Fedora 21 Update: rakudo-star-0.0.2014.12.1_6.10.0-1.fc21
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2015-4458
2015-03-23 02:39:32
--------------------------------------------------------------------------------
Name : rakudo-star
Product : Fedora 21
Version : 0.0.2014.12.1_6.10.0
Release : 1.fc21
URL : http://www.rakudo.org/
Summary : Rakudo, Perl6-modules and documentation
Description :
Rakudo Perl 6, or just Rakudo, is a Perl 6 compiler for the Parrot virtual
machine. Rakudo is an implementation of the Perl 6 specification that runs
on the Parrot VM. More information about Perl 6 is available from:
http://perl6.org
Rakudo Star is a collection of things around Rakudo. It installs Perl 6 modules.
The documentation includes a PDF-document that describes the using of Perl 6.
--------------------------------------------------------------------------------
Update Information:
updated to 2014.12.1
--------------------------------------------------------------------------------
ChangeLog:
* Tue Jan 27 2015 Gerd Pokorra <gp(a)zimt.uni-siegen.de> - 0.0.2014.12.1_6.10.0-1
- updated to 2014.12.1
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1184549 - perl6 fails to start
https://bugzilla.redhat.com/show_bug.cgi?id=1184549
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update rakudo-star' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
9 years
Fedora 21 Update: hwdata-0.276-1.fc21
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2015-4616
2015-03-26 16:41:09
--------------------------------------------------------------------------------
Name : hwdata
Product : Fedora 21
Version : 0.276
Release : 1.fc21
URL : http://git.fedorahosted.org/git/hwdata.git
Summary : Hardware identification and configuration data
Description :
hwdata contains various hardware identification and configuration data,
such as the pci.ids and usb.ids databases.
--------------------------------------------------------------------------------
Update Information:
Updated pci, usb and vendor ids.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Mar 24 2015 Michal Minar <miminar(a)redhat.com> 0.276-1
- Updated pci, usb and vendor ids.
* Wed Feb 18 2015 Michal Minar <miminar(a)redhat.com> 0.275-1
- Updated pci, usb and vendor ids.
* Mon Jan 26 2015 Michal Minar <miminar(a)redhat.com> 0.274-2
- Removed wrong entry from usb ids file.
- Resolves #1185630
* Mon Jan 19 2015 Michal Minar <miminar(a)redhat.com> 0.274-1
- Updated pci, usb and vendor ids.
* Thu Dec 18 2014 Michal Minar <miminar(a)redhat.com> 0.273-1
- Updated pci, usb and vendor ids.
* Tue Nov 25 2014 Michal Minar <miminar(a)redhat.com> 0.272-1
- Updated pci and vendor ids.
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update hwdata' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
9 years
Fedora 20 Update: ghc-STMonadTrans-0.3.2-1.fc20
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2015-3196
2015-03-05 09:16:07
--------------------------------------------------------------------------------
Name : ghc-STMonadTrans
Product : Fedora 20
Version : 0.3.2
Release : 1.fc20
URL : https://hackage.haskell.org/package/STMonadTrans
Summary : A monad transformer version of the ST monad
Description :
A monad transformer version of the ST monad. This monad transformer
should not be used with monads that can contain multiple answers, like the list
monad. The reason being that it will be duplicated across the different answers
and this causes Bad Things to happen (such as loss of referential transparency).
Safe monads include the monads State, Reader, Writer, Maybe and combinations of
their corresponding monad transformers.
--------------------------------------------------------------------------------
Update Information:
A monad transformer version of the ST monad
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1197639 - Review Request: ghc-STMonadTrans - A monad transformer version of the ST monad
https://bugzilla.redhat.com/show_bug.cgi?id=1197639
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update ghc-STMonadTrans' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
9 years
[SECURITY] Fedora 21 Update: firefox-37.0-2.fc21
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2015-5365
2015-04-02 11:42:57
--------------------------------------------------------------------------------
Name : firefox
Product : Fedora 21
Version : 37.0
Release : 2.fc21
URL : http://www.mozilla.org/projects/firefox/
Summary : Mozilla Firefox Web browser
Description :
Mozilla Firefox is an open-source web browser, designed for standards
compliance, performance and portability.
