The following Fedora 20 Security updates need testing: Age URL 115 https://admin.fedoraproject.org/updates/FEDORA-2014-15988/fail2ban-0.9.1-1.fc20 103 https://admin.fedoraproject.org/updates/FEDORA-2014-16845/resteasy-3.0.6-3.fc20 103 https://admin.fedoraproject.org/updates/FEDORA-2014-16825/asterisk-11.14.2-1.fc20 94 https://admin.fedoraproject.org/updates/FEDORA-2014-17089/aeskulap-0.2.2-0.20beta1.fc20,orthanc-0.8.5-2.fc20,dcmtk-3.6.1-1.fc20 71 https://admin.fedoraproject.org/updates/FEDORA-2015-0633/chicken-4.9.0.1-3.fc20 50 https://admin.fedoraproject.org/updates/FEDORA-2015-1648/lcms-1.19-13.fc20 49 https://admin.fedoraproject.org/updates/FEDORA-2015-1718/389-admin-1.1.38-1.fc20 47 https://admin.fedoraproject.org/updates/FEDORA-2015-1790/fcgi-2.4.0-26.fc20 32 https://admin.fedoraproject.org/updates/FEDORA-2015-0951/xdg-utils-1.1.0-0.38.rc3.fc20 28 https://admin.fedoraproject.org/updates/FEDORA-2015-2600/echoping-6.1-0.beta.r434svn.1.fc20 26 https://admin.fedoraproject.org/updates/FEDORA-2015-2826/drupal7-entity-1.6-1.fc20 21 https://admin.fedoraproject.org/updates/FEDORA-2015-3201/xterm-297-2.fc20 17 https://admin.fedoraproject.org/updates/FEDORA-2015-3417/389-ds-base-1.3.2.27-1.fc20 16 https://admin.fedoraproject.org/updates/FEDORA-2015-1165/patch-2.7.5-1.fc20 13 https://admin.fedoraproject.org/updates/FEDORA-2015-3738/ImageMagick-6.8.6.3-6.fc20 13 https://admin.fedoraproject.org/updates/FEDORA-2015-3791/libssh2-1.5.0-1.fc20 7 https://admin.fedoraproject.org/updates/FEDORA-2015-4201/powerpc-utils-python-1.2.1-7.fc20 5 https://admin.fedoraproject.org/updates/FEDORA-2015-4280/drupal7-ctools-1.7-1.fc20 5 https://admin.fedoraproject.org/updates/FEDORA-2015-4216/php-5.5.23-1.fc20 5 https://admin.fedoraproject.org/updates/FEDORA-2015-4228/mingw-xerces-c-3.1.1-9.fc20 5 https://admin.fedoraproject.org/updates/FEDORA-2015-4285/xerces-c-3.1.1-6.fc20 5 https://admin.fedoraproject.org/updates/FEDORA-2015-4315/drupal7-7.35-1.fc20 5 https://admin.fedoraproject.org/updates/FEDORA-2015-4332/texlive-2013-6.20131226_r32488.fc20 4 https://admin.fedoraproject.org/updates/FEDORA-2015-4394/drupal6-6.35-1.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2015-4478/tor-0.2.5.11-1.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2015-4516/glpi-0.84.8-4.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2015-4530/moodle-2.6.10-1.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2015-4486/ca-certificates-2015.2.3-1.0.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2015-4508/drupal7-webform-4.6-1.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2015-4534/python-dulwich-0.10.0-1.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2015-4587/qt5-qtwebkit-5.4.1-4.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2015-4549/osc-0.151.1-163.2.1.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2015-4551/qtwebkit-2.3.4-6.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2015-4672/quassel-0.11.0-2.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2015-4703/mingw-qt5-qtbase-5.4.1-1.fc20,mingw-qt5-qtdeclarative-5.4.1-1.fc20,mingw-qt5-qtgraphicaleffects-5.4.1-1.fc20,mingw-qt5-qtimageformats-5.4.1-1.fc20,mingw-qt5-qtlocation-5.4.1-1.fc20,mingw-qt5-qtmultimedia-5.4.1-1.fc20,mingw-qt5-qtquick1-5.4.1-1.fc20,mingw-qt5-qtscript-5.4.1-1.fc20,mingw-qt5-qtsensors-5.4.1-1.fc20,mingw-qt5-qtsvg-5.4.1-1.fc20,mingw-qt5-qttools-5.4.1-1.fc20,mingw-qt5-qttranslations-5.4.1-1.fc20,mingw-qt5-qtwebkit-5.4.1-1.fc20,mingw-qt5-qtwinextras-5.4.1-1.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2015-4554/rest-0.7.93-1.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2015-4556/libzip-0.11.2-5.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2015-4719/libxml2-2.9.1-4.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2015-4669/mingw-libzip-0.11.2-3.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2015-4693/owncloud-7.0.5-2.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2015-4477/PyYAML-3.10-11.fc20 The following Fedora 20 Critical Path updates have yet to be approved: Age URL 32 https://admin.fedoraproject.org/updates/FEDORA-2015-0951/xdg-utils-1.1.0-0.38.rc3.fc20 13 https://admin.fedoraproject.org/updates/FEDORA-2015-3646/device-mapper-multipath-0.4.9-56.fc20.1 12 https://admin.fedoraproject.org/updates/FEDORA-2015-3896/system-config-keyboard-1.4.0-6.fc20 12 https://admin.fedoraproject.org/updates/FEDORA-2015-3871/perl-Text-ParseWords-3.30-1.fc20 8 https://admin.fedoraproject.org/updates/FEDORA-2015-4077/krb5-1.11.5-19.fc20 7 https://admin.fedoraproject.org/updates/FEDORA-2015-4138/webkitgtk3-2.2.8-3.fc20 4 https://admin.fedoraproject.org/updates/FEDORA-2015-4384/gdisk-1.0.0-1.fc20 4 https://admin.fedoraproject.org/updates/FEDORA-2015-4380/crda-1.1.3_2015.03.13-1.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2015-4486/ca-certificates-2015.2.3-1.0.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2015-4551/qtwebkit-2.3.4-6.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2015-4498/nss-util-3.18.0-1.fc20,nss-softokn-3.18.0-1.fc20,nss-3.18.0-1.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2015-4719/libxml2-2.9.1-4.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2015-4554/rest-0.7.93-1.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2015-4611/lcms2-2.7-1.fc20 The following builds have been pushed to Fedora 20 updates-testing PyYAML-3.10-11.fc20 boom-0.8-1.fc20 ca-certificates-2015.2.3-1.0.fc20 clufter-0.10.3-1.fc20 converseen-0.9.2-1.fc20 darktable-1.6.3-2.fc20 dfuzzer-1.4-1.fc20 dnsenum-1.2.4.2-1.fc20 drupal7-webform-4.6-1.fc20 ezstream-0.6.0-1.fc20 fedmsg-0.12.3-1.fc20 firefox-36.0.4-1.fc20 fldigi-3.22.06-1.fc20 flrig-1.3.20-1.fc20 glpi-0.84.8-4.fc20 golang-github-docopt-docopt-go-0-0.1.git.854c423.fc20 hwdata-0.276-1.fc20 julia-0.3.7-1.fc20 lcms2-2.7-1.fc20 libteam-1.16-1.fc20 libxml2-2.9.1-4.fc20 libzip-0.11.2-5.fc20 mingw-libzip-0.11.2-3.fc20 mingw-qt5-qtbase-5.4.1-1.fc20 mingw-qt5-qtdeclarative-5.4.1-1.fc20 mingw-qt5-qtgraphicaleffects-5.4.1-1.fc20 mingw-qt5-qtimageformats-5.4.1-1.fc20 mingw-qt5-qtlocation-5.4.1-1.fc20 mingw-qt5-qtmultimedia-5.4.1-1.fc20 mingw-qt5-qtquick1-5.4.1-1.fc20 mingw-qt5-qtscript-5.4.1-1.fc20 mingw-qt5-qtsensors-5.4.1-1.fc20 mingw-qt5-qtsvg-5.4.1-1.fc20 mingw-qt5-qttools-5.4.1-1.fc20 mingw-qt5-qttranslations-5.4.1-1.fc20 mingw-qt5-qtwebkit-5.4.1-1.fc20 mingw-qt5-qtwinextras-5.4.1-1.fc20 mingw-wine-gecko-2.36-1.fc20 moodle-2.6.10-1.fc20 nss-3.18.0-1.fc20 nss-softokn-3.18.0-1.fc20 nss-util-3.18.0-1.fc20 osc-0.151.1-163.2.1.fc20 owncloud-7.0.5-2.fc20 peervpn-0.042-1.fc20 perl-Devel-CallChecker-0.007-1.fc20 perl-MCE-1.604-1.fc20 pymodbus-1.2.0-1.fc20 python-dulwich-0.10.0-1.fc20 python-fedmsg-meta-fedora-infrastructure-0.4.7-1.fc20 python-fmn-consumer-0.5.0-1.fc20 python-fmn-lib-0.5.0-1.fc20 python-fmn-rules-0.5.0-1.fc20 python-fmn-web-0.5.0-1.fc20 python-x2go-0.5.0.3-1.fc20 python-yubico-1.2.3-1.fc20 qsstv-8.2.11-1.fc20 qt5-qtwebkit-5.4.1-4.fc20 qtwebkit-2.3.4-6.fc20 quassel-0.11.0-2.fc20 rest-0.7.93-1.fc20 scap-workbench-1.1.0-1.fc20 srm-1.2.15-1.fc20 texstudio-2.9.4-1.fc20 thunderbird-enigmail-1.8.1-1.fc20 tor-0.2.5.11-1.fc20 ugene-1.16.1-1.fc20 vrq-1.0.103-1.fc20 whois-5.2.6-2.fc20 wine-1.7.39-1.fc20 wine-mono-4.5.6-1.fc20 xen-4.3.4-1.fc20 Details about builds: ================================================================================ PyYAML-3.10-11.fc20 (FEDORA-2015-4477) YAML parser and emitter for Python -------------------------------------------------------------------------------- Update Information: Security fix for CVE-2014-9130 -------------------------------------------------------------------------------- ChangeLog: * Mon Mar 23 2015 John Eckersberg <eck@xxxxxxxxxx> - 3.10-11 - Add patch for CVE-2014-9130 (bug 1204829) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1204829 - PyYAML: assert failure when processing wrapped strings https://bugzilla.redhat.com/show_bug.cgi?id=1204829 -------------------------------------------------------------------------------- ================================================================================ boom-0.8-1.fc20 (FEDORA-2015-4503) Simple HTTP Load tester -------------------------------------------------------------------------------- Update Information: Latest upstream. -------------------------------------------------------------------------------- ChangeLog: * Mon Mar 23 2015 Ralph Bean <rbean@xxxxxxxxxx> - 0.8-1 - new version * Tue Dec 16 2014 Ralph Bean <rbean@xxxxxxxxxx> - 0.8-1 - Latest upstream. - Include license file. - Require python-unittest2 - Try to patch out unittest2. * Sat Jun 7 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.5-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ ca-certificates-2015.2.3-1.0.fc20 (FEDORA-2015-4486) The Mozilla CA root certificate bundle -------------------------------------------------------------------------------- Update Information: This is an update to the set of CA certificates released with NSS version 3.18 However, the package modifies the CA list to keep several legacy CAs still trusted for compatibility reasons. Please refer to the project URL for details. If you prefer to use the unchanged list provided by Mozilla, and if you accept any compatibility issues it may cause, an administrator may configure the system by executing the "ca-legacy disable" command. This update corrects the Fedora legacy classification of four root CA certificates, which had trust added or removed in the upstream 2.1 and 2.2 releases. -------------------------------------------------------------------------------- ChangeLog: * Tue Mar 24 2015 Kai Engert <kaie@xxxxxxxxxx> - 2015.2.3-1.0 - Update to CKBI 2.3 from NSS 3.18 with legacy modifications - Fixed a mistake in the legacy handling of the upstream 2.2 release: Removed two AOL certificates from the legacy group, because upstream didn't remove them as part of phasing out 1024-bit certificates, which means it isn't necessary to keep them. - Fixed a mistake in the legacy handling of the upstream 2.1 release: Moved two NetLock certificates into the legacy group. