The following Fedora 21 Security updates need testing: Age URL 119 https://admin.fedoraproject.org/updates/FEDORA-2015-1467/openstack-glance-2014.1.3-4.fc21 64 https://admin.fedoraproject.org/updates/FEDORA-2015-4689/quassel-0.11.0-2.fc21 49 https://admin.fedoraproject.org/updates/FEDORA-2015-6005/asterisk-11.17.1-1.fc21 30 https://admin.fedoraproject.org/updates/FEDORA-2015-7242/389-ds-base-1.3.3.10-1.fc21 28 https://admin.fedoraproject.org/updates/FEDORA-2015-7326/drupal7-views-3.11-1.fc21 19 https://admin.fedoraproject.org/updates/FEDORA-2015-7878/krb5-1.12.2-17.fc21 16 https://admin.fedoraproject.org/updates/FEDORA-2015-8170/rawstudio-2.1-0.1.20150511git983bda1.fc21 10 https://admin.fedoraproject.org/updates/FEDORA-2015-8487/zarafa-7.1.12-2.fc21 9 https://admin.fedoraproject.org/updates/FEDORA-2015-8606/python-tornado-3.2.2-1.fc21 9 https://admin.fedoraproject.org/updates/FEDORA-2015-8168/cabal-install-1.16.1.0-1.fc21,haskell-platform-2013.2.0.0-39.fc21 8 https://admin.fedoraproject.org/updates/FEDORA-2015-8647/dcraw-9.25.0-2.fc21 7 https://admin.fedoraproject.org/updates/FEDORA-2015-8713/netty-4.0.28-1.fc21 7 https://admin.fedoraproject.org/updates/FEDORA-2015-8717/ufraw-0.21-1.fc21 4 https://admin.fedoraproject.org/updates/FEDORA-2015-8767/postgresql-9.3.7-1.fc21 4 https://admin.fedoraproject.org/updates/FEDORA-2015-8771/ntfs-3g-2015.3.14-2.fc21 4 https://admin.fedoraproject.org/updates/FEDORA-2015-8783/batik-1.8-0.18.svn1230816.fc21 4 https://admin.fedoraproject.org/updates/FEDORA-2015-8822/qpid-cpp-0.32-3.fc21 4 https://admin.fedoraproject.org/updates/FEDORA-2015-8788/pcs-0.9.137-4.fc21 4 https://admin.fedoraproject.org/updates/FEDORA-2015-8751/fuse-2.9.4-1.fc21 2 https://admin.fedoraproject.org/updates/FEDORA-2015-9039/php-symfony-2.5.12-1.fc21 2 https://admin.fedoraproject.org/updates/FEDORA-2015-8948/ipsec-tools-0.8.2-1.fc21 2 https://admin.fedoraproject.org/updates/FEDORA-2015-8919/thermostat-1.0.6-2.fc21 0 https://admin.fedoraproject.org/updates/FEDORA-2015-9090/fossil-1.33-1.fc21 0 https://admin.fedoraproject.org/updates/FEDORA-2015-9216/httpd-2.4.12-1.fc21 0 https://admin.fedoraproject.org/updates/FEDORA-2015-9130/nss-3.19.1-1.0.fc21,nss-softokn-3.19.1-1.0.fc21,nss-util-3.19.1-1.0.fc21 0 https://admin.fedoraproject.org/updates/FEDORA-2015-9128/fusionforge-5.3.2-4.fc21 0 https://admin.fedoraproject.org/updates/FEDORA-2015-9127/kernel-4.0.4-202.fc21 0 https://admin.fedoraproject.org/updates/FEDORA-2015-9141/ceph-deploy-1.5.25-1.fc21 The following Fedora 21 Critical Path updates have yet to be approved: Age URL 9 https://admin.fedoraproject.org/updates/FEDORA-2015-8597/redhat-rpm-config-28-1.fc21 4 https://admin.fedoraproject.org/updates/FEDORA-2015-8751/fuse-2.9.4-1.fc21 4 https://admin.fedoraproject.org/updates/FEDORA-2015-8771/ntfs-3g-2015.3.14-2.fc21 4 https://admin.fedoraproject.org/updates/FEDORA-2015-8794/libdb-5.3.28-12.fc21,libdb4-4.8.30-18.fc21 4 https://admin.fedoraproject.org/updates/FEDORA-2015-8778/ibus-1.5.10-5.fc21 4 https://admin.fedoraproject.org/updates/FEDORA-2015-8735/libfm-1.2.3-5.D20150521git577806e29d.fc21,pcmanfm-1.2.3-2.fc21 2 https://admin.fedoraproject.org/updates/FEDORA-2015-9022/lz4-r129-1.fc21 2 https://admin.fedoraproject.org/updates/FEDORA-2015-9003/libpcap-1.7.3-1.fc21 2 https://admin.fedoraproject.org/updates/FEDORA-2015-8944/perl-Scalar-List-Utils-1.42-1.fc21 2 https://admin.fedoraproject.org/updates/FEDORA-2015-8908/libselinux-2.3-10.fc21 0 https://admin.fedoraproject.org/updates/FEDORA-2015-9164/cdrkit-1.1.11-26.fc21 0 https://admin.fedoraproject.org/updates/FEDORA-2015-9194/sqlite-3.8.10.2-1.fc21,spatialite-tools-4.2.0-12.fc21 0 https://admin.fedoraproject.org/updates/FEDORA-2015-9132/libgsf-1.14.33-1.fc21 0 https://admin.fedoraproject.org/updates/FEDORA-2015-9130/nss-3.19.1-1.0.fc21,nss-softokn-3.19.1-1.0.fc21,nss-util-3.19.1-1.0.fc21 0 https://admin.fedoraproject.org/updates/FEDORA-2015-9206/evolution-data-server-3.12.11-4.fc21 0 https://admin.fedoraproject.org/updates/FEDORA-2015-9195/binutils-2.24-32.fc21 0 https://admin.fedoraproject.org/updates/FEDORA-2015-9151/createrepo_c-0.9.0-1.fc21 The following builds have been pushed to Fedora 21 updates-testing PyOpenGL-3.1.0-2.fc21 RBTools-0.7.3-1.fc21 ahkab-0.17-1.fc21 ansible-1.9.1-2.fc21 api-sanity-checker-1.98.6-3.fc21 binutils-2.24-32.fc21 blueman-2.0-5.fc21 bro-2.3.2-4.fc21 cdrkit-1.1.11-26.fc21 ceph-deploy-1.5.25-1.fc21 collectl-4.0.2-1.fc21 createrepo_c-0.9.0-1.fc21 cura-14.12.1-4.fc21 cura-lulzbot-14.12-5.fc21 diet-2.9-1.fc21 drupal7-advanced_help-1.3-1.fc21 email2trac-2.8.8-1.fc21 evolution-data-server-3.12.11-4.fc21 fcitx-qt5-1.0.2-1.fc21 flamp-2.2.02-2.fc21 fllog-1.2.0-1.fc21 fossil-1.33-1.fc21 fusionforge-5.3.2-4.fc21 globus-ftp-client-8.22-1.fc21 globus-gsi-callback-5.7-1.fc21 globus-gsi-credential-7.8-1.fc21 globus-gssapi-gsi-11.16-1.fc21 globus-io-11.4-1.fc21 globus-simple-ca-4.20-1.fc21 globus-xio-gsi-driver-3.7-1.fc21 gnome-commander-1.4.6-3.fc21 gnome-initial-setup-3.14.4-1.fc21 httpd-2.4.12-1.fc21 hub-1.12.4-2.fc21 isomaster-1.3.13-1.fc21 kate-4.14.3-6.fc21 kernel-4.0.4-202.fc21 keychain-2.8.0-1.fc21 libgsf-1.14.33-1.fc21 lightdm-gtk-1.8.5-16.fc21 meanwhile-1.1.0-17.fc21 mingw-gnutls-3.3.15-1.fc21 mingw-nsis-2.46-15.fc21 mingw-postgresql-9.3.7-1.fc21 nodejs-fs-write-stream-atomic-1.0.3-1.fc21 nodejs-inflight-1.0.4-5.fc21 nodejs-normalize-git-url-1.0.1-1.fc21 nodejs-npm-cache-filename-1.0.1-5.fc21 nodejs-npm-install-checks-1.0.5-1.fc21 nss-3.19.1-1.0.fc21 nss-softokn-3.19.1-1.0.fc21 nss-util-3.19.1-1.0.fc21 octave-3.8.2-18.fc21 osbs-0.10-1.fc21 php-pecl-xdebug-2.3.2-3.fc21 php-phpunit-PHPUnit-4.6.9-1.fc21 php-phpunit-PHPUnit-MockObject-2.3.3-1.fc21 poedit-1.8.1-1.fc21 postbooks-4.8.2-1.fc21 proftpd-1.3.5a-1.fc21 psutils-1.23-7.fc21 python-phyghtmap-1.71-1.fc21 python-py-1.4.28-1.fc21 python-regex-2015.05.28-1.fc21 python-requests-2.7.0-1.fc21 python-rosdistro-0.4.2-1.fc21 python-urllib3-1.10.4-2.20150503gita91975b.fc21 python-vcrpy-1.5.2-2.fc21 rpmlint-1.6-3.fc21 rubygem-test-unit-3.1.1-100.fc21 salt-2015.5.1-1.fc21 sendmail-8.14.9-6.fc21 skf-2.00-1.fc21 spatialite-tools-4.2.0-12.fc21 sqlite-3.8.10.2-1.fc21 torsocks-2.1.0-1.fc21 weechat-1.2-2.fc21 z3-4.4.0-1.fc21 Details about builds: ================================================================================ PyOpenGL-3.1.0-2.fc21 (FEDORA-2015-9072) Python 2.x bindings for OpenGL -------------------------------------------------------------------------------- Update Information: Add accelerate modules for Python 2 and 3 -------------------------------------------------------------------------------- ChangeLog: * Wed Apr 1 2015 Jonathan Underwood <Jonathan G. Underwood@xxxxxxxxx> - 3.1.0-2 - Add accelerate modules for Python 2 and 3 - Package is no longer noarch - Tk sub-packages are noarch -------------------------------------------------------------------------------- References: [ 1 ] Bug #1198866 - RFE: Include a sub-package for the -accelerate module? https://bugzilla.redhat.com/show_bug.cgi?id=1198866 -------------------------------------------------------------------------------- ================================================================================ RBTools-0.7.3-1.fc21 (FEDORA-2015-9233) Tools for use with ReviewBoard -------------------------------------------------------------------------------- Update Information: https://www.reviewboard.org/docs/releasenotes/rbtools/0.7.3/ -------------------------------------------------------------------------------- ChangeLog: * Fri May 29 2015 Stephen Gallagher <sgallagh@xxxxxxxxxx> 0.7.3-1 - New upstream release 0.7.3 - https://www.reviewboard.org/docs/releasenotes/rbtools/0.7.3/ -------------------------------------------------------------------------------- References: [ 1 ] Bug #1225179 - rbt post + git-svn: CRITICAL: object of type 'NoneType' has no len(). https://bugzilla.redhat.com/show_bug.cgi?id=1225179 -------------------------------------------------------------------------------- ================================================================================ ahkab-0.17-1.fc21 (FEDORA-2015-9217) A SPICE-like electronic circuit simulator written in Python -------------------------------------------------------------------------------- Update Information: Bump to lastest version -------------------------------------------------------------------------------- ChangeLog: * Fri May 29 2015 Kiara Navarro <sophiekovalevsky@xxxxxxxxxxxxxxxxx> - 0.16-1 - Bump to lastest version - Implementation of memoization system - New time functions. - Replace my_time_function.value() -------------------------------------------------------------------------------- ================================================================================ ansible-1.9.1-2.fc21 (FEDORA-2015-9080) SSH-based configuration management, deployment, and task execution system -------------------------------------------------------------------------------- Update Information: * Fixes basic functionality of the dnf module for managing all your f22 and f23 hosts. -------------------------------------------------------------------------------- ChangeLog: * Wed May 27 2015 Toshio Kuratomi <toshio@xxxxxxxxxxxxxxxxx> - 1.9.1-2 - Fix for dnf -------------------------------------------------------------------------------- ================================================================================ api-sanity-checker-1.98.6-3.fc21 (FEDORA-2015-9052) An automatic generator of basic unit tests for a shared C/C++ library -------------------------------------------------------------------------------- Update Information: Fix non-standard