The following Fedora 20 Security updates need testing: Age URL 62 https://admin.fedoraproject.org/updates/FEDORA-2014-11969/krb5-1.11.5-16.fc20 18 https://admin.fedoraproject.org/updates/FEDORA-2014-15108/mantis-1.2.17-4.fc20 18 https://admin.fedoraproject.org/updates/FEDORA-2014-14963/avr-binutils-2.24-3.fc20 18 https://admin.fedoraproject.org/updates/FEDORA-2014-14833/arm-none-eabi-binutils-cs-2014.05.28-3.fc20 14 https://admin.fedoraproject.org/updates/FEDORA-2014-15371/rubygem-actionpack-4.0.0-5.fc20 14 https://admin.fedoraproject.org/updates/FEDORA-2014-15379/nodejs-0.10.33-1.fc20,libuv-0.10.29-1.fc20 13 https://admin.fedoraproject.org/updates/FEDORA-2014-15489/rubygem-sprockets-2.8.2-5.fc20 8 https://admin.fedoraproject.org/updates/FEDORA-2014-15709/asterisk-11.14.1-1.fc20 6 https://admin.fedoraproject.org/updates/FEDORA-2014-15847/libksba-1.3.2-1.fc20 6 https://admin.fedoraproject.org/updates/FEDORA-2014-15841/hivex-1.3.8-4.fc20 6 https://admin.fedoraproject.org/updates/FEDORA-2014-15812/graphviz-2.34.0-10.fc20 2 https://admin.fedoraproject.org/updates/FEDORA-2014-16048/couchdb-1.6.1-4.fc20 2 https://admin.fedoraproject.org/updates/FEDORA-2014-15995/xen-4.3.3-6.fc20 2 https://admin.fedoraproject.org/updates/FEDORA-2014-16033/mediawiki-1.23.7-1.fc20 2 https://admin.fedoraproject.org/updates/FEDORA-2014-16003/mariadb-5.5.40-1.fc20 1 https://admin.fedoraproject.org/updates/FEDORA-2014-16132/libyaml-0.1.6-2.fc20 1 https://admin.fedoraproject.org/updates/FEDORA-2014-16106/qemu-1.6.2-11.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2014-16214/erlang-R16B-03.10.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2014-16258/flac-1.3.1-1.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2014-16270/mingw-flac-1.3.1-1.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2014-16243/dbus-1.6.28-1.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2014-16266/perl-YAML-LibYAML-0.54-1.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2014-16215/pcre-8.33-8.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2014-16241/antiword-0.37-17.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2014-16250/cpio-2.11-28.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2014-16273/pkcs11-helper-1.11-3.fc20,openvpn-2.3.6-1.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2014-16262/kde-plasma-nm-0.9.3.5-2.fc20 The following Fedora 20 Critical Path updates have yet to be approved: Age URL 11 https://admin.fedoraproject.org/updates/FEDORA-2014-15523/gdb-7.7.1-22.fc20 2 https://admin.fedoraproject.org/updates/FEDORA-2014-16032/libpcap-1.5.3-3.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2014-16229/selinux-policy-3.12.1-196.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2014-16253/crda-1.1.3_2014.11.18-1.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2014-16250/cpio-2.11-28.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2014-16215/pcre-8.33-8.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2014-16243/dbus-1.6.28-1.fc20 The following builds have been pushed to Fedora 20 updates-testing acpica-tools-20141107-1.fc20 antiword-0.37-17.fc20 bionetgen-2.2.5-2.fc20 cinnamon-2.4.5-1.fc20 cinnamon-control-center-2.4.2-1.fc20 cpio-2.11-28.fc20 crda-1.1.3_2014.11.18-1.fc20 dbus-1.6.28-1.fc20 easystroke-0.6.0-6.fc20 edg-mkgridmap-4.0.1-1.fc20 erlang-R16B-03.10.fc20 fig-1.0.0-5.fc20 flac-1.3.1-1.fc20 flannel-0.1.0-8.gita7b435a.fc20 java-1.7.0-openjdk-1.7.0.71-2.5.3.1.fc20 kde-plasma-nm-0.9.3.5-2.fc20 kubernetes-0.6-4.0.git993ef88.fc20 lis-1.5.31-1.fc20 mesa-10.3.4-1.20141202.fc20 mingw-flac-1.3.1-1.fc20 nodejs-grunt-saucelabs-8.3.3-1.fc20 nodejs-nsp-audit-shrinkwrap-1.0.1-1.fc20 obnam-1.8-1.fc20 openscap-1.2.0-1.fc20 openvpn-2.3.6-1.fc20 pcre-8.33-8.fc20 perl-Want-0.24-1.fc20 perl-YAML-LibYAML-0.54-1.fc20 php-horde-horde-5.2.3-1.fc20 pkcs11-helper-1.11-3.fc20 powerline-1.3-1.fc20 pybliographer-1.2.17-1.fc20 pyhoca-gui-0.5.0.3-1.fc20 python-bloom-0.5.14-1.fc20 python-catkin_lint-1.3.8-1.fc20 python-cliapp-1.20140719-1.fc20 python-configshell-1.1.fb16-1.fc20 python-fluidity-sm-0.2.0-1.fc20 python-jinja2-2.7.3-2.fc20 python-lexicon-0.2.0-1.fc20 python-pygraphviz-1.3-2.rc2.fc20 python-rosdep-0.10.33-1.fc20 python-rosdistro-0.3.7-1.fc20 python-rtslib-2.1.fb51-1.fc20 python-x2go-0.5.0.2-1.fc20 rubygem-openscap-0.4.0-1.fc20 rubygem-power_assert-0.2.2-2.fc20 rubygem-scrub_rb-1.0.1-2.fc20 selinux-policy-3.12.1-196.fc20 statsd-0.7.2-3.fc20 surfraw-2.2.9-3.fc20 targetcli-2.1.fb38-1.fc20 varnish-3.0.6-1.fc20 xpdf-3.04-6.fc20 zanata-python-client-1.3.18-1.fc20 Details about builds: ================================================================================ acpica-tools-20141107-1.fc20 (FEDORA-2014-16260) ACPICA tools for the development and debug of ACPI tables -------------------------------------------------------------------------------- Update Information: Updates package to the latest upstream version (20141107); includes bug fixes, plus some new ASL features to make it easier to use. -------------------------------------------------------------------------------- ChangeLog: * Mon Nov 17 2014 Al Stone <ahs3@xxxxxxxxxx> - 20141107-1 - Update to latest upstream. Closes BZ#1147131. - Refresh patches - Patch to ensure ASLTS always reports when an error occurs, instead of glossing over it has been incorporated upstream, so remove patch. * Wed Oct 1 2014 Al Stone <ahs3@xxxxxxxxxx> - 20140926-1 - Update to latest upstream. Closes BZ#1147131. - Refresh patches - Add patch to ensure ASLTS always reports when an error occurs, instead of glossing over it. - Add use of -Wl,-z,relro . Closes BZ#1126134. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1147131 - acpica-tools-20141107 is available https://bugzilla.redhat.com/show_bug.cgi?id=1147131 -------------------------------------------------------------------------------- ================================================================================ antiword-0.37-17.fc20 (FEDORA-2014-16241) MS Word to ASCII/Postscript converter -------------------------------------------------------------------------------- Update Information: Security fix for CVE-2014-8123 -------------------------------------------------------------------------------- ChangeLog: * Tue Dec 2 2014 Adrian Reber <adrian@xxxxxxxx> - 0.37-17 - added patch for "CVE-2014-8123 antiword: buffer overflow of atPPSlist[].szName[]" (#1169665) - fixed dates in changelog * Fri Aug 15 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.37-16 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild * Sat Jun 7 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.37-15 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1169665 - CVE-2014-8123 antiword: buffer overflow of atPPSlist[].szName[] https://bugzilla.redhat.com/show_bug.cgi?id=1169665 -------------------------------------------------------------------------------- ================================================================================ bionetgen-2.2.5-2.fc20 (FEDORA-2014-16205) Software for rule-based modeling of biochemical systems -------------------------------------------------------------------------------- Update Information: New package. -------------------------------------------------------------------------------- ================================================================================ cinnamon-2.4.5-1.fc20 (FEDORA-2014-16226) Window management and application launching for GNOME -------------------------------------------------------------------------------- Update Information: - attempt to fix brightness control detection - hide virtual profiles in colour plugin -------------------------------------------------------------------------------- ChangeLog: * Tue Dec 2 2014 Leigh Scott <leigh123linux@xxxxxxxxxxxxxx> - 2.4.5-1 - update to 2.4.5 - attempt to fix brightness control detection - drop requires gstreamer-python -------------------------------------------------------------------------------- References: [ 1 ] Bug #1082781 - [abrt] gnome-color-manager: thread_memory_magazine2_free(): gcm-viewer killed by SIGSEGV https://bugzilla.redhat.com/show_bug.cgi?id=1082781 -------------------------------------------------------------------------------- ================================================================================ cinnamon-control-center-2.4.2-1.fc20 (FEDORA-2014-16226) Utilities to configure the Cinnamon desktop -------------------------------------------------------------------------------- Update Information: - attempt to fix brightness control detection - hide virtual profiles in colour plugin -------------------------------------------------------------------------------- ChangeLog: * Tue Dec 2 2014 Leigh Scott <leigh123linux@xxxxxxxxxxxxxx> - 2.4.2-1 - update to 2.4.2 - hide virtual profiles in colour plugin -------------------------------------------------------------------------------- References: [ 1 ] Bug #1082781 - [abrt] gnome-color-manager: thread_memory_magazine2_free(): gcm-viewer killed by SIGSEGV https://bugzilla.redhat.com/show_bug.cgi?id=1082781 -------------------------------------------------------------------------------- ================================================================================ cpio-2.11-28.fc20 (FEDORA-2014-16250) A GNU archiving program -------------------------------------------------------------------------------- Update Information: Security fix for CVE-2014-9112 (#1167573) -------------------------------------------------------------------------------- ChangeLog: * Wed Dec 3 2014 Pavel Raiskup <praiskup@xxxxxxxxxx> - 2.11-28 - the stored archive in testsuite has little endian headers, expect also 'reversed byte-order' warning on big-endian * Wed Dec 3 2014 Pavel Raiskup <praiskup@xxxxxxxxxx> - 2.11-27 - adjust the testsuite fix for CVE-2014-9112 (#1167573) - put the testsuite.log to standard output if make check fails * Tue Dec 2 2014 Pavel Raiskup <praiskup@xxxxxxxxxx> - 2.11-26 - fix for CVE-2014-9112 (#1167573) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1167571 - CVE-2014-9112 cpio: heap-based buffer overflow flaw in list_file() https://bugzilla.redhat.com/show_bug.cgi?id=1167571 -------------------------------------------------------------------------------- ================================================================================ crda-1.1.3_2014.11.18-1.fc20 (FEDORA-2014-16253) Regulatory compliance daemon for 802.11 wireless networking -------------------------------------------------------------------------------- Update Information: Update wireless-regdb to version 2014.11.18 -------------------------------------------------------------------------------- ChangeLog: * Tue Nov 25 2014 John W. Linville <linville@xxxxxxxxxx> - 1.1.3_2014.11.18-1 - Update wireless-regdb to version 2014.11.18 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1169973 - Update wireless-regdb from 2014-11-18 https://bugzilla.redhat.com/show_bug.cgi?id=1169973 -------------------------------------------------------------------------------- ================================================================================ dbus-1.6.28-1.fc20 (FEDORA-2014-16243) D-BUS message bus -------------------------------------------------------------------------------- Update Information: Update to 1.6.28 -------------------------------------------------------------------------------- ChangeLog: * Thu Nov 27 2014 David King <amigadave@xxxxxxxxxxxxx> - 1:1.6.28-1 - Update to 1.6.28 - Fixes CVE-2014-3635 (fd.o#83622) - Fixes CVE-2014-3636 (fd.o#82820) - Fixes CVE-2014-3637 (fd.o#80559) - Fixes CVE-2014-3638 (fd.o#81053) - Fixes CVE-2014-3639 (fd.o#80919) - Fixes CVE-2014-7824 (fd.o#85105) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1140523 - CVE-2014-3635 dbus: heap-based buffer overflow flaw in file descriptor passing https://bugzilla.redhat.com/show_bug.cgi?id=1140523 [ 2 ] Bug #1140525 - CVE-2014-3636 dbus: denial of service by queuing or splitting file descriptors https://bugzilla.redhat.com/show_bug.cgi?id=1140525 [ 3 ] Bug #1140527 - CVE-2014-3637 dbus: denial of service by creating unkillable D-Bus connections https://bugzilla.redhat.com/show_bug.cgi?id=1140527 [ 4 ] Bug #1140529 - CVE-2014-3638 dbus: denial of service in method call handling https://bugzilla.redhat.com/show_bug.cgi?id=1140529 [ 5 ] Bug #1140532 - CVE-2014-3639 dbus: denial of service flaw in incomplete connection handling https://bugzilla.redhat.com/show_bug.cgi?id=1140532 [ 6 ] Bug #1114414 - CVE-2014-3532 dbus: denial of service in file descriptor passing feature https://bugzilla.redhat.com/show_bug.cgi?id=1114414 [ 7 ] Bug #1114416 - CVE-2014-3533 dbus: denial of service when forwarding invalid file descriptors https://bugzilla.redhat.com/show_bug.cgi?id=1114416 -------------------------------------------------------------------------------- ================================================================================ easystroke-0.6.0-6.fc20 (FEDORA-2014-16231) Gesture-recognition application for X11 -------------------------------------------------------------------------------- Update Information: fix black squares issue on gnome 3 -------------------------------------------------------------------------------- ChangeLog: * Tue Dec 2 2014 Tom Callaway <spot@xxxxxxxxxxxxxxxxx> - 0.6.0-6 - fix black squares issue on gnome 3 (bz1084308) * Sat Aug 16 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.6.0-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild * Sat Jun 7 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.6.0-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Fri May 23 2014 Petr Machata <pmachata@xxxxxxxxxx> - 0.6.0-3 - Rebuild for boost 1.55.0 * Fri May 23 2014 David Tardon <dtardon@xxxxxxxxxx> - 0.6.0-2 - rebuild for boost 1.55.0 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1084308 - Black squares rendered around gestures https://bugzilla.redhat.com/show_bug.cgi?id=1084308 -------------------------------------------------------------------------------- ================================================================================ edg-mkgridmap-4.0.1-1.fc20 (FEDORA-2014-16255) A tool to build the grid map-file from VO servers -------------------------------------------------------------------------------- Update Information: Update for upstream release 4.0.1 Added missing dependency on "perl(LWP::Protocol::https)" Added missing dependency on "perl(LWP::Protocol::https)" Added missing dependency on "perl(LWP::Protocol::https)" -------------------------------------------------------------------------------- ChangeLog: * Wed Dec 3 2014 Alejandro Alvarez Ayllon <aalvarez@xxxxxxx> - 4.0.1-1 - New upstream release -------------------------------------------------------------------------------- References: [ 1 ] Bug #1165991 - edg-mkgridmap missing dependency https://bugzilla.redhat.com/show_bug.cgi?id=1165991 -------------------------------------------------------------------------------- ================================================================================ erlang-R16B-03.10.fc20 (FEDORA-2014-16214) General-purpose programming language and runtime environment -------------------------------------------------------------------------------- Update Information: * Disable SSLv3 * Backport useful os:getenv/2 from master. See this GitHub pull request for further details - https://github.com/erlang/otp/pull/535 * Fixed CVE-2014-1693 (backported fix from ver. 17.x.x, see patch no. 17) * Trimmed dependency chain -------------------------------------------------------------------------------- ChangeLog: * Mon Dec 1 2014 Peter Lemenkov <lemenkov@xxxxxxxxx> - R16B-03.10 - Disable SSLv3 (see rhbz #1169375) - Backport useful os:getenv/2 from master (see https://github.com/erlang/otp/pull/535 ) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1059331 - CVE-2014-1693 erlang-inets: command injection flaw in FTP module https://bugzilla.redhat.com/show_bug.cgi?id=1059331 -------------------------------------------------------------------------------- ================================================================================ fig-1.0.0-5.fc20 (FEDORA-2014-16245) Punctual, lightweight development environments using Docker -------------------------------------------------------------------------------- Update Information: running fig should not require docker-py<0.6 fig - Punctual, lightweight development environments using Docker -------------------------------------------------------------------------------- References: [ 1 ] Bug #1151072 - Review Request: fig - Punctual, lightweight development environments using Docker https://bugzilla.redhat.com/show_bug.cgi?id=1151072 -------------------------------------------------------------------------------- ================================================================================ flac-1.3.1-1.fc20 (FEDORA-2014-16258) An encoder/decoder for the Free Lossless Audio Codec -------------------------------------------------------------------------------- Update Information: Security fix for CVE-2014-9028, CVE-2014-8962 -------------------------------------------------------------------------------- ChangeLog: * Thu Nov 27 2014 Miroslav Lichvar <mlichvar@xxxxxxxxxx> 1.3.1-1 - update to 1.3.1 (CVE-2014-8962, CVE-2014-9028) * Sat Aug 16 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.3.0-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild * Sat Jun 7 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.3.0-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1167236 - CVE-2014-8962 flac: Heap buffer read overflow when processing ID3V2 metadata https://bugzilla.redhat.com/show_bug.cgi?id=1167236 [ 2 ] Bug #1167741 - CVE-2014-9028 flac: Heap buffer write overflow in read_residual_partitioned_rice_ https://bugzilla.redhat.com/show_bug.cgi?id=1167741 -------------------------------------------------------------------------------- ================================================================================ flannel-0.1.0-8.gita7b435a.fc20 (FEDORA-2014-16248) Etcd address management agent for overlay networks -------------------------------------------------------------------------------- Update Information: Remove patches related to out-of-tree slice backend; Update to latest upstream new golang package -------------------------------------------------------------------------------- References: [ 1 ] Bug #1169970 - update flannel from latest upstream (2014-12-02) https://bugzilla.redhat.com/show_bug.cgi?id=1169970 [ 2 ] Bug #1165688 - Review Request: flannel - Flannel is an etcd backed network fabric for containers https://bugzilla.redhat.com/show_bug.cgi?id=1165688 -------------------------------------------------------------------------------- ================================================================================ java-1.7.0-openjdk-1.7.0.71-2.5.3.1.fc20 (FEDORA-2014-16235) OpenJDK Runtime Environment -------------------------------------------------------------------------------- Update Information: packages made relocatable (RH11690970) -------------------------------------------------------------------------------- ChangeLog: * Mon Dec 1 2014 Jiri Vanek <jvanek@xxxxxxxxxx> - 1:1.7.0.71-2.5.3.1 - removed source14 remove-origin-from-rpaths (11690970) - removed build requirement for chrpath -------------------------------------------------------------------------------- ================================================================================ kde-plasma-nm-0.9.3.5-2.fc20 (FEDORA-2014-16262) Plasma applet written in QML for managing network connections -------------------------------------------------------------------------------- Update Information: Add option for server certificate verification. -------------------------------------------------------------------------------- ChangeLog: * Wed Dec 3 2014 Jan Grulich <jgrulich@xxxxxxxxxx> - 0.9.3.5-2 - Add option for server certificate verification Resolves: bz#1169888 - Fix build against OpenConnect >= 7.0.0 - Update OpenConnect storage of manually-accepted server certs -------------------------------------------------------------------------------- References: [ 1 ] Bug #1169886 - kde-plasma-networkmanagement, kde-plasma-nm: creates OpenVPN connections vulnerable to MITM attack https://bugzilla.redhat.com/show_bug.cgi?id=1169886 -------------------------------------------------------------------------------- ================================================================================ kubernetes-0.6-4.0.git993ef88.fc20 (FEDORA-2014-16238) Container cluster management -------------------------------------------------------------------------------- Update Information: Bump to upstream 993ef88eec9012b221f79abe8f2932ee97997d28 Bump to upstream 3f74a1e9f56b3c3502762930c0c551ccab0557ea Bump to upstream 8e1d41670783cb75cf0c5088f199961a7d8e05e5 Bump to upstream e46af6e37f6e6965a63edb8eb8f115ae8ef41482 Bump to upstream b01126322b826a15db06f6eeefeeb56dc06db7af New package for Fedora -------------------------------------------------------------------------------- References: [ 1 ] Bug #1122176 - Review Request: kubernetes - Kubernetes container management https://bugzilla.redhat.com/show_bug.cgi?id=1122176 -------------------------------------------------------------------------------- ================================================================================ lis-1.5.31-1.fc20 (FEDORA-2014-16267) A library for solving linear equations and eigenvalue problems -------------------------------------------------------------------------------- Update Information: Update to 1.5.31 Update to 1.5.24 Update to 1.5.22 Update to 1.5.13 Update to 1.5.11 Update to 1.5.4 Update to 1.5.2 Update to 1.4.67 Update to 1.4.64 Update to 1.4.63 Update to 1.4.62 -------------------------------------------------------------------------------- ChangeLog: * Wed Dec 3 2014 Florian Lehner <dev@xxxxxxxxxxx> - 1.5.31-1 - Update to 1.5.31 * Thu Nov 27 2014 Florian Lehner <dev@xxxxxxxxxxx> - 1.5.24-1 - Update to 1.5.24 * Wed Nov 26 2014 Florian Lehner <dev@xxxxxxxxxxx> - 1.5.23-1 - Update to 1.5.23 * Tue Nov 25 2014 Florian Lehner <dev@xxxxxxxxxxx> - 1.5.22-1 - Update to 1.5.22 * Fri Nov 21 2014 Florian Lehner <dev@xxxxxxxxxxx> - 1.5.19-1 - Update to 1.5.19 * Fri Nov 21 2014 Florian Lehner <dev@xxxxxxxxxxx> - 1.5.18-1 - Update to 1.5.18 * Sat Nov 15 2014 Florian Lehner <dev@xxxxxxxxxxx> - 1.5.13-1 - Update to 1.5.13 * Wed Nov 12 2014 Florian Lehner <dev@xxxxxxxxxxx> - 1.5.11-1 - Update to 1.5.11 * Tue Nov 4 2014 Florian Lehner <dev@xxxxxxxxxxx> - 1.5.4-1 - Update to 1.5.4 * Sat Nov 1 2014 Florian Lehner <dev@xxxxxxxxxxx> - 1.5.2-1 - Update to 1.5.2 * Tue Oct 28 2014 Florian Lehner <dev@xxxxxxxxxxx> - 1.4.67-1 - Update to 1.4.67 * Mon Oct 27 2014 Florian Lehner <dev@xxxxxxxxxxx> - 1.4.66-1 - Update to 1.4.66 * Tue Oct 21 2014 Florian Lehner <dev@xxxxxxxxxxx> - 1.4.64-1 - Update to 1.4.64 * Mon Oct 20 2014 Florian Lehner <dev@xxxxxxxxxxx> - 1.4.63-1 - Update to 1.4.63 * Sat Oct 18 2014 Florian Lehner <dev@xxxxxxxxxxx> - 1.4.62-1 - Update to 1.4.62 -------------------------------------------------------------------------------- ================================================================================ mesa-10.3.4-1.20141202.fc20 (FEDORA-2014-16230) Mesa graphics libraries -------------------------------------------------------------------------------- Update Information: 10.3.4 -------------------------------------------------------------------------------- ChangeLog: * Tue Dec 2 2014 Igor Gnatenko <i.gnatenko.brain@xxxxxxxxx> - 10.3.4-1.20141202 - 10.3.4 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1167223 - system freezes when playing videos in firefox after upgrade to mesa-10.3.3-1.20141110.fc20 https://bugzilla.redhat.com/show_bug.cgi?id=1167223 -------------------------------------------------------------------------------- ================================================================================ mingw-flac-1.3.1-1.fc20 (FEDORA-2014-16270) Encoder/decoder for the Free Lossless Audio Codec -------------------------------------------------------------------------------- Update Information: Security fix for CVE-2014-9028, CVE-2014-8962 -------------------------------------------------------------------------------- ChangeLog: * Thu Nov 27 2014 David King <amigadave@xxxxxxxxxxxxx> - 1.3.1-1 - Update to 1.3.1 (#1168768) - Fixes CVE-2014-8962 and CVE-2014-9028 * Sat Jun 7 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.3.0-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Sun Feb 16 2014 František Dvořák <valtri@xxxxxxxxxx> - 1.3.0-2 - Added tools subpackage - Comment licensing breakdown -------------------------------------------------------------------------------- References: [ 1 ] Bug #1167236 - CVE-2014-8962 flac: Heap buffer read overflow when processing ID3V2 metadata https://bugzilla.redhat.com/show_bug.cgi?id=1167236 [ 2 ] Bug #1167741 - CVE-2014-9028 flac: Heap buffer write overflow in read_residual_partitioned_rice_ https://bugzilla.redhat.com/show_bug.cgi?id=1167741 -------------------------------------------------------------------------------- ================================================================================ nodejs-grunt-saucelabs-8.3.3-1.fc20 (FEDORA-2014-16236) Grunt task running tests using Sauce Labs -------------------------------------------------------------------------------- Update Information: Initial packaging -------------------------------------------------------------------------------- References: [ 1 ] Bug #1115679 - Review Request: nodejs-grunt-saucelabs - Grunt task running tests using Sauce Labs https://bugzilla.redhat.com/show_bug.cgi?id=1115679 -------------------------------------------------------------------------------- ================================================================================ nodejs-nsp-audit-shrinkwrap-1.0.1-1.fc20 (FEDORA-2014-16271) Audits a shrinkwrap file against the NSP module vulnerability database -------------------------------------------------------------------------------- Update Information: update to 1.0.1 -------------------------------------------------------------------------------- ChangeLog: * Wed Dec 3 2014 Parag Nemade <pnemade AT redhat DOT com> - 1.0.1-1 - update to 1.0.1 -------------------------------------------------------------------------------- ================================================================================ obnam-1.8-1.fc20 (FEDORA-2014-16249) An easy, secure backup program -------------------------------------------------------------------------------- Update Information: Many enhancements and bug fixes; see NEWS file -------------------------------------------------------------------------------- ChangeLog: * Tue Dec 2 2014 Michel Alexandre Salim <salimma@xxxxxxxxxxxxxxxxx> - 1.8-1 - Update to 1.8 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1100691 - obnam-1.8 is available https://bugzilla.redhat.com/show_bug.cgi?id=1100691 -------------------------------------------------------------------------------- ================================================================================ openscap-1.2.0-1.fc20 (FEDORA-2014-16239) Set of open source libraries enabling integration of the SCAP line of standards -------------------------------------------------------------------------------- Update Information: New OpenSCAP release. -------------------------------------------------------------------------------- ChangeLog: * Tue Dec 2 2014 Šimon Lukašík <slukasik@xxxxxxxxxx> - 1.2.0-1 - upgrade to the latest upstream release -------------------------------------------------------------------------------- ================================================================================ openvpn-2.3.6-1.fc20 (FEDORA-2014-16273) A full-featured SSL VPN solution -------------------------------------------------------------------------------- Update Information: Fix for CVE-2014-8104. https://community.openvpn.net/openvpn/wiki/SecurityAnnouncement-97597e732b -------------------------------------------------------------------------------- ChangeLog: * Mon Dec 1 2014 Jon Ciesla <limburgher@xxxxxxxxx> 2.3.6-1 - 2.3.6, CVE-2014-8104. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1169487 - CVE-2014-8104 openvpn: authenticated user can DoS OpenVPN by sending a too-short control channel packet to server [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1169487 [ 2 ] Bug #1169488 - CVE-2014-8104 openvpn: authenticated user can DoS OpenVPN by sending a too-short control channel packet to server [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=1169488 -------------------------------------------------------------------------------- ================================================================================ pcre-8.33-8.fc20 (FEDORA-2014-16215) Perl-compatible regular expression library -------------------------------------------------------------------------------- Update Information: This release fixes CVE-2014-8964 (an unused memory usage on zero-repeat assertion condition) -------------------------------------------------------------------------------- ChangeLog: * Tue Dec 2 2014 Petr Pisar <ppisar@xxxxxxxxxx> - 8.33-8 - Fix CVE-2014-8964 (unused memory usage on zero-repeat assertion condition) (bug #1165626) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1166147 - CVE-2014-8964 pcre: incorrect handling of zero-repeat assertion conditions https://bugzilla.redhat.com/show_bug.cgi?id=1166147 -------------------------------------------------------------------------------- ================================================================================ perl-Want-0.24-1.fc20 (FEDORA-2014-16252) Perl module implementing a generalisation of wantarray -------------------------------------------------------------------------------- Update Information: -------------------------------------------------------------------------------- ChangeLog: * Wed Dec 3 2014 Ralf Corsépius <corsepiu@xxxxxxxxxxxxxxxxx> - 0.24-1 - Upstream update. - Switch to using DESTDIR and pure_install. -------------------------------------------------------------------------------- ================================================================================ perl-YAML-LibYAML-0.54-1.fc20 (FEDORA-2014-16266) Perl YAML Serialization using XS and libyaml -------------------------------------------------------------------------------- Update Information: An assertion failure was found in the way the libyaml library parsed wrapped strings. An attacker able to load specially crafted YAML input into an application using libyaml could cause the application to crash. -------------------------------------------------------------------------------- ChangeLog: * Sun Nov 30 2014 Paul Howarth <paul@xxxxxxxxxxxx> - 0.54-1 - Update to 0.54 - Fix for an edge case in scanner that results in an assert() failing (https://bitbucket.org/xi/libyaml/issue/10/wrapped-strings-cause-assert-failure) (CVE-2014-9130) - Drop upstreamed patches for CVE-2013-6393 and CVE-2014-2525 * Tue Nov 18 2014 Jitka Plesnikova <jplesnik@xxxxxxxxxx> - 0.52-3 - Update BRs (bz#1165198) * Wed Aug 27 2014 Jitka Plesnikova <jplesnik@xxxxxxxxxx> - 0.52-2 - Perl 5.20 rebuild * Sun Aug 24 2014 Paul Howarth <paul@xxxxxxxxxxxx> - 0.52-1 - Update to 0.52 - Fix e1 test failure on 5.21.4 * Mon Aug 18 2014 Paul Howarth <paul@xxxxxxxxxxxx> - 0.51-1 - Update to 0.51 (various minor tidy-ups, no functional changes) * Sun Aug 17 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.47-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild * Sat Aug 9 2014 Paul Howarth <paul@xxxxxxxxxxxx> - 0.47-1 - Update to 0.47: - Fix swim errors - Include upstream license file * Wed Aug 6 2014 Jitka Plesnikova <jplesnik@xxxxxxxxxx> - 0.46-1 - 0.46 bump * Tue Aug 5 2014 Jitka Plesnikova <jplesnik@xxxxxxxxxx> - 0.45-1 - 0.45 bump * Mon Jul 14 2014 Jitka Plesnikova <jplesnik@xxxxxxxxxx> - 0.44-1 - 0.44 bump * Sat Jun 7 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.41-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1169369 - CVE-2014-9130 libyaml: assert failure when processing wrapped strings https://bugzilla.redhat.com/show_bug.cgi?id=1169369 -------------------------------------------------------------------------------- ================================================================================ php-horde-horde-5.2.3-1.fc20 (FEDORA-2014-16209) Horde Application Framework -------------------------------------------------------------------------------- Update Information: Horde 5.2.3: * [mjr] Fix performing actions from ActiveSync user preference page (Bug #13657). * [jan] Add missing 'secure' configuration for SMTP. -------------------------------------------------------------------------------- ChangeLog: * Wed Dec 3 2014 Remi Collet <remi@xxxxxxxxxxxxxxxxx> - 5.2.3-1 - Update to 5.2.3 -------------------------------------------------------------------------------- ================================================================================ pkcs11-helper-1.11-3.fc20 (FEDORA-2014-16273) A library for using PKCS#11 providers -------------------------------------------------------------------------------- Update Information: Fix for CVE-2014-8104. https://community.openvpn.net/openvpn/wiki/SecurityAnnouncement-97597e732b -------------------------------------------------------------------------------- ChangeLog: * Sun Aug 17 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.11-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild * Sat Jun 7 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.11-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Fri Apr 11 2014 Jon Ciesla <limburgher@xxxxxxxxx> - 1.11-1 - Latest upstream, required for openvpn 2.3.3. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1169487 - CVE-2014-8104 openvpn: authenticated user can DoS OpenVPN by sending a too-short control channel packet to server [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1169487 [ 2 ] Bug #1169488 - CVE-2014-8104 openvpn: authenticated user can DoS OpenVPN by sending a too-short control channel packet to server [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=1169488 -------------------------------------------------------------------------------- ================================================================================ powerline-1.3-1.fc20 (FEDORA-2014-16240) The ultimate status-line/prompt utility -------------------------------------------------------------------------------- Update Information: Update to version 1.3. -------------------------------------------------------------------------------- ChangeLog: * Wed Dec 3 2014 - Andreas Schneider <asn@xxxxxxxxxx> - 1.3-1 - Update to version 1.3. -------------------------------------------------------------------------------- ================================================================================ pybliographer-1.2.17-1.fc20 (FEDORA-2014-16208) Framework for working with bibliographic databases -------------------------------------------------------------------------------- Update Information: This update fixes bugs and installs appdata file. -------------------------------------------------------------------------------- ChangeLog: * Tue Dec 2 2014 Zoltan Kota <zoltank at gmail.com> - 1.2.17-1 - update to 1.2.17 -------------------------------------------------------------------------------- ================================================================================ pyhoca-gui-0.5.0.3-1.fc20 (FEDORA-2014-16220) Graphical X2Go client written in (wx)Python -------------------------------------------------------------------------------- Update Information: python-x2go-0.5.0.2: - Fix X2Go Desktop Sharing feature - Provide more stability if connections fail during session startup/resumption pyhoca-gui-0.5.0.3: - Finnish translation update / fix - Danish translation update - Point to our new mailing list server where the old one (BerliOS) was still referenced. -------------------------------------------------------------------------------- ChangeLog: * Mon Dec 1 2014 Orion Poplawski <orion@xxxxxxxxxxxxx> - 0.5.0.3-1 - Update to 0.5.0.3 -------------------------------------------------------------------------------- ================================================================================ python-bloom-0.5.14-1.fc20 (FEDORA-2014-16216) Bloom is a release automation tool -------------------------------------------------------------------------------- Update Information: Update to latest upstream versions and add python3 packages for rosdistro and catkin_lint -------------------------------------------------------------------------------- ChangeLog: * Fri Nov 28 2014 Scott K Logan <logans@xxxxxxxxxxx> - 0.5.14-1 - Update to 0.5.14 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1160290 - python-catkin_lint-1.3.8 is available https://bugzilla.redhat.com/show_bug.cgi?id=1160290 [ 2 ] Bug #1167730 - python-bloom-0.5.14 is available https://bugzilla.redhat.com/show_bug.cgi?id=1167730 [ 3 ] Bug #1155143 - python-rosdistro-0.3.7 is available https://bugzilla.redhat.com/show_bug.cgi?id=1155143 -------------------------------------------------------------------------------- ================================================================================ python-catkin_lint-1.3.8-1.fc20 (FEDORA-2014-16216) Check catkin packages for common errors -------------------------------------------------------------------------------- Update Information: Update to latest upstream versions and add python3 packages for rosdistro and catkin_lint -------------------------------------------------------------------------------- ChangeLog: * Tue Dec 2 2014 Scott K Logan <logans@xxxxxxxxxxx> - 1.3.8-1 - Update to release 1.3.8 - Add python3 package - Enable check section -------------------------------------------------------------------------------- References: [ 1 ] Bug #1160290 - python-catkin_lint-1.3.8 is available https://bugzilla.redhat.com/show_bug.cgi?id=1160290 [ 2 ] Bug #1167730 - python-bloom-0.5.14 is available https://bugzilla.redhat.com/show_bug.cgi?id=1167730 [ 3 ] Bug #1155143 - python-rosdistro-0.3.7 is available https://bugzilla.redhat.com/show_bug.cgi?id=1155143 -------------------------------------------------------------------------------- ================================================================================ python-cliapp-1.20140719-1.fc20 (FEDORA-2014-16217) Python framework for Unix command line programs -------------------------------------------------------------------------------- Update Information: Version 1.20140719 * The way logging is set up has been split into smaller methods, to allow overriding better. * Plugins no longer need to define a `disable` method: the default implementation is now a no-op. Bug fixes: * When getting help for a subcommand, cliapp would crash saying `get_help_text_formatter` couldn't be found. This has been fixed. Version 1.20140315 ------------------ * `cliapp` now logs the current working directory, uid, effective uid, gid, and effective gid at startup. * `cliapp` (`Settings.load_configs`) now reports an unknown variable in a configuration file with a nice error message, rather than a stack trace. * Allow overriding how the full help text for a subcommand is to be formatted. * The `cliapp.Settings.require` method now accepts many setting names, and check for all of them. -------------------------------------------------------------------------------- ChangeLog: * Tue Dec 2 2014 Michel Alexandre Salim <salimma@xxxxxxxxxxxxxxxxx> - 1.20140719-1 - Update to 1.20140719 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1077600 - python-cliapp-1.20140719 is available https://bugzilla.redhat.com/show_bug.cgi?id=1077600 -------------------------------------------------------------------------------- ================================================================================ python-configshell-1.1.fb16-1.fc20 (FEDORA-2014-16233) A framework to implement simple but nice CLIs -------------------------------------------------------------------------------- Update Information: fix a number of small bugs. -------------------------------------------------------------------------------- ChangeLog: * Tue Dec 2 2014 Andy Grover <agrover@xxxxxxxxxx> - 1:1.1.fb16-1 - New upstream release * Fri Nov 14 2014 Andy Grover <agrover@xxxxxxxxxx> - 1:1.1.fb14-3 - Add python 3 dependencies to Python 3 package * Thu Nov 13 2014 Andy Grover <agrover@xxxxxxxxxx> - 1:1.1.fb14-2 - Add Python 3 subpackage -------------------------------------------------------------------------------- References: [ 1 ] Bug #1169753 - [abrt] targetcli: module.pyx:139:kmod.module.Module.insert (kmod/module.c:2723):KmodError: Could not load module https://bugzilla.redhat.com/show_bug.cgi?id=1169753 -------------------------------------------------------------------------------- ================================================================================ python-fluidity-sm-0.2.0-1.fc20 (FEDORA-2014-16265) State machine implementation for Python objects -------------------------------------------------------------------------------- Update Information: Initial release -------------------------------------------------------------------------------- References: [ 1 ] Bug #1169469 - Review Request: python-fluidity-sm - State machine implementation for Python objects https://bugzilla.redhat.com/show_bug.cgi?id=1169469 -------------------------------------------------------------------------------- ================================================================================ python-jinja2-2.7.3-2.fc20 (FEDORA-2014-16218) General purpose template engine -------------------------------------------------------------------------------- Update Information: Add Requires python(3)-setuptools (bug #1168774) -------------------------------------------------------------------------------- ChangeLog: * Tue Dec 2 2014 Orion Poplawski <orion@xxxxxxxxxxxxx> - 2.7.3-2 - Add Requires python(3)-setuptools (bug #1168774) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1168774 - python3-jinja2 should depend on python3-setuptools https://bugzilla.redhat.com/show_bug.cgi?id=1168774 -------------------------------------------------------------------------------- ================================================================================ python-lexicon-0.2.0-1.fc20 (FEDORA-2014-16268) A powerful dict sub-classes for Python -------------------------------------------------------------------------------- Update Information: Initial release -------------------------------------------------------------------------------- References: [ 1 ] Bug #1169464 - Review Request: python-lexicon - A powerful dict sub-classes for Python https://bugzilla.redhat.com/show_bug.cgi?id=1169464 -------------------------------------------------------------------------------- ================================================================================ python-pygraphviz-1.3-2.rc2.fc20 (FEDORA-2014-16274) Create and Manipulate Graphs and Networks -------------------------------------------------------------------------------- Update Information: New package. -------------------------------------------------------------------------------- ================================================================================ python-rosdep-0.10.33-1.fc20 (FEDORA-2014-16216) ROS System Dependency Installer -------------------------------------------------------------------------------- Update Information: Update to latest upstream versions and add python3 packages