The following Fedora 20 Security updates need testing: Age URL 103 https://admin.fedoraproject.org/updates/FEDORA-2014-11969/krb5-1.11.5-16.fc20 55 https://admin.fedoraproject.org/updates/FEDORA-2014-15371/rubygem-actionpack-4.0.0-5.fc20 54 https://admin.fedoraproject.org/updates/FEDORA-2014-15489/rubygem-sprockets-2.8.2-5.fc20 33 https://admin.fedoraproject.org/updates/FEDORA-2014-16494/mutt-1.5.23-4.fc20 31 https://admin.fedoraproject.org/updates/FEDORA-2014-16845/resteasy-3.0.6-3.fc20 31 https://admin.fedoraproject.org/updates/FEDORA-2014-16825/asterisk-11.14.2-1.fc20 31 https://admin.fedoraproject.org/updates/FEDORA-2014-16932/libhtp-0.5.6-2.fc20 27 https://admin.fedoraproject.org/updates/FEDORA-2014-17153/httpd-2.4.10-2.fc20 23 https://admin.fedoraproject.org/updates/FEDORA-2014-17089/aeskulap-0.2.2-0.20beta1.fc20,orthanc-0.8.5-2.fc20,dcmtk-3.6.1-1.fc20 20 https://admin.fedoraproject.org/updates/FEDORA-2014-17559/mapserver-6.2.2-1.fc20 17 https://admin.fedoraproject.org/updates/FEDORA-2014-17641/dokuwiki-0-0.23.20140929b.fc20 7 https://admin.fedoraproject.org/updates/FEDORA-2015-0259/owasp-esapi-java-2.1.0-2.fc20 6 https://admin.fedoraproject.org/updates/FEDORA-2015-0345/xen-4.3.3-9.fc20 4 https://admin.fedoraproject.org/updates/FEDORA-2015-0451/docker-io-1.4.1-4.fc20 4 https://admin.fedoraproject.org/updates/FEDORA-2015-0471/cross-binutils-2.25-3.fc20 4 https://admin.fedoraproject.org/updates/FEDORA-2015-0503/gd-2.1.0-8.fc20 1 https://admin.fedoraproject.org/updates/FEDORA-2015-0564/kde-runtime-4.14.3-3.fc20 1 https://admin.fedoraproject.org/updates/FEDORA-2015-0577/strongswan-5.2.2-1.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2015-0601/openssl-1.0.1e-41.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2015-0677/elfutils-0.161-2.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2015-0611/libsndfile-1.0.25-9.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2015-0671/firefox-35.0-2.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2015-0633/chicken-4.9.0.1-3.fc20 The following Fedora 20 Critical Path updates have yet to be approved: Age URL 13 https://admin.fedoraproject.org/updates/FEDORA-2014-17748/kdelibs-4.14.3-8.fc20 8 https://admin.fedoraproject.org/updates/FEDORA-2015-0220/xorg-x11-drv-synaptics-1.7.7-2.fc20 5 https://admin.fedoraproject.org/updates/FEDORA-2015-0422/samba-4.1.14-2.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2015-0601/openssl-1.0.1e-41.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2015-0611/libsndfile-1.0.25-9.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2015-0677/elfutils-0.161-2.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2015-0655/btrfs-progs-3.18.1-1.fc20 The following builds have been pushed to Fedora 20 updates-testing WALinuxAgent-2.0.11-2.fc20 apache-commons-math-3.4.1-1.fc20 apx-0-0.6.20141101gite7766f1.fc20 boost-1.54.0-11.fc20 btrfs-progs-3.18.1-1.fc20 chicken-4.9.0.1-3.fc20 elfutils-0.161-2.fc20 firefox-35.0-2.fc20 gnucash-2.6.5-1.fc20 gnucash-docs-2.6.5-1.fc20 golang-github-mitchellh-goamz-0-0.4.git32d1910.fc20 golang-gopkg-check-0-4.fc20 groonga-4.1.0-1.fc20 ibus-table-others-1.3.7-1.fc20 isl-0.14-3.fc20 keepalived-1.2.15-2.fc20 latexmk-4.42-1.fc20 libasr-1.0.0-1.fc20 libsndfile-1.0.25-9.fc20 lmiwbem-0.6.0-1.fc20 lxpolkit-0.1.0-10.fc20 numpy-1.8.2-2.fc20 openssl-1.0.1e-41.fc20 owl-lisp-0.1.7-2.fc20 perl-Digest-SHA3-0.24-1.fc20 perl-REST-Client-272-1.fc20 perl-Tangerine-0.12-1.fc20 perl-URL-Encode-XS-0.03-1.fc20 photocollage-1.2.2-1.fc20 php-PHP-CSS-Parser-6.0.0-1.20141009giteb29754.fc20 php-horde-Horde-Css-Parser-1.0.6-2.fc20 php-horde-Horde-JavascriptMinify-1.1.2-1.fc20 php-tcpdf-6.2.4-1.fc20 planet-2.0-20.fc20 python-deltasigma-0.1-5.fc20 python-fmn-lib-0.4.2-1.fc20 python-fmn-rules-0.4.2-1.fc20 python-inflect-0.2.5-1.fc20 python-kajiki-0.4.4-3.fc20 python-nine-0.3.4-4.fc20 python-psycopg2-2.5.4-1.fc20 s3cmd-1.5.0-1.fc20 ssmtp-2.64-14.fc20 tiled-0.11.0-1.fc20 Details about builds: ================================================================================ WALinuxAgent-2.0.11-2.fc20 (FEDORA-2015-0638) The Windows Azure Linux Agent -------------------------------------------------------------------------------- Update Information: WALinuxAgent allows Fedora and RHEL VMs to be hosted on Windows Azure. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1159660 - Review Request: WALinuxAgent - The Windows Azure Linux Agent https://bugzilla.redhat.com/show_bug.cgi?id=1159660 -------------------------------------------------------------------------------- ================================================================================ apache-commons-math-3.4.1-1.fc20 (FEDORA-2015-0685) Java library of lightweight mathematics and statistics components -------------------------------------------------------------------------------- Update Information: This update provides the latest stable version of Apache Commons Math library. It's a maintenance release: it fixes issue https://issues.apache.org/jira/browse/MATH-1188. -------------------------------------------------------------------------------- ChangeLog: * Tue Jan 13 2015 Mohamed El Morabity <melmorabity@xxxxxxxxxxxxxxxxx> - 3.4.1-1 - Update to 3.4.1 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1181469 - apache-commons-math-3.4.