--------------------------------------------------------------------------------
Update Information:
Update to latest upstream - 37.0
--------------------------------------------------------------------------------
ChangeLog:
* Fri Mar 27 2015 Martin Stransky <stransky(a)redhat.com> - 37.0-2
- Added tooltip patch (mozbz#1144643)
* Fri Mar 27 2015 Martin Stransky <stransky(a)redhat.com> - 37.0-1
- Update to 37.0 Build 2
* Thu Mar 26 2015 Richard Hughes <rhughes(a)redhat.com> - 36.0.4-2
- Add an AppData file for the software center
* Sat Mar 21 2015 Martin Stransky <stransky(a)redhat.com> - 36.0.4-1
- Update to 36.0.4
* Fri Mar 20 2015 Martin Stransky <stransky(a)redhat.com> - 36.0.3-1
- Update to 36.0.3
* Tue Mar 17 2015 Martin Stransky <stransky(a)redhat.com> - 36.0.1-6
- Fixed rhbz#1201527 - [GTK3] Scrollbars in Firefox
are not consistent with the rest of the desktop
* Tue Mar 10 2015 Martin Stransky <stransky(a)redhat.com> - 36.0.1-5
- Arm build fix
* Mon Mar 9 2015 Jan Horak <jhorak(a)redhat.com> - 36.0.1-1
- Update to 36.0.1
* Fri Mar 6 2015 Martin Stransky <stransky(a)redhat.com> - 36.0-4
- ppc64le build fix
* Thu Mar 5 2015 Martin Stransky <stransky(a)redhat.com> - 36.0-3
- Added back the removed "-remote" option
- Fixed rhbz#1198965 - mozilla-xremote-client has been removed,
langpack installation may be broken
* Tue Mar 3 2015 Martin Stransky <stransky(a)redhat.com> - 36.0-2
- Enable Skia for all arches (rhbz#1197007)
* Fri Feb 20 2015 Jan Horak <jhorak(a)redhat.com> - 36.0-1
- Update to 36.0
* Mon Feb 9 2015 Martin Stransky <stransky(a)redhat.com> - 35.0.1-5
- Fixed rhbz#1190774 - update usear agent string for Fedora
* Wed Feb 4 2015 Petr Machata <pmachata(a)redhat.com> - 35.0.1-4
- Bump for rebuild.
* Tue Jan 27 2015 Martin Stransky <stransky(a)redhat.com> - 35.0.1-3
- Backed out the flash click-to-play setup
* Mon Jan 26 2015 David Tardon <dtardon(a)redhat.com> - 35.0.1-2
- rebuild for ICU 54.1
* Fri Jan 23 2015 Martin Stransky <stransky(a)redhat.com> - 35.0.1-1
- New upstream version
* Thu Jan 22 2015 Martin Stransky <stransky(a)redhat.com> - 35.0-7
- Updated hiDPI patch to upstream version (mozbz#975919)
* Thu Jan 22 2015 Martin Stransky <stransky(a)redhat.com> - 35.0-6
- Disabled flash by default because of 0day live flash exploit
(see https://isc.sans.edu/diary/Flash+0-Day+Exploit+Used+by+Angler+Exploit+Kit...)
