The following Fedora 21 Security updates need testing: Age URL 215 https://bodhi.fedoraproject.org/updates/FEDORA-2015-1467 openstack-glance-2014.1.3-4.fc21 96 https://bodhi.fedoraproject.org/updates/FEDORA-2015-9090 fossil-1.33-1.fc21 96 https://bodhi.fedoraproject.org/updates/FEDORA-2015-9141 ceph-deploy-1.5.25-1.fc21 85 https://bodhi.fedoraproject.org/updates/FEDORA-2015-9744 squid-3.4.13-1.fc21 74 https://bodhi.fedoraproject.org/updates/FEDORA-2015-10301 389-ds-base-1.3.3.12-1.fc21 28 https://bodhi.fedoraproject.org/updates/FEDORA-2015-12773 python-kdcproxy-0.3.2-1.fc21 15 https://bodhi.fedoraproject.org/updates/FEDORA-2015-13700 drupal6-views_bulk_operations-1.17-1.fc21 12 https://bodhi.fedoraproject.org/updates/FEDORA-2015-13423 php-twig-1.20.0-1.fc21 12 https://bodhi.fedoraproject.org/updates/conntrack-tools-1.4.2-9.fc21 conntrack-tools-1.4.2-9.fc21 12 https://bodhi.fedoraproject.org/updates/ca-certificates-2015.2.5-1.0.fc21 ca-certificates-2015.2.5-1.0.fc21 12 https://bodhi.fedoraproject.org/updates/FEDORA-2015-13917 drupal7-7.39-1.fc21 12 https://bodhi.fedoraproject.org/updates/FEDORA-2015-13926 gdk-pixbuf2-2.31.6-1.fc21 11 https://bodhi.fedoraproject.org/updates/FEDORA-2015-14010 mingw-gdk-pixbuf-2.31.6-1.fc21 8 https://bodhi.fedoraproject.org/updates/FEDORA-2015-14179 libreswan-3.15-1.fc21 8 https://bodhi.fedoraproject.org/updates/FEDORA-2015-14200 sblim-sfcb-1.4.8-5.fc21 8 https://bodhi.fedoraproject.org/updates/FEDORA-2015-14211 ntp-4.2.6p5-33.fc21 8 https://bodhi.fedoraproject.org/updates/FEDORA-2015-14242 pcre-8.35-14.fc21 6 https://bodhi.fedoraproject.org/updates/FEDORA-2015-14330 drupal6-ctools-1.14-1.fc21 6 https://bodhi.fedoraproject.org/updates/FEDORA-2015-14363 xen-4.4.3-1.fc21 6 https://bodhi.fedoraproject.org/updates/FEDORA-2015-14442 drupal6-6.37-1.fc21 2 https://bodhi.fedoraproject.org/updates/FEDORA-2015-14715 onionshare-0.7.1-1.fc21 1 https://bodhi.fedoraproject.org/updates/FEDORA-2015-14785 qemu-2.1.3-10.fc21 0 https://bodhi.fedoraproject.org/updates/FEDORA-2015-14849 libvdpau-1.1.1-1.fc21 0 https://bodhi.fedoraproject.org/updates/FEDORA-2015-14852 libwmf-0.2.8.4-46.fc21 0 https://bodhi.fedoraproject.org/updates/FEDORA-2015-14901 ipython-2.4.1-8.fc21 The following Fedora 21 Critical Path updates have yet to be approved: Age URL 160 https://bodhi.fedoraproject.org/updates/FEDORA-2015-4638 lcms2-2.7-1.fc21 47 https://bodhi.fedoraproject.org/updates/FEDORA-2015-11787 redhat-rpm-config-29-1.fc21 35 https://bodhi.fedoraproject.org/updates/FEDORA-2015-12212 perl-Filter-1.55-1.fc21 34 https://bodhi.fedoraproject.org/updates/FEDORA-2015-12402 gstreamer1-plugins-good-1.4.5-3.fc21 33 https://bodhi.fedoraproject.org/updates/FEDORA-2015-12575 perl-Encode-2.76-1.fc21 22 https://bodhi.fedoraproject.org/updates/FEDORA-2015-13233 yum-utils-1.1.31-28.fc21 22 https://bodhi.fedoraproject.org/updates/FEDORA-2015-13239 yum-3.4.3-154.fc21 15 https://bodhi.fedoraproject.org/updates/FEDORA-2015-13747 hwdata-0.281-1.fc21 15 https://bodhi.fedoraproject.org/updates/FEDORA-2015-13745 kernel-4.1.6-100.fc21 12 https://bodhi.fedoraproject.org/updates/FEDORA-2015-13926 gdk-pixbuf2-2.31.6-1.fc21 12 https://bodhi.fedoraproject.org/updates/FEDORA-2015-13908 librsvg2-2.40.10-1.fc21 12 https://bodhi.fedoraproject.org/updates/FEDORA-2015-13885 thunderbird-38.2.0-2.fc21 12 https://bodhi.fedoraproject.org/updates/FEDORA-2015-13877 libteam-1.18-1.fc21 12 https://bodhi.fedoraproject.org/updates/FEDORA-2015-13805 tigervnc-1.5.0-2.fc21 12 https://bodhi.fedoraproject.org/updates/dracut-038-40.git20150819.fc21 dracut-038-40.git20150819.fc21 12 https://bodhi.fedoraproject.org/updates/ca-certificates-2015.2.5-1.0.fc21 ca-certificates-2015.2.5-1.0.fc21 12 https://bodhi.fedoraproject.org/updates/btrfs-progs-4.1.2-1.fc21 btrfs-progs-4.1.2-1.fc21 11 https://bodhi.fedoraproject.org/updates/FEDORA-2015-14019 nss-3.20.0-1.0.fc21 nss-softokn-3.20.0-1.0.fc21 nss-util-3.20.0-1.0.fc21 9 https://bodhi.fedoraproject.org/updates/FEDORA-2015-14135 libpwquality-1.2.4-3.fc21 9 https://bodhi.fedoraproject.org/updates/FEDORA-2015-14070 selinux-policy-3.13.1-105.21.fc21 9 https://bodhi.fedoraproject.org/updates/FEDORA-2015-14065 perl-generators-1.04-1.fc21 8 https://bodhi.fedoraproject.org/updates/FEDORA-2015-14242 pcre-8.35-14.fc21 8 https://bodhi.fedoraproject.org/updates/FEDORA-2015-14209 vim-7.4.827-1.fc21 6 