Fedora 21 updates-testing report

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



The following Fedora 21 Security updates need testing:
 Age  URL
   6  https://admin.fedoraproject.org/updates/FEDORA-2014-10171/apache-poi-3.10.1-1.fc21
   6  https://admin.fedoraproject.org/updates/FEDORA-2014-10153/torque-4.2.8-1.fc21
   6  https://admin.fedoraproject.org/updates/FEDORA-2014-10211/geary-0.7.2-1.fc21
   6  https://admin.fedoraproject.org/updates/FEDORA-2014-10142/procmail-3.22-36.fc21
   2  https://admin.fedoraproject.org/updates/FEDORA-2014-10531/xen-4.4.1-2.fc21
   2  https://admin.fedoraproject.org/updates/FEDORA-2014-10617/xerces-j2-2.11.0-22.fc21
   2  https://admin.fedoraproject.org/updates/FEDORA-2014-10600/pdns-recursor-3.6.1-1.fc21
   2  https://admin.fedoraproject.org/updates/FEDORA-2014-10507/knot-1.5.2-1.fc21
   1  https://admin.fedoraproject.org/updates/FEDORA-2014-10679/curl-7.37.0-7.fc21
   0  https://admin.fedoraproject.org/updates/FEDORA-2014-10691/not-yet-commons-ssl-0.3.15-2.fc21
   0  https://admin.fedoraproject.org/updates/FEDORA-2014-10693/kernel-3.16.2-301.fc21
   0  https://admin.fedoraproject.org/updates/FEDORA-2014-10761/qemu-2.1.1-1.fc21
   0  https://admin.fedoraproject.org/updates/FEDORA-2014-10770/moodle-2.7.2-1.fc21
   0  https://admin.fedoraproject.org/updates/FEDORA-2014-10766/mod_gnutls-0.5.10-13.fc21
   0  https://admin.fedoraproject.org/updates/FEDORA-2014-10767/squid-3.4.7-2.fc21


The following Fedora 21 Critical Path updates have yet to be approved:
 Age URL
  10  https://admin.fedoraproject.org/updates/FEDORA-2014-9990/lz4-r122-1.fc21
   6  https://admin.fedoraproject.org/updates/FEDORA-2014-10215/libbluray-0.6.2-1.fc21
   6  https://admin.fedoraproject.org/updates/FEDORA-2014-10125/ppp-2.4.7-4.fc21
   2  https://admin.fedoraproject.org/updates/FEDORA-2014-10624/selinux-policy-3.13.1-79.fc21
   2  https://admin.fedoraproject.org/updates/FEDORA-2014-10608/usbmuxd-1.0.9-0.6.c24463e.fc21,libusbmuxd-1.0.9-4.fc21
   1  https://admin.fedoraproject.org/updates/FEDORA-2014-10679/curl-7.37.0-7.fc21
   1  https://admin.fedoraproject.org/updates/FEDORA-2014-10674/xorg-x11-drv-intel-2.99.916-2.fc21
   1  https://admin.fedoraproject.org/updates/FEDORA-2014-10673/gupnp-av-0.12.6-5.fc21,gupnp-dlna-0.10.2-6.fc21
   0  https://admin.fedoraproject.org/updates/FEDORA-2014-10781/orc-0.4.22-3.fc21
   0  https://admin.fedoraproject.org/updates/FEDORA-2014-10768/xorg-x11-xinit-1.3.4-1.fc21
   0  https://admin.fedoraproject.org/updates/FEDORA-2014-10690/anaconda-21.48.6-1.fc21
   0  https://admin.fedoraproject.org/updates/FEDORA-2014-10693/kernel-3.16.2-301.fc21
   0  https://admin.fedoraproject.org/updates/FEDORA-2014-10686/pungi-3.12-1.fc21
   0  https://admin.fedoraproject.org/updates/FEDORA-2014-10694/openssl-1.0.1i-4.fc21


The following builds have been pushed to Fedora 21 updates-testing

    389-ds-base-1.3.3.2-1.fc21
    avro-1.7.5-9.fc21
    bind-dyndb-ldap-5.3-1.fc21
    eclipse-mpc-1.3.0-1.fc21
    iguanaIR-1.1.0-11.fc21
    ikiwiki-3.20140831-1.fc21
    libint-1.1.6-4.fc21
    lirc-0.9.1a-4.fc21
    meld-3.11.3-1.fc21
    mingw-libtasn1-4.1-1.fc21
    mod_gnutls-0.5.10-13.fc21
    moodle-2.7.2-1.fc21
    mpqc-2.3.1-29.fc21
    ocaml-4.01.0-23.fc21
    openlmi-networking-0.3.0-1.fc21
    openlmi-providers-0.5.0-5.fc21
    openlmi-storage-0.8.0-1.fc21
    orc-0.4.22-3.fc21
    orthanc-0.8.3-1.fc21
    perl-Data-Faker-0.10-2.fc21
    php-PHPParser-1.0.0-1.fc21
    psi4-4.0-0.16.c7deee9git.1.fc21
    pyp2rpm-1.1.1-1.fc21
    python-ldaptor-0.0.44-6.20140909gitc30f30d9.fc21
    qemu-2.1.1-1.fc21
    redis-2.8.14-2.fc21
    squid-3.4.7-2.fc21
    ssdeep-2.11-1.fc21
    xorg-x11-xinit-1.3.4-1.fc21
    xscreensaver-5.30-1.fc21

Details about builds:


================================================================================
 389-ds-base-1.3.3.2-1.fc21 (FEDORA-2014-10762)
 389 Directory Server (base)
--------------------------------------------------------------------------------
Update Information:

Release 389-ds-base-1.3.3.2
--------------------------------------------------------------------------------
ChangeLog:

