Fedora 21 updates-testing report
updates at fedoraproject.org
updates at fedoraproject.org
Wed Dec 17 04:51:52 UTC 2014
The following Fedora 21 Security updates need testing:
Age URL
28 https://admin.fedoraproject.org/updates/FEDORA-2014-15342/rubygem-actionpack-4.1.5-2.fc21
26 https://admin.fedoraproject.org/updates/FEDORA-2014-15413/rubygem-sprockets-2.12.1-3.fc21
24 https://admin.fedoraproject.org/updates/FEDORA-2014-15570/python-pip-1.5.6-3.fc21
12 https://admin.fedoraproject.org/updates/FEDORA-2014-16292/jasper-1.900.1-28.fc21
12 https://admin.fedoraproject.org/updates/FEDORA-2014-16287/pyxdg-0.25-5.fc21
10 https://admin.fedoraproject.org/updates/FEDORA-2014-16451/gpgme-1.4.3-5.fc21
5 https://admin.fedoraproject.org/updates/FEDORA-2014-16561/firebird-2.5.2.26539.0-14.fc21
5 https://admin.fedoraproject.org/updates/FEDORA-2014-16609/mantis-1.2.18-1.fc21
5 https://admin.fedoraproject.org/updates/FEDORA-2014-16647/unbound-1.5.1-2.fc21
5 https://admin.fedoraproject.org/updates/FEDORA-2014-16557/bind-9.9.6-5.P1.fc21
5 https://admin.fedoraproject.org/updates/FEDORA-2014-16756/sagemath-6.3-5.fc21
5 https://admin.fedoraproject.org/updates/FEDORA-2014-16782/mutt-1.5.23-7.fc21
3 https://admin.fedoraproject.org/updates/FEDORA-2014-16823/tcpdump-4.6.2-3.fc21
3 https://admin.fedoraproject.org/updates/FEDORA-2014-16840/freetype-2.5.3-13.fc21
3 https://admin.fedoraproject.org/updates/FEDORA-2014-16880/libhtp-0.5.16-1.fc21
3 https://admin.fedoraproject.org/updates/FEDORA-2014-16833/asterisk-11.14.2-1.fc21
2 https://admin.fedoraproject.org/updates/FEDORA-2014-16967/mpfr-3.1.2-8.fc21
2 https://admin.fedoraproject.org/updates/FEDORA-2014-17009/erlang-17.4-1.fc21
0 https://admin.fedoraproject.org/updates/FEDORA-2014-17049/openvas-cli-1.3.1-1.fc21,openvas-manager-5.0.7-1.fc21,openvas-scanner-4.0.5-1.fc21
0 https://admin.fedoraproject.org/updates/FEDORA-2014-17055/dcmtk-3.6.1-1.fc21
The following Fedora 21 Critical Path updates have yet to be approved:
Age URL
13 https://admin.fedoraproject.org/updates/FEDORA-2014-16173/crda-3.13_2014.11.18-1.fc21
13 https://admin.fedoraproject.org/updates/FEDORA-2014-16178/xcb-util-0.4.0-2.fc21
13 https://admin.fedoraproject.org/updates/FEDORA-2014-16146/colord-gtk-0.1.26-1.fc21
12 https://admin.fedoraproject.org/updates/FEDORA-2014-16287/pyxdg-0.25-5.fc21
12 https://admin.fedoraproject.org/updates/FEDORA-2014-16292/jasper-1.900.1-28.fc21
10 https://admin.fedoraproject.org/updates/FEDORA-2014-16451/gpgme-1.4.3-5.fc21
10 https://admin.fedoraproject.org/updates/FEDORA-2014-16402/perl-Encode-2.67-1.fc21
5 https://admin.fedoraproject.org/updates/FEDORA-2014-16645/libinput-0.7.0-2.20141211git58abea394.fc21
5 https://admin.fedoraproject.org/updates/FEDORA-2014-16548/tracker-1.2.5-1.fc21
5 https://admin.fedoraproject.org/updates/FEDORA-2014-16557/bind-9.9.6-5.P1.fc21
5 https://admin.fedoraproject.org/updates/FEDORA-2014-16591/libsoup-2.48.1-1.fc21
5 https://admin.fedoraproject.org/updates/FEDORA-2014-16536/device-mapper-multipath-0.4.9-68.fc21.2
5 https://admin.fedoraproject.org/updates/FEDORA-2014-16509/anaconda-21.48.22-1.fc21
5 https://admin.fedoraproject.org/updates/FEDORA-2014-16630/ibus-1.5.9-7.fc21
5 https://admin.fedoraproject.org/updates/FEDORA-2014-16566/libevdev-1.3.2-1.fc21
5 https://admin.fedoraproject.org/updates/FEDORA-2014-16547/colord-1.2.7-2.fc21,libgusb-0.2.3-1.fc21,colorhug-client-0.2.4-1.fc21
3 https://admin.fedoraproject.org/updates/FEDORA-2014-16899/sqlite-3.8.7.4-1.fc21,spatialite-tools-4.2.0-6.fc21
3 https://admin.fedoraproject.org/updates/FEDORA-2014-16939/gnutls-3.3.11-1.fc21
3 https://admin.fedoraproject.org/updates/FEDORA-2014-16840/freetype-2.5.3-13.fc21
3 https://admin.fedoraproject.org/updates/FEDORA-2014-16853/samba-4.1.14-1.fc21
3 https://admin.fedoraproject.org/updates/FEDORA-2014-16905/ppp-2.4.7-6.fc21
3 https://admin.fedoraproject.org/updates/FEDORA-2014-16855/perl-Filter-1.51-1.fc21
3 https://admin.fedoraproject.org/updates/FEDORA-2014-16522/evolution-mapi-3.12.9-1.fc21,evolution-ews-3.12.9-1.fc21,evolution-3.12.9-1.fc21,evolution-data-server-3.12.9-2.fc21
2 https://admin.fedoraproject.org/updates/FEDORA-2014-16970/libnl3-3.2.25-5.fc21
2 https://admin.fedoraproject.org/updates/FEDORA-2014-16967/mpfr-3.1.2-8.fc21
0 https://admin.fedoraproject.org/updates/FEDORA-2014-17060/sgml-common-0.6.3-42.fc21
The following builds have been pushed to Fedora 21 updates-testing
ark-4.14.3-3.fc21
banshee-2.6.2-8.fc21
dcmtk-3.6.1-1.fc21
devassistant-0.9.3-3.fc21
dirmngr-1.1.1-6.fc21
emacs-bbdb-3.1.2-2.fc21
enlightenment-0.17.6-2.fc21
evince-3.14.1-7.fc21
fail2ban-0.9.1-2.fc21
fish-2.1.1-2.fc21
fstrm-0.2.0-1.fc21
gambas3-3.6.1-2.fc21
gfal2-2.7.8-3.fc21
gnome-devel-docs-3.14.3-1.fc21
gnulib-0-13.20141214git.fc21
goldendict-1.5-0.6.RC2.fc21
julia-0.3.3-2.fc21