https://bodhi.fedoraproject.org/updates/FEDORA-2015-14405 abrt-2.3.0-10.fc21 libreport-2.3.0-9.fc21 6 https://bodhi.fedoraproject.org/updates/FEDORA-2015-14323 dnf-0.6.4-6.fc21 6 https://bodhi.fedoraproject.org/updates/FEDORA-2015-14307 perl-Thread-Queue-3.06-1.fc21 The following builds have been pushed to Fedora 21 updates-testing dmlite-0.7.4-1.fc21 fedfind-1.5.1-1.fc21 ipython-2.4.1-8.fc21 knot-1.6.5-1.fc21 libvdpau-1.1.1-1.fc21 libwmf-0.2.8.4-46.fc21 mate-polkit-1.10.1-1.fc21 mate-power-manager-1.10.2-1.fc21 mate-utils-1.10.3-1.fc21 mozilla-noscript-2.6.9.36-1.fc21 nodejs-lolex-1.3.1-2.fc21 nodejs-mkfiletree-1.0.1-1.fc21 nodejs-pinkie-1.0.0-1.fc21 nodejs-samsam-1.1.2-1.fc21 otter-browser-0.9.07-0.1.beta7git9946beb.fc21 owncloud-8.0.7-1.fc21 perl-Date-Manip-6.51-1.fc21 perl-Log-Dispatch-Config-1.04-8.fc21 python-dockerpty-0.3.3-3.fc21 python-hypothesis-1.11.0-1.fc21 python-pyroute2-0.3.14-1.fc21 python-rhsm-1.16.2-1.fc21 python-wikitcms-1.12.1-1.fc21 ruby-2.1.7-31.fc21 smaclient-1.1-4.fc21 subscription-manager-1.16.2-1.fc21 Details about builds: ================================================================================ dmlite-0.7.4-1.fc21 (FEDORA-2015-14831) Lcgdm grid data management and storage framework -------------------------------------------------------------------------------- Update Information: New upstream release ---- Update to 0.7.2, BugFix for too much verbose logging -------------------------------------------------------------------------------- ================================================================================ fedfind-1.5.1-1.fc21 (FEDORA-2015-14921) Fedora Finder finds Fedora -------------------------------------------------------------------------------- Update Information: This update provides the latest fedfind release, 1.5.1. It is a minor update to 1.5, adding a `size` property for images and tweaking image parsing a little more. -------------------------------------------------------------------------------- ================================================================================ ipython-2.4.1-8.fc21 (FEDORA-2015-14901) An enhanced interactive Python shell -------------------------------------------------------------------------------- Update Information: Add upstream patch to fix XSS vulnerability (bug #1259405) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1259405 - ipython: XSS via local folder name https://bugzilla.redhat.com/show_bug.cgi?id=1259405 -------------------------------------------------------------------------------- ================================================================================ knot-1.6.5-1.fc21 (FEDORA-2015-14827) An authoritative DNS daemon -------------------------------------------------------------------------------- Update Information: new upstream release -------------------------------------------------------------------------------- ================================================================================ libvdpau-1.1.1-1.fc21 (FEDORA-2015-14849) Wrapper library for the Video Decode and Presentation API -------------------------------------------------------------------------------- Update Information: Update to 1.1.1 Security fix for CVE-2015-5198, CVE-2015-5199, CVE-2015-5200 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1253827 - CVE-2015-5200 libvdpau vulnerability in trace functionality https://bugzilla.redhat.com/show_bug.cgi?id=1253827 [ 2 ] Bug #1253826 - CVE-2015-5199 libvdpau directory traversal in dlopen https://bugzilla.redhat.com/show_bug.cgi?id=1253826 [ 3 ] Bug #1253824 - CVE-2015-5198 libvdpau incorrect check for security transition https://bugzilla.redhat.com/show_bug.cgi?id=1253824 -------------------------------------------------------------------------------- ================================================================================ libwmf-0.2.8.4-46.fc21 (FEDORA-2015-14852) Windows MetaFile Library -------------------------------------------------------------------------------- Update Information: libwmf-0.2.8.4-46.fc21 - Related: rhbz#1227244 CVE-2015-4696 fix patch context -------------------------------------------------------------------------------- References: [ 1 ] Bug #1227244 - CVE-2015-0848 libwmf: heap overflow when decoding BMP images [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1227244 -------------------------------------------------------------------------------- ================================================================================ mate-polkit-1.10.1-1.fc21 (FEDORA-2015-14837) Integrates polkit authentication for MATE desktop -------------------------------------------------------------------------------- Update Information: mate-polkit-1.10.1-1.fc21 - update to 1.10.1 release - remove upstreamed patch mate-polkit-1.10.1-1.fc22 - update to 1.10.1 release - remove upstreamed patch mate-polkit-1.10.1-1.fc23 - update to 1.10.1 release - remove upstreamed patch -------------------------------------------------------------------------------- ================================================================================ mate-power-manager-1.10.2-1.fc21 (FEDORA-2015-14840) MATE power management service -------------------------------------------------------------------------------- Update Information: mate-power-manager-1.10.2-1.fc21 - update to 1.10.2 release mate-power- manager-1.10.2-1.fc22 - update to 1.10.2 release mate-power- manager-1.10.2-1.fc23 - update to 1.10.2 release mate-power- manager-1.10.2-1.el7 - update to 1.10.2 release -------------------------------------------------------------------------------- ================================================================================ mate-utils-1.10.3-1.fc21 (FEDORA-2015-14844) MATE utility programs -------------------------------------------------------------------------------- Update Information: mate-utils-1.10.3-1.fc21 - update to 1.10.3 release mate- utils-1.10.3-1.fc22 - update to 1.10.3 release mate-utils-1.10.3-1.el7 - update to 1.10.3 release mate-utils-1.10.3-1.fc23 - update to 1.10.3 release -------------------------------------------------------------------------------- ================================================================================ mozilla-noscript-2.6.9.36-1.fc21 (FEDORA-2015-14908) JavaScript white list extension for Mozilla Firefox -------------------------------------------------------------------------------- Update Information: Many bug fixes, see upstream changelog at https://noscript.net/changelog for a complete list. -------------------------------------------------------------------------------- ================================================================================ nodejs-lolex-1.3.1-2.fc21 (FEDORA-2015-14803) Fake JavaScript timers -------------------------------------------------------------------------------- Update Information: remove toplevel lolex.js -------------------------------------------------------------------------------- References: [ 1 ] Bug #1258159 - Review Request: nodejs-lolex - Fake JavaScript timers https://bugzilla.redhat.com/show_bug.cgi?id=1258159 -------------------------------------------------------------------------------- ================================================================================ nodejs-mkfiletree-1.0.1-1.fc21 (FEDORA-2015-14808) Nodejs module to make a tree of files and directories -------------------------------------------------------------------------------- Update Information: Update to 1.0.1 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1258217 - Review Request: nodejs-mkfiletree - Nodejs module to make a tree of files and directories https://bugzilla.redhat.com/show_bug.cgi?id=1258217 -------------------------------------------------------------------------------- ================================================================================ nodejs-pinkie-1.0.0-1.fc21 (FEDORA-2015-14825) Itty bitty little widdle twinkie pinkie ES6 Promise implementation -------------------------------------------------------------------------------- Update Information: Initial packaging -------------------------------------------------------------------------------- ================================================================================ nodejs-samsam-1.1.2-1.fc21 (FEDORA-2015-14800) Value identification and comparison functions -------------------------------------------------------------------------------- Update Information: new version -------------------------------------------------------------------------------- References: [ 1 ] Bug #1258156 - Review Request: nodejs-samsam - Value identification and comparison functions https://bugzilla.redhat.com/show_bug.cgi?id=1258156 -------------------------------------------------------------------------------- ================================================================================ otter-browser-0.9.07-0.1.beta7git9946beb.fc21 (FEDORA-2015-14895) Web browser controlled by the user, not vice-versa -------------------------------------------------------------------------------- Update Information: Update to 0.9.07-01.beta7 -------------------------------------------------------------------------------- ================================================================================ owncloud-8.0.7-1.fc21 (FEDORA-2015-14919) Private file sync and share server -------------------------------------------------------------------------------- Update Information: This update provides the latest upstream stable update for ownCloud 8.0, 8.0.7. See the [upstream changelog](https://owncloud.org/changelog/) for more details. As usual for a minor update, this should apply smoothly with no special handling, but we recommend backing up all data, configuration, and database contents before applying the update, just in case. -------------------------------------------------------------------------------- ================================================================================ perl-Date-Manip-6.51-1.fc21 (FEDORA-2015-14858) Date manipulation routines -------------------------------------------------------------------------------- Update Information: A new version of Date::Manip is available. See http://search.cpan.org/dist/Date- Manip/lib/Date/Manip/Changes6.pod#VERSION_6.51_2015-09-01 for the summary of changes in this release. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1259092 - perl-Date-Manip-6.51 is available https://bugzilla.redhat.com/show_bug.cgi?id=1259092 -------------------------------------------------------------------------------- ================================================================================ perl-Log-Dispatch-Config-1.04-8.fc21 (FEDORA-2015-14864) Log4j for Perl -------------------------------------------------------------------------------- Update Information: This release corrects tests to work with Log-Dispatch 2.47 and newer. It also declares all needed dependencies. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1258920 - perl-Log-Dispatch-Config-1.04-10.fc24 FTBFS: tests fail https://bugzilla.redhat.com/show_bug.cgi?id=1258920 -------------------------------------------------------------------------------- ================================================================================ python-dockerpty-0.3.3-3.fc21 (FEDORA-2015-14898) Python library to use the pseudo-tty of a docker container -------------------------------------------------------------------------------- Update Information: This version really supports Python 3 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1253859 - python-dockerpty 0.3.3 is available https://bugzilla.redhat.com/show_bug.cgi?id=1253859 -------------------------------------------------------------------------------- ================================================================================ python-hypothesis-1.11.0-1.fc21 (FEDORA-2015-14888) A library for property based testing -------------------------------------------------------------------------------- Update Information: - Update to 1.11.0 - text() now works with any sequence of things convertible to unicode strings. - @given will now work on methods whose definitions contains no explicit positional arguments, only varargs (bug #118) - Introduction of new @composite feature for more natural definition of strategies youâ??d previously have used flatmap for see https://hypothesis.readthedocs.org/en/latest/changes.html -------------------------------------------------------------------------------- References: [ 1 ] Bug #1258538 - python-hypothesis-v1.11.