* Mon Jan 19 2015 Martin Stransky <stransky(a)redhat.com> - 35.0-5
- Enable release build config
- Gtk3 - added patch for HiDPI support (mozbz#975919)
* Mon Jan 19 2015 Martin Stransky <stransky(a)redhat.com> - 35.0-4
- Gtk3 - fixed tabs rendering
* Wed Jan 14 2015 Martin Stransky <stransky(a)redhat.com> - 35.0-3
- Gtk3 - replaced obsoleted focus properties
- Make start.fedoraproject.org the homepage
* Mon Jan 12 2015 Martin Stransky <stransky(a)redhat.com> - 35.0-2
- Update to 35.0 Build 3
- Gtk3 - added fix for button/entry box sizes
- Gtk3 - added fix for button/entry focus sizes
- Spec clean-up (by moez.roy(a)gmail.com)
* Tue Jan 6 2015 Martin Stransky <stransky(a)redhat.com> - 35.0-1
- Update to 35.0 Build 1
* Mon Jan 5 2015 Martin Stransky <stransky(a)redhat.com> - 34.0-12
- Fixed rhbz#1014858 - GLib-CRITICAL **: g_slice_set_config:
assertion `sys_page_size == 0' failed
* Fri Jan 2 2015 Martin Stransky <stransky(a)redhat.com> - 34.0-11
- Build with system jpeg on rawhide
- Updated ATK patch for gtk3
* Tue Dec 23 2014 Martin Stransky <stransky(a)redhat.com> - 34.0-9
- Added fix for rhbz#1173156 - Native NTLM authentication
on Linux unsupported
- Added fix for rhbz#1170109 - data corruption bug on armhfp
* Sat Dec 13 2014 Martin Stransky <stransky(a)redhat.com> - 34.0-8
- Gtk3 - Workaround for Firefox freeze when accessibility is enabled
* Fri Dec 12 2014 Martin Stransky <stransky(a)redhat.com> - 34.0-7
- Added fix for mozbz#1097592 - Firefox freeze in Gtk3
* Thu Dec 11 2014 Martin Stransky <stransky(a)redhat.com> - 34.0-6
- Disabled Gtk3 on Fedora 21 and earlier (rhbz#1172926)
* Wed Dec 10 2014 Martin Stransky <stransky(a)redhat.com> - 34.0-5
- Disabled flash plugin instllation pop-up (mozbz#1108645)
* Mon Dec 8 2014 Jiri Vanek <jvanek(a)redhat.com> - 34.0-4
- added and applied patch218, java-plugin-url.patch
- fixed url for java plugin installation guide
- resolves rhbz#979985
* Mon Dec 8 2014 Martin Stransky <stransky(a)redhat.com> - 34.0-3
- Gtk3 flash plugin fix (rhbz#1171457)
- Gtk3 theme fixes
* Wed Dec 3 2014 Jan Horak <jhorak(a)redhat.com> - 34.0-2
- Fix for mozbz#1097550 - wrong default dictionary
* Mon Dec 1 2014 Martin Stransky <stransky(a)redhat.com> - 34.0-1
- Update to 34.0 build 2
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update firefox' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
9 years
Fedora 20 Update: maven-3.1.1-14.fc20
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2015-4033
2015-03-18 05:52:29
--------------------------------------------------------------------------------
Name : maven
Product : Fedora 20
Version : 3.1.1
Release : 14.fc20
URL : http://maven.apache.org/
Summary : Java project management and project comprehension tool
Description :
Maven is a software project management and comprehension tool. Based on the
concept of a project object model (POM), Maven can manage a project's build,
reporting and documentation from a central piece of information.
--------------------------------------------------------------------------------
Update Information:
Add missing libs to ${M2_HOME}/lib (Resolves: rhbz#1202286)
--------------------------------------------------------------------------------
ChangeLog:
* Mon Mar 16 2015 Michal Srb <msrb(a)redhat.com> - 3.1.1-14
- Add commons-io, commons-lang and jsoup to plexus.core (Resolves: rhbz#1202286)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1202286 - maven: missing libs in ${M2_HOME}/lib may cause java.lang.NoClassDefFoundError
https://bugzilla.redhat.com/show_bug.cgi?id=1202286
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update maven' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
9 years
Fedora 21 Update: mutter-3.14.4-1.fc21
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2015-4654
2015-03-26 16:42:29
--------------------------------------------------------------------------------
Name : mutter
Product : Fedora 21
Version : 3.14.4
Release : 1.fc21
URL : http://www.gnome.org
Summary : Window and compositing manager based on Clutter
Description :
Mutter is a window and compositing manager that displays and manages
your desktop via OpenGL. Mutter combines a sophisticated display engine
using the Clutter toolkit with solid window-management logic inherited
from the Metacity window manager.