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1181469 -------------------------------------------------------------------------------- ================================================================================ apx-0-0.6.20141101gite7766f1.fc20 (FEDORA-2015-0625) QIX clone, cut into and claim the square area -------------------------------------------------------------------------------- Update Information: - R: pycairo without -devel - Initial package (rhbz#1151842) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1151842 - Review Request: apx - QIX clone, cut into and claim the square area https://bugzilla.redhat.com/show_bug.cgi?id=1151842 -------------------------------------------------------------------------------- ================================================================================ boost-1.54.0-11.fc20 (FEDORA-2015-0642) The free peer-reviewed portable C++ source libraries -------------------------------------------------------------------------------- Update Information: - Backport upstream patches for bugs Boost.Graph, in dijkstra_bfs_visitor. -------------------------------------------------------------------------------- ChangeLog: * Tue Jan 13 2015 Petr Machata <pmachata@xxxxxxxxxx> - 1.54.0-11 - Apply upstream fix for dijkstra_bfs_visitor from Boost.Graph to not misinterpret edge weights. (boost-1.55.0-graph-dijkstra_shortest_paths.patch, boost-1.55.0-graph-dijkstra_shortest_paths-2.patch) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1115124 - prim_minimum_spanning_tree throwing negative_edge exception https://bugzilla.redhat.com/show_bug.cgi?id=1115124 -------------------------------------------------------------------------------- ================================================================================ btrfs-progs-3.18.1-1.fc20 (FEDORA-2015-0655) Userspace programs for btrfs -------------------------------------------------------------------------------- Update Information: Just when you thought it was safe, another btrfs-progs release appears upstream. New upstream release New upstream release -------------------------------------------------------------------------------- ChangeLog: * Mon Jan 12 2015 Eric Sandeen <sandeen@xxxxxxxxxx> 3.18.1-1 - New upstream release * Fri Jan 2 2015 Eric Sandeen <sandeen@xxxxxxxxxx> 3.18-1 - New upstream release * Fri Dec 5 2014 Eric Sandeen <sandeen@xxxxxxxxxx> 3.17.3-1 - New upstream release * Fri Nov 21 2014 Eric Sandeen <sandeen@xxxxxxxxxx> 3.17.2-1 - New upstream release -------------------------------------------------------------------------------- ================================================================================ chicken-4.9.0.1-3.fc20 (FEDORA-2015-0633) A practical and portable Scheme system -------------------------------------------------------------------------------- Update Information: Patches security vulnerability discussed here: https://bugzilla.redhat.com/show_bug.cgi?id=1181483 Latest upstream release. Latest upstream release. -------------------------------------------------------------------------------- ChangeLog: * Tue Jan 13 2015 Ricky Elrod <relrod@xxxxxxxxxx> - 4.9.0.1-3 - Apply patch to work around buffer overrun: https://bugzilla.redhat.com/show_bug.cgi?id=1181483 * Sat Aug 16 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 4.9.0.1-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild * Thu Aug 7 2014 Ricky Elrod <relrod@xxxxxxxxxx> - 4.9.0.1-1 - Latest upstream release. * Sat Jun 7 2014 Ricky Elrod <relrod@xxxxxxxxxx> - 4.9.0-4 - Rebuild from previous bootstrap. * Sat Jun 7 2014 Ricky Elrod <relrod@xxxxxxxxxx> - 4.9.0-3 - Bootstrap for el7. * Sat Jun 7 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 4.9.0-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Wed Jun 4 2014 Ricky Elrod <codeblock@xxxxxxxxxxxxxxxxx> - 4.9.0-1 - Latest upstream release. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1181483 - chicken: buffer overflow vulnerability in CHICKEN Scheme's substring-index[-ci] procedures https://bugzilla.redhat.com/show_bug.cgi?id=1181483 -------------------------------------------------------------------------------- ================================================================================ elfutils-0.161-2.fc20 (FEDORA-2015-0677) A collection of utilities and DSOs to handle compiled objects -------------------------------------------------------------------------------- Update Information: Update to elfutils 0.161. Security fix for CVE-2014-9447. -------------------------------------------------------------------------------- ChangeLog: * Tue Jan 13 2015 Mark Wielaard <mjw@xxxxxxxxxx> - 0.161-2 - Add elfutils-0.161-ar-long-name.patch (#1181525 CVE-2014-9447) * Fri Dec 19 2014 Mark Wielaard <mjw@xxxxxxxxxx> - 0.161-1 - Update to 0.161. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1178888 - CVE-2014-9447 elfutils: directory traversal in read_long_names() https://bugzilla.redhat.com/show_bug.cgi?id=1178888 -------------------------------------------------------------------------------- ================================================================================ firefox-35.0-2.fc20 (FEDORA-2015-0671) Mozilla Firefox Web browser -------------------------------------------------------------------------------- Update Information: New upstream version. -------------------------------------------------------------------------------- ChangeLog: * Mon Jan 12 2015 Martin Stransky <stransky@xxxxxxxxxx> - 35.0-2 - Update to 35.0 Build 3 - Gtk3 - added fix for button/entry box sizes - Gtk3 - added fix for button/entry focus sizes - Spec clean-up (by moez.roy@xxxxxxxxx) * Tue Jan 6 2015 Martin Stransky <stransky@xxxxxxxxxx> - 35.0-1 - Update to 35.0 Build 1 * Mon Jan 5 2015 Martin Stransky <stransky@xxxxxxxxxx> - 34.0-12 - Fixed rhbz#1014858 - GLib-CRITICAL **: g_slice_set_config: assertion `sys_page_size == 0' failed * Fri Jan 2 2015 Martin Stransky <stransky@xxxxxxxxxx> - 34.0-11 - Build with system jpeg on rawhide - Updated ATK patch for gtk3 * Tue Dec 23 2014 Martin Stransky <stransky@xxxxxxxxxx> - 34.0-9 - Added