llvm-3.5.0-4.fc21
mate-menus-1.8.0-5.fc21
mesa-10.4.0-1.20141214.fc21
mingw-wine-gecko-2.34-1.fc21
minipro-0-6.20141215gitd6dee16.fc21
nfs-utils-1.3.1-4.0.fc21
openvas-cli-1.3.1-1.fc21
openvas-manager-5.0.7-1.fc21
openvas-scanner-4.0.5-1.fc21
osgearth-2.6-3.fc21
php-pear-Net-DNS2-1.4.0-1.fc21
php-symfony-2.5.8-1.fc21
pocl-0.10-2.fc21
pure-0.62-2.fc21
python-factory-boy-2.4.1-2.fc21
qhexedit2-0.6.3-2.20141212svnr41.fc21
qtspell-0.5.0-2.fc21
rng-tools-5-4.fc21
selinux-policy-3.13.1-103.fc21
sgml-common-0.6.3-42.fc21
sharutils-4.14.2-1.fc21
sound-juicer-3.14.0-2.fc21
the_silver_searcher-0.27.0-1.fc21
vinagre-3.14.3-1.fc21
wine-1.7.33-1.fc21
wine-mono-4.5.4-1.fc21
Details about builds:
================================================================================
ark-4.14.3-3.fc21 (FEDORA-2014-17039)
Archive manager
--------------------------------------------------------------------------------
Update Information:
pull in fix for crash-on-close regression introduced in kde-4.14.3 update. See also http://bugs.kde.org/341187
--------------------------------------------------------------------------------
ChangeLog:
* Mon Dec 15 2014 Rex Dieter <rdieter at fedoraproject.org> 4.14.3-3
- pull in fix for crash-on-close regression (kde#341187)
--------------------------------------------------------------------------------
================================================================================
banshee-2.6.2-8.fc21 (FEDORA-2014-17062)
Easily import, manage, and play selections from your music collection
--------------------------------------------------------------------------------
Update Information:
Add sqlite hinting to resolve performance issues with sqlite 3.8.7.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Dec 10 2014 Tom Callaway <spot at fedoraproject.org> 2.6.2-8
- add sqlite hinting
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1161844 - huge slowdown in banshee with sqlite 3.8.7-1.fc21
https://bugzilla.redhat.com/show_bug.cgi?id=1161844
--------------------------------------------------------------------------------
================================================================================
dcmtk-3.6.1-1.fc21 (FEDORA-2014-17055)
Offis DICOM Toolkit (DCMTK)
--------------------------------------------------------------------------------
Update Information:
Upgraded to new upstream version.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Dec 15 2014 Mario Ceresa <mrceresa AT fedoraproject DOT org> - 3.6.1-1
- Upgraded to new upstream version.
- Various fixes to the specfile
- Fixes CVE-2013-6825 dcmtk: possible privilege escalation if setuid() fails
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1104041 - CVE-2013-6825 dcmtk: possible privilege escalation if setuid() fails [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1104041
--------------------------------------------------------------------------------
================================================================================
devassistant-0.9.3-3.fc21 (FEDORA-2014-17063)
DevAssistant - Making life easier for developers
--------------------------------------------------------------------------------
Update Information:
Fixed Node.js creation Assistants.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Dec 15 2014 Tomas Radej <tradej at redhat.com> - 0.9.3-3
- Fix Node.js project creation
Resolves: rhbz#1147119
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1147119 - devassistant fails attempting to create a Node.js project
https://bugzilla.redhat.com/show_bug.cgi?id=1147119
--------------------------------------------------------------------------------
================================================================================
dirmngr-1.1.1-6.fc21 (FEDORA-2014-17050)
Client for Managing/Downloading CRLs
--------------------------------------------------------------------------------
Update Information:
This update fixes fatal problem with dirmngr failing to start on Fedora 21.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Dec 15 2014 Tomáš Mráz <tmraz at redhat.com> - 1.1.1-6
- fix missing pth initialization with libgcrypt-1.6.x (#1172997)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1172997 - [abrt] dirmngr: pth_key_setdata(): dirmngr killed by SIGSEGV
https://bugzilla.redhat.com/show_bug.cgi?id=1172997
--------------------------------------------------------------------------------
================================================================================
emacs-bbdb-3.1.2-2.fc21 (FEDORA-2014-17080)
A contact management utility for use with Emacs
--------------------------------------------------------------------------------
Update Information:
Improve robustness when reading databases, and revive the ":" command
in mh-folder mode.
