The following Fedora 19 Security updates need testing: Age URL 382 https://admin.fedoraproject.org/updates/FEDORA-2013-19963/openstack-glance-2013.1.4-1.fc19 194 https://admin.fedoraproject.org/updates/FEDORA-2014-5896/nrpe-2.15-2.fc19 145 https://admin.fedoraproject.org/updates/FEDORA-2014-7496/readline-6.2-8.fc19 63 https://admin.fedoraproject.org/updates/FEDORA-2014-10366/icecream-1.0.1-8.20140822git.fc19 62 https://admin.fedoraproject.org/updates/FEDORA-2014-10640/libreoffice-4.1.6.2-8.fc19 46 https://admin.fedoraproject.org/updates/FEDORA-2014-11544/drupal6-6.33-1.fc19 39 https://admin.fedoraproject.org/updates/FEDORA-2014-12057/krb5-1.11.3-29.fc19 32 https://admin.fedoraproject.org/updates/FEDORA-2014-12407/sddm-0.9.0-2.20141007git6a28c29b.fc19 25 https://admin.fedoraproject.org/updates/FEDORA-2014-13047/libxml2-2.9.1-2.fc19 25 https://admin.fedoraproject.org/updates/FEDORA-2014-13018/deluge-1.3.10-1.fc19 15 https://admin.fedoraproject.org/updates/FEDORA-2014-13551/wpa_supplicant-2.0-12.fc19 11 https://admin.fedoraproject.org/updates/FEDORA-2014-14066/php-sabredav-Sabre_VObject-2.1.4-1.fc19,php-sabredav-Sabre_HTTP-1.7.11-1.fc19,php-sabredav-Sabre_CalDAV-1.7.9-1.fc19,php-sabredav-Sabre_DAVACL-1.7.9-1.fc19,php-sabredav-Sabre_CardDAV-1.7.9-2.fc19,php-sabredav-Sabre_DAV-1.7.13-1.fc19,owncloud-5.0.17-2.fc19 11 https://admin.fedoraproject.org/updates/FEDORA-2014-14068/kernel-3.14.23-100.fc19 6 https://admin.fedoraproject.org/updates/FEDORA-2014-14266/python-2.7.5-15.fc19 6 https://admin.fedoraproject.org/updates/FEDORA-2014-14237/claws-mail-plugins-3.11.1-1.fc19,claws-mail-3.11.1-2.fc19,libetpan-1.6-1.fc19 6 https://admin.fedoraproject.org/updates/FEDORA-2014-14257/python3-3.3.2-10.fc19 6 https://admin.fedoraproject.org/updates/FEDORA-2014-14233/aircrack-ng-1.2-0.3.rc1.fc19 5 https://admin.fedoraproject.org/updates/FEDORA-2014-13702/konversation-1.5.1-1.fc19 5 https://admin.fedoraproject.org/updates/FEDORA-2014-14359/curl-7.29.0-25.fc19 2 https://admin.fedoraproject.org/updates/FEDORA-2014-14498/python-requests-kerberos-0.6-1.fc19 1 https://admin.fedoraproject.org/updates/FEDORA-2014-14699/drupal7-ckeditor-1.16-2.fc19 1 https://admin.fedoraproject.org/updates/FEDORA-2014-14564/qpid-cpp-0.26-12.fc19 0 https://admin.fedoraproject.org/updates/FEDORA-2014-14738/gnutls-3.1.20-6.fc19 0 https://admin.fedoraproject.org/updates/FEDORA-2014-14742/python-pillow-2.0.0-15.gitd1c6db8.fc19 The following Fedora 19 Critical Path updates have yet to be approved: Age URL 330 https://admin.fedoraproject.org/updates/FEDORA-2013-22326/fedora-bookmarks-15-5.fc19 256 https://admin.fedoraproject.org/updates/FEDORA-2014-3245/testdisk-6.14-2.fc19.1,ntfs-3g-2014.2.15-1.fc19 13 https://admin.fedoraproject.org/updates/FEDORA-2014-13880/device-mapper-persistent-data-0.4.1-1.fc19 11 https://admin.fedoraproject.org/updates/FEDORA-2014-14068/kernel-3.14.23-100.fc19 11 https://admin.fedoraproject.org/updates/FEDORA-2014-14047/qtwebkit-2.3.4-1.fc19 6 https://admin.fedoraproject.org/updates/FEDORA-2014-14266/python-2.7.5-15.fc19 5 https://admin.fedoraproject.org/updates/FEDORA-2014-14359/curl-7.29.0-25.fc19 2 https://admin.fedoraproject.org/updates/FEDORA-2014-14516/pcre-8.32-11.fc19 2 https://admin.fedoraproject.org/updates/FEDORA-2014-14505/unzip-6.0-12.fc19 0 https://admin.fedoraproject.org/updates/FEDORA-2014-14738/gnutls-3.1.20-6.fc19 The following builds have been pushed to Fedora 19 updates-testing gitolite3-3.6.2-1.fc19 gnutls-3.1.20-6.fc19 java-1.8.0-openjdk-1.8.0.25-3.b18.fc19 perl-Devel-OverloadInfo-0.002-2.fc19 php-tcpdf-6.0.098-1.fc19 python-boto-2.34.0-4.fc19 python-fedmsg-genacls-0.4-1.fc19 python-pillow-2.0.0-15.gitd1c6db8.fc19 python-pyrax-1.9.0-3.fc19 python-webassets-0.9-4.fc19 supybot-fedora-0.2.16-1.fc19 Details about builds: ================================================================================ gitolite3-3.6.2-1.fc19 (FEDORA-2014-14755) Highly flexible server for git directory version tracker -------------------------------------------------------------------------------- Update Information: Latest upstream. https://github.com/sitaramc/gitolite/blob/master/CHANGELOG -------------------------------------------------------------------------------- ChangeLog: * Mon Nov 10 2014 Jon Ciesla <limburgher@xxxxxxxxx> - 1:3.6.2-1 - Latest upstream. * Tue Aug 26 2014 Jitka Plesnikova <jplesnik@xxxxxxxxxx> - 1:3.6.1-2 - Perl 5.20 rebuild -------------------------------------------------------------------------------- ================================================================================ gnutls-3.1.20-6.fc19 (FEDORA-2014-14738) A TLS protocol implementation -------------------------------------------------------------------------------- Update Information: Security fix for CVE-2014-8564 -------------------------------------------------------------------------------- ChangeLog: * Mon Nov 10 2014 Nikos Mavrogiannopoulos <nmav@xxxxxxxxxx> - 3.1.20-6 - fixes CVE-2014-8564 (#1162086) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1161443 - CVE-2014-8564 gnutls: Heap corruption when generating key ID for ECC (GNUTLS-SA-2014-5) https://bugzilla.redhat.com/show_bug.cgi?id=1161443 -------------------------------------------------------------------------------- ================================================================================ java-1.8.0-openjdk-1.8.0.25-3.b18.fc19 (FEDORA-2014-14736) OpenJDK Runtime Environment -------------------------------------------------------------------------------- Update Information: Update dedicated to fix and update aarch64 -------------------------------------------------------------------------------- ChangeLog: * Mon Nov 3 2014 Jiri Vanek <jvanek@xxxxxxxxxx> - 1:1.8.0.25-3.b12 - updated aarch64 tarball to u40b12 -------------------------------------------------------------------------------- ================================================================================ perl-Devel-OverloadInfo-0.002-2.fc19 (FEDORA-2014-14771) Introspect overloaded operators -------------------------------------------------------------------------------- Update Information: This is the first Fedora/EPEL release of perl-Devel-OverloadInfo. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1161704 - Review Request: perl-Devel-OverloadInfo - Introspect overloaded operators https://bugzilla.redhat.com/show_bug.cgi?id=1161704 -------------------------------------------------------------------------------- ================================================================================ php-tcpdf-6.0.098-1.fc19 (FEDORA-2014-14746) PHP class for generating PDF documents and barcodes -------------------------------------------------------------------------------- Update Information: 6.0.098 (2014-11-08) * Bug item #996 "getCharBBox($char) returns incorrect results for TTF glyphs without outlines" was fixed. * Bug item #991 "Text problem with SVG" was fixed (only the font style part). 6.0.097 (2014-10-20) * Bug item #988 "hyphenateText - charmin parameter not work" was fixed. * New 1D barcode method to print pre-formatted IMB - Intelligent Mail Barcode - Onecode - USPS-B-3200. 6.0.096 (2014-10-06) * Bug item #982 "Display style is not inherited in SVG" was fixed. * Bug item #984 "Double quote url in CSS" was fixed. -------------------------------------------------------------------------------- ChangeLog: * Mon Nov 10 2014 Remi Collet <remi@xxxxxxxxxxxxxxxxx> - 6.0.098-1 - update to 6.0.098 -------------------------------------------------------------------------------- ================================================================================ python-boto-2.34.0-4.fc19 (FEDORA-2014-14582) A simple, lightweight interface to Amazon Web Services -------------------------------------------------------------------------------- Update Information: This update fixes a regression in python-boto's executables and adds support for AWS's new eu-central-1 region. It also fixes unit tests, provided one is running python-2.7.8-6 or earlier. See the following link for details on that issue: https://bugzilla.redhat.com/show_bug.cgi?id=1161166#c4 -------------------------------------------------------------------------------- ChangeLog: * Sun Nov 9 2014 Garrett Holmstrom <gholms@xxxxxxxxxxxxxxxxx> - 2.34.0-4 - Fixed python3 requires * Fri Nov 7 2014 Garrett Holmstrom <gholms@xxxxxxxxxxxxxxxxx> - 2.34.0-3 - Re-fix executables (RH #1152444) * Fri Nov 7 2014 Garrett Holmstrom <gholms@xxxxxxxxxxxxxxxxx> - 2.34.0-2 - Added missing python-requests and python-rsa dependencies - Disabled unit tests due to rawhide/F21 python regression (RH #1161166:c4) * Fri Nov 7 2014 Garrett Holmstrom <gholms@xxxxxxxxxxxxxxxxx> - 2.34.0-1 - Updated to 2.34.0 (RH #1072925, RH #1072928, RH #1161229) - Made executables point to python2 (RH #1152444) - Enabled unit tests on Fedora (RH #1072946) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1072928 - AssertionError: False != True FAIL: Test trimming snapshots with the default arguments https://bugzilla.redhat.com/show_bug.cgi?id=1072928 [ 2 ] Bug #1072925 - IOError: [Errno 2] No such file or directory: '/home/atodorov/boto-2.25.0/tests/unit/test_endpoints.json' https://bugzilla.redhat.com/show_bug.cgi?id=1072925 [ 3 ] Bug #1152444 - Broken executables in python-boto https://bugzilla.redhat.com/show_bug.cgi?id=1152444 [ 4 ] Bug #1161229 - Update python-boto to latest version https://bugzilla.redhat.com/show_bug.cgi?id=1161229 -------------------------------------------------------------------------------- ================================================================================ python-fedmsg-genacls-0.4-1.fc19 (FEDORA-2014-14781) A fedmsg consumer that sets gitosis acls in response to pkgdb messages -------------------------------------------------------------------------------- Update Information: Respond appropriately to more triggers. -------------------------------------------------------------------------------- ChangeLog: * Mon Nov 10 2014 Ralph Bean <rbean@xxxxxxxxxx> - 0.4-1 - Latest upstream, improved triggers. -------------------------------------------------------------------------------- ================================================================================ python-pillow-2.0.0-15.gitd1c6db8.fc19 (FEDORA-2014-14742) Python image processing library -------------------------------------------------------------------------------- Update Information: Followup fix for CVE-2014-1933. -------------------------------------------------------------------------------- ChangeLog: * Mon Nov 10 2014 Sandro Mani <manisandro@xxxxxxxxx> - 2.0.0-15.gitd1c6db8 - CVE-2014-1933 followup (https://github.com/python-pillow/Pillow/pull/605) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1063658 - CVE-2014-1932 python-pillow, python-imaging: insecure temporary file creation https://bugzilla.redhat.com/show_bug.cgi?id=1063658 -------------------------------------------------------------------------------- ================================================================================ python-pyrax-1.9.0-3.fc19 (FEDORA-2014-14762) Python language bindings for OpenStack Clouds -------------------------------------------------------------------------------- Update Information: SPEC change to add missing macros for EPEL 6 builds -------------------------------------------------------------------------------- ================================================================================ python-webassets-0.9-4.fc19 (FEDORA-2014-14773) Media asset management for python -------------------------------------------------------------------------------- Update Information: Backport of some issues fixed upstream in 0.10 (RHBZ#1142524, RHBZ#1142525) Updated latest source and added python3 support. -------------------------------------------------------------------------------- ChangeLog: * Mon Nov 10 2014 Dan Callaghan <dcallagh@xxxxxxxxxx> - 0.9-4 - RHBZ#1142524 escape backslashes in string literals in JST filter - RHBZ#1142525 fix UnicodeDecodeError for non-ASCII files - fix cache corruption when shared between multiple writers * Sun Jun 8 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.9-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Wed May 28 2014 Kalev Lember <kalevlember@xxxxxxxxx> - 0.9-2 - Rebuilt for https://fedoraproject.org/wiki/Changes/Python_3.4 * Thu Nov 14 2013 Praveen Kumar <kumarpraveen.nitdgp@xxxxxxxxx> 0.9-1 - Updated to new source and added python3 support -------------------------------------------------------------------------------- References: [ 1 ] Bug #1142524 - JST filter does not correctly escape backslashes in string literals https://bugzilla.redhat.com/show_bug.cgi?id=1142524 [ 2 ] Bug #1142525 - Build fails with UnicodeDecodeError for files containing Unicode chars https://bugzilla.redhat.com/show_bug.cgi?id=1142525 [ 3 ] Bug #1028816 - Please update to 0.9, add python3 support https://bugzilla.redhat.com/show_bug.cgi?id=1028816 -------------------------------------------------------------------------------- ================================================================================ supybot-fedora-0.2.16-1.fc19 (FEDORA-2014-14710) Plugin for Supybot to interact with Fedora services -------------------------------------------------------------------------------- Update Information: New .pushduty command. -------------------------------------------------------------------------------- ChangeLog: * Mon Nov 10 2014 Ralph Bean <rbean@xxxxxxxxxx> - 0.2.16-1 - Latest upstream with .pushduty command. -------------------------------------------------------------------------------- -- test mailing list test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe: https://admin.fedoraproject.org/mailman/listinfo/test