fix for rhbz#1173156 - Native NTLM authentication on Linux unsupported - Added fix for rhbz#1170109 - data corruption bug on armhfp * Sat Dec 13 2014 Martin Stransky <stransky@xxxxxxxxxx> - 34.0-8 - Gtk3 - Workaround for Firefox freeze when accessibility is enabled * Fri Dec 12 2014 Martin Stransky <stransky@xxxxxxxxxx> - 34.0-7 - Added fix for mozbz#1097592 - Firefox freeze in Gtk3 * Thu Dec 11 2014 Martin Stransky <stransky@xxxxxxxxxx> - 34.0-6 - Disabled Gtk3 on Fedora 21 and earlier (rhbz#1172926) * Wed Dec 10 2014 Martin Stransky <stransky@xxxxxxxxxx> - 34.0-5 - Disabled flash plugin instllation pop-up (mozbz#1108645) * Mon Dec 8 2014 Jiri Vanek <jvanek@xxxxxxxxxx> - 34.0-4 - added and applied patch218, java-plugin-url.patch - fixed url for java plugin installation guide - resolves rhbz#979985 * Mon Dec 8 2014 Martin Stransky <stransky@xxxxxxxxxx> - 34.0-3 - Gtk3 flash plugin fix (rhbz#1171457) - Gtk3 theme fixes * Wed Dec 3 2014 Jan Horak <jhorak@xxxxxxxxxx> - 34.0-2 - Fix for mozbz#1097550 - wrong default dictionary -------------------------------------------------------------------------------- ================================================================================ gnucash-2.6.5-1.fc20 (FEDORA-2015-0474) Finance management application -------------------------------------------------------------------------------- Update Information: This updates GnuCash to the latest upstream release, 2.6.5, which contains a variety of bugfixes. For more information, see the upstream release notes at http://gnucash.org/#n-141216-2.6.5.news. -------------------------------------------------------------------------------- ChangeLog: * Thu Jan 8 2015 Bill Nottingham <notting@xxxxxxxx> - 2.6.5-1 - update to 2.6.5 (#1176892) which fixes guile cache issues (#1151870) and charts (#1157203) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1151870 - gnucash-2.6.4-1.fc20.x86_64 doesn't launch https://bugzilla.redhat.com/show_bug.cgi?id=1151870 [ 2 ] Bug #1176892 - gnucash-2.6.5 is available https://bugzilla.redhat.com/show_bug.cgi?id=1176892 [ 3 ] Bug #1157203 - Bar charts all messed up after latest gnucash update https://bugzilla.redhat.com/show_bug.cgi?id=1157203 -------------------------------------------------------------------------------- ================================================================================ gnucash-docs-2.6.5-1.fc20 (FEDORA-2015-0474) Help files and documentation for the GnuCash personal finanace manager -------------------------------------------------------------------------------- Update Information: This updates GnuCash to the latest upstream release, 2.6.5, which contains a variety of bugfixes. For more information, see the upstream release notes at http://gnucash.org/#n-141216-2.6.5.news. -------------------------------------------------------------------------------- ChangeLog: * Thu Jan 8 2015 Bill Nottingham <notting@xxxxxxxx> - 2.6.5-1 - update to 2.6.5 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1151870 - gnucash-2.6.4-1.fc20.x86_64 doesn't launch https://bugzilla.redhat.com/show_bug.cgi?id=1151870 [ 2 ] Bug #1176892 - gnucash-2.6.5 is available https://bugzilla.redhat.com/show_bug.cgi?id=1176892 [ 3 ] Bug #1157203 - Bar charts all messed up after latest gnucash update https://bugzilla.redhat.com/show_bug.cgi?id=1157203 -------------------------------------------------------------------------------- ================================================================================ golang-github-mitchellh-goamz-0-0.4.git32d1910.fc20 (FEDORA-2015-0658) An Amazon Library for Go -------------------------------------------------------------------------------- Update Information: Bump to upstream 32d1910e654ead1308d9073d8ccdd42d6922ee39 -------------------------------------------------------------------------------- ChangeLog: * Tue Jan 13 2015 jchaloup <jchaloup@xxxxxxxxxx> - 0-0.4.git32d1910 - Bump to upstream 32d1910e654ead1308d9073d8ccdd42d6922ee39 related: #1142399 * Fri Oct 10 2014 jchaloup <jchaloup@xxxxxxxxxx> - 0-0.3.git9cad7da - Add dependencies, replace motain/gocheck with check.v1 related: #1142399 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1142399 - Review Request: golang-github-mitchellh-goamz - An Amazon Library for Go https://bugzilla.redhat.com/show_bug.cgi?id=1142399 -------------------------------------------------------------------------------- ================================================================================ golang-gopkg-check-0-4.fc20 (FEDORA-2015-0674) Rich testing for the Go language -------------------------------------------------------------------------------- Update Information: Add github.com/motain/gocheck into Provides Add github.com/motain/gocheck into devel subpackage -------------------------------------------------------------------------------- ChangeLog: * Tue Jan 13 2015 jchaloup <jchaloup@xxxxxxxxxx> - 0-4 - Add github.com/motain/gocheck into Provides related: #1151779 * Tue Jan 13 2015 jchaloup <jchaloup@xxxxxxxxxx> - 0-3 - Add github.com/motain/gocheck into devel subpackage related: #1151779 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1151779 - Review Request: golang-gopkg-check - Rich testing for the Go language https://bugzilla.redhat.com/show_bug.cgi?id=1151779 -------------------------------------------------------------------------------- ================================================================================ groonga-4.1.0-1.fc20 (FEDORA-2015-0670) An Embeddable Fulltext Search Engine -------------------------------------------------------------------------------- Update Information: See http://groonga.org/docs/news.html#release-4-1-0-2015-01-09 See http://groonga.org/docs/news.html#release-4-0-9 -------------------------------------------------------------------------------- ChangeLog: * Wed Jan 14 2015 HAYASHI Kentaro <hayashi@xxxxxxxxxxxxxx> - 4.1.0-1 - new upstream release. * Tue Jan 6 2015 HAYASHI Kentaro <hayashi@xxxxxxxxxxxxxx> - 4.0.9.1-1 - new upstream release. - remove needless 'g' option to remove rpath. - use /run/groonga to fix dir-or-file-in-var-run error. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1178344 - groonga-4.0.9 is available https://bugzilla.redhat.com/show_bug.cgi?id=1178344 [ 2 ] Bug #1181489 - groonga-4.1.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1181489 -------------------------------------------------------------------------------- ================================================================================ ibus-table-others-1.3.7-1.fc20 (FEDORA-2015-0632) Various tables for IBus-Table -------------------------------------------------------------------------------- Update Information: update to latest upstream 1.3.7; Use F1,F2,F3,F4,F5,F6,F7,F8,F9 as select keys for the latex table; Make rusle agree with http://ru.pc-history.com/wp-content/uploads/ok-keyboard_xt-at1.jpg -------------------------------------------------------------------------------- ChangeLog: * Tue Jan 13 2015 Mike FABIAN <mfabian@xxxxxxxxxx> - 1.3.7-1 - update to latest upstream 1.3.7 - Use F1,F2,F3,F4,F5,F6,F7,F8,F9 as select keys for the latex table - Make rusle agree with http://ru.pc-history.com/wp-content/uploads/ok-keyboard_xt-at1.jpg -------------------------------------------------------------------------------- ================================================================================ isl-0.14-3.fc20 (FEDORA-2015-0600) Integer point manipulation library -------------------------------------------------------------------------------- Update Information: Add shared variant of ISL package used by gcc and cross-gcc -------------------------------------------------------------------------------- ================================================================================ keepalived-1.2.15-2.fc20 (FEDORA-2015-0627) High Availability monitor built upon LVS, VRRP and service pollers -------------------------------------------------------------------------------- Update Information: Depend on network-online.target systemd unit -------------------------------------------------------------------------------- ChangeLog: * Tue Jan 13 2015 Ryan O'Hara <rohara@xxxxxxxxxx> - 1.2.15-2 - Depend on network-online.target systemd unit (#1181097) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1181097 - keepalived should start after network-online.target instead of network.target https://bugzilla.redhat.com/show_bug.cgi?id=1181097 -------------------------------------------------------------------------------- ================================================================================ latexmk-4.42-1.fc20 (FEDORA-2015-0695) A make-like utility for LaTeX files -------------------------------------------------------------------------------- Update Information: Changes in version 4.42: - -c also deletes $deps_file if it is used - Fix bugs associated with the -cd option - Add missfont.log and the generated synctex.gz to standard cleaned-up files -------------------------------------------------------------------------------- ChangeLog: * Mon Jan 12 2015 Jerry James <loganjerry@xxxxxxxxx> - 4.42-1 - Update to 4.42: - -c also deletes $deps_file if it is used - Fix bugs associated with the -cd option - Add missfont.log and the generated synctex.gz to standard cleaned-up files -------------------------------------------------------------------------------- ================================================================================ libasr-1.0.0-1.fc20 (FEDORA-2015-0690) Free, simple and portable asynchronous resolver library -------------------------------------------------------------------------------- Update Information: libasr: initial Fedora RPM release -------------------------------------------------------------------------------- References: [ 1 ] Bug #1176455 - Review Request: libasr - Free, simple and portable asynchronous resolver library https://bugzilla.redhat.com/show_bug.cgi?id=1176455 -------------------------------------------------------------------------------- ================================================================================ libsndfile-1.0.25-9.fc20 (FEDORA-2015-0611) Library for reading and writing sound files -------------------------------------------------------------------------------- Update Information: fixing above security issues -------------------------------------------------------------------------------- ChangeLog: * Tue Jan 13 2015 Michal Hlavinka <mhlavink@xxxxxxxxxx> - 1.0.25-9 - fix CVE-2014-9496: 2 buffer overruns in sd2_parse_rsrc_fork (#1178840) - division by zero leading to denial of service in psf_fwrite (#1177254) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1177254 - libsndfile: division by zero leading to denial of service in psf_fwrite() https://bugzilla.redhat.com/show_bug.cgi?id=1177254 -------------------------------------------------------------------------------- ================================================================================ lmiwbem-0.6.0-1.fc20 (FEDORA-2015-0597) Python WBEM Client -------------------------------------------------------------------------------- Update Information: upgrade to 0.6.0 -------------------------------------------------------------------------------- ChangeLog: * Tue Jan 13 2015 Peter Hatina <phatina@xxxxxxxxxx> - 0.6.0-1 - upgrade to 0.6.0 -------------------------------------------------------------------------------- ================================================================================ lxpolkit-0.1.0-10.fc20 (FEDORA-2015-0635) Simple PolicyKit authentication agent -------------------------------------------------------------------------------- Update Information: This update makes lxpolkit only start in LXDE to avoid conflicts with other authentication agents that might cause it to crash. -------------------------------------------------------------------------------- ChangeLog: * Tue Jan 13 2015 Christoph Wickert <cwickert@xxxxxxxxxxxxxxxxx> - 0.1.0-10 - Only start lxpolkit in LXDE (#1114176, #1178272) * Sun Aug 17 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.1.0-9 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild * Thu Jun 19 2014 Yaakov Selkowitz <yselkowi@xxxxxxxxxx> - 0.1.0-8 - Fix FTBFS with -Werror=format-security (#1037186, #1106144) - Cleanup spec * Sat Jun 7 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.1.0-7 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1178272 - Mate entry is missing in NotShowIn desktop file entry https://bugzilla.redhat.com/show_bug.cgi?id=1178272 [ 2 ] Bug #1114176 - [abrt] lxpolkit: main(): lxpolkit killed by SIGSEGV https://bugzilla.redhat.com/show_bug.cgi?id=1114176 -------------------------------------------------------------------------------- ================================================================================ numpy-1.8.2-2.fc20 (FEDORA-2015-0629) A fast multidimensional array facility for Python -------------------------------------------------------------------------------- Update Information: Fix xerbla linkage (bug #1172834) -------------------------------------------------------------------------------- ChangeLog: * Mon Jan 12 2015 Orion Poplawski <orion@xxxxxxxx> - 1:1.8.2-2 - Backport upstream patch to fix xerbla linkage (bug #1172834) -------------------------------------------------------------------------------- ================================================================================ openssl-1.0.1e-41.fc20 (FEDORA-2015-0601) Utilities from the general purpose cryptography library with TLS implementation -------------------------------------------------------------------------------- Update Information: Multiple low and moderate impact security issues fixed. -------------------------------------------------------------------------------- ChangeLog: * Tue Jan 13 2015 Tomáš Mráz <tmraz@xxxxxxxxxx> 1.0.1e-41 - fix CVE-2014-3570 - incorrect computation in BN_sqr() - fix CVE-2014-3571 - possible crash in dtls1_get_record() - fix CVE-2014-3572 - possible downgrade of ECDH ciphersuite to non-PFS state - fix CVE-2014-8275 - various certificate fingerprint issues - fix CVE-2015-0204 - remove support for RSA ephemeral keys for non-export ciphersuites and on server - fix CVE-2015-0205 - do not allow unauthenticated client DH certificate - fix CVE-2015-0206 - possible memory leak when buffering DTLS records - add ECC TLS extensions to DTLS (#1119803) - do not send ECC ciphersuites in SSLv2 client hello (#1090955) - copy digest algorithm when handling SNI context switch -------------------------------------------------------------------------------- References: [ 1 ] Bug #1180234 - CVE-2014-3571 openssl: DTLS segmentation fault in dtls1_get_record https://bugzilla.redhat.com/show_bug.cgi?id=1180234 [ 2 ] Bug #1180239 - CVE-2015-0205 openssl: DH client certificates accepted without verification https://bugzilla.redhat.com/show_bug.cgi?id=1180239 [ 3 ] Bug #1180187 - CVE-2014-8275 openssl: Fix various certificate fingerprint issues https://bugzilla.redhat.com/show_bug.cgi?id=1180187 [ 4 ] Bug #1180235 - CVE-2015-0206 openssl: DTLS memory leak in dtls1_buffer_record https://bugzilla.redhat.com/show_bug.cgi?id=1180235 [ 5 ] Bug #1180240 - CVE-2014-3570 openssl: Bignum squaring may produce incorrect results https://bugzilla.redhat.com/show_bug.cgi?id=1180240 -------------------------------------------------------------------------------- ================================================================================ owl-lisp-0.1.7-2.fc20 (FEDORA-2015-0662) Owl Lisp is a purely functional dialect of Scheme -------------------------------------------------------------------------------- Update Information: Add man page for ovm -------------------------------------------------------------------------------- ================================================================================ perl-Digest-SHA3-0.24-1.fc20 (FEDORA-2015-0599) Perl extension for SHA-3 -------------------------------------------------------------------------------- Update Information: Updated to 0.24 -------------------------------------------------------------------------------- ChangeLog: * Wed Jan 14 2015 David Dick <ddick@xxxxxxxx> - 0.24-1 - Updated to 0.24 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1178792 - perl-Digest-SHA3-0.24 is available https://bugzilla.redhat.com/show_bug.cgi?id=1178792 -------------------------------------------------------------------------------- ================================================================================ perl-REST-Client-272-1.fc20 (FEDORA-2015-0598) Simple client for interacting with RESTful http/https resources -------------------------------------------------------------------------------- Update Information: Update to 272 -------------------------------------------------------------------------------- ChangeLog: * Wed Jan 14 2015 David Dick <ddick@xxxxxxxx> - 272-1 - Update to 272 * Fri Aug 29 2014 Jitka Plesnikova <jplesnik@xxxxxxxxxx> - 271-3 - Perl 5.20 rebuild * Sat Jun 7 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 