[From nobody Fri Dec 12 10:43:14 2014 From: updates@fedoraproject.org Precedence: list MIME-Version: 1.0 To: test@lists.fedoraproject.org Date: Tue, 15 Oct 2013 06:44:30 +0000 Reply-To: For testing and quality assurance of Fedora releases <test@lists.fedoraproject.org> Message-ID: <20131015064430.760AE219F6@bastion01.phx2.fedoraproject.org> Content-Type: text/plain; charset="utf-8" Subject: Fedora 20 updates-testing report Message: 6 Content-Transfer-Encoding: 8bit The following Fedora 20 Security updates need testing: Age URL 17 https://admin.fedoraproject.org/updates/FEDORA-2013-17828/davfs2-1.4.7-3.fc20 16 https://admin.fedoraproject.org/updates/FEDORA-2013-17866/chicken-4.8.0.4-4.fc20 4 https://admin.fedoraproject.org/updates/FEDORA-2013-18703/dropbear-2013.59-1.fc20 4 https://admin.fedoraproject.org/updates/FEDORA-2013-18705/phpMyAdmin-3.5.8.2-1.fc20 3 https://admin.fedoraproject.org/updates/FEDORA-2013-18877/libtar-1.2.11-27.fc20 1 https://admin.fedoraproject.org/updates/FEDORA-2013-18982/xen-4.3.0-8.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2013-18840/ReviewBoard-1.7.16-2.fc20,python-djblets-0.7.21-1.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2013-19101/scipy-0.12.1-1.fc20 The following Fedora 20 Critical Path updates have yet to be approved: Age URL 9 https://admin.fedoraproject.org/updates/FEDORA-2013-18435/uboot-tools-2013.10-0.5.rc4.fc20 4 https://admin.fedoraproject.org/updates/FEDORA-2013-18709/mdadm-3.3-3.fc20 4 https://admin.fedoraproject.org/updates/FEDORA-2013-18741/python-meh-0.27-1.fc20 1 https://admin.fedoraproject.org/updates/FEDORA-2013-18959/taglib-1.9.1-1.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2013-19099/openssl-1.0.1e-27.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2013-19105/kernel-3.11.5-300.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2013-19106/kde-settings-20-4.fc20,sddm-0.2.0-0.13.20130914git50ca5b20.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2013-19058/gstreamer-plugins-base-0.10.36-6.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2013-19085/pulseaudio-4.0-7.gitf81e3.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2013-19089/gstreamer-0.10.36-6.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2013-19083/pam-1.1.8-1.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2013-19086/openldap-2.4.36-2.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2013-19084/samba-4.1.0-1.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2013-19074/qtwebkit-2.3.3-1.fc20 The following builds have been pushed to Fedora 20 updates-testing certmonger-0.68-1.fc20 gabedit-2.4.7-3.fc20 hmaccalc-0.9.13-1.fc20 kde-settings-20-4.fc20 kernel-3.11.5-300.fc20 krb5-1.11.3-24.fc20 libchewing-0.3.5-1.fc20 libinfinity-0.5.4-4.fc20 libmikmod-3.3.2-2.fc20 mariadb-5.5.33a-2.fc20 mikmod-3.2.3-1.fc20 openssl-1.0.1e-27.fc20 perl-Hash-MoreUtils-0.04-1.fc20 php-pear-1.9.4-23.fc20 python-jsonpatch-1.2-2.fc20 python-warlock-1.0.1-1.fc20 rubygem-excon-0.25.3-1.fc20 rubygem-fog-1.15.0-1.fc20 rubygem-heroku-api-0.3.15-1.fc20 rubygem-shindo-0.3.8-1.fc20 scipy-0.12.1-1.fc20 sddm-0.2.0-0.13.20130914git50ca5b20.fc20 thrift-0.9.1-7.fc20 Details about builds: ================================================================================ certmonger-0.68-1.fc20 (FEDORA-2013-19103) Certificate status monitor and PKI enrollment client -------------------------------------------------------------------------------- Update Information: This update allows certmonger to better detect when its attempts to save keys or certificates fail due to lack of permissions. -------------------------------------------------------------------------------- ChangeLog: * Thu Aug 29 2013 Nalin Dahyabhai <nalin@redhat.com> 0.68-1 - notice when the OpenSSL RNG isn't seeded - notice when saving certificates or keys fails due to filesystem-related permission denial (#996581) -------------------------------------------------------------------------------- References: [ 1 ] Bug #996581 - When getcert cannot create the key or