While Mutter can be used stand-alone, it is primarily intended to be
used as the display core of a larger system such as GNOME Shell. For
this reason, Mutter is very extensible via plugins, which are used both
to add fancy visual effects and to rework the window management
behaviors to meet the needs of the environment.
--------------------------------------------------------------------------------
Update Information:
Update to latest 3.14.x upstream release. Highlights include:
* Fix windows disappearing when shaded
* Fix erroneous week number calculation
* Work around background refresh issue with NVidia driver
--------------------------------------------------------------------------------
ChangeLog:
* Mon Mar 23 2015 Florian Müllner <fmuellner(a)redhat.com> - 3.14.4-1
- Update to 3.14.4
* Fri Dec 19 2014 Florian Müllner <fmuellner(a)redhat.com> - 3.14.3-1
- Update to 3.14.3
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update mutter' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
9 years
Fedora 21 Update: gnome-shell-3.14.4-2.fc21
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2015-4654
2015-03-26 16:42:29
--------------------------------------------------------------------------------
Name : gnome-shell
Product : Fedora 21
Version : 3.14.4
Release : 2.fc21
URL : http://live.gnome.org/GnomeShell
Summary : Window management and application launching for GNOME
Description :
GNOME Shell provides core user interface functions for the GNOME 3 desktop,
like switching to windows and launching applications. GNOME Shell takes
advantage of the capabilities of modern graphics hardware and introduces
innovative user interface concepts to provide a visually attractive and
easy to use experience.
--------------------------------------------------------------------------------
Update Information:
Update to latest 3.14.x upstream release. Highlights include:
* Fix windows disappearing when shaded
* Fix erroneous week number calculation
* Work around background refresh issue with NVidia driver
--------------------------------------------------------------------------------
ChangeLog:
* Fri Mar 27 2015 Rex Dieter <rdieter(a)fedoraproject.org> 3.14.4-2
- Drop dep on NetworkManager-config-connectivity-fedora
It's already required by fedora-release-workstation
* Mon Mar 23 2015 Florian Müllner <fmuellner(a)redhat.com> - 3.14.4-1
- Update to 3.14.4
* Fri Mar 13 2015 Dan Williams <dcbw(a)redhat.com> - 3.14.3-2
- Fix week number calculation in calendar (BGO #736722)
* Fri Dec 19 2014 Florian Müllner <fmuellner(a)redhat.com> - 3.14.3-1
- Update to 3.14.3
* Wed Nov 26 2014 Kalev Lember <kalevlember(a)gmail.com> - 3.14.2-3
- Backport a patch for repopulating network connections list after suspend
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update gnome-shell' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
9 years
Fedora 21 Update: gnome-shell-extensions-3.14.4-1.fc21
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2015-4654
2015-03-26 16:42:29
--------------------------------------------------------------------------------
Name : gnome-shell-extensions
Product : Fedora 21
Version : 3.14.4
Release : 1.fc21
URL : http://live.gnome.org/GnomeShell/Extensions
Summary : Modify and extend GNOME Shell functionality and behavior
Description :
GNOME Shell Extensions is a collection of extensions providing additional and
optional functionality to GNOME Shell.
