--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2014-2273
2014-02-11 22:21:54
--------------------------------------------------------------------------------
Name : double-conversion
Product : Fedora 20
Version : 2.0.1
Release : 1.fc20
URL : http://code.google.com/p/double-conversion
Summary : Library providing binary-decimal and decimal-binary routines for IEEE doubles
Description :
Provides binary-decimal and decimal-binary routines for IEEE doubles.
The library consists of efficient conversion routines that have been
extracted from the V8 JavaScript engine. The code has been re-factored
and improved so that it can be used more easily in other projects.
--------------------------------------------------------------------------------
Update Information:
New upstream version.
--------------------------------------------------------------------------------
ChangeLog:
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update double-conversion' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2014-2579
2014-02-15 05:33:40
--------------------------------------------------------------------------------
Name : krb5
Product : Fedora 20
Version : 1.11.5
Release : 4.fc20
URL : http://web.mit.edu/kerberos/www/
Summary : The Kerberos network authentication system
Description :
Kerberos V5 is a trusted-third-party network authentication system,
which can improve your network's security by eliminating the insecure
practice of sending passwords over the network in unencrypted form.
--------------------------------------------------------------------------------
Update Information:
When the KDC is configured to use a local RADIUS server to verify one-time passwords, if there is no path for the socket explicitly configured, it will compute the socket path using a default directory and the name of the token type.
This update moves that default directory from the database directory (/var/kerberos/krb5kdc) to a new run-time directory (/var/run/krb5kdc), bringing it in line with future upstream releases.
This update also backports a fix which corrects a GSSAPI interoperability regression that could cause acceptor applications to generate tokens using a different mechanism OID than the one the initiator requested when using the SPNEGO mechanism.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Feb 17 2014 Nalin Dahyabhai <nalin(a)redhat.com> - 1.11.5-4
- spnego: pull in patch from master to restore preserving the OID of the
mechanism the initiator requested when we have multiple OIDs for the same
mechanism, so that we reply using the same mechanism OID and the initiator
doesn't get confused (#1066000, RT#7858)
* Mon Feb 10 2014 Nalin Dahyabhai <nalin(a)redhat.com> - 1.11.5-3
- pull in patch from master to move the default directory which the KDC uses
when computing the socket path for a local OTP daemon from the database
directory (/var/kerberos/krb5kdc) to the newly-added run directory
(/run/krb5kdc), in line with what we're expecting in 1.13 (RT#7859, more
of #1040056 as #1063905)
- add a tmpfiles.d configuration file to have /run/krb5kdc created at
boot-time
- own /var/run/krb5kdc
* Fri Jan 31 2014 Nalin Dahyabhai <nalin(a)redhat.com> - 1.11.5-2
- rebuild because I tagged the previous package wrong
* Fri Jan 31 2014 Nalin Dahyabhai <nalin(a)redhat.com> - 1.11.5-1
- update to 1.11.5
- remove patch for RT#7650, obsoleted in 1.11.4
- remove patch for RT#7706, obsoleted in 1.11.4
- remove patch for RT#7756 (CVE-2013-1418), obsoleted in 1.11.4
- remove patch for RT#7668 (CVE-2013-1417), obsoleted in 1.11.4
- remove patch for RT#7508, obsoleted in 1.11.4
- remove patch for RT#7794, obsoleted in 1.11.4 as RT#7825
- remove patch for RT#7797, obsoleted in 1.11.4 as RT#7827
- remove patch for RT#7803, obsoleted in 1.11.4 as RT#7828
- remove patch for RT#7805, obsoleted in 1.11.4 as RT#7829
- remove patch for RT#7807, obsoleted in 1.11.4 as RT#7826
- remove patch for RT#7045, obsoleted in 1.11.4 as RT#7823
* Fri Jan 31 2014 Nalin Dahyabhai <nalin(a)redhat.com> - 1.11.3-40
- add currently-proposed changes to teach ksu about credential cache
collections and the default_ccache_name setting (#1015559,#1026099)
* Tue Jan 21 2014 Nalin Dahyabhai <nalin(a)redhat.com> - 1.11.3-39
- pull in upstream patch to fix the GSSAPI library's checks for expired
client creds in gss_init_sec_context() so that they work with keyring
caches (RT#7820, #1030607)
* Tue Jan 21 2014 Nalin Dahyabhai <nalin(a)redhat.com>
- pull in and backport multiple changes to allow replay caches to be added to
