The following Fedora 21 Security updates need testing: Age URL 114 https://admin.fedoraproject.org/updates/FEDORA-2015-0264/gcab-0.4-7.fc21 90 https://admin.fedoraproject.org/updates/FEDORA-2015-1467/openstack-glance-2014.1.3-4.fc21 35 https://admin.fedoraproject.org/updates/FEDORA-2015-4689/quassel-0.11.0-2.fc21 22 https://admin.fedoraproject.org/updates/FEDORA-2015-5872/netcf-0.2.8-1.fc21 21 https://admin.fedoraproject.org/updates/FEDORA-2015-5929/qpid-cpp-0.32-1.fc21.1 20 https://admin.fedoraproject.org/updates/FEDORA-2015-6005/asterisk-11.17.1-1.fc21 20 https://admin.fedoraproject.org/updates/FEDORA-2015-5979/krb5-1.12.2-16.fc21 13 https://admin.fedoraproject.org/updates/FEDORA-2015-6387/realmd-0.15.2-2.fc21 6 https://admin.fedoraproject.org/updates/FEDORA-2015-6806/ikiwiki-3.20150329-1.fc21 5 https://admin.fedoraproject.org/updates/FEDORA-2015-6845/v8-3.14.5.10-18.fc21 5 https://admin.fedoraproject.org/updates/FEDORA-2015-6903/mingw-libtiff-4.0.3-6.fc21 5 https://admin.fedoraproject.org/updates/FEDORA-2015-6881/mingw-libgcrypt-1.6.3-1.fc21 5 https://admin.fedoraproject.org/updates/FEDORA-2015-6853/mingw-curl-7.42.0-1.fc21 5 https://admin.fedoraproject.org/updates/FEDORA-2015-6855/mingw-openssl-1.0.2a-1.fc21 5 https://admin.fedoraproject.org/updates/FEDORA-2015-6925/mingw-qt5-qtbase-5.4.1-2.fc21 2 https://admin.fedoraproject.org/updates/FEDORA-2015-7086/proftpd-1.3.5-5.fc21 2 https://admin.fedoraproject.org/updates/FEDORA-2015-7089/dovecot-2.2.16-2.fc21 2 https://admin.fedoraproject.org/updates/FEDORA-2015-7115/perl-XML-LibXML-2.0119-1.fc21 2 https://admin.fedoraproject.org/updates/FEDORA-2015-6808/wordpress-4.2.1-1.fc21 1 https://admin.fedoraproject.org/updates/FEDORA-2015-7216/libarchive-3.1.2-11.fc21 1 https://admin.fedoraproject.org/updates/FEDORA-2015-7242/389-ds-base-1.3.3.10-1.fc21 0 https://admin.fedoraproject.org/updates/FEDORA-2015-7326/drupal7-views-3.11-1.fc21 0 https://admin.fedoraproject.org/updates/FEDORA-2015-7296/dpkg-1.16.16-5.fc21 0 https://admin.fedoraproject.org/updates/FEDORA-2015-7292/texlive-2014-7.1.20140525_r34255.fc21 0 https://admin.fedoraproject.org/updates/FEDORA-2015-7334/clamav-0.98.7-1.fc21 The following Fedora 21 Critical Path updates have yet to be approved: Age URL 13 https://admin.fedoraproject.org/updates/FEDORA-2015-6322/geoclue2-2.1.10-2.fc21 13 https://admin.fedoraproject.org/updates/FEDORA-2015-6325/libgweather-3.14.4-1.fc21 13 https://admin.fedoraproject.org/updates/FEDORA-2015-6382/python-slip-0.6.1-1.fc21 13 https://admin.fedoraproject.org/updates/FEDORA-2015-6387/realmd-0.15.2-2.fc21 9 https://admin.fedoraproject.org/updates/FEDORA-2015-6544/perl-Encode-2.73-1.fc21 9 https://admin.fedoraproject.org/updates/FEDORA-2015-6538/gnome-bluetooth-3.14.1-1.fc21 9 https://admin.fedoraproject.org/updates/FEDORA-2015-6499/pkgconfig-0.28-8.fc21 8 https://admin.fedoraproject.org/updates/FEDORA-2015-6565/telepathy-glib-0.24.1-1.fc21,telepathy-logger-0.8.0-8.fc21 8 https://admin.fedoraproject.org/updates/FEDORA-2015-6575/mobile-broadband-provider-info-1.20150421git-1.fc21 6 https://admin.fedoraproject.org/updates/FEDORA-2015-6771/libselinux-2.3-9.fc21 5 https://admin.fedoraproject.org/updates/FEDORA-2015-6930/koji-1.9.0-11.fc21.20150423git52a0188 5 https://admin.fedoraproject.org/updates/FEDORA-2015-6926/clutter-1.20.2-1.fc21 5 https://admin.fedoraproject.org/updates/FEDORA-2015-6939/pcre-8.35-10.fc21 2 https://admin.fedoraproject.org/updates/FEDORA-2015-7104/cairo-1.14.2-1.fc21 1 https://admin.fedoraproject.org/updates/FEDORA-2015-7216/libarchive-3.1.2-11.fc21 1 https://admin.fedoraproject.org/updates/FEDORA-2015-7266/hwdata-0.277-1.fc21 1 https://admin.fedoraproject.org/updates/FEDORA-2015-7247/file-5.22-3.fc21 1 https://admin.fedoraproject.org/updates/FEDORA-2015-7239/python-kitchen-1.2.1-2.fc21 1 https://admin.fedoraproject.org/updates/FEDORA-2015-7165/openjpeg-1.5.1-14.fc21 1 https://admin.fedoraproject.org/updates/FEDORA-2015-6893/grantlee-0.5.1-1.fc21,kate-4.14.3-5.fc21,kde-baseapps-15.04.0-1.fc21,kde-runtime-15.04.0-1.fc21,kde-workspace-4.11.18-3.fc21,kdelibs-4.14.7-4.fc21,kdepim-4.14.7-2.fc21,kdepim-runtime-4.14.7-1.fc21,kdepimlibs-4.14.7-1.fc21,oxygen-icon-theme-15.04.0-1.fc21 0 https://admin.fedoraproject.org/updates/FEDORA-2015-7340/audit-2.4.2-1.fc21 0 https://admin.fedoraproject.org/updates/FEDORA-2015-7328/btrfs-progs-4.0-1.fc21 0 https://admin.fedoraproject.org/updates/FEDORA-2015-7288/libtasn1-4.5-1.fc21 0 https://admin.fedoraproject.org/updates/FEDORA-2015-7291/perl-Socket-2.019-1.fc21 0 https://admin.fedoraproject.org/updates/FEDORA-2015-7062/ibus-1.5.10-4.fc21 The following builds have been pushed to Fedora 21 updates-testing audit-2.4.2-1.fc21 btrfs-progs-4.0-1.fc21 clamav-0.98.7-1.fc21 dpkg-1.16.16-5.fc21 