Enabled extensions:
* alternate-tab
* apps-menu
* auto-move-windows
* drive-menu
* launch-new-instance
* native-window-placement
* places-menu
* screenshot-window-sizer
* systemMonitor
* user-theme
* window-list
* windowsNavigator
* workspace-indicator
--------------------------------------------------------------------------------
Update Information:
Update to latest 3.14.x upstream release. Highlights include:
* Fix windows disappearing when shaded
* Fix erroneous week number calculation
* Work around background refresh issue with NVidia driver
--------------------------------------------------------------------------------
ChangeLog:
* Mon Mar 23 2015 Florian Müllner <fmuellner(a)redhat.com> - 3.14.4-1
- Update to 3.14.4
* Fri Dec 19 2014 Florian Müllner <fmuellner(a)redhat.com> - 3.14.3-1
- Update to 3.14.3
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update gnome-shell-extensions' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
9 years
Fedora 21 Update: gvfs-1.22.4-1.fc21
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2015-4044
2015-03-18 05:52:58
--------------------------------------------------------------------------------
Name : gvfs
Product : Fedora 21
Version : 1.22.4
Release : 1.fc21
URL : http://www.gtk.org
Summary : Backends for the gio framework in GLib
Description :
The gvfs package provides backend implementations for the gio
framework in GLib. It includes ftp, sftp, cifs.
--------------------------------------------------------------------------------
Update Information:
Update to 1.22.4
--------------------------------------------------------------------------------
ChangeLog:
* Tue Mar 17 2015 Ondrej Holy <oholy(a)redhat.com> - 1.22.4-1
- Update to 1.22.4
* Wed Jan 21 2015 Peter Robinson <pbrobinson(a)fedoraproject.org> 1.22.3-2
- Rebuild (libgpohoto2)
* Fri Jan 9 2015 Ondrej Holy <oholy(a)redhat.com> - 1.22.3-1
- Update to 1.22.3
* Wed Nov 12 2014 Vadim Rutkovsky <vrutkovs(a)redhat.com> - 1.22.2-3
- Build installed tests
* Tue Nov 11 2014 Adrian Reber <adrian(a)lisas.de> - 1.22.2-2
- Rebuilt for libcdio-0.93
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update gvfs' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
9 years
Fedora 20 Update: krb5-1.11.5-19.fc20
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2015-4077
2015-03-18 05:57:41
--------------------------------------------------------------------------------
Name : krb5
Product : Fedora 20
Version : 1.11.5
Release : 19.fc20
URL : http://web.mit.edu/kerberos/www/
Summary : The Kerberos network authentication system
Description :
Kerberos V5 is a trusted-third-party network authentication system,
which can improve your network's security by eliminating the insecure
practice of sending passwords over the network in unencrypted form.
--------------------------------------------------------------------------------
Update Information:
Fix NTLMSSP fallback (#1122324)
--------------------------------------------------------------------------------
ChangeLog:
* Tue Mar 17 2015 David Woodhouse <dwmw2(a)infradead.org> - 1.11.5-19
- Fix NTLMSSP fallback (#1122324)
* Wed Feb 4 2015 Roland Mainz <rmainz(a)redhat.com> - 1.11.5-18
- fix for CVE-2014-5352 (#1179856) "gss_process_context_token()
incorrectly frees context (MITKRB5-SA-2015-001)"
- fix for CVE-2014-9421 (#1179857) "kadmind doubly frees partial
deserialization results (MITKRB5-SA-2015-001)"
- fix for CVE-2014-9422 (#1179861) "kadmind incorrectly