a GSS credential store as "rcache"-type credentials (RT#7818/#7819/#7836,
* Thu Dec 19 2013 Nalin Dahyabhai <nalin(a)redhat.com> - 1.11.3-38
- pull in fix from master to make reporting of errors encountered by the SPNEGO
mechanism work better (RT#7045, part of #1043962)
* Thu Dec 19 2013 Nalin Dahyabhai <nalin(a)redhat.com>
- update a test wrapper to properly handle things that the new libkrad does,
and add python-pyrad as a build requirement so that we can run its tests
* Wed Dec 18 2013 Nalin Dahyabhai <nalin(a)redhat.com> - 1.11.3-37
- backport fixes to krb5_copy_context (RT#7807, #1044735/#1044739)
* Wed Dec 18 2013 Nalin Dahyabhai <nalin(a)redhat.com> - 1.11.3-36
- backport fix to avoid double-freeing in the client when we're configured
to use a clpreauth module that isn't actually a clpreauth module (#1035203)
* Wed Dec 18 2013 Nalin Dahyabhai <nalin(a)redhat.com> - 1.11.3-35
- pull in fix from master to return a NULL pointer rather than allocating
zero bytes of memory if we read a zero-length input token (RT#7794, part of
- pull in fix from master to ignore an empty token from an acceptor if
we've already finished authenticating (RT#7797, part of #1043962)
- pull in fix from master to avoid a memory leak when a mechanism's
init_sec_context function fails (RT#7803, part of #1043962)
- pull in fix from master to avoid a memory leak in a couple of error
cases which could occur while obtaining acceptor credentials (RT#7805, part
of #1043962)
* Tue Dec 17 2013 Nalin Dahyabhai <nalin(a)redhat.com> - 1.11.3-34
- backport additional changes to libkrad to make it function more like
the version in upstream 1.12, and a few things in the OTP plugin as well
(most visibly, that the secret that's shared with the RADIUS server is read
from a file rather than used directly) (#1040056)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1063905 - Move ipa-otpd socket directory
https://bugzilla.redhat.com/show_bug.cgi?id=1063905
[ 2 ] Bug #1066000 - Please backport SPNEGO fixes from upstream
https://bugzilla.redhat.com/show_bug.cgi?id=1066000
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update krb5' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2014-2748
2014-02-20 00:09:01
--------------------------------------------------------------------------------
Name : openslide-python
Product : Fedora 19
Version : 0.5.1
Release : 1.fc19
URL : http://openslide.org/
Summary : Python bindings for the OpenSlide library
Description :
The OpenSlide library allows programs to access virtual slide files
regardless of the underlying image format. This package allows Python
programs to use OpenSlide.
--------------------------------------------------------------------------------
Update Information:
The OpenSlide library allows programs to access virtual slide files (also known as whole-slide images) regardless of the underlying image format. This package allows Python programs to use OpenSlide.
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update openslide-python' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2014-2719
2014-02-20 00:07:46
--------------------------------------------------------------------------------
Name : python3-simplepam
Product : Fedora 19
Version : 0.1.4
Release : 1.fc19
URL : https://github.com/leonnnn/python3-simplepam
Summary : Pure Python interface to the Pluggable Authentication Modules system on Linux
Description :
This module provides an authenticate function that allows the caller to
authenticate a given username / password against the PAM system on Linux.
--------------------------------------------------------------------------------
Update Information:
First version for Fedora
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1065301 - Review Request: python3-simplepam - Pure Python interface to the Pluggable Authentication Modules system on Linux
https://bugzilla.redhat.com/show_bug.cgi?id=1065301
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update python3-simplepam' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2014-2258
2014-02-11 22:21:18
--------------------------------------------------------------------------------
Name : ShellCheck
Product : Fedora 20
Version : 0.3.1
Release : 3.fc20
URL : http://www.shellcheck.net/about.html
Summary : Tool for checking common errors in POSIX shell scripts
Description :
The goals of ShellCheck are:
- To point out and clarify typical beginner's syntax issues,
that causes a shell to give cryptic error messages.
