The following Fedora 20 Security updates need testing: Age URL 165 https://admin.fedoraproject.org/updates/FEDORA-2014-17089/aeskulap-0.2.2-0.20beta1.fc20,orthanc-0.8.5-2.fc20,dcmtk-3.6.1-1.fc20 120 https://admin.fedoraproject.org/updates/FEDORA-2015-1718/389-admin-1.1.38-1.fc20 103 https://admin.fedoraproject.org/updates/FEDORA-2015-0951/xdg-utils-1.1.0-0.38.rc3.fc20 88 https://admin.fedoraproject.org/updates/FEDORA-2015-3417/389-ds-base-1.3.2.27-1.fc20 84 https://admin.fedoraproject.org/updates/FEDORA-2015-3738/ImageMagick-6.8.6.3-6.fc20 71 https://admin.fedoraproject.org/updates/FEDORA-2015-4672/quassel-0.11.0-2.fc20 55 https://admin.fedoraproject.org/updates/FEDORA-2015-5970/asterisk-11.17.1-1.fc20 55 https://admin.fedoraproject.org/updates/FEDORA-2015-5978/krb5-1.11.5-20.fc20 48 https://admin.fedoraproject.org/updates/FEDORA-2015-6339/realmd-0.14.6-6.fc20 36 https://admin.fedoraproject.org/updates/FEDORA-2015-7231/libarchive-3.1.2-8.fc20 35 https://admin.fedoraproject.org/updates/FEDORA-2015-7302/drupal7-views-3.11-1.fc20 22 https://admin.fedoraproject.org/updates/FEDORA-2015-8159/rawstudio-2.1-0.1.20150511git983bda1.fc20 14 https://admin.fedoraproject.org/updates/FEDORA-2015-8142/cabal-install-1.16.1.0-1.fc20,haskell-platform-2013.2.0.0-39.fc20 14 https://admin.fedoraproject.org/updates/FEDORA-2015-8727/fail2ban-0.9.2-1.fc20 10 https://admin.fedoraproject.org/updates/FEDORA-2015-8777/ntfs-3g-2015.3.14-2.fc20 10 https://admin.fedoraproject.org/updates/FEDORA-2015-8782/fuse-2.9.4-1.fc20 6 https://admin.fedoraproject.org/updates/FEDORA-2015-9163/fossil-1.33-1.fc20 6 https://admin.fedoraproject.org/updates/FEDORA-2015-9161/nss-util-3.19.1-1.0.fc20,nss-3.19.1-1.0.fc20,nss-softokn-3.19.1-1.0.fc20 1 https://admin.fedoraproject.org/updates/FEDORA-2015-9388/libreswan-3.13-1.fc20 1 https://admin.fedoraproject.org/updates/FEDORA-2015-9393/libwmf-0.2.8.4-42.fc20 1 https://admin.fedoraproject.org/updates/FEDORA-2015-9371/openssl-1.0.1e-43.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2015-9527/armacycles-ad-0.2.8.3.3-1.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2015-9500/xen-4.3.4-5.fc20 The following Fedora 20 Critical Path updates have yet to be approved: Age URL 103 https://admin.fedoraproject.org/updates/FEDORA-2015-0951/xdg-utils-1.1.0-0.38.rc3.fc20 10 https://admin.fedoraproject.org/updates/FEDORA-2015-8782/fuse-2.9.4-1.fc20 10 https://admin.fedoraproject.org/updates/FEDORA-2015-8777/ntfs-3g-2015.3.14-2.fc20 10 https://admin.fedoraproject.org/updates/FEDORA-2015-8709/libfm-1.2.3-5.D20150521git577806e29d.fc20,pcmanfm-1.2.3-2.fc20 9 https://admin.fedoraproject.org/updates/FEDORA-2015-8911/kdelibs-4.14.8-1.fc20,kdepimlibs-4.14.8-1.fc20,kde-runtime-15.04.1-1.fc20,kde-baseapps-15.04.1-1.fc20,oxygen-icon-theme-15.04.1-1.fc20 8 https://admin.fedoraproject.org/updates/FEDORA-2015-8614/gnome-documents-3.10.3-1.fc20,control-center-3.10.4-1.fc20,gnome-online-accounts-3.10.7-2.fc20 6 https://admin.fedoraproject.org/updates/FEDORA-2015-9131/cdrkit-1.1.11-23.fc20 1 https://admin.fedoraproject.org/updates/FEDORA-2015-9379/perl-Getopt-Long-2.46-1.fc20 1 https://admin.fedoraproject.org/updates/FEDORA-2015-9371/openssl-1.0.1e-43.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2015-9444/firefox-38.0.5-1.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2015-9452/gnupg2-2.0.28-1.fc20 The following builds have been pushed to Fedora 20 updates-testing R2spec-4.2.1-1.fc20 SDL2-2.0.3-5.fc20 armacycles-ad-0.2.8.3.3-1.fc20 check-mk-1.2.6p5-1.fc20 firefox-38.0.5-1.fc20 glusterfs-3.5.4-1.fc20 gnupg2-2.0.28-1.fc20 mock-1.2.10-1.fc20 osbs-0.11-1.fc20 phpMyAdmin-4.4.9-1.fc20 python-inotify-0.9.6-1.fc20 rootsh-1.5.3-11.fc20 rpkg-1.35-2.fc20 salt-2015.5.2-2.fc20 shinken-2.2-6.fc20 xen-4.3.4-5.fc20 Details about builds: ================================================================================ R2spec-4.2.1-1.fc20 (FEDORA-2015-9518) Python script to generate R spec file -------------------------------------------------------------------------------- Update