Fedora 20 updates-testing report

Wed Jun 4 07:56:34 UTC 2014

The following Fedora 20 Security updates need testing:
 Age  URL
  42  https://admin.fedoraproject.org/updates/FEDORA-2014-5497/openstack-keystone-2013.2.3-3.fc20
  33  https://admin.fedoraproject.org/updates/FEDORA-2014-5897/nrpe-2.15-2.fc20
  13  https://admin.fedoraproject.org/updates/FEDORA-2014-6551/chicken-4.8.0.6-2.fc20
  11  https://admin.fedoraproject.org/updates/FEDORA-2014-6615/drupal7-views-3.8-1.fc20
   8  https://admin.fedoraproject.org/updates/FEDORA-2014-6705/readline-6.2-9.fc20
   6  https://admin.fedoraproject.org/updates/FEDORA-2014-6810/check-mk-1.2.4p2-2.fc20
   5  https://admin.fedoraproject.org/updates/FEDORA-2014-6837/mingw-libtiff-4.0.3-4.fc20
   5  https://admin.fedoraproject.org/updates/FEDORA-2014-6828/mingw-icu-50.1.2-3.fc20
   5  https://admin.fedoraproject.org/updates/FEDORA-2014-6870/mingw-libjpeg-turbo-1.3.1-1.fc20
   5  https://admin.fedoraproject.org/updates/FEDORA-2014-6825/mingw-pixman-0.30.0-5.fc20
   5  https://admin.fedoraproject.org/updates/FEDORA-2014-6830/mingw-freetype-2.5.0.1-2.fc20
   5  https://admin.fedoraproject.org/updates/FEDORA-2014-6820/mingw-readline-6.2-4.fc20
   4  https://admin.fedoraproject.org/updates/FEDORA-2014-6912/mingw-curl-7.37.0-1.fc20
   4  https://admin.fedoraproject.org/updates/FEDORA-2014-6922/qt3-3.3.8b-58.fc20
   3  https://admin.fedoraproject.org/updates/FEDORA-2014-6944/mod_wsgi-3.5-1.fc20
   2  https://admin.fedoraproject.org/updates/FEDORA-2014-6970/qemu-1.6.2-6.fc20
   2  https://admin.fedoraproject.org/updates/FEDORA-2014-6953/mingw-gnutls-3.1.25-1.fc20
   2  https://admin.fedoraproject.org/updates/FEDORA-2014-6961/mediawiki-1.21.10-1.fc20
   0  https://admin.fedoraproject.org/updates/FEDORA-2014-7033/kernel-3.14.5-200.fc20
   0  https://admin.fedoraproject.org/updates/FEDORA-2014-6901/php-doctrine-orm-2.4.2-2.fc20,php-phpunit-PHPUnit-MockObject-1.2.3-4.fc20,php-5.5.13-2.fc20

The following Fedora 20 Critical Path updates have yet to be approved:
 Age URL
   8  https://admin.fedoraproject.org/updates/FEDORA-2014-6726/gssdp-0.14.8-1.fc20
   6  https://admin.fedoraproject.org/updates/FEDORA-2014-6792/device-mapper-persistent-data-0.3.2-1.fc20
   4  https://admin.fedoraproject.org/updates/FEDORA-2014-6915/openldap-2.4.39-3.fc20
   2  https://admin.fedoraproject.org/updates/FEDORA-2014-6967/gupnp-0.20.12-1.fc20
   1  https://admin.fedoraproject.org/updates/FEDORA-2014-6986/librepo-1.7.4-1.fc20
   1  https://admin.fedoraproject.org/updates/FEDORA-2014-6989/perl-Socket-2.014-1.fc20
   0  https://admin.fedoraproject.org/updates/FEDORA-2014-7035/gnome-settings-daemon-3.10.3-1.fc20
   0  https://admin.fedoraproject.org/updates/FEDORA-2014-7024/lorax-20.5-1.fc20