* Thu Sep 11 2014 Noriko Hosoi <nhosoi@xxxxxxxxxx> - 1.3.3.2-1
- Release 1.3.3.2
- Ticket 47889 - DS crashed during ipa-server-install on test_ava_filter
- Ticket 47895 - If no effective ciphers are available, disable security setting.
- Ticket 47838 - harden the list of ciphers available by default
- Ticket 47885 - did not always return a response control
- Ticket 47890 - minor memory leaks in utilities
- Ticket 47834 - Tombstone_to_glue: if parents are also converted to glue, the target entry's DN must be adjusted.
- Ticket 47748 - Simultaneous adding a user and binding as the user could fail in the password policy check
- Ticket 47875 - dirsrv not running with old openldap
- Ticket 47885 - deref plugin should not return references with noc access rights
* Wed Sep  3 2014 Noriko Hosoi <nhosoi@xxxxxxxxxx> - 1.3.3.0-1
- Release 1.3.3.0
- Ticket 47879 - coverity defects in plugins/replication/windows_protocol_util.c
- Ticket 47876 - coverity defects in slapd/tools/mmldif.c
- Ticket 47574 - start dirsrv after ntpd
- Ticket 47838 - harden the list of ciphers available by default
- Ticket 47579 - add dbmon.sh
- Ticket 47819 - Fix memory leak
- Ticket 47819 - Improve tombstone purging performance
- Ticket 47714 - [RFE] Update lastLoginTime also in Account Policy plugin if account lockout is based on passwordExpirationTime.
- Ticket 47812 - logconv.pl missing -U option from usage
- Ticket 47664 - Page control does not work if effective rights control is specified
- Ticket 47790 - Integer config attributes accept invalid  values at server startup
- Ticket 47710 - Missing warning for invalid replica backoff configuration
- Ticket 47853 - Missing newline at end of the error log messages in memberof
- Ticket 47853 - client hangs in add if memberof fails
- Ticket 47746 - ldap/servers/slapd/back-ldbm/dblayer.c: possible minor problem with sscanf
- Ticket 47711 - improve dbgen rdn generation, output and man page.
- Ticket 47855 - Fix previous commit
- Ticket 47859 - Coverity: 12692 & 12717
- Ticket 47855 - clear tmp directory at the start of each test
- Ticket 47844 - Fix hyphens used as minus signed and other manpage mistakes
- Ticket 47843 - Fix various typos in manpages & code
- Ticket 47832 - attrcrypt_generate_key calls slapd_pk11_TokenKeyGenWithFlags with improper macro
- Ticket 47852 - Updating winsync one-way sync does not affect the behaviour dynamically
- Ticket 47846 - server crashes deleting a replication agreement
- Ticket 47823 - attribute uniqueness enforced on all subtrees
- Ticket 47654 - Fix regression (deadlock/crash)
- Ticket 47827 - Fix coverity issue 12695
- Ticket 47829: memberof scope: allow to exclude subtrees
- Ticket 47815 - Add operations rejected by betxn plugins remain in cache
- Ticket 47808 - If be_txn plugin fails in ldbm_back_add, adding entry is double freed
- Ticket 555   - add fixup-memberuid.pl script
- Ticket 47827 - online import crashes server if using verbose error logging
- fix compiler error with alst coverity commit
- fix coverity issue 12621
- Ticket 47810 - investigate betxn plugins to ensure they  return the correct error code
- Ticket 47602 - txn commit being performed too early
- Ticket 47752 - Don't add unhashed password mod if we don't have an unhashed value
- Ticket 47803 - syncrepl crash if attribute list is non-empty
- Ticket 47466 - Fix coverity issue
- Ticket 47644 - Managed Entry Plugin - transaction not aborted upon failure to create managed entry
- Ticket 47791 - Negative value of nsSaslMapPriority is not  reset to lowest priority
- Ticket 47805 - syncrepl doesn't send notification when attribute in search filter changes
- Ticket 47636 - errorlog-level 16384 is listed as 0 in cn=config
- Ticket 47451 - Remove old code from linked attr plugin
- Ticket 47756 - fix coverity issues
- Ticket 47761 - Return all attributes in rootdse without explicit request
- fix assertion failure introduced with fix for ticket 47667
- Ticket 47712 - betxn: retro changelog broken after cancelled transaction
- Ticket 47667 - Allow nsDS5ReplicaBindDN to be a group DN
- Ticket 47655 - Improve replication total update logging
- Ticket 47756 - Improve import logging and abort processing
- Ticket 47451 - add/enable/disable/remove plugins without server restart
- Ticket 47553 - Enhance ACIs to have more control over MODRDN operations
- Ticket 47727 - Updating nsds5ReplicaHost attribute in a replication agreement fails with error 53
- Ticket 47725 - compiler error on daemon.c
- Ticket 47701 - Make retro changelog trim interval programmable
- Ticket 47453 - configure SASL/GSSAPI/Kerberos without server restart
- Ticket 47701 - Make retro changelog trim interval programmable
- Ticket 47602 - Make ldbm_back_seq independently support transactions
- Ticket 47552 - logconv: unindexed report should list bind dn
- Ticket 47619 - cannot reindex retrochangelog
- Update test cases due to new modules: Schema, tasks, plugins and index
- Ticket 47608 - change slapi_entry_attr_get_bool to handle "on"/"off" values, support default value
- Ticket 47437 - Some attributes in cn=config should not be multivalued
- Ticket 47573 - schema push can be erronously prevented
- Ticket 47618 - Enable normalized DN cache by default
- Ticket 47570 - slapi_ldap_init unusable during independent plugin development
- Ticket 47659 - ldbm_usn_init: Valgrind reports Invalid read / SIGSEGV
- Ticket 47654 - fix double free
- Ticket 47675 - logconv errors when search has invalid bind dn
- Ticket 47657 - add schema test suite and tests for Ticket #47634
- Ticket 47668 - test: port ticket47490_test to Replica/Agreement interface (47600)
- Ticket 47654 - Cleanup old memory leaks reported from valgrind
- Ticket 47651 - Finaliser to remove instances backups
- Ticket 47603 - should not modify pre op entry during config validation
- Ticket 47628 - port testcases to new DirSrv interface
- Ticket 47525 - Don't modify preop entry in memberOf config
- Ticket 605   - support TLS 1.1 - Fixing "Coverity 12415 - Logically dead code"
- Ticket 605   - support TLS 1.1 - lower the log level for the supported NSS version range
- Ticket 47368 - fix memory leaks
- Ticket 605   - support TLS 1.1 - adding backward compatibility
- Ticket 605   - support TLS 1.1
- Ticket 47603 - Allow RI plugin to use alternate config area
- Ticket 47586 - Need to rebind after a stop (fix to run direct python script)
- Ticket 47525 - Need to add locking around config area access
- Ticket 47457 - default nsslapd-sasl-max-buffer-size should be 2MB
- Ticket 47525 - Fix memory leak
- Ticket 381   - Recognize compressed log files
- Ticket 47525 - Allow memberOf to use an alternate config area
- Ticket 47529 - Automember plug-in should treat MODRDN operations as ADD operations
- Ticket 47521 - Complex filter in a search request doen't work as expected.
- Ticket 47582 - agmt_count in Replica could become (PRUint64)-1
- Ticket 47368 - Fix coverity issues
- Ticket 47555 - db2bak.pl issue when specifying non-default directory
- Ticket 47368 - Fix Jenkins errors
- Ticket 47368 - IPA server dirsrv RUV entry data excluded from replication
- Ticket 538   - - hardcoded sasl2 plugin path in ldaputil.c, saslbind.c
- Ticket 47519 - memory leaks in access control
- Ticket 47398 - memberOf on a user is converted to lowercase
- Coverity Issue 12033
- Ticket 47530 - dbscan on entryrdn should show all matching values
- Ticket 47422 - With 1.3.04 and subtree-renaming OFF, when a user is deleted after restarting the server, the same entry can't be added
- bump autoconf to 2.69, automake to 1.13.4, libtool to 2.4.2
- Ticket 47436 - 389-ds-base - shebang with /usr/bin/env
- Ticket 47499 - if nsslapd-cachememsize set to the number larger than the RAM available, should result in proper error message.
- Ticket 47530 - dbscan on entryrdn should show all matching values
- Ticket 47535 - update man page
- Ticket 53    - Need to update supported locales Cleaning up typos and format.
- Ticket 47535 - Logconv.pl - RFE - add on option for a minimum etime for unindexed search stats
- Ticket 47491 - Update systemd service file to use PartOf directive
* Wed Aug 27 2014 Noriko Hosoi <nhosoi@xxxxxxxxxx> - 1.3.2.23-1
- Release 1.3.2.23
- Ticket 47871 - 389-ds-base-1.3.2.21-1.fc20 crashed over the weekend
- Ticket 47866 - Errors after upgrading related to attribute "dnaremotebindmethod"
- Ticket 47816 - v2- internal syncrepl searches are flagged as unindexed
- Ticket 47877 - check_and_add_entry fails for changetype: add and existing entry
- Ticket 47834 - Tombstone_to_glue: if parents are also converted to glue, the target entry's DN must be adjusted.
- Ticket 47875 - dirsrv not running with old openldap
- Revert "Ticket #47875 - dirsrv not running with old openldap"
- Ticket 47875 - dirsrv not running with old openldap
- Ticket 47446 - logconv.pl memory continually grows
- Ticket 47874 - Performance degradation with scope ONE after some load
- Ticket 47872 - Filter AND with only one clause should be optimized
- Ticket 47834 - Tombstone_to_glue: if parents are also converted to glue, the target entry's DN must be adjusted.
- Ticket 47862 - repl-monitor fails to convert "*" to default values
- Ticket 47824 - paged results control is not working in some cases when we have a subsuffix.
- Ticket 47862 - Repl-monitor.pl ignores the provided connection parameters
- Ticket 346   - Fixing memory leaks
- Ticket 47753 - Add switch to disable pre-hashed password checking
- Ticket 47861 - Certain schema files are not replaced during upgrade
- Ticket 47858 - Internal searches using OP_FLAG_REVERSE_CANDIDATE_ORDER can crash the server
- Ticket 47797 - fix the indentation
- Ticket 47797 - DB deadlock when two threads (on separated backend) try to record changes in retroCL
- Ticket 47692 - single valued attribute replicated ADD does not work
- Ticket 47781 - Server deadlock if online import started while  server is under load
--------------------------------------------------------------------------------