Information: Update to 4.2.1 Few bug fixes and update to fit to the new packaging guidelines. -------------------------------------------------------------------------------- ChangeLog: * Thu Jun 4 2015 Pierre-Yves Chibon <pingou@xxxxxxxxxxxx> - 4.2.1-1 - Update to 4.2.1 * Thu Jun 4 2015 Pierre-Yves Chibon <pingou@xxxxxxxxxxxx> - 4.2.0-1 - Update to 4.2.0 - Switch from '.format' invocations to '%'; backward compatible (Allen S. Rout) - Fix deps on EL5 - Document in the specfile the dependencies world according to R (Allen S. Rout) - Accept package names with leading 'R-'.. (Allen S. Rout) - Fail elegantly is the rpmbuild folder does not exist (RHBZ#901771) - Do not mark DESCRIPTION R package file as doc (Castedo Ellerman) * Fri Jun 6 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 4.1.0-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ SDL2-2.0.3-5.fc20 (FEDORA-2015-9551) A cross-platform multimedia library -------------------------------------------------------------------------------- Update Information: Fix builds against SDL2 using ancient gcc -------------------------------------------------------------------------------- ChangeLog: * Tue Jun 2 2015 Tom Callaway <spot@xxxxxxxxxxxxxxxxx> - 2.0.3-5 - remove code preventing builds with ancient gcc * Fri Aug 15 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 2.0.3-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild * Wed Jun 11 2014 Karsten Hopp <karsten@xxxxxxxxxx> 2.0.3-3 - fix filename of SDL_config.h for ppc64le * Fri Jun 6 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 2.0.3-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1198806 - can't compile against SDL2 using older gcc https://bugzilla.redhat.com/show_bug.cgi?id=1198806 -------------------------------------------------------------------------------- ================================================================================ armacycles-ad-0.2.8.3.3-1.fc20 (FEDORA-2015-9527) A lightcycle game in 3D -------------------------------------------------------------------------------- Update Information: Changes since 0.2.8.3.2: - security fix: do not read ahead of the beginning of network buffer. - security fix: don't attribute network errors from processing random packets to the connection to the server - security fix: while at it, don't process random packets unless they may be important - fix for potential crash with friend list filtering - intel driver compatibility - fix for rare crash with sound lock - fix for camera turning for bizarre axis configurations -------------------------------------------------------------------------------- ChangeLog: * Wed Jun 3 2015 Jon Ciesla <limburgher@xxxxxxxxx> - 0.2.8.3.3-1 - Upstream security release. - Dropped libpng16 patch. * Sat May 2 2015 Kalev Lember <kalevlember@xxxxxxxxx> - 0.2.8.3.2-11 - Rebuilt for GCC 5 C++11 ABI change * Thu Mar 26 2015 Richard Hughes <rhughes@xxxxxxxxxx> - 0.2.8.3.2-10 - Add an AppData file for the software center * Fri Aug 15 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.2.8.3.2-9 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild * Mon Jun 9 2014 Jon Ciesla <limburgher@xxxxxxxxx> - 0.2.8.3.2-8 - Fix FTBFS, BZ 1105971. * Sat Jun 7 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.2.8.3.2-7 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ check-mk-1.2.6p5-1.fc20 (FEDORA-2015-9559) A new general purpose Nagios-plugin for retrieving data -------------------------------------------------------------------------------- Update Information: New upstream release: 1.2.6p5 New upstream release: 1.2.6p3 New upstream release: 1.2.6p2 New upstream release: 1.2.6p2 New upstream release: 1.2.6p2 New upstream release: 1.2.6p2 New upstream release: 1.2.6p2 New upstream release: 1.2.6p2 New upstream release: 1.2.6p3 New upstream release: 1.2.6p2 New upstream release: 1.2.6p2 New upstream release: 1.2.6p2 New upstream release: 1.2.6p2 New upstream release: 1.2.6p2 New upstream release: 1.2.6p2 New upstream release: 1.2.6p3 New upstream release: 1.2.6p2 New upstream release: 1.2.6p2 New upstream release: 1.2.6p2 New upstream release: 1.2.6p2 New upstream release: 1.2.6p2 New upstream release: 1.2.6p2 -------------------------------------------------------------------------------- ChangeLog: * Wed Jun 3 2015 Andrea Veri <averi@xxxxxxxxxxxxxxxxx> - 1.2.6p5-1 - New upstream release. - Remove the dependency on php as it causes httpd and httpd-devel to be installed with it. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1218501 - Missing bind-utils dependency https://bugzilla.redhat.com/show_bug.cgi?id=1218501 [ 2 ] Bug #1218516 - Plugins should not be activated by default https://bugzilla.redhat.com/show_bug.cgi?id=1218516 -------------------------------------------------------------------------------- ================================================================================ firefox-38.0.5-1.fc20 (FEDORA-2015-9444) Mozilla Firefox Web browser -------------------------------------------------------------------------------- Update Information: For changes see: https://www.mozilla.org/en-US/firefox/38.0.5/releasenotes/ -------------------------------------------------------------------------------- ChangeLog: * Wed Jun 3 2015 Jan Horak <jhorak@xxxxxxxxxx> - 38.0.5-1 - Update to 38.0.5 * Mon Jun 1 2015 Martin Stransky <stransky@xxxxxxxxxx> - 38.0.1-6 - Added fix for rhbz#1226868 - [GTK3] regression: bad colors make notifications unreadable * Fri May 29 2015 Martin Stransky <stransky@xxxxxxxxxx> - 38.0.1-5 - Added patch for mozbz#1169233 - Disabled menu items are not greyed out * Fri May 29 2015 Martin Stransky <stransky@xxxxxxxxxx> - 38.0.1-4 - Added patch for mozbz#1160154 - huge bookmark padding * Tue May 26 2015 Martin Stransky <stransky@xxxxxxxxxx> - 38.0.1-3 - spec clean up * Fri May 22 2015 Moez Roy <moez.roy@xxxxxxxxx> - 38.0.1-2 - Rebuilt with hardening flags so it passes the checksec test; - See also https://fedoraproject.org/wiki/Changes/Harden_All_Packages -------------------------------------------------------------------------------- ================================================================================ glusterfs-3.5.4-1.fc20 (FEDORA-2015-9535) Cluster File System -------------------------------------------------------------------------------- Update Information: glusterfs-3.5.4 GA release -------------------------------------------------------------------------------- ChangeLog: * Wed Jun 3 2015 Kaleb S. KEITHLEY <kkeithle[at]redhat.com> - 3.5.4-1 - glusterfs-3.5.4 GA release -------------------------------------------------------------------------------- ================================================================================ gnupg2-2.0.28-1.fc20 (FEDORA-2015-9452) Utility for secure communication and data storage -------------------------------------------------------------------------------- Update Information: What's New in GnuPG 2.0.28 ========================== * agent: Added support for an external password manager. * gpg: New command --list-gcrypt-config. * gpg: Issue NEWSIG status lines during signature verification. * gpgsm: The default hash algo for a CSR is now SHA-256 and the default encryption algo is AES-128. * scdaemon: Allow PC/SC reader selection by partial name match. * gpgtar: Fix extracting files with a size of a multiple of 512. * Fixed several other bugs. * Libgcrypt 1.5 is now required. -------------------------------------------------------------------------------- ChangeLog: * Tue Jun 2 2015 Robert Scheck <robert@xxxxxxxxxxxxxxxxx> - 2.0.28-1 - new upstream release (#1206930) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1206930 - Version 2.0.27 available upstream https://bugzilla.redhat.com/show_bug.cgi?id=1206930 -------------------------------------------------------------------------------- ================================================================================ mock-1.2.10-1.fc20 (FEDORA-2015-9475) Builds