--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2014-9852
2014-08-28 14:39:58
--------------------------------------------------------------------------------
Name : openvpn
Product : Fedora 20
Version : 2.3.2
Release : 6.fc20
URL : http://openvpn.net/
Summary : A full-featured SSL VPN solution
Description :
OpenVPN is a robust and highly flexible tunneling application that uses all
of the encryption, authentication, and certification features of the
OpenSSL library to securely tunnel IP networks over a single UDP or TCP
port. It can use the Marcus Franz Xaver Johannes Oberhumer's LZO library
for compression.
--------------------------------------------------------------------------------
Update Information:
Allow use of password option with systemd.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Aug 26 2014 Jan Vcelak <jvcelak(a)fedoraproject.org> 2.3.2-6
- Enable systemd support.
* Sun Jan 19 2014 Ville Skyttä <ville.skytta(a)iki.fi> - 2.3.2-5
- Don't order service after syslog.target.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1133870 - compile with --enable-systemd to use systemd password agent
https://bugzilla.redhat.com/show_bug.cgi?id=1133870
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update openvpn' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2014-9625
2014-08-21 07:55:00
--------------------------------------------------------------------------------
Name : root
Product : Fedora 19
Version : 5.34.20
Release : 1.fc19
URL : http://root.cern.ch/
Summary : Numerical data analysis framework
Description :
The ROOT system provides a set of object oriented frameworks with all
the functionality needed to handle and analyze large amounts of data
in a very efficient way. Having the data defined as a set of objects,
specialized storage methods are used to get direct access to the
separate attributes of the selected objects, without having to touch
the bulk of the data. Included are histogramming methods in 1, 2 and 3
dimensions, curve fitting, function evaluation, minimization, graphics
and visualization classes to allow the easy setup of an analysis
system that can query and process the data interactively or in batch
mode.
Thanks to the built in CINT C++ interpreter the command language, the
scripting, or macro, language and the programming language are all
C++. The interpreter allows for fast prototyping of the macros since
it removes the time consuming compile/link cycle. It also provides a
good environment to learn C++. If more performance is needed the
interactively developed macros can be compiled using a C++ compiler.
The system has been designed in such a way that it can query its
databases in parallel on MPP machines or on clusters of workstations
or high-end PCs. ROOT is an open system that can be dynamically
extended by linking external libraries. This makes ROOT a premier
platform on which to build data acquisition, simulation and data
analysis systems.
--------------------------------------------------------------------------------
Update Information:
For details see;
http://root.cern.ch/drupal/content/root-version-v5-34-00-patch-release-notes
--------------------------------------------------------------------------------
ChangeLog:
* Wed Aug 20 2014 Mattias Ellert <mattias.ellert(a)fysast.uu.se> - 5.34.20-1
- Update to 5.34.20
- Re-enable xrootd support for F21+ and EPEL7 (now ported to xrootd 4)
- Do not depend on wine's fonts
- Drop patch root-gccopt.patch
* Mon Aug 18 2014 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 5.34.19-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild
* Mon Jul 14 2014 Mattias Ellert <mattias.ellert(a)fysast.uu.se> - 5.34.19-1
- Update to 5.34.19
- Disable xrootd support for F21+ and EPEL7 (root not yet ported to xrootd 4)
- New sub-package: root-net-http
- Drop patches root-thtml-revert.patch, root-gfal2.patch and
root-proofx-link-iolib.patch
* Mon Jun 30 2014 Mattias Ellert <mattias.ellert(a)fysast.uu.se> - 5.34.18-4
- Add Requires on root-tree-player to root-gui-ged