- To point out and clarify typical intermediate level semantic problems,
that causes a shell to behave strangely and counter-intuitively.
- To point out subtle caveats, corner cases and pitfalls, that may cause an
advanced user's otherwise working script to fail under future circumstances.
--------------------------------------------------------------------------------
Update Information:
Update to upstream 0.3.1 and minor enhancements.
--------------------------------------------------------------------------------
ChangeLog:
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1047260 - Don't delete jsoncheck from the package
https://bugzilla.redhat.com/show_bug.cgi?id=1047260
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update ShellCheck' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2014-2749
2014-02-20 00:09:03
--------------------------------------------------------------------------------
Name : sssd
Product : Fedora 20
Version : 1.11.4
Release : 1.fc20
URL : http://fedorahosted.org/sssd/
Summary : System Security Services Daemon
Description :
Provides a set of daemons to manage access to remote directories and
authentication mechanisms. It provides an NSS and PAM interface toward
the system and a pluggable backend system to connect to multiple different
account sources. It is also the basis to provide client auditing and policy
services for projects like FreeIPA.
The sssd subpackage is a meta-package that contains the deamon as well as all
the existing back ends.
--------------------------------------------------------------------------------
Update Information:
New upstream release 1.11.4
https://fedorahosted.org/sssd/wiki/Releases/Notes-1.11.4
Fixes handling of an OTP response when configured as FreeIPA client.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Feb 17 2014 Jakub Hrozek <jhrozek(a)redhat.com> - 1.11.4-1
- New upstream release 1.11.4
- Remove upstreamed patch
- https://fedorahosted.org/sssd/wiki/Releases/Notes-1.11.4
* Tue Feb 11 2014 Jakub Hrozek <jhrozek(a)redhat.com> - 1.11.3-2
- Handle OTP response from FreeIPA server gracefully
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update sssd' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2014-2083
2014-02-06 03:10:01
--------------------------------------------------------------------------------
Name : thunderbird
Product : Fedora 19
Version : 24.3.0
Release : 1.fc19
URL : http://www.mozilla.org/projects/thunderbird/
Summary : Mozilla Thunderbird mail/newsgroup client
Description :
Mozilla Thunderbird is a standalone mail and newsgroup client.
--------------------------------------------------------------------------------
Update Information:
See http://www.mozilla.org/en-US/thunderbird/24.3.0/releasenotes/ for changelog.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Feb 3 2014 Jan Horak <jhorak(a)redhat.com> - 24.3.0-1
- Update to 24.3.0
* Mon Dec 16 2013 Martin Stransky <stransky(a)redhat.com> - 24.2.0-4
- Fixed rhbz#1024232 - thunderbird: squiggly lines used
for spelling correction disappear randomly
* Fri Dec 13 2013 Martin Stransky <stransky(a)redhat.com> - 24.2.0-3
- Build with -Werror=format-security (rhbz#1037353)
* Wed Dec 11 2013 Martin Stransky <stransky(a)redhat.com> - 24.2.0-2
- rhbz#1001998 - added a workaround for system notifications
* Mon Dec 9 2013 Jan Horak <jhorak(a)redhat.com> - 24.2.0-1
- Update to 24.2.0
* Sat Nov 2 2013 Dennis Gilmore <dennis(a)ausil.us> - 24.1.0-2
- remove ExcludeArch: armv7hl
* Wed Oct 30 2013 Jan Horak <jhorak(a)redhat.com> - 24.1.0-1
- Update to 24.1.0
* Thu Oct 17 2013 Martin Stransky <stransky(a)redhat.com> - 24.0-4
- Fixed rhbz#1005611 - BEAST workaround not enabled in Firefox
* Wed Sep 25 2013 Jan Horak <jhorak(a)redhat.com> - 24.0-3
- Update to 24.0
* Mon Sep 23 2013 Jan Horak <jhorak(a)redhat.com> - 17.0.9-1
- Update to 17.0.9 ESR
* Mon Aug 5 2013 Jan Horak <jhorak(a)redhat.com> - 17.0.8-1
- Update to 17.0.8
* Sun Aug 4 2013 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 17.0.7-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
* Tue Jun 25 2013 Jan Horak <jhorak(a)redhat.com> - 17.0.7-1
- Update to 17.0.7
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update thunderbird' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2014-1666
2014-01-29 01:57:32
--------------------------------------------------------------------------------
Name : freeipa
Product : Fedora 20
Version : 3.3.4
Release : 3.fc20
URL : http://www.freeipa.org/
Summary : The Identity, Policy and Audit system
Description :
IPA is an integrated solution to provide centrally managed Identity (machine,
user, virtual machines, groups, authentication credentials), Policy
(configuration settings, access control information) and Audit (events,
logs, analysis thereof).
