May 2014 - package-announce - Fedora Mailing-Lists

Fedora 20 Update: mingw-physfs-2.0.3-4.fc20

by updates＠fedoraproject.org

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2014-6368 2014-05-14 23:05:02 -------------------------------------------------------------------------------- Name : mingw-physfs Product : Fedora 20 Version : 2.0.3 Release : 4.fc20 URL : http://www.icculus.org/physfs/ Summary : MinGW compiled physfs library to provide abstract access to various archives Description : MinGW compiled PhysicsFS, a library to provide abstract access to various archives. It is intended for use in video games, and the design was somewhat inspired by Quake 3's file subsystem. The programmer defines a "write directory" on the physical filesystem. No file writing done through the PhysicsFS API can leave that write directory, for security. For example, an embedded scripting language cannot write outside of this path if it uses PhysFS for all of its I/O, which means that untrusted scripts can run more safely. Symbolic links can be disabled as well, for added safety. For file reading, the programmer lists directories and archives that form a "search path". Once the search path is defined, it becomes a single, transparent hierarchical filesystem. This makes for easy access to ZIP files in the same way as you access a file directly on the disk, and it makes it easy to ship a new archive that will override a previous archive on a per-file basis. Finally, PhysicsFS gives you platform-abstracted means to determine if CD-ROMs are available, the user's home directory, where in the real filesystem your program is running, etc. -------------------------------------------------------------------------------- Update Information: initial import of mingw-physfs -------------------------------------------------------------------------------- ChangeLog: -------------------------------------------------------------------------------- References: [ 1 ] Bug #957346 - Review Request: mingw-physfs - MinGW compiled physfs library to provide abstract access to various archives https://bugzilla.redhat.com/show_bug.cgi?id=957346 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update mingw-physfs' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

9 years, 11 months

1
0
0 / 0

Fedora 20 Update: pigz-2.3.1-1.fc20

by updates＠fedoraproject.org

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2014-6528 2014-05-21 01:31:00 -------------------------------------------------------------------------------- Name : pigz Product : Fedora 20 Version : 2.3.1 Release : 1.fc20 URL : http://www.zlib.net/pigz/ Summary : Parallel implementation of gzip Description : pigz, which stands for parallel implementation of gzip, is a fully functional replacement for gzip that exploits multiple processors and multiple cores to the hilt when compressing data. -------------------------------------------------------------------------------- Update Information: Update to 2.3.1 -------------------------------------------------------------------------------- ChangeLog: * Mon May 19 2014 Adel Gadllah <adel.gadllah(a)gmail.com> - 2.3.1-1 - Update to 2.3.1 -------------------------------------------------------------------------------- References: [ 1 ] Bug #917614 - pigz-2.3.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=917614 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update pigz' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

9 years, 11 months

1
0
0 / 0

Fedora 20 Update: mailman-2.1.18.1-1.fc20

by updates＠fedoraproject.org

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2014-6606 2014-05-23 17:53:41 -------------------------------------------------------------------------------- Name : mailman Product : Fedora 20 Version : 2.1.18.1 Release : 1.fc20 URL : http://www.list.org/ Summary : Mailing list manager with built in Web access Description : Mailman is software to help manage email discussion lists, much like Majordomo and Smartmail. Unlike most similar products, Mailman gives each mailing list a webpage, and allows users to subscribe, unsubscribe, etc. over the Web. Even the list manager can administer his or her list entirely from the Web. Mailman also integrates most things people want to do with mailing lists, including archiving, mail <-> news gateways, and so on. Documentation can be found in: /usr/share/doc/mailman When the package has finished installing, you will need to perform some additional installation steps, these are described in: /usr/share/doc/mailman/INSTALL.REDHAT -------------------------------------------------------------------------------- Update Information: Update to new version 2.1.18-1. This version adds support for DMARC. Full changelog: https://launchpad.net/mailman/+milestone/2.1.18 -------------------------------------------------------------------------------- ChangeLog: * Mon May 12 2014 Jan Kaluza <jkaluza(a)redhat.com> - 3:2.1.18.1-1 - update to new upstream version 2.1.18-1 (#1089971) * Thu Jan 2 2014 Jan Kaluza <jkaluza(a)redhat.com> - 3:2.1.17-3 - fix #1043677 - fix setgid for /usr/lib/mailman/mail/mailman * Wed Dec 18 2013 Jan Kaluza <jkaluza(a)redhat.com> - 3:2.1.17-2 - fix #1043677 - fix setgid for cgi binaries * Tue Dec 3 2013 Jan Kaluza <jkaluza(a)redhat.com> - 3:2.1.17-1 - update to new upstream version 2.1.17 (#1034083) - remove patches patching unused init script * Fri Oct 18 2013 Jan Kaluza <jkaluza(a)redhat.com> - 3:2.1.16-1 - update to new upstream version 2.1.16 (#984536) - fix #1043677 - fix setgid for /usr/lib/mailman/mail/mailman - fix #1043677 - fix setgid for cgi binaries -------------------------------------------------------------------------------- References: [ 1 ] Bug #1089971 - mailman-2.1.18 is available https://bugzilla.redhat.com/show_bug.cgi?id=1089971 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update mailman' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

