The following Fedora 20 Security updates need testing: Age URL 117 https://admin.fedoraproject.org/updates/FEDORA-2014-11969/krb5-1.11.5-16.fc20 70 https://admin.fedoraproject.org/updates/FEDORA-2014-15371/rubygem-actionpack-4.0.0-5.fc20 68 https://admin.fedoraproject.org/updates/FEDORA-2014-15489/rubygem-sprockets-2.8.2-5.fc20 47 https://admin.fedoraproject.org/updates/FEDORA-2014-16494/mutt-1.5.23-4.fc20 46 https://admin.fedoraproject.org/updates/FEDORA-2014-16845/resteasy-3.0.6-3.fc20 46 https://admin.fedoraproject.org/updates/FEDORA-2014-16825/asterisk-11.14.2-1.fc20 41 https://admin.fedoraproject.org/updates/FEDORA-2014-17153/httpd-2.4.10-2.fc20 37 https://admin.fedoraproject.org/updates/FEDORA-2014-17089/aeskulap-0.2.2-0.20beta1.fc20,orthanc-0.8.5-2.fc20,dcmtk-3.6.1-1.fc20 34 https://admin.fedoraproject.org/updates/FEDORA-2014-17559/mapserver-6.2.2-1.fc20 32 https://admin.fedoraproject.org/updates/FEDORA-2014-17641/dokuwiki-0-0.23.20140929b.fc20 15 https://admin.fedoraproject.org/updates/FEDORA-2015-0577/strongswan-5.2.2-1.fc20 14 https://admin.fedoraproject.org/updates/FEDORA-2015-0633/chicken-4.9.0.1-3.fc20 11 https://admin.fedoraproject.org/updates/FEDORA-2015-0773/arc-5.21p-5.fc20 7 https://admin.fedoraproject.org/updates/FEDORA-2015-0951/xdg-utils-1.1.0-0.35.rc3.fc20 6 https://admin.fedoraproject.org/updates/FEDORA-2015-1007/dump-0.4-0.24.b44.fc20 6 https://admin.fedoraproject.org/updates/FEDORA-2015-0991/polarssl-1.2.12-3.fc20 2 https://admin.fedoraproject.org/updates/FEDORA-2015-1151/rubygem-passenger-4.0.53-3.fc20 2 https://admin.fedoraproject.org/updates/FEDORA-2015-1085/puppetlabs-stdlib-4.5.1-1.20150121git7a91f20.fc20 2 https://admin.fedoraproject.org/updates/FEDORA-2015-1101/php-5.5.21-1.fc20 2 https://admin.fedoraproject.org/updates/FEDORA-2015-1133/seamonkey-2.32-1.fc20 2 https://admin.fedoraproject.org/updates/FEDORA-2015-1162/community-mysql-5.5.41-1.fc20 2 https://admin.fedoraproject.org/updates/FEDORA-2015-1125/mingw-jasper-1.900.1-26.fc20 2 https://admin.fedoraproject.org/updates/FEDORA-2015-1159/jasper-1.900.1-28.fc20 2 https://admin.fedoraproject.org/updates/FEDORA-2015-1165/patch-2.7.3-1.fc20 1 https://admin.fedoraproject.org/updates/FEDORA-2015-1176/privoxy-3.0.23-1.fc20 1 https://admin.fedoraproject.org/updates/FEDORA-2015-1191/vorbis-tools-1.4.0-13.fc20 1 https://admin.fedoraproject.org/updates/FEDORA-2015-1263/maradns-2.0.10-1.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2015-1294/qpid-cpp-0.30-7.fc20 The following Fedora 20 Critical Path updates have yet to be approved: Age URL 11 https://admin.fedoraproject.org/updates/FEDORA-2015-0787/gnome-online-accounts-3.10.6-1.fc20 7 https://admin.fedoraproject.org/updates/FEDORA-2015-0951/xdg-utils-1.1.0-0.35.rc3.fc20 7 https://admin.fedoraproject.org/updates/FEDORA-2015-0959/redhat-rpm-config-9.1.0-55.fc20 6 https://admin.fedoraproject.org/updates/FEDORA-2015-1033/sddm-0.10.0-3.fc20 2 https://admin.fedoraproject.org/updates/FEDORA-2015-1095/perl-Filter-1.54-1.fc20 2 https://admin.fedoraproject.org/updates/FEDORA-2015-1165/patch-2.7.3-1.fc20 2 https://admin.fedoraproject.org/updates/FEDORA-2015-1159/jasper-1.900.1-28.fc20 1 https://admin.fedoraproject.org/updates/FEDORA-2015-1214/hwdata-0.274-2.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2015-1285/polkit-0.112-7.fc20.1 The following builds have been pushed to Fedora 20 updates-testing autojump-21.6.9-3.fc20 drupal7-email-1.3-2.fc20 drupal7-site_map-1.2-3.fc20 getdns-0.1.6-1.fc20 golang-github-golang-appengine-0-0.1.git1c3fdc5.fc20 golang-google-golangorg-cloud-0-0.1.git2e43671.fc20 golang-googlecode-goauth2-0-0.5.hg267028f.fc20 libgadu-1.12.1-1.fc20 mozilla-requestpolicy-1.0-0.2.20141213gitd27363.fc20 perl-Net-DNS-0.82-1.fc20 php-horde-Horde-Imap-Client-2.26.1-1.fc20 polkit-0.112-7.fc20.1 python-fedmsg-meta-fedora-infrastructure-0.3.11-1.fc20 qpid-cpp-0.30-7.fc20 rubygem-compass-import-once-1.0.5-4.fc20 tcsh-6.18.01-6.fc20 Details about builds: ================================================================================ autojump-21.6.9-3.fc20 (FEDORA-2015-1277) A fast way to navigate your filesystem from the command line -------------------------------------------------------------------------------- Update Information: fix zsh completion -------------------------------------------------------------------------------- ChangeLog: * Tue Jan 27 2015 Tomas Tomecek <ttomecek@xxxxxxxxxx> - 21.6.9-3 - fix zsh completion - remove BuildArch workaround -------------------------------------------------------------------------------- References: [ 1 ] Bug #1183697 - The completion source for zsh is missing https://bugzilla.redhat.com/show_bug.cgi?id=1183697 -------------------------------------------------------------------------------- ================================================================================ drupal7-email-1.3-2.fc20 (FEDORA-2015-1303) Defines an email field type. -------------------------------------------------------------------------------- Update Information: This module provides a field type for email addresses. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1103539 - Review Request: drupal7-email - This module provides a field type for email addresses https://bugzilla.redhat.com/show_bug.cgi?id=1103539 -------------------------------------------------------------------------------- ================================================================================ drupal7-site_map-1.2-3.fc20 (FEDORA-2015-1295) Provides a site map that gives visitors an overview of your site -------------------------------------------------------------------------------- Update Information: This module provides a site map that gives visitors an overview of your site. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1103852 - Review Request: drupal7-site_map - This module provides a site map that gives visitors an overview of your site https://bugzilla.redhat.com/show_bug.cgi?id=1103852 -------------------------------------------------------------------------------- ================================================================================ getdns-0.1.6-1.fc20 (FEDORA-2015-1281) Modern asynchronous API to the DNS -------------------------------------------------------------------------------- Update Information: Updated to 0.1.6 with minor bugfixes -------------------------------------------------------------------------------- ChangeLog: * Mon Jan 19 2015 Paul Wouters <pwouters@xxxxxxxxxx> - 0.1.6-1 - Updated to 0.1.6 with minor bugfixes - Remove spurious execute bits from some *.[ch] files -------------------------------------------------------------------------------- ================================================================================ golang-github-golang-appengine-0-0.1.git1c3fdc5.fc20 (FEDORA-2015-1306) Go App Engine for Managed VMs -------------------------------------------------------------------------------- Update Information: First package for Fedora -------------------------------------------------------------------------------- References: [ 1 ] Bug #1185082 - Review Request: golang-github-golang-appengine - Go App Engine for Managed VMs https://bugzilla.redhat.com/show_bug.cgi?id=1185082 -------------------------------------------------------------------------------- ================================================================================ golang-google-golangorg-cloud-0-0.1.git2e43671.fc20 (FEDORA-2015-1296) Google Cloud Platform APIs related types and common functions -------------------------------------------------------------------------------- Update Information: First package for Fedora -------------------------------------------------------------------------------- References: [ 1 ] Bug #1185281 - Review Request: golang-google-golangorg-cloud - Google Cloud Platform APIs related types and common functions https://bugzilla.redhat.com/show_bug.cgi?id=1185281 -------------------------------------------------------------------------------- ================================================================================ golang-googlecode-goauth2-0-0.5.hg267028f.fc20 (FEDORA-2015-1312) OAuth 2.0 for Go clients -------------------------------------------------------------------------------- Update Information: Bump to upstream 267028f9bc2a1177dc5769be38c68c1b4fbe91c4 -------------------------------------------------------------------------------- ChangeLog: * Thu Jan 22 2015 jchaloup <jchaloup@xxxxxxxxxx> - 0-0.5.hgafe77d958c70 - Bump to upstream 267028f9bc2a1177dc5769be38c68c1b4fbe91c4 related: #1141822 * Tue Nov 18 2014 jchaloup <jchaloup@xxxxxxxxxx> - 0-0.4.hgafe77d958c70 - Choose the correct architecture related: #1141822 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1141822 - Review Request: golang-googlecode-goauth2 - OAuth 2.0 for Go clients https://bugzilla.redhat.com/show_bug.cgi?id=1141822 -------------------------------------------------------------------------------- ================================================================================ libgadu-1.12.1-1.fc20 (FEDORA-2015-1313) A Gadu-gadu protocol compatible communications library -------------------------------------------------------------------------------- Update Information: Update to 1.12.1 release: * Better compatibility with Gadu-Gadu 11 protocol. * Fixes for compile errors on some systems. * Fix for segmentation fault after invalid response from the public catalog. * Fix for overwriting one byte outside the buffer on stack if the proxy server's response was too long. * Fix for memory overwrite after invalid response from the proxy server when using direct connections. -------------------------------------------------------------------------------- ChangeLog: * Tue Jan 27 2015 Dominik Mierzejewski <rpm@xxxxxxxxxxxxxx> - 1.12.1-1 - update to 1.12.1 release -------------------------------------------------------------------------------- References: [ 1 ] Bug #1178349 - libgadu-1.12.