================================================================================
 avro-1.7.5-9.fc21 (FEDORA-2014-10771)
 Data serialization system
--------------------------------------------------------------------------------
Update Information:

No hadoop on ARM (yet)
--------------------------------------------------------------------------------
ChangeLog:

* Fri Sep 12 2014 Peter Robinson <pbrobinson@xxxxxxxxxxxxxxxxx> 1.7.5-9
- No hadoop on ARM (yet)
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1140867 - ExcludeArch: arm applies to entire package, not just subpackage; breaks several deps for ARM
        https://bugzilla.redhat.com/show_bug.cgi?id=1140867
--------------------------------------------------------------------------------


================================================================================
 bind-dyndb-ldap-5.3-1.fc21 (FEDORA-2014-10776)
 LDAP back-end plug-in for BIND
--------------------------------------------------------------------------------
Update Information:

Update to 5.3 to fix several random crashes.
Update to 5.2. This version supports DNSSEC in-line signing and root zone in LDAP.
--------------------------------------------------------------------------------
ChangeLog:

* Fri Sep 12 2014 Petr Spacek <pspacek redhat com> - 5.3-1
- update to 5.3
* Mon Sep  8 2014 Petr Spacek <pspacek redhat com> 5.2-1
- update to 5.2
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1097749 - DNSSEC support
        https://bugzilla.redhat.com/show_bug.cgi?id=1097749
  [ 2 ] Bug #1122393 - bind-dyndb-ldap crash during 389-ds-base restart
        https://bugzilla.redhat.com/show_bug.cgi?id=1122393
--------------------------------------------------------------------------------


================================================================================
 eclipse-mpc-1.3.0-1.fc21 (FEDORA-2014-10769)
 Eclipse Marketplace Client
--------------------------------------------------------------------------------
Update Information:

Latest release containing various bug fixes and improvements.
--------------------------------------------------------------------------------
ChangeLog:

* Thu Sep 11 2014 Alexander Kurtakov <akurtako@xxxxxxxxxx> 1.3.0-1
- Update to upstream 1.3.0 release.
* Thu Sep  4 2014 Alexander Kurtakov <akurtako@xxxxxxxxxx> 1.2.2-1
- Update to official 1.2.2 release.
--------------------------------------------------------------------------------