--------------------------------------------------------------------------------
ChangeLog:
* Sun Dec 14 2014 Göran Uddeborg <goeran at uddeborg.se> 1:3.1.2-2
- Allow either 2 and 3 semicolons in databases (BZ #1172912).
- Fix ":" (bbdb-mua-display-sender) in mh-folder mode (BZ #1172915).
- Update URL to the new Savannah site.
- License is nowdays GPLv3+.
- Include copying license file and a few missing documentation files.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1172912 - bbdb database migrate from v6 to v7 fails on databases with only two ;; on the version line
https://bugzilla.redhat.com/show_bug.cgi?id=1172912
[ 2 ] Bug #1172915 - bbdb no can pop up info in mh-folder-mode (bbdb applied to mh-e in emacs-common)
https://bugzilla.redhat.com/show_bug.cgi?id=1172915
--------------------------------------------------------------------------------
================================================================================
enlightenment-0.17.6-2.fc21 (FEDORA-2014-17048)
Enlightenment window manager
--------------------------------------------------------------------------------
Update Information:
Use systemctl to suspend/hibernate.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Dec 12 2014 Tom Callaway <spot at fedoraproject.org> - 0.17.6-2
- use systemctl calls to suspend/hibernate
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1151791 - enlightenment 17 ignores lid closed
https://bugzilla.redhat.com/show_bug.cgi?id=1151791
--------------------------------------------------------------------------------
================================================================================
evince-3.14.1-7.fc21 (FEDORA-2014-17075)
Document viewer
--------------------------------------------------------------------------------
Update Information:
This update fixes scrolling to search results and caching of thumbnails.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Dec 15 2014 Marek Kasik <mkasik at redhat.com> - 3.14.1-7
- Fix configuration with ligbnome-desktop
- Related: #1147270
* Mon Dec 15 2014 Marek Kasik <mkasik at redhat.com> - 3.14.1-6
- Scroll to page on which is the search result selected by user
- when not in continuous mode.
- Resolves: #1162254
* Mon Dec 15 2014 Marek Kasik <mkasik at redhat.com> - 3.14.1-5
- Use libgnome-desktop to generate and cache thumbnails
- Resolves: #1147270
* Wed Nov 12 2014 Richard Hughes <richard at hughsie.com> - 3.14.1-4
- Fix non-Fedora build
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1147270 - Missing dependency on libgnome-desktop
https://bugzilla.redhat.com/show_bug.cgi?id=1147270
[ 2 ] Bug #1162254 - Search broken when "continuous" mode is not selected
https://bugzilla.redhat.com/show_bug.cgi?id=1162254
--------------------------------------------------------------------------------
================================================================================
fail2ban-0.9.1-2.fc21 (FEDORA-2014-17040)
Daemon to ban hosts that cause multiple authentication errors
--------------------------------------------------------------------------------
Update Information:
- Fix php-url-fopen logpath (bug #1169026)
--------------------------------------------------------------------------------
ChangeLog:
* Fri Nov 28 2014 Orion Poplawski <orion at cora.nwra.com> - 0.9.1-2
- Fix php-url-fopen logpath (bug #1169026)
--------------------------------------------------------------------------------
================================================================================
fish-2.1.1-2.fc21 (FEDORA-2014-17077)
A friendly interactive shell
--------------------------------------------------------------------------------
Update Information:
Backport grep.fish fixes (rhbz #1173924)
--------------------------------------------------------------------------------
ChangeLog:
* Sun Dec 14 2014 Andy Lutomirski <luto at mit.edu> - 2.1.1-2
- Backport grep.fish fixes (rhbz #1173924)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1173924 - Grep function for fish shell outputs GREP_OPTIONS warning
https://bugzilla.redhat.com/show_bug.cgi?id=1173924
--------------------------------------------------------------------------------
================================================================================
fstrm-0.2.0-1.fc21 (FEDORA-2014-17047)
Frame Streams implementation in C
--------------------------------------------------------------------------------
Update Information:
initial package
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1173839 - Review Request: fstrm - Frame Streams implementation in C
https://bugzilla.redhat.com/show_bug.cgi?id=1173839
--------------------------------------------------------------------------------
================================================================================
gambas3-3.6.1-2.fc21 (FEDORA-2014-17082)
IDE based on a basic interpreter with object extensions
--------------------------------------------------------------------------------
Update Information:
LLVM 3.5, Mesa 10.4, and friends
--------------------------------------------------------------------------------
ChangeLog:
* Thu Nov 27 2014 Marek Kasik <mkasik at redhat.com> 3.6.1-2
- Rebuild (poppler-0.28.1)
--------------------------------------------------------------------------------
================================================================================
gfal2-2.7.8-3.fc21 (FEDORA-2014-16754)
Grid file access library 2.0
--------------------------------------------------------------------------------
Update Information:
- Patching a bug in a call to gfal2_set_error that causes a segfault
- Moving a buffer to heap to avoid stack overflows
--------------------------------------------------------------------------------
ChangeLog:
* Mon Dec 15 2014 Alejandro Alvarez Ayllon <aalvarez at cern.ch> - 2.7.8-3
- Applied patch moving buffer to heap to avoid SIGSEGV when the stack size is limited
* Tue Dec 2 2014 Alejandro Alvarez Ayllon <aalvarez at cern.ch> - 2.7.8-2
- Patched a bug in a call to gfal2_set_error
--------------------------------------------------------------------------------
================================================================================
gnome-devel-docs-3.14.3-1.fc21 (FEDORA-2014-17061)
GNOME developer documentation
--------------------------------------------------------------------------------
Update Information:
Update to 3.14.3
--------------------------------------------------------------------------------
ChangeLog:
* Mon Dec 15 2014 David King <amigadave at amigadave.com> - 3.14.3-1
- Update to 3.14.3
* Fri Dec 5 2014 David King <amigadave at amigadave.com> - 3.14.2-2
- Document multiple licenses
--------------------------------------------------------------------------------
================================================================================
gnulib-0-13.20141214git.fc21 (FEDORA-2014-17057)
GNU Portability Library
--------------------------------------------------------------------------------
Update Information:
UPDATE ON 20141214
--------------------------------------------------------------------------------
ChangeLog:
* Sun Dec 14 2014 Mosaab Alzoubi <moceap at hotmail.com> - 0-13.20141214git
- Update on 20141214.