The following builds have been pushed to Fedora 20 updates-testing

    ascend-0.9.8-6.20140211svn4638.fc20
    cinnamon-2.2.13-4.fc20
    cinnamon-control-center-2.2.9-1.fc20
    cinnamon-settings-daemon-2.2.3-2.fc20
    cinnamon-translations-2.2.3-2.fc20
    compat-qpid-cpp-0.24-12.fc20
    dcraw-9.21-1.fc20
    dunst-1.0.0-3.fc20
    freeradius-3.0.3-2.fc20
    gcompris-14.05-1.fc20
    ghc-hjsmin-0.1.4.6-4.fc20
    ghc-io-streams-1.1.4.5-1.fc20
    gnome-settings-daemon-3.10.3-1.fc20
    gsoap-2.8.12-5.fc20
    ibus-table-1.8.0-1.fc20
    ibus-table-others-1.3.0.20140603-1.fc20
    jd-2.8.8-1.fc20
    kernel-3.14.5-200.fc20
    libdxfrw-0.5.11-1.fc20
    libmediainfo-0.7.69-1.fc20
    librecad-2.0.4-1.fc20
    libreoffice-4.2.4.2-16.fc20
    lorax-20.5-1.fc20
    mediainfo-0.7.69-1.fc20
    mintlocale-1.1.6-0.1.gitfb4118d.fc20
    nemo-2.2.2-2.fc20
    nfs-utils-1.3.0-2.1.fc20
    nifti2dicom-0.4.7-3.fc20.1
    pcsc-lite-1.8.10-2.fc20
    php-5.5.13-2.fc20
    php-doctrine-orm-2.4.2-2.fc20
    php-horde-content-2.0.4-1.fc20
    php-phpunit-PHPUnit-MockObject-1.2.3-4.fc20
    pylint-1.2-6.fc20
    python-astroid-1.1-3.fc20
    python-django-evolution-0.7.2-1.fc20
    qpid-cpp-0.26-9.fc20
    qpid-qmf-0.24-21.fc20
    ratools-0.5.2-3.fc20
    socket_wrapper-1.1.0-1.fc20
    ugene-1.13.3-1.fc20
    wkhtmltopdf-0.12.0-1.fc20
    wxsqlite3-3.1.0-2.fc20
    xpdf-3.04-2.fc20

Details about builds:

================================================================================
 ascend-0.9.8-6.20140211svn4638.fc20 (FEDORA-2014-7058)
 ASCEND modelling environment
--------------------------------------------------------------------------------
Update Information:

New package.
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #908088 - Review Request: ascend -  ASCEND modelling environment
        https://bugzilla.redhat.com/show_bug.cgi?id=908088
--------------------------------------------------------------------------------

================================================================================
 cinnamon-2.2.13-4.fc20 (FEDORA-2014-7030)
 Window management and application launching for GNOME
--------------------------------------------------------------------------------
Update Information:

- Latest Cinnamon build
--------------------------------------------------------------------------------
ChangeLog:

* Tue Jun  3 2014 Leigh Scott <leigh123linux at googlemail.com> - 2.2.13-4
- fix files from being listed twice
* Tue Jun  3 2014 Leigh Scott <leigh123linux at googlemail.com> - 2.2.13-3
- rebuilt
* Fri May 30 2014 Leigh Scott <leigh123linux at googlemail.com> - 2.2.13-2
- add logout sound to schema override
* Mon May 26 2014 Leigh Scott <leigh123linux at googlemail.com> - 2.2.13-1
- update to 2.2.13
- give cinnamon a rpmlint birthday
--------------------------------------------------------------------------------

================================================================================
 cinnamon-control-center-2.2.9-1.fc20 (FEDORA-2014-7030)
 Utilities to configure the Cinnamon desktop
--------------------------------------------------------------------------------
Update Information:

- Latest Cinnamon build
--------------------------------------------------------------------------------
ChangeLog:

* Wed May 28 2014 Leigh Scott <leigh123linux at googlemail.com> - 2.2.9-1
- update to 2.2.9
--------------------------------------------------------------------------------

================================================================================
 cinnamon-settings-daemon-2.2.3-2.fc20 (FEDORA-2014-7030)
 The daemon sharing settings from CINNAMON to GTK+/KDE applications
--------------------------------------------------------------------------------
Update Information:

- Latest Cinnamon build
--------------------------------------------------------------------------------
ChangeLog:

* Fri May 30 2014 Leigh Scott <leigh123linux at googlemail.com> - 2.2.3-2
- add fedora support to datetime
--------------------------------------------------------------------------------

================================================================================
 cinnamon-translations-2.2.3-2.fc20 (FEDORA-2014-7030)
 Translations for Cinnamon and Nemo
--------------------------------------------------------------------------------
Update Information:

- Latest Cinnamon build
--------------------------------------------------------------------------------
ChangeLog:

* Tue May 27 2014 Leigh Scott <leigh123linux at googlemail.com> - 2.2.3-2
- move mintlocale translations
* Tue May 27 2014 Leigh Scott <leigh123linux at googlemail.com> - 2.2.3-1
- update to 2.2.3
- add mintlocale translations
--------------------------------------------------------------------------------

================================================================================
 compat-qpid-cpp-0.24-12.fc20 (FEDORA-2014-7062)
 Libraries for Qpid C++ client applications
--------------------------------------------------------------------------------
Update Information:

- fix build on s390(x)
First build for Fedora.
First build for Fedora.
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1080583 - Review Request: compat-qpid-cpp - Compatibility modules for Qpid
        https://bugzilla.redhat.com/show_bug.cgi?id=1080583
--------------------------------------------------------------------------------

================================================================================
 dcraw-9.21-1.fc20 (FEDORA-2014-7052)
 Tool for decoding raw image data from digital cameras
--------------------------------------------------------------------------------
Update Information:

Upstream bugfix release with these changes:

- Support Lossy DNG files that lack an OpcodeList2 tag.

- Decode DNG files made from Fuji X-Trans photos.

- Support the Canon G1 X Mark II, Nikon P340, Samsing NX mini.

- Patched in Anders Torger's code for Phase One correction.

- Correctly crop all Sony cameras, read Panasonic blacklevels.

--------------------------------------------------------------------------------
ChangeLog:

* Tue May  6 2014 Nils Philippsen <nils at redhat.com> - 9.21-1
- report lcms2 errors
* Mon May  5 2014 Nils Philippsen <nils at redhat.com> - 9.21-1
- version 9.21
--------------------------------------------------------------------------------

================================================================================
 dunst-1.0.0-3.fc20 (FEDORA-2014-7059)
 Simple and configurable notification-daemon
--------------------------------------------------------------------------------
Update Information:

Backported numlock fix (RHBZ 1103216)
--------------------------------------------------------------------------------
ChangeLog:

* Tue Jun  3 2014 Lukas Zapletal <lzap+rpm at redhat.com> 1.0.0-3
- Backported numlock fix (RHBZ 1103216)
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1103216 - dunst shortcuts don't work when NumLock is on
        https://bugzilla.redhat.com/show_bug.cgi?id=1103216
--------------------------------------------------------------------------------

================================================================================
 freeradius-3.0.3-2.fc20 (FEDORA-2014-6698)
 High-performance and highly configurable free RADIUS server
--------------------------------------------------------------------------------
Update Information:

- Upgrade to upstream 3.0.3 release. See upstream ChangeLog for details (in freeradius-doc subpackage).
- Add explicit dependency on OpenSSL package with fixed CVE-2014-0160 (Heartbleed bug).
- Add confirmation of CVE-2014-0160 being fixed in OpenSSL to radiusd.conf.
- Minor configuration parsing change: "Double-escaping of characters in Perl, and octal characters has been fixed. If your configuration has text like "\\000", you will need to remove one backslash."
- Additionally includes post-release fixes for:
    * case-insensitive matching in compiled regular expressions not working,
    * upstream issue #634 "3.0.3 SIGSEGV on config parse",
    * upstream issue #635 "3.0.x - rlm_perl - strings are still escaped when passed to perl from FreeRADIUS",
    * upstream issue #639 "foreach may cause ABORT".
- Fixes bugs 1097266 1070447

--------------------------------------------------------------------------------
ChangeLog:

* Mon Jun  2 2014 Nikolai Kondrashov <Nikolai.Kondrashov at redhat.com> - 3.0.3-2
- Add explicit dependency on OpenSSL package with fixed CVE-2014-0160
  (Heartbleed bug).
- Add confirmation of CVE-2014-0160 being fixed in OpenSSL to radiusd.conf.
* Wed May 14 2014 Nikolai Kondrashov <Nikolai.Kondrashov at redhat.com> - 3.0.3-1
- Upgrade to upstream 3.0.3 release.
  See upstream ChangeLog for details (in freeradius-doc subpackage).
- Minor configuration parsing change: "Double-escaping of characters in Perl,
  and octal characters has been fixed. If your configuration has text like
  "\\000", you will need to remove one backslash."
- Additionally includes post-release fixes for:
  * case-insensitive matching in compiled regular expressions not working,
  * upstream issue #634 "3.0.3 SIGSEGV on config parse",
  * upstream issue #635 "3.0.x - rlm_perl - strings are still
    escaped when passed to perl from FreeRADIUS",
  * upstream issue #639 "foreach may cause ABORT".
- Fixes bugs 1097266 1070447
* Wed May  7 2014 Nikolai Kondrashov <Nikolai.Kondrashov at redhat.com> - 3.0.2-1
- Upgrade to upstream 3.0.2 release, configuration compatible with 3.0.1.
  See upstream ChangeLog for details (in freeradius-doc subpackage)
- Fixes bugs 1058884 1061408 1070447 1079500
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1097266 - freeradius-3.0.3 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=1097266
  [ 2 ] Bug #1070447 - rlm_sql group management broken in freeradius 3.0.1
        https://bugzilla.redhat.com/show_bug.cgi?id=1070447
  [ 3 ] Bug #1058884 - Calls to exec module or back-tick exec does not strip trailing whitespace or CR
        https://bugzilla.redhat.com/show_bug.cgi?id=1058884
  [ 4 ] Bug #1061408 - rlm_sql_sqlite module uses function calls newer than available in sqlite-3.6.20
        https://bugzilla.redhat.com/show_bug.cgi?id=1061408
  [ 5 ] Bug #1079500 - freeradius-3.0.2 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=1079500
--------------------------------------------------------------------------------

================================================================================
 gcompris-14.05-1.fc20 (FEDORA-2014-7019)
 Educational suite for kids 2-10 years old
--------------------------------------------------------------------------------
Update Information:

- New upstream release 14.05 (rhbz#1083910)

--------------------------------------------------------------------------------
ChangeLog:

* Tue Jun  3 2014 Hans de Goede <hdegoede at redhat.com> - 14.05-1
- New upstream release 14.05 (rhbz#1083910)
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1083910 - gcompris-14.05 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=1083910
--------------------------------------------------------------------------------

================================================================================
 ghc-hjsmin-0.1.4.6-4.fc20 (FEDORA-2014-7060)
 Haskell implementation of a javascript minifier
--------------------------------------------------------------------------------
Update Information:

Rebuild for hjsmin... Again.
Rebuild for hjsmin.
Latest release
--------------------------------------------------------------------------------
ChangeLog:

* Mon May 19 2014 Ricky Elrod <relrod at redhat.com> - 0.1.4.6-4
- Rebuild for hjsmin... Again.
* Fri May 16 2014 Ricky Elrod <relrod at redhat.com> - 0.1.4.6-3
- Rebuild for hjsmin.
* Mon May 12 2014 Ricky Elrod <relrod at redhat.com> - 0.1.4.6-2
- Rebuild for new optparse-applicative.
* Mon May 12 2014 Ricky Elrod <relrod at redhat.com> - 0.1.4.6-1
- Latest upstream release.
- Add optparse-applicative dep.
* Thu Apr 24 2014 Jens Petersen <petersen at redhat.com> - 0.1.4.4-5
- rebuild
* Mon Jan 20 2014 Ricky Elrod <codeblock at fedoraproject.org> - 0.1.4.4-4
- Rebuild again.
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1038491 - ghc-hjsmin-0.1.4.4 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=1038491
--------------------------------------------------------------------------------

================================================================================
 ghc-io-streams-1.1.4.5-1.fc20 (FEDORA-2014-7032)
 Simple, composable, easy-to-use stream I/O
--------------------------------------------------------------------------------
Update Information:

Simple, composable, easy-to-use stream I/O
- http://hackage.haskell.org/package/io-streams
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1060989 - Review Request: ghc-io-streams - Simple, composable, easy-to-use stream I/O
        https://bugzilla.redhat.com/show_bug.cgi?id=1060989
--------------------------------------------------------------------------------

================================================================================
 gnome-settings-daemon-3.10.3-1.fc20 (FEDORA-2014-7035)
 The daemon sharing settings from GNOME to GTK+/KDE applications
--------------------------------------------------------------------------------
Update Information:

Update to 3.10.3
--------------------------------------------------------------------------------
ChangeLog:

* Tue Jun  3 2014 Rui Matos <rmatos at redhat.com> - 3.10.3-1
- Update to 3.10.3
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1103846 - housekeeping plugin deletes files outside of /tmp
        https://bugzilla.redhat.com/show_bug.cgi?id=1103846
--------------------------------------------------------------------------------