drumkv1-0.6.1-1.fc21 drupal7-views-3.11-1.fc21 fail2ban-0.9.2-1.fc21 groonga-5.0.3-1.fc21 ibus-1.5.10-4.fc21 java-1.8.0-openjdk-1.8.0.45-35.b13.fc21 json-0-4.20150410gitd7d0509.fc21 kde-connect-0.8-1.fc21 libtasn1-4.5-1.fc21 mozc-2.17.2077.102-2.fc21 mozilla-requestpolicy-1.0-0.4.20150430gitf4e92d.fc21 opendmarc-1.3.1-13.fc21 perl-Archive-Extract-0.74-3.fc21 perl-Crypt-PBKDF2-0.150900-1.fc21 perl-Socket-2.019-1.fc21 publicsuffix-list-20150430-1.fc21 python-cmd2-0.6.8-2.fc21 python-httplib2-0.9.1-1.fc21 python-statsd-2.1.2-2.fc21 qcustomplot-1.3.1-3.fc21 qhexedit2-0.6.5-2.fc21 qtractor-0.6.6-1.fc21 samplv1-0.6.1-1.fc21 spamassassin-3.4.1-1.fc21 spdlog-0-4.20150410git211ce99.fc21 synthv1-0.6.1-1.fc21 texlive-2014-7.1.20140525_r34255.fc21 tomahawk-0.8.4-1.fc21 tuned-2.4.1-5.fc21 wildmagic5-5.13-9.fc21 Details about builds: ================================================================================ audit-2.4.2-1.fc21 (FEDORA-2015-7340) User space tools for 2.6 kernel auditing -------------------------------------------------------------------------------- Update Information: This update includes lookup tables for the new 4.1 kernel. Several bugs were fixed. See the ChangeLog for details. -------------------------------------------------------------------------------- ChangeLog: * Tue Apr 28 2015 Steve Grubb <sgrubb@xxxxxxxxxx> 2.4.2-1 - New upstream bugfix release * Sat Feb 21 2015 Till Maas <opensource@xxxxxxxxx> - 2.4.1-2 - Rebuilt for Fedora 23 Change https://fedoraproject.org/wiki/Changes/Harden_all_packages_with_position-independent_code -------------------------------------------------------------------------------- ================================================================================ btrfs-progs-4.0-1.fc21 (FEDORA-2015-7328) Userspace programs for btrfs -------------------------------------------------------------------------------- Update Information: New upstream release -------------------------------------------------------------------------------- ChangeLog: * Wed Apr 29 2015 Eric Sandeen <sandeen@xxxxxxxxxx> 4.0-1 - New upstream release -------------------------------------------------------------------------------- ================================================================================ clamav-0.98.7-1.fc21 (FEDORA-2015-7334) End-user tools for the Clam Antivirus scanner -------------------------------------------------------------------------------- Update Information: ClamAV 0.98.7 ============= This release contains new scanning features and bug fixes. - Improvements to PDF processing: decryption, escape sequence handling, and file property collection. - Scanning/analysis of additional Microsoft Office 2003 XML format. - Fix infinite loop condition on crafted y0da cryptor file. Identified and patch suggested by Sebastian Andrzej Siewior. CVE-2015-2221. - Fix crash on crafted petite packed file. Reported and patch supplied by Sebastian Andrzej Siewior. CVE-2015-2222. - Fix false negatives on files within iso9660 containers. This issue was reported by Minzhuan Gong. - Fix a couple crashes on crafted upack packed file. Identified and patches supplied by Sebastian Andrzej Siewior. - Fix a crash during algorithmic detection on crafted PE file. Identified and patch supplied by Sebastian Andrzej Siewior. - Fix an infinite loop condition on a crafted "xz" archive file. This was reported by Dimitri Kirchner and Goulven Guiheux. CVE-2015-2668. - Fix compilation error after ./configure --disable-pthreads. Reported and fix suggested by John E. Krokes. - Apply upstream patch for possible heap overflow in Henry Spencer's regex library. CVE-2015-2305. - Fix crash in upx decoder with crafted file. Discovered and patch supplied by Sebastian Andrzej Siewior. CVE-2015-2170. - Fix segfault scanning certain HTML files. Reported with sample by Kai Risku. - Improve detections within xar/pkg files. -------------------------------------------------------------------------------- ChangeLog: * Wed Apr 29 2015 Robert Scheck <robert@xxxxxxxxxxxxxxxxx> - 0.98.7-1 - Upgrade to 0.98.7 and updated daily.cvd (#1217014) * Tue Mar 10 2015 Adam Jackson <ajax@xxxxxxxxxx> 0.98.6-2 - Drop sysvinit subpackages in F23+ -------------------------------------------------------------------------------- References: [ 1 ] Bug #1217207 - CVE-2015-2222 clamav: crash on crafted petite packed file https://bugzilla.redhat.com/show_bug.cgi?id=1217207 [ 2 ] Bug #1217209 - CVE-2015-2170: clamav: Crash in upx decoder with crafted file https://bugzilla.redhat.com/show_bug.cgi?id=1217209 [ 3 ] Bug #1217206 - CVE-2015-2221: clamav Infinite loop condition on crafted y0da cryptor file https://bugzilla.redhat.com/show_bug.cgi?id=1217206 [ 4 ] Bug #1217208 - CVE-2015-2668 clamav: Infinite loop