--------------------------------------------------------------------------------
================================================================================
goldendict-1.5-0.6.RC2.fc21 (FEDORA-2014-17070)
A feature-rich dictionary lookup program
--------------------------------------------------------------------------------
Update Information:
Update on 20141214
Update on 20141214
--------------------------------------------------------------------------------
ChangeLog:
* Sun Dec 14 2014 Ville Skyttä <ville.skytta at iki.fi> - 1.5-0.6.RC1
- Use system qtsingleapplication instead of bundled one
* Sun Dec 14 2014 Mosaab Alzoubi <moceap at hotmail.com> - 1.5-0.5.RC2
- Update on 20141214
- Add libtiff-devel as BR
- Add eb-devel as BR
- Add -docs subpackage
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1088035 - Use system qtsingleapplication instead of bundled one
https://bugzilla.redhat.com/show_bug.cgi?id=1088035
--------------------------------------------------------------------------------
================================================================================
julia-0.3.3-2.fc21 (FEDORA-2014-17082)
High-level, high-performance dynamic language for technical computing
--------------------------------------------------------------------------------
Update Information:
LLVM 3.5, Mesa 10.4, and friends
--------------------------------------------------------------------------------
ChangeLog:
* Fri Dec 12 2014 Adam Jackson <ajax at redhat.com> 0.3.3-2
- Rebuild for F21 LLVM 3.5 rebase
--------------------------------------------------------------------------------
================================================================================
llvm-3.5.0-4.fc21 (FEDORA-2014-17082)
The Low Level Virtual Machine
--------------------------------------------------------------------------------
Update Information:
LLVM 3.5, Mesa 10.4, and friends
--------------------------------------------------------------------------------
ChangeLog:
* Wed Nov 19 2014 Jens Petersen <petersen at redhat.com> - 3.5.0-4
- minor spec file cleanup from llvm34 package review:
- move LICENSE to llvm-libs
- remove tabs from spec
- use name macro to keep llvm34.spec closer
- remove defattr's
* Wed Nov 5 2014 Adam Jackson <ajax at redhat.com> 3.5.0-3
- Split out clang-libs
* Tue Oct 28 2014 Kalev Lember <kalevlember at gmail.com> - 3.5.0-2
- Obsolete python-llvmpy
* Mon Oct 27 2014 Adam Jackson <ajax at redhat.com> 3.5.0-1
- llvm 3.5.0
* Sun Aug 31 2014 Richard W.M. Jones <rjones at redhat.com> - 3.4-20
- Bump release and rebuild.
* Sun Aug 31 2014 Richard W.M. Jones <rjones at redhat.com> - 3.4-19
- ocaml-4.02.0 final rebuild.
* Sun Aug 24 2014 Richard W.M. Jones <rjones at redhat.com> - 3.4-18
- Bump release and rebuild.
* Sat Aug 23 2014 Richard W.M. Jones <rjones at redhat.com> - 3.4-17
- ocaml-4.02.0+rc1 rebuild.
* Sun Aug 17 2014 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 3.4-16
- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
mate-menus-1.8.0-5.fc21 (FEDORA-2014-17079)
Displays menus for MATE Desktop
--------------------------------------------------------------------------------
Update Information:
fix languages in menus
--------------------------------------------------------------------------------
ChangeLog:
* Sun Dec 14 2014 Wolfgang Ulbrich <chat-to-me at raveit.de> - 1.8.0-5
- fix languages in menus
- use find languages with --with-gnome --all-name
- use modern make install macro
--------------------------------------------------------------------------------
================================================================================
mesa-10.4.0-1.20141214.fc21 (FEDORA-2014-17082)
Mesa graphics libraries
--------------------------------------------------------------------------------
Update Information:
LLVM 3.5, Mesa 10.4, and friends
--------------------------------------------------------------------------------
ChangeLog:
* Sun Dec 14 2014 Igor Gnatenko <i.gnatenko.brain at gmail.com> - 10.4.0-1.20141214
- 10.4.0
- Enable VA state-tracker
- Remove dropped Gallium EGL state tracker
- Enable Nine state-tracker (Direct3D9 API)
- Add vdpau_r300 packaging
* Fri Dec 12 2014 Adam Jackson <ajax at redhat.com> 10.3.5-2
- Rebuild for LLVM 3.5
--------------------------------------------------------------------------------
================================================================================
mingw-wine-gecko-2.34-1.fc21 (FEDORA-2014-16631)
Gecko library required for Wine
--------------------------------------------------------------------------------
Update Information:
Version 1.7.33
* Support for copy/paste commands in MSHTML.
* Some more font support in DirectWrite.
* Better handling for loss of focus in Direct3D windows.
* Several more API Sets DLLs.
* Various bug fixes.
Version 1.7.32
* New version of the Mono engine.
* A few more functions implemented in MSHTML.
* Improved support for restoring display mode.
* Font metrics improvements in DirectWrite.
* Various bug fixes.
Version 1.7.31
* New version of the Gecko engine based on Firefox 34.