9 years, 11 months

1
0
0 / 0

[SECURITY] Fedora 20 Update: moodle-2.5.6-1.fc20

by updates＠fedoraproject.org

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2014-6585 2014-05-21 22:40:50 -------------------------------------------------------------------------------- Name : moodle Product : Fedora 20 Version : 2.5.6 Release : 1.fc20 URL : http://moodle.org/ Summary : A Course Management System Description : Moodle is a course management system (CMS) - a free, Open Source software package designed using sound pedagogical principles, to help educators create effective online learning communities. -------------------------------------------------------------------------------- Update Information: Moodle upstream has released versions 2.7, 2.6.3, 2.5.6, and 2.4.10 to fix the following security flaws: CVE-2014-0213 MSA-14-0014: Cross-site request forgery possible in Assignment CVE-2014-0214 MSA-14-0015: Web service token expiry issue for MoodleMobile CVE-2014-0215 MSA-14-0016: Anonymous student identity revealed in assignment CVE-2014-0216 MSA-14-0017: File access issue in HTML block CVE-2014-0217 MSA-14-0018: Information leak in courses CVE-2014-0218 MSA-14-0019: Reflected XSS in URL downloader repository For a full summary and patch links, refer to the following: http://seclists.org/oss-sec/2014/q2/329 -------------------------------------------------------------------------------- ChangeLog: * Wed May 21 2014 Jon Ciesla <limburgher(a)gmail.com> - 2.5.6-1 - CVE-2014-0213, CVE-2014-0214, CVE-2014-0215, CVE-2014-0216, - CVE-2014-0217, CVE-2014-0218 - Drop upstreamed tinymce patch. * Wed Mar 19 2014 Jon Ciesla <limburgher(a)gmail.com> - 2.5.5-1 - Fix for CVE-2014-0122, CVE-2014-0123, CVE-2014-0124, - CVE-2014-0125, CVE-2014-0126, CVE-2014-0127, CVE-2014-0129 * Wed Jan 22 2014 Jon Ciesla <limburgher(a)gmail.com> - 2.5.4-1 - Fix for CVE-2014-0008,9,10. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1099766 - CVE-2014-0218 CVE-2014-0213 CVE-2014-0215 CVE-2014-0214 CVE-2014-0217 CVE-2014-0216 moodle: upstream 2.7, 2.6.3, 2.5.6, and 2.4.10 security fixes [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=1099766 [ 2 ] Bug #1099765 - CVE-2014-0218 CVE-2014-0213 CVE-2014-0215 CVE-2014-0214 CVE-2014-0217 CVE-2014-0216 moodle: upstream 2.7, 2.6.3, 2.5.6, and 2.4.10 security fixes [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1099765 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update moodle' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

