The following Fedora 21 Security updates need testing: Age URL 92 https://admin.fedoraproject.org/updates/FEDORA-2014-16833/asterisk-11.14.2-1.fc21 83 https://admin.fedoraproject.org/updates/FEDORA-2014-17139/aeskulap-0.2.2-0.20beta1.fc21,orthanc-0.8.5-2.fc21,dcmtk-3.6.1-1.fc21 80 https://admin.fedoraproject.org/updates/FEDORA-2014-17567/mapserver-6.2.2-1.fc21 67 https://admin.fedoraproject.org/updates/FEDORA-2015-0264/gcab-0.4-7.fc21 60 https://admin.fedoraproject.org/updates/FEDORA-2015-0620/chicken-4.9.0.1-3.fc21 43 https://admin.fedoraproject.org/updates/FEDORA-2015-1467/openstack-glance-2014.1.3-4.fc21 36 https://admin.fedoraproject.org/updates/FEDORA-2015-1803/fcgi-2.4.0-26.fc21 28 https://admin.fedoraproject.org/updates/FEDORA-2015-2055/openldap-2.4.40-3.fc21 27 https://admin.fedoraproject.org/updates/FEDORA-2015-2101/drupal7-views-3.10-1.fc21 17 https://admin.fedoraproject.org/updates/FEDORA-2015-2584/echoping-6.1-0.beta.r434svn.1.fc21 16 https://admin.fedoraproject.org/updates/FEDORA-2015-2729/qpid-cpp-0.30-12.fc21 15 https://admin.fedoraproject.org/updates/FEDORA-2015-2849/drupal7-entity-1.6-1.fc21 9 https://admin.fedoraproject.org/updates/FEDORA-2015-3218/xterm-308-3.fc21 9 https://admin.fedoraproject.org/updates/FEDORA-2015-3186/dokuwiki-0-0.24.20140929c.fc21 6 https://admin.fedoraproject.org/updates/FEDORA-2015-3497/librsync-1.0.0-1.fc21,csync2-1.34-15.fc21,duplicity-0.6.25-3.fc21,rdiff-backup-1.2.8-14.fc21 6 https://admin.fedoraproject.org/updates/FEDORA-2015-3471/freexl-1.0.0i-1.fc21 6 https://admin.fedoraproject.org/updates/FEDORA-2015-3489/libgcrypt-1.6.3-1.fc21 6 https://admin.fedoraproject.org/updates/FEDORA-2015-3505/389-ds-base-1.3.3.9-1.fc21 5 https://admin.fedoraproject.org/updates/FEDORA-2015-3556/patch-2.7.5-1.fc21 2 https://admin.fedoraproject.org/updates/FEDORA-2015-3569/icu-52.1-5.fc21 2 https://admin.fedoraproject.org/updates/FEDORA-2015-3574/qt-creator-3.3.2-2.fc21 1 https://admin.fedoraproject.org/updates/FEDORA-2015-3612/ImageMagick-6.8.8.10-6.fc21 1 https://admin.fedoraproject.org/updates/FEDORA-2015-3797/libssh2-1.5.0-1.fc21 1 https://admin.fedoraproject.org/updates/FEDORA-2015-3902/php-ZendFramework2-2.3.7-1.fc21 0 https://admin.fedoraproject.org/updates/FEDORA-2015-3944/xen-4.4.1-16.fc21 The following Fedora 21 Critical Path updates have yet to be approved: Age URL 11 https://admin.fedoraproject.org/updates/FEDORA-2015-3047/livecd-tools-21.5-1.fc21 11 https://admin.fedoraproject.org/updates/FEDORA-2015-3009/perl-Pod-Usage-1.67-1.fc21 9 https://admin.fedoraproject.org/updates/FEDORA-2015-3303/libsoup-2.48.1-2.fc21 9 https://admin.fedoraproject.org/updates/FEDORA-2015-3324/crypto-policies-20150305-1.gitf618101.fc21 6 https://admin.fedoraproject.org/updates/FEDORA-2015-3476/selinux-policy-3.13.1-105.6.fc21 6 https://admin.fedoraproject.org/updates/FEDORA-2015-3379/gstreamer1-plugins-good-1.4.5-2.fc21 6 https://admin.fedoraproject.org/updates/FEDORA-2015-3363/glib-networking-2.42.0-2.fc21 6 https://admin.fedoraproject.org/updates/FEDORA-2015-3489/libgcrypt-1.6.3-1.fc21 6 https://admin.fedoraproject.org/updates/FEDORA-2015-3017/ModemManager-1.4.4-2.fc21,libqmi-1.12.4-2.fc21,libmbim-1.12.0-1.fc21 5 https://admin.fedoraproject.org/updates/FEDORA-2015-3553/python-six-1.9.0-1.fc21 5 https://admin.fedoraproject.org/updates/FEDORA-2015-3556/patch-2.7.5-1.fc21 2 https://admin.fedoraproject.org/updates/FEDORA-2015-3597/elfutils-0.161-6.fc21 2 https://admin.fedoraproject.org/updates/FEDORA-2015-3569/icu-52.1-5.fc21 1 https://admin.fedoraproject.org/updates/FEDORA-2015-3835/system-config-keyboard-1.4.0-6.fc21 1 https://admin.fedoraproject.org/updates/FEDORA-2015-3842/perl-Text-ParseWords-3.30-1.fc21 1 https://admin.fedoraproject.org/updates/FEDORA-2015-3774/control-center-3.14.3-1.fc21 1 https://admin.fedoraproject.org/updates/FEDORA-2015-3679/perl-Encode-2.71-1.fc21 1 https://admin.fedoraproject.org/updates/FEDORA-2015-3730/libwebp-0.4.3-1.fc21 1 https://admin.fedoraproject.org/updates/FEDORA-2015-3797/libssh2-1.5.0-1.fc21 1 https://admin.fedoraproject.org/updates/FEDORA-2015-3595/kde-baseapps-14.12.3-1.fc21,kdelibs-4.14.6-2.fc21,kdepimlibs-4.14.6-1.fc21,kde-runtime-14.12.3-2.fc21,oxygen-icon-theme-14.12.3-1.fc21 0 https://admin.fedoraproject.org/updates/FEDORA-2015-3922/gnome-shell-3.14.3-2.fc21 The following builds have been pushed to Fedora 21 updates-testing DecodeIR-2.45-2.fc21 ahkab-0.12-2.fc21 