271-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1171043 - perl-REST-Client-272 is available https://bugzilla.redhat.com/show_bug.cgi?id=1171043 -------------------------------------------------------------------------------- ================================================================================ perl-Tangerine-0.12-1.fc20 (FEDORA-2015-0656) Analyse perl files and report module-related information -------------------------------------------------------------------------------- Update Information: Introduce support for Test::Requires and superclass. -------------------------------------------------------------------------------- ChangeLog: * Mon Jan 12 2015 Petr Šabata <contyk@xxxxxxxxxx> - 0.12-1 - 0.12 bump -------------------------------------------------------------------------------- ================================================================================ perl-URL-Encode-XS-0.03-1.fc20 (FEDORA-2015-0610) XS implementation of URL::Encode -------------------------------------------------------------------------------- Update Information: Initial Package. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1181321 - Review Request: perl-URL-Encode-XS - XS implementation of URL::Encode https://bugzilla.redhat.com/show_bug.cgi?id=1181321 -------------------------------------------------------------------------------- ================================================================================ photocollage-1.2.2-1.fc20 (FEDORA-2015-0645) Graphical tool to make photo collage posters -------------------------------------------------------------------------------- Update Information: Update to new upstream version -------------------------------------------------------------------------------- ChangeLog: * Tue Jan 13 2015 Adrien Vergé <adrienverge@xxxxxxxxx> - 1.2.2-1 - Update to new upstream version -------------------------------------------------------------------------------- ================================================================================ php-PHP-CSS-Parser-6.0.0-1.20141009giteb29754.fc20 (FEDORA-2015-0631) A Parser for CSS Files -------------------------------------------------------------------------------- Update Information: Horde_Css_Parser 1.0.6 * [mms] Update PHP-CSS-Parser lib to latest dev to fix issues on PHP < 5.3.9 (Bug #13792). Horde_Css_Parser 1.0.5 * [mms] Use composer to generate the distributed version of the PHP-CSS-Parser package. php-PHP-CSS-Parser 6.0.0 * Format output using Sabberworm\CSS\OutputFormat * No backwards-incompatible changes php-PHP-CSS-Parser 5.2.0 (2014-06-30) * Support removing a selector from a declaration block using `$oBlock->removeSelector($mSelector)` * Introduce a specialized exception (Sabberworm\CSS\Parsing\OuputException) for exceptions during output rendering -------------------------------------------------------------------------------- ChangeLog: * Tue Jan 13 2015 Remi Collet <remi@xxxxxxxxxxxxxxxxx> - 6.0.0-1.20141009giteb29754 - update to 6.0.0 + fix for PHP 5.3 - add provides php-composer(sabberworm/php-css-parser) -------------------------------------------------------------------------------- ================================================================================ php-horde-Horde-Css-Parser-1.0.6-2.fc20 (FEDORA-2015-0631) Horde CSS Parser -------------------------------------------------------------------------------- Update Information: Horde_Css_Parser 1.0.6 * [mms] Update PHP-CSS-Parser lib to latest dev to fix issues on PHP < 5.3.9 (Bug #13792). Horde_Css_Parser 1.0.5 * [mms] Use composer to generate the distributed version of the PHP-CSS-Parser package. php-PHP-CSS-Parser 6.0.0 * Format output using Sabberworm\CSS\OutputFormat * No backwards-incompatible changes php-PHP-CSS-Parser 5.2.0 (2014-06-30) * Support removing a selector from a declaration block using `$oBlock->removeSelector($mSelector)` * Introduce a specialized exception (Sabberworm\CSS\Parsing\OuputException) for exceptions during output rendering -------------------------------------------------------------------------------- ChangeLog: * Tue Jan 13 2015 Remi Collet <remi@xxxxxxxxxxxxxxxxx> - 1.0.6-2 - Update to 1.0.6 - raise dependency on sabberworm/php-css-parser >= 6 - add provides php-composer(horde/horde-css-parser) -------------------------------------------------------------------------------- ================================================================================ php-horde-Horde-JavascriptMinify-1.1.2-1.fc20 (FEDORA-2015-0640) Javascript Minification -------------------------------------------------------------------------------- Update Information: Horde_JavascriptMinify 1.1.2 * [mms] Silence code warnings for Closure compiler (Bug #13789). -------------------------------------------------------------------------------- ChangeLog: * Tue Jan 13 2015 Remi Collet <remi@xxxxxxxxxxxxxxxxx> - 1.1.2-1 - Update to 1.1.2 - add provides php-composer(horde/horde-javascriptminify) -------------------------------------------------------------------------------- ================================================================================ php-tcpdf-6.2.4-1.fc20 (FEDORA-2015-0603) PHP class for generating PDF documents and barcodes -------------------------------------------------------------------------------- Update Information: 6.2.4 (2015-01-08) * fix warning related to empty K_PATH_URL. * fix error when a $table_colwidths key is not set. 6.2.3 (2014-12-18) * New comment. * Moved the K_PATH_IMAGES definition in tcpdf_autoconfig. 6.2.2 (2014-12-18) * Fixed mispelled words. * Fixed version number. 6.2.1 (2014-12-18) * The constant K_TCPDF_THROW_EXCEPTION_ERROR is now set to false in the default configuration file. * An issue with the _destroy() method was fixed. 