certificate, the error should state permission denied https://bugzilla.redhat.com/show_bug.cgi?id=996581 -------------------------------------------------------------------------------- ================================================================================ gabedit-2.4.7-3.fc20 (FEDORA-2013-18960) GUI for computational chemistry -------------------------------------------------------------------------------- Update Information: >From upstream changelog: * Bug fixed for reading basis with d,f,.. orbitals from a fchk file. Only fchk file is concerned by this bug (There was no bug for reading from a .log file) -------------------------------------------------------------------------------- ChangeLog: * Mon Oct 14 2013 Dominik Mierzejewski <rpm@greysector.net> 2.4.7-3 - drop the gtk patch and build with -DENABLE_DEPRECATED - fix crashes when user doesn't select any folder in dialog * Sun Oct 13 2013 Dominik Mierzejewski <rpm@greysector.net> 2.4.7-2 - drop some erroneous hunks from gtk patch * Sat Oct 12 2013 Dominik Mierzejewski <rpm@greysector.net> 2.4.7-1 - updated to latest development version (2.4.7) - rebased and updated -gtk patch - fixed some compiler warnings (missing includes) - attempt to fix bug #774594 -------------------------------------------------------------------------------- References: [ 1 ] Bug #989928 - gabedit-247 is available https://bugzilla.redhat.com/show_bug.cgi?id=989928 [ 2 ] Bug #985176 - [abrt] gabedit-2.4.6-2.fc19: strlen: Process /usr/bin/gabedit was killed by signal 11 (SIGSEGV) https://bugzilla.redhat.com/show_bug.cgi?id=985176 [ 3 ] Bug #981892 - Enable build with opengl and openmp https://bugzilla.redhat.com/show_bug.cgi?id=981892 -------------------------------------------------------------------------------- ================================================================================ hmaccalc-0.9.13-1.fc20 (FEDORA-2013-19095) Tools for computing and checking HMAC values for files -------------------------------------------------------------------------------- Update Information: This update adds diagnostic output and an error status when the -c flag is used but the specified check file doesn't appear to contain any sums to check, and treats additional arguments in that mode (which were previously ignored) as an incorrect invocation. -------------------------------------------------------------------------------- ChangeLog: * Mon Oct 14 2013 Nalin Dahyabhai <nalin@redhat.com> - 0.9.13-1 - treat unexpected command-line arguments as an error to avoid setting incorrect expectations, and warn when a check file doesn't appear to contain anything for us to check (#1016706) -------------------------------------------------------------------------------- ================================================================================ kde-settings-20-4.fc20 (FEDORA-2013-19106) Config files for kde -------------------------------------------------------------------------------- Update Information: drop kde-settings-sddm, include default sddm configuration and theme in sddm packaging instead. -------------------------------------------------------------------------------- ChangeLog: * Mon Oct 14 2013 Rex Dieter <rdieter@fedoraproject.org> 20-4 - drop -sddm -------------------------------------------------------------------------------- ================================================================================ kernel-3.11.5-300.fc20 (FEDORA-2013-19105) The Linux kernel -------------------------------------------------------------------------------- Update Information: The 3.11.5 stable update contains a number of important fixes across the tree. - Enable Beaglebone Black support, drop split up patches in favour of a git patch. - Fix up some config options to make BBB work better. - Fix segfault in cpupower set (rhbz 1000439) -------------------------------------------------------------------------------- ChangeLog: * Mon Oct 14 2013 Justin M. Forbes <jforbes@fedoraproject.org> - 3.11.5-300 - Linux v3.11.5 * Fri Oct 