permission on binary. -------------------------------------------------------------------------------- ChangeLog: * Wed May 27 2015 Richard Shaw <hobbes1069@xxxxxxxxx> - 1.98.6-3 - Fix non-standard permissions on binary (BZ#1131946). -------------------------------------------------------------------------------- References: [ 1 ] Bug #1131946 - Non-standard permissions on /bin/api-sanity-checker https://bugzilla.redhat.com/show_bug.cgi?id=1131946 -------------------------------------------------------------------------------- ================================================================================ binutils-2.24-32.fc21 (FEDORA-2015-9195) A GNU collection of binary utilities -------------------------------------------------------------------------------- Update Information: Fixes compile time warnings encountered whilst building the binutils with a gcc 5.1 compiler -------------------------------------------------------------------------------- ChangeLog: * Thu May 28 2015 Nick Clifton <nickc@xxxxxxxxxx> - 2.24-32 - Fix compile time warnings building with gcc 5.1. - Resolves: BZ #1224187 * Mon Apr 27 2015 Nick Clifton <nickc@xxxxxxxxxx> - 2.24-31 - Require the coreutils so that touch is available. - Resolves: BZ #1215242 -------------------------------------------------------------------------------- ================================================================================ blueman-2.0-5.fc21 (FEDORA-2015-9222) GTK+ Bluetooth Manager -------------------------------------------------------------------------------- Update Information: - update to 2.0 release - supports bluez5 - drops support for nautilus -------------------------------------------------------------------------------- ================================================================================ bro-2.3.2-4.fc21 (FEDORA-2015-9187) A Network Intrusion Detection System and Analysis Framework -------------------------------------------------------------------------------- Update Information: - Rebuilt. -------------------------------------------------------------------------------- ChangeLog: * Thu May 28 2015 Fabian Affolter <mail@xxxxxxxxxxxxxxxxxx> - 2.3.2-4 * Fix requirements (rhbz#1220801) * Tue Apr 28 2015 Peter Robinson <pbrobinson@xxxxxxxxxxxxxxxxx> 2.3.2-3 - Fix NVR requires * Mon Apr 20 2015 Marcin Juszkiewicz <mjuszkiewicz@xxxxxxxxxx> - 2.3.2-2 - x86-64 is not the only one 64-bit architecture in Fedora (rhbz#1213420) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1220801 - /usr/lib/systemd/system/bro.service invokes broctl, but the bro rpm does not pull in the broctl rpm https://bugzilla.redhat.com/show_bug.cgi?id=1220801 -------------------------------------------------------------------------------- ================================================================================ cdrkit-1.1.11-26.fc21 (FEDORA-2015-9164) A collection of CD/DVD utilities -------------------------------------------------------------------------------- Update Information: libusal: added /dev/srN next to /dev/scdN path when scanning for devices -------------------------------------------------------------------------------- ChangeLog: * Fri May 29 2015 Frantisek Kluknavsky <fkluknav@xxxxxxxxxx> - 1.1.11-28 - libusal: added /dev/srN next to /dev/scdN path when scanning for devices added cdrkit-1.1.11-devname.patch bz#1053056 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1053056 - wodim does not detect devices https://bugzilla.redhat.com/show_bug.cgi?id=1053056 -------------------------------------------------------------------------------- ================================================================================ ceph-deploy-1.5.25-1.fc21 (FEDORA-2015-9141) Admin and deploy tool for Ceph -------------------------------------------------------------------------------- Update Information: Update to ceph-deploy 1.5.25 (CVE-2015-4053). See the [upstream changelog](http://ceph.com/ceph-deploy/docs/changelog.html) for more details. -------------------------------------------------------------------------------- ChangeLog: * Tue May 26 2015 Ken Dreyer <ktdreyer@xxxxxxxxxxxx> - 1.5.25-1 - update to ceph-deploy 1.5.25 (CVE-2015-4053) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1224129 - CVE-2015-4053 ceph-deploy admin command copies keyring file to /etc/ceph which is world readable https://bugzilla.redhat.com/show_bug.cgi?id=1224129 -------------------------------------------------------------------------------- ================================================================================ collectl-4.0.2-1.fc21 (FEDORA-2015-9226) A utility to collect various Linux performance data -------------------------------------------------------------------------------- Update Information: - update to upstream version 4.0.2 - upstream changelog at http://collectl.sourceforge.net/Releases.html -------------------------------------------------------------------------------- ChangeLog: * Fri May 29 2015 Dan Horák <dan[at]danny.cz> - 4.0.2-1 - upgrade to upstream version 4.0.2 (#1225669) * Mon Apr 13 2015 Dan Horák <dan[at]danny.cz> - 4.0.0-2 - workaround perl dependency generator issue in EPEL <= 7 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1225669 - collectl-4.0.2.src is available https://bugzilla.redhat.com/show_bug.cgi?id=1225669 -------------------------------------------------------------------------------- ================================================================================ createrepo_c-0.9.0-1.fc21 (FEDORA-2015-9151) Creates a common metadata repository -------------------------------------------------------------------------------- Update Information: Update to 0.9.0 Update to 0.8.2 Replace g_error() with g_critical() (RhBug: 1162102) Update to 0.7.1 Update to 0.7.0 mergerepo: Do not prepend file:// if protocol is already specified -------------------------------------------------------------------------------- ChangeLog: * Thu May 28 2015 Tomas Mlcoch <tmlcoch at redhat.com> - 0.9.0-1 - mergerepo_c: Prepend protocol (file://) for URLs in pkgorigins (if --koji is used) - Update bash completion - doc: Update manpages - mergerepo: Fix NVR merging method - mergerepo: Fix behavior of --all param - createrepo: Add --cut-dirs and --location-prefix options - misc: Add cr_cut_dirs() - mergerepo: Use better version comparison algorithm - utils: Port cr_cmp_version_str() to rpm's algorithm (rpmvercmp) - misc: Rename elements in cr_Version structure - mergerepo: Fix version-release comparison for packages when --all is used - mergerepo: Show warnings if some groupfile cannot be automatically used - mergerepo: Exit with error code when a groupfile cannot be copied * Fri May 15 2015 Tomas Mlcoch <tmlcoch at redhat.com> - 0.8.3-1 - mergerepo: Do not prepend file:// if protocol is already specified * Thu May 14 2015 Tomas Mlcoch <tmlcoch at redhat.com> - 0.8.2-1 - doc: Add man pages for sqliterepo and update manpages for other tools - mergerepo: Work only with noarch packages if --koji is used and no archlist is specified - mergerepo: Use file:// protocol in local baseurl - mergerepo: Do not include baseurl for first repo if --koji is specified (RhBug: 1220082) - mergerepo_c: Support multilib arch for --koji repos - mergerepo_c: Refactoring - Print debug message with version in each tool when --verbose is used - modifyrepo: Don't override file with itself (RhBug: 1215229) * Wed May 6 2015 Tomas Mlcoch <tmlcoch at redhat.com> - 0.8.1-1 - Fix bash completion for RHEL 6 * Tue May 5 2015 Tomas Mlcoch <tmlcoch at redhat.com> - 0.8.0-1 - New tool Sqliterepo_c - It generates sqlite databases into repos where the sqlite is missing. - Internal refactoring and code cleanup * Fri Feb 20 2015 Tomas Mlcoch <tmlcoch at redhat.com> - 0.7.7-1 - Proper directory for temporary files when --local-sqlite is used (Issue #12) - Bring bash completion install dir and filenames up to date with current bash-completion * Thu Jan 8 2015 Tomas Mlcoch <tmlcoch at redhat.com> - 0.7.6-1 - Python: Add __contains__ method to Repomd() class * Sun Dec 28 2014 Tomas Mlcoch <tmlcoch at redhat.com> - 0.7.5-1 - Python repomd: Support for iteration and indexing by type - e.g. record = repomd['primary'] - Show warning if an XML parser probably parsed a bad type of medata (New XML parser warning type CR_XML_WARNING_BADMDTYPE) - drpm library: Explicitly try to locate libdrpm.so.0 - deltarpms: Don't show options for delta rpms if support is not available -------------------------------------------------------------------------------- References: [ 1 ] Bug #1162102 - [abrt] createrepo_c: cr_parse_repomd(): mergerepo_c killed by SIGTRAP https://bugzilla.redhat.com/show_bug.cgi?id=1162102 -------------------------------------------------------------------------------- ================================================================================ cura-14.12.1-4.fc21 (FEDORA-2015-9199) 3D printer control software -------------------------------------------------------------------------------- Update Information: Patch: Open directories with xdg-open (#1217961) -------------------------------------------------------------------------------- ChangeLog: * Fri May 29 2015 Miro Hrončok <mhroncok@xxxxxxxxxx> - 14.12.1-4 - Patch: Open directories with xdg-open (#1217961) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1217961 - Open plugin location button doesn't work https://bugzilla.redhat.com/show_bug.cgi?id=1217961 -------------------------------------------------------------------------------- ================================================================================ cura-lulzbot-14.12-5.fc21 (FEDORA-2015-9100) Cura LulzBot Edition, 3D printer control software -------------------------------------------------------------------------------- Update Information: Patch: Open directories with xdg-open (#1217961) -------------------------------------------------------------------------------- ChangeLog: * Fri May 29 2015 Miro Hrončok <mhroncok@xxxxxxxxxx> - 14.12-5 - Patch: Open directories with xdg-open (#1217961) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1217961 - Open plugin location button doesn't work https://bugzilla.redhat.com/show_bug.cgi?id=1217961 -------------------------------------------------------------------------------- ================================================================================ diet-2.9-1.fc21 (FEDORA-2015-9146) A computational servers toolkit -------------------------------------------------------------------------------- Update Information: Upstream 2.9 -------------------------------------------------------------------------------- ChangeLog: * Fri May 29 2015 Haïkel Guémar <hguemar@xxxxxxxxxxxxxxxxx> - 2.9-1 - Upstream 2.9 * Sat May 2 2015 Kalev Lember <kalevlember@xxxxxxxxx> - 2.8.1-14 - Rebuilt for GCC 5 C++11 ABI change * Tue Jan 27 2015 Petr Machata <pmachata@xxxxxxxxxx> - 2.8.1-13 - Rebuild for boost 1.57.0 -------------------------------------------------------------------------------- ================================================================================ drupal7-advanced_help-1.3-1.fc21 (FEDORA-2015-9104) Allows module developers to store their help outside the module system in html -------------------------------------------------------------------------------- Update Information: Update to upstream 1.3 release for bug fixes -------------------------------------------------------------------------------- ChangeLog: * Tue May 26 2015 Jared Smith <jsmith@xxxxxxxxxxxxxxxxx> - 1.3-1 - Update to upstream 1.3 release for bug fixes - Upstream changelog available at https://www.drupal.org/node/2494535 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1224827 - drupal7-advanced_help-1.3 is available https://bugzilla.redhat.com/show_bug.cgi?id=1224827 -------------------------------------------------------------------------------- ================================================================================ email2trac-2.8.8-1.fc21 (FEDORA-2015-9171) Utilities for converting emails to trac tickets -------------------------------------------------------------------------------- Update Information: Update to the latest stable release 2.8.8. Bugfix: No properly applied the patch for ticket #364. -------------------------------------------------------------------------------- ChangeLog: * Fri May 29 2015 Thomas Moschny <thomas.moschny@xxxxxx> - 2.8.8-1 - Update to 2.8.8. -------------------------------------------------------------------------------- ================================================================================ evolution-data-server-3.12.11-4.fc21 (FEDORA-2015-9206) Backend data server for Evolution -------------------------------------------------------------------------------- Update Information: The adde fix corrects writing to output stream, where a failure to write all bytes could cause message sending abort with an error, even there was no real error. To address GNOME's bug https://bugzilla.gnome.org/show_bug.cgi?id=728496 , GOA configured Google calendar not using OAuth2, which could resulted in false password prompts for Google calendars. -------------------------------------------------------------------------------- ChangeLog: * Fri May 29 2015 Milan Crha <mcrha@xxxxxxxxxx> - 3.12.11-4 - Add patch for GNOME bug #749292 (SMTP connection lost while reading message data) * Fri May 15 2015 Milan Crha <mcrha@xxxxxxxxxx> - 3.12.11-3 - Add patch for GNOME bug #728496 (GOA configured Google calendar not using OAuth2) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1186815 - Make camel_stream_write() try to write all bytes at once https://bugzilla.redhat.com/show_bug.cgi?id=1186815 -------------------------------------------------------------------------------- ================================================================================ fcitx-qt5-1.0.2-1.fc21 (FEDORA-2015-9159) Fcitx IM module for Qt5 -------------------------------------------------------------------------------- Update Information: This package provides Fcitx Qt5 input context. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1173625 - Review Request: fcitx-qt5 - Fcitx IM module for Qt5 https://bugzilla.redhat.com/show_bug.cgi?id=1173625 -------------------------------------------------------------------------------- ================================================================================ flamp-2.2.02-2.fc21 (FEDORA-2015-9123) Amateur Multicast Protocol - file transfer program -------------------------------------------------------------------------------- Update Information: Initial package release. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1060804 - Review Request: flamp - Amateur Multicast Protocol - file transfer program https://bugzilla.redhat.com/show_bug.cgi?id=1060804 -------------------------------------------------------------------------------- ================================================================================ fllog-1.2.0-1.fc21 (FEDORA-2015-9168) Amateur Radio Log Program -------------------------------------------------------------------------------- Update Information: Initial package release. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1060817 - Review Request: fllog - Amateur Radio Log Program https://bugzilla.redhat.com/show_bug.cgi?id=1060817 -------------------------------------------------------------------------------- ================================================================================ fossil-1.33-1.fc21 (FEDORA-2015-9090) A distributed SCM with bug tracking and wiki -------------------------------------------------------------------------------- Update Information: Update to latest release -------------------------------------------------------------------------------- ChangeLog: * Wed May 27 2015 Patrick Uiterwijk <puiterwijk@xxxxxxxxxx> - 1.33-1 - Update to latest release -------------------------------------------------------------------------------- References: [ 1 ] Bug #1191203 - fossil: version 1.30 is available with CVE-2014-3566 (POODLE) fixed https://bugzilla.redhat.com/show_bug.cgi?id=1191203 -------------------------------------------------------------------------------- ================================================================================ fusionforge-5.3.2-4.fc21 (FEDORA-2015-9128) Collaborative development tool -------------------------------------------------------------------------------- Update Information: CVE-2015-0850: Prevent arbitrary command execution via clone URL parameter of the method to create secondary Git repositories. Found by Ansgar Burchardt <ansgar@xxxxxxxxxx>. -------------------------------------------------------------------------------- ChangeLog: * Thu May 28 2015 Sylvain Beucler <beuc@xxxxxxxx> - 5.3.2-4 - CVE-2015-0850: Prevent arbitrary command execution via clone URL parameter of the method to create secondary Git repositories. Found by Ansgar Burchardt <ansgar@xxxxxxxxxx>. -------------------------------------------------------------------------------- ================================================================================ globus-ftp-client-8.22-1.fc21 (FEDORA-2015-9078) Globus Toolkit - GridFTP Client Library -------------------------------------------------------------------------------- Update Information: Globus Toolkit 6 updates from upstream. -------------------------------------------------------------------------------- ChangeLog: * Fri May 29 2015 Mattias Ellert <mattias.ellert@xxxxxxxxxxxx> - 8.22-1 - GT6 update (test improvements) -------------------------------------------------------------------------------- ================================================================================ globus-gsi-callback-5.7-1.fc21 (FEDORA-2015-9078) Globus Toolkit - Globus GSI Callback Library -------------------------------------------------------------------------------- Update Information: Globus Toolkit 6 updates from upstream. -------------------------------------------------------------------------------- ChangeLog: * Fri May 29 2015 Mattias Ellert <mattias.ellert@xxxxxxxxxxxx> - 5.7-1 - GT6 update (GT-599: fix race conditions) -------------------------------------------------------------------------------- ================================================================================ globus-gsi-credential-7.8-1.fc21 (FEDORA-2015-9078) Globus Toolkit - Globus GSI Credential Library -------------------------------------------------------------------------------- Update Information: Globus Toolkit 6 updates from upstream. -------------------------------------------------------------------------------- ChangeLog: * Fri May 29 2015 Mattias Ellert <mattias.ellert@xxxxxxxxxxxx> - 7.8-1 - GT6 update (deprecation of obsolete functions) -------------------------------------------------------------------------------- ================================================================================ globus-gssapi-gsi-11.16-1.fc21 (FEDORA-2015-9078) Globus Toolkit - GSSAPI library -------------------------------------------------------------------------------- Update Information: Globus Toolkit 6 updates from upstream. -------------------------------------------------------------------------------- ChangeLog: * Fri May 29 2015 Mattias Ellert <mattias.ellert@xxxxxxxxxxxx> - 11.16-1 - GT6-update (SSL cipher configuration) -------------------------------------------------------------------------------- ================================================================================ globus-io-11.4-1.fc21 (FEDORA-2015-9078) Globus Toolkit - uniform I/O interface -------------------------------------------------------------------------------- Update Information: Globus Toolkit 6 updates from upstream. -------------------------------------------------------------------------------- ChangeLog: * Fri May 29 2015 Mattias Ellert <mattias.ellert@xxxxxxxxxxxx> - 11.4-1 - GT6 update (test improvements) -------------------------------------------------------------------------------- ================================================================================ globus-simple-ca-4.20-1.fc21 (FEDORA-2015-9078) Globus Toolkit - Simple CA Utility -------------------------------------------------------------------------------- Update Information: Globus Toolkit 6 updates from upstream. -------------------------------------------------------------------------------- ChangeLog: * Fri May 29 2015 Mattias Ellert <mattias.ellert@xxxxxxxxxxxx> - 4.20-1 - GT6 update (increase default key size) -------------------------------------------------------------------------------- ================================================================================ globus-xio-gsi-driver-3.7-1.fc21 (FEDORA-2015-9078) Globus Toolkit - Globus XIO GSI Driver -------------------------------------------------------------------------------- Update Information: Globus Toolkit 6 updates from upstream. -------------------------------------------------------------------------------- ChangeLog: * Fri May 29 2015 Mattias Ellert <mattias.ellert@xxxxxxxxxxxx> - 3.7-1 - GT6 update (handle anonymous targets in GSI RFC2818 mode) -------------------------------------------------------------------------------- ================================================================================ gnome-commander-1.4.6-3.fc21 (FEDORA-2015-9125) A nice and fast file manager for the GNOME desktop -------------------------------------------------------------------------------- Update Information: * More fix on segfault on search dialog * Fix the issue that enter key does not enter directory introduced in the previous rpm -------------------------------------------------------------------------------- ChangeLog: * Thu May 28 2015 Mamoru TASAKA <mtasaka@xxxxxxxxxxxxxxxxx> - 4:1.4.6-3 - Select one entry when pattern matched (bgo#749869) * Wed May 27 2015 Mamoru TASAKA <mtasaka@xxxxxxxxxxxxxxxxx> - 4:1.4.6-2 - Fix return value on mime_exec_file() (bgo#749833, #745454) - Some backport fix -------------------------------------------------------------------------------- ================================================================================ gnome-initial-setup-3.14.4-1.fc21 (FEDORA-2015-9202) Bootstrapping your OS -------------------------------------------------------------------------------- Update Information: This update makes gnome-initial-setup deal gracefully with the unusual situation that goa is not available. -------------------------------------------------------------------------------- ChangeLog: * Thu May 28 2015 Matthias Clasen <mclasen@xxxxxxxxxx> - 3.14.4-1 - Update to 3.14.4 - Deal with absence of goa -------------------------------------------------------------------------------- ================================================================================ httpd-2.4.12-1.fc21 (FEDORA-2015-9216) Apache HTTP Server -------------------------------------------------------------------------------- Update Information: Update to new version 2.4.12. -------------------------------------------------------------------------------- ChangeLog: * Fri May 29 2015 Jan Kaluza <jkaluza@xxxxxxxxxx> - 2.4.12-1 - update to new version 2.4.12 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1174077 - CVE-2014-8109 httpd: LuaAuthzProvider argument handling issue https://bugzilla.redhat.com/show_bug.cgi?id=1174077 -------------------------------------------------------------------------------- ================================================================================ hub-1.12.4-2.fc21 (FEDORA-2015-9197) A command-line wrapper for git with github shortcuts -------------------------------------------------------------------------------- Update Information: Require ruby to avoid a crash when run on top of jruby. -------------------------------------------------------------------------------- ChangeLog: * Wed May 27 2015 Ralph Bean <rbean@xxxxxxxxxx> - 1.12-4-2 - Require ruby (for ruby-mri. jruby and hub don't get along.) https://bugzilla.redhat.com/show_bug.cgi?id=1225254 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1225254 - TypeError: CGI is not a module https://bugzilla.redhat.com/show_bug.cgi?id=1225254 -------------------------------------------------------------------------------- ================================================================================ isomaster-1.3.13-1.fc21 (FEDORA-2015-9212) An easy to use GUI CD image editor -------------------------------------------------------------------------------- Update Information: >From original changelog: 16 Nov 2014 - 1.3.13 ==================== - Used the OSTD ( http://littlesvr.ca/ostd/ ) to add 77 more translations: Afrikaans, Amharic, Aragonese, Armenian, Assamese, Azerbaijani, Basque, Belarusian, Bengali, Bosnian, Breton, Burmese, Central, Khmer, C ornish, Dzongkha, Esperanto, Fulah, Ganda, Georgian, Gujarati, Haitian, Hausa, Hindi, Icelandic, Ido, Igbo, Interlingua, Irish, Javanese, Kannada, Kanuri, Kazakh, Kinyarwanda, Kirghiz, Korean, Kurdish, Latin, Li mburgan, Luxembourgish, Macedonian, Malagasy, Malay, Malayalam, Manx, Maori, Marathi, Mongolian, Nepali, Occitan, Oriya, Panjabi, Persian, Pushto, Scottish, Sinhala, Southern, Swahili, Tagalog, Tajik, Tamil, Tat ar, Telugu, Thai, Tsonga, Turkmen, Uighur, Urdu, Uzbek, Uzbek, (Cyrillic), Walloon, Welsh, Western, Wolof, Xhosa, Yiddish, Yoruba, and Zulu. 13 Oct 2014 - 1.3.12 ==================== - Fixed serious bug that caused corrupt files when editing images over 4.2GB in size. 17 Apr 2014 - 1.3.11 ==================== - Fixed cygwin builds. - Added Bengali and Galician translation. - Updated Finnish translation. - Should work better with bigger than normal boot records now. 25 Feb 2012 - 1.3.10 ==================== - Fixed bug where "out of memory" would be claimed sometimes because RockRidge records were missing. -------------------------------------------------------------------------------- ChangeLog: * Fri Dec 19 2014 Marcin Zajaczkowski <mszpak ATT wp DOTT pl> - 1.3.13-1 - updated to 1.3.13 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1089959 - isomaster-1.3.13 is available https://bugzilla.redhat.com/show_bug.cgi?id=1089959 -------------------------------------------------------------------------------- ================================================================================ kate-4.14.3-6.fc21 (FEDORA-2015-9116) Advanced Text Editor -------------------------------------------------------------------------------- Update Information: Move ktexteditor plugins to kate-part pkg -------------------------------------------------------------------------------- ChangeLog: * Thu May 28 2015 Yaakov Selkowitz <yselkowi@xxxxxxxxxx> - 4.14.3-6 - -part: Move ktexteditor plugins in from kate (#1226071) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1226071 - kate4-part: include ktexteditor plugins https://bugzilla.redhat.com/show_bug.cgi?id=1226071 -------------------------------------------------------------------------------- ================================================================================ kernel-4.0.4-202.fc21 (FEDORA-2015-9127) The Linux kernel -------------------------------------------------------------------------------- Update Information: The 4.0.4-202 update contains a fix for a namespace crash issue. -------------------------------------------------------------------------------- ChangeLog: * Wed May 27 2015 Josh Boyer <jwboyer@xxxxxxxxxxxxxxxxx> - 4.0.4-202 - Apply queued fixes for crasher reported by Alex Larsson * Tue May 26 2015 Laura Abbott <labbott@xxxxxxxxxxxxxxxxx> - Fix signed division error (rhbz 1200353) * Tue May 26 2015 Josh Boyer <jwboyer@xxxxxxxxxxxxxxxxx> - Backport patch to fix might_sleep splat (rhbz 1220519) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1220519 - kernel/sched/core.c:7291 __might_sleep+0x87/0x90() https://bugzilla.redhat.com/show_bug.cgi?id=1220519 [ 2 ] Bug #1200353 - regression in ktime.h breaks infrared IR blaster/transmitter after upgrade to Fedora 21 https://bugzilla.redhat.com/show_bug.cgi?id=1200353 -------------------------------------------------------------------------------- ================================================================================ keychain-2.8.0-1.fc21 (FEDORA-2015-9203) Agent manager for OpenSSH, ssh.com, Sun SSH, and GnuPG -------------------------------------------------------------------------------- Update Information: * Support for OpenSSH 6.8 fingerprints. * Support for GnuPG 2.1.0. * Handle private keys that are symlinks, even if the associated public key is in the target directory rather than alongside the symlink. * Allow private keys to have extensions, such as foo.priv. When looking for matching public keys, look for foo.priv.pub, but also strip extension and look for foo.pub if foo.priv.pub doesn't exist. * Initial support for --list/-l option to list SSH keys. * Updated docs for fish shell usage. -------------------------------------------------------------------------------- ChangeLog: * Tue May 5 2015 Andreas Bierfert <andreas.bierfert@xxxxxxxxxxxxx> - 2.8.0-1 - version upgrade (rhbz#531382, rhbz#811365, rhbz#1209473) - support for newer openssh/gnupg (rhbz#1204340) -------------------------------------------------------------------------------- References: [ 1 ] Bug #531382 - keychain-2.7.