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1178349 -------------------------------------------------------------------------------- ================================================================================ mozilla-requestpolicy-1.0-0.2.20141213gitd27363.fc20 (FEDORA-2015-1290) Firefox and Seamonkey extension that gives you control over cross-site requests -------------------------------------------------------------------------------- Update Information: - **New package** -------------------------------------------------------------------------------- References: [ 1 ] Bug #1128754 - Review Request: mozilla-requestpolicy - Firefox and Seamonkey extension that gives you control over cross-site requests https://bugzilla.redhat.com/show_bug.cgi?id=1128754 -------------------------------------------------------------------------------- ================================================================================ perl-Net-DNS-0.82-1.fc20 (FEDORA-2015-1283) DNS resolver modules for Perl -------------------------------------------------------------------------------- Update Information: Updated to 0.82 Support for IPv6 link-local addresses with scope_id -------------------------------------------------------------------------------- ChangeLog: * Tue Jan 20 2015 Paul Wouters <pwouters@xxxxxxxxxx> - 0.82-1 - Updated to 0.82 Support for IPv6 link-local addresses with scope_id * Wed Oct 29 2014 Paul Wouters <pwouters@xxxxxxxxxx> - 0.81-1 - Updated to 0.81, Fixes AXFR BADSIG and infinite recursion in Net::DNS::Resolver - Resolves rhbz#1151572 -------------------------------------------------------------------------------- ================================================================================ php-horde-Horde-Imap-Client-2.26.1-1.fc20 (FEDORA-2015-1291) Horde IMAP abstraction interface -------------------------------------------------------------------------------- Update Information: Horde_Imap_Client 2.26.1 * [mms] Fix serialization of Horde_Imap_Client_Data_Fetch objects. * [mms] Workaround broken in-memory stream filter handling. Horde_Imap_Client 2.25.3 * [mms] Fix determining whether a command requires a continuation request, when the literal occurs within a nested list. * [mms] Ensure we don't use the same authentication method multiple times when logging into IMAP server. Horde_Imap_Client 2.25.3 * [mms] Fix determining whether a command requires a continuation request, when the literal occurs within a nested list. * [mms] Ensure we don't use the same authentication method multiple times when logging into IMAP server. -------------------------------------------------------------------------------- ChangeLog: * Tue Jan 27 2015 Remi Collet <remi@xxxxxxxxxxxxxxxxx> - 2.26.1-1 - Update to 2.26.1 -------------------------------------------------------------------------------- ================================================================================ polkit-0.112-7.fc20.1 (FEDORA-2015-1285) An authorization framework -------------------------------------------------------------------------------- Update Information: Backport upstream commit for possible memory leak. -------------------------------------------------------------------------------- ChangeLog: * Tue Jan 27 2015 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 0.112-7.1 - polkit doesn't release reference counters of GVariant data (#1180886) * Sun Aug 17 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.112-7 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild * Tue Jul 22 2014 Kalev Lember <kalevlember@xxxxxxxxx> - 0.112-6 - Rebuilt for gobject-introspection 1.41.4 * Sat Jun 7 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.112-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Thu Jun 5 2014 Kay Sievers <kay@xxxxxxxxxx> - 0.112-4 - backport upstream D-Bus "user bus" changes * Mon Feb 10 2014 Miloslav Trmač <mitr@xxxxxxxxxx> - 0.112-3 - Fix a PolkitAgentSession race