Fedora 21 Security updates need testing: Age URL 0 https://admin.fedoraproject.org/updates/FEDORA-2014-9882/squid-3.4.7-1.fc21 The following Fedora 21 Critical Path updates have yet to be approved: Age URL 0 https://admin.fedoraproject.org/updates/FEDORA-2014-9873/selinux-policy-3.13.1-77.fc21 0 https://admin.fedoraproject.org/updates/FEDORA-2014-9877/mesa-10.3-0.rc1.1.20140824.fc21 The following builds have been pushed to Fedora 21 updates-testing ansible-openstack-modules-0-20140828git7611354.fc21 fedmsg-0.10.0-1.fc21 ghc-setlocale-1.0.0-1.fc21 insight-7.8.50-1.20140827git.fc21 itk-4.0.0-4.fc21 latex2rtf-2.3.8-1.fc21 mesa-10.3-0.rc1.1.20140824.fc21 moarvm-0.2014.04-5.fc21 ocserv-0.8.4-1.fc21 pavucontrol-2.0-8.fc21 perl-Mail-GnuPG-0.21-1.fc21 perl-Perl-MinimumVersion-1.38-2.fc21 php-5.6.0-1.fc21 php-twig-1.16.0-2.fc21 python-ansi2html-1.0.6-4.fc21 python-zope-sqlalchemy-0.7.5-1.fc21 redhat-lsb-4.1-29.fc21 reposurgeon-3.11-1.fc21 roxterm-2.9.3-1.fc21 rubygem-logstash-event-1.2.02-2.fc21 sanlock-3.2.1-2.fc21 selinux-policy-3.13.1-77.fc21 squid-3.4.7-1.fc21 xiphos-3.2.2-1.fc21 Details about builds: ================================================================================ ansible-openstack-modules-0-20140828git7611354.fc21 (FEDORA-2014-9887) Unofficial Ansible modules for managing Openstack -------------------------------------------------------------------------------- Update Information: New package -------------------------------------------------------------------------------- References: [ 1 ] Bug #1134377 - Review Request: ansible-openstack-modules - Unofficial Ansible modules for managing Openstack https://bugzilla.redhat.com/show_bug.cgi?id=1134377 -------------------------------------------------------------------------------- ================================================================================ fedmsg-0.10.0-1.fc21 (FEDORA-2014-9881) Tools for Fedora Infrastructure real-time messaging -------------------------------------------------------------------------------- Update Information: New 'conglomerate' API. fedmsg-tail has cowsay support. fedmsg-trigger was 'wait-for' support. Better support for federated message handling. Backlog now processed in ascending order. -------------------------------------------------------------------------------- ChangeLog: * Wed Aug 27 2014 Ralph Bean <rbean@xxxxxxxxxx> - 0.10.0-1 - New conglomerate API. - New dep on python-arrow. -------------------------------------------------------------------------------- ================================================================================ ghc-setlocale-1.0.0-1.fc21 (FEDORA-2014-9886) A Haskell interface to setlocale -------------------------------------------------------------------------------- Update Information: Update to 1.0.0 (rewrite due to licencing issues) -------------------------------------------------------------------------------- ChangeLog: * Thu Aug 28 2014 Philip Withnall <philip@xxxxxxxxxxxxxxx> - 1.0.0-1 - Update to 1.0.0 (rewrite due to licencing issues) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1134178 - heads-up setlocale 1.0.0 https://bugzilla.redhat.com/show_bug.cgi?id=1134178 -------------------------------------------------------------------------------- ================================================================================ insight-7.8.50-1.20140827git.fc21 (FEDORA-2014-9893) Graphical debugger based on GDB -------------------------------------------------------------------------------- Update Information: - New snapshot. - Limited pretty printers support (from console window). -------------------------------------------------------------------------------- ChangeLog: * Wed Aug 27 2014 Patrick Monnerat <pm@xxxxxxxxxxxxx> 7.8.50-1.20140827git - New snapshot. - Patch "iwidgetsname" for package name case spelling. - Limited pretty printers support (from console window). * Sat Aug 16 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 7.4.50-16.20120403cvs - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #925591 - insight: Does not support aarch64 in f19 and rawhide https://bugzilla.redhat.com/show_bug.cgi?id=925591 -------------------------------------------------------------------------------- ================================================================================ itk-4.0.0-4.fc21 (FEDORA-2014-9875) Object oriented extensions to Tk -------------------------------------------------------------------------------- Update Information: Fix RHBZs #1116860, #1105506, #1116853. -------------------------------------------------------------------------------- ChangeLog: * Thu Aug 28 2014 Dmitrij S. Kryzhevich <krege@xxxxxxx> - 4.0.0-4 - Fix RHBZs #1116860, #1105506, #1116853. -------------------------------------------------------------------------------- ================================================================================ latex2rtf-2.3.8-1.fc21 (FEDORA-2014-9874) LaTeX to RTF converter that handles equations, figures, and cross-references -------------------------------------------------------------------------------- Update Information: 2.3.8 -------------------------------------------------------------------------------- ChangeLog: * Thu Aug 28 2014 Christopher Meng <rpm@xxxxxxxx> - 2.3.8-1 - Update to 2.3.8 - Fix FTBFS with texinfo 5. * Sun Aug 17 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 2.3.7a-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild * Tue Jul 1 2014 Susi Lehtola <jussilehtola@xxxxxxxxxxxxxxxxx> - 2.3.7a-1 - Update to 2.3.7a. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1055279 - latex2rtf-2.3.8 is available https://bugzilla.redhat.com/show_bug.cgi?id=1055279 -------------------------------------------------------------------------------- ================================================================================ mesa-10.3-0.rc1.1.20140824.fc21 (FEDORA-2014-9877) Mesa graphics libraries -------------------------------------------------------------------------------- Update Information: add swrast to dri driver list (fix wayland in KVM) -------------------------------------------------------------------------------- ================================================================================ moarvm-0.2014.04-5.fc21 (FEDORA-2014-9878) Short for "Metamodel On A Runtime", MoarVM is a virtual machine as a backend for NQP and then Rakudo Perl 6 at the top. -------------------------------------------------------------------------------- Update Information: remove of libtommath 3rdparty source files -------------------------------------------------------------------------------- ChangeLog: * Fri Aug 29 2014 Gerd Pokorra <gp@xxxxxxxxxxxxxxxxxx> 0.2014.04-5 - remove of libtommath 3rdparty source files - remove of libatomic_ops only if fedora > 20 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1131492 - moarvm: package contains bundled libraries https://bugzilla.redhat.com/show_bug.cgi?id=1131492 -------------------------------------------------------------------------------- ================================================================================ ocserv-0.8.4-1.fc21 (FEDORA-2014-9885) OpenConnect SSL VPN server -------------------------------------------------------------------------------- Update Information: New upstream release -------------------------------------------------------------------------------- ChangeLog: * Thu Aug 28 2014 Nikos Mavrogiannopoulos <nmav@xxxxxxxxxx> - 0.8.4-1 - New upstream release -------------------------------------------------------------------------------- ================================================================================ pavucontrol-2.0-8.fc21 (FEDORA-2014-9891) Volume control for PulseAudio -------------------------------------------------------------------------------- Update Information: - Add a patch fixing various crashes due to referencing freed memory (#1133339) - Cherry-pick some other fixes from upstream git -------------------------------------------------------------------------------- ChangeLog: * Thu Aug 28 2014 Hans de Goede <hdegoede@xxxxxxxxxx> - 2.0-8 - Add a patch fixing various crashes due to referencing freed memory (#1133339) - Cherry-pick some other fixes from upstream git -------------------------------------------------------------------------------- References: [ 1 ] Bug #1133339 - [abrt] pavucontrol: g_type_check_instance_is_a(): pavucontrol killed by SIGSEGV https://bugzilla.redhat.com/show_bug.cgi?id=1133339 -------------------------------------------------------------------------------- ================================================================================ perl-Mail-GnuPG-0.21-1.fc21 (FEDORA-2014-9872) Process email with GPG -------------------------------------------------------------------------------- Update Information: -------------------------------------------------------------------------------- ChangeLog: * Thu Aug 28 2014 Ralf Corsépius <corsepiu@xxxxxxxxxxxxxxxxx> - 0.21-1 - Upstream update. -------------------------------------------------------------------------------- ================================================================================ perl-Perl-MinimumVersion-1.38-2.fc21 (FEDORA-2014-9884) Find a minimum required version of perl for Perl code -------------------------------------------------------------------------------- Update