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=531382 [ 2 ] Bug #1209473 - keychain-2.8.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1209473 [ 3 ] Bug #811365 - [RFE] New version of keychain (2.7.1) https://bugzilla.redhat.com/show_bug.cgi?id=811365 [ 4 ] Bug #1204340 - keychain does not work with >f22 openssh https://bugzilla.redhat.com/show_bug.cgi?id=1204340 -------------------------------------------------------------------------------- ================================================================================ libgsf-1.14.33-1.fc21 (FEDORA-2015-9132) GNOME Structured File library -------------------------------------------------------------------------------- Update Information: bump libgsf for gnumeric Missing gdk-pixbuf support so not working without ImageMagick out of the box like it should -------------------------------------------------------------------------------- ChangeLog: * Wed May 27 2015 Caolán McNamara <caolanm@xxxxxxxxxx> 1.14.33-1 - Resolves: rhbz#1213052 bump to 1.14.33 * Tue Apr 7 2015 Caolán McNamara <caolanm@xxxxxxxxxx> 1.14.32-1 - Resolves: rhbz#1209211 bump to 1.14.32 * Thu Mar 19 2015 Caolán McNamara <caolanm@xxxxxxxxxx> 1.14.29-6 - Resolves: rhbz#1202683 thumbnails not created in absence of ImageMagick because gdk-pixbuf2-devel not present at build time * Sat Feb 21 2015 Till Maas <opensource@xxxxxxxxx> - 1.14.29-5 - Rebuilt for Fedora 23 Change https://fedoraproject.org/wiki/Changes/Harden_all_packages_with_position-independent_code -------------------------------------------------------------------------------- References: [ 1 ] Bug #1202683 - No LibreOiffce Thumbnails in Nautilus, gsf-office-thumbnailer fails to run https://bugzilla.redhat.com/show_bug.cgi?id=1202683 [ 2 ] Bug #1213052 - please update libgsf to 1.14.33 https://bugzilla.redhat.com/show_bug.cgi?id=1213052 -------------------------------------------------------------------------------- ================================================================================ lightdm-gtk-1.8.5-16.fc21 (FEDORA-2015-9148) LightDM GTK3 Greeter -------------------------------------------------------------------------------- Update Information: Fix problems related to at-spi service startup. -------------------------------------------------------------------------------- ChangeLog: * Wed May 20 2015 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 1.8.5-16 - unset_AT_SPI_BUS.patch (#1175026) * Tue Mar 24 2015 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> 1.8.5-15 - drop (temporary) -gtk2 subpkg support * Fri Feb 20 2015 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> - 1.8.5-14 - merge epel branch mods - (fedora) drop Requires: system-logos (not used anymore) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1175026 - a11y bus running as lightdm user leads to "Couldn't register with accessibility bus:" on program launch https://bugzilla.redhat.com/show_bug.cgi?id=1175026 -------------------------------------------------------------------------------- ================================================================================ meanwhile-1.1.0-17.fc21 (FEDORA-2015-9136) Lotus Sametime Community Client library -------------------------------------------------------------------------------- Update Information: Authentication fails when compiled with latest GCC. -------------------------------------------------------------------------------- ChangeLog: * Wed May 27 2015 Simone Caronni <negativo17@xxxxxxxxx> - 1.1.0-17 - Fix for failed login (#1171300). Thanks Gustavo Luiz Darte. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1171300 - Sametime Login Fails after updating from 1.1.0-12.fc20.x86_64 to 1.1.0-16.fc21.x86_64 https://bugzilla.redhat.com/show_bug.cgi?id=1171300 -------------------------------------------------------------------------------- ================================================================================ mingw-gnutls-3.3.15-1.fc21 (FEDORA-2015-9097) MinGW GnuTLS TLS/SSL encryption library -------------------------------------------------------------------------------- Update Information: GNUTLS-SA-2015-2 fix -------------------------------------------------------------------------------- ChangeLog: * Thu May 28 2015 Michael Cronenworth <mike@xxxxxxxxxx> - 3.3.15-1 - Update to 3.3.15 * Sat Apr 11 2015 Kalev Lember <kalevlember@xxxxxxxxx> - 3.3.14-2 - Rebuild against latest mingw-gcc -------------------------------------------------------------------------------- ================================================================================ mingw-nsis-2.46-15.fc21 (FEDORA-2015-9086) Nullsoft Scriptable Install System -------------------------------------------------------------------------------- Update Information: Add NSIS_MAX_STRLEN=8192 to sconsopts (RHBZ#1090075). -------------------------------------------------------------------------------- ChangeLog: * Fri May 29 2015 Richard W.M. Jones <rjones@xxxxxxxxxx> - 2.46-15 - Add NSIS_MAX_STRLEN=8192 to sconsopts (RHBZ#1090075). * Sat May 2 2015 Kalev Lember <kalevlember@xxxxxxxxx> - 2.46-14 - Rebuilt for GCC 5 C++11 ABI change -------------------------------------------------------------------------------- References: [ 1 ] Bug #1090075 - Path corruption https://bugzilla.redhat.com/show_bug.cgi?id=1090075 -------------------------------------------------------------------------------- ================================================================================ mingw-postgresql-9.3.7-1.fc21 (FEDORA-2015-9126) MinGW Windows PostgreSQL library -------------------------------------------------------------------------------- Update Information: http://www.postgresql.org/docs/9.3/static/release-9-3-7.html -------------------------------------------------------------------------------- ChangeLog: * Thu May 28 2015 Michael Cronenworth <mike@xxxxxxxxxx> - 9.3.7-1 - New upstream release. -------------------------------------------------------------------------------- ================================================================================ nodejs-fs-write-stream-atomic-1.0.3-1.fc21 (FEDORA-2015-9134) Like `fs.createWriteStream(...)`, but atomic -------------------------------------------------------------------------------- Update Information: New upstream release -------------------------------------------------------------------------------- References: [ 1 ] Bug #1221218 - Review Request: nodejs-fs-write-stream-atomic - Like fs.createWriteStream(...), but atomic https://bugzilla.redhat.com/show_bug.cgi?id=1221218 -------------------------------------------------------------------------------- ================================================================================ nodejs-inflight-1.0.4-5.fc21 (FEDORA-2015-9178) Node.js inflight -------------------------------------------------------------------------------- Update Information: Removed redundant %nodejs_fixdep macro -------------------------------------------------------------------------------- References: [ 1 ] Bug #1199285 - Review request: nodejs-inflight - Add callbacks to requests in flight to avoid async duplication https://bugzilla.redhat.com/show_bug.cgi?id=1199285 -------------------------------------------------------------------------------- ================================================================================ nodejs-normalize-git-url-1.0.1-1.fc21 (FEDORA-2015-9158) Normalizes Git URLs. For npm, but you can use it too. -------------------------------------------------------------------------------- Update Information: Rebuilt with new release containing license text -------------------------------------------------------------------------------- References: [ 1 ] Bug #1221293 - Review Request: nodejs-normalize-git-url - Normalizes Git URLs. For npm, but you can use it too. https://bugzilla.redhat.com/show_bug.cgi?id=1221293 -------------------------------------------------------------------------------- ================================================================================ nodejs-npm-cache-filename-1.0.1-5.fc21 (FEDORA-2015-9041) Return NPM cache folder -------------------------------------------------------------------------------- Update Information: Removed scl prefixes -------------------------------------------------------------------------------- References: [ 1 ] Bug #1201788 - Review request: nodejs-npm-cache-filename - Return NPM cache folder https://bugzilla.redhat.com/show_bug.cgi?id=1201788 -------------------------------------------------------------------------------- ================================================================================ nodejs-npm-install-checks-1.0.5-1.fc21 (FEDORA-2015-9067) Checks that npm runs during the installation of a module -------------------------------------------------------------------------------- Update Information: New upstream release -------------------------------------------------------------------------------- References: [ 1 ] Bug #1199284 - Review request: nodejs-npm-install-checks - Install checks for NPM https://bugzilla.redhat.com/show_bug.cgi?id=1199284 -------------------------------------------------------------------------------- ================================================================================ nss-3.19.1-1.0.fc21 (FEDORA-2015-9130) Network Security Services -------------------------------------------------------------------------------- Update Information: Security fix for CVE-2015-4000 Update to the upstream NSS 3.19.1 release, which includes a fix for the recently published logjam attack. The previous 3.19 release made several notable changes related to the TLS protocol, one of them was to disable the SSL 3 protocol by default. For the full list of changes in the 3.19 and 3.19.1 releases, please refer to the upstream release notes documents: https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.19.1_release_notes https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.19_release_notes -------------------------------------------------------------------------------- ChangeLog: * Thu May 28 2015 Kai Engert <kaie@xxxxxxxxxx> - 3.19.1-1.0 - Update to NSS 3.19.1 * Tue May 19 2015 Kai Engert <kaie@xxxxxxxxxx> - 3.19.0-1.0 - Update to NSS 3.19 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1223211 - CVE-2015-4000 LOGJAM: TLS connections which support export grade DHE key-exchange are vulnerable to MITM attacks https://bugzilla.redhat.com/show_bug.cgi?id=1223211 -------------------------------------------------------------------------------- ================================================================================ nss-softokn-3.19.1-1.0.fc21 (FEDORA-2015-9130) Network Security Services Softoken Module -------------------------------------------------------------------------------- Update Information: Security fix for CVE-2015-4000 Update to the upstream NSS 3.19.1 release, which includes a fix for the recently published logjam attack. The previous 3.19 release made several notable changes related to the TLS protocol, one of them was to disable the SSL 3 protocol by default. For the full list of changes in the 3.19 and 3.19.1 releases, please refer to the upstream release notes documents: https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.19.1_release_notes https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.19_release_notes -------------------------------------------------------------------------------- ChangeLog: * Thu May 28 2015 Kai Engert <kaie@xxxxxxxxxx> - 3.19.1-1.0 - Update to NSS 3.19.1 * Tue May 19 2015 Kai Engert <kaie@xxxxxxxxxx> - 3.19.0-1.0 - Update to NSS 3.19 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1223211 - CVE-2015-4000 LOGJAM: TLS connections which support export grade DHE key-exchange are vulnerable to MITM attacks https://bugzilla.redhat.com/show_bug.cgi?id=1223211 -------------------------------------------------------------------------------- ================================================================================ nss-util-3.19.1-1.0.fc21 (FEDORA-2015-9130) Network Security Services Utilities Library -------------------------------------------------------------------------------- Update Information: Security fix for CVE-2015-4000 Update to the upstream NSS 3.19.1 release, which includes a fix for the recently published logjam attack. The previous 3.19 release made several notable changes related to the TLS protocol, one of them was to disable the SSL 3 protocol by default. For the full list of changes in the 3.19 and 3.19.1 releases, please refer to the upstream release notes documents: https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.19.1_release_notes https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.19_release_notes -------------------------------------------------------------------------------- ChangeLog: * Thu May 28 2015 Kai Engert <kaie@xxxxxxxxxx> - 3.19.1-1.0 - Update to NSS 3.19.1 * Tue May 19 2015 Kai Engert <kaie@xxxxxxxxxx> - 3.19.0-1.0 - Update to NSS 3.19 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1223211 - CVE-2015-4000 LOGJAM: TLS connections which support export grade DHE key-exchange are vulnerable to MITM attacks https://bugzilla.redhat.com/show_bug.cgi?id=1223211 -------------------------------------------------------------------------------- ================================================================================ octave-3.8.2-18.fc21 (FEDORA-2015-9085) A high-level language for numerical computations -------------------------------------------------------------------------------- Update Information: - Fix doc install (bug #799662) - Add an AppData file for the software center - Build with --enable-float-truncate (https://savannah.gnu.org/bugs/?40560) -------------------------------------------------------------------------------- ChangeLog: * Thu May 28 2015 Orion Poplawski <orion@xxxxxxxxxxxxx> - 6:3.8.2-18 - Fix doc install (bug #799662) * Sun May 17 2015 Orion Poplawski <orion@xxxxxxxxxxxxx> - 6:3.8.2-17 - Rebuild for hdf5 1.8.15 * Mon Apr 20 2015 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> - 6:3.8.2-16 - rebuild (qscintilla) * Thu Mar 26 2015 Richard Hughes <rhughes@xxxxxxxxxx> - 6:3.8.2-15 - Add an AppData file for the software center * Tue Mar 10 2015 Orion Poplawski <orion@xxxxxxxxxxxxx> - 6:3.8.2-14 - Build with --enable-float-truncate (https://savannah.gnu.org/bugs/?40560) - Re-enable parallel builds * Mon Mar 9 2015 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> - 6:3.8.2-13 - rebuild (GraphicsMagick) * Fri Feb 20 2015 Orion Poplawski <orion@xxxxxxxxxxxxx> - 6:3.8.2-12 - Rebuild for rebuilt swig -------------------------------------------------------------------------------- References: [ 1 ] Bug #799662 - no interpreter/* in octave-doc rpm https://bugzilla.redhat.com/show_bug.cgi?id=799662 -------------------------------------------------------------------------------- ================================================================================ osbs-0.10-1.fc21 (FEDORA-2015-9232) Python command line client for OpenShift Build Service -------------------------------------------------------------------------------- Update Information: new upstream release: 0.10 new upstream release: 0.9 new upstream release: 0.5 -------------------------------------------------------------------------------- ChangeLog: * Thu May 28 2015 Tomas Tomecek <ttomecek@xxxxxxxxxx> - 0.10-1 - new upstream release: 0.10 * Thu May 28 2015 Tomas Tomecek <ttomecek@xxxxxxxxxx> - 0.9-1 - new upstream release: 0.9 * Thu May 21 2015 Jiri Popelka <jpopelka@xxxxxxxxxx> - 0.6-2 - fix %license handling * Thu May 21 2015 Tomas Tomecek <ttomecek@xxxxxxxxxx> - 0.6-1 - new upstream release: 0.6 * Tue May 19 2015 Tomas Tomecek <ttomecek@xxxxxxxxxx> - 0.5-1 - new upstream release: 0.5 * Tue May 12 2015 Slavek Kabrda <bkabrda@xxxxxxxxxx> - 0.4-2 - Introduce python-osbs subpackage - move /usr/bin/osbs to /usr/bin/osbs2, /usr/bin/osbs is now a symlink - depend on python[3]-setuptools because of entrypoints usage -------------------------------------------------------------------------------- ================================================================================ php-pecl-xdebug-2.3.2-3.fc21 (FEDORA-2015-9038) PECL package for debugging PHP scripts -------------------------------------------------------------------------------- Update Information: add upstream patches * fix segfault in xdebug_append_error_description (efree/str_efree) * fix segfault in xdebug_path_to_url (virtual_file_ex) * fix exception code change (for phpunit) -------------------------------------------------------------------------------- ChangeLog: * Fri May 29 2015 Remi Collet <remi@xxxxxxxxxxxxxxxxx> - 2.3.2-3 - add patch for exception code change (for phpunit) * Wed May 27 2015 Remi Collet <remi@xxxxxxxxxxxxxxxxx> - 2.3.2-2 - add patch for efree/str_efree in php 5.6 - add patch for virtual_file_ex in 5.6 #1214111 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1214111 - [abrt] php-cli: _zend_mm_realloc_int(): php-cgi killed by SIGSEGV https://bugzilla.redhat.com/show_bug.cgi?id=1214111 -------------------------------------------------------------------------------- ================================================================================ php-phpunit-PHPUnit-4.6.9-1.fc21 (FEDORA-2015-8854) The PHP Unit Testing framework -------------------------------------------------------------------------------- Update Information: Upstream changes, from git history: * Fix #1731 "." after failure count has no background color when "--colors" is used Packaging change: * Detect if phpunit is run from a composer installed project which requires phpunit, and redirect to the version in vendor directory to avoid autoloader issue. * Ensure compatibility with Software Collections -------------------------------------------------------------------------------- ChangeLog: * Fri May 29 2015 Remi Collet <remi@xxxxxxxxxxxxxxxxx> - 4.6.9-1 - Update to 4.6.9 * Tue May 26 2015 Remi Collet <remi@xxxxxxxxxxxxxxxxx> - 4.6.7-3 - ensure compatibility with SCL * Tue May 26 2015 Remi Collet <remi@xxxxxxxxxxxxxxxxx> - 4.6.7-2 - detect and redirect to composer installed version #1157910 - Update to 4.6.7 (no change) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1157910 - System PHPUnit broken in composer projects which requires phpunit https://bugzilla.redhat.com/show_bug.cgi?id=1157910 -------------------------------------------------------------------------------- ================================================================================ php-phpunit-PHPUnit-MockObject-2.3.3-1.fc21 (FEDORA-2015-9089) Mock Object library for PHPUnit -------------------------------------------------------------------------------- Update