* Sun Jun 8 2014 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 5.34.18-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild
* Sun May 4 2014 Mattias Ellert <mattias.ellert(a)fysast.uu.se> - 5.34.18-2
- Rebuild for ruby 2.1
- Fix build failure on F21 (missing symbol in libProofx linking)
* Sat Mar 22 2014 Mattias Ellert <mattias.ellert(a)fysast.uu.se> - 5.34.18-1
- Update to 5.34.18
- Build GFAL module using libgfal2
- New sub-package: root-vdt
* Wed Feb 26 2014 Mattias Ellert <mattias.ellert(a)fysast.uu.se> - 5.34.17-1
- Update to 5.34.17
* Fri Feb 14 2014 Mattias Ellert <mattias.ellert(a)fysast.uu.se> - 5.34.15-1
- Update to 5.34.15
- Drop patch root-davix.patch
* Thu Jan 9 2014 Mattias Ellert <mattias.ellert(a)fysast.uu.se> - 5.34.14-3
- Rebuild for cfitsio 3.360
* Mon Dec 23 2013 Mattias Ellert <mattias.ellert(a)fysast.uu.se> - 5.34.14-2
- Adapt to davix >= 0.2.8
* Thu Dec 19 2013 Mattias Ellert <mattias.ellert(a)fysast.uu.se> - 5.34.14-1
- Update to 5.34.14
- New sub-package: root-net-davix
- Drop patch root-pythia8-incdir.patch
* Tue Dec 3 2013 Mattias Ellert <mattias.ellert(a)fysast.uu.se> - 5.34.13-1
- Update to 5.34.13
- Remove java-devel build dependency (not needed with Fedora's libhdfs)
- Adapt to pythia8 >= 8.1.80
* Mon Nov 25 2013 Orion Poplawski <orion(a)cora.nwra.com> - 5.34.10-3
- Fix hadoop lib location
* Mon Nov 18 2013 Dave Airlie <airlied(a)redhat.com> - 5.34.10-2
- rebuilt for GLEW 1.10
* Mon Sep 9 2013 Mattias Ellert <mattias.ellert(a)fysast.uu.se> - 5.34.10-1
- Update to 5.34.10
- New sub-package: root-io-hdfs (Fedora 20+)
- New sub-package: root-sql-sqlite
* Thu Aug 8 2013 Mattias Ellert <mattias.ellert(a)fysast.uu.se> - 5.34.09-5
- Exclude armv7hl - cint is not working
- Use _pkgdocdir when defined
- Use texlive-stix
* Sun Aug 4 2013 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 5.34.09-4
- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
* Thu Jul 18 2013 Petr Pisar <ppisar(a)redhat.com> - 5.34.09-3
- Perl 5.18 rebuild
* Tue Jul 16 2013 Mattias Ellert <mattias.ellert(a)fysast.uu.se> - 5.34.09-2
- Rebuild for cfitsio 3.350
* Fri Jun 28 2013 Mattias Ellert <mattias.ellert(a)fysast.uu.se> - 5.34.09-1
- Update to 5.34.09
- New sub-package: root-montecarlo-pythia8
- Drop patch root-gfal-bits.patch
- Use xz compression for source tarfile
- Update ancient root version in EPEL
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update root' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2014-9662
2014-08-21 07:56:34
--------------------------------------------------------------------------------
Name : cas-client
Product : Fedora 20
Version : 3.3.3
Release : 1.fc20
URL : http://www.jasig.org/cas
Summary : Jasig CAS Client for Java
Description :
Jasig CAS Client for Java is the integration point for applications that
want to speak with a CAS server, either via the CAS 1.0 or CAS 2.0 protocol.
--------------------------------------------------------------------------------
Update Information:
- update to 3.3.3
- fix CVE-2014-4172 (rhbz#1131371)
--------------------------------------------------------------------------------
ChangeLog:
* Tue Aug 19 2014 gil cattaneo <puntogil(a)libero.it> 3.3.3-1
- update to 3.3.3
- fix CVE-2014-4172 (rhbz#1131371)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1131350 - CVE-2014-4172 cas-client: Bypass of security constraints via URL parameter injection
https://bugzilla.redhat.com/show_bug.cgi?id=1131350
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update cas-client' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2014-9018
2014-07-30 20:57:09
--------------------------------------------------------------------------------
Name : owncloud
Product : Fedora 20
Version : 6.0.4
Release : 3.fc20
URL : http://owncloud.org
Summary : Private file sync and share server
Description :
ownCloud gives you universal access to your files through a web interface or
WebDAV. It also provides a platform to easily view & sync your contacts,
calendars and bookmarks across all your devices and enables basic editing right
on the web. ownCloud is extendable via a simple but powerful API for
applications and plugins.
