The following Fedora 21 Security updates need testing: Age URL 6 https://admin.fedoraproject.org/updates/FEDORA-2014-10171/apache-poi-3.10.1-1.fc21 6 https://admin.fedoraproject.org/updates/FEDORA-2014-10153/torque-4.2.8-1.fc21 6 https://admin.fedoraproject.org/updates/FEDORA-2014-10211/geary-0.7.2-1.fc21 6 https://admin.fedoraproject.org/updates/FEDORA-2014-10142/procmail-3.22-36.fc21 2 https://admin.fedoraproject.org/updates/FEDORA-2014-10531/xen-4.4.1-2.fc21 2 https://admin.fedoraproject.org/updates/FEDORA-2014-10617/xerces-j2-2.11.0-22.fc21 2 https://admin.fedoraproject.org/updates/FEDORA-2014-10600/pdns-recursor-3.6.1-1.fc21 2 https://admin.fedoraproject.org/updates/FEDORA-2014-10507/knot-1.5.2-1.fc21 1 https://admin.fedoraproject.org/updates/FEDORA-2014-10679/curl-7.37.0-7.fc21 0 https://admin.fedoraproject.org/updates/FEDORA-2014-10691/not-yet-commons-ssl-0.3.15-2.fc21 0 https://admin.fedoraproject.org/updates/FEDORA-2014-10693/kernel-3.16.2-301.fc21 0 https://admin.fedoraproject.org/updates/FEDORA-2014-10761/qemu-2.1.1-1.fc21 0 https://admin.fedoraproject.org/updates/FEDORA-2014-10770/moodle-2.7.2-1.fc21 0 https://admin.fedoraproject.org/updates/FEDORA-2014-10766/mod_gnutls-0.5.10-13.fc21 0 https://admin.fedoraproject.org/updates/FEDORA-2014-10767/squid-3.4.7-2.fc21 The following Fedora 21 Critical Path updates have yet to be approved: Age URL 10 https://admin.fedoraproject.org/updates/FEDORA-2014-9990/lz4-r122-1.fc21 6 https://admin.fedoraproject.org/updates/FEDORA-2014-10215/libbluray-0.6.2-1.fc21 6 https://admin.fedoraproject.org/updates/FEDORA-2014-10125/ppp-2.4.7-4.fc21 2 https://admin.fedoraproject.org/updates/FEDORA-2014-10624/selinux-policy-3.13.1-79.fc21 2 https://admin.fedoraproject.org/updates/FEDORA-2014-10608/usbmuxd-1.0.9-0.6.c24463e.fc21,libusbmuxd-1.0.9-4.fc21 1 https://admin.fedoraproject.org/updates/FEDORA-2014-10679/curl-7.37.0-7.fc21 1 https://admin.fedoraproject.org/updates/FEDORA-2014-10674/xorg-x11-drv-intel-2.99.916-2.fc21 1 https://admin.fedoraproject.org/updates/FEDORA-2014-10673/gupnp-av-0.12.6-5.fc21,gupnp-dlna-0.10.2-6.fc21 0 https://admin.fedoraproject.org/updates/FEDORA-2014-10781/orc-0.4.22-3.fc21 0 https://admin.fedoraproject.org/updates/FEDORA-2014-10768/xorg-x11-xinit-1.3.4-1.fc21 0 https://admin.fedoraproject.org/updates/FEDORA-2014-10690/anaconda-21.48.6-1.fc21 0 https://admin.fedoraproject.org/updates/FEDORA-2014-10693/kernel-3.16.2-301.fc21 0 https://admin.fedoraproject.org/updates/FEDORA-2014-10686/pungi-3.12-1.fc21 0 https://admin.fedoraproject.org/updates/FEDORA-2014-10694/openssl-1.0.1i-4.fc21 The following builds have been pushed to Fedora 21 updates-testing 389-ds-base-1.3.3.2-1.fc21 avro-1.7.5-9.fc21 bind-dyndb-ldap-5.3-1.fc21 eclipse-mpc-1.3.0-1.fc21 iguanaIR-1.1.0-11.fc21 ikiwiki-3.20140831-1.fc21 libint-1.1.6-4.fc21 lirc-0.9.1a-4.fc21 meld-3.11.3-1.fc21 mingw-libtasn1-4.1-1.fc21 mod_gnutls-0.5.10-13.fc21 moodle-2.7.2-1.fc21 mpqc-2.3.1-29.fc21 ocaml-4.01.0-23.fc21 openlmi-networking-0.3.0-1.fc21 openlmi-providers-0.5.0-5.fc21 openlmi-storage-0.8.0-1.fc21 orc-0.4.22-3.fc21 orthanc-0.8.3-1.fc21 perl-Data-Faker-0.10-2.fc21 php-PHPParser-1.0.0-1.fc21 psi4-4.0-0.16.c7deee9git.1.fc21 pyp2rpm-1.1.1-1.fc21 python-ldaptor-0.0.44-6.20140909gitc30f30d9.fc21 qemu-2.1.1-1.fc21 redis-2.8.14-2.fc21 squid-3.4.7-2.fc21 ssdeep-2.11-1.fc21 xorg-x11-xinit-1.3.4-1.fc21 xscreensaver-5.30-1.fc21 Details about builds: ================================================================================ 389-ds-base-1.3.3.2-1.fc21 (FEDORA-2014-10762) 389 Directory Server (base) -------------------------------------------------------------------------------- Update Information: Release 389-ds-base-1.3.3.2 -------------------------------------------------------------------------------- ChangeLog: * Thu Sep 11 2014 Noriko Hosoi <nhosoi@xxxxxxxxxx> - 1.3.3.2-1 - Release 1.3.3.2 - Ticket 47889 - DS crashed during ipa-server-install on test_ava_filter - Ticket 47895 - If no effective ciphers are available, disable security setting. - Ticket 47838 - harden the list of ciphers available by default - Ticket 47885 - did not always return a response control - Ticket 47890 - minor memory leaks in utilities - Ticket 47834 - Tombstone_to_glue: if parents are also converted to glue, the target entry's DN must be adjusted. - Ticket 47748 - Simultaneous adding a user and binding as the user could fail in the password policy check - Ticket 47875 - dirsrv not running with old openldap - Ticket 47885 - deref plugin should not return references with noc access rights * Wed Sep 3 2014 Noriko Hosoi <nhosoi@xxxxxxxxxx> - 1.3.3.0-1 - Release 1.3.3.0 - Ticket 47879 - coverity defects in plugins/replication/windows_protocol_util.c - Ticket 47876 - coverity defects in slapd/tools/mmldif.c - Ticket 47574 - start dirsrv after ntpd - Ticket 47838 - harden the list of ciphers available by default - Ticket 47579 - add dbmon.sh - Ticket 47819 - Fix memory leak - Ticket 47819 - Improve tombstone purging performance - Ticket 47714 - [RFE] Update lastLoginTime also in Account Policy plugin if account lockout is based on passwordExpirationTime. - Ticket 47812 - logconv.pl missing -U option from usage - Ticket 47664 - Page control does not work if effective rights control is specified - Ticket 47790 - Integer config attributes accept invalid values at server startup - Ticket 47710 - Missing warning for invalid replica backoff configuration - Ticket 47853 - Missing newline at end of the error log messages in memberof - Ticket 47853 - client hangs in add if memberof fails - Ticket 47746 - ldap/servers/slapd/back-ldbm/dblayer.c: possible minor problem with sscanf - Ticket 47711 - improve dbgen rdn generation, output and man page. - Ticket 47855 - Fix previous commit - Ticket 47859 - Coverity: 12692 & 12717 - Ticket 47855 - clear tmp directory at the start of each test - Ticket 47844 - Fix hyphens used as minus signed and other manpage mistakes - Ticket 47843 - Fix various typos in manpages & code - Ticket 47832 - attrcrypt_generate_key calls slapd_pk11_TokenKeyGenWithFlags with improper macro - Ticket 47852 - Updating winsync one-way sync does not affect the behaviour dynamically - Ticket 47846 - server crashes deleting a replication agreement - Ticket 47823 - attribute uniqueness enforced on all subtrees - Ticket 47654 - Fix regression (deadlock/crash) - Ticket 47827 - Fix coverity issue 12695 - Ticket 47829: memberof scope: allow to exclude subtrees - Ticket 47815 - Add operations rejected by betxn plugins remain in cache - Ticket 47808 - If be_txn plugin fails in ldbm_back_add, adding entry is double freed - Ticket 555 - add fixup-memberuid.pl script - Ticket 47827 - online import crashes server if using verbose error logging - fix compiler error with alst coverity commit - fix coverity issue 12621 - Ticket 47810 - investigate betxn plugins to ensure they return the correct error code - Ticket 47602 - txn commit being performed too early - Ticket 47752 - Don't add unhashed password mod if we don't have an unhashed value - Ticket 47803 - syncrepl crash if attribute list is non-empty - Ticket 47466 - Fix coverity issue - Ticket 47644 - Managed Entry Plugin - transaction not aborted upon failure to create managed entry - Ticket 47791 - Negative value of nsSaslMapPriority is not reset to lowest priority - Ticket 47805 - syncrepl doesn't send notification when attribute in search filter changes - Ticket 47636 - errorlog-level 16384 is listed as 0 in cn=config - Ticket 47451 - Remove old code from linked attr plugin - Ticket 47756 - fix coverity issues - Ticket 47761 - Return all attributes in rootdse without explicit request - fix assertion failure introduced with fix for ticket 47667 - Ticket 47712 - betxn: retro changelog broken after cancelled transaction - Ticket 47667 - Allow nsDS5ReplicaBindDN to be a group DN - Ticket 47655 - Improve replication total update logging - Ticket 47756 - Improve import logging and abort processing - Ticket 47451 - add/enable/disable/remove plugins without server restart - Ticket 47553 - Enhance ACIs to have more control over MODRDN operations - Ticket 47727 - Updating nsds5ReplicaHost attribute in a replication agreement fails with error 53 - Ticket 47725 - compiler error on daemon.c - Ticket 47701 - Make retro changelog trim interval programmable - Ticket 47453 - configure SASL/GSSAPI/Kerberos without server restart - Ticket 47701 - Make retro changelog trim interval programmable - Ticket 47602 - Make ldbm_back_seq independently support transactions - Ticket 47552 - logconv: unindexed report should list bind dn - Ticket 47619 - cannot reindex retrochangelog - Update test cases due to new modules: Schema, tasks, plugins and index - Ticket 47608 - change slapi_entry_attr_get_bool to handle "on"/"off" values, support default value - Ticket 47437 - Some attributes in cn=config should not be multivalued - Ticket 47573 - schema push can be erronously prevented - Ticket 47618 - Enable normalized DN cache by default - Ticket 47570 - slapi_ldap_init unusable during independent plugin development - Ticket 47659 - ldbm_usn_init: Valgrind reports Invalid read / SIGSEGV - Ticket 47654 - fix double free - Ticket 47675 - logconv errors when search has invalid bind dn - Ticket 47657 - add schema test suite and tests for Ticket #47634 - Ticket 47668 - test: port ticket47490_test to Replica/Agreement interface (47600) - Ticket 47654 - Cleanup old memory leaks reported from valgrind - Ticket 47651 - Finaliser to remove instances backups - Ticket 47603 - should not modify pre op entry during config validation - Ticket 47628 - port testcases to new DirSrv interface - Ticket 47525 - Don't modify preop entry in memberOf config - Ticket 605 - support TLS 1.1 - Fixing "Coverity 12415 - Logically dead code" - Ticket 605 - support TLS 1.1 - lower the log level for the supported NSS version range - Ticket 47368 - fix memory leaks - Ticket 605 - support TLS 1.1 - adding backward compatibility - Ticket 605 - support TLS 1.1 - Ticket 47603 - Allow RI plugin to use alternate config area - Ticket 47586 - Need to rebind after a stop (fix to run direct python script) - Ticket 47525 - Need to add locking around config area access - Ticket 47457 - default nsslapd-sasl-max-buffer-size should be 2MB - Ticket 47525 - Fix memory leak - Ticket 381 - Recognize compressed log files - Ticket 47525 - Allow memberOf to use an alternate config area - Ticket 47529 - Automember plug-in should treat MODRDN operations as ADD operations - Ticket 47521 - Complex filter in a search request doen't work as expected. - Ticket 47582 - agmt_count in Replica could become (PRUint64)-1 - Ticket 47368 - Fix coverity issues - Ticket 47555 - db2bak.pl issue when specifying non-default directory - Ticket 47368 - Fix Jenkins errors - Ticket 47368 - IPA server dirsrv RUV entry data excluded from replication - Ticket 538 - - hardcoded sasl2 plugin path in ldaputil.c, saslbind.c - Ticket 47519 - memory leaks in access control - Ticket 47398 - memberOf on a user is converted to lowercase - Coverity Issue 12033 - Ticket 47530 - dbscan on entryrdn should show all matching values - Ticket 47422 - With 1.3.04 and subtree-renaming OFF, when a user is deleted after restarting the server, the same entry can't be added - bump autoconf to 2.69, automake to 1.13.4, libtool to 2.4.2 - Ticket 47436 - 389-ds-base - shebang with /usr/bin/env - Ticket 47499 - if nsslapd-cachememsize set to the number larger than the RAM available, should result in proper error message. - Ticket 47530 - dbscan on entryrdn should show all matching values - Ticket 47535 - update man page - Ticket 53 - Need to update supported locales Cleaning up typos and format. - Ticket 47535 - Logconv.pl - RFE - add on option for a minimum etime for unindexed search stats - Ticket 47491 - Update systemd service file to use PartOf directive * Wed Aug 27 2014 Noriko Hosoi <nhosoi@xxxxxxxxxx> - 1.3.2.23-1 - Release 1.3.2.23 - Ticket 47871 - 389-ds-base-1.3.2.21-1.fc20 crashed over the weekend - Ticket 47866 - Errors after upgrading related to attribute "dnaremotebindmethod" - Ticket 47816 - v2- internal syncrepl searches are flagged as unindexed - Ticket 47877 - check_and_add_entry fails for changetype: add and existing entry - Ticket 47834 - Tombstone_to_glue: if parents are also converted to glue, the target entry's DN must be adjusted. - Ticket 47875 - dirsrv not running with old openldap - Revert "Ticket #47875 - dirsrv not running with old openldap" - Ticket 47875 - dirsrv not running with old openldap - Ticket 47446 - logconv.pl memory continually grows - Ticket 47874 - Performance degradation with scope ONE after some load - Ticket 47872 - Filter AND with only one clause should be optimized - Ticket 47834 - Tombstone_to_glue: if parents are also converted to glue, the target entry's DN must be adjusted. - Ticket 47862 - repl-monitor fails to convert "*" to default values - Ticket 47824 - paged results control is not working in some cases when we have a subsuffix. - Ticket 47862 - Repl-monitor.pl ignores the provided connection parameters - Ticket 346 - Fixing memory leaks - Ticket 47753 - Add switch to disable pre-hashed password checking - Ticket 47861 - Certain schema files are not replaced during upgrade - Ticket 47858 - Internal searches using OP_FLAG_REVERSE_CANDIDATE_ORDER can crash the server - Ticket 47797 - fix the indentation - Ticket 47797 - DB deadlock when two threads (on separated backend) try to record changes in retroCL - Ticket 47692 - single valued attribute replicated ADD does not work - Ticket 47781 - Server deadlock if online import started while server is under load -------------------------------------------------------------------------------- ================================================================================ avro-1.7.5-9.fc21 (FEDORA-2014-10771) Data serialization system -------------------------------------------------------------------------------- Update Information: No hadoop on ARM (yet) -------------------------------------------------------------------------------- ChangeLog: * Fri Sep 12 2014 Peter Robinson <pbrobinson@xxxxxxxxxxxxxxxxx> 1.7.5-9 - No hadoop on ARM (yet) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1140867 - ExcludeArch: arm applies to entire package, not just subpackage; breaks several deps for ARM https://bugzilla.redhat.com/show_bug.cgi?id=1140867 -------------------------------------------------------------------------------- ================================================================================ bind-dyndb-ldap-5.3-1.fc21 (FEDORA-2014-10776) LDAP back-end plug-in for BIND -------------------------------------------------------------------------------- Update Information: Update to 5.3 to fix several random crashes. Update to 5.2. This version supports DNSSEC in-line signing and root zone in LDAP. -------------------------------------------------------------------------------- ChangeLog: * Fri Sep 12 2014 Petr Spacek <pspacek redhat com> - 5.3-1 - update to 5.3 * Mon Sep 8 2014 Petr Spacek <pspacek redhat com> 5.2-1 - update to 5.2 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1097749 - DNSSEC support https://bugzilla.redhat.com/show_bug.cgi?id=1097749 [ 2 ] Bug #1122393 - bind-dyndb-ldap crash during 389-ds-base restart https://bugzilla.redhat.com/show_bug.cgi?id=1122393 -------------------------------------------------------------------------------- ================================================================================ eclipse-mpc-1.3.0-1.fc21 (FEDORA-2014-10769) Eclipse Marketplace Client -------------------------------------------------------------------------------- Update Information: Latest release containing various bug fixes and improvements. -------------------------------------------------------------------------------- ChangeLog: * Thu Sep 11 2014 Alexander Kurtakov <akurtako@xxxxxxxxxx> 1.3.0-1 - Update to upstream 1.3.0 release. * Thu Sep 4 2014 Alexander Kurtakov <akurtako@xxxxxxxxxx> 1.2.2-1 - Update to official 1.2.2 release. -------------------------------------------------------------------------------- ================================================================================ iguanaIR-1.1.0-11.fc21 (FEDORA-2014-10763) Driver for Iguanaworks USB IR transceiver -------------------------------------------------------------------------------- Update Information: Update to 1.1.0, remove circular dependency, Provides: tweak to avoid unintended ABI-bump. -------------------------------------------------------------------------------- ChangeLog: * Wed Sep 10 2014 Alec Leamas <leamas.alec@xxxxxxxxxxx> - 2:1.1.0-11 - Fixed 64-bit provides tweak. * Tue Sep 9 2014 Alec Leamas <leamas.alec@xxxxxxxxxxx> - 2:1.1.0-10 - Added 64-bit provides tweak. * Wed Sep 3 2014 Alec Leamas <leamas.alec@xxxxxxxxxxx> - 2:1.1.0-9 - Remove needless and circular dependency on lirc. * Wed Sep 3 2014 Alec Leamas <leamas.alec@xxxxxxxxxxx> - 2:1.1.0-8 - patch soname + add virtual compatibility Provides: * Wed Sep 3 2014 Alec Leamas <leamas.alec@xxxxxxxxxxx - 2:1.1.0-7 - Patch soname on rawhide to avoid unintended bump. * Tue Sep 2 2014 Alec Leamas <leamas.alec@xxxxxxxxxxx - 2:1.1.0-6 - Make a new try to sort out deps for 1.1.0 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1119259 - iguanaIR-1.1.