================================================================================
 iguanaIR-1.1.0-11.fc21 (FEDORA-2014-10763)
 Driver for Iguanaworks USB IR transceiver
--------------------------------------------------------------------------------
Update Information:

Update to 1.1.0, remove circular dependency, Provides: tweak to avoid unintended ABI-bump.
--------------------------------------------------------------------------------
ChangeLog:

* Wed Sep 10 2014 Alec Leamas <leamas.alec@xxxxxxxxxxx> - 2:1.1.0-11
- Fixed 64-bit provides tweak.
* Tue Sep  9 2014 Alec Leamas <leamas.alec@xxxxxxxxxxx> - 2:1.1.0-10
- Added 64-bit provides tweak.
* Wed Sep  3 2014 Alec Leamas <leamas.alec@xxxxxxxxxxx> - 2:1.1.0-9
- Remove needless and circular dependency on lirc.
* Wed Sep  3 2014 Alec Leamas <leamas.alec@xxxxxxxxxxx> - 2:1.1.0-8
- patch soname + add virtual compatibility Provides:
* Wed Sep  3 2014 Alec Leamas <leamas.alec@xxxxxxxxxxx - 2:1.1.0-7
- Patch soname on rawhide to avoid unintended bump.
* Tue Sep  2 2014 Alec Leamas <leamas.alec@xxxxxxxxxxx - 2:1.1.0-6
- Make a new try to sort out deps for 1.1.0
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1119259 - iguanaIR-1.1.0 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=1119259
--------------------------------------------------------------------------------


================================================================================
 ikiwiki-3.20140831-1.fc21 (FEDORA-2014-10779)
 A wiki compiler
--------------------------------------------------------------------------------
Update Information:

Update to the latest stable version.

ikiwiki 3.20140831 released with these changes:
* Make --no-gettime work in initial build. Closes: http://bugs.debian.org/755075


--------------------------------------------------------------------------------
ChangeLog:

* Fri Sep  5 2014 Thomas Moschny <thomas.moschny@xxxxxx> - 3.20140831-1
- Update to 3.20140831.
* Fri Aug 29 2014 Jitka Plesnikova <jplesnik@xxxxxxxxxx> - 3.20140815-2
- Perl 5.20 rebuild
--------------------------------------------------------------------------------


================================================================================
 libint-1.1.6-4.fc21 (FEDORA-2014-10775)
 A library for computing electron repulsion integrals efficiently
--------------------------------------------------------------------------------
Update Information:

Rebuild against rebuilt libint. Packages now depend on the api version of libint, instead of a hard version-release require.
--------------------------------------------------------------------------------
ChangeLog:

* Tue Sep  9 2014 Susi Lehtola <jussilehtola@xxxxxxxxxxxxxxxxx> - 1.1.6-4
- Provide %_libint_apiversion instead of %_libint_version.
--------------------------------------------------------------------------------


================================================================================
 lirc-0.9.1a-4.fc21 (FEDORA-2014-10763)
 The Linux Infrared Remote Control package
--------------------------------------------------------------------------------
Update Information:

Update to 1.1.0, remove circular dependency, Provides: tweak to avoid unintended ABI-bump.
--------------------------------------------------------------------------------
ChangeLog:

* Wed Sep  3 2014 Alec Leamas <leamas@xxxxxxxxxxx> - 0.9.1a-4
- rebuilt
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1119259 - iguanaIR-1.1.0 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=1119259
--------------------------------------------------------------------------------


================================================================================
 meld-3.11.3-1.fc21 (FEDORA-2014-10774)
 Visual diff and merge tool
--------------------------------------------------------------------------------
Update Information:

Update to Meld 3.11.3
--------------------------------------------------------------------------------
ChangeLog:

* Fri Sep 12 2014 Dominic Hopf <dmaphy@xxxxxxxxxxxxxxxxx> - 3.11.3-1 
- Update to 3.11.3
* Mon Sep  8 2014 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> - 3.11.2-2
- update mime scriptlet
- drop added dep for icon scriptlets, see https://fedoraproject.org/wiki/Packaging:ScriptletSnippets?rd=Packaging/ScriptletSnippets#Icon_Cache
* Sat Jul 12 2014 Dominic Hopf <dmaphy@xxxxxxxxxxxxxxxxx> - 3.11.2-1 
- Update to 3.11.2
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1131433 - Warnings in meld output.
        https://bugzilla.redhat.com/show_bug.cgi?id=1131433
--------------------------------------------------------------------------------


================================================================================
 mingw-libtasn1-4.1-1.fc21 (FEDORA-2014-10777)
 MinGW Windows libtasn1 library
--------------------------------------------------------------------------------
Update Information:

* Corrected indefinite tag check in ANY constructions. That allows the decoding of BER-encoded structures that contain indefinite encoding within an ANY element.
* Added DER decoding flag ASN1_DECODE_FLAG_STRICT_DER. Over the years BER functionality was added to the decoder and this flag provides the way to disable it.
* API and ABI changes since last version: ASN1_DECODE_FLAG_STRICT_DER: New definition
--------------------------------------------------------------------------------
ChangeLog:

* Thu Sep 11 2014 Michael Cronenworth <mike@xxxxxxxxxx> - 4.1-1
- Update to 4.1
--------------------------------------------------------------------------------


================================================================================
 mod_gnutls-0.5.10-13.fc21 (FEDORA-2014-10766)
 GnuTLS module for the Apache HTTP server
--------------------------------------------------------------------------------
Update Information:

config change to use system policy (rhbz#1109115)
--------------------------------------------------------------------------------
ChangeLog:

* Fri Sep 12 2014 Jiri Kastner <jkastner@xxxxxxxxxx> - 0.5.10-13
- config change to use system policy (rhbz#1109115)
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1109115 - Use the system crypto policy unless otherwise specified
        https://bugzilla.redhat.com/show_bug.cgi?id=1109115
--------------------------------------------------------------------------------