11 2013 Kyle McMartin <kyle@fedoraproject.org> - 3.11.4-302 - Enable Beaglebone Black support, drop split up patches in favour of a git patch. - Fix up some config options to make BBB work better. * Fri Oct 11 2013 Josh Boyer <jwboyer@fedoraproject.org> - Fix segfault in cpupower set (rhbz 1000439) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1011245 - WARNING: at fs/btrfs/inode.c https://bugzilla.redhat.com/show_bug.cgi?id=1011245 [ 2 ] Bug #1000439 - [abrt] ____strtol_l_internal: Process /usr/bin/cpupower was killed by signal 11 (SIGSEGV) https://bugzilla.redhat.com/show_bug.cgi?id=1000439 -------------------------------------------------------------------------------- ================================================================================ krb5-1.11.3-24.fc20 (FEDORA-2013-18084) The Kerberos network authentication system -------------------------------------------------------------------------------- Update Information: This update contains partial changes to make KEYRING: credential caches behave as described at http://k5wiki.kerberos.org/wiki/Projects/Keyring_collection_cache, making persistent KEYRING ccaches the default in /etc/krb5.conf, and fixes for prompting behavior when using PKINIT. -------------------------------------------------------------------------------- ChangeLog: * Mon Oct 14 2013 Nalin Dahyabhai <nalin@redhat.com> - 1.11.3-24 - backport the callback to use the libkrb5 prompter when we can't load PEM files for PKINIT (RT#7590, includes part of #965721/#1016690) - extract the rest of the fix #965721/#1016690 from the changes for RT#7680 * Mon Oct 14 2013 Nalin Dahyabhai <nalin@redhat.com> - 1.11.3-23 - fix trigger scriptlet's invocation of sed (#1016945) * Fri Oct 4 2013 Nalin Dahyabhai <nalin@redhat.com> - 1.11.3-22 - rebuild with keyutils 1.5.8 (part of #1012043) * Wed Oct 2 2013 Nalin Dahyabhai <nalin@redhat.com> - 1.11.3-21 - switch to the version of persistent-keyring that was just merged to master (RT#7711), along with related changes to kinit (RT#7689) - go back to setting default_ccache_name to a KEYRING type * Mon Sep 30 2013 Nalin Dahyabhai <nalin@redhat.com> - 1.11.3-20 - pull up fix for not calling a kdb plugin's check-transited-path method before calling the library's default version, which only knows how to read what's in the configuration file (RT#7709, #1013664) * Thu Sep 26 2013 Nalin Dahyabhai <nalin@redhat.com> - 1.11.3-19 - configure --without-krb5-config so that we don't pull in the old default ccache name when we want to stop setting a default ccache name at configure- time * Wed Sep 25 2013 Nalin Dahyabhai <nalin@redhat.com> - 1.11.3-18 - fix broken dependency on awk (should be gawk, rdieter) * Wed Sep 25 2013 Nalin Dahyabhai <nalin@redhat.com> - 1.11.3-17 - add missing dependency on newer keyutils-libs (#1012034) * Tue Sep 24 2013 Nalin Dahyabhai <nalin@redhat.com> - 1.11.3-16 - back out setting default_ccache_name to the new default for now, resetting it to the old default while the kernel/keyutils bits get sorted (sgallagh) * Mon Sep 23 2013 Nalin Dahyabhai <nalin@redhat.com> - 1.11.3-15 - add explicit build-time dependency on a version of keyutils that's new enough to include keyctl_get_persistent() (more of #991148) * Thu Sep 19 2013 Nalin Dahyabhai <nalin@redhat.com> - 1.11.3-14 - incorporate Simo's updated backport of his updated persistent-keyring changes (more of #991148) * Fri Sep 13 2013 Nalin Dahyabhai <nalin@redhat.com> - 1.11.3-13 - don't break during %check when the session keyring is revoked * Fri Sep 13 2013 Nalin Dahyabhai <nalin@redhat.com> - 1.11.3-12 - pull the newer F21 defaults back to F20 (sgallagh) * Mon Sep 9 2013 Nalin Dahyabhai <nalin@redhat.com> - only apply the patch to autocreate /run/user/0 when we're hard-wiring the default ccache location to be under it; otherwise it's unnecessary * Mon Sep 9 2013 Nalin Dahyabhai <nalin@redhat.com> 1.11.3-11 - don't let comments intended for one scriptlet become part of the "script" that gets passed to ldconfig as part of another