condition on a crafted "xz" archive file https://bugzilla.redhat.com/show_bug.cgi?id=1217208 -------------------------------------------------------------------------------- ================================================================================ dpkg-1.16.16-5.fc21 (FEDORA-2015-7296) Package maintenance system for Debian Linux -------------------------------------------------------------------------------- Update Information: Fix build for all versions, previous try wasn't correct and back with dpkg-perl-libexecdir.patch Security fix for CVE-2014-8625 and Security fix for CVE-2015-0840 -------------------------------------------------------------------------------- ChangeLog: * Sun Apr 26 2015 Sérgio Basto <sergio@xxxxxxxxxx> - 1.16.16-5 - Fix build for all versions, previous try wasn't correct and back with dpkg-perl-libexecdir.patch . - Added dpkg-perl-libexecdir.epel6.patch just for fix epel <= 6 . - Cleaned some trailing whitespaces. - Use _localstatedir instead /var . * Sat Apr 25 2015 Sérgio Basto <sergio@xxxxxxxxxx> - 1.16.16-4 - Revert location of dpkg/parsechangelog . - Fix build for all versions, including epel-6 . * Tue Apr 21 2015 Sérgio Basto <sergio@xxxxxxxxxx> - 1.16.16-3 - Better upstream URL . * Tue Apr 21 2015 Sérgio Basto <sergio@xxxxxxxxxx> - 1.16.16-2 - Some fixes and added support for epel-6 . - Removed Patch0: dpkg-perl-libexecdir.patch . - move /usr/lib/dpkg/parsechangelog to archable package . * Sun Apr 19 2015 Sérgio Basto <sergio@xxxxxxxxxx> - 1.16.16-1 - Security update to 1.16.16 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1210748 - CVE-2015-0840 dpkg: source package integrity verification bypass https://bugzilla.redhat.com/show_bug.cgi?id=1210748 [ 2 ] Bug #1162166 - CVE-2014-8625 dpkg: format string vulnerability https://bugzilla.redhat.com/show_bug.cgi?id=1162166 -------------------------------------------------------------------------------- ================================================================================ drumkv1-0.6.1-1.fc21 (FEDORA-2015-7368) An old-school drum-kit sampler -------------------------------------------------------------------------------- Update Information: Update of the V1 suite to 0.6.1 -------------------------------------------------------------------------------- ChangeLog: * Sun Mar 22 2015 Brendan Jones <brendan.jones.it@xxxxxxxxx> 0.6.1-1 - Update to 0.6.1 -------------------------------------------------------------------------------- ================================================================================ drupal7-views-3.11-1.fc21 (FEDORA-2015-7326) Provides a method for site designers to control content presentation -------------------------------------------------------------------------------- Update Information: - Release 3.11 is a security fix release - Upstream changelog is at https://www.drupal.org/node/2480259 -------------------------------------------------------------------------------- ChangeLog: * Thu Apr 30 2015 Peter Borsa <peter.borsa@xxxxxxxxx> - 3.11-1 - Release 3.11 is a security fix release - Upstream changelog is at https://www.drupal.org/node/2480259 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1217279 - drupal7-views-3.11 is available https://bugzilla.redhat.com/show_bug.cgi?id=1217279 -------------------------------------------------------------------------------- ================================================================================ fail2ban-0.9.2-1.fc21 (FEDORA-2015-7362) Daemon to ban hosts that cause multiple authentication errors -------------------------------------------------------------------------------- Update Information: ver. 0.9.2 (2015/04/29) - better-quick-now-than-later ---------- - Fixes: * Fix ufw action commands * infinite busy loop on _escapedTags match in substituteRecursiveTags gh-907. Thanks TonyThompson * port[s] typo in jail.conf/nginx-http-auth gh-913. Thanks Frederik Wagner (fnerdwq) * $ typo in jail.conf. Thanks Skibbi. Debian bug #767255 * grep'ing for IP in *mail-whois-lines.conf should now match also at the beginning and EOL. Thanks Dean Lee * jail.conf - php-url-fopen: separate logpath entries by newline * failregex declared direct in jail was joined to single line (specifying of multiple expressions was not possible). * filters.d/exim.conf - cover different settings of exim logs details. Thanks bes.internal * filter.d/postfix-sasl.conf - failregex is now case insensitive * filters.d/postfix.conf - add 'Client host rejected error message' failregex * fail2ban/__init__.py - add strptime thread safety hack-around * recidive uses iptables-allports banaction by default now. Avoids problems with iptables versions not understanding 'all' for protocols and ports * filter.d/dovecot.conf - match pam_authenticate