The following Fedora 21 Security updates need testing: Age URL 186 https://admin.fedoraproject.org/updates/FEDORA-2015-1467/openstack-glance-2014.1.3-4.fc21 77 https://admin.fedoraproject.org/updates/FEDORA-2015-8168/cabal-install-1.16.1.0-1.fc21,haskell-platform-2013.2.0.0-39.fc21 67 https://admin.fedoraproject.org/updates/FEDORA-2015-9090/fossil-1.33-1.fc21 67 https://admin.fedoraproject.org/updates/FEDORA-2015-9141/ceph-deploy-1.5.25-1.fc21 56 https://admin.fedoraproject.org/updates/FEDORA-2015-5247/strongswan-5.3.2-1.fc21 56 https://admin.fedoraproject.org/updates/FEDORA-2015-9744/squid-3.4.13-1.fc21 45 https://admin.fedoraproject.org/updates/FEDORA-2015-10175/opensaml-java-openws-1.5.5-2.fc21,opensaml-java-2.5.3-9.fc21 45 https://admin.fedoraproject.org/updates/FEDORA-2015-10301/389-ds-base-1.3.3.12-1.fc21 23 https://admin.fedoraproject.org/updates/FEDORA-2015-11368/nx-libs-3.5.0.32-1.fc21 7 https://admin.fedoraproject.org/updates/FEDORA-2015-12032/uwsgi-2.0.11.1-1.fc21 7 https://admin.fedoraproject.org/updates/FEDORA-2015-11995/bzr-2.6.0-7.fc21 7 https://admin.fedoraproject.org/updates/FEDORA-2015-12012/openssh-6.6.1p1-14.fc21 6 https://admin.fedoraproject.org/updates/FEDORA-2015-12250/lighttpd-1.4.36-1.fc21 5 https://admin.fedoraproject.org/updates/FEDORA-2015-12406/xfsprogs-3.2.2-2.fc21 4 https://admin.fedoraproject.org/updates/FEDORA-2015-12570/community-mysql-5.6.26-1.fc21 2 https://admin.fedoraproject.org/updates/FEDORA-2015-12645/lxc-1.0.7-2.fc21 1 https://admin.fedoraproject.org/updates/FEDORA-2015-12716/devscripts-2.15.8-1.fc21 1 https://admin.fedoraproject.org/updates/FEDORA-2015-12703/nbd-3.11-1.fc21 1 https://admin.fedoraproject.org/updates/FEDORA-2015-12714/xen-4.4.2-9.fc21 0 https://admin.fedoraproject.org/updates/FEDORA-2015-12773/python-kdcproxy-0.3.2-1.fc21 0 https://admin.fedoraproject.org/updates/FEDORA-2015-12148/wordpress-4.2.4-1.fc21 The following Fedora 21 Critical Path updates have yet to be approved: Age URL 7 https://admin.fedoraproject.org/updates/FEDORA-2015-12049/selinux-policy-3.13.1-105.20.fc21 6 https://admin.fedoraproject.org/updates/FEDORA-2015-12277/libfm-1.2.3-12.D20150713gitf47c9ae7ae.fc21 5 https://admin.fedoraproject.org/updates/FEDORA-2015-12402/gstreamer1-plugins-good-1.4.5-3.fc21 1 https://admin.fedoraproject.org/updates/FEDORA-2015-12715/libidn-1.32-1.fc21 1 https://admin.fedoraproject.org/updates/FEDORA-2015-12708/bash-4.3.39-6.fc21 0 https://admin.fedoraproject.org/updates/FEDORA-2015-12790/libsolv-0.6.11-2.fc21 The following builds have been pushed to Fedora 21 updates-testing atanks-6.3-1.fc21 atomic-1.1-1.git5f631c8.fc21 gfm-1.07-3.fc21 golang-github-armon-go-radix-0-0.2.git0bab926.fc21 hitch-1.0.0-0.4.2.beta4.fc21 libsolv-0.6.11-2.fc21 libticables2-1.3.4-6.fc21 openvpn-2.3.8-1.fc21 pcp-3.10.6-1.fc21 php-phpunit-PHP-CodeCoverage-2.2.2-1.fc21 php-phpunit-environment-1.3.2-1.fc21 php-phpunit-phploc-2.1.4-1.fc21 php-pimple-3.0.1-1.fc21 python-kdcproxy-0.3.2-1.fc21 swig-3.0.7-1.fc21 tint2-0.12.1-2.fc21 tinyxpath-1.3.1-3.fc21 tuned-2.5.1-1.fc21 wordpress-4.2.4-1.fc21 xkb-switch-1.3.1-1.20150719git532d923.fc21 xpra-0.15.4-1.fc21 Details about builds: ================================================================================ atanks-6.3-1.fc21 (FEDORA-2015-12809) Remake of a classic DOS game "Scorched Earth" -------------------------------------------------------------------------------- Update Information: Latest upstream bugfix/enhancement release. -------------------------------------------------------------------------------- ChangeLog: * Tue Aug 4 2015 Jonathan Ciesla <limburgher@xxxxxxxxx> - 6.3-1 - 6.3 * Wed Jun 17 2015 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 6.2-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild * Sat May 2 2015 Kalev Lember <kalevlember@xxxxxxxxx> - 6.2-2 - Rebuilt for GCC 5 C++11 ABI change -------------------------------------------------------------------------------- ================================================================================ atomic-1.1-1.git5f631c8.fc21 (FEDORA-2015-12806) Tool for managing ProjectAtomic systems and containers -------------------------------------------------------------------------------- Update Information: bump to 1.1 -------------------------------------------------------------------------------- ChangeLog: * Mon Aug 3 2015 Lokesh Mandvekar <lsm5@xxxxxxxxxxxxxxxxx> - 1.1-1.git5f631c8 - bump to 1.1 - buildrequires policycoreutils-python(3) * Fri Jul 24 2015 Lokesh Mandvekar <lsm5@xxxxxxxxxxxxxxxxx> - 1.0-1.git52d695c - version 1.0 as per setup.py - use latest upstream master commit - run test only if docker.sock writable * Tue Jul 14 2015 Miro Hrončok <mhroncok@xxxxxxxxxx> - 0-0.12.gitfea1b99 - update to latest upstream master - add new %files and require dbus, polkit and setup to have the directories - switch to Python 3 - disable build for arm (missing docker) - Resolves: rhbz#1241947 * Wed Jun 17 2015 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0-0.11.gite5734c4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild * Wed Apr 15 2015 Lokesh Mandvekar <lsm5@xxxxxxxxxxxxxxxxx> - 0-0.10.gite5734c4 - update to latest upstream master * Tue Mar 3 2015 Colin Walters <walters@xxxxxxxxxx> - 0-0.9.gita7ff4cb - Match ExclusiveArch with docker (there is no docker on i686) * Mon Mar 2 2015 Colin Walters <walters@xxxxxxxxxx> - 0-0.8.gita7ff4cb - Drop ExclusiveArch, we are just a wrapper for Docker, which in any case builds on other architectures now. -------------------------------------------------------------------------------- ================================================================================ gfm-1.07-3.fc21 (FEDORA-2015-12801) Texas Instruments handheld(s) file manipulation program -------------------------------------------------------------------------------- Update Information: Texas Instruments handheld(s) file manipulation program -------------------------------------------------------------------------------- References: [ 1 ] Bug #1186558 - Review Request: gfm - Texas Instruments handheld(s) file manipulation program https://bugzilla.redhat.com/show_bug.cgi?id=1186558 -------------------------------------------------------------------------------- ================================================================================ golang-github-armon-go-radix-0-0.2.git0bab926.fc21 (FEDORA-2015-12807) Golang implementation of Radix trees -------------------------------------------------------------------------------- Update Information: Update of spec file to spec-2.0 -------------------------------------------------------------------------------- ChangeLog: * Thu Jul 30 2015 Fridolin Pokorny <fpokorny@xxxxxxxxxx> - 0-0.2.git0bab926 - Update of spec file to spec-2.0 resolves: #1248654 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1248654 - Tracker for golang-github-armon-go-radix https://bugzilla.redhat.com/show_bug.cgi?id=1248654 -------------------------------------------------------------------------------- ================================================================================ hitch-1.0.0-0.4.2.beta4.fc21 (FEDORA-2015-12778) Network proxy that terminates TLS/SSL connections -------------------------------------------------------------------------------- Update Information: New upstream beta release Network proxy that terminates TLS/SSL connections Network proxy that terminates TLS/SSL connections Network proxy that terminates TLS/SSL connections Network proxy that terminates TLS/SSL connections -------------------------------------------------------------------------------- References: [ 1 ] Bug #1235305 - Review Request: hitch - Network proxy that terminates TLS/SSL connections https://bugzilla.redhat.com/show_bug.cgi?id=1235305 -------------------------------------------------------------------------------- ================================================================================ libsolv-0.6.11-2.fc21 (FEDORA-2015-12790) Package dependency solver -------------------------------------------------------------------------------- Update Information: This update makes the libsolv library binding packages depend on the exact version of the main package: mixing binding and library package versions seems to result in failures, see