================================================================================
 gsoap-2.8.12-5.fc20 (FEDORA-2014-7055)
 Generator Tools for Coding SOAP/XML Web Services in C and C++
--------------------------------------------------------------------------------
Update Information:

Fix for IPv4 only hosts.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Jun  2 2014 Mattias Ellert <mattias.ellert at fysast.uu.se> - 2.8.12-5
- Fix for IPv4 only hosts
--------------------------------------------------------------------------------

================================================================================
 ibus-table-1.8.0-1.fc20 (FEDORA-2014-7018)
 The Table engine for IBus platform
--------------------------------------------------------------------------------
Update Information:

update to 1.8.0
update to 1.5.0.20140528; Use Unicode code point as a last ditch sort key for the candidates; Update Unihan_Variants.txt from “2011-08-08 Unicode 6.1.0” to “2013-02-25 Unicode 6.3.0” and regenerate engine/chinese_variants.py; Fix bug in Unihan_Variants.txt, 同 is both simplified *and* traditional Chinese;
update to 1.5.0.20140527; rewrite major parts of ibus-table, fix many bugs
--------------------------------------------------------------------------------
ChangeLog:

* Tue Jun  3 2014 Mike FABIAN <mfabian at redhat.com> - 1.8.0-1
- update to 1.8.0
- adapt tools/ibus-table-query tothe new database format
* Wed May 28 2014 Mike FABIAN <mfabian at redhat.com> - 1.5.0.20140528-1
- update to 1.5.0.20140528
- Use Unicode code point as a last ditch sort key for the candidates
- Fix bug in Unihan_Variants.txt, 同 is both simplified *and* traditional Chinese
- Update Unihan_Variants.txt from “2011-08-08 Unicode 6.1.0” to “2013-02-25 Unicode 6.3.0” and regenerate engine/chinese_variants.py
* Tue May 27 2014 Mike FABIAN <mfabian at redhat.com> - 1.5.0.20140527-1
- update to 1.5.0.20140527
- Put exact matches always at the top of the candidate list
- Fix typo in the filtering for Chinese mode 3 (All characters with traditional Chinese first)
- Support prompt characters (e.g. for cangjie and stroke5)
* Mon May 19 2014 Mike FABIAN <mfabian at redhat.com> - 1.5.0.20140519-1
- update to 1.5.0.20140519
- rewrite major parts of ibus-table, fix many bugs.
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1050753 - table corrupted for certain chinese characters -- possibly integer overflow problem
        https://bugzilla.redhat.com/show_bug.cgi?id=1050753
--------------------------------------------------------------------------------

================================================================================
 ibus-table-others-1.3.0.20140603-1.fc20 (FEDORA-2014-7049)
 Various tables for IBus-Table
--------------------------------------------------------------------------------
Update Information:

update to latest upstream 1.3.0.20140603; use AUTO_WILDCARD=TRUE for all tables, this option started working in ibus-table > 1.8.0
bump release number to build against updated ibus-table; ibus-table-1.5.0.20140527 has a changed database format which makes a rebuild necessary.
--------------------------------------------------------------------------------
ChangeLog:

* Tue Jun  3 2014 Mike FABIAN <mfabian at redhat.com> - 1.3.0.20140603-1
- update to latest upstream 1.3.0.20140603
- use AUTO_WILDCARD=TRUE for all tables, this option started working
  in ibus-table > 1.8.0
* Tue May 27 2014 Mike FABIAN <mfabian at redhat.com> - 1.3.0.20140512-2
- bump release number to build against updated ibus-table
--------------------------------------------------------------------------------

================================================================================
 jd-2.8.8-1.fc20 (FEDORA-2014-7039)
 A 2ch browser
--------------------------------------------------------------------------------
Update Information:

2.8.8 formal release is released.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Jun  2 2014 Mamoru TASAKA <mtasaka at fedoraproject.org> - 2.8.8-1
- 2.8.8
--------------------------------------------------------------------------------

================================================================================
 kernel-3.14.5-200.fc20 (FEDORA-2014-7033)
 The Linux kernel
--------------------------------------------------------------------------------
Update Information:

The 3.14.5 stable update contains a number of important fixes across the tree.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Jun  2 2014 Justin M. Forbes <jforbes at fedoraproject.org> - 3.14.5-200
- Linux v3.14.5
* Thu May 29 2014 Josh Boyer <jwboyer at fedoraproject.org>
- CVE-2014-3917 DoS with syscall auditing (rhbz 1102571 1102715)
* Fri May 23 2014 Peter Robinson <pbrobinson at fedoraproject.org>
- Re-add rebased Beagle patch set for 3.14 (RHBZ 1094768)
- Drop some no longer needed ARM patches
* Tue May 20 2014 Josh Boyer <jwboyer at fedoraproject.org>
- Backport patch to add new elantech touchpad support (rhbz 1051668)
* Wed May 14 2014 Hans de Goede <hdegoede at redhat.com>
- Add synaptics min/max quirk patch for the ThinkPad W540 (rhbz 1096436)
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1102571 - CVE-2014-3917 kernel: DoS with syscall auditing
        https://bugzilla.redhat.com/show_bug.cgi?id=1102571
--------------------------------------------------------------------------------

================================================================================
 libdxfrw-0.5.11-1.fc20 (FEDORA-2014-7051)
 Library to read/write DXF files
--------------------------------------------------------------------------------
Update Information:

Update to latest upstream release.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Jun  2 2014 Tom Callaway <spot at fedoraproject.org> - 0.5.11-1
- update to 0.5.11
- resync with librecad changes
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1093657 - librecad-2.0.4 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=1093657
--------------------------------------------------------------------------------

================================================================================
 libmediainfo-0.7.69-1.fc20 (FEDORA-2014-7063)
 Library for supplies technical and tag information about a video or audio file
--------------------------------------------------------------------------------
Update Information:

Update to 0.7.69
--------------------------------------------------------------------------------
ChangeLog:

* Tue Jun  3 2014 Vasiliy N. Glazov <vascom2 at gmail.com> 0.7.69-1
- Update to 0.7.69
* Fri May 23 2014 Vasiliy N. Glazov <vascom2 at gmail.com> 0.7.68-2
- Update for tinyxml2 changes
--------------------------------------------------------------------------------

================================================================================
 librecad-2.0.4-1.fc20 (FEDORA-2014-7051)
 Computer Assisted Design (CAD) Application
--------------------------------------------------------------------------------
Update Information:

Update to latest upstream release.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Jun  2 2014 Richard Shaw <hobbes1069 at gmail.com> - 2.0.4-1
- Update to latest upstream release.
* Fri May 23 2014 Petr Machata <pmachata at redhat.com> - 2.0.3-2
- Rebuild for boost 1.55.0
* Fri May  2 2014 Richard Shaw <hobbes1069 at gmail.com> - 2.0.3-1
- Update to 2.0.3.
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1093657 - librecad-2.0.4 is available
        https://bugzilla.redhat.com/show_bug.cgi?id=1093657
--------------------------------------------------------------------------------

================================================================================
 libreoffice-4.2.4.2-16.fc20 (FEDORA-2014-7061)
 Free Software Productivity Suite
--------------------------------------------------------------------------------
Update Information:

Resolves: rhbz#1100357 crash after closing style dialog; Resolves: rhbz#1101224 crash when clipboard-copying a sheet to HTML; Resolves: fdo#70455 loading .xlsx some formulas with range operator are corrupted (https://bugs.freedesktop.org/show_bug.cgi?id=70455)
--------------------------------------------------------------------------------
ChangeLog:

* Wed May 28 2014 Eike Rathke <erack at redhat.com> - 1:4.2.4.2-16
- Resolves: rhbz#1100357 crash after closing style dialog
- Resolves: rhbz#1101224 crash when clipboard-copying a sheet to HTML
- Resolves: fdo#70455 loading .xlsx some formulas with range operator are corrupted
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1100357 - [abrt] libreoffice-core: GetFamily(): soffice.bin killed by SIGSEGV
        https://bugzilla.redhat.com/show_bug.cgi?id=1100357
  [ 2 ] Bug #1101224 - [abrt] libreoffice-core: ScTable::GetName(rtl::OUString&) const(): soffice.bin killed by SIGSEGV
        https://bugzilla.redhat.com/show_bug.cgi?id=1101224
--------------------------------------------------------------------------------