* Support for the Visual Studio 2013 version of the C/C++ runtimes.
* More font metrics support in DirectWrite.
* Some more Direct2D work.
* Various bug fixes.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Dec 9 2014 Michael Cronenworth <mike at cchtml.com> - 2.34-1
- version upgrade
* Sat Jun 7 2014 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 2.24-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1164471 - wine-1.7.31 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1164471
--------------------------------------------------------------------------------
================================================================================
minipro-0-6.20141215gitd6dee16.fc21 (FEDORA-2014-17058)
Utility for MiniPro TL866A/TL866/CS programmer
--------------------------------------------------------------------------------
Update Information:
Fixes a couple of crashers, adds non-verify option.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Dec 15 2014 Lubomir Rintel <lkundrak at v3.sk> - 0-6.20141215gitd6dee16
- Rebase to a later upstream snapshot
--------------------------------------------------------------------------------
================================================================================
nfs-utils-1.3.1-4.0.fc21 (FEDORA-2014-15315)
NFS utilities and supporting clients and daemons for the kernel NFS server
--------------------------------------------------------------------------------
Update Information:
commit e725def62c73b4aa269fefc4c0d96abb41927fcb
Author: Steve Dickson <steved at redhat.com>
Date: Mon Nov 17 13:17:20 2014 -0500
exportfs: Do not fail on empty exports file.
Commit 076dd80 introduced a regression that causes
exportfs to fail when there is an empty /etc/exports
file. A empty /etc/exports file is valid and should
not cause exportfs to fail.
commit e4569a0961ff9f059b9ae71327d291cf95399597
Author: Bodo Stroesser <bstroesser at ts.fujitsu.com>
Date: Wed Nov 12 09:43:29 2014 -0500
rpc.mountd: set libtirpc nonblocking mode to avoid DOS
In works fine in that it removes the vulnerability against
a DOS attack. rpc.mountd can be blocked by a bad client,
that sends many RPC requests but never reads the responses.
This might happen intentionally or caused by a wrong network
config (MTU). The patch switches on the nonblocking mode of
libtirpc. In that mode writes can block for a max of 2
seconds. Attackers are forced to send requests slower, as
libtirpc will close a connection if it finds two requests to
read at the same time.
1170354 - Typos in nfs-utils sysconfig files and associated script
1165322 - nfs-utils pre scriptlet fails to add rpcuser properly
1115225 - clean up and clarify lockd port configuration
1173564 - Cannot properly enable the nfs-secure service
--------------------------------------------------------------------------------
ChangeLog:
* Sat Dec 13 2014 Steve Dickson <steved at redhat.com> 1.3.1-4.0
- Updated to latest upstream RC release: nfs-utils-1-3-2-rc4
- Handle the rpcuser like other created users (bz 1165322)
- Restored lockd port and v4 grace/lease interface (bz 1115225)
- Make sure nfs-client target is enabled (bz 1173564)
* Wed Dec 3 2014 Steve Dickson <steved at redhat.com> 1.3.1-2.3
- Fixed typos in nfs-utils sysconfig files (bz 1170354)
* Mon Nov 17 2014 Steve Dickson <steved at redhat.com> 1.3.1-2.2
- Allow the server to start with an empty /etc/exports (bz 1164477)
* Thu Nov 13 2014 Steve Dickson <steved at redhat.com> 1.3.1-2.1
- Fixed a mount DOS (bz 1163886)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1164477 - nfs server does not start with empty /etc/exports (and exports in /etc/exports.d)
https://bugzilla.redhat.com/show_bug.cgi?id=1164477
[ 2 ] Bug #1163886 - rpc.mountd can be blocked by a bad client
https://bugzilla.redhat.com/show_bug.cgi?id=1163886
[ 3 ] Bug #1170354 - Typos in nfs-utils sysconfig files and associated script
https://bugzilla.redhat.com/show_bug.cgi?id=1170354
[ 4 ] Bug #1165322 - nfs-utils pre scriptlet fails to add rpcuser properly
https://bugzilla.redhat.com/show_bug.cgi?id=1165322
[ 5 ] Bug #1115225 - clean up and clarify lockd port configuration
https://bugzilla.redhat.com/show_bug.cgi?id=1115225
[ 6 ] Bug #1173564 - Cannot properly enable the nfs-secure service
https://bugzilla.redhat.com/show_bug.cgi?id=1173564
--------------------------------------------------------------------------------
================================================================================
openvas-cli-1.3.1-1.fc21 (FEDORA-2014-17049)
Command-line tool to drive OpenVAS Manager
--------------------------------------------------------------------------------
Update Information:
Bugfix release of Openvas-7
--------------------------------------------------------------------------------
ChangeLog:
* Tue Nov 4 2014 Michal Ambroz <rebus at, seznam.cz> - 1.3.1-1
- bump to OpenVAS7 openvas-cli version 1.3.1
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1169169 - CVE-2014-9220 openvas-manager: SQL injection related to the timezone parameter
https://bugzilla.redhat.com/show_bug.cgi?id=1169169
--------------------------------------------------------------------------------
================================================================================
openvas-manager-5.0.7-1.fc21 (FEDORA-2014-17049)
Manager Module for the Open Vulnerability Assessment System (OpenVAS)
--------------------------------------------------------------------------------
Update Information:
Bugfix release of Openvas-7
--------------------------------------------------------------------------------
ChangeLog:
* Sat Dec 6 2014 Michal Ambroz <rebus at, seznam.cz> - 5.0.7-1
- bump to OpenVas-7 version 5.0.7
* Fri Nov 7 2014 Michal Ambroz <rebus at, seznam.cz> - 5.0.5-2
- remove sysvinit subpackage as it is not needed anymore
- call setgroups before giving up rights with setuid
* Tue Nov 4 2014 Michal Ambroz <rebus at, seznam.cz> - 5.0.5-1
- bump to OpenVas-7 version 5.0.5