gnome-shell-3.14.3-2.fc21 mate-desktop-1.8.2-1.fc21 mate-utils-1.8.2-1.fc21 openambit-0.3-3.git5f2b784.fc21 phpMyAdmin-4.3.12-1.fc21 poedit-1.7.5-1.fc21 python-cryptography-0.8-1.fc21 python-cryptography-vectors-0.8-1.fc21 python-docx-0.8.5-2.fc21 python-msgpack-0.4.6-1.fc21 shinken-2.2-2.fc21 spice-html5-0.1.6-1.fc21 tig-2.1-1.fc21 xen-4.4.1-16.fc21 Details about builds: ================================================================================ DecodeIR-2.45-2.fc21 (FEDORA-2015-3929) Infrared remote controls decoding library -------------------------------------------------------------------------------- Update Information: Initial import -------------------------------------------------------------------------------- References: [ 1 ] Bug #1199184 - Review Request: DecodeIR - Infrared remote controls decoding library https://bugzilla.redhat.com/show_bug.cgi?id=1199184 -------------------------------------------------------------------------------- ================================================================================ ahkab-0.12-2.fc21 (FEDORA-2015-3920) A SPICE-like electronic circuit simulator written in Python -------------------------------------------------------------------------------- Update Information: Python 3 version created -------------------------------------------------------------------------------- ChangeLog: * Fri Mar 13 2015 Kiara Navarro <sophiekovalevsky@xxxxxxxxxxxxxxxxx> - 0.12-2 - Python 3 version created -------------------------------------------------------------------------------- ================================================================================ gnome-shell-3.14.3-2.fc21 (FEDORA-2015-3922) Window management and application launching for GNOME -------------------------------------------------------------------------------- Update Information: This update fixes duplicate week numbers in the calendar widget. -------------------------------------------------------------------------------- ChangeLog: * Fri Mar 13 2015 Dan Williams <dcbw@xxxxxxxxxx> - 3.14.3-2 - Fix week number calculation in calendar (BGO #736722) -------------------------------------------------------------------------------- ================================================================================ mate-desktop-1.8.2-1.fc21 (FEDORA-2015-3911) Shared code for mate-panel, mate-session, mate-file-manager, etc -------------------------------------------------------------------------------- Update Information: - update to 1.8.2 release -------------------------------------------------------------------------------- ChangeLog: * Fri Mar 13 2015 Wolfgang Ulbrich <chat-to-me@xxxxxxxxx> - 1.8.2-1 - update to 1.8.2 release - fix bogus date in %changelog - remove conditions for mate-doc-utils -------------------------------------------------------------------------------- ================================================================================ mate-utils-1.8.2-1.fc21 (FEDORA-2015-3921) MATE utility programs -------------------------------------------------------------------------------- Update Information: - update to 1.8.2 release -------------------------------------------------------------------------------- ChangeLog: * Fri Mar 13 2015 Wolfgang Ulbrich <chat-to-me@xxxxxxxxx> - 1.8.2-1 - update to 1.8.2 release -------------------------------------------------------------------------------- ================================================================================ openambit-0.3-3.git5f2b784.fc21 (FEDORA-2015-3924) Open software for the Suunto Ambit(2) -------------------------------------------------------------------------------- Update Information: Rebuild (wireshark). -------------------------------------------------------------------------------- ChangeLog: * Sun Mar 8 2015 Sandro Mani <manisandro@xxxxxxxxx> - 0.3-3.git5f2b784 - Rebuild (wireshark) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1201992 - openambit-wireshark depends on old wireshark https://bugzilla.redhat.com/show_bug.cgi?id=1201992 -------------------------------------------------------------------------------- ================================================================================ phpMyAdmin-4.3.12-1.fc21 (FEDORA-2015-3934) Handle the administration of MySQL over the World Wide Web -------------------------------------------------------------------------------- Update Information: phpMyAdmin 4.3.12.0 (2015-03-14) ================================ - Right-aligned columns have left-aligned header - PMA_Util::parseEnumSetValues fails on enums with UTF-8 values - Undefined index savedsearcheswork - Inline edit of DATE fields with NULL, NULL checkbox is under datepicker - DROP TABLE/VIEW IF EXISTS are not tracked - Compatibility with central columns of version 4.4 - Firefox with auth_type to http with multiple server doesn't work anymore - Views aren't dropped when copying a database - Incomplete bookmark saving - SELECT width on relations page -------------------------------------------------------------------------------- ChangeLog: * Sat Mar 14 2015 Robert Scheck <robert@xxxxxxxxxxxxxxxxx> 4.3.12-1 - Upgrade to 4.3.12 -------------------------------------------------------------------------------- ================================================================================ poedit-1.7.5-1.fc21 (FEDORA-2015-3903) GUI editor for GNU gettext .po files -------------------------------------------------------------------------------- Update Information: New upstream package New upstream version -------------------------------------------------------------------------------- ChangeLog: * Fri Mar 13 2015 Mario Blättermann <mario.blaettermann@xxxxxxxxx> - 1.7.5-1 - New upstream version - Add screenshot URL to appdata file, thanks to Wolfgang Stöggl - Updated German man page * Thu Mar 5 2015 Mario Blättermann <mario.blaettermann@xxxxxxxxx> - 1.7.4-1 - New upstream version -------------------------------------------------------------------------------- ================================================================================ python-cryptography-0.8-1.fc21 (FEDORA-2015-3915) PyCA's cryptography library -------------------------------------------------------------------------------- Update Information: Upstream 0.8 -------------------------------------------------------------------------------- ChangeLog: * Fri Mar 13 2015 Nathaniel McCallum <nathaniel@xxxxxxxxxxxxxxxx> - 0.8-1 - New upstream release - Remove upstreamed patch -------------------------------------------------------------------------------- ================================================================================ python-cryptography-vectors-0.8-1.fc21 (FEDORA-2015-3915) Test vectors for the cryptography package -------------------------------------------------------------------------------- Update Information: Upstream 0.8 -------------------------------------------------------------------------------- ChangeLog: * Fri Mar 13 2015 Nathaniel McCallum <npmccallum@xxxxxxxxxx> - 0.8-1 - New upstream release -------------------------------------------------------------------------------- ================================================================================ python-docx-0.8.5-2.fc21 (FEDORA-2015-3913) Create and update Microsoft Word .docx files -------------------------------------------------------------------------------- Update Information: Fix dependency requirement. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1194576 - Review Request:python-docx - Lib for creating/updating docx files https://bugzilla.redhat.com/show_bug.cgi?id=1194576 -------------------------------------------------------------------------------- ================================================================================ python-msgpack-0.4.6-1.fc21 (FEDORA-2015-3923) A Python MessagePack (de)serializer -------------------------------------------------------------------------------- Update Information: Update to latest upstream release. This fixes a data corruption bug. See the [upstream changelog](https://github.com/msgpack/msgpack-python/blob/master/ChangeLog.rst#046) for more details. -------------------------------------------------------------------------------- ChangeLog: * Fri Mar 13 2015 Ken Dreyer <ktdreyer@xxxxxxxxxxxx> - 0.4.6-1 - Update to latest upstream version 0.4.6 (RHBZ #1201568) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1201568 - python-msgpack-0.4.6 is available https://bugzilla.redhat.com/show_bug.cgi?id=1201568 -------------------------------------------------------------------------------- ================================================================================ shinken-2.2-2.fc21 (FEDORA-2015-3945) Python Monitoring tool -------------------------------------------------------------------------------- Update Information: Fix Bug 1197485 (thanks Jorge Martínez López). -------------------------------------------------------------------------------- ChangeLog: -------------------------------------------------------------------------------- References: [ 1 ] Bug #1197485 - Wrong plugin directory https://bugzilla.redhat.com/show_bug.cgi?id=1197485 -------------------------------------------------------------------------------- ================================================================================ spice-html5-0.1.6-1.fc21 (FEDORA-2015-3910) Pure Javascript SPICE client -------------------------------------------------------------------------------- Update Information: Pavel Grunt: Implement file transfer from client to guest -------------------------------------------------------------------------------- ChangeLog: * Fri Mar 13 2015 Jeremy White <jwhite@xxxxxxxxxxxxxxx> 0.1.6-1 - Pavel Grunt: Implement file transfer from client to guest - Pavel Grunt: Report agent capabilities, handle agent tokens - Pavel Grunt: Use WheelEvent instead of MouseWheelEvent - Frantisek Kobzik: Improve error messages - Report a modern number of tokens -------------------------------------------------------------------------------- ================================================================================ tig-2.1-1.fc21 (FEDORA-2015-3941) Text-mode interface for the git revision control system -------------------------------------------------------------------------------- Update Information: Update to 2.1. -------------------------------------------------------------------------------- ChangeLog: * Fri Mar 13 2015 Jason L Tibbitts III <tibbs@xxxxxxxxxxx> - 2.1-1 - Update to 2.1. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1186676 - Crash when staging a chunk https://bugzilla.redhat.com/show_bug.cgi?id=1186676 -------------------------------------------------------------------------------- ================================================================================ xen-4.4.1-16.fc21 (FEDORA-2015-3944) Xen is a virtual machine monitor -------------------------------------------------------------------------------- Update Information: Additional patch for XSA-98 on arm64 HVM qemu unexpectedly enabling emulated VGA graphics backends [XSA-119, CVE-2015-2152] Hypervisor memory corruption due to x86 emulator flaw [XSA-123, CVE-2015-2151] enable building pngs from fig files which is working again, fix oxenstored.service preset preuninstall script, arm: vgic: incorrect rate limiting of guest triggered logging, Information leak via internal x86 system device emulation, Information leak through version information hypercall -------------------------------------------------------------------------------- ChangeLog: * Fri Mar 13 2015 Michael Young <m.a.young@xxxxxxxxxxxx> - 4.4.1-16 - Additional patch for XSA-98 on arm64 * Thu Mar 12 2015 Michael Young <m.a.young@xxxxxxxxxxxx> - 4.4.1-15 - HVM qemu unexpectedly enabling emulated VGA graphics backends [XSA-119, CVE-2015-2152] (#1201365) * Wed Mar 11 2015 Michael Young <m.a.young@xxxxxxxxxxxx> - 4.4.1-14 - Hypervisor memory corruption due to x86 emulator flaw [XSA-123, CVE-2015-2151] (#1200398) * Thu Mar 5 2015 Michael Young <m.a.young@xxxxxxxxxxxx> - 4.4.1-13 - enable building pngs from fig files which is working again - fix oxenstored.service preset preuninstall script - arm: vgic: incorrect rate limiting of guest triggered logging [XSA-118, CVE-2015-1563] (#1187153) - Information leak via internal x86 system device emulation [XSA-121, CVE-2015-2044] - Information leak through version information hypercall [XSA-122, CVE-2015-2045] -------------------------------------------------------------------------------- References: [ 1 ] Bug #1187153 - CVE-2015-1563 xen: vgic: incorrect rate limiting of guest triggered logging on ARM architectures (XSA-118) https://bugzilla.redhat.com/show_bug.cgi?id=1187153 [ 2 ] Bug #1200724 - CVE-2015-2152 xen: HVM qemu unexpectedly enabling emulated VGA graphics backends (XSA 119) https://bugzilla.redhat.com/show_bug.cgi?id=1200724 [ 3 ] Bug #1196274 - CVE-2015-2151 xen: hypervisor memory corruption due to x86 emulator flaw (xsa123) https://bugzilla.redhat.com/show_bug.cgi?id=1196274 -------------------------------------------------------------------------------- -- test mailing list test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe: https://admin.fedoraproject.org/mailman/listinfo/test