================================================================================
 moodle-2.7.2-1.fc21 (FEDORA-2014-10770)
 A Course Management System
--------------------------------------------------------------------------------
Update Information:

Update to current releases to address security issues.
--------------------------------------------------------------------------------
ChangeLog:

* Fri Sep 12 2014 Jon Ciesla <limburgher@xxxxxxxxx> - 2.7.2-1
- 2.7.2, fix for security influences.
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1139991 - moodle: security issues fixed in versions 2.7.2, 2.6.5, and 2.5.8 [epel-all]
        https://bugzilla.redhat.com/show_bug.cgi?id=1139991
  [ 2 ] Bug #1139990 - moodle: security issues fixed in versions 2.7.2, 2.6.5, and 2.5.8 [fedora-all]
        https://bugzilla.redhat.com/show_bug.cgi?id=1139990
--------------------------------------------------------------------------------


================================================================================
 mpqc-2.3.1-29.fc21 (FEDORA-2014-10775)
 Ab-inito chemistry program
--------------------------------------------------------------------------------
Update Information:

Rebuild against rebuilt libint. Packages now depend on the api version of libint, instead of a hard version-release require.
--------------------------------------------------------------------------------
ChangeLog:

* Thu Sep 11 2014 Susi Lehtola <jussilehtola@xxxxxxxxxxxxxxxxx> - 2.3.1-29
- Libint require needs to be in -libs, not main package.
* Thu Sep 11 2014 Susi Lehtola <jussilehtola@xxxxxxxxxxxxxxxxx> - 2.3.1-28.1
- Forgot to do buildroot override.
* Tue Sep  9 2014 Susi Lehtola <jussilehtola@xxxxxxxxxxxxxxxxx> - 2.3.1-28
- Requires: libint(api).
* Sun Aug 17 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 2.3.1-27
- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild
--------------------------------------------------------------------------------


================================================================================
 ocaml-4.01.0-23.fc21 (FEDORA-2014-10780)
 OCaml compiler and programming environment
--------------------------------------------------------------------------------
Update Information:

Update to last 4.01 version from OCaml git.
Update to last 4.01 version from OCaml git and fix a bug in argument parsing.
--------------------------------------------------------------------------------
ChangeLog:

* Thu Sep 11 2014 Richard W.M. Jones <rjones@xxxxxxxxxx> - 4.01.0-23
- Update to last 4.01 version from OCaml git.
- Fix bug in argument parsing (RHBZ#1139790).
- Provides ocaml(runtime) 4.01.1.
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1139790 - virt-builder command line parsing ignores -v -x options at end of line
        https://bugzilla.redhat.com/show_bug.cgi?id=1139790
--------------------------------------------------------------------------------


================================================================================
 openlmi-networking-0.3.0-1.fc21 (FEDORA-2014-10304)
 CIM providers for network management
--------------------------------------------------------------------------------
Update Information:

Update to new upstream release.

News in this version:

OpenLMI Storage:
* Added support for thin provisioning in LVM. The provider can now create / delete thin pools and thin volumes.
* Added support for volume group modification - devices can be added / removed from a volume group. blivet version > 0.46 is required for this feature.
* Added LMI_StorageExtent.DeviceBusType property to show how a block device is connected to the system (ATA, USB or SCSI).
* Added LMI_StorageConfigurationService.LMI_SCSIScan() to re-scan local SCSI bus and discover new devices.
* Added support for blivet versions > 0.35.
* Many small fixes and improvements.

OpenLMI Providers:
* SSSD provider
* Locale provider
* developer assistant support
* indsender - library simplifying indication creation and sending
* jobmanager - library for easy job management
* support for python 2.6
* various bugfixes and enhancements

OpenLMI Networking;
* support for NetworkManager 0.8
* bugfixes and stability improvements

--------------------------------------------------------------------------------
ChangeLog:

* Wed Sep 10 2014 Radek Novacek <rnovacek@xxxxxxxxxx> 0.3.0-1
- Version 0.3.0
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1138246 - Unable to get the list of lvs and lv size
        https://bugzilla.redhat.com/show_bug.cgi?id=1138246
  [ 2 ] Bug #1122896 - openlmi-hardware: iSCSI disk exported as DiskDrive
        https://bugzilla.redhat.com/show_bug.cgi?id=1122896
  [ 3 ] Bug #1140793 - Dependency errors for openlmi-indicationmanager-libs
        https://bugzilla.redhat.com/show_bug.cgi?id=1140793
  [ 4 ] Bug #1134556 - Something is creating parser.out and parsetab.py in / of newly installed systems
        https://bugzilla.redhat.com/show_bug.cgi?id=1134556
--------------------------------------------------------------------------------


================================================================================
 openlmi-providers-0.5.0-5.fc21 (FEDORA-2014-10304)
 Set of basic CIM providers
--------------------------------------------------------------------------------
Update Information:

Update to new upstream release.

News in this version:

OpenLMI Storage:
* Added support for thin provisioning in LVM. The provider can now create / delete thin pools and thin volumes.
* Added support for volume group modification - devices can be added / removed from a volume group. blivet version > 0.46 is required for this feature.
* Added LMI_StorageExtent.DeviceBusType property to show how a block device is connected to the system (ATA, USB or SCSI).
* Added LMI_StorageConfigurationService.LMI_SCSIScan() to re-scan local SCSI bus and discover new devices.
* Added support for blivet versions > 0.35.
* Many small fixes and improvements.