validates server principal name (MITKRB5-SA-2015-001)"
- fix for CVE-2014-9423 (#1179863) "libgssrpc server applications
leak uninitialized bytes (MITKRB5-SA-2015-001)"
* Wed Dec 17 2014 Roland Mainz <rmainz(a)redhat.com> - 1.11.5-17
- fix for CVE-2014-5353 (#1174543) "Fix LDAP misused policy
name crash"
* Tue Sep 30 2014 Roland Mainz <rmainz(a)redhat.com> - 1.11.5-16
- fix for CVE-2014-5351 (#1145425) "krb5: current keys returned when
randomizing the keys for a service principal"
* Sat Sep 6 2014 Nalin Dahyabhai <nalin(a)redhat.com> - 1.11.5-15
- replace older proposed changes for ksu with backports of the changes
after review and merging upstream (#1015559, #1026099, #1118347)
* Thu Aug 28 2014 Nalin Dahyabhai <nalin(a)redhat.com> - 1.11.5-14
- backport fix for trying all compatible keys when not being strict about
acceptor names while reading AP-REQs (RT#7883, #1078888)
* Tue Aug 26 2014 Nalin Dahyabhai <nalin(a)redhat.com> - 1.11.5-13
- kpropd hasn't bothered with -S since 1.11; stop trying to use that flag
in the systemd unit file
* Wed Aug 20 2014 Nalin Dahyabhai <nalin(a)redhat.com> - 1.11.5-12
- pull in upstream fix for an incorrect check on the value returned by a
strdup() call (#1132062)
- pull in upstream fix for a possible null dereference in a db2 btree error
case (#1132063)
- pull in upstream rewrite of getclhoststr() in the iprop service, to
correctly detect wnen a client principal name is malformed (#1132067)
* Thu Aug 7 2014 Nalin Dahyabhai <nalin(a)redhat.com> - 1.11.5-11
- incorporate fix for MITKRB5-SA-2014-001 (CVE-2014-4345)
* Mon Jul 21 2014 Nalin Dahyabhai <nalin(a)redhat.com> - 1.11.5-10
- gssapi: pull in upstream fix for a possible NULL dereference
in spnego (CVE-2014-4344)
* Wed Jul 16 2014 Nalin Dahyabhai <nalin(a)redhat.com> - 1.11.5-9
- gssapi: pull in proposed fix for a double free in initiators (David
Woodhouse, CVE-2014-4343, #1117963)
* Mon Jul 7 2014 Nalin Dahyabhai <nalin(a)redhat.com> - 1.11.5-8
- pull in fix for denial of service by injection of malformed GSSAPI tokens
(CVE-2014-4341, CVE-2014-4342, #1116181)
* Tue Jun 24 2014 Nalin Dahyabhai <nalin(a)redhat.com> - 1.11.5-7
- pull in changes from upstream which add processing of the contents of
/etc/gss/mech.d/*.conf when loading GSS modules (#1102839)
- pull in fix for building against tcl 8.6 (#1107061)
* Tue May 27 2014 Nalin Dahyabhai <nalin(a)redhat.com> - 1.11.5-6
- back out currently-proposed changes to teach ksu about credential cache
collections and the default_ccache_name setting (#1089035) for now
* Tue Mar 4 2014 Nathaniel McCallum <npmccallum(a)redhat.com> - 1.11.5-5
- Backport fix for change password requests when using FAST (RT#7868)
* Mon Feb 17 2014 Nalin Dahyabhai <nalin(a)redhat.com> - 1.11.5-4
- spnego: pull in patch from master to restore preserving the OID of the
mechanism the initiator requested when we have multiple OIDs for the same
mechanism, so that we reply using the same mechanism OID and the initiator
doesn't get confused (#1066000, RT#7858)
* Mon Feb 10 2014 Nalin Dahyabhai <nalin(a)redhat.com> - 1.11.5-3
- pull in patch from master to move the default directory which the KDC uses
when computing the socket path for a local OTP daemon from the database
directory (/var/kerberos/krb5kdc) to the newly-added run directory
(/run/krb5kdc), in line with what we're expecting in 1.13 (RT#7859, more
of #1040056 as #1063905)
- add a tmpfiles.d configuration file to have /run/krb5kdc created at
boot-time
- own /var/run/krb5kdc