https://bugzilla.redhat.com/show_bug.cgi?id=1243737 . -------------------------------------------------------------------------------- ChangeLog: * Tue Aug 4 2015 Adam Williamson <awilliam@xxxxxxxxxx> - 0.6.11-2 - make bindings require the exact matching version of the lib (#1243737) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1243737 - python-solv should depend on an exact version of libsolv https://bugzilla.redhat.com/show_bug.cgi?id=1243737 -------------------------------------------------------------------------------- ================================================================================ libticables2-1.3.4-6.fc21 (FEDORA-2015-12776) Texas Instruments link cables library -------------------------------------------------------------------------------- Update Information: Add PPC64le support -------------------------------------------------------------------------------- ChangeLog: * Thu Jul 30 2015 Rafael dos Santos <rdossant@xxxxxxxxxx> - 1.3.4-6 - Add PPC64le support * Wed Jun 17 2015 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.3.4-5 - Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild * Wed Apr 29 2015 Marcin Juszkiewicz <mjuszkiewicz@xxxxxxxxxx> - 1.3.4-4 - Add AArch64 support -------------------------------------------------------------------------------- References: [ 1 ] Bug #1248531 - No ppc64le support in libticables2 https://bugzilla.redhat.com/show_bug.cgi?id=1248531 -------------------------------------------------------------------------------- ================================================================================ openvpn-2.3.8-1.fc21 (FEDORA-2015-12823) A full-featured SSL VPN solution -------------------------------------------------------------------------------- Update Information: Latest upstream release. -------------------------------------------------------------------------------- ChangeLog: * Tue Aug 4 2015 Jon Ciesla <limburgher@xxxxxxxxx> 2.3.8-1 - 2.3.8. * Thu Jun 18 2015 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 2.3.7-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ pcp-3.10.6-1.fc21 (FEDORA-2015-12774) System-level performance monitoring and performance management -------------------------------------------------------------------------------- Update Information: Primarily bugfix release of Performance Co-Pilot. Most notable change is the packaging split, but there are also a lot of other new features and bug fixes; see CHANGELOG for details. -------------------------------------------------------------------------------- ChangeLog: * Tue Aug 4 2015 Nathan Scott <nathans@xxxxxxxxxx> - 3.10.6-1 - Fix pcp2graphite write method invocation failure (BZ 1243123) - Reduce diagnostics in pmdaproc unknown state case (BZ 1224431) - Derived metrics via multiple files, directory expansion (BZ 1235556) - Update to latest PCP sources. * Mon Jun 15 2015 Mark Goodwin <mgoodwin@xxxxxxxxxx> - 3.10.5-1 - Provide and use non-exit(1)ing pmGetConfig(3) variant (BZ 1187588) - Resolve a pmdaproc.sh pmlogger restart regression (BZ 1229458) - Replacement of pmatop/pcp-atop(1) utility (BZ 1160811, BZ 1018575) - Reduced installation size for minimal applications (BZ 1182184) - Ensure pmlogger start scripts wait on pmcd startup (BZ 1185760) - Need to run pmcd at least once before pmval -L will work (BZ 185749) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1224431 - /var/log/pcp/pmcd/proc.log grows 1MB/day https://bugzilla.redhat.com/show_bug.cgi?id=1224431 [ 2 ] Bug #1235556 - RFE: Allow inclusion of derived metrics files https://bugzilla.redhat.com/show_bug.cgi?id=1235556 [ 3 ] Bug #1243123 - [abrt] pcp: pcp2graphite:269:<module>:TypeError: write() takes no keyword arguments https://bugzilla.redhat.com/show_bug.cgi?id=1243123 [ 4 ] Bug #1187588 - PM_CONTEXT_LOCAL crashes process when /etc/pcp.conf is unreadable https://bugzilla.redhat.com/show_bug.cgi?id=1187588 [ 5 ] Bug #1229458 - pmda Install should not start pmlogger https://bugzilla.redhat.com/show_bug.cgi?id=1229458 [ 6 ] Bug #1018575 - pmatop exceptions need better catching https://bugzilla.redhat.com/show_bug.cgi?id=1018575 [ 7 ] Bug #1182184 - reduced installation footprint for minimal pcp applications https://bugzilla.redhat.com/show_bug.cgi?id=1182184 [ 8 ] Bug #1185760 - Default pmlogger config depends on pmcd but doesn't ensure it is running https://bugzilla.redhat.com/show_bug.cgi?id=1185760 [ 9 ] Bug #185749 - Package Updater can't resolve dependencies https://bugzilla.redhat.com/show_bug.cgi?id=185749 -------------------------------------------------------------------------------- ================================================================================ php-phpunit-PHP-CodeCoverage-2.2.2-1.fc21 (FEDORA-2015-12269) PHP code coverage information -------------------------------------------------------------------------------- Update Information: **php-code-coverage 2.2.2** - 2015-08-04 * Reintroduced the PHP_CodeCoverage_Driver_HHVM driver as an extension of PHP_CodeCoverage_Driver_Xdebug that does not use xdebug_start_code_coverage() with options not supported by HHVM * Bumped required version of sebastian/environment to 1.3.2 for #365 **php-code-coverage 2.2.1** - 2015-08-02 * Bumped required version of sebastian/environment to 1.3.1 for #365 **php-code-coverage 2.2.0** - 2015-08-01 * Added a driver for PHPDBG (requires PHP 7) * Added PHP_CodeCoverage::setDisableIgnoredLines() to disable the ignoring of lines using annotations such as @codeCoverageIgnore -------------------------------------------------------------------------------- ChangeLog: * Tue Aug 4 2015 Remi Collet <remi@xxxxxxxxxxxxxxxxx> - 2.2.2-1 - update to 2.2.2 - raise dependency on sebastian/environment ^1.3.2 * Sun Aug 2 2015 Remi Collet <remi@xxxxxxxxxxxxxxxxx> - 2.2.1-1 - update to 2.2.1 (no change) - raise dependency on sebastian/environment ~1.3.1 -------------------------------------------------------------------------------- ================================================================================ php-phpunit-environment-1.3.2-1.fc21 (FEDORA-2015-12269) Handle HHVM/PHP environments -------------------------------------------------------------------------------- Update Information: **php-code-coverage 2.2.2** - 2015-08-04 * Reintroduced the PHP_CodeCoverage_Driver_HHVM driver as an extension of PHP_CodeCoverage_Driver_Xdebug that does not use xdebug_start_code_coverage() with options not supported by HHVM * Bumped required version of sebastian/environment to 1.3.2 for #365 **php-code-coverage 2.2.1** - 2015-08-02 * Bumped required version of sebastian/environment to 1.3.1 for #365 **php-code-coverage 2.2.0** - 2015-08-01 * Added a driver for PHPDBG (requires PHP 7) * Added PHP_CodeCoverage::setDisableIgnoredLines() to disable the ignoring of lines using annotations such as @codeCoverageIgnore -------------------------------------------------------------------------------- ChangeLog: * Mon Aug 3 2015 Remi Collet <remi@xxxxxxxxxxxxxxxxx> - 1.3.2-1 - update to 1.3.2 * Sun Jul 26 2015 Remi Collet <remi@xxxxxxxxxxxxxxxxx> - 1.3.0-1 - update to 1.3.0 -------------------------------------------------------------------------------- ================================================================================ php-phpunit-phploc-2.1.4-1.fc21 (FEDORA-2015-12789) A tool for quickly measuring the size of a PHP project -------------------------------------------------------------------------------- Update Information: >From git history: * Fix 112: PHP Undefined indexes when running ci -------------------------------------------------------------------------------- ChangeLog: * Tue Aug 4 2015 Remi Collet <remi@xxxxxxxxxxxxxxxxx> - 2.1.4-1 - update to 2.1.4 - switch to $fedoraClassLoader autoloader -------------------------------------------------------------------------------- ================================================================================ php-pimple-3.0.1-1.fc21 (FEDORA-2015-12798) A simple dependency injection container for PHP (extension) -------------------------------------------------------------------------------- Update Information: A simple dependency injection container for PHP **RPM**: * `php-pimple` provides the EXTENSION * `php-pimple-lib` provides the LIBRARY * `php-pimple-lib` obsoletes `php-Pimple` -------------------------------------------------------------------------------- References: [ 1 ] Bug #1131731 - Review Request: php-pimple - A simple dependency injection container for PHP https://bugzilla.redhat.com/show_bug.cgi?id=1131731 -------------------------------------------------------------------------------- ================================================================================ python-kdcproxy-0.3.2-1.fc21 (FEDORA-2015-12773) MS-KKDCP (kerberos proxy) WSGI module -------------------------------------------------------------------------------- Update Information: Fixes CVE-2015-5159 Update to 0.3.1 Update to 0.3.1 -------------------------------------------------------------------------------- ChangeLog: * Mon Aug 3 2015 Nathaniel McCallum <npmccallum@xxxxxxxxxxxxxxxxx> - 0.3.2-1 - Update to 0.3.2 - Fixes CVE-2015-5159 * Wed Jul 22 2015 Nathaniel McCallum <npmccallum@xxxxxxxxxxxxxxxxx> - 0.3.1-1 - Update to 0.3.1 * Thu Jun 18 2015 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.3-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild * Wed Jun 10 2015 Nathaniel McCallum <npmccallum@xxxxxxxxxxxxxxxxx> - 0.3-1 - Update to 0.3 - Run tests in Fedora (not RHEL due to python-tox) -------------------------------------------------------------------------------- ================================================================================ swig-3.0.7-1.fc21 (FEDORA-2015-12811) Connects C/C++/Objective C to some high-level programming languages -------------------------------------------------------------------------------- Update Information: Update to 3.0.7 -------------------------------------------------------------------------------- ChangeLog: * Tue Aug 4 2015 Björn Esser <bjoern.esser@xxxxxxxxx> - 3.0.7-1 - Update to 3.0.7 (#1249845) - Dropped Patch2, changes applied in upstream tarball * Wed Jul 29 2015 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 3.0.6-6 - Rebuilt for https://fedoraproject.org/wiki/Changes/F23Boost159 * Thu Jul 23 2015 Jitka Plesnikova <jplesnik@xxxxxxxxxx> - 3.0.6-5 - rebuild for Boost 1.58 * Thu Jul 23 2015 Jitka Plesnikova <jplesnik@xxxxxxxxxx> - 3.0.6-4 - Disable Ruby tests on Fedora 23 and higher when building on armv7 - Update list of Perl dependencies * Wed Jul 22 2015 David Tardon <dtardon@xxxxxxxxxx> - 3.0.6-3 - rebuild for Boost 1.58 * Fri Jul 10 2015 Orion Poplawski <orion@xxxxxxxxxxxxx> - 3.0.6-2 - Add patch for octave 4.0.0 support -------------------------------------------------------------------------------- References: [ 1 ] Bug #1249845 - swig-3.0.7 is available https://bugzilla.redhat.com/show_bug.cgi?id=1249845 -------------------------------------------------------------------------------- ================================================================================ tint2-0.12.1-2.fc21 (FEDORA-2015-12821) A lightweight X11 desktop panel and task manager -------------------------------------------------------------------------------- Update Information: * Tue Aug 04 2015 Leigh Scott <leigh123linux@xxxxxxxxxxxxxx> - 0.12.1-2 - upstream commit should fix bz 1249777 * Tue Aug 04 2015 Leigh Scott <leigh123linux@xxxxxxxxxxxxxx> - 0.12.1-1 - New version 0.12.1 -------------------------------------------------------------------------------- ChangeLog: * Tue Aug 4 2015 Leigh Scott <leigh123linux@xxxxxxxxxxxxxx> - 0.12.1-2 - upstream commit should fix bz 1249777 * Tue Aug 4 2015 Leigh Scott <leigh123linux@xxxxxxxxxxxxxx> - 0.12.1-1 - New version 0.12.1 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1249777 - [abrt] tint2: init(): tint2 killed by SIGSEGV https://bugzilla.redhat.com/show_bug.cgi?id=1249777 -------------------------------------------------------------------------------- ================================================================================ tinyxpath-1.3.1-3.fc21 (FEDORA-2015-12800) Small XPath syntax decoder -------------------------------------------------------------------------------- Update Information: New package -------------------------------------------------------------------------------- References: [ 1 ] Bug #1243379 - Review Request: tinyxpath - Small footprint XPath syntax decoder https://bugzilla.redhat.com/show_bug.cgi?id=1243379 -------------------------------------------------------------------------------- ================================================================================ tuned-2.5.1-1.fc21 (FEDORA-2015-12793) A dynamic adaptive system tuning daemon -------------------------------------------------------------------------------- Update Information: This is new release of tuned, for details see upstream changelog: https://fedorahosted.org/tuned/#Changelog This is new release of tuned fixing many bugs and adding new featers, for details see upstream changelog (https://fedorahosted.org/tuned/wiki/WikiStart#Changelog) -------------------------------------------------------------------------------- ChangeLog: * Tue Aug 4 2015 Jaroslav Škarvada <jskarvad@xxxxxxxxxx> - 2.5.1-1 - new-release related: rhbz#1155052 - plugin_scheduler: work with nohz_full resolves: rhbz#1247184 - fixed realtime-virtual-guest/host profiles packaged twice resolves: rhbz#1249028 - fixed requirements of realtime and nfv profiles - fixed tuned-gui not starting - various other minor fixes * Sun Jul 5 2015 Jaroslav Škarvada <jskarvad@xxxxxxxxxx> - 2.5.0-1 - new-release resolves: rhbz#1155052 - add support for ethtool -C to tuned network plugin resolves: rhbz#1152539 - add support for ethtool -K to tuned network plugin resolves: rhbz#1152541 - add support for calculation of values for the kernel command line resolves: rhbz#1191595 - no error output if there is no hdparm installed resolves: rhbz#1191775 - do not run hdparm on hotplug events if there is no hdparm tuning resolves: rhbz#1193682 - add oracle tuned profile resolves: rhbz#1196298 - fix bash completions for tuned-adm resolves: rhbz#1207668 - add glob support to tuned sysfs plugin resolves: rhbz#1212831 - add tuned-adm verify subcommand resolves: rhbz#1212836 - do not install tuned kernel command line to rescue kernels resolves: rhbz#1223864 - add variables support resolves: rhbz#1225124 - add built-in support for unit conversion into tuned resolves: rhbz#1225135 - fix vm.max_map_count setting in sap-netweaver profile resolves: rhbz#1228562 - add tuned profile for RHEL-RT resolves: rhbz#1228801 - plugin_scheduler: added support for runtime tuning of processes resolves: rhbz#1148546 - add support for changing elevators on xvd* devices (Amazon EC2) resolves: rhbz#1170152 - add workaround to be run after systemd-sysctl resolves: rhbz#1189263 - do not change settings of transparent hugepages if set in kernel cmdline resolves: rhbz#1189868 - add tuned profiles for RHEL-NFV resolves: rhbz#1228803 - plugin_bootloader: apply $tuned_params to existing kernels resolves: rhbz#1233004 * Fri Jun 19 2015 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 2.4.1-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1155052 - Rebase tuned to latest upstream https://bugzilla.redhat.com/show_bug.cgi?id=1155052 [ 2 ] Bug #1247184 - scheduler plugin causes nohz_full to be de-activated https://bugzilla.redhat.com/show_bug.cgi?id=1247184 [ 3 ] Bug #1249028 - Realtime profiles are packed twice https://bugzilla.redhat.com/show_bug.cgi?id=1249028 [ 4 ] Bug #1249915 - [abrt] tuned-gtk: tuned-gui:100:__init__:NameError: global name 'GlobalConfig' is not defined https://bugzilla.redhat.com/show_bug.cgi?id=1249915 -------------------------------------------------------------------------------- ================================================================================ wordpress-4.2.4-1.fc21 (FEDORA-2015-12148) Blog tool and publishing platform -------------------------------------------------------------------------------- Update Information: **WordPress 4.2.4 Security and Maintenance Release** WordPress 4.2.4 is now available. This is a security release for all previous versions and we strongly encourage you to update your sites immediately. This release addresses six issues, including three cross-site scripting vulnerabilities and a potential SQL injection that could be used to compromise a site, which were discovered by Marc-Alexandre Montpas of