condition Resolves: #1063193 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1180886 - polkit doesn't release reference counters of GVariant data for org.freedesktop.PolicyKit1.Authority.EnumerateActions dbus call. https://bugzilla.redhat.com/show_bug.cgi?id=1180886 [ 2 ] Bug #871761 - The kded4 binary slowly grows without limit https://bugzilla.redhat.com/show_bug.cgi?id=871761 -------------------------------------------------------------------------------- ================================================================================ python-fedmsg-meta-fedora-infrastructure-0.3.11-1.fc20 (FEDORA-2015-1301) Metadata providers for Fedora Infrastructure's fedmsg deployment -------------------------------------------------------------------------------- Update Information: Bugfix for new pkgdb messages. Latest upstream. Handle a new message type from the-new-hotness. Change the way usernames are returned from pkgdb messages. -------------------------------------------------------------------------------- ChangeLog: * Mon Jan 26 2015 Ralph Bean <rbean@xxxxxxxxxx> - 0.3.11-1 - Bugfix for new pkgdb messages. * Thu Jan 15 2015 Ralph Bean <rbean@xxxxxxxxxx> - 0.3.10-1 - Handle a new message from the-new-hotness. - Change the way usernames are returned from pkgdb messages. -------------------------------------------------------------------------------- ================================================================================ qpid-cpp-0.30-7.fc20 (FEDORA-2015-1294) Libraries for Qpid C++ client applications -------------------------------------------------------------------------------- Update Information: Resolves: BZ#1184488 Resolves: BZ#1181721 Resolves: BZ#1181721 Enabled building the linear store. -------------------------------------------------------------------------------- ChangeLog: * Thu Jan 22 2015 Darryl L. Pierce <dpierce@xxxxxxxxxx> - 0.30-7 - Apply patch 10. * Wed Jan 21 2015 Darryl L. Pierce <dpierce@xxxxxxxxxx> - 0.30-6 - Resolves: BZ#1184488 * Fri Jan 16 2015 Darryl L. Pierce <dpierce@xxxxxxxxxx> - 0.30-5 - Resolves: BZ#1181721 * Wed Oct 29 2014 Darryl L. Pierce <dpierce@xxxxxxxxxx> - 0.30-4 - QPID-6170: Fixes builds on aarch64 and ppc64le architectures. * Tue Oct 14 2014 Darryl L. Pierce <dpierce@xxxxxxxxxx> - 0.30-3 - Enabled building the linear store. - Added qpid-cpp-server-linearstore package. - QPID-6150: qpid-qls-analyze tool cannot find Python modules * Wed Oct 8 2014 Darryl L. Pierce <dpierce@xxxxxxxxxx> - 0.30-2 - Readded the qpid-tools subpackage rather than moving it to a new package. * Thu Oct 2 2014 Darryl L. Pierce <dpierce@xxxxxxxxxx> - 0.30-1 - Rebased on Qpid 0.30. - Upstream tarball filename changed from qpid-##.#.tar.gz to qpid-cpp-##.#.tar.gz. - qpid-tools moved out to a separate package. - Moved qpid-send and qpid-receive to the qpid-cpp-client-devel package. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1181721 - CVE-2015-0203 qpid-cpp: qpidd can be crashed by authenticated user https://bugzilla.redhat.com/show_bug.cgi?id=1181721 -------------------------------------------------------------------------------- ================================================================================ rubygem-compass-import-once-1.0.5-4.fc20 (FEDORA-2015-1310) Speed up your Sass compilation by making @import only import each file once -------------------------------------------------------------------------------- Update Information: Initial import -------------------------------------------------------------------------------- References: [ 1 ] Bug #1132671 - Review Request: rubygem-compass-import-once - Ruby Module to speed up Sass compilation https://bugzilla.redhat.com/show_bug.cgi?id=1132671 -------------------------------------------------------------------------------- ================================================================================ tcsh-6.18.01-6.fc20 (FEDORA-2015-1280) An enhanced version of csh, the C shell -------------------------------------------------------------------------------- Update Information: fix 'wait' built-in hang (#1181685) -------------------------------------------------------------------------------- ChangeLog: * Tue Jan 27 2015 Pavel Raiskup <praiskup@xxxxxxxxxx> - 6.18.01-6 - fix 'wait' built-in hang (#1181685) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1181685 - tcsh hangs on wait https://bugzilla.redhat.com/show_bug.cgi?id=1181685 -------------------------------------------------------------------------------- -- test mailing list test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe: https://admin.fedoraproject.org/mailman/listinfo/test