9 years, 11 months

1
0
0 / 0

Fedora 19 Update: mingw-SDL2-2.0.3-3.fc19

by updates＠fedoraproject.org

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2014-6521 2014-05-21 01:30:44 -------------------------------------------------------------------------------- Name : mingw-SDL2 Product : Fedora 19 Version : 2.0.3 Release : 3.fc19 URL : http://www.libsdl.org/ Summary : MinGW Windows port of SDL2 cross-platform multimedia library Description : Simple DirectMedia Layer (SDL) is a cross-platform multimedia library designed to provide fast access to the graphics frame buffer and audio device. -------------------------------------------------------------------------------- Update Information: Initial import of mingw-SDL2 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1096796 - Review Request: mingw-SDL2 - MinGW Windows port of SDL2 cross-platform multimedia library https://bugzilla.redhat.com/show_bug.cgi?id=1096796 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update mingw-SDL2' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

9 years, 11 months

1
0
0 / 0

Fedora 20 Update: thunderbird-lightning-2.6.5-9.fc20

by updates＠fedoraproject.org

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2014-6563 2014-05-21 22:39:48 -------------------------------------------------------------------------------- Name : thunderbird-lightning Product : Fedora 20 Version : 2.6.5 Release : 9.fc20 URL : http://www.mozilla.org/projects/calendar/lightning/ Summary : The calendar extension to Thunderbird Description : Lightning brings the Sunbird calendar to the popular email client, Mozilla Thunderbird. Since it's an extension, Lightning is tightly integrated with Thunderbird, allowing it to easily perform email-related calendaring tasks. -------------------------------------------------------------------------------- Update Information: Update to 2.6.5 -------------------------------------------------------------------------------- ChangeLog: * Wed May 14 2014 Orion Poplawski <orion(a)cora.nwra.com> - 2.6.5-9 - Update to 2.6.5 * Fri Jan 31 2014 Orion Poplawski <orion(a)cora.nwra.com> - 2.6.4-8 - Fix build with -Werror=format-security (bug #1037355) * Sat Dec 14 2013 Orion Poplawski <orion(a)cora.nwra.com> - 2.6.4-7 - Sync thunderbird-mozoptions from thunderbird package * Wed Dec 11 2013 Orion Poplawski <orion(a)cora.nwra.com> - 2.6.4-6 - Update to 2.6.4 - Drop caldav patch - Exclude cs locale for now - doesn't build * Wed Nov 27 2013 Jan Horak <jhorak(a)redhat.com> - 2.6.2-5 - Enable arm arch * Sun Nov 24 2013 Orion Poplawski <orion(a)cora.nwra.com> - 2.6.2-4 - Use lightning 2.6.2 source -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update thunderbird-lightning' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

9 years, 11 months

1
0
0 / 0

Fedora 20 Update: unrtf-0.21.5-2.fc20

by updates＠fedoraproject.org

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2014-6547 2014-05-21 22:39:09 -------------------------------------------------------------------------------- Name : unrtf Product : Fedora 20 Version : 0.21.5 Release : 2.fc20 URL : https://www.gnu.org/software/unrtf/unrtf.html Summary : RTF (Rich Text Format) to other formats converter Description : UnRTF is a command-line program written in C which converts documents in Rich Text Format (.rtf) to HTML, LaTeX, troff macros, and RTF itself. Converting to HTML, it supports a number of features of Rich Text Format: * Changes in the text's font, size, weight (bold), and slant (italic) * Underlines and strikethroughs * Partial support for text shadowing, outlining, embossing, or engraving * Capitalizations * Superscripts and subscripts * Expanded and condensed text * Changes in the foreground and background colors * Conversion of special characters to HTML entities -------------------------------------------------------------------------------- Update Information: don't alter conf file location. -------------------------------------------------------------------------------- ChangeLog: * Sun May 18 2014 Rahul Sundaram <sundaram(a)fedoraproject.org> - 0.21.5-2 - don't alter conf file location (rhbz#1060513) * Mon Apr 7 2014 Ken Dreyer <ktdreyer(a)ktdreyer.com> - 0.21.5-1 - Upstream release 0.21.5 (RHBZ #979619) - Update URL for HTTPS - Enable tests in %check -------------------------------------------------------------------------------- References: [ 1 ] Bug #1060513 - conf files are not found https://bugzilla.redhat.com/show_bug.cgi?id=1060513 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update unrtf' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