--------------------------------------------------------------------------------
Update Information:
This update removes the upstream 'updater' app for upgrading OwnCloud, which cannot work with a packaged OwnCloud installation but could very likely break it. Also, it changes how Fedora's default OwnCloud configuration is shipped; previously we were patching upstream's sample configuration, which led to us setting some configuration parameters that were inappropriate. We now simply ship a stub configuration that specifies only the parameters which differ in our packaged OwnCloud. OwnCloud's defaults, or the values entered or generated at first run, will be used for all other parameters. This should fix the bug which prevented access to new deployments of OwnCloud 6.0.2+ after the first run due to a bogus 'trusted_domains' setting.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Jul 29 2014 Adam Williamson <awilliam(a)redhat.com> - 6.0.4-3
- do not ship upstream's 'updater' app (it'll only lead to tears)
* Tue Jul 29 2014 Adam Williamson <awilliam(a)redhat.com> - 6.0.4-2
- don't patch the sample config, just include a stub with our settings
* Mon Jun 30 2014 Gregor Tätzner <brummbq(a)fedoraproject.org> - 6.0.4-1
- 6.0.4
* Sat Jun 7 2014 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 6.0.3-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild
* Thu May 1 2014 Gregor Tätzner <brummbq(a)fedoraproject.org> - 6.0.3-1
- 6.0.3
- update symfony routing patch
* Tue Mar 4 2014 Gregor Tätzner <brummbq(a)fedoraproject.org> - 6.0.2-1
- 6.0.2
* Mon Feb 24 2014 Adam Williamson <awilliam(a)redhat.com> - 6.0.1-3
- set a minimum ver on the DBAL req for safety (using with 2.3 is dangerous)
* Mon Jan 27 2014 Adam Williamson <awilliam(a)redhat.com> - 6.0.1-2
- unbundle phpseclib (packaged now)
* Thu Jan 23 2014 Gregor Tätzner <brummbq(a)fedoraproject.org> - 6.0.1-1
- 6.0.1
* Tue Jan 14 2014 Gregor Tätzner <brummbq(a)fedoraproject.org> - 6.0.0a-9
- fix routing with symfony 2.3
* Fri Jan 10 2014 Adam Williamson <awilliam(a)redhat.com> - 6.0.0a-8
- make a warning OC keeps triggering into a debug message
* Thu Jan 9 2014 Adam Williamson <awilliam(a)redhat.com> - 6.0.0a-7
- re-enable irods, patch loading of it, add dependency on it
* Fri Jan 3 2014 Adam Williamson <awilliam(a)redhat.com> - 6.0.0a-6
- disable irods a bit harder
* Fri Jan 3 2014 Adam Williamson <awilliam(a)redhat.com> - 6.0.0a-5
- drop non-existent OC_User_IMAP from config file
* Fri Jan 3 2014 Adam Williamson <awilliam(a)redhat.com> - 6.0.0a-4
- apps_3rdparty_includes: fix more 3rdparty loading stuff
- disable_irods: disable storage app's irods (it's broken)
* Mon Dec 30 2013 Adam Williamson <awilliam(a)redhat.com> - 6.0.0a-3
- tar-include, blowfish-include, dropbox-include: fix more paths
* Mon Dec 30 2013 Adam Williamson <awilliam(a)redhat.com> - 6.0.0a-2
- dropbox-include.patch: fix loading of system copy of php-Dropbox
* Sun Dec 22 2013 Adam Williamson <awilliam(a)redhat.com> - 6.0.0a-1
- 6.0.0a
* Sun Dec 22 2013 Gregor Tätzner <brummbq(a)fedoraproject.org> - 6.0.0-1
- 6.0.0
* Fri Dec 20 2013 Adam Williamson <awilliam(a)redhat.com> - 5.0.14a-2
- Correct location of php-symfony-routing: #1045301
* Fri Dec 20 2013 Adam Williamson <awilliam(a)redhat.com> - 5.0.14a-1
- 5.0.14a
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update owncloud' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2014-9617
2014-08-21 07:54:42
--------------------------------------------------------------------------------
Name : httpcomponents-client
Product : Fedora 20
Version : 4.2.5
Release : 4.fc20
URL : http://hc.apache.org/
Summary : HTTP agent implementation based on httpcomponents HttpCore
Description :
HttpClient is a HTTP/1.1 compliant HTTP agent implementation based on
httpcomponents HttpCore. It also provides reusable components for
client-side authentication, HTTP state management, and HTTP connection
management. HttpComponents Client is a successor of and replacement
for Commons HttpClient 3.x. Users of Commons HttpClient are strongly
encouraged to upgrade.