* Fri Jan 31 2014 Nalin Dahyabhai <nalin(a)redhat.com> - 1.11.5-2
- rebuild because I tagged the previous package wrong
* Fri Jan 31 2014 Nalin Dahyabhai <nalin(a)redhat.com> - 1.11.5-1
- update to 1.11.5
- remove patch for RT#7650, obsoleted in 1.11.4
- remove patch for RT#7706, obsoleted in 1.11.4
- remove patch for RT#7756 (CVE-2013-1418), obsoleted in 1.11.4
- remove patch for RT#7668 (CVE-2013-1417), obsoleted in 1.11.4
- remove patch for RT#7508, obsoleted in 1.11.4
- remove patch for RT#7794, obsoleted in 1.11.4 as RT#7825
- remove patch for RT#7797, obsoleted in 1.11.4 as RT#7827
- remove patch for RT#7803, obsoleted in 1.11.4 as RT#7828
- remove patch for RT#7805, obsoleted in 1.11.4 as RT#7829
- remove patch for RT#7807, obsoleted in 1.11.4 as RT#7826
- remove patch for RT#7045, obsoleted in 1.11.4 as RT#7823
* Fri Jan 31 2014 Nalin Dahyabhai <nalin(a)redhat.com> - 1.11.3-40
- add currently-proposed changes to teach ksu about credential cache
collections and the default_ccache_name setting (#1015559,#1026099)
* Tue Jan 21 2014 Nalin Dahyabhai <nalin(a)redhat.com> - 1.11.3-39
- pull in upstream patch to fix the GSSAPI library's checks for expired
client creds in gss_init_sec_context() so that they work with keyring
caches (RT#7820, #1030607)
* Tue Jan 21 2014 Nalin Dahyabhai <nalin(a)redhat.com>
- pull in and backport multiple changes to allow replay caches to be added to
a GSS credential store as "rcache"-type credentials (RT#7818/#7819/#7836,
* Thu Dec 19 2013 Nalin Dahyabhai <nalin(a)redhat.com> - 1.11.3-38
- pull in fix from master to make reporting of errors encountered by the SPNEGO
mechanism work better (RT#7045, part of #1043962)
* Thu Dec 19 2013 Nalin Dahyabhai <nalin(a)redhat.com>
- update a test wrapper to properly handle things that the new libkrad does,
and add python-pyrad as a build requirement so that we can run its tests
* Wed Dec 18 2013 Nalin Dahyabhai <nalin(a)redhat.com> - 1.11.3-37
- backport fixes to krb5_copy_context (RT#7807, #1044735/#1044739)
* Wed Dec 18 2013 Nalin Dahyabhai <nalin(a)redhat.com> - 1.11.3-36
- backport fix to avoid double-freeing in the client when we're configured
to use a clpreauth module that isn't actually a clpreauth module (#1035203)
* Wed Dec 18 2013 Nalin Dahyabhai <nalin(a)redhat.com> - 1.11.3-35
- pull in fix from master to return a NULL pointer rather than allocating
zero bytes of memory if we read a zero-length input token (RT#7794, part of
- pull in fix from master to ignore an empty token from an acceptor if
we've already finished authenticating (RT#7797, part of #1043962)
- pull in fix from master to avoid a memory leak when a mechanism's
init_sec_context function fails (RT#7803, part of #1043962)
- pull in fix from master to avoid a memory leak in a couple of error
cases which could occur while obtaining acceptor credentials (RT#7805, part
of #1043962)
* Tue Dec 17 2013 Nalin Dahyabhai <nalin(a)redhat.com> - 1.11.3-34
- backport additional changes to libkrad to make it function more like
the version in upstream 1.12, and a few things in the OTP plugin as well
(most visibly, that the secret that's shared with the RADIUS server is read
from a file rather than used directly) (#1040056)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1122324 - SPNEGO failure to fall back from IAKERB to GSSNTLMSSP
https://bugzilla.redhat.com/show_bug.cgi?id=1122324
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update krb5' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
9 years