Information: -------------------------------------------------------------------------------- ChangeLog: * Thu Aug 28 2014 Ralf Corsépius <corsepiu@xxxxxxxxxxxxxxxxx> - 1.38-2 - Filter underspecified deps. * Thu Aug 28 2014 Ralf Corsépius <corsepiu@xxxxxxxxxxxxxxxxx> - 1.38-1 - Upstream update. -------------------------------------------------------------------------------- ================================================================================ php-5.6.0-1.fc21 (FEDORA-2014-9883) PHP scripting language for creating dynamic web sites -------------------------------------------------------------------------------- Update Information: Upstream announcement http://php.net/releases/5_6_0.php -------------------------------------------------------------------------------- ChangeLog: * Thu Aug 28 2014 Remi Collet <remi@xxxxxxxxxxxxxxxxx> 5.6.0-1 - PHP 5.6.0 is GA http://php.net/releases/5_6_0.php - fix ZTS man pages, upstream patch for 67878 - provides php(httpd) -------------------------------------------------------------------------------- ================================================================================ php-twig-1.16.0-2.fc21 (FEDORA-2014-9876) The flexible, fast, and secure template engine for PHP -------------------------------------------------------------------------------- Update Information: ### NOTE: Install changed from PEAR (`/usr/share/pear/Twig`) to a source install (`/usr/share/php/Twig`) ### NOTE: This package includes both the library and the extension ### NOTE: This package obsoletes `php-twig-Twig` (i.e. Twig library < 1.16.0), `php-twig-ctwig` (i.e. Twig extension < 1.16.0), and `php-channel-twig` The flexible, fast, and secure template engine for PHP. * Fast: Twig compiles templates down to plain optimized PHP code. The overhead compared to regular PHP code was reduced to the very minimum. * Secure: Twig has a sandbox mode to evaluate untrusted template code. This allows Twig to be used as a template language for applications where users may modify the template design. * Flexible: Twig is powered by a flexible lexer and parser. This allows the developer to define its own custom tags and filters, and create its own DSL. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1118528 - Review Request: php-twig - The flexible, fast, and secure template engine for PHP https://bugzilla.redhat.com/show_bug.cgi?id=1118528 [ 2 ] Bug #1116890 - php-twig-Twig-1.16.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1116890 -------------------------------------------------------------------------------- ================================================================================ python-ansi2html-1.0.6-4.fc21 (FEDORA-2014-9890) Python module that converts text with ANSI color to HTML -------------------------------------------------------------------------------- Update Information: Explicit dependency on python(3)-setuptools. -------------------------------------------------------------------------------- ChangeLog: * Wed Aug 27 2014 Ralph Bean <rbean@xxxxxxxxxx> - 1.0.6-4 - Added explicit dependency on python(3)-setuptools. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1134579 - ImportError: No module named 'pkg_resources' python3-setuptools https://bugzilla.redhat.com/show_bug.cgi?id=1134579 -------------------------------------------------------------------------------- ================================================================================ python-zope-sqlalchemy-0.7.5-1.fc21 (FEDORA-2014-9879) Minimal Zope/SQLAlchemy transaction integration -------------------------------------------------------------------------------- Update Information: Ensure mapped objects are expired following a transaction.commit() when no database commit was required. See: https://github.com/zopefoundation/zope.sqlalchemy/issues/8 -------------------------------------------------------------------------------- ChangeLog: * Wed Aug 27 2014 Luke Macken <lmacken@xxxxxxxxxx> - 0.7.5-1 - Update to 0.7.5 (#1111881) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1111881 - python-zope-sqlalchemy-0.7.5 is available https://bugzilla.redhat.com/show_bug.cgi?id=1111881 -------------------------------------------------------------------------------- ================================================================================ redhat-lsb-4.1-29.fc21 (FEDORA-2014-9894) Implementation of Linux Standard Base specification -------------------------------------------------------------------------------- Update Information: Resolves:rh#1133536 - redhat-lsb does not requires /usr/sbin/sendmail -------------------------------------------------------------------------------- ChangeLog: * Wed Aug 27 2014 Parag <pnemade AT redhat DOT com> - 4.1-29 - Resolves:rh#1133536 - redhat-lsb does not requires /usr/sbin/sendmail -------------------------------------------------------------------------------- References: [ 1 ] Bug #1133536 - redhat-lsb does not requires /usr/sbin/sendmail https://bugzilla.redhat.com/show_bug.cgi?id=1133536 -------------------------------------------------------------------------------- ================================================================================ reposurgeon-3.11-1.fc21 (FEDORA-2014-9892) SCM Repository Manipulation Tool -------------------------------------------------------------------------------- Update Information: * When converting SVN, ignore explicit .gitignores created by git-svn. (Better than letting them collide with translated svn:ignore properties.) -------------------------------------------------------------------------------- ChangeLog: * Thu Aug 28 2014 Christopher Meng <rpm@xxxxxxxx> - 3.11-1 - Update to 3.11 - When converting SVN, ignore explicit .gitignores created by git-svn. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1134012 - reposurgeon-3.11 is available https://bugzilla.redhat.com/show_bug.cgi?id=1134012 -------------------------------------------------------------------------------- ================================================================================ roxterm-2.9.3-1.fc21 (FEDORA-2014-9889) A fast terminal emulator -------------------------------------------------------------------------------- Update Information: = Version 2.9.3 = * Defer writing AppInfo.xml to mscript.py dist = Version 2.9.2 = * Output translation files correctly * Avoid replacing po(t) files with trival changes * Made mscript.py clean more thorough = Version 2.9.1 = * Support popular SCM URIs (clipboard copy only) * Fixed issues with GTK colour scheme * Support ssh URI matching (by Karl E. Jorgensen) * Added GTK & VTE version summary to About dialog * Fix transparency for recent versions of vte * Copy empty profiles/schemes correctly (issue 84) * Exclude logo source file from installation * Support translatable appdata.xml file (issue 61) * Override --tab to false if no match for --title * Allow editing (as text) of Shortcuts schemes * Allow Shortcuts to be reloaded * Don't use shortcut editing if gtk >= 3.10 * Migrated from stock icons to icon names etc * Changed clashing "Find Next" shortcut = Fedora packaging = * From this version upstream starts shipping appdata file in the sources, I've included it so you now can see it's being showed in the GNOME Software. -------------------------------------------------------------------------------- ChangeLog: * Wed Aug 20 2014 Christopher Meng <rpm@xxxxxxxx> - 2.9.3-1 - Update to 2.9.3 * Mon Aug 18 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 2.9.1-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild * Fri Aug 1 2014 Christopher Meng <rpm@xxxxxxxx> - 2.9.1-1 - Update to 2.9.1 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1127660 - roxterm-2.9.3 is available https://bugzilla.redhat.com/show_bug.cgi?id=1127660 -------------------------------------------------------------------------------- ================================================================================ rubygem-logstash-event-1.2.02-2.fc21 (FEDORA-2014-9888) Library that contains the classes required to create LogStash events -------------------------------------------------------------------------------- Update Information: rubygem-logstash-event contains the classes required to create LogStash events (combination of timestamp in ISO8601 format and message in any format) and their serialization to json. logstash-event rubygem is part of LogStash project, http://logstash.net/. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1131991 - Review Request: rubygem-logstash-event - Classes required to create LogStash events https://bugzilla.redhat.com/show_bug.cgi?id=1131991 -------------------------------------------------------------------------------- ================================================================================ sanlock-3.2.1-2.fc21 (FEDORA-2014-9895) A shared storage lock manager -------------------------------------------------------------------------------- Update Information: Drop exclusive arch options, it needs to be supported on all arches as per package guidelines -------------------------------------------------------------------------------- ChangeLog: * Thu Aug 28 2014 Peter Robinson <pbrobinson@xxxxxxxxxxxxxxxxx> 3.2.1-2 - Drop exclusive arch options, it needs to be