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1258538 -------------------------------------------------------------------------------- ================================================================================ python-pyroute2-0.3.14-1.fc21 (FEDORA-2015-14866) Pure Python netlink library -------------------------------------------------------------------------------- Update Information: sync with the master branch -------------------------------------------------------------------------------- ================================================================================ python-rhsm-1.16.2-1.fc21 (FEDORA-2015-14910) A Python library to communicate with a Red Hat Unified Entitlement Platform -------------------------------------------------------------------------------- Update Information: subscription-manager-1.16.2 - 884288: Better registergui for initial-setup - 1254349: move Resgistering to message - 1257460: Set text domain on Gtk.Builder widgets - 1246680: Hide rhsm-debug --subscriptions options - Set help file name for the Subscription Manager spoke - 1246680: Remove subscriptions from rhsm-debug - Enabled help options on first tab - 1207247: Insecure parameter needs more explanation - 1253275: Fix initial-setup ks mode - Stopped --consumerid = distributor id - 1246429: Stop spinbutton from blocking quantity - 1185958: Remove ostree plugins req on ostree - Do not allow using --force with --consumerid - 1141128: Subscriptions need refresh after imported cert removed - x86_64 and aarch /proc/cpuinfo module python-rhsm-1.16.2 - Adds RateLimitExceededException which is raised in response to 429 from the remote host. ---- Numerous bugfixes and improved layout for subscription-manager GUI. -------------------------------------------------------------------------------- ================================================================================ python-wikitcms-1.12.1-1.fc21 (FEDORA-2015-14915) Fedora QA wiki test management Python library -------------------------------------------------------------------------------- Update Information: This update provides the latest upstream release of python-wikitcms, 1.12.1. There are a couple of minor new features, but the most significant change is to fix the triggering of mwclient deprecation warnings by dropping all use of the page `edit()` method. -------------------------------------------------------------------------------- ================================================================================ ruby-2.1.7-31.fc21 (FEDORA-2015-14885) An interpreter of object-oriented scripting language -------------------------------------------------------------------------------- Update Information: Update to Ruby 2.1.7. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1255686 - ruby-2.2.3 is available https://bugzilla.redhat.com/show_bug.cgi?id=1255686 -------------------------------------------------------------------------------- ================================================================================ smaclient-1.1-4.fc21 (FEDORA-2015-14883) Provides access to z/VM System Management functions -------------------------------------------------------------------------------- Update Information: Add manpages for smaclient and smiucv. ---- Add new smaclient package. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1252530 - Review Request: smaclient - Provides access to z/VM System Management functions https://bugzilla.redhat.com/show_bug.cgi?id=1252530 -------------------------------------------------------------------------------- ================================================================================ subscription-manager-1.16.2-1.fc21 (FEDORA-2015-14910) Tools and libraries for subscription and repository management -------------------------------------------------------------------------------- Update Information: subscription-manager-1.16.2 - 884288: Better registergui for initial-setup - 1254349: move Resgistering to message - 1257460: Set text domain on Gtk.Builder widgets - 1246680: Hide rhsm-debug --subscriptions options - Set help file name for the Subscription Manager spoke - 1246680: Remove subscriptions from rhsm-debug - Enabled help options on first tab - 1207247: Insecure parameter needs more explanation - 1253275: Fix initial-setup ks mode - Stopped --consumerid = distributor id - 1246429: Stop spinbutton from blocking quantity - 1185958: Remove ostree plugins req on ostree - Do not allow using --force with --consumerid - 1141128: Subscriptions need refresh after imported cert removed - x86_64 and aarch /proc/cpuinfo module python-rhsm-1.16.2 - Adds RateLimitExceededException which is raised in response to 429 from the remote host. ---- Numerous bugfixes and improved layout for subscription-manager GUI. --------------------------------------------------------------------------------
-- test mailing list test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe: https://admin.fedoraproject.org/mailman/listinfo/test