--------------------------------------------------------------------------------
Update Information:
Security fix for CVE-2014-3577
--------------------------------------------------------------------------------
ChangeLog:
* Mon Aug 18 2014 Michal Srb <msrb(a)redhat.com> - 4.2.5-4
- Fix MITM security vulnerability
- Resolves: CVE-2014-3577
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1129074 - CVE-2014-3577 Apache HttpComponents client: SSL hostname verification bypass, incomplete CVE-2012-6153 fix
https://bugzilla.redhat.com/show_bug.cgi?id=1129074
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update httpcomponents-client' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2014-9648
2014-08-21 07:55:59
--------------------------------------------------------------------------------
Name : springframework-security
Product : Fedora 20
Version : 3.1.7
Release : 1.fc20
URL : http://static.springsource.org/spring-security/site/index.html
Summary : Modular Java/J2EE application security framework
Description :
Spring Security is a Java/Java EE framework that provides advanced
authentication, authorization and other comprehensive security features for
enterprise applications. In addition to having a comprehensive list of
security functionality, Spring Security is very configurable and employs the
Spring Framework for configuration, it allows for reuse and portability of
security components, and it can also be used with non-Spring applications.
--------------------------------------------------------------------------------
Update Information:
Security fix for CVE-2014-3527
--------------------------------------------------------------------------------
ChangeLog:
* Tue Aug 19 2014 Michal Srb <msrb(a)redhat.com> - 3.1.7-1
- Update to upstream release 3.1.7
- Resolves: CVE-2014-3527
* Wed Mar 12 2014 Michal Srb <msrb(a)redhat.com> - 3.1.6-1
- Update to upstream release 3.1.6 (Fixes CVE-2014-0097)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1131359 - CVE-2014-3527 Spring Security CAS: Access control bypass via untrusted infomation usage in proxy ticket authentication
https://bugzilla.redhat.com/show_bug.cgi?id=1131359
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update springframework-security' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2014-9611
2014-08-21 07:54:27
--------------------------------------------------------------------------------
Name : python-diff-cover
Product : Fedora 20
Version : 0.6.0
Release : 1.fc20
URL : https://github.com/edx/diff-cover/
Summary : Automatically find diff lines that need test coverage
Description :
Diff coverage is the percentage of new or modified lines that are covered by
tests. This provides a clear and achievable standard for code review: If you
touch a line of code, that line should be covered. Code coverage is *every*
developer's responsibility!
The diff-cover command line tool compares an XML coverage report with the
output of git diff. It then reports coverage information for lines in the
diff.
--------------------------------------------------------------------------------
Update Information:
New package python-diff-cover
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1082656 - Review Request: python-diff-cover - Automatically find diff lines that need test coverage
https://bugzilla.redhat.com/show_bug.cgi?id=1082656
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update python-diff-cover' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2014-9576
2014-08-19 05:22:55
--------------------------------------------------------------------------------
Name : baloo
Product : Fedora 20
Version : 4.13.3
Release : 3.fc20
URL : https://projects.kde.org/projects/kde/kdelibs/baloo
Summary : A framework for searching and managing metadata
Description :
A framework for searching and managing metadata.