Information: >From git history * Use Reflection API instead of get_class_methods() function * Regression in 2.3.2 when mocking classes that use traits #232 -------------------------------------------------------------------------------- ChangeLog: * Fri May 29 2015 Remi Collet <remi@xxxxxxxxxxxxxxxxx> - 2.3.3-1 - update to 2.3.3 - fix regression (thanks to Koschei) * Thu May 28 2015 Remi Collet <remi@xxxxxxxxxxxxxxxxx> - 2.3.2-1 - update to 2.3.2 -------------------------------------------------------------------------------- ================================================================================ poedit-1.8.1-1.fc21 (FEDORA-2015-9083) GUI editor for GNU gettext .po files -------------------------------------------------------------------------------- Update Information: New upstream version New upstream version New upstream version -------------------------------------------------------------------------------- ChangeLog: * Thu May 28 2015 Mario Blättermann <mario.blaettermann@xxxxxxxxx> - 1.8.1-1 - New upstream version * Thu May 21 2015 Mario Blättermann <mario.blaettermann@xxxxxxxxx> - 1.8-1 - New upstream version -------------------------------------------------------------------------------- References: [ 1 ] Bug #1224550 - [abrt] poedit: poedit killed by SIGSEGV https://bugzilla.redhat.com/show_bug.cgi?id=1224550 -------------------------------------------------------------------------------- ================================================================================ postbooks-4.8.2-1.fc21 (FEDORA-2015-9073) xTuple Accounting/ERP suite desktop client -------------------------------------------------------------------------------- Update Information: initial package -------------------------------------------------------------------------------- ================================================================================ proftpd-1.3.5a-1.fc21 (FEDORA-2015-9094) Flexible, stable and highly-configurable FTP server -------------------------------------------------------------------------------- Update Information: This update is for the current upstream maintenance release, with lots of bug fixes as described in the NEWS file. -------------------------------------------------------------------------------- ChangeLog: * Thu May 28 2015 Paul Howarth <paul@xxxxxxxxxxxx> - 1.3.5a-1 - Update to 1.3.5a - Fixed "stalled" SSL/TLS handshakes for data transfers - Fixed handling of SSH keys with overlong Comment headers in mod_sftp_sql - By default, mod_tls will no longer support SSLv3 connections; in order to support SSLv3 connections (for sites that need to), you must explicitly configure this via the TLSProtocol directive, e.g.: TLSProtocol SSLv3 TLSv1 ... - The mod_copy module is enabled by default; there may be cases where the module should be disabled, without requiring a rebuild of the server, thus mod_copy now supports a CopyEngine directive to enable/disable the module - The DeleteAbortedStores directive (for Bug#3917) is only enabled when HiddenStores is in effect, as intended when originally implemented, rather than all the time - Many other bug-fixes, see NEWS for details - Drop upstreamed patches -------------------------------------------------------------------------------- ================================================================================ psutils-1.23-7.fc21 (FEDORA-2015-9053) PostScript Utilities -------------------------------------------------------------------------------- Update Information: This update makes psnup work with non-en locale. -------------------------------------------------------------------------------- ChangeLog: * Fri May 29 2015 Jiri Popelka <jpopelka@xxxxxxxxxx> - 1.23-7 - Correctly parse paper sizes returned by paperconf (#1208985) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1208985 - psnup: could not get default paper size https://bugzilla.redhat.com/show_bug.cgi?id=1208985 -------------------------------------------------------------------------------- ================================================================================ python-phyghtmap-1.71-1.fc21 (FEDORA-2015-9082) Generate OSM contour lines from NASA SRTM data -------------------------------------------------------------------------------- Update Information: * Fixed a bug concerning tiling of geotiff input data which sometimes led to program aborts. * Added geotiff functionality. geotiff files may now be passed as input data to the command line. -------------------------------------------------------------------------------- ChangeLog: * Thu May 28 2015 Volker Fröhlich <volker27@xxxxxx> - 1.71-1 - New upstream release * Tue May 26 2015 Volker Fröhlich <volker27@xxxxxx> - 1.70-1 - New upstream release - New functionality requires the gdal python bindings * Mon Feb 23 2015 Volker Fröhlich <volker27@xxxxxx> - 1.61-1 - New upstream release * Sat Jan 3 2015 Volker Fröhlich <volker27@xxxxxx> - 1.60-1 - New upstream release -------------------------------------------------------------------------------- References: [ 1 ] Bug #1224838 - python-phyghtmap-1.70.orig is available https://bugzilla.redhat.com/show_bug.cgi?id=1224838 -------------------------------------------------------------------------------- ================================================================================ python-py-1.4.28-1.fc21 (FEDORA-2015-9176) Library with cross-python path, ini-parsing, io, code, log facilities -------------------------------------------------------------------------------- Update Information: Update to the latest stable version. >From the upstream changelog: 1.4.28 - fix issue64 -- dirpath regression when "abs=True" is passed. Thanks Gilles Dartiguelongue. 1.4.27 - fix issue59: point to new repo site - allow a new ensuresyspath="append" mode for py.path.local.pyimport() so that a neccessary import path is appended instead of prepended to sys.path - strike undocumented, untested argument to py.path.local.pypkgpath - speed up py.path.local.dirpath by a factor of 10 -------------------------------------------------------------------------------- ChangeLog: * Fri May 29 2015 Thomas Moschny <thomas.moschny@xxxxxx> - 1.4.28-1 - Update to 1.4.28. - Modernize spec file. - Apply updates Python packaging guidelines. - Mark LICENSE with %license. -------------------------------------------------------------------------------- ================================================================================ python-regex-2015.05.28-1.fc21 (FEDORA-2015-9056) Alternative regular expression module, to replace re -------------------------------------------------------------------------------- Update Information: Update to the latest stable version 2015.05.28. -------------------------------------------------------------------------------- ChangeLog: * Fri May 29 2015 Thomas Moschny <thomas.moschny@xxxxxx> - 2015.05.28-1 - Update to 2015.05.28. * Sat May 23 2015 Thomas Moschny <thomas.moschny@xxxxxx> - 2015.05.10-1 - Update to 2015.05.10. -------------------------------------------------------------------------------- ================================================================================ python-requests-2.7.0-1.fc21 (FEDORA-2015-9207) HTTP library, written in Python, for human beings -------------------------------------------------------------------------------- Update Information: The last round of updates caused other problems. Let's try this -- the latest from upstream, which should fix the chunked decoding issue. Latest upstream. -------------------------------------------------------------------------------- ChangeLog: * Mon May 4 2015 Ralph Bean <rbean@xxxxxxxxxx> - 2.7.0-1 - new version * Wed Apr 29 2015 Ralph Bean <rbean@xxxxxxxxxx> - 2.6.2-1 - new version * Thu Apr 23 2015 Ralph Bean <rbean@xxxxxxxxxx> - 2.6.1-1 - new version * Wed Apr 22 2015 Ralph Bean <rbean@xxxxxxxxxx> - 2.6.0-1 - new version - Remove patch for CVE-2015-2296, now included in the upstream release. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1202077 - python-requests-2.6.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1202077 -------------------------------------------------------------------------------- ================================================================================ python-rosdistro-0.4.2-1.fc21 (FEDORA-2015-9155) File format for managing ROS Distributions -------------------------------------------------------------------------------- Update Information: Update to release 0.4.2 (#1207455) -------------------------------------------------------------------------------- ChangeLog: * Wed May 27 2015 Rich Mattes <richmattes@xxxxxxxxx> - 0.4.2-1 - Update to release 0.4.2 (#1207455) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1207455 - python-rosdistro-0.4.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=1207455 -------------------------------------------------------------------------------- ================================================================================ python-urllib3-1.10.4-2.20150503gita91975b.fc21 (FEDORA-2015-9207) Python HTTP library with thread-safe connection pooling and file post -------------------------------------------------------------------------------- Update Information: The last round of updates caused other problems. Let's try this -- the latest from upstream, which should fix the chunked decoding issue. Latest upstream. -------------------------------------------------------------------------------- ChangeLog: * Tue May 19 2015 Ralph Bean <rbean@xxxxxxxxxx> - 1.10.4-2.20150503gita91975b - Specify symlinks for six.py{c,o}, fixing rhbz #1222142. * Sun May 3 2015 Ralph Bean <rbean@xxxxxxxxxx> - 1.10.4-1.20150503gita91975b - Latest release for python-requests-2.7.0 * Wed Apr 29 2015 Ralph Bean <rbean@xxxxxxxxxx> - 1.10.3-2.20150429git585983a - Grab a git snapshot to get around this chunked encoding failure. * Wed Apr 22 2015 Ralph Bean <rbean@xxxxxxxxxx> - 1.10.3-1 - new version -------------------------------------------------------------------------------- References: [ 1 ] Bug #1202077 - python-requests-2.6.