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1169169 - CVE-2014-9220 openvas-manager: SQL injection related to the timezone parameter
https://bugzilla.redhat.com/show_bug.cgi?id=1169169
--------------------------------------------------------------------------------
================================================================================
openvas-scanner-4.0.5-1.fc21 (FEDORA-2014-17049)
Open Vulnerability Assessment (OpenVAS) Scanner
--------------------------------------------------------------------------------
Update Information:
Bugfix release of Openvas-7
--------------------------------------------------------------------------------
ChangeLog:
* Sat Dec 6 2014 Michal Ambroz <rebus at, seznam.cz> - 4.0.5-1
- Update to OpenVAS-7 openvas-scanner release 4.0.5
* Fri Nov 7 2014 Michal Ambroz <rebus at, seznam.cz> - 4.0.4-2
- removed sysvinit subpackage - not needed anymore
* Wed Nov 5 2014 Michal Ambroz <rebus at, seznam.cz> - 4.0.4-1
- Update to OpenVAS-7 openvas-scanner release 4.0.4
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1169169 - CVE-2014-9220 openvas-manager: SQL injection related to the timezone parameter
https://bugzilla.redhat.com/show_bug.cgi?id=1169169
--------------------------------------------------------------------------------
================================================================================
osgearth-2.6-3.fc21 (FEDORA-2014-17046)
Dynamic map generation toolkit for OpenSceneGraph
--------------------------------------------------------------------------------
Update Information:
Initial package.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1173378 - Review Request: osgearth - Dynamic map generation toolkit for OpenSceneGraph
https://bugzilla.redhat.com/show_bug.cgi?id=1173378
--------------------------------------------------------------------------------
================================================================================
php-pear-Net-DNS2-1.4.0-1.fc21 (FEDORA-2014-17054)
PHP Resolver library used to communicate with a DNS server
--------------------------------------------------------------------------------
Update Information:
Changelog:
- added request signing support using RSA 256 and 512 (request PHP 5.4.8 or up)
- changed the Net_DNS2::nameservers value (the list of name server) to public so they can be accessed diretly if needed.
- added support for the CDNSKEY and OPENPGPKEY RR types
- completely re-wrote the sendPacket() function; the old process would throw an exception when the first error was encountered, which meant it never checked the next DNS server. The new code will cycle to the next name server if the request fails, and at the same time keep track of the exception generated by each name server separately.
- added a new E_NS_SOCKET_FAILED error code.
- fixed a bug in the Net_DNS2_Exception class; the 'previous' argument was only added in PHP 5.3.0
- fixed Net_DNS2_Packet_Request::set so we can pass '.' in as name value for querying the root name severs
- fixed Net_DNS2::setServers() so it overrides any existing values, rather than just adding to them. Also made it remove any duplicate nameserver entries.
- added the query response_time to the Net_DNS2_Packet_Response object.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Dec 15 2014 Remi Collet <remi at fedoraproject.org> - 1.4.0-1
- Update to 1.4.0 (stable)
- provide php-composer(pear/net_dns2)
--------------------------------------------------------------------------------
================================================================================
php-symfony-2.5.8-1.fc21 (FEDORA-2014-17036)
PHP framework for web projects
--------------------------------------------------------------------------------
Update Information:
Release notes:
http://symfony.com/blog/symfony-2-5-8-released
--------------------------------------------------------------------------------
ChangeLog:
* Mon Dec 15 2014 Remi Collet <remi at fedoraproject.org> - 2.5.8-1
- Update to 2.5.8
--------------------------------------------------------------------------------
================================================================================
pocl-0.10-2.fc21 (FEDORA-2014-17082)
Portable Computing Language - an OpenCL implementation
--------------------------------------------------------------------------------
Update Information:
LLVM 3.5, Mesa 10.4, and friends
--------------------------------------------------------------------------------
ChangeLog:
* Tue Oct 28 2014 Adam Jackson <ajax at redhat.com> 0.10-2
- BuildRequires: libedit-devel
- Rebuild for llvm 3.5
* Tue Oct 14 2014 Adam Jackson <ajax at redhat.com> 0.10-1
- pocl 0.10
--------------------------------------------------------------------------------
================================================================================
pure-0.62-2.fc21 (FEDORA-2014-17082)
A term-rewriting functional programming language
--------------------------------------------------------------------------------
Update Information:
LLVM 3.5, Mesa 10.4, and friends
--------------------------------------------------------------------------------
ChangeLog:
* Tue Oct 28 2014 Adam Jackson <ajax at redhat.com> 0.62-2
- Rebuild for LLVM 3.5
* Tue Oct 14 2014 Adam Jackson <ajax at redhat.com> 0.62-1
- pure 0.62
--------------------------------------------------------------------------------
================================================================================
python-factory-boy-2.4.1-2.fc21 (FEDORA-2014-17074)
A versatile test fixtures replacement based on thoughtbot's factory_girl
--------------------------------------------------------------------------------
Update Information:
A versatile test fixtures replacement based on thoughtbot's factory_girl
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1170159 - Review Request: python-factory-boy - A versatile test fixtures replacement based on thoughtbot's factory_girl
https://bugzilla.redhat.com/show_bug.cgi?id=1170159