one (Mattias Ellert, #1005675) * Fri Sep 6 2013 Nalin Dahyabhai <nalin@redhat.com> 1.11.3-10 - incorporate Simo's backport of his persistent-keyring changes (#991148) - restore build-time default DEFCCNAME on Fedora 21 and later and EL, and instead set default_ccache_name in the default krb5.conf's [libdefaults] section (#991148) - on releases where we expect krb5.conf to be configured with a default_ccache_name, add it whenever we upgrade from an older version of the package that wouldn't have included it in its default configuration file (#991148) -------------------------------------------------------------------------------- ================================================================================ libchewing-0.3.5-1.fc20 (FEDORA-2013-19098) Intelligent phonetic input method library for Traditional Chinese -------------------------------------------------------------------------------- Update Information: Upstream update to 0.3.5. Changelog: Improve CMake rules Visual Studio build included Dictionary improvements Remove duplicated phrases, fix Bopomofo representation tool tweaks travis-ci support (https://travis-ci.org/chewing/libchewing) drone.io support (https://drone.io/github.com/chewing/libchewing) coveralls.io support (https://coveralls.io/r/chewing/libchewing) editorconfig support (http://editorconfig.org/) Add new chewing_set_logger API Prevent unaligned memory access Reduce maxChiSymbolLen to 39 to avoid overflow Do not store user phrase when its length is 1 Check chiSymbolBufLen in chewing_handle_Numlock() Set isSymbol to 0 in SetChoiceInfo Fix 'j', 'k' in select mode cannot handle symbol selecting Do not call GetCharNext() when GetCharFirst() fails Successful stories: . FreeArray utilizes libchewing for selecting phrases of Array input method Fixing the spec to match the current Fedora packaging Guildlines. No functionality changes. Fixing the spec to match the current Fedora packaging Guildlines. No functionality changes. -------------------------------------------------------------------------------- ChangeLog: * Mon Oct 14 2013 Ding-Yi Chen <dchen at redhat dot com> - 0.3.5-1 - Upstream update to 0.3.5 -------------------------------------------------------------------------------- References: [ 1 ] Bug #989405 - some spec fixes needed for package cleanup https://bugzilla.redhat.com/show_bug.cgi?id=989405 [ 2 ] Bug #882489 - libchewing: SetAvailInfo should NOT produce NULL phoneSeq https://bugzilla.redhat.com/show_bug.cgi?id=882489 -------------------------------------------------------------------------------- ================================================================================ libinfinity-0.5.4-4.fc20 (FEDORA-2013-19097) Library implementing the infinote protocol -------------------------------------------------------------------------------- Update Information: - Make it not crash in several conditions: http://article.gmane.org/gmane.network.obby.user/415 - Enable more security protections - Make it not crash in several conditions: http://article.gmane.org/gmane.network.obby.user/415 - Enable more security protections -------------------------------------------------------------------------------- ChangeLog: * Mon Oct 14 2013 Till Maas <opensource@till.name> - 0.5.4-4 - re-enable gnome support for Fedora * Sun Oct 13 2013 Till Maas <opensource@till.name> - 0.5.4-3 - Harden build * Sat Oct 12 2013 Matěj Cepl <mcepl@redhat.com> - 0.5.4-2 - Make infinoted build on EL-6 * Sun Aug 25 2013 Till Maas <opensource@till.name> - 0.5.4-1 - Update to new bugfix release -------------------------------------------------------------------------------- References: [ 1 ] Bug #987364 - libinfinity-0.5.4 is available https://bugzilla.redhat.com/show_bug.cgi?id=987364 -------------------------------------------------------------------------------- ================================================================================ libmikmod-3.3.2-2.fc20 (FEDORA-2013-19082) A MOD music file player library -------------------------------------------------------------------------------- Update Information: - New upstream - New upstream libmikmod release 3.3.2 - New upstream mikmod release 3.2.3 - Drop a bunch of merged patches -------------------------------------------------------------------------------- ChangeLog: * Mon Oct 14 2013 Hans de Goede <hdegoede@redhat.com> - 3.3.2-2 - Disable SSE2 use even on x86_64, as upstream advises against using it * Mon Oct 14 2013 Hans de Goede <hdegoede@redhat.com> - 3.3.2-1 - New upstream and new upstream release 3.3.2 - Drop a bunch of merged patches -------------------------------------------------------------------------------- ================================================================================ mariadb-5.5.33a-2.fc20 (FEDORA-2013-19096) A community developed branch of MySQL -------------------------------------------------------------------------------- Update Information: This is an update to the new upstream release 5.5.33a, which fixes issues described at https://kb.askmonty.org/en/mariadb-5533a-changelog/ and https://kb.askmonty.org/en/mariadb-5533-changelog/. -------------------------------------------------------------------------------- ChangeLog: * Mon Oct 14 2013 Honza Horak <hhorak@redhat.com> 1:5.5.33a-2 - Turn on test suite * Thu Oct 10 2013 Honza Horak <hhorak@redhat.com> 1:5.5.33a-1 - Rebase to 5.5.33a https://kb.askmonty.org/en/mariadb-5533-changelog/ https://kb.askmonty.org/en/mariadb-5533a-changelog/ - Enable outfile_loaddata test - Disable tokudb_innodb_xa_crash test -------------------------------------------------------------------------------- References: [ 1 ] Bug #1003410 - Server cursor is broken with blobs in the select list, ORDER BY does not work https://bugzilla.redhat.com/show_bug.cgi?id=1003410 -------------------------------------------------------------------------------- ================================================================================ mikmod-3.2.3-1.fc20 (FEDORA-2013-19082) Console music module player -------------------------------------------------------------------------------- Update Information: - New upstream - New upstream libmikmod release 3.3.2 - New upstream mikmod release 3.2.3 - Drop a bunch of merged patches -------------------------------------------------------------------------------- ChangeLog: * Mon Oct 14 2013 Hans de Goede <hdegoede@redhat.com> - 3.2.3-1 - New upstream and new upstream release 3.2.3 - Drop a bunch of merged patches -------------------------------------------------------------------------------- ================================================================================ openssl-1.0.1e-27.fc20 (FEDORA-2013-19099) Utilities from the general purpose cryptography library with TLS implementation -------------------------------------------------------------------------------- Update Information: resolve bugzilla 319901 -------------------------------------------------------------------------------- ChangeLog: * Mon Oct 14 2013 Tom Callaway <spot@fedoraproject.org> - 1.0.1e-27 - resolve bugzilla 319901 (phew! only took 6 years & 9 days) * Fri Sep 27 2013 Tomáš Mráz <tmraz@redhat.com> 1.0.1e-26 - make DTLS1 work in FIPS mode - avoid RSA and DSA 512 bits and Whirlpool in 'openssl speed' in FIPS mode * Mon Sep 23 2013 Tomáš Mráz <tmraz@redhat.com> 1.0.1e-25 - avoid dlopening libssl.so from libcrypto (#1010357) * Fri Sep 20 2013 Tomáš Mráz <tmraz@redhat.com> 1.0.1e-24 - fix small memory leak in FIPS aes selftest * Thu Sep 19 2013 Tomáš Mráz <tmraz@redhat.com> 1.0.1e-23 - fix segfault in openssl speed hmac in the FIPS mode -------------------------------------------------------------------------------- References: [ 1 ] Bug #319901 - missing ec and ecparam commands in openssl package https://bugzilla.redhat.com/show_bug.cgi?id=319901 -------------------------------------------------------------------------------- ================================================================================ perl-Hash-MoreUtils-0.04-1.fc20 (FEDORA-2013-19102) Provide the stuff