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1205305 - Update to version 2.3 as released with NSS 3.18 https://bugzilla.redhat.com/show_bug.cgi?id=1205305 [ 2 ] Bug #1205302 - Fix the legacy CA inclusions of upstream 2.1 and 2.2 https://bugzilla.redhat.com/show_bug.cgi?id=1205302 -------------------------------------------------------------------------------- ================================================================================ clufter-0.10.3-1.fc20 (FEDORA-2015-4645) Tool/library for transforming/analyzing cluster configuration formats -------------------------------------------------------------------------------- Update Information: bump upstream package bump upstream package, add dependency on python-setuptools -------------------------------------------------------------------------------- ChangeLog: * Mon Mar 23 2015 Jan Pokorný <jpokorny+rpm-clufter@xxxxxxxxxxxxxxxxx> - 0.10.3-1 - bump upstream package * Tue Mar 17 2015 Jan Pokorný <jpokorny+rpm-clufter@xxxxxxxxxxxxxxxxx> - 0.10.2-1 - bump upstream package - add dependency on python-setuptools -------------------------------------------------------------------------------- ================================================================================ converseen-0.9.2-1.fc20 (FEDORA-2015-4653) A batch image conversion tool written in C++ with Qt4 and Magick++ -------------------------------------------------------------------------------- Update Information: Rebuilt for new upstream version 0.9.2, fixes rhbz #1204537 Rebuilt for new upstream version 0.9.1, fixes rhbz #1199061, #1197790 Rebuilt for new upstream version 0.9.0, fixes rhbz #1170952 Rebuilt for new upstream version 0.8.4, fixes rhbz #1148306 -------------------------------------------------------------------------------- ChangeLog: * Mon Mar 23 2015 Filipe Rosset <rosset.filipe@xxxxxxxxx> - 0.9.2-1 - Rebuilt for new upstream version 0.9.2, fixes rhbz #1204537 * Mon Mar 9 2015 Filipe Rosset <rosset.filipe@xxxxxxxxx> - 0.9.1-1 - Rebuilt for new upstream version 0.9.1, fixes rhbz #1199061, #1197790 * Wed Feb 18 2015 Filipe Rosset <rosset.filipe@xxxxxxxxx> - 0.9.0-1 - Rebuilt for new upstream version 0.9.0, fixes rhbz #1170952 * Thu Oct 2 2014 Filipe Rosset <rosset.filipe@xxxxxxxxx> - 0.8.4-1 - Rebuilt for new upstream version 0.8.4, fixes rhbz #1148306 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1204537 - converseen-0.9.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=1204537 [ 2 ] Bug #1199061 - converseen-0.9.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1199061 [ 3 ] Bug #1197790 - [abrt] converseen: ref(): converseen killed by SIGSEGV https://bugzilla.redhat.com/show_bug.cgi?id=1197790 [ 4 ] Bug #1170952 - converseen-0.9.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1170952 [ 5 ] Bug #1148306 - converseen-0.8.4 is available https://bugzilla.redhat.com/show_bug.cgi?id=1148306 -------------------------------------------------------------------------------- ================================================================================ darktable-1.6.3-2.fc20 (FEDORA-2015-4705) Utility to organize and develop raw images -------------------------------------------------------------------------------- Update Information: Backport of patch https://github.com/darktable-org/darktable/commit/826152bc3564e74133680cc53e69e040d3663b47 for bug http://www.darktable.org/redmine/issues/10370 -------------------------------------------------------------------------------- ChangeLog: * Wed Mar 18 2015 Germano Massullo <germano.massullo@xxxxxxxxx> - 1.6.3-2 - Backport of fix for bugreport #1202105 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1202105 - Unable to work with Canon EOS Rebel images using darktable 1.6 https://bugzilla.redhat.com/show_bug.cgi?id=1202105 -------------------------------------------------------------------------------- ================================================================================ dfuzzer-1.4-1.fc20 (FEDORA-2015-4582) D-Bus fuzz testing tool -------------------------------------------------------------------------------- Update Information: Initial version of the package -------------------------------------------------------------------------------- References: [ 1 ] Bug #985753 - Review Request: dfuzzer - Fuzzer for processes connected to D-Bus https://bugzilla.redhat.com/show_bug.cgi?id=985753 -------------------------------------------------------------------------------- ================================================================================ dnsenum-1.2.4.2-1.fc20 (FEDORA-2015-4737) A tool to enumerate DNS info about domains -------------------------------------------------------------------------------- Update Information: Update to latest upstream release 1.2.4.2 -------------------------------------------------------------------------------- ChangeLog: * Mon Mar 23 2015 Fabian Affolter <mail@xxxxxxxxxxxxxxxxxx> - 1.2.4.2-1 - Update to latest upstream release 1.2.4.2 -------------------------------------------------------------------------------- ================================================================================ drupal7-webform-4.6-1.fc20 (FEDORA-2015-4508) Webform is the module for making surveys in Drupal -------------------------------------------------------------------------------- Update Information: - Security fix for drupal7-webform module - Upstream release notes: https://www.drupal.org/node/2457219 - Release notes can be found at https://www.drupal.org/node/2454063 - Update to 4.3 - Release notes can be found at https://www.drupal.org/node/2427257 - Update to 4.2 - Release notes can be found at https://www.drupal.org/node/2381793 -------------------------------------------------------------------------------- ChangeLog: * Mon Mar 23 2015 Peter Borsa <peter.borsa@xxxxxxxxx> 4.6-1 - Update to 4.6 - Release notes can be found at https://www.drupal.org/node/2457219 * Fri Mar 20 2015 Peter Borsa <peter.borsa@xxxxxxxxx> 4.5-1 - Update to 4.5 - Release notes can be found at https://www.drupal.org/node/2454063 * Fri Feb 20 2015 Peter Borsa <peter.borsa@xxxxxxxxx> 4.3-1 - Update to 4.3 - Release notes can be found at https://www.drupal.org/node/2427257 * Tue Dec 23 2014 Peter Borsa <peter.borsa@xxxxxxxxx> 4.2-1 - Update to 4.2 - Release notes can be found at https://www.drupal.org/node/2381793 * Tue Nov 25 2014 Peter Borsa <peter.borsa@xxxxxxxxx> 4.1-1 - Update to 4.1 - Release notes can be found at https://www.drupal.org/node/2351973 * Sat Jun 7 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 4.0-0.3.beta3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1205122 - drupal webform: multiple XSS flaws https://bugzilla.redhat.com/show_bug.cgi?id=1205122 -------------------------------------------------------------------------------- ================================================================================ ezstream-0.6.0-1.fc20 (FEDORA-2015-4709) Command line source client for Icecast media streaming servers -------------------------------------------------------------------------------- Update Information: This release fixes security bug leading to remote shell command execution when processing malicous metadata. Users must remove double quotes around metadata placeholders in encode and decode elements in configuration files to complete the fix on their system. This release also fixes an infinite loop when stopping to send data to standard input. This relase adds new metadata_refreshinterval configuation directive and "-m" positional argument to control metadata updates. Also this release corrects license declaration to (GPLv2 and BSD and MIT). -------------------------------------------------------------------------------- ChangeLog: * Tue Mar 24 2015 Petr Pisar <ppisar@xxxxxxxxxx> - 0.6.0-1 - Modernize spec file - Correct dependencies - Correct license tag from (GPLv2) to (GPLv2 and BSD and MIT) - 0.6.0 bump (fixes a security bug when processing metadata placeholders leading to arbitrary shell command execution) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1205049 - New upstream release of ezstream - 0.6.0 (security) https://bugzilla.redhat.com/show_bug.cgi?id=1205049 -------------------------------------------------------------------------------- ================================================================================ fedmsg-0.12.3-1.fc20 (FEDORA-2015-4524) Tools for Fedora Infrastructure real-time messaging -------------------------------------------------------------------------------- Update Information: Improvements to test suite fixtures. Base Conglomerator api consistency improved. -------------------------------------------------------------------------------- ChangeLog: * Tue Mar 24 2015 Ralph Bean <rbean@xxxxxxxxxx> - 0.12.3-1 - new version * Sun Mar 22 2015 Ralph Bean <rbean@xxxxxxxxxx> - 0.12.2-2 - No longer package compiled py files in /etc/fedmsg.d/ -------------------------------------------------------------------------------- ================================================================================ firefox-36.0.4-1.fc20 (FEDORA-2015-4732) Mozilla Firefox Web browser -------------------------------------------------------------------------------- Update Information: New upstream - 36.0.4. -------------------------------------------------------------------------------- ChangeLog: * Sat Mar 21 2015 Martin Stransky <stransky@xxxxxxxxxx> - 36.0.4-1 - Update to 36.0.4 * Fri Mar 20 2015 Martin Stransky <stransky@xxxxxxxxxx> - 36.0.3-1 - Update to 36.0.3 * Tue Mar 17 2015 Martin Stransky <stransky@xxxxxxxxxx> - 36.0.1-6 - Fixed rhbz#1201527 - [GTK3] Scrollbars in Firefox are not consistent with the rest of the desktop * Tue Mar 10 2015 Martin Stransky <stransky@xxxxxxxxxx> - 36.0.1-5 - Arm build fix * Mon Mar 9 2015 Jan Horak <jhorak@xxxxxxxxxx> - 36.0.1-1 - Update to 36.0.1 * Fri Mar 6 2015 Martin Stransky <stransky@xxxxxxxxxx> - 36.0-4 - ppc64le build fix * Thu Mar 5 2015 Martin Stransky <stransky@xxxxxxxxxx> - 36.0-3 - Added back the removed "-remote" option - Fixed rhbz#1198965 - mozilla-xremote-client has been removed, langpack installation may be broken * Tue Mar 3 2015 Martin Stransky <stransky@xxxxxxxxxx> - 36.0-2 - Enable Skia for all arches (rhbz#1197007) -------------------------------------------------------------------------------- ================================================================================ fldigi-3.22.06-1.fc20 (FEDORA-2015-4563) Digital modem program for Linux -------------------------------------------------------------------------------- Update Information: New bugfix release, see the following for a complete list of changes: http://www.w1hkj.com/downloads/fldigi/fldigi_changes.txt -------------------------------------------------------------------------------- ChangeLog: * Sun Mar 22 2015 Richard Shaw <hobbes1069@xxxxxxxxx> - 3.22.06-1 - Update to latest upstream release. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1204471 - fldigi-3.22.06 is available https://bugzilla.redhat.com/show_bug.cgi?id=1204471 -------------------------------------------------------------------------------- ================================================================================ flrig-1.3.20-1.fc20 (FEDORA-2015-4563) Transceiver control program -------------------------------------------------------------------------------- Update Information: New bugfix release, see the following for a complete list of changes: http://www.w1hkj.com/downloads/fldigi/fldigi_changes.txt -------------------------------------------------------------------------------- ChangeLog: * Sun Mar 22 2015 Richard Shaw <hobbes1069@xxxxxxxxx> - 1.3.20-1 - Update to latest upstream release. * Thu Feb 19 2015 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 1.3.19-2 - rebuild (fltk) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1204471 - fldigi-3.22.06 is available https://bugzilla.redhat.com/show_bug.cgi?id=1204471 -------------------------------------------------------------------------------- ================================================================================ glpi-0.84.8-4.fc20 (FEDORA-2015-4516) Free IT asset management software -------------------------------------------------------------------------------- Update Information: * Fix privilege escalation via user creation with a crafted POST request -------------------------------------------------------------------------------- ChangeLog: * Tue Mar 24 2015 Remi Collet <remi@xxxxxxxxxxxxxxxxx> - 0.84.8-4 - add security fix https://forge.indepnet.net/issues/5218 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1194196 - glpi: privilege escalation via user creation with a crafted POST request https://bugzilla.redhat.com/show_bug.cgi?id=1194196 -------------------------------------------------------------------------------- ================================================================================ golang-github-docopt-docopt-go-0-0.1.git.854c423.fc20 (FEDORA-2015-4714) Command-line interface description language in Go -------------------------------------------------------------------------------- Update Information: Command-line interface description language in Go -------------------------------------------------------------------------------- References: [ 1 ] Bug #1203167 - Review Request: golang-github-docopt-docopt-go - Command-line interface description language in Go https://bugzilla.redhat.com/show_bug.cgi?id=1203167 -------------------------------------------------------------------------------- ================================================================================ hwdata-0.276-1.fc20 (FEDORA-2015-4676) Hardware identification and configuration data -------------------------------------------------------------------------------- Update Information: Updated pci, usb and vendor ids. -------------------------------------------------------------------------------- ChangeLog: * Tue Mar 24 2015 Michal Minar <miminar@xxxxxxxxxx> 0.276-1 - Updated pci, usb and vendor ids. -------------------------------------------------------------------------------- ================================================================================ julia-0.3.7-1.fc20 (FEDORA-2015-4706) High-level, high-performance dynamic language for technical computing -------------------------------------------------------------------------------- Update Information: New upstream release. -------------------------------------------------------------------------------- ChangeLog: * Tue Mar 24 2015 Milan Bouchet-Valat <nalimilan@xxxxxxx> - 0.3.7-1 - New upstream release. -------------------------------------------------------------------------------- ================================================================================ lcms2-2.7-1.fc20 (FEDORA-2015-4611) Color Management Engine -------------------------------------------------------------------------------- Update Information: Update to new upstream version. - Added a flag to clip negative values in unbounded transforms - Added a global optimization that merges consecutive matrices in pipelines. -------------------------------------------------------------------------------- ChangeLog: * Sun Mar 22 2015 Richard Hughes <richard@xxxxxxxxxxx> - 2.7-1 - Update to new upstream version. - Added a flag to clip negative values in unbounded transforms - Added a global optimization that merges consecutive matrices in pipelines. -------------------------------------------------------------------------------- ================================================================================ libteam-1.16-1.fc20 (FEDORA-2015-4495) Library for controlling team network device -------------------------------------------------------------------------------- Update Information: 1.16 release teamd: events: update ctx->hwaddr_len before calling hwaddr_changed handlers teamd: do not change ctx->hwaddr pointer teamd: lacp: change port mac address when team mac address is changed teamdctl: show port link down count in state output teamd: lw: count how many times has been the port down init unitialized value to 0/NULL to silence gcc warnings instead of x=x libteamdctl: rename recvmsg variable to recv_message teamd: check retval of malloc in lw_tipc_link_state_change teamd: fix potential memory leak in __set_sockaddr error path libteamdctl: fix typo in warning message in cli_zmq_recv libteam: check phys_port_id_len in update_phys_port_id teamnl: fix potential memory leak in run_cmd_getoption -------------------------------------------------------------------------------- ChangeLog: * Tue Mar 24 2015 Jiri Pirko <jpirko@xxxxxxxxxx> - 1.16-1 - 1.16 release - teamd: events: update ctx->hwaddr_len before calling hwaddr_changed handlers - teamd: do not change ctx->hwaddr pointer - teamd: lacp: change port mac address when team mac address is changed - teamdctl: show port link down count in state output - teamd: lw: count how many times has been the port down - init unitialized value to 0/NULL to silence gcc warnings instead of x=x - libteamdctl: rename recvmsg variable to recv_message - teamd: check retval of malloc in lw_tipc_link_state_change - teamd: fix potential memory leak in __set_sockaddr error path - libteamdctl: fix typo in warning message in cli_zmq_recv - libteam: check phys_port_id_len in update_phys_port_id - teamnl: fix potential memory leak in run_cmd_getoption * Sat Feb 21 2015 Till Maas <opensource@xxxxxxxxx> - 1.15-2 - Rebuilt for Fedora 23 Change https://fedoraproject.org/wiki/Changes/Harden_all_packages_with_position-independent_code -------------------------------------------------------------------------------- ================================================================================ libxml2-2.9.1-4.fc20 (FEDORA-2015-4719) Library providing XML and HTML support -------------------------------------------------------------------------------- Update Information: fixes built in also added a couple of other entities related pacthes including a fix to CVE-2014-3660 -------------------------------------------------------------------------------- ChangeLog: * Mon Mar 23 2015 Daniel Veillard <veillard@xxxxxxxxxx> - 2.9.1-4 - Stop parsing on entities boundaries errors - Fix missing entities after CVE-2014-3660 fix - Do not fetch external parameter entities (CVE-2014-0191) - Fix missing entities after CVE-2014-3660 fix -------------------------------------------------------------------------------- References: [ 1 ] Bug #1090976 - CVE-2014-0191 libxml2: external parameter entity loaded when entity substitution is disabled https://bugzilla.redhat.com/show_bug.cgi?id=1090976 -------------------------------------------------------------------------------- ================================================================================ libzip-0.11.2-5.fc20 (FEDORA-2015-4556) C library for reading, creating, and modifying zip archives -------------------------------------------------------------------------------- Update Information: CVE-2015-2331: integer overflow when processing ZIP archives (#1204676,#1204677) -------------------------------------------------------------------------------- ChangeLog: * Mon Mar 23 2015 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 0.11.2-5 - actually apply patch (using %autosetup) * Mon Mar 23 2015 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 0.11.2-4 - CVE-2015-2331: integer overflow when processing ZIP archives (#1204676,#1204677) * Sun Aug 17 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.11.2-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild * Sat Jun 7 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.11.2-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1204676 - CVE-2015-2331 php: libzip: integer overflow when processing ZIP archives https://bugzilla.redhat.com/show_bug.cgi?id=1204676 -------------------------------------------------------------------------------- ================================================================================ mingw-libzip-0.11.2-3.fc20 (FEDORA-2015-4669) C library for reading, creating, and modifying zip archives -------------------------------------------------------------------------------- Update Information: Security fix for CVE-2015-2331. -------------------------------------------------------------------------------- ChangeLog: * Mon Mar 23 2015 Sandro Mani <manisandro@xxxxxxxxx> - 0.11.2-3 - CVE-2015-2331: integer overflow when processing ZIP archives (#1204676,#1204677) * Sat Jun 7 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.11.2-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1204676 - CVE-2015-2331 php: libzip: integer overflow when processing ZIP archives https://bugzilla.redhat.com/show_bug.cgi?id=1204676 -------------------------------------------------------------------------------- ================================================================================ mingw-qt5-qtbase-5.4.1-1.fc20 (FEDORA-2015-4703) Qt5 for Windows - QtBase component -------------------------------------------------------------------------------- Update Information: Update to Qt 5.4.1 -------------------------------------------------------------------------------- ChangeLog: * Sun Mar 8 2015 Erik van Pienbroek <epienbro@xxxxxxxxxxxxxxxxx> - 5.4.1-1 - Update to 5.4.1 - Added some more BuildRequires for mingw*-static libraries as the ./configure script now needs them to be available in the buildroot - Fix detection of the static dbus and harfbuzz libraries * Mon Jan 26 2015 Erik van Pienbroek <epienbro@xxxxxxxxxxxxxxxxx> - 5.4.0-4 - Rebuild against mingw-w64 v4.0rc1 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1204798 - mingw-qt5-qtwebkit: qt5-qtwebkit: QtWebKit logs visited URLs to WebpageIcons.db in private browsing mode [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1204798 -------------------------------------------------------------------------------- ================================================================================ mingw-qt5-qtdeclarative-5.4.1-1.fc20 (FEDORA-2015-4703) Qt5 for Windows - QtDeclarative component -------------------------------------------------------------------------------- Update Information: Update to Qt 5.4.1 -------------------------------------------------------------------------------- ChangeLog: * Sat Mar 21 2015 Erik van Pienbroek <epienbro@xxxxxxxxxxxxxxxxx> - 5.4.1-1 - Update to 5.4.1 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1204798 - mingw-qt5-qtwebkit: qt5-qtwebkit: QtWebKit logs visited URLs to WebpageIcons.db in private browsing mode [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1204798 -------------------------------------------------------------------------------- ================================================================================ mingw-qt5-qtgraphicaleffects-5.4.1-1.fc20 (FEDORA-2015-4703) Qt5 for Windows - QtGraphicalEffects component -------------------------------------------------------------------------------- Update Information: Update to Qt 5.4.1 -------------------------------------------------------------------------------- ChangeLog: * Sun Mar 22 2015 Erik van Pienbroek <epienbro@xxxxxxxxxxxxxxxxx> - 5.4.1-1 - Update to 5.4.1 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1204798 - mingw-qt5-qtwebkit: qt5-qtwebkit: QtWebKit logs visited URLs to WebpageIcons.db in private browsing mode [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1204798 -------------------------------------------------------------------------------- ================================================================================ mingw-qt5-qtimageformats-5.4.1-1.fc20 (FEDORA-2015-4703) Qt5 for Windows - QtImageFormats component -------------------------------------------------------------------------------- Update Information: Update to Qt 5.4.1 -------------------------------------------------------------------------------- ChangeLog: * Sun Mar 22 2015 Erik van Pienbroek <epienbro@xxxxxxxxxxxxxxxxx> - 5.4.1-1 - Update to 5.4.1 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1204798 - mingw-qt5-qtwebkit: qt5-qtwebkit: QtWebKit logs visited URLs to WebpageIcons.db in private browsing mode [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1204798 -------------------------------------------------------------------------------- ================================================================================ mingw-qt5-qtlocation-5.4.1-1.fc20 (FEDORA-2015-4703) Qt5 for Windows - QtLocation component -------------------------------------------------------------------------------- Update Information: Update to Qt 5.4.1 -------------------------------------------------------------------------------- ChangeLog: * Sun Mar 22 2015 Erik van Pienbroek <epienbro@xxxxxxxxxxxxxxxxx> - 5.4.1-1 - Update to 5.4.1 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1204798 - mingw-qt5-qtwebkit: qt5-qtwebkit: QtWebKit logs visited URLs to WebpageIcons.db in private browsing mode [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1204798 -------------------------------------------------------------------------------- ================================================================================ mingw-qt5-qtmultimedia-5.4.1-1.fc20 (FEDORA-2015-4703) Qt5 for Windows - QtMultimedia component -------------------------------------------------------------------------------- Update Information: Update to Qt 5.4.1 -------------------------------------------------------------------------------- ChangeLog: * Sun Mar 22 2015 Erik van Pienbroek <epienbro@xxxxxxxxxxxxxxxxx> - 5.4.1-1 - Update to 5.4.1 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1204798 - mingw-qt5-qtwebkit: qt5-qtwebkit: QtWebKit logs visited URLs to WebpageIcons.db in private browsing mode [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1204798 -------------------------------------------------------------------------------- ================================================================================ mingw-qt5-qtquick1-5.4.1-1.fc20 (FEDORA-2015-4703) Qt5 for Windows - QtQuick1 component -------------------------------------------------------------------------------- Update Information: Update to Qt 5.4.1 -------------------------------------------------------------------------------- ChangeLog: * Mon Mar 23 2015 Erik van Pienbroek <epienbro@xxxxxxxxxxxxxxxxx> - 5.4.1-1 - Update to 5.4.1 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1204798 - mingw-qt5-qtwebkit: qt5-qtwebkit: QtWebKit logs visited URLs to WebpageIcons.db in private browsing mode [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1204798 -------------------------------------------------------------------------------- ================================================================================ mingw-qt5-qtscript-5.4.1-1.fc20 (FEDORA-2015-4703) Qt5 for Windows - QtScript component -------------------------------------------------------------------------------- Update Information: Update to Qt 5.4.1 -------------------------------------------------------------------------------- ChangeLog: * Sun Mar 22 2015 Erik van Pienbroek <epienbro@xxxxxxxxxxxxxxxxx> - 5.4.1-1 - Update to 5.4.1 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1204798 - mingw-qt5-qtwebkit: qt5-qtwebkit: QtWebKit logs visited URLs to WebpageIcons.db in private browsing mode [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1204798 -------------------------------------------------------------------------------- ================================================================================ mingw-qt5-qtsensors-5.4.1-1.fc20 (FEDORA-2015-4703) Qt5 for Windows - QtSensors component -------------------------------------------------------------------------------- Update Information: Update to Qt 5.4.1 -------------------------------------------------------------------------------- ChangeLog: * Sun Mar 22 2015 Erik van Pienbroek <epienbro@xxxxxxxxxxxxxxxxx> - 5.4.1-1 - Update to 5.4.1 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1204798 - mingw-qt5-qtwebkit: qt5-qtwebkit: QtWebKit logs visited URLs to WebpageIcons.db in private browsing mode [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1204798 -------------------------------------------------------------------------------- ================================================================================ mingw-qt5-qtsvg-5.4.1-1.fc20 (FEDORA-2015-4703) Qt5 for Windows - QtSvg component -------------------------------------------------------------------------------- Update Information: Update to Qt 5.4.1 -------------------------------------------------------------------------------- ChangeLog: * Sun Mar 22 2015 Erik van Pienbroek <epienbro@xxxxxxxxxxxxxxxxx> - 5.4.1-1 - Update to 5.4.1 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1204798 - mingw-qt5-qtwebkit: qt5-qtwebkit: QtWebKit logs visited URLs to WebpageIcons.db in private browsing mode [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1204798 -------------------------------------------------------------------------------- ================================================================================ mingw-qt5-qttools-5.4.1-1.fc20 (FEDORA-2015-4703) Qt5 for Windows - QtTools component -------------------------------------------------------------------------------- Update Information: Update to Qt 5.4.1 -------------------------------------------------------------------------------- ChangeLog: * Sat Mar 21 2015 Erik van Pienbroek <epienbro@xxxxxxxxxxxxxxxxx> - 5.4.1-1 - Update to 5.4.1 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1204798 - mingw-qt5-qtwebkit: qt5-qtwebkit: QtWebKit logs visited URLs to WebpageIcons.db in private browsing mode [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1204798 -------------------------------------------------------------------------------- ================================================================================ mingw-qt5-qttranslations-5.4.1-1.fc20 (FEDORA-2015-4703) Qt5 for Windows - QtTranslations component -------------------------------------------------------------------------------- Update Information: Update to Qt 5.4.1 -------------------------------------------------------------------------------- ChangeLog: * Sun Mar 22 2015 Erik van Pienbroek <epienbro@xxxxxxxxxxxxxxxxx> - 5.4.1-1 - Update to 5.4.1 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1204798 - mingw-qt5-qtwebkit: qt5-qtwebkit: QtWebKit logs visited URLs to WebpageIcons.db in private browsing mode [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1204798 -------------------------------------------------------------------------------- ================================================================================ mingw-qt5-qtwebkit-5.4.1-1.fc20 (FEDORA-2015-4703) Qt5 for Windows - QtWebKit component -------------------------------------------------------------------------------- Update Information: Update to Qt 5.4.1 -------------------------------------------------------------------------------- ChangeLog: * Sun Mar 22 2015 Erik van Pienbroek <epienbro@xxxxxxxxxxxxxxxxx> - 5.4.1-1 - Update to 5.4.1 - Fix URLs visited during private browsing showing up in WebpageIcons.db (RHBZ #1204798 #1204799) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1204798 - mingw-qt5-qtwebkit: qt5-qtwebkit: QtWebKit logs visited URLs to WebpageIcons.db in private browsing mode [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1204798 -------------------------------------------------------------------------------- ================================================================================ mingw-qt5-qtwinextras-5.4.1-1.fc20 (FEDORA-2015-4703) Qt5 for Windows - QtWinExtras component -------------------------------------------------------------------------------- Update Information: Update to Qt 5.4.1 -------------------------------------------------------------------------------- ChangeLog: * Sun Mar 22 2015 Erik van Pienbroek <epienbro@xxxxxxxxxxxxxxxxx> - 5.4.1-1 - Update to 5.4.1 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1204798 - mingw-qt5-qtwebkit: qt5-qtwebkit: QtWebKit logs visited URLs to WebpageIcons.db in private browsing mode [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1204798 -------------------------------------------------------------------------------- ================================================================================ mingw-wine-gecko-2.36-1.fc20 (FEDORA-2015-1896) Gecko library required for Wine -------------------------------------------------------------------------------- Update Information: Version 1.7.39 * WinMM joystick support on Mac OS X. * Kerning support in DirectWrite. * Support for DirectX Media Objects filters. * Better support for animated GIFs in GdiPlus. * Improved support for Known Folders in Shell32. * Various bug fixes. Version 1.7.38 * New version of the Gecko engine based on Firefox 36. * Support for themed scrollbars. * Updated version of the Mono engine. * More compatible RPC interface for service control. * Support for X Drag & Drop version 5. * Threading fixes in IME support. * Various bug fixes. Version 1.7.37 * Interface change notifications. * Support for the UTF-7 encoding. * A number of graphical fixes for themed controls. * Wininet now implemented on top of Win32 sockets. * Various bug fixes. Version 1.7.36 * Some preliminary 64-bit support for Mac OS X. * Support for configuring speakers in Winecfg. * Improved support for Mac OS X Trash folder. * Support for typographic features in DirectWrite. * Various bug fixes. -------------------------------------------------------------------------------- ChangeLog: * Fri Mar 6 2015 Michael Cronenworth <mike@xxxxxxxxxx> - 2.36-1 - version upgrade -------------------------------------------------------------------------------- References: [ 1 ] Bug #1190445 - wine-1.7.36 is available https://bugzilla.redhat.com/show_bug.cgi?id=1190445 [ 2 ] Bug #1199688 - wine-1.7.38 is available https://bugzilla.redhat.com/show_bug.cgi?id=1199688 [ 3 ] Bug #1110419 - wine crashes due to misuse of stack smashing detection https://bugzilla.redhat.com/show_bug.cgi?id=1110419 [ 4 ] Bug #1204327 - wine-1.7.39 is available https://bugzilla.redhat.com/show_bug.cgi?id=1204327 -------------------------------------------------------------------------------- ================================================================================ moodle-2.6.10-1.fc20 (FEDORA-2015-4530) A Course Management System -------------------------------------------------------------------------------- Update Information: Update to latest versions of the respective branches. f20 has been updated from 2.5.x to 2.6.x because 2.5.x is EOL. -------------------------------------------------------------------------------- ChangeLog: * Tue Mar 24 2015 Jon Ciesla <limburgher@xxxxxxxxx> - 2.6.10-1 - 2.6.10, fix for security issues, 2.5.x EOL. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1203205 - CVE-2015-2269 CVE-2015-2268 CVE-2015-2267 CVE-2015-2266 CVE-2015-2272 CVE-2015-2273 CVE-2015-2270 CVE-2015-2271 moodle: multiple flaws in moodle [epel-6] https://bugzilla.redhat.com/show_bug.cgi?id=1203205 [ 2 ] Bug #1190119 - CVE-2015-1493 moodle: Directory Traversal Attack possible through some files serving JS (MSA-15-0009) [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1190119 [ 3 ] Bug #1203203 - CVE-2015-2269 CVE-2015-2268 CVE-2015-2267 CVE-2015-2266 CVE-2015-2272 CVE-2015-2273 CVE-2015-2270 CVE-2015-2271 moodle: multiple flaws in moodle [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1203203 -------------------------------------------------------------------------------- ================================================================================ nss-3.18.0-1.fc20 (FEDORA-2015-4498) Network Security Services -------------------------------------------------------------------------------- Update Information: Update of the nss, nss-softokn, and nss-util packages to nss-3.18. For a description of new features and fixes with this release please see the upstream release notes at https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.18_release_notes -------------------------------------------------------------------------------- ChangeLog: * Mon Mar 23 2015 Elio Maldonado <emaldona@xxxxxxxxxx> - 3.18.0-1 - Update to nss-3.18.0 - Resolves: Bug 1203689 - nss-3.18 is available -------------------------------------------------------------------------------- References: [ 1 ] Bug #1203689 - nss-3.18 is available https://bugzilla.redhat.com/show_bug.cgi?id=1203689 -------------------------------------------------------------------------------- ================================================================================ nss-softokn-3.18.0-1.fc20 (FEDORA-2015-4498) Network Security Services Softoken Module -------------------------------------------------------------------------------- Update Information: Update of the nss, nss-softokn, and nss-util packages to nss-3.18. For a description of new features and fixes with this release please see the upstream release notes at https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.18_release_notes -------------------------------------------------------------------------------- ChangeLog: * Mon Mar 23 2015 Elio Maldonado <emaldona@xxxxxxxxxx> - 3.18.0-1 - Update to nss-3.18.0 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1203689 - nss-3.18 is available https://bugzilla.redhat.com/show_bug.cgi?id=1203689 -------------------------------------------------------------------------------- ================================================================================ nss-util-3.18.0-1.fc20 (FEDORA-2015-4498) Network Security Services Utilities Library -------------------------------------------------------------------------------- Update Information: Update of the nss, nss-softokn, and nss-util packages to nss-3.18. For a description of new features and fixes with this release please see the upstream release notes at https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.18_release_notes -------------------------------------------------------------------------------- ChangeLog: * Mon Mar 23 2015 Elio Maldonado <emaldona@xxxxxxxxxx> - 3.18.0-1 - Update to nss-3.18.0 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1203689 - nss-3.18 is available https://bugzilla.redhat.com/show_bug.cgi?id=1203689 -------------------------------------------------------------------------------- ================================================================================ osc-0.151.1-163.2.1.fc20 (FEDORA-2015-4549) The openSUSE Build Service Commander -------------------------------------------------------------------------------- Update Information: Security fix for CVE-2015-0778 -------------------------------------------------------------------------------- ChangeLog: * Tue Feb 24 2015 Miroslav Suchý <msuchy@xxxxxxxxxx> 0.151.1-163.2.1 - rebase to 0.140.1 - fixed shell command injection via crafted _service files CVE-2015-0778 * Sat Jun 7 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.140.1-109.1.1 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1201773 - CVE-2015-0778 osc: osc _service file shell injection flaw https://bugzilla.redhat.com/show_bug.cgi?id=1201773 -------------------------------------------------------------------------------- ================================================================================ owncloud-7.0.5-2.fc20 (FEDORA-2015-4693) Private file sync and share server -------------------------------------------------------------------------------- Update Information: This update provides the new release 7.0.5, which resolves currently undisclosed security vulnerabilities in ownCloud. It is a minor version update and should apply without any issues or special handling, but as usual, we recommend backing up your data, configuration, and database before updating. We have also backported a post-7.0.5 fix for a 'critical' issue: https://github.com/owncloud/core/issues/14843 . -------------------------------------------------------------------------------- ChangeLog: * Tue Mar 24 2015 Adam Williamson <awilliam@xxxxxxxxxx> - 7.0.5-2 - fix patch backported in previous build (upstream made a booboo) * Mon Mar 23 2015 Adam Williamson <awilliam@xxxxxxxxxx> - 7.0.5-1 - new release 7.0.5 (fixes yet-undisclosed vulns, #1204821 #1204823) - also backport fix for 'severe' upstream issue #14843 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1204821 - owncloud: new security issues fixed upstream in 6.0.7 and 7.0.5 https://bugzilla.redhat.com/show_bug.cgi?id=1204821 -------------------------------------------------------------------------------- ================================================================================ peervpn-0.042-1.fc20 (FEDORA-2015-4664) A VPN software using full mesh network topology -------------------------------------------------------------------------------- Update Information: Update to 0.042 -------------------------------------------------------------------------------- ChangeLog: * Tue Mar 24 2015 Jan Cholasta <jcholast@xxxxxxxxxx> - 0.042-1 - Update to 0.042 -------------------------------------------------------------------------------- ================================================================================ perl-Devel-CallChecker-0.007-1.fc20 (FEDORA-2015-4513) Custom op checking attached to subroutines -------------------------------------------------------------------------------- Update Information: This release adapts tests to op_sibling changes in 5.21.2 perl. -------------------------------------------------------------------------------- ChangeLog: * Mon Mar 23 2015 Petr Pisar <ppisar@xxxxxxxxxx> - 0.007-1 - 0.007 bump -------------------------------------------------------------------------------- References: [ 1 ] Bug #1204431 - perl-Devel-CallChecker-0.007 is available https://bugzilla.redhat.com/show_bug.cgi?id=1204431 -------------------------------------------------------------------------------- ================================================================================ perl-MCE-1.604-1.fc20 (FEDORA-2015-4474) Many-core Engine for Perl providing parallel processing capabilities -------------------------------------------------------------------------------- Update Information: A new version of MCE is available. See http://cpansearch.perl.org/src/MARIOROY/MCE-1.604/CHANGES for summary of changes for this release. -------------------------------------------------------------------------------- ChangeLog: * Mon Mar 23 2015 Petr Šabata <contyk@xxxxxxxxxx> - 1.604-1 - 1.604 bump * Wed Feb 11 2015 Petr Pisar <ppisar@xxxxxxxxxx> - 1.600-3 - Move mce_grep tool into a separate sub-package * Tue Feb 10 2015 Petr Pisar <ppisar@xxxxxxxxxx> - 1.600-2 - Correct dependencies -------------------------------------------------------------------------------- References: [ 1 ] Bug #1204474 - perl-MCE-1.604 is available https://bugzilla.redhat.com/show_bug.cgi?id=1204474 -------------------------------------------------------------------------------- ================================================================================ pymodbus-1.2.0-1.fc20 (FEDORA-2015-4648) A Modbus Protocol Stack in Python -------------------------------------------------------------------------------- Update Information: New upstream release with various enhancements and bugfixes. Detailed changelog: https://github.com/bashwork/pymodbus/blob/master/CHANGELOG.rst -------------------------------------------------------------------------------- ChangeLog: * Mon Feb 9 2015 Christian Krause <chkr@xxxxxxxxxxxxxxxxx> - 1.2.0-1 - Update to new upstream release 1.2.0 - Add patch to avoid installation of ez_setup - Change URL and Source URL - Adjust requirements -------------------------------------------------------------------------------- ================================================================================ python-dulwich-0.10.0-1.fc20 (FEDORA-2015-4534) A python implementation of the Git file formats and protocols -------------------------------------------------------------------------------- Update Information: Fix for CVE-2014-9706 (rhbz#1204889, rhbz#1204890, and rhbz#1204891) -------------------------------------------------------------------------------- ChangeLog: * Mon Mar 23 2015 Fabian Affolter <mail@xxxxxxxxxxxxxxxxxx> - 0.10.0-1 - Fix for CVE-2014-9706 (rhbz#1204889, rhbz#1204890, and rhbz#1204891) - Update to new upstream version 0.10.0 * Mon Mar 23 2015 Fabian Affolter <mail@xxxxxxxxxxxxxxxxxx> - 0.9.9-1 - Update to new upstream version 0.9.9 * Sun Aug 17 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.9.7-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1204889 - CVE-2014-9706 python-dulwich: arbitrary files allowed to be commited, leading to code execution https://bugzilla.redhat.com/show_bug.cgi?id=1204889 -------------------------------------------------------------------------------- ================================================================================ python-fedmsg-meta-fedora-infrastructure-0.4.7-1.fc20 (FEDORA-2015-4577) Metadata providers for Fedora Infrastructure's fedmsg deployment -------------------------------------------------------------------------------- Update Information: Fix trac summaries, new longform representation for scratch builds, subtitles are de-duplicated from longform content. Enhance karma and git processors. Fixes to various processors. Notably, the koji long_form code got some fixes. New long-form implementations for lookaside, koji, and trac. Fixes to github, hotness, and elections messages. New longform output for github and irc meessages. Improved debug logging. Handle future bodhi2 messages. rpm.sign messages now indicate the key id. New irc processors. -------------------------------------------------------------------------------- ChangeLog: * Tue Mar 24 2015 Ralph Bean <rbean@xxxxxxxxxx> - 0.4.7-1 - new version * Fri Mar 20 2015 Ralph Bean <rbean@xxxxxxxxxx> - 0.4.6-1 - new version * Tue Mar 17 2015 Ralph Bean <rbean@xxxxxxxxxx> - 0.4.5-1 - new version * Mon Mar 16 2015 Ralph Bean <rbean@xxxxxxxxxx> - 0.4.4-1 - new version * Tue Feb 24 2015 Ralph Bean <rbean@xxxxxxxxxx> - 0.4.3-1 - new version * Tue Feb 24 2015 Ralph Bean <rbean@xxxxxxxxxx> - 0.4.2-1 - new version * Wed Feb 18 2015 Ralph Bean <rbean@xxxxxxxxxx> - 0.4.1-1 - new version * Tue Feb 10 2015 Ralph Bean <rbean@xxxxxxxxxx> - 0.4.0-1 - new version * Tue Feb 10 2015 Ralph Bean <rbean@xxxxxxxxxx> - 0.3.12-2 - Disable tests for now since they require the latest fedmsg. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1204201 - python-fedmsg-meta-fedora-infrastructure-0.4.6 is available https://bugzilla.redhat.com/show_bug.cgi?id=1204201 -------------------------------------------------------------------------------- ================================================================================ python-fmn-consumer-0.5.0-1.fc20 (FEDORA-2015-4484) Backend worker daemon for Fedora Notifications -------------------------------------------------------------------------------- Update Information: Latest upstream. -------------------------------------------------------------------------------- ChangeLog: * Tue Mar 24 2015 Ralph Bean <rbean@xxxxxxxxxx> - 0.5.0-1 - new version -------------------------------------------------------------------------------- ================================================================================ python-fmn-lib-0.5.0-1.fc20 (FEDORA-2015-4692) Internal API components and model for Fedora Notifications -------------------------------------------------------------------------------- Update Information: Latest upstream. -------------------------------------------------------------------------------- ChangeLog: * Tue Mar 24 2015 Ralph Bean <rbean@xxxxxxxxxx> - 0.5.0-1 - new version -------------------------------------------------------------------------------- ================================================================================ python-fmn-rules-0.5.0-1.fc20 (FEDORA-2015-4578) Message processing rules for Fedora Notifications -------------------------------------------------------------------------------- Update Information: Latest upstream. -------------------------------------------------------------------------------- ChangeLog: * Tue Mar 24 2015 Ralph Bean <rbean@xxxxxxxxxx> - 0.5.0-1 - new version -------------------------------------------------------------------------------- ================================================================================ python-fmn-web-0.5.0-1.fc20 (FEDORA-2015-4633) Frontend Web Application for Fedora Notifications -------------------------------------------------------------------------------- Update Information: Latest upstream. -------------------------------------------------------------------------------- ChangeLog: * Tue Mar 24 2015 Ralph Bean <rbean@xxxxxxxxxx> - 0.5.0-1 - new version -------------------------------------------------------------------------------- ================================================================================ python-x2go-0.5.0.3-1.fc20 (FEDORA-2015-4542) Python module providing X2Go client API -------------------------------------------------------------------------------- Update Information: Update to 0.5.0.3: - Catch several more exceptions on connection failures. - Adapt to recent (x2goserver 4.0.1.19) in x2gomountdirs - Fix usage of force_password in X2GoControlSession.connect() -------------------------------------------------------------------------------- ChangeLog: * Mon Jan 26 2015 Orion Poplawski <orion@xxxxxxxxxxxxx> - 0.5.0.3-1 - Update to 0.5.0.3 -------------------------------------------------------------------------------- ================================================================================ python-yubico-1.2.3-1.fc20 (FEDORA-2015-4566) Pure-python library for interacting with Yubikeys -------------------------------------------------------------------------------- Update Information: Adds support for new YubiKeys -------------------------------------------------------------------------------- ChangeLog: * Mon Mar 23 2015 Nathaniel McCallum <npmccallum@xxxxxxxxxx> - 1.2.3-1 - Upstream 1.2.3 - Require pyusb during building when running tests -------------------------------------------------------------------------------- ================================================================================ qsstv-8.2.11-1.fc20 (FEDORA-2015-4608) Qt-based slow-scan TV and fax -------------------------------------------------------------------------------- Update Information: Fix rig CAT control bug. -------------------------------------------------------------------------------- ChangeLog: * Mon Mar 23 2015 Richard Shaw <hobbes1069@xxxxxxxxx> - 8.2.11-1 - Update to latest upstream release, 8.2.11. - Fixes CAT control bug. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1204475 - qsstv-8.2.11 is available https://bugzilla.redhat.com/show_bug.cgi?id=1204475 -------------------------------------------------------------------------------- ================================================================================ qt5-qtwebkit-5.4.1-4.fc20 (FEDORA-2015-4587) Qt5 - QtWebKit components -------------------------------------------------------------------------------- Update Information: QtWebKit logs visited URLs to WebpageIcons.db in private browsing mode. -------------------------------------------------------------------------------- ChangeLog: * Mon Mar 23 2015 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 5.4.1-4 - QtWebKit logs visited URLs to WebpageIcons.db in private browsing mode (#1204795,#1204798) * Wed Mar 18 2015 Than Ngo <than@xxxxxxxxxx> - 5.4.1-3 - fix build failure with new gcc5 * Fri Feb 27 2015 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> - 5.4.1-2 - rebuild (gcc5) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1204795 - qt5-qtwebkit: QtWebKit logs visited URLs to WebpageIcons.db in private browsing mode https://bugzilla.redhat.com/show_bug.cgi?id=1204795 -------------------------------------------------------------------------------- ================================================================================ qtwebkit-2.3.4-6.fc20 (FEDORA-2015-4551) Qt WebKit bindings -------------------------------------------------------------------------------- Update Information: QtWebKit logs visited URLs to WebpageIcons.db in private browsing mode. -------------------------------------------------------------------------------- ChangeLog: * Mon Mar 23 2015 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 2.3.4-6 - QtWebKit logs visited URLs to WebpageIcons.db in private browsing mode (#1204795) * Mon Mar 23 2015 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 2.3.4-5 - drop ppc64le patch (that no longer applies or is needed) * Fri Mar 20 2015 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> - 2.3.4-4 - gcc-5.0.0-0.20.fc23 FTBFS qtwebkit (#1203008) - add versioned glib2 dep (#1202735) * Tue Mar 17 2015 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 2.3.4-3 - qtwebkit enable jit for ppc64le (#1096330) * Wed Feb 18 2015 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 2.3.4-2 - rebuild (gcc5) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1204795 - qt5-qtwebkit: QtWebKit logs visited URLs to WebpageIcons.db in private browsing mode https://bugzilla.redhat.com/show_bug.cgi?id=1204795 -------------------------------------------------------------------------------- ================================================================================ quassel-0.11.0-2.fc20 (FEDORA-2015-4672) A modern distributed IRC system -------------------------------------------------------------------------------- Update Information: Security fix BZ1205130 - patch for CTCP Denial of Service New upstream release of Quassel IRC Client -------------------------------------------------------------------------------- ChangeLog: * Tue Mar 24 2015 Adam Miller <maxamillion@xxxxxxxxxxxxxxxxx> - 0.11.0-2 - BZ1205130 - patch for CTCP Denial of Service * Wed Sep 24 2014 Adam Miller <maxamillion@xxxxxxxxxxxxxxxxx> - 0.11.0-1 - Update to latest upstream -------------------------------------------------------------------------------- References: [ 1 ] Bug #1205130 - quassel: incorrect message splitting leading to DoS https://bugzilla.redhat.com/show_bug.cgi?id=1205130 -------------------------------------------------------------------------------- ================================================================================ rest-0.7.93-1.fc20 (FEDORA-2015-4554) A library for access to RESTful web services -------------------------------------------------------------------------------- Update Information: CVE-2015-2675 rest: memory corruption when using oauth because of implicit declaration of rest_proxy_call_get_url -------------------------------------------------------------------------------- ChangeLog: * Wed Mar 18 2015 Kalev Lember <kalevlember@xxxxxxxxx> - 0.7.93-1 - Update to 0.7.93 - Tighten deps with the _isa macro - Don't manually require pkgconfig; rpmbuild generates this automatically - Use license macro for the COPYING file * Fri Jan 9 2015 Debarshi Ray <rishi@xxxxxxxxxxxxxxxxx> 0.7.92-6 - Backport upstream patch to fix a memory error (GNOME #742644) * Wed Sep 3 2014 Peter Robinson <pbrobinson@xxxxxxxxxxxxxxxxx> 0.7.92-5 - Update to 0.7.92 * Sun Aug 17 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.7.91-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild * Wed Aug 6 2014 Peter Robinson <pbrobinson@xxxxxxxxxxxxxxxxx> 0.7.91-4 - Drop old patch that doesn't appear to be needed any more and causes build issues * Tue Jul 22 2014 Kalev Lember <kalevlember@xxxxxxxxx> - 0.7.91-3 - Rebuilt for gobject-introspection 1.41.4 * Sun Jun 8 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.7.91-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Tue Mar 11 2014 Richard Hughes <rhughes@xxxxxxxxxx> - 0.7.91-1 - Update to 0.7.91 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1112497 - Please update to librest 0.7.91 in f20 https://bugzilla.redhat.com/show_bug.cgi?id=1112497 [ 2 ] Bug #1204682 - rest: memory corruption when using oauth because of implicit declaration of rest_proxy_call_get_url [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1204682 -------------------------------------------------------------------------------- ================================================================================ scap-workbench-1.1.0-1.fc20 (FEDORA-2015-4595) Scanning, tailoring, editing and validation tool for SCAP content -------------------------------------------------------------------------------- Update Information: Updated to new upstream release 1.1.0 -------------------------------------------------------------------------------- ChangeLog: * Tue Mar 24 2015 Martin Preisler <mpreisle@xxxxxxxxxx> 1.1.0-1 - Updated to new upstream release 1.1.0 - Added openssh-clients and util-linux to BuildRequires, workbench checks those at configure time now - Added scap-security-guide to Requires -------------------------------------------------------------------------------- ================================================================================ srm-1.2.15-1.fc20 (FEDORA-2015-4632) Secure file deletion -------------------------------------------------------------------------------- Update Information: Update to new upstream version 1.2.15 -------------------------------------------------------------------------------- ChangeLog: * Mon Mar 23 2015 Fabian Affolter <mail@xxxxxxxxxxxxxxxxxx> - 1.2.15-1 - Update to new upstream version 1.2.15 -------------------------------------------------------------------------------- ================================================================================ texstudio-2.9.4-1.fc20 (FEDORA-2015-4627) A feature-rich editor for LaTeX documents -------------------------------------------------------------------------------- Update Information: - update to 2.9.4 - http://texstudio.sourceforge.net/manual/current/usermanual_en.html#SECTIONNEW294 -------------------------------------------------------------------------------- ChangeLog: * Tue Mar 24 2015 Johannes Lips <hannes@xxxxxxxxxxxxxxxxx> 2.9.4-1 - Update to latest upstream version 2.9.4 * Mon Mar 23 2015 Johannes Lips <hannes@xxxxxxxxxxxxxxxxx> 2.9.2-1 - Update to latest upstream version 2.9.2 -------------------------------------------------------------------------------- ================================================================================ thunderbird-enigmail-1.8.1-1.fc20 (FEDORA-2015-4154) Authentication and encryption extension for Mozilla Thunderbird -------------------------------------------------------------------------------- Update Information: **Major Changes** * Improved user interface for message composition * Simplified setup wizard * Possibility to permanently decrypt messages via filter rules * Improved support for PGP/MIME