line from EL7 - match unknown user line from EL7 * Use use_poll=True for Python 2.7 and >=3.4 to overcome "Bad file descriptor" msgs issue (gh-161) * filter.d/postfix-sasl.conf - tweak failregex and add ignoreregex to ignore system authentication issues * fail2ban-regex reads filter file(s) completely, incl. '.local' file etc. (gh-954) * firewallcmd-* actions: split output into separate lines for grepping (gh-908) * Guard unicode encode/decode issues while storing records in the database. Fixes "binding parameter error (unsupported type)" (gh-973), thanks to kot for reporting * filter.d/sshd added regex for matching openSUSE ssh authentication failure * filter.d/asterisk.conf: - Dropped "Sending fake auth rejection" failregex since it incorrectly targets the asterisk server itself - match "hacking attempt detected" logs - New Features: - New filters: - postfix-rbl Thanks Lee Clemens - apache-fakegooglebot.conf Thanks Lee Clemens - nginx-botsearch Thanks Frantisek Sumsal - drupal-auth Thanks Lee Clemens - New recursive embedded substitution feature added: - `<<PREF>HOST>` becomes `<IPV4HOST>` for PREF=`IPV4`; - `<<PREF>HOST>` becomes `1.2.3.4` for PREF=`IPV4` and IPV4HOST=`1.2.3.4`; - New interpolation feature for config readers - `%(known/parameter)s`. (means last known option with name `parameter`). This interpolation makes possible to extend a stock filter or jail regexp in .local file (opposite to simply set failregex/ignoreregex that overwrites it), see gh-867. - Monit config for fail2ban in files/monit/ - New actions: - action.d/firewallcmd-multiport and action.d/firewallcmd-allports Thanks Donald Yandt - action.d/sendmail-geoip-lines.conf - action.d/nsupdate to update DNSBL. Thanks Andrew St. Jean - New status argument for fail2ban-client -- flavor: fail2ban-client status <jail> [flavor] - empty or "basic" works as-is - "cymru" additionally prints (ASN, Country RIR) per banned IP (requires dnspython or dnspython3) - Flush log at USR1 signal - Enhancements: * Enable multiport for firewallcmd-new action. Closes gh-834 * files/debian-initd migrated from the debian branch and should be suitable for manual installations now (thanks Juan Karlo de Guzman) * Define empty ignoreregex in filters which didn't have it to avoid warnings (gh-934) * action.d/{sendmail-*,xarf-login-attack}.conf - report local timezone not UTC time/zone. Closes gh-911 * Conditionally log Ignore IP with reason (dns, ip, command). Closes gh-916 * Absorbed DNSUtils.cidr into addr2bin in filter.py, added unittests * Added syslogsocket configuration to fail2ban.conf * Note in the jail.conf for the recidive jail to increase dbpurgeage (gh-964) -------------------------------------------------------------------------------- ChangeLog: * Thu Apr 30 2015 Orion Poplawski <orion@xxxxxxxxxxxxx> - 0.9.2-1 - Update to 0.9.2 -------------------------------------------------------------------------------- ================================================================================ groonga-5.0.3-1.fc21 (FEDORA-2015-7364) An Embeddable Fulltext Search Engine -------------------------------------------------------------------------------- Update Information: See http://groonga.org/en/blog/2015/04/29/release.html -------------------------------------------------------------------------------- ChangeLog: * Thu Apr 30 2015 HAYASHI Kentaro <hayashi@xxxxxxxxxxxxxx> - 5.0.3-1 - new upstream release. - add vector plugin. * Sun Apr 19 2015 Peter Robinson <pbrobinson@xxxxxxxxxxxxxxxxx> 5.0.2-2 - Drop ExclusiveArch, atomic primitives now supported on all arches -------------------------------------------------------------------------------- References: [ 1 ] Bug #1217029 - groonga-5.0.3 is available https://bugzilla.redhat.com/show_bug.cgi?id=1217029 -------------------------------------------------------------------------------- ================================================================================ ibus-1.5.10-4.fc21 (FEDORA-2015-7062) Intelligent Input Bus for Linux OS -------------------------------------------------------------------------------- Update Information: Fixed to show keyboard shortcuts on ibus-setup Fixed to enable input method engines on gtk3 applications in gnome wayland. Added Swedish svdvorak. I18N engine longnames and descriptions on ibus-setup. Moved PropertyPanel at bottom right in F22 KDE5. Drew gray color on Handle PropertyPanel. Enabled ibus engine full path icon in F22 KDE5. Updated translations. -------------------------------------------------------------------------------- ChangeLog: * Fri Apr 24 2015 Takao Fujiwara <tfujiwar@xxxxxxxxxx> - 1.5.10-4 - Bug 1217410 Updated ibus-xinput for KDE5. * Fri Apr 24 2015 Takao Fujiwara <tfujiwar@xxxxxxxxxx> - 1.5.10-3 - Updated ibus-HEAD.patch from upstream Fixed to show shortcuts on ibus-setup. Bug 1214271 Fixed to enable IME with GTK3 applications in wayland. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1213284 - ibus-setup does not show keyboard shortcuts on the selection dialog https://bugzilla.redhat.com/show_bug.cgi?id=1213284 [ 2 ] Bug #1214271 - ibus-wayland works quite wrong https://bugzilla.redhat.com/show_bug.cgi?id=1214271 [ 3 ] Bug #1217410 - QT_IM_MODULE variable should not require ibus-qt in KDE5 https://bugzilla.redhat.com/show_bug.cgi?id=1217410 -------------------------------------------------------------------------------- ================================================================================ java-1.8.0-openjdk-1.8.0.45-35.b13.fc21 (FEDORA-2015-7335) OpenJDK Runtime Environment -------------------------------------------------------------------------------- Update Information: small fixes due to ppcle -------------------------------------------------------------------------------- ChangeLog: * Wed Apr 29 2015 Jiri Vanek <jvanek@xxxxxxxxxx> - 1:1.8.0.45-35.b13 - Omit jsa files from power64 file list as well, as they are never generated - moved to boot build by openjdk8 - Use the template interpreter on ppc64le -------------------------------------------------------------------------------- ================================================================================ json-0-4.20150410gitd7d0509.fc21 (FEDORA-2015-7285) JSON for Modern C++ -------------------------------------------------------------------------------- Update Information: - don't build the base package - remove a dot from the release tag - corrected -devel subpackage description Imported new package -------------------------------------------------------------------------------- ================================================================================ kde-connect-0.8-1.fc21 (FEDORA-2015-7337) KDE Connect client for communication with smartphones -------------------------------------------------------------------------------- Update Information: New stable KDE Connect 0.8 release -------------------------------------------------------------------------------- ChangeLog: * Sun Feb 22 2015 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 0.8-1 - KDE Connect 0.8 available (#1195011) - use %{?_kde_runtime_requires} (instead of %_kde4_version macro) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1195011 - KDE Connect 0.8 available https://bugzilla.redhat.com/show_bug.cgi?id=1195011 -------------------------------------------------------------------------------- ================================================================================ libtasn1-4.5-1.fc21 (FEDORA-2015-7288) The ASN.1 library used in GNUTLS -------------------------------------------------------------------------------- Update Information: Update to 4.5 (#1217282) -------------------------------------------------------------------------------- ChangeLog: * Thu Apr 30 2015 Nikos Mavrogiannopoulos <nmav@xxxxxxxxxx> - 4.5-1 - Update to 4.5 (#1217282) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1217282 - libtasn1-4.5 is available https://bugzilla.redhat.com/show_bug.cgi?id=1217282 -------------------------------------------------------------------------------- ================================================================================ mozc-2.17.2077.102-2.fc21 (FEDORA-2015-7367) A Japanese Input Method Editor (IME) designed for multi-platform -------------------------------------------------------------------------------- Update Information: New upstream release -------------------------------------------------------------------------------- ChangeLog: * Wed Apr 29 2015 Kalev Lember <kalevlember@xxxxxxxxx> - 2.17.2077.102-2 - Rebuilt for protobuf soname bump * Tue Apr 28 2015 Akira TAGOH <tagoh@xxxxxxxxxx> - 2.17.2077.102-1 - rebase to 2.17.2077.102. * Wed Mar 25 2015 Richard Hughes <rhughes@xxxxxxxxxx> - 1.15.1814.102-4 - Register as an AppStream component. -------------------------------------------------------------------------------- ================================================================================ mozilla-requestpolicy-1.0-0.4.20150430gitf4e92d.fc21 (FEDORA-2015-7336) Firefox and Seamonkey extension that gives you control over cross-site requests -------------------------------------------------------------------------------- Update Information: - **Update to Beta9.1** - **Changed upstream URL** -------------------------------------------------------------------------------- ChangeLog: * Thu Apr 30 2015 Antonio Trande <sagitterATfedoraproject.org> - 1.0-0.4.20150430gitf4e92d - Update to Beta9.1 - Changed upstream URL -------------------------------------------------------------------------------- ================================================================================ opendmarc-1.3.1-13.fc21 (FEDORA-2015-7290) A Domain-based Message Authentication, Reporting & Conformance (DMARC) milter and library -------------------------------------------------------------------------------- Update Information: - Replaced various commands with rpm macros - Included support for systemd macros (#1216881) - Added libspf2-devel to BuildRequires - libspf2 support now provided for all branches -------------------------------------------------------------------------------- ChangeLog: * Wed Apr 29 2015 Steve Jenkins <steve@xxxxxxxxxxxxxxxx> - 1.3.1-13 - Replaced various commands with rpm macros - Included support for systemd macros (#1216881) -------------------------------------------------------------------------------- References: [ 1 ] Bug #905304 - Review Request: OpenDMARC - Domain-based Message Authentication, Reporting & Conformance (DMARC) milter and library https://bugzilla.redhat.com/show_bug.cgi?id=905304 -------------------------------------------------------------------------------- ================================================================================ perl-Archive-Extract-0.74-3.fc21 (FEDORA-2015-7363) Generic archive extracting mechanism -------------------------------------------------------------------------------- Update Information: This release correct a typo in dependency on unxz utility. This release adds dependencies on all supported decompressors and it prefers Archive::Tar to suppress warnings. -------------------------------------------------------------------------------- ChangeLog: * Thu Apr 30 2015 Petr Pisar <ppisar@xxxxxxxxxx> - 1:0.74-3 - Fix a typo, unxz is provided by xz * Thu Apr 30 2015 Petr Pisar <ppisar@xxxxxxxxxx> - 1:0.74-2 - Prefer Archive::Tar (bug #1217352) * Fri Nov 21 2014 Petr Pisar <ppisar@xxxxxxxxxx> - 1:0.74-1 - 0.74 bump -------------------------------------------------------------------------------- References: [ 1 ] Bug #1217352 - perl-Archive-Extract should have dependency on perl(Archive::Tar) https://bugzilla.redhat.com/show_bug.cgi?id=1217352 -------------------------------------------------------------------------------- ================================================================================ perl-Crypt-PBKDF2-0.150900-1.fc21 (FEDORA-2015-7370) PBKDF2 password hashing algorithm -------------------------------------------------------------------------------- Update Information: Upgrade to 0.150900. Bugfix -------------------------------------------------------------------------------- ChangeLog: * Thu Apr 30 2015 David Dick <ddick@xxxxxxxx> - 0.150900-1 - Upgrade to 0.150900. Bugfix -------------------------------------------------------------------------------- References: [ 1 ] Bug #1207883 - perl-Crypt-PBKDF2-0.150900 is available https://bugzilla.redhat.com/show_bug.cgi?id=1207883 -------------------------------------------------------------------------------- ================================================================================ perl-Socket-2.019-1.fc21 (FEDORA-2015-7291) Networking constants and support functions -------------------------------------------------------------------------------- Update Information: This release does not contain any code change for Linux. It is delivered only to provide latest version number. -------------------------------------------------------------------------------- ChangeLog: * Thu Apr 30 2015 Petr Pisar <ppisar@xxxxxxxxxx> - 1:2.019-1 - 2.019 bump -------------------------------------------------------------------------------- References: [ 1 ] Bug #1217286 - perl-Socket-2.019 is available https://bugzilla.redhat.com/show_bug.cgi?id=1217286 -------------------------------------------------------------------------------- ================================================================================ publicsuffix-list-20150430-1.fc21 (FEDORA-2015-7286) Cross-vendor public domain suffix database -------------------------------------------------------------------------------- Update Information: The latest revision - 20150430 -------------------------------------------------------------------------------- ChangeLog: * Thu Apr 30 2015 Yanko Kaneti <yaneti@xxxxxxxxxxx> - 20150430-1 - The latest revision - 20150430 -------------------------------------------------------------------------------- ================================================================================ python-cmd2-0.6.8-2.fc21 (FEDORA-2015-7323) Extra features for standard library's cmd module -------------------------------------------------------------------------------- Update Information: Fix python3 package by removing double-use of 