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1119259 -------------------------------------------------------------------------------- ================================================================================ ikiwiki-3.20140831-1.fc21 (FEDORA-2014-10779) A wiki compiler -------------------------------------------------------------------------------- Update Information: Update to the latest stable version. ikiwiki 3.20140831 released with these changes: * Make --no-gettime work in initial build. Closes: http://bugs.debian.org/755075 -------------------------------------------------------------------------------- ChangeLog: * Fri Sep 5 2014 Thomas Moschny <thomas.moschny@xxxxxx> - 3.20140831-1 - Update to 3.20140831. * Fri Aug 29 2014 Jitka Plesnikova <jplesnik@xxxxxxxxxx> - 3.20140815-2 - Perl 5.20 rebuild -------------------------------------------------------------------------------- ================================================================================ libint-1.1.6-4.fc21 (FEDORA-2014-10775) A library for computing electron repulsion integrals efficiently -------------------------------------------------------------------------------- Update Information: Rebuild against rebuilt libint. Packages now depend on the api version of libint, instead of a hard version-release require. -------------------------------------------------------------------------------- ChangeLog: * Tue Sep 9 2014 Susi Lehtola <jussilehtola@xxxxxxxxxxxxxxxxx> - 1.1.6-4 - Provide %_libint_apiversion instead of %_libint_version. -------------------------------------------------------------------------------- ================================================================================ lirc-0.9.1a-4.fc21 (FEDORA-2014-10763) The Linux Infrared Remote Control package -------------------------------------------------------------------------------- Update Information: Update to 1.1.0, remove circular dependency, Provides: tweak to avoid unintended ABI-bump. -------------------------------------------------------------------------------- ChangeLog: * Wed Sep 3 2014 Alec Leamas <leamas@xxxxxxxxxxx> - 0.9.1a-4 - rebuilt -------------------------------------------------------------------------------- References: [ 1 ] Bug #1119259 - iguanaIR-1.1.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1119259 -------------------------------------------------------------------------------- ================================================================================ meld-3.11.3-1.fc21 (FEDORA-2014-10774) Visual diff and merge tool -------------------------------------------------------------------------------- Update Information: Update to Meld 3.11.3 -------------------------------------------------------------------------------- ChangeLog: * Fri Sep 12 2014 Dominic Hopf <dmaphy@xxxxxxxxxxxxxxxxx> - 3.11.3-1 - Update to 3.11.3 * Mon Sep 8 2014 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> - 3.11.2-2 - update mime scriptlet - drop added dep for icon scriptlets, see https://fedoraproject.org/wiki/Packaging:ScriptletSnippets?rd=Packaging/ScriptletSnippets#Icon_Cache * Sat Jul 12 2014 Dominic Hopf <dmaphy@xxxxxxxxxxxxxxxxx> - 3.11.2-1 - Update to 3.11.2 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1131433 - Warnings in meld output. https://bugzilla.redhat.com/show_bug.cgi?id=1131433 -------------------------------------------------------------------------------- ================================================================================ mingw-libtasn1-4.1-1.fc21 (FEDORA-2014-10777) MinGW Windows libtasn1 library -------------------------------------------------------------------------------- Update Information: * Corrected indefinite tag check in ANY constructions. That allows the decoding of BER-encoded structures that contain indefinite encoding within an ANY element. * Added DER decoding flag ASN1_DECODE_FLAG_STRICT_DER. Over the years BER functionality was added to the decoder and this flag provides the way to disable it. * API and ABI changes since last version: ASN1_DECODE_FLAG_STRICT_DER: New definition -------------------------------------------------------------------------------- ChangeLog: * Thu Sep 11 2014 Michael Cronenworth <mike@xxxxxxxxxx> - 4.1-1 - Update to 4.1 -------------------------------------------------------------------------------- ================================================================================ mod_gnutls-0.5.10-13.fc21 (FEDORA-2014-10766) GnuTLS module for the Apache HTTP server -------------------------------------------------------------------------------- Update Information: config change to use system policy (rhbz#1109115) -------------------------------------------------------------------------------- ChangeLog: * Fri Sep 12 2014 Jiri Kastner <jkastner@xxxxxxxxxx> - 0.5.10-13 - config change to use system policy (rhbz#1109115) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1109115 - Use the system crypto policy unless otherwise specified https://bugzilla.redhat.com/show_bug.cgi?id=1109115 -------------------------------------------------------------------------------- ================================================================================ moodle-2.7.2-1.fc21 (FEDORA-2014-10770) A Course Management System -------------------------------------------------------------------------------- Update Information: Update to current releases to address security issues. -------------------------------------------------------------------------------- ChangeLog: * Fri Sep 12 2014 Jon Ciesla <limburgher@xxxxxxxxx> - 2.7.2-1 - 2.7.2, fix for security influences. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1139991 - moodle: security issues fixed in versions 2.7.2, 2.6.5, and 2.5.8 [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=1139991 [ 2 ] Bug #1139990 - moodle: security issues fixed in versions 2.7.2, 2.6.5, and 2.5.8 [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1139990 -------------------------------------------------------------------------------- ================================================================================ mpqc-2.3.1-29.fc21 (FEDORA-2014-10775) Ab-inito chemistry program -------------------------------------------------------------------------------- Update Information: Rebuild against rebuilt libint. Packages now depend on the api version of libint, instead of a hard version-release require. -------------------------------------------------------------------------------- ChangeLog: * Thu Sep 11 2014 Susi Lehtola <jussilehtola@xxxxxxxxxxxxxxxxx> - 2.3.1-29 - Libint require needs to be in -libs, not main package. * Thu Sep 11 2014 Susi Lehtola <jussilehtola@xxxxxxxxxxxxxxxxx> - 2.3.1-28.1 - Forgot to do buildroot override. * Tue Sep 9 2014 Susi Lehtola <jussilehtola@xxxxxxxxxxxxxxxxx> - 2.3.1-28 - Requires: libint(api). * Sun Aug 17 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 2.3.1-27 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ ocaml-4.01.0-23.fc21 (FEDORA-2014-10780) OCaml compiler and programming environment -------------------------------------------------------------------------------- Update Information: Update to last 4.01 version from OCaml git. Update to last 4.01 version from OCaml git and fix a bug in argument parsing. -------------------------------------------------------------------------------- ChangeLog: * Thu Sep 11 2014 Richard W.M. Jones <rjones@xxxxxxxxxx> - 4.01.0-23 - Update to last 4.01 version from OCaml git. - Fix bug in argument parsing (RHBZ#1139790). - Provides ocaml(runtime) 4.01.1. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1139790 - virt-builder command line parsing ignores -v -x options at end of line https://bugzilla.redhat.com/show_bug.cgi?id=1139790 -------------------------------------------------------------------------------- ================================================================================ openlmi-networking-0.3.0-1.fc21 (FEDORA-2014-10304) CIM providers for network management -------------------------------------------------------------------------------- Update Information: Update to new upstream release. News in this version: OpenLMI Storage: * Added support for thin provisioning in LVM. The provider can now create / delete thin pools and thin volumes. * Added support for volume group modification - devices can be added / removed from a volume group. blivet version > 0.46 is required for this feature. * Added LMI_StorageExtent.DeviceBusType property to show how a block device is connected to the system (ATA, USB or SCSI). * Added LMI_StorageConfigurationService.LMI_SCSIScan() to re-scan local SCSI bus and discover new devices. * Added support for blivet versions > 0.35. * Many small fixes and improvements. OpenLMI Providers: * SSSD provider * Locale provider * developer assistant support * indsender - library simplifying indication creation and sending * jobmanager - library for easy job management * support for python 2.6 * various bugfixes and enhancements OpenLMI Networking; * support for NetworkManager 0.8 * bugfixes and stability improvements -------------------------------------------------------------------------------- ChangeLog: * Wed Sep 10 2014 Radek Novacek <rnovacek@xxxxxxxxxx> 0.3.0-1 - Version 0.3.0 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1138246 - Unable to get the list of lvs and lv size https://bugzilla.redhat.com/show_bug.cgi?id=1138246 [ 2 ] Bug #1122896 - openlmi-hardware: iSCSI disk exported as DiskDrive https://bugzilla.redhat.com/show_bug.cgi?id=1122896 [ 3 ] Bug #1140793 - Dependency errors for openlmi-indicationmanager-libs https://bugzilla.redhat.com/show_bug.cgi?id=1140793 [ 4 ] Bug #1134556 - Something is creating parser.out and parsetab.py in / of newly installed systems https://bugzilla.redhat.com/show_bug.cgi?id=1134556 -------------------------------------------------------------------------------- ================================================================================ openlmi-providers-0.5.0-5.fc21 (FEDORA-2014-10304) Set of basic CIM providers -------------------------------------------------------------------------------- Update Information: Update to new upstream release. News in this version: OpenLMI Storage: * Added support for thin provisioning in LVM. The provider can now create / delete thin pools and thin volumes. * Added support for volume group modification - devices can be added / removed from a volume group. blivet version > 0.46 is required for this feature. * Added LMI_StorageExtent.DeviceBusType property to show how a block device is connected to the system (ATA, USB or SCSI). * Added LMI_StorageConfigurationService.LMI_SCSIScan() to re-scan local SCSI bus and discover new devices. * Added support for blivet versions > 0.35. * Many small fixes and improvements. OpenLMI Providers: * SSSD provider * Locale provider * developer assistant support * indsender - library simplifying indication creation and sending * jobmanager - library for easy job management * support for python 2.6 * various bugfixes and enhancements OpenLMI Networking; * support for NetworkManager 0.8 * bugfixes and stability improvements -------------------------------------------------------------------------------- ChangeLog: * Fri Sep 12 2014 Radek Novacek <rnovacek@xxxxxxxxxx> 0.5.0-5 - Fix wrong variable name * Fri Sep 12 2014 Radek Novacek <rnovacek@xxxxxxxxxx> 0.5.0-4 - Add obsoletes of openlmi-indicationmanager-libs(-devel) * Thu Sep 11 2014 Radek Novacek <rnovacek@xxxxxxxxxx> 0.5.0-3 - Fix the version of openlmi-providers that openlmi-locale requires * Wed Sep 10 2014 Radek Novacek <rnovacek@xxxxxxxxxx> 0.5.0-2 - Bump version of openlmi metapackage to 1.0.2 * Tue Sep 9 2014 Radek Novacek <rnovacek@xxxxxxxxxx> 0.5.0-1 - Add -libs, -sssd and -locale subpackages - Version 0.5.0 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1138246 - Unable to get the list of lvs and lv size https://bugzilla.redhat.com/show_bug.cgi?id=1138246 [ 2 ] Bug #1122896 - openlmi-hardware: iSCSI disk exported as DiskDrive https://bugzilla.redhat.com/show_bug.cgi?id=1122896 [ 3 ] Bug #1140793 - Dependency errors for openlmi-indicationmanager-libs https://bugzilla.redhat.com/show_bug.cgi?id=1140793 [ 4 ] Bug #1134556 - Something is creating parser.out and parsetab.py in / of newly installed systems https://bugzilla.redhat.com/show_bug.cgi?id=1134556 -------------------------------------------------------------------------------- ================================================================================ openlmi-storage-0.8.0-1.fc21 (FEDORA-2014-10304) CIM providers for storage management -------------------------------------------------------------------------------- Update Information: Update to new upstream release. News in this version: OpenLMI Storage: * Added support for thin provisioning in LVM. The provider can now create / delete thin pools and thin volumes. * Added support for volume group modification - devices can be added / removed from a volume group. blivet version > 0.46 is required for this feature. * Added LMI_StorageExtent.DeviceBusType property to show how a block device is connected to the system (ATA, USB or SCSI). * Added LMI_StorageConfigurationService.LMI_SCSIScan() to re-scan local SCSI bus and discover new devices. * Added support for blivet versions > 0.35. * Many small fixes and improvements. OpenLMI Providers: * SSSD provider * Locale provider * developer assistant support * indsender - library simplifying indication creation and sending * jobmanager - library for easy job management * support for python 2.6 * various bugfixes and enhancements OpenLMI Networking; * support for NetworkManager 0.8 * bugfixes and stability improvements -------------------------------------------------------------------------------- ChangeLog: * Fri Sep 5 2014 Jan Safranek <jsafrane@xxxxxxxxxx> - 0.8.0-1 - New upstream release. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1138246 - Unable to get the list of lvs and lv size https://bugzilla.redhat.com/show_bug.cgi?id=1138246 [ 2 ] Bug #1122896 - openlmi-hardware: iSCSI disk exported as DiskDrive https://bugzilla.redhat.com/show_bug.cgi?id=1122896 [ 3 ] Bug #1140793 - Dependency errors for openlmi-indicationmanager-libs https://bugzilla.redhat.com/show_bug.cgi?id=1140793 [ 4 ] Bug #1134556 - Something is creating parser.out and parsetab.py in / of newly installed systems https://bugzilla.redhat.com/show_bug.cgi?id=1134556 -------------------------------------------------------------------------------- ================================================================================ orc-0.4.22-3.fc21 (FEDORA-2014-10781) The Oil Run-time Compiler -------------------------------------------------------------------------------- Update Information: Fix FTBFS on aarch64 Add upstream patch for temp locations to fix issues with SELinux 0.4.22 ====== Maintenance release: - Handle NOCONFIGURE=1 in autogen.sh (Colin Walters) - Some memory leak fixes in the compiler (Sebastian Dröge, Thiago Santos) - Fixes for compiler warnings on Win64 (Edward Hervey) - Properly detect CPU features on Android in non-debug build (Jan Schmidt) - Use Android logging system instead of stderr for debug output (Jan Schmidt) 0.4.21 ====== Maintenance release: - Add libtool versioning to the linker flags again. This was accidentially removed in 0.4.20 but should not cause any problems on platforms other than OS X (Sebastian Dröge) 0.4.20 ====== Maintenance release: - Fix list corruption when splitting code memory chunks, causing crashes when allocating a lot of code memory and trying to free it later (Tim-Philipp Müller) - Add some extra checks for the number of variables used in ORC code to prevent overflows and crashes in the compiler (Vincent Penquerc'h) - Various compiler warnings, coverity warnings and static code analysis fixes (Sebastian Dröge) 0.4.19 ====== Maintenance release: - Fix out-of-tree builds (Edward Hervey) - Fix many memory leaks, compiler warnings and coverity warnings (Tim-Philipp Müller, Olivier Crête, Todd Agulnick, Sebastian Dröge, Vincent Penquerc'h, Edward Hervey) - Documentation fix for mulhsw, mulhuw (William Manley) 0.4.22 ====== Maintenance release: - Handle NOCONFIGURE=1 in autogen.sh (Colin Walters) - Some memory leak fixes in the compiler (Sebastian Dröge, Thiago Santos) - Fixes for compiler warnings on Win64 (Edward Hervey) - Properly detect CPU features on Android in non-debug build (Jan Schmidt) - Use Android logging system instead of stderr for debug output (Jan Schmidt) 0.4.21 ====== Maintenance release: - Add libtool versioning to the linker flags again. This was accidentially removed in 0.4.20 but should not cause any problems on platforms other than OS X (Sebastian Dröge) 0.4.20 ====== Maintenance release: - Fix list corruption when splitting code memory chunks, causing crashes when allocating a lot of code memory and trying to free it later (Tim-Philipp Müller) - Add some extra checks for the number of variables used in ORC code to prevent overflows and crashes in the compiler (Vincent Penquerc'h) - Various compiler warnings, coverity warnings and static code analysis fixes (Sebastian Dröge) 0.4.19 ====== Maintenance release: - Fix out-of-tree builds (Edward Hervey) - Fix many memory leaks, compiler warnings and coverity warnings (Tim-Philipp Müller, Olivier Crête, Todd Agulnick, Sebastian Dröge, Vincent Penquerc'h, Edward Hervey) - Documentation fix for mulhsw, mulhuw (William Manley) -------------------------------------------------------------------------------- ChangeLog: * Thu Sep 11 2014 Yaakov Selkowitz <yselkowi@xxxxxxxxxx> - 0.4.22-3 - Do not run tests on aarch64 * Thu Sep 4 2014 Peter Robinson <pbrobinson@xxxxxxxxxxxxxxxxx> 0.4.22-2 - Add upstream patch for selinux issue with tmp files * Fri Aug 29 2014 Peter Robinson <pbrobinson@xxxxxxxxxxxxxxxxx> 