--------------------------------------------------------------------------------
================================================================================
qhexedit2-0.6.3-2.20141212svnr41.fc21 (FEDORA-2014-17042)
Binary Editor for Qt
--------------------------------------------------------------------------------
Update Information:
Initial package.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1128393 - Review Request: qhexedit2 - Binary Editor for Qt
https://bugzilla.redhat.com/show_bug.cgi?id=1128393
--------------------------------------------------------------------------------
================================================================================
qtspell-0.5.0-2.fc21 (FEDORA-2014-17068)
Spell checking for Qt text widgets
--------------------------------------------------------------------------------
Update Information:
Initial package.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1173373 - Review Request: qtspell - Spell checking for Qt text widgets
https://bugzilla.redhat.com/show_bug.cgi?id=1173373
--------------------------------------------------------------------------------
================================================================================
rng-tools-5-4.fc21 (FEDORA-2014-17051)
Random number generator related utilities
--------------------------------------------------------------------------------
Update Information:
Bugfix update — exit cleanly when no hardware is found, apply hardening flags.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Dec 10 2014 Zbigniew Jędrzejewski-Szmek <zbyszek at in.waw.pl> - 5-4
- Build with hardening flags (#1051344)
- Fail nicely if no hardware generator is found (#892178)
- Drop unneeded dependency
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #892178 - rngd.service should behave more elegantly in the case where no hardware RNG is present
https://bugzilla.redhat.com/show_bug.cgi?id=892178
[ 2 ] Bug #1051344 - no hardening build
https://bugzilla.redhat.com/show_bug.cgi?id=1051344
--------------------------------------------------------------------------------
================================================================================
selinux-policy-3.13.1-103.fc21 (FEDORA-2014-17044)
SELinux policy configuration
--------------------------------------------------------------------------------
Update Information:
More info: http://koji.fedoraproject.org/koji/buildinfo?buildID=599292
--------------------------------------------------------------------------------
ChangeLog:
* Mon Dec 15 2014 Lukas Vrabec <lvrabec at redhat.com> 3.13.1-103
- Docker has a new config/key file it writes to /etc/docker
- Add support for /usr/share/vdsm/daemonAdapter
- Add additionnal MLS attribute for oddjob_mkhomedir to create homedirs.
- Add missing files_dontaudit_list_security_dirs() for smbd_t in samba_export_all_ro boolean.
- Allow virt_qemu_ga_t to execute kmod
- Allow logrotate to read hawkey.log in /var/cache/dnf/ BZ(1163438)
* Thu Dec 11 2014 Lukas Vrabec <lvrabec at redhat.com> 3.13.1-102
- Allow pegasus_openlmi_storage_t use nsswitch. BZ(1172258)
- Allow docker daemon to start transitiant units
- Add support for /var/run/gluster.
- Allow openvpn manage systemd_passwd_var_run_t files. BZ(1170085)
- Fix /usr/libexec/sssd/selinux_child labeling.
- Label /usr/libexec/tomcat/server as tomcat_exec_t.
* Tue Dec 2 2014 Lukas Vrabec <lvrabec at redhat.com> 3.13.1-101
- Add files_dontaudit_list_security_dirs() interface
- Allow rlogind to use also rlogin ports
- Dontaudit couchdb to list /var
- couchdb: allow disksup to monitor the local disks
- dontaudit list security dirs for samba domain.
- Label /var/lib/rpmrebuilddb/ as rpm_var_lib_t. BZ (1167946)
* Tue Nov 25 2014 Lukas Vrabec <lvrabec at redhat.com> 3.13.1-100
- Add seutil_dontaudit_access_check_semanage_module_store() interface
- Update to have all _systemctl() interface also init_reload_services()
- Allow named_filetrans_domain to create ibus directory with correct labeling
- Add labeling for /sbin/iw.
- Label tcp port 5280 as ejabberd port. BZ(1059930)
- Make /usr/bin/vncserver running as unconfined_service_t.
- getty_t should be ranged in MLS. Then also local_login_t runs as ranged domain
- Label /etc/docker/certs.d as cert_t
- Allow all systemd domains to search file systems
- I guess there can be content under /var/lib/lockdown #1167502
- Dontaudit access check on SELinux module store for sssd
- Update to have all _systemctl() interface also init_reload_services()
- Allow rhev-agentd to read /dev/.udev/db to make deploying hosted engine via iSCSI working
- Allow keystone to send a generic signal to own process.
- Dontaudit list user_tmp files for system_mail_t
- label virt-who as virtd_exec_t
- Allow rhsmcertd to send a null signal to virt-who running as virtd_t
- Add virt_signull() interface
- Allow .snapshots to be created in other directories, on all mountpoints
- Add missing alias for _content_rw_t
- Allow spamd to access razor-agent.log
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1121317 - SELinux is preventing /usr/lib/systemd/systemd-logind from 'destroy' accesses on the semaphore Unknown.
https://bugzilla.redhat.com/show_bug.cgi?id=1121317
[ 2 ] Bug #1155874 - SELinux is preventing /usr/lib/systemd/systemd-logind from 'destroy' accesses on the semaphore Unknown.
https://bugzilla.redhat.com/show_bug.cgi?id=1155874
[ 3 ] Bug #1163438 - SELinux is preventing logrotate from 'read' accesses on the directory /var/cache/dnf.
https://bugzilla.redhat.com/show_bug.cgi?id=1163438
[ 4 ] Bug #1167502 - SELinux is preventing /usr/sbin/usbmuxd from 'read' accesses on the file /var/lib/lockdown/SystemConfiguration.plist.
https://bugzilla.redhat.com/show_bug.cgi?id=1167502
[ 5 ] Bug #1167946 - rpm --rebuilddb causes loss of context labeling in /var/lib/rpm
https://bugzilla.redhat.com/show_bug.cgi?id=1167946
[ 6 ] Bug #1170085 - SELinux is preventing /usr/bin/systemd-ask-password from 'write' accesses on the directory ask-password.