--------------------------------------------------------------------------------
Update Information:
Improve coinstallability with kf5-baloo
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update baloo' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2014-9576
2014-08-19 05:22:55
--------------------------------------------------------------------------------
Name : kdepim
Product : Fedora 20
Version : 4.13.3
Release : 12.fc20
URL : http://www.kde.org/
Summary : KDE PIM (Personal Information Manager) applications
Description :
KDE PIM (Personal Information Manager) applications, including:
* akregator: feed aggregator
* blogilo: blogging application, focused on simplicity and usability
* kmail: email client
* knode: newsreader
* knotes: sticky notes for the desktop
* kontact: integrated PIM management
* korganizer: journal, appointments, events, todos
--------------------------------------------------------------------------------
Update Information:
Improve coinstallability with kf5-baloo
--------------------------------------------------------------------------------
ChangeLog:
* Tue Aug 19 2014 Daniel Vrátil <dvratil(a)redhat.com> 7:4.13.3-12
- make sure baloo-akonadi is installed
* Wed Jul 23 2014 Rex Dieter <rdieter(a)fedoraproject.org> 7:4.13.3-11
- -common: fix -libs dep (typo wrt epoch)
* Tue Jul 22 2014 Daniel Vrátil <dvratil(a)redhat.com> - 7:4.13.3-10
- split monolithic kdepim package into per-app subpackages
- drop some old build deps (nepomuk-related mostly)
* Tue Jul 15 2014 Rex Dieter <rdieter(a)fedoraproject.org> - 7:4.13.3-1
- 4.13.3
* Thu Jun 19 2014 Rex Dieter <rdieter(a)fedoraproject.org> - 7:4.13.2-2
- BR: kdelibs4-webkit-devel
* Mon Jun 9 2014 Rex Dieter <rdieter(a)fedoraproject.org> - 7:4.13.2-1
- 4.13.2
* Sun Jun 8 2014 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 7:4.13.1-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild
* Fri May 23 2014 Petr Machata <pmachata(a)redhat.com> - 7:4.13.1-2
- Rebuild for boost 1.55.0
* Sun May 11 2014 Rex Dieter <rdieter(a)fedoraproject.org> - 7:4.13.1-1
- 4.13.1
* Sat Apr 12 2014 Rex Dieter <rdieter(a)fedoraproject.org> - 7:4.13.0-1
- 4.13.0
* Fri Apr 4 2014 Rex Dieter <rdieter(a)fedoraproject.org> - 7:4.12.97-1
- 4.12.97
* Sun Mar 23 2014 Rex Dieter <rdieter(a)fedoraproject.org> - 7:4.12.95-1
- 4.12.95
* Thu Mar 20 2014 Kevin Kofler <Kevin(a)tigcc.ticalc.org> - 7:4.12.90-2
- apply upstream fix for sieveeditor.desktop, make validation mandatory again
* Wed Mar 19 2014 Rex Dieter <rdieter(a)fedoraproject.org> - 7:4.12.90-1
- 4.12.90
* Sun Mar 2 2014 Rex Dieter <rdieter(a)fedoraproject.org> - 7:4.12.3-1
- 4.12.3
* Fri Jan 31 2014 Rex Dieter <rdieter(a)fedoraproject.org> - 7:4.12.2-1
- 4.12.2
* Fri Jan 10 2014 Rex Dieter <rdieter(a)fedoraproject.org> - 7:4.12.1-1
- 4.12.1
* Thu Dec 19 2013 Rex Dieter <rdieter(a)fedoraproject.org> - 7:4.12.0-1
- 4.12.0
* Sun Dec 1 2013 Rex Dieter <rdieter(a)fedoraproject.org> - 7:4.11.97-1
- 4.11.97
* Thu Nov 21 2013 Rex Dieter <rdieter(a)fedoraproject.org> - 7:4.11.95-1
- 4.11.95
* Sat Nov 16 2013 Rex Dieter <rdieter(a)fedoraproject.org> - 7:4.11.90-1
- 4.11.90
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update kdepim' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------