9 years, 11 months

1
0
0 / 0

[SECURITY] Fedora 19 Update: moodle-2.4.10-1.fc19

by updates＠fedoraproject.org

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2014-6577 2014-05-21 22:40:33 -------------------------------------------------------------------------------- Name : moodle Product : Fedora 19 Version : 2.4.10 Release : 1.fc19 URL : http://moodle.org/ Summary : A Course Management System Description : Moodle is a course management system (CMS) - a free, Open Source software package designed using sound pedagogical principles, to help educators create effective online learning communities. -------------------------------------------------------------------------------- Update Information: Moodle upstream has released versions 2.7, 2.6.3, 2.5.6, and 2.4.10 to fix the following security flaws: CVE-2014-0213 MSA-14-0014: Cross-site request forgery possible in Assignment CVE-2014-0214 MSA-14-0015: Web service token expiry issue for MoodleMobile CVE-2014-0215 MSA-14-0016: Anonymous student identity revealed in assignment CVE-2014-0216 MSA-14-0017: File access issue in HTML block CVE-2014-0217 MSA-14-0018: Information leak in courses CVE-2014-0218 MSA-14-0019: Reflected XSS in URL downloader repository For a full summary and patch links, refer to the following: http://seclists.org/oss-sec/2014/q2/329 -------------------------------------------------------------------------------- ChangeLog: * Wed May 21 2014 Jon Ciesla <limburgher(a)gmail.com> - 2.4.10-1 - CVE-2014-0213, CVE-2014-0214, CVE-2014-0215, CVE-2014-0216 - CVE-2014-0217, CVE-2014-0218 * Wed Mar 19 2014 Jon Ciesla <limburgher(a)gmail.com> - 2.4.9-1 - Fix for CVE-2014-0122, CVE-2014-0123, CVE-2014-0124, - CVE-2014-0125, CVE-2014-0126, CVE-2014-0127, CVE-2014-0129 * Wed Jan 22 2014 Jon Ciesla <limburgher(a)gmail.com> - 2.4.8-1 - Fix for CVE-2014-0008,9,10. * Thu Nov 14 2013 Jon Ciesla <limburgher(a)gmail.com> - 2.4.7-1 - 2.4.7, BZ 1025655,6, 1030084,5. * Wed Sep 11 2013 Jon Ciesla <limburgher(a)gmail.com> - 2.4.6-1 - 2.4.6, multiple securty fixes, BZ 1006678. - CVE-2012-6087 patch upstreamed. * Fri Jul 12 2013 Jon Ciesla <limburgher(a)gmail.com> - 2.4.5-2 - Include two non-upstream additions to HTML-Quickform. * Fri Jul 12 2013 Jon Ciesla <limburgher(a)gmail.com> - 2.4.5-1 - Latest upstream. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1099766 - CVE-2014-0218 CVE-2014-0213 CVE-2014-0215 CVE-2014-0214 CVE-2014-0217 CVE-2014-0216 moodle: upstream 2.7, 2.6.3, 2.5.6, and 2.4.10 security fixes [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=1099766 [ 2 ] Bug #1099765 - CVE-2014-0218 CVE-2014-0213 CVE-2014-0215 CVE-2014-0214 CVE-2014-0217 CVE-2014-0216 moodle: upstream 2.7, 2.6.3, 2.5.6, and 2.4.10 security fixes [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1099765 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update moodle' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