missing in Hash::Util -------------------------------------------------------------------------------- Update Information: -------------------------------------------------------------------------------- ChangeLog: * Mon Oct 14 2013 Ralf Corsépius <corsepiu@fedoraproject.org> - 0.04-1 - Upstream update. -------------------------------------------------------------------------------- ================================================================================ php-pear-1.9.4-23.fc20 (FEDORA-2013-19094) PHP Extension and Application Repository framework -------------------------------------------------------------------------------- Update Information: Configuration changes for pecl channel * set doc_dir to /usr/share/doc/pecl * set test_dir to /usr/share/tests/pecl -------------------------------------------------------------------------------- ChangeLog: * Tue Oct 15 2013 Remi Collet <rcollet@redhat.com> 1:1.9.4-23 - set pecl test_dir to /usr/share/tests/pecl * Mon Oct 14 2013 Remi Collet <rcollet@redhat.com> 1:1.9.4-22 - set pecl doc_dir to /usr/share/doc/pecl -------------------------------------------------------------------------------- ================================================================================ python-jsonpatch-1.2-2.fc20 (FEDORA-2013-19078) Applying JSON Patches in Python -------------------------------------------------------------------------------- Update Information: Update python-warlock to 1.0.1 and add its new dependency python-jsonpatch. -------------------------------------------------------------------------------- References: [ 1 ] Bug #997850 - python-warlock-1.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=997850 [ 2 ] Bug #982352 - Review Request: python-jsonpatch - Applying JSON Patches in Python https://bugzilla.redhat.com/show_bug.cgi?id=982352 -------------------------------------------------------------------------------- ================================================================================ python-warlock-1.0.1-1.fc20 (FEDORA-2013-19078) Python object model built on top of JSON schema -------------------------------------------------------------------------------- Update Information: Update python-warlock to 1.0.1 and add its new dependency python-jsonpatch. -------------------------------------------------------------------------------- ChangeLog: * Thu Oct 10 2013 Alan Pevec <apevec@redhat.com> 1.0.1-1 - update to 1.0.1 -------------------------------------------------------------------------------- References: [ 1 ] Bug #997850 - python-warlock-1.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=997850 [ 2 ] Bug #982352 - Review Request: python-jsonpatch - Applying JSON Patches in Python https://bugzilla.redhat.com/show_bug.cgi?id=982352 -------------------------------------------------------------------------------- ================================================================================ rubygem-excon-0.25.3-1.fc20 (FEDORA-2013-19093) Http(s) EXtended CONnections -------------------------------------------------------------------------------- Update Information: This update solves broken rubygem-fog due to rubygem-nokogiri update. -------------------------------------------------------------------------------- ChangeLog: * Wed Oct 9 2013 Josef Stribny <jstribny@redhat.com> - 0.25.3-1 - Update to excon 0.25.3. * Sun Aug 4 2013 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 0.21.0-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ rubygem-fog-1.15.0-1.fc20 (FEDORA-2013-19093) Brings clouds to you -------------------------------------------------------------------------------- Update Information: This update solves broken rubygem-fog due to rubygem-nokogiri update. -------------------------------------------------------------------------------- ChangeLog: * Wed Oct 9 2013 Josef Stribny <jstribny@redhat.com> - 1.15.0-1 - Update to Fog 1.15.0 * Sun Aug 4 2013 Fedora Release Engineering <rel-eng@lists.fedoraproject.org> - 1.11.1-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ rubygem-heroku-api-0.3.15-1.fc20 (FEDORA-2013-19093) Ruby Client for the Heroku API -------------------------------------------------------------------------------- Update Information: This update solves broken rubygem-fog due to rubygem-nokogiri update. -------------------------------------------------------------------------------- ChangeLog: * Wed Oct 9 2013 Josef Stribny <jstribny@redhat.com> - 0.3.15-1 - Update to heroku-api 0.3.15. - Patch the test suite to work with minitest 4.7.0 -------------------------------------------------------------------------------- ================================================================================ rubygem-shindo-0.3.8-1.fc20 (FEDORA-2013-19093) Simple depth first Ruby testing -------------------------------------------------------------------------------- Update Information: This update solves broken rubygem-fog due to rubygem-nokogiri update. -------------------------------------------------------------------------------- ChangeLog: * Thu Oct 10 2013 Josef Stribny <jstribny@redhat.com> - 0.3.8-1 - Update to shindo 0.3.8 - This should address the issue with RubyGems 2.0.4 and its Kernel#require limitation when working with threads. -------------------------------------------------------------------------------- ================================================================================ scipy-0.12.1-1.fc20 (FEDORA-2013-19101) Scipy: Scientific Tools for Python -------------------------------------------------------------------------------- Update Information: Update to 0.12.1, fixes CVE-2013-4251: insecure /tmp usage by scipy.weave. -------------------------------------------------------------------------------- ChangeLog: * Mon Oct 14 2013 Orion Poplawski <orion@cora.nwra.com> - 0.12.1-1 - Update to 0.12.1 - fixes CVE-2013-4251 (bug 101351) -------------------------------------------------------------------------------- References: [ 1 ] Bug #916690 - CVE-2013-4251 scipy: weave /tmp and current directory issues https://bugzilla.redhat.com/show_bug.cgi?id=916690 -------------------------------------------------------------------------------- ================================================================================ sddm-0.2.0-0.13.20130914git50ca5b20.fc20 (FEDORA-2013-19106) QML based X11 desktop manager -------------------------------------------------------------------------------- Update Information: drop kde-settings-sddm, include default sddm configuration and theme in sddm packaging instead. -------------------------------------------------------------------------------- ChangeLog: * Mon Oct 14 2013 Rex Dieter <rdieter@fedoraproject.org> - 0.2.0-0.13.20130914git50ca5b20 - include standard theme/config here, Obsoletes: kde-settings-sddm - sddm.conf: SessionCommand=/etc/X11/xinit/Xsession * Mon Oct 14 2013 Rex Dieter <rdieter@fedoraproject.org> - 0.2.0-0.12.20130914git50ca5b20 - -themes: Obsoletes: sddm ... for upgrade path * Mon Oct 14 2013 Rex Dieter <rdieter@fedoraproject.org> - 0.2.0-0.11.20130914git50ca5b20 - -themes subpkg * Sat Sep 21 2013 Rex Dieter <rdieter@fedoraproject.org> - 0.2.0-0.10.20130914git50ca5b20 - use %_qt4_importdir, %systemd_requires macros - own %_datadir/apps/sddm - fix Release - drop explicit Requires: pam (let rpm autodeps handle it) -------------------------------------------------------------------------------- ================================================================================ thrift-0.9.1-7.fc20 (FEDORA-2013-19104) Software framework for cross-language services development -------------------------------------------------------------------------------- Update Information: Initial package for Thrift. -------------------------------------------------------------------------------- References: [ 1 ] Bug #982285 - Review Request: thrift - software framework for scalable cross-language services development https://bugzilla.redhat.com/show_bug.cgi?id=982285 -------------------------------------------------------------------------------- ]