https://bugzilla.redhat.com/show_bug.cgi?id=1170085
[ 7 ] Bug #1172258 - SELinux is preventing cimprovagt from 'search' accesses on the directory /var/lib/sss.
https://bugzilla.redhat.com/show_bug.cgi?id=1172258
--------------------------------------------------------------------------------
================================================================================
sgml-common-0.6.3-42.fc21 (FEDORA-2014-17060)
Common SGML catalog and DTD files
--------------------------------------------------------------------------------
Update Information:
-add /etc/sgml ownership to xml-common subpackage (#1173925)
--------------------------------------------------------------------------------
ChangeLog:
* Mon Dec 15 2014 Ondrej Vasik <ovasik at redhat.com> 0.6.3-42
- add /etc/sgml ownership to xml-common subpackage (#1173925)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1173925 - xml-common: /etc/sgml is not owned by any package
https://bugzilla.redhat.com/show_bug.cgi?id=1173925
--------------------------------------------------------------------------------
================================================================================
sharutils-4.14.2-1.fc21 (FEDORA-2014-17084)
The GNU shar utilities for packaging and unpackaging shell archives
--------------------------------------------------------------------------------
Update Information:
This release corrects manual pages, updates translations and fixes some compiler warnings.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Dec 15 2014 Petr Pisar <ppisar at redhat.com> - 4.14.2-1
- 4.14.2 bump
- License changed from (GPLv3+ and LGPLv3+ and (LGPLv3+ or BSD) and LGPLv2+
and Public Domain and GFDL) to (GPLv3+ and (LGPLv3+ or BSD) and LGPLv2+
and Public Domain and GFDL)
--------------------------------------------------------------------------------
================================================================================
sound-juicer-3.14.0-2.fc21 (FEDORA-2014-17038)
Clean and lean CD ripper
--------------------------------------------------------------------------------
Update Information:
Stop requiring gtk2 (#1147157)
--------------------------------------------------------------------------------
ChangeLog:
* Sun Dec 14 2014 David King <amigadave at amigadave.com> - 3.14.0-2
- Stop requiring gtk2 (#1147157)
- Use pkgconfig for BuildRequires
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1147157 - sound-juicer requires gtk2
https://bugzilla.redhat.com/show_bug.cgi?id=1147157
--------------------------------------------------------------------------------
================================================================================
the_silver_searcher-0.27.0-1.fc21 (FEDORA-2014-17059)
Super-fast text searching tool (ag)
--------------------------------------------------------------------------------
Update Information:
update to 0.27.0
--------------------------------------------------------------------------------
ChangeLog:
* Mon Dec 15 2014 Kenjiro Nakayama <nakayamakenjiro at gmail.com> - 0.27.0-1
- update to 0.27.0
--------------------------------------------------------------------------------
================================================================================
vinagre-3.14.3-1.fc21 (FEDORA-2014-17071)
VNC client for GNOME
--------------------------------------------------------------------------------
Update Information:
Update to 3.14.3
--------------------------------------------------------------------------------
ChangeLog:
* Mon Dec 15 2014 David King <amigadave at amigadave.com> - 3.14.3-1
- Update to 3.14.3
--------------------------------------------------------------------------------
================================================================================
wine-1.7.33-1.fc21 (FEDORA-2014-16631)
A compatibility layer for windows applications
--------------------------------------------------------------------------------
Update Information:
Version 1.7.33
* Support for copy/paste commands in MSHTML.
* Some more font support in DirectWrite.
* Better handling for loss of focus in Direct3D windows.
* Several more API Sets DLLs.
* Various bug fixes.
Version 1.7.32
* New version of the Mono engine.
* A few more functions implemented in MSHTML.
* Improved support for restoring display mode.
* Font metrics improvements in DirectWrite.
* Various bug fixes.
Version 1.7.31
* New version of the Gecko engine based on Firefox 34.
* Support for the Visual Studio 2013 version of the C/C++ runtimes.
* More font metrics support in DirectWrite.
* Some more Direct2D work.
* Various bug fixes.
--------------------------------------------------------------------------------
ChangeLog:
* Sun Dec 14 2014 Michael Cronenworth <mike at cchtml.com>
- 1.7.33-1
- version upgrade
* Sun Nov 30 2014 Michael Cronenworth <mike at cchtml.com>
- 1.7.32-1
- version upgrade
- wine-mono upgrade
* Fri Nov 14 2014 Andreas Bierfert <andreas.bierfert at lowlatency.de>
- 1.7.31-1
- version upgrade
- wine-gecko upgrade
- add some missing arch requires
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1164471 - wine-1.7.31 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1164471
--------------------------------------------------------------------------------
================================================================================
wine-mono-4.5.4-1.fc21 (FEDORA-2014-16631)
Mono library required for Wine
--------------------------------------------------------------------------------
Update Information:
Version 1.7.33
* Support for copy/paste commands in MSHTML.
* Some more font support in DirectWrite.
* Better handling for loss of focus in Direct3D windows.
* Several more API Sets DLLs.
* Various bug fixes.
Version 1.7.32
* New version of the Mono engine.
* A few more functions implemented in MSHTML.
* Improved support for restoring display mode.
* Font metrics improvements in DirectWrite.
* Various bug fixes.
Version 1.7.31
* New version of the Gecko engine based on Firefox 34.
* Support for the Visual Studio 2013 version of the C/C++ runtimes.
* More font metrics support in DirectWrite.
* Some more Direct2D work.
* Various bug fixes.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Nov 14 2014 Andreas Bierfert <andreas.bierfert at lowlatency.de>
- 4.5.4-1
- version upgrade
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1164471 - wine-1.7.31 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1164471
--------------------------------------------------------------------------------
More information about the test
mailing list