packages inside chroots -------------------------------------------------------------------------------- Update Information: bugfixes -------------------------------------------------------------------------------- ChangeLog: * Tue Jun 2 2015 Miroslav Suchý <msuchy@xxxxxxxxxx> - 1.2.10-1 - do not require pyliblzma if using python3 [RHBZ#1227209] - add warning to site-defaults.cfg that assumeyes=1 is important [RHBZ#1225004] - sync comments in site-defaults.cfg with code [RHBZ#1224961] - check for dangling link of /etc/mtab [RHBZ#1224732] - Fix --install filename completion -------------------------------------------------------------------------------- References: [ 1 ] Bug #1227209 - Mock requires pyliblzma https://bugzilla.redhat.com/show_bug.cgi?id=1227209 [ 2 ] Bug #1225004 - Enforce YUM's "assumeyes" option https://bugzilla.redhat.com/show_bug.cgi?id=1225004 [ 3 ] Bug #1224961 - site-defaults.cfg claims that config_opts['yum_common_opts'] is a must while the other configs do not set it https://bugzilla.redhat.com/show_bug.cgi?id=1224961 [ 4 ] Bug #1224732 - [abrt] mock: buildroot.py:442:_setup_devices:OSError: [Errno 17] File exists https://bugzilla.redhat.com/show_bug.cgi?id=1224732 -------------------------------------------------------------------------------- ================================================================================ osbs-0.11-1.fc20 (FEDORA-2015-9507) Python command line client for OpenShift Build Service -------------------------------------------------------------------------------- Update Information: New upstream release. new upstream release: 0.10 new upstream release: 0.9 new upstream release: 0.5 new upstream release: 0.10 new upstream release: 0.9 new upstream release: 0.5 new upstream release: 0.10 new upstream release: 0.9 new upstream release: 0.5 new upstream release: 0.10 new upstream release: 0.9 new upstream release: 0.5 new upstream release: 0.10 new upstream release: 0.9 new upstream release: 0.5 -------------------------------------------------------------------------------- ChangeLog: * Wed Jun 3 2015 Martin Milata <mmilata@xxxxxxxxxx> - 0.11-1 - new upstream release: 0.11 * Thu May 28 2015 Tomas Tomecek <ttomecek@xxxxxxxxxx> - 0.10-1 - new upstream release: 0.10 * Thu May 28 2015 Tomas Tomecek <ttomecek@xxxxxxxxxx> - 0.9-1 - new upstream release: 0.9 * Thu May 21 2015 Jiri Popelka <jpopelka@xxxxxxxxxx> - 0.6-2 - fix %license handling * Thu May 21 2015 Tomas Tomecek <ttomecek@xxxxxxxxxx> - 0.6-1 - new upstream release: 0.6 * Tue May 19 2015 Tomas Tomecek <ttomecek@xxxxxxxxxx> - 0.5-1 - new upstream release: 0.5 * Tue May 12 2015 Slavek Kabrda <bkabrda@xxxxxxxxxx> - 0.4-2 - Introduce python-osbs subpackage - move /usr/bin/osbs to /usr/bin/osbs2, /usr/bin/osbs is now a symlink - depend on python[3]-setuptools because of entrypoints usage -------------------------------------------------------------------------------- ================================================================================ phpMyAdmin-4.4.9-1.fc20 (FEDORA-2015-9491) Handle the administration of MySQL over the World Wide Web -------------------------------------------------------------------------------- Update Information: phpMyAdmin 4.4.9.0 (2015-06-04) =============================== - Relation view doesn't list fields of table in other database - Sorting by an alias - False error before entering reCAPTCHA - Central column with multiple server - Custom export with backquotes off is not working - Reverse proxy: infinite internal redirect (added warning in doc) - Export to gzip saves plain text under Chrome -------------------------------------------------------------------------------- ChangeLog: * Thu Jun 4 2015 Robert Scheck <robert@xxxxxxxxxxxxxxxxx> 4.4.9-1 - Upgrade to 4.4.9 -------------------------------------------------------------------------------- ================================================================================ python-inotify-0.9.6-1.fc20 (FEDORA-2015-9462) Monitor filesystem