0.4.22-1 - Update to 0.4.22 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1001110 - orc-0.4.21 is available https://bugzilla.redhat.com/show_bug.cgi?id=1001110 [ 2 ] Bug #1055240 - [abrt] pulseaudio: orc_code_region_get_free_chunk(): pulseaudio killed by SIGABRT https://bugzilla.redhat.com/show_bug.cgi?id=1055240 -------------------------------------------------------------------------------- ================================================================================ orthanc-0.8.3-1.fc21 (FEDORA-2014-10764) RESTful DICOM server for healthcare and medical research -------------------------------------------------------------------------------- Update Information: New upstream version -------------------------------------------------------------------------------- ChangeLog: * Fri Sep 12 2014 Sebastien Jodogne <s.jodogne@xxxxxxxxx> 0.8.3-1 - New upstream version -------------------------------------------------------------------------------- ================================================================================ perl-Data-Faker-0.10-2.fc21 (FEDORA-2014-10759) Perl extension for generating fake data -------------------------------------------------------------------------------- Update Information: perl-Data-Faker: initial submission -------------------------------------------------------------------------------- References: [ 1 ] Bug #1138971 - Review Request: perl-Data-Faker - Perl extension for generating fake data https://bugzilla.redhat.com/show_bug.cgi?id=1138971 -------------------------------------------------------------------------------- ================================================================================ php-PHPParser-1.0.0-1.fc21 (FEDORA-2014-10773) A PHP parser written in PHP -------------------------------------------------------------------------------- Update Information: Update 1.0.0 (final) with fix various bugs since beta. -------------------------------------------------------------------------------- ChangeLog: * Fri Sep 12 2014 Remi Collet <remi@xxxxxxxxxxxxxxxxx> 1.0.0-1 - Update to 1.0.0 -------------------------------------------------------------------------------- ================================================================================ psi4-4.0-0.16.c7deee9git.1.fc21 (FEDORA-2014-10775) An ab initio quantum chemistry package -------------------------------------------------------------------------------- Update Information: Rebuild against rebuilt libint. Packages now depend on the api version of libint, instead of a hard version-release require. -------------------------------------------------------------------------------- ChangeLog: * Thu Sep 11 2014 Susi Lehtola <jussilehtola@xxxxxxxxxxxxxxxxx> - 4.0-0.16.c7deee99.1 - Forgot to tag buildroot override in previous build. * Wed Sep 10 2014 Susi Lehtola <jussilehtola@xxxxxxxxxxxxxxxxx> - 4.0-0.16.c7deee99 - Update to newest snapshot. - Requires libint(api). -------------------------------------------------------------------------------- ================================================================================ pyp2rpm-1.1.1-1.fc21 (FEDORA-2014-10760) Convert Python packages to RPM SPECFILES -------------------------------------------------------------------------------- Update Information: Update to v1.1.1 -------------------------------------------------------------------------------- ChangeLog: * Fri Sep 12 2014 Robert Kuska <rkuska@xxxxxxxxxx> - 1.1.1-1 - Update to 1.1.1 -------------------------------------------------------------------------------- ================================================================================ python-ldaptor-0.0.44-6.20140909gitc30f30d9.fc21 (FEDORA-2014-10772) Python LDAP client library -------------------------------------------------------------------------------- Update Information: Use twisted fork + various bug fixes -------------------------------------------------------------------------------- ChangeLog: * Fri Sep 12 2014 Haïkel Guémar <hguemar@xxxxxxxxxxxxxxxxx> - 0.0.44-6.20140909gitc30f30d9 - Use twisted fork + various bug fixes * Mon Sep 2 2013 Jan Vcelak <jvcelak@xxxxxxxxxxxxxxxxx> 0.0.44-4.20120515git29a06fa - use unversioned documentation directory, resolves #994059 -------------------------------------------------------------------------------- ================================================================================ qemu-2.1.1-1.fc21 (FEDORA-2014-10761) QEMU is a FAST! processor emulator -------------------------------------------------------------------------------- Update Information: * Rebased to version 2.1.1 * CVE-2014-5388: out of bounds memory access (bz #1132962, bz #1132956) -------------------------------------------------------------------------------- ChangeLog: * Thu Sep 11 2014 Cole Robinson <crobinso@xxxxxxxxxx> - 2:2.1.1-1 - Rebased to version 2.1.1 - CVE-2014-5388: out of bounds memory access (bz #1132962, bz #1132956) - CVE-2014-3615 crash when guest sets high resolution (bz #1139121, bz * Wed Sep 3 2014 Richard W.M. Jones <rjones@xxxxxxxxxx> 2:2.1.0-6 - Add upstream patches to: * Fix crash in curl driver. * Add curl timeout option. * Add curl cookie option. - Add upstream commit hashes to patches. * Wed Aug 20 2014 Richard W.M. Jones <rjones@xxxxxxxxxx> 2:2.1.0-5 - Add patch for aarch64 which uncompresses -kernel parameter (in arm.next). -------------------------------------------------------------------------------- References: [ 1 ] Bug #1132956 - CVE-2014-5388 Qemu: out of bounds memory access https://bugzilla.redhat.com/show_bug.cgi?id=1132956 [ 2 ] Bug #1139115 - CVE-2014-3615 Qemu: information leakage when guest sets high resolution https://bugzilla.redhat.com/show_bug.cgi?id=1139115 -------------------------------------------------------------------------------- ================================================================================ redis-2.8.14-2.fc21 (FEDORA-2014-10699) A persistent key-value database -------------------------------------------------------------------------------- Update Information: Upstream 2.8.14 (RHBZ #1136287) Backport Warren Togami fixes from EPEL7 Closes *many* pending tickets in RHBZ -------------------------------------------------------------------------------- ChangeLog: * Thu Sep 11 2014 Haïkel Guémar <hguemar@xxxxxxxxxxxxxxxxx> - 2.8.14-2 - Cleanup spec - Fix shutdown for redis-{server,sentinel} - Backport fixes from Remi Collet repository (ie: sentinel working) * Thu Sep 11 2014 Haïkel Guémar <hguemar@xxxxxxxxxxxxxxxxx> - 2.8.14-1 - Upstream 2.8.14 (RHBZ #1136287) - Bugfix for lua scripting users (server crash) - Refresh patches - backport spec from EPEL7 (thanks Warren) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1136287 - redis-2.8.14 is available https://bugzilla.redhat.com/show_bug.cgi?id=1136287 [ 2 ] Bug #1123626 - missing redis-sentinel command https://bugzilla.redhat.com/show_bug.cgi?id=1123626 [ 3 ] Bug #1126246 - yum install https://bugzilla.redhat.com/show_bug.cgi?id=1126246 [ 4 ] Bug #1123627 - Bad systemd init file. https://bugzilla.redhat.com/show_bug.cgi?id=1123627 [ 5 ] Bug #1123630 - Service rename break update https://bugzilla.redhat.com/show_bug.cgi?id=1123630 -------------------------------------------------------------------------------- ================================================================================ squid-3.4.7-2.fc21 (FEDORA-2014-10767) The Squid proxy caching server -------------------------------------------------------------------------------- Update Information: This updated fixes CVE-2014-6270. -------------------------------------------------------------------------------- ChangeLog: * Thu Sep 11 2014 Michal Luscon <mluscon@xxxxxxxxxx> - 7:3.4.7-2 - Fixed: CVE-2014-6270 * Thu Aug 28 2014 Michal Luscon <mluscon@xxxxxxxxxx> - 7:3.4.7-1 - Update to latest upstream version - Fixed: CVE-2014-3609 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1139967 - CVE-2014-6270 squid: off-by-one error in snmpHandleUdp() leading to a bss-based buffer overflow https://bugzilla.redhat.com/show_bug.cgi?id=1139967 -------------------------------------------------------------------------------- ================================================================================ ssdeep-2.11-1.fc21 (FEDORA-2014-10765) Compute context triggered piecewise hashes -------------------------------------------------------------------------------- Update Information: Version 2.11 - 11 Sep 2014 New Features * Added fuzzy_clone function to the API. Bug Fixes * Fixed edge case on signature generaion. Behavior now matches v2.9 again. -------------------------------------------------------------------------------- ChangeLog: * Fri Sep 12 2014 Remi Collet <remi@xxxxxxxxxxxxxxxxx> - 2.11-1 - update to 2.11 -------------------------------------------------------------------------------- ================================================================================ xorg-x11-xinit-1.3.4-1.fc21 (FEDORA-2014-10768) X.Org X11 X Window System xinit startup scripts -------------------------------------------------------------------------------- Update Information: - New upstream release 1.3.4 - Resolves #806491 #990213 #1006029 - Remove stale ck-xinit-session references from xinitrc-common (#910969) - Make startx pass "-nolisten tcp" by default, use -listen as server option to disable this (#1111684) - Teach Xclients script about lxde (#488602) -------------------------------------------------------------------------------- ChangeLog: * Thu Sep 11 2014 Hans de Goede <hdegoede@xxxxxxxxxx> - 1.3.4-1 - New upstream release 1.3.4 - Resolves #806491 #990213 #1006029 - Remove stale ck-xinit-session references from xinitrc-common (#910969) - Make startx pass "-nolisten tcp" by default, use -listen as server option to disable this (#1111684) - Teach Xclients script about lxde (#488602) -------------------------------------------------------------------------------- References: [ 1 ] Bug #806491 - systemd-logind not tracking startx sessions https://bugzilla.redhat.com/show_bug.cgi?id=806491 [ 2 ] Bug #990213 - startx contains empty line before the #! line https://bugzilla.redhat.com/show_bug.cgi?id=990213 [ 3 ] Bug #1006029 - xorg-x11-xinit-1.3.3 is available https://bugzilla.redhat.com/show_bug.cgi?id=1006029 [ 4 ] Bug #910969 - Please remove any reference to ConsoleKit from X11/xinit/xinitrc-common https://bugzilla.redhat.com/show_bug.cgi?id=910969 [ 5 ] Bug #1111684 - startx doesn't add -nolisten tcp by default https://bugzilla.redhat.com/show_bug.cgi?id=1111684 [ 6 ] Bug #488602 - RfE: Support for LXDE in the Xclients script https://bugzilla.redhat.com/show_bug.cgi?id=488602 -------------------------------------------------------------------------------- ================================================================================ xscreensaver-5.30-1.fc21 (FEDORA-2014-10778) X screen saver and locker -------------------------------------------------------------------------------- Update Information: New version 5.30 is released. -------------------------------------------------------------------------------- ChangeLog: * Fri Sep 12 2014 Mamoru TASAKA <mtasaka@xxxxxxxxxxxxxxxxx> - 1:5.30-1 - Update to 5.30 * Sat Sep 6 2014 Mamoru TASAKA <mtasaka@xxxxxxxxxxxxxxxxx> - 1:5.29-3 - Remove GtkDialog:has-separator usage to suppress warning for xscreensaver-demo on Fedora 21 and above * Thu Sep 4 2014 Mamoru TASAKA <mtasaka@xxxxxxxxxxxxxxxxx> - 1:5.29-2 - gcc49 sanitizer array elements oversize fixes - Make parallel build actually work -------------------------------------------------------------------------------- -- test mailing list test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe: https://admin.fedoraproject.org/mailman/listinfo/test