--------------------------------------------------------------------------------
Update Information:
* Update to upstream 3.3.4
* Install CA anchor into standard location (#928478)
* ipa-client-install part of ipa-server-install fails on reinstall #1044994)
* Remove mod_ssl workaround (RHEL bug #1029046)
* Enable syncrepl plugin to support bind-dyndb-ldap 4.0
--------------------------------------------------------------------------------
ChangeLog:
* Tue Feb 11 2014 Martin Kosek <mkosek(a)redhat.com> - 3.3.4-3
- Move ipa-otpd socket directory to /var/run/krb5kdc
- Require krb5-server 1.11.5-3 supporting the new directory
* Wed Feb 5 2014 Martin Kosek <mkosek(a)redhat.com> - 3.3.4-2
- ipa_lockout plugin did not work with users's without krbPwdPolicyReference
* Tue Jan 28 2014 Martin Kosek <mkosek(a)redhat.com> - 3.3.4-1
- Update to upstream 3.3.4
- Install CA anchor into standard location (#928478)
- ipa-client-install part of ipa-server-install fails on reinstall (#1044994)
- Remove mod_ssl workaround (RHEL bug #1029046)
- Enable syncrepl plugin to support bind-dyndb-ldap 4.0
* Fri Jan 3 2014 Martin Kosek <mkosek(a)redhat.com> - 3.3.3-4
- Build crashed with rhino exception on s390 architectures (#1040576)
* Thu Dec 12 2013 Martin Kosek <mkosek(a)redhat.com> - 3.3.3-3
- Build crashed rhino exception on some architectures (#1040576)
* Mon Nov 4 2013 Martin Kosek <mkosek(a)redhat.com> - 3.3.3-2
- ipa-server-install crashed when freeipa-server-trust-ad subpackage was not
installed
* Fri Nov 1 2013 Martin Kosek <mkosek(a)redhat.com> - 3.3.3-1
- Update to upstream 3.3.3
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #928478 - Install CA anchor into standard location
https://bugzilla.redhat.com/show_bug.cgi?id=928478
[ 2 ] Bug #1044994 - ipa-client-install part of ipa-server-install fails on reinstall
https://bugzilla.redhat.com/show_bug.cgi?id=1044994
[ 3 ] Bug #1049322 - ipa-client-install fails while restarting the ntpd service
https://bugzilla.redhat.com/show_bug.cgi?id=1049322
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update freeipa' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2014-2314
2014-02-11 22:23:51
--------------------------------------------------------------------------------
Name : ShellCheck
Product : Fedora 19
Version : 0.3.1
Release : 3.fc19
URL : http://www.shellcheck.net/about.html
Summary : Tool for checking common errors in POSIX shell scripts
Description :
The goals of ShellCheck are:
- To point out and clarify typical beginner's syntax issues,
that causes a shell to give cryptic error messages.
- To point out and clarify typical intermediate level semantic problems,
that causes a shell to behave strangely and counter-intuitively.
- To point out subtle caveats, corner cases and pitfalls, that may cause an
advanced user's otherwise working script to fail under future circumstances.
--------------------------------------------------------------------------------
Update Information:
Update to upstream 0.3.1 and minor enhancements.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1047260 - Don't delete jsoncheck from the package
https://bugzilla.redhat.com/show_bug.cgi?id=1047260
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update ShellCheck' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------