events with Python under Linux -------------------------------------------------------------------------------- Update Information: Update to latest upstream release pyinotify 0.9.6, fixing several bugs. -------------------------------------------------------------------------------- ChangeLog: * Thu Jun 4 2015 Terje Rosten <terje.rosten@xxxxxxx> - 0.9.6-1 - 0.9.6 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1219659 - python-inotify crash in repl https://bugzilla.redhat.com/show_bug.cgi?id=1219659 -------------------------------------------------------------------------------- ================================================================================ rootsh-1.5.3-11.fc20 (FEDORA-2015-9451) Shell wrapper for auditing -------------------------------------------------------------------------------- Update Information: Create and own logging directory. -------------------------------------------------------------------------------- ChangeLog: * Tue Jun 2 2015 Tom Callaway <spot@xxxxxxxxxxxxxxxxx> - 1.5.3-11 - own rootsh specific log dir * Mon Aug 18 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.5.3-10 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild * Sun Jun 8 2014 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.5.3-9 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1226770 - rootsh RPM does not create default logging directory https://bugzilla.redhat.com/show_bug.cgi?id=1226770 -------------------------------------------------------------------------------- ================================================================================ rpkg-1.35-2.fc20 (FEDORA-2015-9465) Utility for interacting with rpm+git packaging systems -------------------------------------------------------------------------------- Update Information: This update: - adds new command - container-build - to support building container images via osbs client[1] and containerbuild plugin in Koji[2]. - has a lot of lookaside code refactoring supported by unit tests (by bochecha). - adds long --verbose option to -v and new --debug and -d option to get tracebacks Note: Fedora currently doesn't have OpenShift builders nor container build support in Koji so container-build doesn't really work with fedpkg. [1] https://github.com/DBuildService/osbs [2] https://github.com/release-engineering/koji-containerbuild -------------------------------------------------------------------------------- ChangeLog: * Tue May 26 2015 Dennis Gilmore <dennis@xxxxxxxx> - 1.35-2 - pyrpkg Requires python-osbs * Tue May 26 2015 Pavol Babincak <pbabinca@xxxxxxxxxx> - 1.35-1 - Test for scratch opt in the actual argument of container_build_koji (pbabinca) - Move the GitIgnore class to its own module (bochecha) - Modernize the gitignore-handling code (bochecha) - gitignore: Properly handle adding matching lines (bochecha) - Refactor: remove unnecessary code (pbabinca) - Move custom UnknownTargetError to errors module (pbabinca) - New command: container-build (jluza) - lookaside: Take over file uploads (bochecha) - Remove unnecessary log message (bochecha) - Stop making source files read-only (bochecha) - Drop some useless comments (bochecha) - Only report we're uploading when we actually are (bochecha) - lookaside: Check if a file already was uploaded (bochecha) - lookaside: Allow client-side and custom CA certificates (bochecha) - lookaside: Be more flexible when building the download URL (bochecha) - lookaside: Use the hashtype for the URL interpolation (bochecha) - lookaside: Add a progress callback (bochecha) - lookaside: Handle downloading of source files (bochecha) - lookaside: Move handling of file verification (bochecha) - lookaside: Move handling of file hashing (bochecha) - utils: Add a new warn_deprecated helper (bochecha) - Add a new lookaside module (bochecha) - Add a new utils module (bochecha) - Properly set the logger (bochecha) - Move our custom errors to their own module (bochecha) - Don't assume MD5 for the lookaside cache (bochecha) - Remove dead code (bochecha) - Use the proper exception syntax (bochecha) * Thu Apr 16 2015 Pavol Babincak <pbabinca@xxxxxxxxxx> - 1.34-1 - tests: Don't use assertIsNone (bochecha) - tests: Don't use assertRaises as a context manager (bochecha) - Add long --verbose option to -v, new --debug and -d option (pbabinca) -------------------------------------------------------------------------------- ================================================================================ salt-2015.5.2-2.fc20 (FEDORA-2015-9464) A parallel remote execution system -------------------------------------------------------------------------------- Update Information: Update to bugfix release 2015.5.2 Add missing dependency on which (RH #1226636) -------------------------------------------------------------------------------- ChangeLog: * Thu Jun 4 2015 Erik Johnson <erik@xxxxxxxxxxxxx> - 2015.5.2-2 - Update skipped tests * Thu Jun 4 2015 Erik Johnson <erik@xxxxxxxxxxxxx> - 2015.5.2-1 - Update to bugfix release 2015.5.2 * Mon Jun 1 2015 Erik Johnson <erik@xxxxxxxxxxxxx> - 2015.5.1-2 - Add missing dependency on which (RH #1226636) * Wed May 27 2015 Erik Johnson <erik@xxxxxxxxxxxxx> - 2015.5.1-1 - Update to bugfix release 2015.5.1 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1226636 - salt-minion-2015.5.0 needs package 'which' installed https://bugzilla.redhat.com/show_bug.cgi?id=1226636 -------------------------------------------------------------------------------- ================================================================================ shinken-2.2-6.fc20 (FEDORA-2015-9546) Python Monitoring tool -------------------------------------------------------------------------------- Update Information: Use init and systemd from upstream. -------------------------------------------------------------------------------- ChangeLog: * Tue Jun 2 2015 David Hannequin <david.hannequin@xxxxxxxxx> - 2.2-6 - Use init and systemd from upstream. -------------------------------------------------------------------------------- ================================================================================ xen-4.3.4-5.fc20 (FEDORA-2015-9500) Xen is a virtual machine monitor -------------------------------------------------------------------------------- Update Information: Potential unintended writes to host MSI message data field via qemu [XSA-128, CVE-2015-4103], PCI MSI mask bits inadvertently exposed to guests [XSA-129, CVE-2015-4104], Guest triggerable qemu MSI-X pass-through error messages [XSA-130, CVE-2015-4105], Unmediated PCI register access in qemu [XSA-131, CVE-2015-4106] -------------------------------------------------------------------------------- ChangeLog: * Tue Jun 2 2015 Michael Young <m.a.young@xxxxxxxxxxxx> - 4.3.4-5 - Potential unintended writes to host MSI message data field via qemu [XSA-128, CVE-2015-4103] - PCI MSI mask bits inadvertently exposed to guests [XSA-129, CVE-2015-4104] - Guest triggerable qemu MSI-X pass-through error messages [XSA-130, CVE-2015-4105] - Unmediated PCI register access in qemu [XSA-131, CVE-2015-4106] -------------------------------------------------------------------------------- References: [ 1 ] Bug #1223846 - CVE-2015-4103 xen: potential unintended writes to host MSI message data field via qemu (xsa-128) https://bugzilla.redhat.com/show_bug.cgi?id=1223846 [ 2 ] Bug #1223851 - CVE-2015-4104 xen: PCI MSI mask bits inadvertently exposed to guests (xsa-129) https://bugzilla.redhat.com/show_bug.cgi?id=1223851 [ 3 ] Bug #1223853 - xen: guest triggerable qemu MSI-X pass-through error messages (xsa-130) https://bugzilla.redhat.com/show_bug.cgi?id=1223853 [ 4 ] Bug #1223859 - xen: unmediated PCI register access in qemu (xsa-131) https://bugzilla.redhat.com/show_bug.cgi?id=1223859 -------------------------------------------------------------------------------- -- test mailing list test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe: https://admin.fedoraproject.org/mailman/listinfo/test