messages from GPGTools sent from MS Exchange Server * Many fixed bugs **Important Note** This is the last major version of Enigmail to support GnuPG v1.4.x. Future version of Enigmail (v1.9 and later) will require GnuPG 2.0.7 or newer. -------------------------------------------------------------------------------- ChangeLog: * Mon Mar 23 2015 Remi Collet <remi@xxxxxxxxxxxxxxxxx> 1.8.1-1 - Enigmail 1.8.1 * Tue Mar 17 2015 Remi Collet <remi@xxxxxxxxxxxxxxxxx> 1.8-1 - Enigmail 1.8 -------------------------------------------------------------------------------- ================================================================================ tor-0.2.5.11-1.fc20 (FEDORA-2015-4478) Anonymizing overlay network for TCP (The onion router) -------------------------------------------------------------------------------- Update Information: Update to upstream release 0.2.5.11. -------------------------------------------------------------------------------- ChangeLog: * Mon Mar 23 2015 Jamie Nguyen <jamielinux@xxxxxxxxxxxxxxxxx> - 0.2.5.11-1 - update to upstream release 0.2.5.11 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1204773 - tor: security fixes in 0.2.4.26 and 0.2.5.11 https://bugzilla.redhat.com/show_bug.cgi?id=1204773 -------------------------------------------------------------------------------- ================================================================================ ugene-1.16.1-1.fc20 (FEDORA-2015-4649) Integrated bioinformatics toolkit -------------------------------------------------------------------------------- Update Information: This is a patch release that contains several major bug fixes and minor interface improvements requested by users The full list of changes done in this release can be found in our bug tracker http://ugene.unipro.ru/tracker/secure/IssueNavigator.jspa?reset=true&jqlQuery=project+%3D+UGENE+AND+fixVersion+%3D+%221.16.1%22+AND+resolution+is+not+EMPTY -------------------------------------------------------------------------------- ChangeLog: * Sat Mar 21 2015 Yuliya Algaer <yalgaer@xxxxxxxxx> - 1.1610-1 - New upstream version -------------------------------------------------------------------------------- ================================================================================ vrq-1.0.103-1.fc20 (FEDORA-2015-4723) Verilog tool framework with plugins for manipulating source code -------------------------------------------------------------------------------- Update Information: Rebuilt for new upstream version 1.0.103, fixes rhbz #1204477 -------------------------------------------------------------------------------- ChangeLog: * Mon Mar 23 2015 Filipe Rosset <rosset.filipe@xxxxxxxxx> - 1.0.103-1 - Rebuilt for new upstream version 1.0.103, fixes rhbz #1204477 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1204477 - vrq-1.0.103 is available https://bugzilla.redhat.com/show_bug.cgi?id=1204477 -------------------------------------------------------------------------------- ================================================================================ whois-5.2.6-2.fc20 (FEDORA-2015-4594) Improved WHOIS client -------------------------------------------------------------------------------- Update Information: This release fixes a regression in hiding disclaimers. This release updates disclaimer database to suppress more of them. It adds servers for new gTLDs: abbott., bbc., cfd., chloe., datsun., epson., erni., fan., forex., goo., infiniti., java., leclerc., maif., markets., mtpc., news., nissan., online., oracle., page., piaget., pictet., site., spreadbetting., tech., trading., xin., 政府., and 信息. It adds records for domains edu.ph. and gov.ph. It removes record for discontinued tp. TLD. -------------------------------------------------------------------------------- ChangeLog: * Tue Mar 24 2015 Petr Pisar <ppisar@xxxxxxxxxx> - 5.2.6-2 - Fix a regression in hiding disclaimers * Tue Mar 24 2015 Petr Pisar <ppisar@xxxxxxxxxx> - 5.2.6-1 - 5.2.6 bump -------------------------------------------------------------------------------- References: [ 1 ] Bug #1204776 - whois-5.2.6 is available https://bugzilla.redhat.com/show_bug.cgi?id=1204776 -------------------------------------------------------------------------------- ================================================================================ wine-1.7.39-1.fc20 (FEDORA-2015-1896) A compatibility layer for windows applications -------------------------------------------------------------------------------- Update Information: Version 1.7.39 * WinMM joystick support on Mac OS X. * Kerning support in DirectWrite. * Support for DirectX Media Objects filters. * Better support for animated GIFs in GdiPlus. * Improved support for Known Folders in Shell32. * Various bug fixes. Version 1.7.38 * New version of the Gecko engine based on Firefox 36. * Support for themed scrollbars. * Updated version of the Mono engine. * More compatible RPC interface for service control. * Support for X Drag & Drop version 5. * Threading fixes in IME support. * Various bug fixes. Version 1.7.37 * Interface change notifications. * Support for the UTF-7 encoding. * A number of graphical fixes for themed controls. * Wininet now implemented on top of Win32 sockets. * Various bug fixes. Version 1.7.36 * Some preliminary 64-bit support for Mac OS X. * Support for configuring speakers in Winecfg. * Improved support for Mac OS X Trash folder. * Support for typographic features in DirectWrite. * Various bug fixes. -------------------------------------------------------------------------------- ChangeLog: * Sun Mar 22 2015 Michael Cronenworth <mike@xxxxxxxxxx> 1.7.39-1 - version upgrade - Enable some optimizations and workarounds for GCC5 regressions * Tue Mar 10 2015 Adam Jackson <ajax@xxxxxxxxxx> 1.7.38-3 - Drop sysvinit subpackage on F23+ * Sat Mar 7 2015 Michael Cronenworth <mike@xxxxxxxxxx> - 1.7.38-2 - Fix wine-gecko and wine-mono versions * Sat Mar 7 2015 Michael Cronenworth <mike@xxxxxxxxxx> - 1.7.38-1 - version upgrade * Sun Feb 22 2015 Andreas Bierfert <andreas.bierfert@xxxxxxxxxxxxx> - 1.7.37-1 - version upgrade * Mon Feb 16 2015 Michael Cronenworth <mike@xxxxxxxxxx> - 1.7.36-2 - Patch for RtlUnwindEx fix (staging bz #68) - Use new systemd macros for binfmt handling * Sun Feb 8 2015 Michael Cronenworth <mike@xxxxxxxxxx> - 1.7.36-1 - version upgrade * Wed Feb 4 2015 Orion Poplawski <orion@xxxxxxxxxxxxx> - 1.7.35-3 - Add patch to fix stack smashing (bug #1110419) * Mon Jan 26 2015 Michael Cronenworth <mike@xxxxxxxxxx> - 1.7.35-2 - Rebuild (libgphoto2) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1190445 - wine-1.7.36 is available https://bugzilla.redhat.com/show_bug.cgi?id=1190445 [ 2 ] Bug #1199688 - wine-1.7.38 is available https://bugzilla.redhat.com/show_bug.cgi?id=1199688 [ 3 ] Bug #1110419 - wine crashes due to misuse of stack smashing detection https://bugzilla.redhat.com/show_bug.cgi?id=1110419 [ 4 ] Bug #1204327 - wine-1.7.39 is available https://bugzilla.redhat.com/show_bug.cgi?id=1204327 -------------------------------------------------------------------------------- ================================================================================ wine-mono-4.5.6-1.fc20 (FEDORA-2015-1896) Mono library required for Wine -------------------------------------------------------------------------------- Update Information: Version 1.7.39 * WinMM joystick support on Mac OS X. * Kerning support in DirectWrite. * Support for DirectX Media Objects filters. * Better support for animated GIFs in GdiPlus. * Improved support for Known Folders in Shell32. * Various bug fixes. Version 1.7.38 * New version of the Gecko engine based on Firefox 36. * Support for themed scrollbars. * Updated version of the Mono engine. * More compatible RPC interface for service control. * Support for X Drag & Drop version 5. * Threading fixes in IME support. * Various bug fixes. Version 1.7.37 * Interface change notifications. * Support for the UTF-7 encoding. * A number of graphical fixes for themed controls. * Wininet now implemented on top of Win32 sockets. * Various bug fixes. Version 1.7.36 * Some preliminary 64-bit support for Mac OS X. * Support for configuring speakers in Winecfg. * Improved support for Mac OS X Trash folder. * Support for typographic features in DirectWrite. * Various bug fixes. -------------------------------------------------------------------------------- ChangeLog: * Fri Mar 6 2015 Michael Cronenworth <mike@xxxxxxxxxx> - 4.5.6-1 - version upgrade * Thu Feb 5 2015 Michael Cronenworth <mike@xxxxxxxxxx> - 4.5.4-2 - Update bundled valgrind headers (#1141584) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1190445 - wine-1.7.36 is available https://bugzilla.redhat.com/show_bug.cgi?id=1190445 [ 2 ] Bug #1199688 - wine-1.7.38 is available https://bugzilla.redhat.com/show_bug.cgi?id=1199688 [ 3 ] Bug #1110419 - wine crashes due to misuse of stack smashing detection https://bugzilla.redhat.com/show_bug.cgi?id=1110419 [ 4 ] Bug #1204327 - wine-1.7.39 is available https://bugzilla.redhat.com/show_bug.cgi?id=1204327 -------------------------------------------------------------------------------- ================================================================================ xen-4.3.4-1.fc20 (FEDORA-2015-4479) Xen is a virtual machine monitor -------------------------------------------------------------------------------- Update Information: update to xen-4.3.4 -------------------------------------------------------------------------------- ChangeLog: * Mon Mar 23 2015 Michael Young <m.a.young@xxxxxxxxxxxx> - 4.3.4-1 - update to xen-4.3.4 remove patches for fixes that are now included -------------------------------------------------------------------------------- -- test mailing list test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe: https://admin.fedoraproject.org/mailman/listinfo/test