for rosdistro and catkin_lint -------------------------------------------------------------------------------- ChangeLog: * Mon Nov 24 2014 Scott K Logan <logans@xxxxxxxxxxx> - 0.10.33-1 - Update to release 0.10.33 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1160290 - python-catkin_lint-1.3.8 is available https://bugzilla.redhat.com/show_bug.cgi?id=1160290 [ 2 ] Bug #1167730 - python-bloom-0.5.14 is available https://bugzilla.redhat.com/show_bug.cgi?id=1167730 [ 3 ] Bug #1155143 - python-rosdistro-0.3.7 is available https://bugzilla.redhat.com/show_bug.cgi?id=1155143 -------------------------------------------------------------------------------- ================================================================================ python-rosdistro-0.3.7-1.fc20 (FEDORA-2014-16216) File format for managing ROS Distributions -------------------------------------------------------------------------------- Update Information: Update to latest upstream versions and add python3 packages for rosdistro and catkin_lint -------------------------------------------------------------------------------- ChangeLog: * Sat Oct 25 2014 Scott K Logan <logans@xxxxxxxxxxx> - 0.3.7-1 - Update to release 0.3.7 - Remove argparse patch (fixed upstream) - Fix sphinx dependency in el6 - Add check section - Add python3 package -------------------------------------------------------------------------------- References: [ 1 ] Bug #1160290 - python-catkin_lint-1.3.8 is available https://bugzilla.redhat.com/show_bug.cgi?id=1160290 [ 2 ] Bug #1167730 - python-bloom-0.5.14 is available https://bugzilla.redhat.com/show_bug.cgi?id=1167730 [ 3 ] Bug #1155143 - python-rosdistro-0.3.7 is available https://bugzilla.redhat.com/show_bug.cgi?id=1155143 -------------------------------------------------------------------------------- ================================================================================ python-rtslib-2.1.fb51-1.fc20 (FEDORA-2014-16233) API for Linux kernel LIO SCSI target -------------------------------------------------------------------------------- Update Information: fix a number of small bugs. -------------------------------------------------------------------------------- ChangeLog: * Tue Dec 2 2014 Andy Grover <agrover@xxxxxxxxxx> - 2.1.fb51-1 - New upstream version -------------------------------------------------------------------------------- References: [ 1 ] Bug #1169753 - [abrt] targetcli: module.pyx:139:kmod.module.Module.insert (kmod/module.c:2723):KmodError: Could not load module https://bugzilla.redhat.com/show_bug.cgi?id=1169753 -------------------------------------------------------------------------------- ================================================================================ python-x2go-0.5.0.2-1.fc20 (FEDORA-2014-16220) Python module providing X2Go client API -------------------------------------------------------------------------------- Update Information: python-x2go-0.5.0.2: - Fix X2Go Desktop Sharing feature - Provide more stability if connections fail during session startup/resumption pyhoca-gui-0.5.0.3: - Finnish translation update / fix - Danish translation update - Point to our new mailing list server where the old one (BerliOS) was still referenced. -------------------------------------------------------------------------------- ChangeLog: * Thu Nov 27 2014 Orion Poplawski <orion@xxxxxxxxxxxxx> - 0.5.0.2-1 - Update to 0.5.0.2 -------------------------------------------------------------------------------- ================================================================================ rubygem-openscap-0.4.0-1.fc20 (FEDORA-2014-16239) A FFI wrapper around the OpenSCAP library -------------------------------------------------------------------------------- Update Information: New OpenSCAP release. -------------------------------------------------------------------------------- ChangeLog: * Tue Dec 2 2014 Šimon Lukašík <slukasik@xxxxxxxxxx> - 0.4.0-1 - upgrade to the new upstream version * Thu Oct 23 2014 Šimon Lukašík <slukasik@xxxxxxxxxx> - 0.3.0-1 - upgrade to the new upstream version -------------------------------------------------------------------------------- ================================================================================ rubygem-power_assert-0.2.2-2.fc20 (FEDORA-2014-16204) Power Assert for Ruby -------------------------------------------------------------------------------- Update Information: This is a new package -------------------------------------------------------------------------------- ================================================================================ rubygem-scrub_rb-1.0.1-2.fc20 (FEDORA-2014-16247) Pure-ruby polyfill of MRI 2.1 String#scrub -------------------------------------------------------------------------------- Update Information: This is a new package. -------------------------------------------------------------------------------- ================================================================================ selinux-policy-3.12.1-196.fc20 (FEDORA-2014-16229) SELinux policy configuration -------------------------------------------------------------------------------- Update Information: More info: http://koji.fedoraproject.org/koji/buildinfo?buildID=596539 -------------------------------------------------------------------------------- ChangeLog: * Tue Dec 2 2014 Lukas Vrabec <lvrabec@xxxxxxxxxx> 3.12.1-196 - Dontaudit couchdb to list /var - Couchdb policy fixes - I guess there can be content under /var/lib/lockdown #1167502 - Label tcp port 5280 as ejabberd port. BZ(1059930) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1059930 - SELinux is preventing /usr/lib64/erlang/erts-5.10.4/bin/beam.smp from name_bind access on the tcp_socket resulting in ejabberd.service failed to start https://bugzilla.redhat.com/show_bug.cgi?id=1059930 [ 2 ] Bug #1113504 - SELinux is preventing /usr/lib64/erlang/lib/couch-1.5.0/priv/couchjs from using the 'execmem' accesses on a process. https://bugzilla.redhat.com/show_bug.cgi?id=1113504 [ 3 ] Bug #1163533 - [PATCH] Fixes for couchdb selinux-policy https://bugzilla.redhat.com/show_bug.cgi?id=1163533 -------------------------------------------------------------------------------- ================================================================================ statsd-0.7.2-3.fc20 (FEDORA-2014-16219) A simple, lightweight network daemon to collect metrics over UDP -------------------------------------------------------------------------------- Update Information: fix end of line encodings -------------------------------------------------------------------------------- References: [ 1 ] Bug #1164496 - Review Request: statsd - A simple, lightweight network daemon to collect metrics over UDP https://bugzilla.redhat.com/show_bug.cgi?id=1164496 -------------------------------------------------------------------------------- ================================================================================ surfraw-2.2.9-3.fc20 (FEDORA-2014-16225) Shell Users Revolutionary Front Rage Against the Web -------------------------------------------------------------------------------- Update Information: Remove dependency on screen (rhbz#1159215). -------------------------------------------------------------------------------- ChangeLog: * Tue Dec 2 2014 Thomas Moschny <thomas.moschny@xxxxxx> - 2.2.9-3 - Remove dependency on screen (rhbz#1159215). * Sun Jun 8 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 2.2.9-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1159215 - Surfraw unecessarily depends on screen https://bugzilla.redhat.com/show_bug.cgi?id=1159215 -------------------------------------------------------------------------------- ================================================================================ targetcli-2.1.fb38-1.fc20 (FEDORA-2014-16233) An administration shell for storage targets -------------------------------------------------------------------------------- Update Information: fix a number of small bugs. -------------------------------------------------------------------------------- ChangeLog: * Tue Dec 2 2014 Andy Grover <agrover@xxxxxxxxxx> - 2.1.fb38-1 - New upstream version -------------------------------------------------------------------------------- References: [ 1 ] Bug #1169753 - [abrt] targetcli: module.pyx:139:kmod.module.Module.insert (kmod/module.c:2723):KmodError: Could not load module https://bugzilla.redhat.com/show_bug.cgi?id=1169753 -------------------------------------------------------------------------------- ================================================================================ varnish-3.0.6-1.fc20 (FEDORA-2014-16206) High-performance HTTP accelerator -------------------------------------------------------------------------------- Update Information: New upstream release. A bugfix release. >From the upstream release notes: Varnish 3.0.6 has just been released. It corrects a series of bugs fixed over the last 11 months, including three robustness bugs that may, in odd cases, lead to Varnish restarting. We recommend that users that can't upgrade to 4.0 at this point, upgrade to 3.0.6. This is the last planned release in the 3.0 series. Please note that per our release schedule we support the old stable version one year after the next version is released. Varnish 4.0.0 was released in April 2014. -------------------------------------------------------------------------------- ChangeLog: * Tue Dec 2 2014 Ingvar Hagelund <ingvar@xxxxxxxxxxxxxxxxxx> 3.0.6-1 - New upstream release - Added python to BuildRequires - it's needed for mock builds on f19 -------------------------------------------------------------------------------- ================================================================================ xpdf-3.04-6.fc20 (FEDORA-2014-16264) A PDF file viewer for the X Window System -------------------------------------------------------------------------------- Update Information: fix proper display of international strings in the title -------------------------------------------------------------------------------- ChangeLog: * Tue Dec 2 2014 Tom Callaway <spot@xxxxxxxxxxxxxxxxx> - 1:3.04-6 - fix proper display of international strings in the title (bz 1169301) * Fri Sep 12 2014 Tom Callaway <spot@xxxxxxxxxxxxxxxxx> - 1:3.04-5 - fix .desktop file * Mon Aug 18 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1:3.04-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild * Sun Jun 8 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1:3.04-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1169301 - xpdf does not show non-ASCII paths correctly https://bugzilla.redhat.com/show_bug.cgi?id=1169301 -------------------------------------------------------------------------------- ================================================================================ zanata-python-client-1.3.18-1.fc20 (FEDORA-2014-16211) Python Client for Zanata Server -------------------------------------------------------------------------------- Update Information: Bug fixes and enhancements Bug fix 1161511 Fixed bugs 768875-map-from in zanata.xml seems not working when pull 710321-Empty comment lines should not have a trailing space Fixed bugs, 747839,826822,826830,839432,839479,1004092,1122881 Fixed bugs, 747839,826822,826830,839432,839479,1004092,1122881 Fixed bugs 768875-map-from in zanata.xml seems not working when pull 710321-Empty comment lines should not have a trailing space Fixed bugs, 747839,826822,826830,839432,839479,1004092,1122881 Fixed bugs, 747839,826822,826830,839432,839479,1004092,1122881 Bug fix 1161511 Fixed bugs 768875-map-from in zanata.xml seems not working when pull 710321-Empty comment lines should not have a trailing space Fixed bugs, 747839,826822,826830,839432,839479,1004092,1122881 Fixed bugs, 747839,826822,826830,839432,839479,1004092,1122881 Fixed bugs 768875-map-from in zanata.xml seems not working when pull 710321-Empty comment lines should not have a trailing space Fixed bugs, 747839,826822,826830,839432,839479,1004092,1122881 Fixed bugs, 747839,826822,826830,839432,839479,1004092,1122881 -------------------------------------------------------------------------------- ChangeLog: * Wed Dec 3 2014 Anish Patil <apatil@xxxxxxxxxx> - 1.3.18-1 - Upstream has released new version * Thu Nov 6 2014 Anish Patil <apatil@xxxxxxxxxx> - 1.3.16-2 - New package guidelines,removed doc dir at the end of install * Fri Sep 19 2014 Anish Patil <apatil@xxxxxxxxxx> - 1.3.16-1 - Upstream has released new version -------------------------------------------------------------------------------- References: [ 1 ] Bug #696505 - RFE: reduce duplication of code https://bugzilla.redhat.com/show_bug.cgi?id=696505 [ 2 ] Bug #856138 - Bad directory name in RPM package https://bugzilla.redhat.com/show_bug.cgi?id=856138 [ 3 ] Bug #868774 - [zanata-python-client] AttributeError: 'NoneType' object has no attribute 'rfind' when push-trans-only https://bugzilla.redhat.com/show_bug.cgi?id=868774 [ 4 ] Bug #1161511 - build package according to new fedora guidelines https://bugzilla.redhat.com/show_bug.cgi?id=1161511 [ 5 ] Bug #710321 - Empty comment lines should not have a trailing space https://bugzilla.redhat.com/show_bug.cgi?id=710321 [ 6 ] Bug #768875 - map-from in zanata.xml seems not working when pull https://bugzilla.redhat.com/show_bug.cgi?id=768875 [ 7 ] Bug #747839 - Client misreports server url from zanata.xml https://bugzilla.redhat.com/show_bug.cgi?id=747839 [ 8 ] Bug #826822 - [glossary-push] glossary is not actually pushed to server https://bugzilla.redhat.com/show_bug.cgi?id=826822 [ 9 ] Bug #826830 - python client failed to push CSV formatted glossary file https://bugzilla.redhat.com/show_bug.cgi?id=826830 [ 10 ] Bug #839432 - Invalid glossary PO file accepted when pushing from python client https://bugzilla.redhat.com/show_bug.cgi?id=839432 [ 11 ] Bug #839479 - Invalid glossary CSV file accepted when pushing from python client https://bugzilla.redhat.com/show_bug.cgi?id=839479 [ 12 ] Bug #1004092 - [abrt] zanata-python-client-1.3.13-2.fc19: project.py:45:__init__:TypeError: 'NoneType' object is not iterable https://bugzilla.redhat.com/show_bug.cgi?id=1004092 [ 13 ] Bug #1122881 - Fix Fsf address in /usr/bin/flies https://bugzilla.redhat.com/show_bug.cgi?id=1122881 -------------------------------------------------------------------------------- -- test mailing list test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe: https://admin.fedoraproject.org/mailman/listinfo/test