Sucuri, Helen Hou-Sandí of the WordPress security team, Netanel Rubin of Check Point, and Ivan Grigorov. It also includes a fix for a potential timing side-channel attack, discovered by Johannes Schmitt of Scrutinizer, and prevents an attacker from locking a post from being edited, discovered by Mohamed A. Baset. Our thanks to those who have practiced responsible disclosure of security issues. WordPress 4.2.4 also fixes four bugs. For more information, see: the release notes or consult the list of changes. * the release notes: https://codex.wordpress.org/Version_4.2.4 * the list of changes: https://core.trac.wordpress.org/log/branches/4.2?rev=33573&stop_rev=33396 **WordPress 4.2.3 Security and Maintenance Release** WordPress 4.2.3 is now available. This is a security release for all previous versions and we strongly encourage you to update your sites immediately. WordPress versions 4.2.2 and earlier are affected by a cross-site scripting vulnerability, which could allow users with the Contributor or Author role to compromise a site. This was initially reported by Jon Cave and fixed by Robert Chapin, both of the WordPress security team, and later reported by Jouko Pynnönen. We also fixed an issue where it was possible for a user with Subscriber permissions to create a draft through Quick Draft. Reported by Netanel Rubin from Check Point Software Technologies. Our thanks to those who have practiced responsible disclosure of security issues. WordPress 4.2.3 also contains fixes for 20 bugs from 4.2. For more information, see: * the release notes: https://codex.wordpress.org/Version_4.2.3 * the list of changes: https://core.trac.wordpress.org/log/branches/4.2?rev=33382&stop_rev=32430 -------------------------------------------------------------------------------- ChangeLog: * Tue Aug 4 2015 Remi Collet <remi@xxxxxxxxxxxxxxxxx> - 4.2.4-1 - WordPress 4.2.4 Security and Maintenance Release * Fri Jul 24 2015 Remi Collet <remi@xxxxxxxxxxxxxxxxx> - 4.2.3-1 - WordPress 4.2.3 Security and Maintenance Release -------------------------------------------------------------------------------- References: [ 1 ] Bug #1246396 - CVE-2015-5622 CVE-2015-5623 wordpress: cross-site scripting and permission issue fixed in wordpress 4.2.3 https://bugzilla.redhat.com/show_bug.cgi?id=1246396 [ 2 ] Bug #1250583 - CVE-2015-2213 wordpress: cross-site scripting vulnerabilities and a potential SQL injection https://bugzilla.redhat.com/show_bug.cgi?id=1250583 -------------------------------------------------------------------------------- ================================================================================ xkb-switch-1.3.1-1.20150719git532d923.fc21 (FEDORA-2015-12805) Switch your X keyboard layouts from the command line -------------------------------------------------------------------------------- Update Information: Initial import -------------------------------------------------------------------------------- References: [ 1 ] Bug #1246891 - Review Request: xkb-switch - Switch your X keyboard layouts from the command line https://bugzilla.redhat.com/show_bug.cgi?id=1246891 -------------------------------------------------------------------------------- ================================================================================ xpra-0.15.4-1.fc21 (FEDORA-2015-12768) Remote display server for applications and desktops -------------------------------------------------------------------------------- Update Information: Update to 0.15.4 -------------------------------------------------------------------------------- ChangeLog: * Tue Aug 4 2015 Jonathan G. Underwood <jonathan.underwood@xxxxxxxxx> - 0.15.4-1 - Update to 0.15.4 - Add missing release tag to previous rpm changelog entry -------------------------------------------------------------------------------- References: [ 1 ] Bug #1217070 - xpra-0.15.4 is available https://bugzilla.redhat.com/show_bug.cgi?id=1217070 -------------------------------------------------------------------------------- -- test mailing list test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe: https://admin.fedoraproject.org/mailman/listinfo/test