OpenLMI Providers:
* SSSD provider
* Locale provider
* developer assistant support
* indsender - library simplifying indication creation and sending
* jobmanager - library for easy job management
* support for python 2.6
* various bugfixes and enhancements

OpenLMI Networking;
* support for NetworkManager 0.8
* bugfixes and stability improvements

--------------------------------------------------------------------------------
ChangeLog:

* Fri Sep 12 2014 Radek Novacek <rnovacek@xxxxxxxxxx> 0.5.0-5
- Fix wrong variable name
* Fri Sep 12 2014 Radek Novacek <rnovacek@xxxxxxxxxx> 0.5.0-4
- Add obsoletes of openlmi-indicationmanager-libs(-devel)
* Thu Sep 11 2014 Radek Novacek <rnovacek@xxxxxxxxxx> 0.5.0-3
- Fix the version of openlmi-providers that openlmi-locale requires
* Wed Sep 10 2014 Radek Novacek <rnovacek@xxxxxxxxxx> 0.5.0-2
- Bump version of openlmi metapackage to 1.0.2
* Tue Sep  9 2014 Radek Novacek <rnovacek@xxxxxxxxxx> 0.5.0-1
- Add -libs, -sssd and -locale subpackages
- Version 0.5.0
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1138246 - Unable to get the list of lvs and lv size
        https://bugzilla.redhat.com/show_bug.cgi?id=1138246
  [ 2 ] Bug #1122896 - openlmi-hardware: iSCSI disk exported as DiskDrive
        https://bugzilla.redhat.com/show_bug.cgi?id=1122896
  [ 3 ] Bug #1140793 - Dependency errors for openlmi-indicationmanager-libs
        https://bugzilla.redhat.com/show_bug.cgi?id=1140793
  [ 4 ] Bug #1134556 - Something is creating parser.out and parsetab.py in / of newly installed systems
        https://bugzilla.redhat.com/show_bug.cgi?id=1134556
--------------------------------------------------------------------------------


================================================================================
 openlmi-storage-0.8.0-1.fc21 (FEDORA-2014-10304)
 CIM providers for storage management
--------------------------------------------------------------------------------
Update Information:

Update to new upstream release.

News in this version:

OpenLMI Storage:
* Added support for thin provisioning in LVM. The provider can now create / delete thin pools and thin volumes.
* Added support for volume group modification - devices can be added / removed from a volume group. blivet version > 0.46 is required for this feature.
* Added LMI_StorageExtent.DeviceBusType property to show how a block device is connected to the system (ATA, USB or SCSI).
* Added LMI_StorageConfigurationService.LMI_SCSIScan() to re-scan local SCSI bus and discover new devices.
* Added support for blivet versions > 0.35.
* Many small fixes and improvements.

OpenLMI Providers:
* SSSD provider
* Locale provider
* developer assistant support
* indsender - library simplifying indication creation and sending
* jobmanager - library for easy job management
* support for python 2.6
* various bugfixes and enhancements

OpenLMI Networking;
* support for NetworkManager 0.8
* bugfixes and stability improvements

--------------------------------------------------------------------------------
ChangeLog:

* Fri Sep  5 2014 Jan Safranek <jsafrane@xxxxxxxxxx> - 0.8.0-1
- New upstream release.
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1138246 - Unable to get the list of lvs and lv size
        https://bugzilla.redhat.com/show_bug.cgi?id=1138246
  [ 2 ] Bug #1122896 - openlmi-hardware: iSCSI disk exported as DiskDrive
        https://bugzilla.redhat.com/show_bug.cgi?id=1122896
  [ 3 ] Bug #1140793 - Dependency errors for openlmi-indicationmanager-libs
        https://bugzilla.redhat.com/show_bug.cgi?id=1140793
  [ 4 ] Bug #1134556 - Something is creating parser.out and parsetab.py in / of newly installed systems
        https://bugzilla.redhat.com/show_bug.cgi?id=1134556
--------------------------------------------------------------------------------


================================================================================
 orc-0.4.22-3.fc21 (FEDORA-2014-10781)
 The Oil Run-time Compiler
--------------------------------------------------------------------------------
Update Information:

Fix FTBFS on aarch64
Add upstream patch for temp locations to fix issues with SELinux
0.4.22
======

Maintenance release:
- Handle NOCONFIGURE=1 in autogen.sh (Colin Walters)
- Some memory leak fixes in the compiler (Sebastian Dröge, Thiago Santos)
- Fixes for compiler warnings on Win64 (Edward Hervey)
- Properly detect CPU features on Android in non-debug build (Jan Schmidt)
- Use Android logging system instead of stderr for debug output (Jan Schmidt)

0.4.21
======

Maintenance release:
- Add libtool versioning to the linker flags again. This was accidentially removed in 0.4.20 but should not cause any problems on platforms other than OS X (Sebastian Dröge)

0.4.20
======

Maintenance release:
- Fix list corruption when splitting code memory chunks, causing crashes when allocating a lot of code memory and trying to free it later (Tim-Philipp Müller)
- Add some extra checks for the number of variables used in ORC code to prevent overflows and crashes in the compiler (Vincent Penquerc'h)
- Various compiler warnings, coverity warnings and static code analysis fixes (Sebastian Dröge)

0.4.19
======

Maintenance release:
- Fix out-of-tree builds (Edward Hervey)
- Fix many memory leaks, compiler warnings and coverity warnings (Tim-Philipp Müller, Olivier Crête, Todd Agulnick, Sebastian Dröge, Vincent Penquerc'h, Edward Hervey)
- Documentation fix for mulhsw, mulhuw (William Manley)
0.4.22
======

Maintenance release:
- Handle NOCONFIGURE=1 in autogen.sh (Colin Walters)
- Some memory leak fixes in the compiler (Sebastian Dröge, Thiago Santos)
- Fixes for compiler warnings on Win64 (Edward Hervey)
- Properly detect CPU features on Android in non-debug build (Jan Schmidt)
- Use Android logging system instead of stderr for debug output (Jan Schmidt)

0.4.21
======

Maintenance release:
- Add libtool versioning to the linker flags again. This was accidentially removed in 0.4.20 but should not cause any problems on platforms other than OS X (Sebastian Dröge)

0.4.20
======

Maintenance release:
- Fix list corruption when splitting code memory chunks, causing crashes when allocating a lot of code memory and trying to free it later (Tim-Philipp Müller)
- Add some extra checks for the number of variables used in ORC code to prevent overflows and crashes in the compiler (Vincent Penquerc'h)
- Various compiler warnings, coverity warnings and static code analysis fixes (Sebastian Dröge)

0.4.19
======

Maintenance release:
- Fix out-of-tree builds (Edward Hervey)
- Fix many memory leaks, compiler warnings and coverity warnings (Tim-Philipp Müller, Olivier Crête, Todd Agulnick, Sebastian Dröge, Vincent Penquerc'h, Edward Hervey)
- Documentation fix for mulhsw, mulhuw (William Manley)
--------------------------------------------------------------------------------
ChangeLog:

* Thu Sep 11 2014 Yaakov Selkowitz <yselkowi@xxxxxxxxxx> - 0.4.22-3
- Do not run tests on aarch64
* Thu Sep  4 2014 Peter Robinson <pbrobinson@xxxxxxxxxxxxxxxxx> 0.4.22-2
- Add upstream patch for selinux issue with tmp files
* Fri Aug 29 2014 Peter Robinson <pbrobinson@xxxxxxxxxxxxxxxxx> 0.4.22-1
- Update to 0.4.22
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1001110 - orc-0.4.21 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=1001110
  [ 2 ] Bug #1055240 - [abrt] pulseaudio: orc_code_region_get_free_chunk(): pulseaudio killed by SIGABRT
        https://bugzilla.redhat.com/show_bug.cgi?id=1055240
--------------------------------------------------------------------------------


================================================================================
 orthanc-0.8.3-1.fc21 (FEDORA-2014-10764)
 RESTful DICOM server for healthcare and medical research
--------------------------------------------------------------------------------
Update Information:

New upstream version
--------------------------------------------------------------------------------
ChangeLog:

* Fri Sep 12 2014 Sebastien Jodogne <s.jodogne@xxxxxxxxx> 0.8.3-1
- New upstream version
--------------------------------------------------------------------------------


================================================================================
 perl-Data-Faker-0.10-2.fc21 (FEDORA-2014-10759)
 Perl extension for generating fake data
--------------------------------------------------------------------------------
Update Information:

perl-Data-Faker: initial submission
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1138971 - Review Request: perl-Data-Faker - Perl extension for generating fake data
        https://bugzilla.redhat.com/show_bug.cgi?id=1138971
--------------------------------------------------------------------------------


================================================================================
 php-PHPParser-1.0.0-1.fc21 (FEDORA-2014-10773)
 A PHP parser written in PHP
--------------------------------------------------------------------------------
Update Information:

Update 1.0.0 (final) with fix various bugs since beta.
--------------------------------------------------------------------------------
ChangeLog:

* Fri Sep 12 2014 Remi Collet <remi@xxxxxxxxxxxxxxxxx> 1.0.0-1
- Update to 1.0.0
--------------------------------------------------------------------------------


================================================================================
 psi4-4.0-0.16.c7deee9git.1.fc21 (FEDORA-2014-10775)
 An ab initio quantum chemistry package
--------------------------------------------------------------------------------
Update Information:

Rebuild against rebuilt libint. Packages now depend on the api version of libint, instead of a hard version-release require.
--------------------------------------------------------------------------------
ChangeLog:

* Thu Sep 11 2014 Susi Lehtola <jussilehtola@xxxxxxxxxxxxxxxxx> - 4.0-0.16.c7deee99.1
- Forgot to tag buildroot override in previous build.
* Wed Sep 10 2014 Susi Lehtola <jussilehtola@xxxxxxxxxxxxxxxxx> - 4.0-0.16.c7deee99
- Update to newest snapshot.
- Requires libint(api).
--------------------------------------------------------------------------------


================================================================================
 pyp2rpm-1.1.1-1.fc21 (FEDORA-2014-10760)
 Convert Python packages to RPM SPECFILES
--------------------------------------------------------------------------------
Update Information:

Update to v1.1.1
--------------------------------------------------------------------------------
ChangeLog:

* Fri Sep 12 2014 Robert Kuska <rkuska@xxxxxxxxxx> - 1.1.1-1
- Update to 1.1.1
--------------------------------------------------------------------------------


================================================================================
 python-ldaptor-0.0.44-6.20140909gitc30f30d9.fc21 (FEDORA-2014-10772)
 Python LDAP client library
--------------------------------------------------------------------------------
Update Information:

Use twisted fork + various bug fixes
--------------------------------------------------------------------------------
ChangeLog:

* Fri Sep 12 2014 Haïkel Guémar <hguemar@xxxxxxxxxxxxxxxxx> - 0.0.44-6.20140909gitc30f30d9
- Use twisted fork + various bug fixes
* Mon Sep  2 2013 Jan Vcelak <jvcelak@xxxxxxxxxxxxxxxxx> 0.0.44-4.20120515git29a06fa
- use unversioned documentation directory, resolves #994059
--------------------------------------------------------------------------------


================================================================================
 qemu-2.1.1-1.fc21 (FEDORA-2014-10761)
 QEMU is a FAST! processor emulator
--------------------------------------------------------------------------------
Update Information:

* Rebased to version 2.1.1
* CVE-2014-5388: out of bounds memory access (bz #1132962, bz #1132956)
--------------------------------------------------------------------------------
ChangeLog:

* Thu Sep 11 2014 Cole Robinson <crobinso@xxxxxxxxxx> - 2:2.1.1-1
- Rebased to version 2.1.1
- CVE-2014-5388: out of bounds memory access (bz #1132962, bz #1132956)
- CVE-2014-3615 crash when guest sets high resolution (bz #1139121, bz
* Wed Sep  3 2014 Richard W.M. Jones <rjones@xxxxxxxxxx> 2:2.1.0-6
- Add upstream patches to:
  * Fix crash in curl driver.
  * Add curl timeout option.
  * Add curl cookie option.
- Add upstream commit hashes to patches.
* Wed Aug 20 2014 Richard W.M. Jones <rjones@xxxxxxxxxx> 2:2.1.0-5
- Add patch for aarch64 which uncompresses -kernel parameter (in arm.next).
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1132956 - CVE-2014-5388 Qemu: out of bounds memory access
        https://bugzilla.redhat.com/show_bug.cgi?id=1132956
  [ 2 ] Bug #1139115 - CVE-2014-3615 Qemu: information leakage when guest sets high resolution
        https://bugzilla.redhat.com/show_bug.cgi?id=1139115
--------------------------------------------------------------------------------


================================================================================
 redis-2.8.14-2.fc21 (FEDORA-2014-10699)
 A persistent key-value database
--------------------------------------------------------------------------------
Update Information:

Upstream 2.8.14 (RHBZ #1136287)
Backport Warren Togami fixes from EPEL7
Closes *many* pending tickets in RHBZ
--------------------------------------------------------------------------------
ChangeLog:

* Thu Sep 11 2014 Haïkel Guémar <hguemar@xxxxxxxxxxxxxxxxx> - 2.8.14-2
- Cleanup spec
- Fix shutdown for redis-{server,sentinel}
- Backport fixes from Remi Collet repository (ie: sentinel working)
* Thu Sep 11 2014 Haïkel Guémar <hguemar@xxxxxxxxxxxxxxxxx> - 2.8.14-1
- Upstream 2.8.14 (RHBZ #1136287)
- Bugfix for lua scripting users (server crash)
- Refresh patches
- backport spec from EPEL7 (thanks Warren)
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1136287 - redis-2.8.14 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=1136287
  [ 2 ] Bug #1123626 - missing redis-sentinel command
        https://bugzilla.redhat.com/show_bug.cgi?id=1123626
  [ 3 ] Bug #1126246 - yum install
        https://bugzilla.redhat.com/show_bug.cgi?id=1126246
  [ 4 ] Bug #1123627 - Bad systemd init file.
        https://bugzilla.redhat.com/show_bug.cgi?id=1123627
  [ 5 ] Bug #1123630 - Service rename break update
        https://bugzilla.redhat.com/show_bug.cgi?id=1123630
--------------------------------------------------------------------------------


================================================================================
 squid-3.4.7-2.fc21 (FEDORA-2014-10767)
 The Squid proxy caching server
--------------------------------------------------------------------------------
Update Information:

This updated fixes CVE-2014-6270.
--------------------------------------------------------------------------------
ChangeLog:

* Thu Sep 11 2014 Michal Luscon <mluscon@xxxxxxxxxx> - 7:3.4.7-2
- Fixed: CVE-2014-6270
* Thu Aug 28 2014 Michal Luscon <mluscon@xxxxxxxxxx> - 7:3.4.7-1
- Update to latest upstream version
- Fixed: CVE-2014-3609
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1139967 - CVE-2014-6270 squid: off-by-one error in snmpHandleUdp() leading to a bss-based buffer overflow
        https://bugzilla.redhat.com/show_bug.cgi?id=1139967
--------------------------------------------------------------------------------


================================================================================
 ssdeep-2.11-1.fc21 (FEDORA-2014-10765)
 Compute context triggered piecewise hashes
--------------------------------------------------------------------------------
Update Information:

Version 2.11 - 11 Sep 2014

New Features
* Added fuzzy_clone function to the API.

Bug Fixes
* Fixed edge case on signature generaion. Behavior now matches v2.9 again.

--------------------------------------------------------------------------------
ChangeLog:

* Fri Sep 12 2014 Remi Collet <remi@xxxxxxxxxxxxxxxxx> - 2.11-1
- update to 2.11
--------------------------------------------------------------------------------


================================================================================
 xorg-x11-xinit-1.3.4-1.fc21 (FEDORA-2014-10768)
 X.Org X11 X Window System xinit startup scripts
--------------------------------------------------------------------------------
Update Information:

- New upstream release 1.3.4
- Resolves #806491 #990213 #1006029
- Remove stale ck-xinit-session references from xinitrc-common (#910969)
- Make startx pass "-nolisten tcp" by default, use -listen as server option to disable this (#1111684)
- Teach Xclients script about lxde (#488602)
--------------------------------------------------------------------------------
ChangeLog:

* Thu Sep 11 2014 Hans de Goede <hdegoede@xxxxxxxxxx> - 1.3.4-1
- New upstream release 1.3.4
- Resolves #806491 #990213 #1006029
- Remove stale ck-xinit-session references from xinitrc-common (#910969)
- Make startx pass "-nolisten tcp" by default, use -listen as server
  option to disable this (#1111684)
- Teach Xclients script about lxde (#488602)
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #806491 - systemd-logind not tracking startx sessions
        https://bugzilla.redhat.com/show_bug.cgi?id=806491
  [ 2 ] Bug #990213 - startx contains empty line before the #! line
        https://bugzilla.redhat.com/show_bug.cgi?id=990213
  [ 3 ] Bug #1006029 - xorg-x11-xinit-1.3.3 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=1006029
  [ 4 ] Bug #910969 - Please remove any reference to ConsoleKit from X11/xinit/xinitrc-common
        https://bugzilla.redhat.com/show_bug.cgi?id=910969
  [ 5 ] Bug #1111684 - startx doesn't add -nolisten tcp by default
        https://bugzilla.redhat.com/show_bug.cgi?id=1111684
  [ 6 ] Bug #488602 - RfE: Support for LXDE in the Xclients script
        https://bugzilla.redhat.com/show_bug.cgi?id=488602
--------------------------------------------------------------------------------


================================================================================
 xscreensaver-5.30-1.fc21 (FEDORA-2014-10778)
 X screen saver and locker
--------------------------------------------------------------------------------
Update Information:

New version 5.30 is released.
--------------------------------------------------------------------------------
ChangeLog:

* Fri Sep 12 2014 Mamoru TASAKA <mtasaka@xxxxxxxxxxxxxxxxx> - 1:5.30-1
- Update to 5.30
* Sat Sep  6 2014 Mamoru TASAKA <mtasaka@xxxxxxxxxxxxxxxxx> - 1:5.29-3
- Remove GtkDialog:has-separator usage to suppress warning for
  xscreensaver-demo on Fedora 21 and above
* Thu Sep  4 2014 Mamoru TASAKA <mtasaka@xxxxxxxxxxxxxxxxx> - 1:5.29-2
- gcc49 sanitizer array elements oversize fixes
- Make parallel build actually work
--------------------------------------------------------------------------------

-- 
test mailing list
test@xxxxxxxxxxxxxxxxxxxxxxx
To unsubscribe:
https://admin.fedoraproject.org/mailman/listinfo/test





[Index of Archives]     [Fedora Desktop]     [Fedora SELinux]     [Photo Sharing]     [Yosemite Forum]     [KDE Users]

  Powered by Linux