================================================================================
 lorax-20.5-1.fc20 (FEDORA-2014-7024)
 Tool for creating the anaconda install images
--------------------------------------------------------------------------------
Update Information:

livemedia-creator: Make --make-fsimage work with virt-install and catch some more errors during installation.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Jun  2 2014 Brian C. Lane <bcl at redhat.com> 20.5-1
- livemedia-creator: Make --make-fsimage work with virt-install
  (bcl at redhat.com)
- livemedia-creator: Handle virt-install failure cleanup (bcl at redhat.com)
- Bless grub2 for PPC (#1020112) (catacombae at gmail.com)
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1020112 - Fedora 20 alpha DVD is not recognized as bootable disk on Apple G5
        https://bugzilla.redhat.com/show_bug.cgi?id=1020112
--------------------------------------------------------------------------------

================================================================================
 mediainfo-0.7.69-1.fc20 (FEDORA-2014-7034)
 Supplies technical and tag information about a video or audio file (CLI)
--------------------------------------------------------------------------------
Update Information:

Update to 0.7.69
--------------------------------------------------------------------------------
ChangeLog:

* Tue Jun  3 2014 Vasiliy N. Glazov <vascom2 at gmail.com> 0.7.69-1
- Update to 0.7.69
--------------------------------------------------------------------------------

================================================================================
 mintlocale-1.1.6-0.1.gitfb4118d.fc20 (FEDORA-2014-7030)
 Language selection tool
--------------------------------------------------------------------------------
Update Information:

- Latest Cinnamon build
--------------------------------------------------------------------------------
ChangeLog:

* Tue May 27 2014 Leigh Scott <leigh123linux at googlemail.com> - 1.1.6-0.1.gitfb4118d
- update to the latest git snapshot
--------------------------------------------------------------------------------

================================================================================
 nemo-2.2.2-2.fc20 (FEDORA-2014-7030)
 File manager for Cinnamon
--------------------------------------------------------------------------------
Update Information:

- Latest Cinnamon build
--------------------------------------------------------------------------------
ChangeLog:

* Fri May 30 2014 Leigh Scott <leigh123linux at googlemail.com> - 2.2.2-2
- add requires gnome-icon-theme-legacy
--------------------------------------------------------------------------------

================================================================================
 nfs-utils-1.3.0-2.1.fc20 (FEDORA-2014-6976)
 NFS utilities and supporting clients and daemons for the kernel NFS server
--------------------------------------------------------------------------------
Update Information:

commit e590bce3d895ee68470147027bf4d421c8fe0712
Author: Steve Dickson <steved at redhat.com>
Date:   Tue Jun 3 13:40:12 2014 -0400

    Fixed service name in start-statd script

    Signed-off-by: Steve Dickson <steved at redhat.com>

commit fb490bdcb302a56d8513ae854c3caec950bdf071
Author: Veli-Matti Lintu <veli-matti.lintu at opinsys.fi>
Date:   Sun Jun 1 13:08:35 2014 -0400

    gssd: Fix allocated buffer size for the scraped acceptor name in do_downcall
commit a126e718ab931963ca877fd11203f873fd50811f
Author: Rong Zeng <rongzeng at us.ibm.com>
Date:   Sun Jun 1 13:04:48 2014 -0400

    statd: Adding callback on sm_notify

commit 548bbdc49b1f5dfbe7ba75d20c5791652dfeb125
Author: Kinglong Mee <kinglongmee at gmail.com>
Date:   Sun Jun 1 12:51:02 2014 -0400

    mount.nfs: print more useful error message

--------------------------------------------------------------------------------
ChangeLog:

* Tue Jun  3 2014 Steve Dickson <steved at redhat.com> 1.3.0-2.1
- Fixed service name in start-statd script
* Sun Jun  1 2014 Steve Dickson <steved at redhat.com> 1.3.0-2.0
- Updated to latest upstream RC release: nfs-utils-1-3-1-rc2
--------------------------------------------------------------------------------

================================================================================
 nifti2dicom-0.4.7-3.fc20.1 (FEDORA-2014-7036)
 Converts 3D medical images to DICOM 2D series
--------------------------------------------------------------------------------
Update Information:

Actually fixed nifti2dicom-0.4.7-3.fc20.1 built against system blas/lapack.
--------------------------------------------------------------------------------
ChangeLog:

* Mon Jun  2 2014 Tom Callaway <spot at fedoraproject.org> 0.4.7-3.1
- rebuild aginst fixed InsightToolkit
--------------------------------------------------------------------------------

================================================================================
 pcsc-lite-1.8.10-2.fc20 (FEDORA-2014-7028)
 PC/SC Lite smart card framework and applications
--------------------------------------------------------------------------------
Update Information:

Safer usage of udev functions (#1071243)
--------------------------------------------------------------------------------
ChangeLog:

* Tue Jun  3 2014 Nikos Mavrogiannopoulos <nmav at redhat.com> - 1.8.10-2
- Safer usage of udev functions (#1071243)
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1071243 - [abrt] pcsc-lite: ausb_close(): pcscd killed by SIGABRT
        https://bugzilla.redhat.com/show_bug.cgi?id=1071243
--------------------------------------------------------------------------------

================================================================================
 php-5.5.13-2.fc20 (FEDORA-2014-6901)
 PHP scripting language for creating dynamic web sites
--------------------------------------------------------------------------------
Update Information:

29 May 2014, PHP 5.5.13

CLI server:
* Fixed bug #67079 (Missing MIME types for XML/XSL files). (Anatol)

COM:
* Fixed bug #66431 (Special Character via COM Interface (CP_UTF8)). (Anatol)

Core:
* Fixed bug #65701 (copy() doesn't work when destination filename is created by tempnam()). (Boro Sitnikovski)
* Fixed bug #67072 (Echoing unserialized "SplFileObject" crash). (Anatol)
* Fixed bug #67245 (usage of memcpy() with overlapping src and dst in zend_exceptions.c). (Bob)
* Fixed bug #67247 (spl_fixedarray_resize integer overflow). (Stas)
* Fixed bug #67249 (printf out-of-bounds read). (Stas)
* Fixed bug #67250 (iptcparse out-of-bounds read). (Stas)
* Fixed bug #67252 (convert_uudecode out-of-bounds read). (Stas)

Curl:
* Fixed bug #64247 (CURLOPT_INFILE doesn't allow reset). (Mike)

Date:
* Fixed bug #67118 (DateTime constructor crash with invalid data). (Anatol)
* Fixed bug #67251 (date_parse_from_format out-of-bounds read). (Stas)
* Fixed bug #67253 (timelib_meridian_with_check out-of-bounds read). (Stas)

DOM:
* Fixed bug #67081 (DOMDocumentType->internalSubset returns entire DOCTYPE tag, not only the subset). (Anatol)

Fileinfo:
* Fixed bug #66307 (Fileinfo crashes with powerpoint files). (Anatol)
* Fixed bug #67327 (fileinfo: CDF infinite loop in nelements DoS) (CVE-2014-0238).
* Fixed bug #67328 (fileinfo: fileinfo: numerous file_printf calls resulting in performance degradation) (CVE-2014-0237).

FPM:
* Fixed bug #66908 (php-fpm reload leaks epoll_create() file descriptor). (Julio Pintos)

GD:
* Fixed bug #67248 (imageaffinematrixget missing check of parameters). (Stas)

PCRE:
* Fixed bug #67238 (Ungreedy and min/max quantifier bug, applied patch from the upstream). (Anatol)

Phar:
* Fix bug #64498 ($phar->buildFromDirectory can't compress file with an accent in its name). (PR #588)

Backported from 5.4.30:
* Fileinfo: Fixed bug #67326 (fileinfo: cdf_read_short_sector insufficient boundary check).
* Core: workaround regression introduce in fix for #67072
--------------------------------------------------------------------------------
ChangeLog:

* Tue Jun  3 2014 Remi Collet <remi at fedoraproject.org> 5.5.13-2
- fileinfo: fix insufficient boundary check
- workaround regression introduce in fix for 67072 in
  serialize/unzerialize functions
* Fri May 30 2014 Remi Collet <rcollet at redhat.com> 5.5.13-1
- Update to 5.5.13
  http://www.php.net/releases/5_5_13.php
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1098155 - CVE-2014-0238 file: CDF property info parsing nelements infinite loop
        https://bugzilla.redhat.com/show_bug.cgi?id=1098155
  [ 2 ] Bug #1098193 - CVE-2014-0237 file: cdf_unpack_summary_info() excessive looping DoS
        https://bugzilla.redhat.com/show_bug.cgi?id=1098193
--------------------------------------------------------------------------------

================================================================================
 php-doctrine-orm-2.4.2-2.fc20 (FEDORA-2014-6901)
 Doctrine Object-Relational-Mapper (ORM)
--------------------------------------------------------------------------------
Update Information:

29 May 2014, PHP 5.5.13