2to3. -------------------------------------------------------------------------------- ChangeLog: * Wed Apr 29 2015 Ralph Bean <rbean@xxxxxxxxxx> - 0.6.8-2 - Fix python3 subpackage by removing double-run of 2to3 (it's not idempotent!). * Wed Apr 29 2015 Ralph Bean <rbean@xxxxxxxxxx> - 0.6.8-1 - new version -------------------------------------------------------------------------------- ================================================================================ python-httplib2-0.9.1-1.fc21 (FEDORA-2015-7280) A comprehensive HTTP client library -------------------------------------------------------------------------------- Update Information: Update to 0.9.1 and drop upstreamed patches -------------------------------------------------------------------------------- ChangeLog: * Sun Apr 12 2015 Kevin Fenzi <kevin@xxxxxxxxx> 0.9.1-1 - Update to 0.9.1 and drop upstreamed patches * Fri Apr 3 2015 Kevin Fenzi <kevin@xxxxxxxxx> 0.9-6 - Add patch to fix http over proxy. Fixes bug #857514 - Add patch to fix CVE-2013-2037. Fixes bug #958640 - Add patch to fix binary headers in python3. Fixes bug #1205127 * Mon Jan 12 2015 Adam Williamson <awilliam@xxxxxxxxxx> - 0.9-5 - certfile.patch: use /etc/pki/tls not /etc/ssl/certs, patch python3 too -------------------------------------------------------------------------------- References: [ 1 ] Bug #1154641 - httplib2.CA_CERTS not patched on python 3 https://bugzilla.redhat.com/show_bug.cgi?id=1154641 -------------------------------------------------------------------------------- ================================================================================ python-statsd-2.1.2-2.fc21 (FEDORA-2015-7284) A Python statsd client -------------------------------------------------------------------------------- Update Information: Fixed fedora-review warnings -------------------------------------------------------------------------------- References: [ 1 ] Bug #1214840 - Review Request: python-statsd - Python client for the statsd daemon https://bugzilla.redhat.com/show_bug.cgi?id=1214840 -------------------------------------------------------------------------------- ================================================================================ qcustomplot-1.3.1-3.fc21 (FEDORA-2015-7313) Qt widget for plotting and data visualization -------------------------------------------------------------------------------- Update Information: This update fixes a typo in the qcustomplot-qt5.pc pkg-config file. -------------------------------------------------------------------------------- ChangeLog: * Thu Apr 30 2015 Sandro Mani <manisandro@xxxxxxxxx> - 1.3.1-3 - Fix qcustomplot-qt5.pc * Wed Apr 29 2015 Sandro Mani <manisandro@xxxxxxxxx> - 1.3.1-2 - Also build a qt5 version * Sat Apr 25 2015 Sandro Mani <manisandro@xxxxxxxxx> - 1.3.1-1 - Update to 1.3.1 -------------------------------------------------------------------------------- ================================================================================ qhexedit2-0.6.5-2.fc21 (FEDORA-2015-7345) Binary Editor for Qt -------------------------------------------------------------------------------- Update Information: This build adds a Qt5 version of the qhexedit2 library. -------------------------------------------------------------------------------- ChangeLog: * Wed Apr 29 2015 Sandro Mani <manisandro@xxxxxxxxx> - 0.6.5-2 - Build Qt5 library -------------------------------------------------------------------------------- ================================================================================ qtractor-0.6.6-1.fc21 (FEDORA-2015-7325) Audio/MIDI multi-track sequencer -------------------------------------------------------------------------------- Update Information: Update to 0.6.6 See http://qtractor.sourceforge.net/qtractor-downloads.html for details -------------------------------------------------------------------------------- ChangeLog: * Wed Apr 1 2015 Brendan Jones <brendan.jones.it@xxxxxxxxx> 0.6.6-1 - Update to 0.6.6 -------------------------------------------------------------------------------- ================================================================================ samplv1-0.6.1-1.fc21 (FEDORA-2015-7368) A polyphonic sampler synthesizer with stereo fx -------------------------------------------------------------------------------- Update Information: Update of the V1 suite to 0.6.1 -------------------------------------------------------------------------------- ChangeLog: * Sun Mar 22 2015 Brendan Jones <brendan.jones.it@xxxxxxxxx> 0.6.0-1 - Update to 0.6.1 -------------------------------------------------------------------------------- ================================================================================ spamassassin-3.4.1-1.fc21 (FEDORA-2015-7293) Spam filter for email which can be invoked from mail delivery agents -------------------------------------------------------------------------------- Update Information: Update to 3.4.1 -------------------------------------------------------------------------------- ChangeLog: * Wed Apr 29 2015 Kevin Fenzi <kevin@xxxxxxxxx> 3.4.1-1 - Update to 3.4.1 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1217287 - spamassassin-3.4.