9 years, 11 months

1
0
0 / 0

Fedora 20 Update: gnome-shell-3.10.4-4.fc20

by updates＠fedoraproject.org

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2014-6696 2014-05-25 22:22:17 -------------------------------------------------------------------------------- Name : gnome-shell Product : Fedora 20 Version : 3.10.4 Release : 4.fc20 URL : http://live.gnome.org/GnomeShell Summary : Window management and application launching for GNOME Description : GNOME Shell provides core user interface functions for the GNOME 3 desktop, like switching to windows and launching applications. GNOME Shell takes advantage of the capabilities of modern graphics hardware and introduces innovative user interface concepts to provide a visually attractive and easy to use experience. -------------------------------------------------------------------------------- Update Information: This update should make the GNOME on-screen keyboard work with modal dialogs (e.g. password pop-ups). -------------------------------------------------------------------------------- ChangeLog: * Fri May 23 2014 Adam Williamson <awilliam(a)redhat.com> - 3.10.4-4 - make OSK work with modal dialogs (backport, BGO #719451, RHBZ #1071907) * Wed Apr 2 2014 Javier Hernández <jhernandez(a)emergya.com> - 3.10.4-3 - Fix gnome shell magnifier's crosshairs (RH #1083500) * Mon Mar 17 2014 Adel Gadllah <adel.gadllah(a)gmail.com> - 3.10.4-2 - Backport fix for RH #1076981 * Wed Feb 19 2014 Florian Müllner <fmuellner(a)redhat.com> - 3.10.4-1 - Update to 3.10.4, drop upstreamed patches * Tue Feb 18 2014 Adel Gadllah <adel.gadllah(a)gmail.com> - 3.10.3-8 - Don't duplicate gsd code and just use the xsetting it exports * Mon Feb 17 2014 Adel Gadllah <adel.gadllah(a)gmail.com> - 3.10.3-7 - Don't enable high dpi scaling for vnc / xrdp - Fixes RH #1065563 * Wed Feb 12 2014 Adel Gadllah <adel.gadllah(a)gmail.com> - 3.10.3-6 - Replace patch with one that does not hang gdm * Wed Feb 12 2014 Adel Gadllah <adel.gadllah(a)gmail.com> - 3.10.3-5 - Backport high dpi support patches from upstream * Thu Feb 6 2014 Florian Müllner <fmuellner(a)redhat.com> - 3.10.3-4 - Backport fix for crash when using some Java applications (#1058314) * Fri Jan 31 2014 Florian Müllner <fmuellner(a)redhat.com> - 3.10.3-3 - Backport upstream fixes: - Fix app-menu regression (#1057517) - Fix window tracking regression (#1057933) * Thu Jan 23 2014 Florian Müllner <fmuellner(a)redhat.com> - 3.10.3-2 - Fix app-switcher regressions introduced by the last update * Thu Jan 16 2014 Florian Müllner <fmuellner(a)redhat.com> - 3.10.3-1 - Update to 3.10.3, drop downstream patches * Thu Nov 28 2013 Florian Müllner <fmuellner(a)redhat.com> - 3.10.2.1-3 - Backport upstream fix for catching more extension errors -------------------------------------------------------------------------------- References: [ 1 ] Bug #1071907 - screen keyboard does not work for password pop up dialog https://bugzilla.redhat.com/show_bug.cgi?id=1071907 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update gnome-shell' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

9 years, 11 months

1
0
0 / 0

Fedora 20 Update: light-themes-14.04-0.1.20140410bzr378.fc20

by updates＠fedoraproject.org

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2014-6396 2014-05-16 08:56:41 -------------------------------------------------------------------------------- Name : light-themes Product : Fedora 20 Version : 14.04 Release : 0.1.20140410bzr378.fc20 URL : https://launchpad.net/ubuntu-themes/ Summary : Themes for Ubuntu Description : This project gathers together what ubuntu-artworks, ubuntu-mono and light-themes in one package as they all define what Ubuntu is. -------------------------------------------------------------------------------- Update Information: Synchronize with latest Ubuntu release (14.04). -------------------------------------------------------------------------------- ChangeLog: * Tue May 13 2014 Mohamed El Morabity <melmorabity(a)fedoraproject.org> - 14.04-0.1.20140410bzr378 - Synchronise with version bundled in Ubuntu 14.04 * Wed Nov 20 2013 Mohamed El Morabity <melmorabity(a)fedoraproject.org> - 13.10-0.3.20131014bzr324 - Fix deps * Tue Nov 12 2013 Mohamed El Morabity <melmorabity(a)fedoraproject.org> - 13.10-0.2.20131014bzr324 - Synchronise with version bundled in Ubuntu 13.10 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update light-themes' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

9 years, 11 months

1
0
0 / 0

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

package-announce May 2014