6.2.0 (2014-12-10) * Bug #1005 "Security Report, LFI posting internal files externally abusing default parameter" was fixed. * Static methods serializeTCPDFtagParameters() and unserializeTCPDFtagParameters() were moved as non static to the main TCPDF class (see changes in example n. 49). * Deprecated methods were removed, please use the equivalents defined in other classes (i.e. TCPDF_STATIC and TCPDF_FONTS). * The constant K_TCPDF_CALLS_IN_HTML is now set by default to FALSE. * DLE, DLX and DLP page format was added. * Page format are now defined as a public property in TCPDF_STATIC. -------------------------------------------------------------------------------- ChangeLog: * Tue Jan 13 2015 Remi Collet <remi@xxxxxxxxxxxxxxxxx> - 6.2.4-1 - update to 6.2.4 -------------------------------------------------------------------------------- ================================================================================ planet-2.0-20.fc20 (FEDORA-2015-0680) Flexible RDF/RSS/Atom feed aggregator -------------------------------------------------------------------------------- Update Information: Fix HTTPS feed URLs, initial epel7 build. -------------------------------------------------------------------------------- ChangeLog: * Fri Jan 23 2015 Jon Ciesla <limburgher@xxxxxxxxx> - 2.0-20 - Drop timeoutsocket.py to fix BZ 498456. * Mon Jun 30 2014 Toshio Kuratomi <toshio@xxxxxxxxxxxxxxxxx> - 2.0-19 - Replace python-setuptools-devel BR with python-setuptools * Sat Jun 7 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 2.0-18 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Fri Aug 30 2013 Jon Ciesla <limburgher@xxxxxxxxx> - 2.0-17 - Fix dates, escape macro in changelog. -------------------------------------------------------------------------------- References: [ 1 ] Bug #498456 - HTTPS feed URLs broken in planet-2.0-3.el5 https://bugzilla.redhat.com/show_bug.cgi?id=498456 [ 2 ] Bug #1181144 - Please build to EPEL 7 https://bugzilla.redhat.com/show_bug.cgi?id=1181144 -------------------------------------------------------------------------------- ================================================================================ python-deltasigma-0.1-5.fc20 (FEDORA-2015-0683) The python2-deltasigma is a package that simulate Delta Sigma modulators -------------------------------------------------------------------------------- Update Information: Update package about bugfix and additional options in changeFig(). -------------------------------------------------------------------------------- ChangeLog: * Mon Jan 12 2015 Kiara Navarro <sophiekovalevsky@xxxxxxxxxxxxxxxxx> - 0.1-5 - Update package about bugfix and additional options in changeFig(). -------------------------------------------------------------------------------- ================================================================================ python-fmn-lib-0.4.2-1.fc20 (FEDORA-2015-0647) Internal API components and model for Fedora Notifications -------------------------------------------------------------------------------- Update Information: Latest upstream. -------------------------------------------------------------------------------- ChangeLog: * Mon Jan 12 2015 Ralph Bean <rbean@xxxxxxxxxx> - 0.4.2-1 - Latest upstream with simpler defaults. * Mon Jan 12 2015 Ralph Bean <rbean@xxxxxxxxxx> - 0.4.1-1 - Latest upstream. - Tests temporarily disabled due to cyclic dep with fmn.rules. -------------------------------------------------------------------------------- ================================================================================ python-fmn-rules-0.4.2-1.fc20 (FEDORA-2015-0630) Message processing rules for Fedora Notifications -------------------------------------------------------------------------------- Update Information: Latest upstream. -------------------------------------------------------------------------------- ChangeLog: * Mon Jan 12 2015 Ralph Bean <rbean@xxxxxxxxxx> - 0.4.2-1 - Latest upstream with simpler defaults. * Mon Jan 12 2015 Ralph Bean <rbean@xxxxxxxxxx> - 0.4.1-1 - Updated descriptions. - Datanommer hinting. - Temporarily disabled tests due to cyclic dep with fmn.lib. * Wed Jan 7 2015 Ralph Bean <rbean@xxxxxxxxxx> - 0.4.0-1 - Latest upstream with tons of new rules from Sayan Chowdhury. -------------------------------------------------------------------------------- ================================================================================ python-inflect-0.2.5-1.fc20 (FEDORA-2015-0665) Correctly generate plurals, singular nouns, ordinals and indefinite articles -------------------------------------------------------------------------------- Update Information: Update to inflect-0.2.5, which fixes the following issues: - Fixed TypeError while parsing compounds (by yavarhusain) - Fixed encoding issue in setup.py on Python 3 -------------------------------------------------------------------------------- ChangeLog: * Tue Jan 13 2015 David Shea <dshea@xxxxxxxxxx> - 0.2.5-1 - Update to inflect-0.2.5, which fixes the following issues: - Fixed TypeError while parsing compounds (by yavarhusain) - Fixed encoding issue in setup.py on Python 3 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1181546 - python-inflect-0.2.5 is available https://bugzilla.redhat.com/show_bug.cgi?id=1181546 -------------------------------------------------------------------------------- ================================================================================ python-kajiki-0.4.4-3.fc20 (FEDORA-2015-0654) Really fast well-formed xml templates -------------------------------------------------------------------------------- Update Information: Declare requirement on python-nine. -------------------------------------------------------------------------------- ChangeLog: * Mon Jan 12 2015 Ralph Bean <rbean@xxxxxxxxxx> - 0.4.4-3 - Add req on python-nine. * Sat Jun 7 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.4.4-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Wed Feb 12 2014 Ralph Bean <rbean@xxxxxxxxxx> - 0.4.4-1 - Latest upstream. - Disabled tests now that they require python-nine which hasn't yet been packaged for Fedora. * Tue Oct 8 2013 Ralph Bean <rbean@xxxxxxxxxx> - 0.3.5-4 - Added dep on pytz. * Tue Oct 8 2013 Ralph Bean <rbean@xxxxxxxxxx> - 0.3.5-3 - Update dep from babel to python-babel. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1179551 - pkg_resources.DistributionNotFound: nine https://bugzilla.redhat.com/show_bug.cgi?id=1179551 -------------------------------------------------------------------------------- ================================================================================ python-nine-0.3.4-4.fc20 (FEDORA-2015-0619) Python 2 / 3 compatibility, like six, but favouring Python 3 -------------------------------------------------------------------------------- Update Information: Initial import. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1179804 - Review Request: python-nine - Python 2 / 3 compatibility, like six, but favouring Python 3 https://bugzilla.redhat.com/show_bug.cgi?id=1179804 -------------------------------------------------------------------------------- ================================================================================ python-psycopg2-2.5.4-1.fc20 (FEDORA-2015-0679) A PostgreSQL database adapter for Python -------------------------------------------------------------------------------- Update Information: Update to 2.5.4, per changes described at: http://www.psycopg.org/psycopg/articles/2014/08/30/psycopg-254-released -------------------------------------------------------------------------------- ChangeLog: * Tue Jan 13 2015 Devrim Gündüz <devrim@xxxxxxxxxx> 2.5.4-1 - Update to 2.5.4, per changes described at: http://www.psycopg.org/psycopg/articles/2014/08/30/psycopg-254-released * Tue Jan 7 2014 Devrim Gündüz <devrim@xxxxxxxxxx> 2.5.2-1 - Update to 2.5.2, per changes described at: http://www.psycopg.org/psycopg/articles/2014/01/07/psycopg-252-released -------------------------------------------------------------------------------- References: [ 1 ] Bug #1181549 - python-psycopg2-2.5.4 is available https://bugzilla.redhat.com/show_bug.cgi?id=1181549 -------------------------------------------------------------------------------- ================================================================================ s3cmd-1.5.0-1.fc20 (FEDORA-2015-0622) Tool for accessing Amazon Simple Storage Service -------------------------------------------------------------------------------- Update Information: upstream 1.5.0 final upstream 1.5.0-rc1 upstream 1.5.0-beta1 plus even newer upstream fixes upstream 1.5.0-beta1 plus newer upstream fixes -------------------------------------------------------------------------------- ChangeLog: * Mon Jan 12 2015 Matt Domsch <mdomsch@xxxxxxxxxxxxxxxxx> - 1.5.0-1 - upstream 1.5.0 final * Tue Jul 1 2014 Matt Domsch <mdomsch@xxxxxxxxxxxxxxxxx> - 1.5.0-0.7.rc1 - put back dropped dist tag * Tue Jul 1 2014 Matt Domsch <mdomsch@xxxxxxxxxxxxxxxxx> - 1.5.0-0.6.rc1 - upstream 1.5.0-rc1 * Sun Jun 8 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.5.0-0.5.gitb196faa5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Sun Mar 23 2014 Matt Domsch <mdomsch@xxxxxxxxxxxxxxxxx> - 1.5.0-0.4.git - upstream 1.5.0-beta1 plus even newer upstream fixes * Sun Feb 2 2014 Matt Domsch <mdomsch@xxxxxxxxxxxxxxxxx> - 1.5.0-0.3.git - upstream 1.5.0-beta1 plus newer upstream fixes -------------------------------------------------------------------------------- ================================================================================ ssmtp-2.64-14.fc20 (FEDORA-2015-0696) Extremely simple MTA to get mail off the system to a Mailhub -------------------------------------------------------------------------------- Update Information: Sets proper permissions on the configuration file. No functional changes. -------------------------------------------------------------------------------- ChangeLog: * Mon Oct 13 2014 Manuel "lonely wolf" Wolfshant <wolfy@xxxxxxxxxxxxxxxxx> - 2.64-14 - Fix spurious permissions for config file ( #1060515) * Mon Aug 18 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 2.64-13 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild * Sun Jun 8 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 2.64-12 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1060515 - Spurious executable+setgid bits on /etc/ssmtp/ssmtp.conf https://bugzilla.redhat.com/show_bug.cgi?id=1060515 -------------------------------------------------------------------------------- ================================================================================ tiled-0.11.0-1.fc20 (FEDORA-2015-0676) Tiled Map Editor -------------------------------------------------------------------------------- Update Information: New upstream release 0.11.0 with many new features. See http://forum.mapeditor.org/t/tiled-0-11-0-released/151 for a full changelog. -------------------------------------------------------------------------------- ChangeLog: * Sun Jan 11 2015 Erik Schilling <ablu.erikschilling@xxxxxxxxxxxxxx> - 0.11.0-1 - New upstream release -------------------------------------------------------------------------------- -- test mailing list test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe: https://admin.fedoraproject.org/mailman/listinfo/test