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1202077 -------------------------------------------------------------------------------- ================================================================================ python-vcrpy-1.5.2-2.fc21 (FEDORA-2015-9229) Automatically mock your HTTP interactions to simplify and speed up testing -------------------------------------------------------------------------------- Update Information: Move python3 deps into the python3 subpackage. Latest upstream -------------------------------------------------------------------------------- ================================================================================ rpmlint-1.6-3.fc21 (FEDORA-2015-9193) Tool for checking common errors in RPM packages -------------------------------------------------------------------------------- Update Information: Update license list. Add misbehaving webservers to ignore filters. -------------------------------------------------------------------------------- ChangeLog: * Fri May 29 2015 Tom Callaway <spot@xxxxxxxxxxxxxxxxx> - 1.6-3 - filter out failure from broken webservers - add new licenses -------------------------------------------------------------------------------- References: [ 1 ] Bug #767739 - [PATCH} rpmlint always returns invalid URL for sources on Google Code https://bugzilla.redhat.com/show_bug.cgi?id=767739 -------------------------------------------------------------------------------- ================================================================================ rubygem-test-unit-3.1.1-100.fc21 (FEDORA-2015-9200) Improved version of Test::Unit bundled in Ruby 1.8.x -------------------------------------------------------------------------------- Update Information: New version 3.1.1 is released. -------------------------------------------------------------------------------- ChangeLog: * Fri May 29 2015 Mamoru TASAKA <mtasaka@xxxxxxxxxxxxxxxxx> - 3.1.1-100 - 3.1.1 * Fri May 29 2015 Mamoru TASAKA <mtasaka@xxxxxxxxxxxxxxxxx> - 3.1.0-100 - 3.1.0 * Tue Jan 13 2015 Mamoru TASAKA <mtasaka@xxxxxxxxxxxxxxxxx> - 3.0.9-101 - Kill 2-year-old testrb2 support on F-22+ -------------------------------------------------------------------------------- ================================================================================ salt-2015.5.1-1.fc21 (FEDORA-2015-9177) A parallel remote execution system -------------------------------------------------------------------------------- Update Information: Update to bugfix release 2015.5.1 -------------------------------------------------------------------------------- ChangeLog: * Wed May 27 2015 Erik Johnson <erik@xxxxxxxxxxxxx> - 2015.5.1-1 - Update to bugfix release 2015.5.1 -------------------------------------------------------------------------------- ================================================================================ sendmail-8.14.9-6.fc21 (FEDORA-2015-9181) A widely used Mail Transport Agent (MTA) -------------------------------------------------------------------------------- Update Information: This is an update adding makemap and its manual page into alternatives. -------------------------------------------------------------------------------- ChangeLog: * Thu May 28 2015 Jaroslav Škarvada <jskarvad@xxxxxxxxxx> - 8.14.9-6 - Added makemap and its manual page into alternatives Resolves: rhbz#1219178 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1219178 - makemap support in alternatives https://bugzilla.redhat.com/show_bug.cgi?id=1219178 -------------------------------------------------------------------------------- ================================================================================ skf-2.00-1.fc21 (FEDORA-2015-9088) Utility binary files in Simple Kanji Filter -------------------------------------------------------------------------------- Update Information: Formal version 2.00 is released. -------------------------------------------------------------------------------- ChangeLog: * Fri May 29 2015 Mamoru TASAKA <mtasaka@xxxxxxxxxxxxxxxxx> - 2.00-1 - 2.00 -------------------------------------------------------------------------------- ================================================================================ spatialite-tools-4.2.0-12.fc21 (FEDORA-2015-9194) A set of useful CLI tools for SpatiaLite -------------------------------------------------------------------------------- Update Information: Recommended update to latest sqlite version, with rebuilt spatialite-tools - <https://www.sqlite.org/releaselog/3_8_10_2.html> -------------------------------------------------------------------------------- ChangeLog: * Fri May 29 2015 Jan Stanek <jstanek@xxxxxxxxxx> - 4.2.0-12 - Rebuild for sqlite 3.8.10.2 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1223605 - sqlite-3.8.10.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=1223605 -------------------------------------------------------------------------------- ================================================================================ sqlite-3.8.10.2-1.fc21 (FEDORA-2015-9194) Library that implements an embeddable SQL database engine -------------------------------------------------------------------------------- Update Information: Recommended update to latest sqlite version, with rebuilt spatialite-tools - <https://www.sqlite.org/releaselog/3_8_10_2.html> -------------------------------------------------------------------------------- ChangeLog: * Fri May 29 2015 Jan Stanek <jstanek@xxxxxxxxxx> - 3.8.10.2-1 - Updated to version 3.8.10.2 (https://sqlite.org/releaselog/3_8_10_2.html) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1223605 - sqlite-3.8.10.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=1223605 -------------------------------------------------------------------------------- ================================================================================ torsocks-2.1.0-1.fc21 (FEDORA-2015-9167) Use SOCKS-friendly applications with Tor -------------------------------------------------------------------------------- Update Information: update to upstream release 2.1.0 -------------------------------------------------------------------------------- ChangeLog: * Thu May 28 2015 Jamie Nguyen <jamielinux@xxxxxxxxxxxxxxxxx> - 2.1.0-1 - update to upstream release 2.1.0 - run test suite * Wed Apr 29 2015 Jon Ciesla <limburgher@xxxxxxxxx> - 2.0.0-3 - Updated to latest to fix syscall errors. -------------------------------------------------------------------------------- ================================================================================ weechat-1.2-2.fc21 (FEDORA-2015-9042) Portable, fast, light and extensible IRC client -------------------------------------------------------------------------------- Update Information: build without JavaScript support on secondary arches New upstream version 1.2 -------------------------------------------------------------------------------- ChangeLog: * Fri May 22 2015 Dan Horák <dan[at]danny.cz> - 1.2-2 - v8 is available only on selected arches (#1221689) * Sun May 10 2015 Paul Komkoff <i@xxxxxxxxxx> - 1.2-1 - new upstream version (#1220153) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1220153 - weechat-1.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=1220153 [ 2 ] Bug #1221689 - weechat FTBFS on secondary arches https://bugzilla.redhat.com/show_bug.cgi?id=1221689 -------------------------------------------------------------------------------- ================================================================================ z3-4.4.0-1.fc21 (FEDORA-2015-9162) Satisfiability Modulo Theories (SMT) solver -------------------------------------------------------------------------------- Update Information: Upstream notes on version 4.4.0: - New feature: Support for the theory of floating-point numbers. This comes in the form of logics (QF_FP and QF_FPBV), tactics (qffp and qffpbv), as well as a theory plugin that allows theory combinations. Z3 supports the official SMT theory definition of FP (see http://smtlib.cs.uiowa.edu/theories/FloatingPoint.smt2) in SMT2 files, as well as all APIs. - New feature: Stochastic local search engine for bit-vector formulas (see the qfbv-sls tactic). See also: Froehlich, Biere, Wintersteiger, Hamadi: Stochastic Local Search for Satisfiability Modulo Theories, AAAI 2015. - Upgrade: This release includes a brand new OCaml/ML API that is much better integrated with the build system, and hopefully also easier to use than the previous one. - Fixed various bugs reported by Marc Brockschmidt, Venkatesh-Prasad Ranganath, Enric Carbonell, Morgan Deters, Tom Ball, Malte Schwerhoff, Amir Ebrahimi, Codeplex users rsas, clockish, Heizmann, susmitj, steimann, and Stackoverflow users user297886. -------------------------------------------------------------------------------- ChangeLog: * Wed May 27 2015 Jerry James <loganjerry@xxxxxxxxx> - 4.4.0-1 - New upstream version -------------------------------------------------------------------------------- -- test mailing list test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe: https://admin.fedoraproject.org/mailman/listinfo/test