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1217287 -------------------------------------------------------------------------------- ================================================================================ spdlog-0-4.20150410git211ce99.fc21 (FEDORA-2015-7315) Super fast C++ logging library -------------------------------------------------------------------------------- Update Information: - don't build the base package - remove a dot from the release tag - corrected -devel subpackage description Import package -------------------------------------------------------------------------------- ================================================================================ synthv1-0.6.1-1.fc21 (FEDORA-2015-7368) A 4-oscillator subtractive polyphonic synthesizer -------------------------------------------------------------------------------- Update Information: Update of the V1 suite to 0.6.1 -------------------------------------------------------------------------------- ChangeLog: * Sun Mar 22 2015 Brendan Jones <brendan.jones.it@xxxxxxxxx> 0.6.1-1 - Update to 0.6.1 -------------------------------------------------------------------------------- ================================================================================ texlive-2014-7.1.20140525_r34255.fc21 (FEDORA-2015-7292) TeX formatting system -------------------------------------------------------------------------------- Update Information: insecure use of /tmp in mktexlsr -------------------------------------------------------------------------------- ChangeLog: * Wed Apr 29 2015 Than Ngo <than@xxxxxxxxxx> - 4:2014-7.1.20140525_r34255 - Resolves: bz#1181169, insecure use of /tmp in mktexlsr -------------------------------------------------------------------------------- References: [ 1 ] Bug #1181167 - texlive: insecure use of /tmp in mktexlsr https://bugzilla.redhat.com/show_bug.cgi?id=1181167 -------------------------------------------------------------------------------- ================================================================================ tomahawk-0.8.4-1.fc21 (FEDORA-2015-7377) The Social Media Player -------------------------------------------------------------------------------- Update Information: New stable/bugfix 0.8.4 release, see also http://chris.de/?p=19458 -------------------------------------------------------------------------------- ChangeLog: * Wed Apr 29 2015 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 0.8.4-1 - 0.8.4 * Tue Jan 27 2015 Petr Machata <pmachata@xxxxxxxxxx> - 0.8.2-3 - Rebuild for boost 1.57.0 * Tue Jan 27 2015 Petr Machata <pmachata@xxxxxxxxxx> - 0.8.2-2 - Rebuild for boost 1.57.0 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1166418 - tomahawk-0.8.4 is available https://bugzilla.redhat.com/show_bug.cgi?id=1166418 -------------------------------------------------------------------------------- ================================================================================ tuned-2.4.1-5.fc21 (FEDORA-2015-7319) A dynamic adaptive system tuning daemon -------------------------------------------------------------------------------- Update Information: This is an update fixing configobj class imports. It may fix some crashes. -------------------------------------------------------------------------------- ChangeLog: * Thu Apr 30 2015 Jaroslav Škarvada <jskarvad@xxxxxxxxxx> - 2.4.1-5 - fixed configobj class imports resolves: rhbz#1217327 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1217327 - Service fails to start https://bugzilla.redhat.com/show_bug.cgi?id=1217327 -------------------------------------------------------------------------------- ================================================================================ wildmagic5-5.13-9.fc21 (FEDORA-2015-7317) Wild Magic libraries -------------------------------------------------------------------------------- Update Information: - **New package** -------------------------------------------------------------------------------- References: [ 1 ] Bug #1211362 - Review Request: wildmagic5 - Wild Magic libraries https://bugzilla.redhat.com/show_bug.cgi?id=1211362 -------------------------------------------------------------------------------- -- test mailing list test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe: https://admin.fedoraproject.org/mailman/listinfo/test