supported on all arches as per package guidelines -------------------------------------------------------------------------------- References: [ 1 ] Bug #1134861 - sanlock missing on i668 and armv7 architectures https://bugzilla.redhat.com/show_bug.cgi?id=1134861 -------------------------------------------------------------------------------- ================================================================================ selinux-policy-3.13.1-77.fc21 (FEDORA-2014-9873) SELinux policy configuration -------------------------------------------------------------------------------- Update Information: More info: http://koji.fedoraproject.org/koji/buildinfo?buildID=572567 -------------------------------------------------------------------------------- ChangeLog: * Thu Aug 28 2014 Lukas Vrabec <lvrabec@xxxxxxxxxx> 3.13.1-77 - Allow aide to read random number generator - Allow pppd to connect to http port. (#1128947) - sssd needs to be able write krb5.conf. - Labeli initial-setup as install_exec_t. - Allow domains to are allowed to mounton proc to mount on files as well as dirs - Allow bacula to connect to postgresql if is configured for that as a back end. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1112387 - [abrt] initial-setup: connection.py:651:call_blocking:DBusException: org.freedesktop.DBus.Error.NoReply: Did not receive a reply. Possible causes include: the remote application did not send a reply, the message bus security policy blocked the reply, ... https://bugzilla.redhat.com/show_bug.cgi?id=1112387 [ 2 ] Bug #1123423 - SELinux is preventing /usr/sbin/alsactl from 'read' accesses on the lnk_file /var/lock. https://bugzilla.redhat.com/show_bug.cgi?id=1123423 [ 3 ] Bug #1123534 - SELinux is preventing /usr/bin/reporter-ureport from 'write' accesses on the file /etc/pki/nssdb/cert9.db. https://bugzilla.redhat.com/show_bug.cgi?id=1123534 [ 4 ] Bug #1123535 - SELinux is preventing /usr/libexec/sssd/sssd_be from 'write' accesses on the directory /etc/pki/ca-trust/source. https://bugzilla.redhat.com/show_bug.cgi?id=1123535 [ 5 ] Bug #1126037 - Multiple SELinux problems in abrt-dump-journal-oops https://bugzilla.redhat.com/show_bug.cgi?id=1126037 [ 6 ] Bug #1127128 - SELinux is preventing /usr/bin/docker from using the 'setfcap' capabilities. https://bugzilla.redhat.com/show_bug.cgi?id=1127128 [ 7 ] Bug #1128350 - SELinux is preventing /usr/lib/systemd/systemd-logind from 'read' accesses on the directory . https://bugzilla.redhat.com/show_bug.cgi?id=1128350 [ 8 ] Bug #1130620 - SELinux is preventing /var/lib/docker/init/dockerinit-1.1.2 from 'relabelfrom' accesses on the chr_file 17. https://bugzilla.redhat.com/show_bug.cgi?id=1130620 [ 9 ] Bug #1133260 - SELinux is preventing gst-plugin-scan from read, write access on the chr_file video0. https://bugzilla.redhat.com/show_bug.cgi?id=1133260 [ 10 ] Bug #1122052 - make: *** No rule to make target `naemon.if', needed by `tmp/all_interfaces.conf'. Stop. https://bugzilla.redhat.com/show_bug.cgi?id=1122052 [ 11 ] Bug #1129645 - Cockpit port will change from 1001 -> 9090 https://bugzilla.redhat.com/show_bug.cgi?id=1129645 -------------------------------------------------------------------------------- ================================================================================ squid-3.4.7-1.fc21 (FEDORA-2014-9882) The Squid proxy caching server -------------------------------------------------------------------------------- Update Information: Security fix for CVE-2014-3609 -------------------------------------------------------------------------------- ChangeLog: * Thu Aug 28 2014 Michal Luscon <mluscon@xxxxxxxxxx> - 7:3.4.7-1 - Update to latest upstream version - Fixed: CVE-2014-3609 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1134209 - CVE-2014-3609 squid: assertion failure in Range header processing (SQUID-2014:2) https://bugzilla.redhat.com/show_bug.cgi?id=1134209 -------------------------------------------------------------------------------- ================================================================================ xiphos-3.2.2-1.fc21 (FEDORA-2014-9880) Bible study and research tool -------------------------------------------------------------------------------- Update Information: New upstream version -------------------------------------------------------------------------------- ChangeLog: * Mon Aug 25 2014 Greg Hellings <greg.hellings@xxxxxxxxx> - 3.2.2-1 - New upstream version -------------------------------------------------------------------------------- -- test mailing list test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe: https://admin.fedoraproject.org/mailman/listinfo/test
