June 2015 - package-announce - Fedora Mailing-Lists

Fedora 20 Update: php-ZendFramework2-2.3.9-1.fc20

by updates＠fedoraproject.org

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2015-8731 2015-05-22 14:03:11 -------------------------------------------------------------------------------- Name : php-ZendFramework2 Product : Fedora 20 Version : 2.3.9 Release : 1.fc20 URL : http://framework.zend.com Summary : Zend Framework 2 Description : Zend Framework 2 is an open source framework for developing web applications and services using PHP 5.3+. Zend Framework 2 uses 100% object-oriented code and utilizes most of the new features of PHP 5.3, namely namespaces, late static binding, lambda functions and closures. Zend Framework 2 evolved from Zend Framework 1, a successful PHP framework with over 15 million downloads. Note: This meta package installs all base Zend Framework component packages (Authentication, Barcode, Cache, Captcha, Code, Config, Console, Crypt, Db, Debug, Di, Dom, Escaper, EventManager, Feed, File, Filter, Form, Http, I18n, InputFilter, Json, Ldap, Loader, Log, Mail, Math, Memory, Mime, ModuleManager, Mvc, Navigation, Paginator, Permissions-Acl, Permissions-Rbac, ProgressBar, Serializer, Server, ServiceManager, Session, Soap, Stdlib, Tag, Test, Text, Uri, Validator, Version, View, XmlRpc) except the optional Cache-apc and Cache-memcached packages. -------------------------------------------------------------------------------- Update Information: **Version 2.3.9** * 7506: resolves issues when UTF-8 values are used in Mail headers, particularly addresses. * 7507: ensures that array values can be used with cookies. * 7514: ensures that multipart MIME messages can be added to Zend\Mail\Message instances in such a way that they do not conflict with ZF2015-04. -------------------------------------------------------------------------------- ChangeLog: * Thu May 21 2015 Remi Collet <remi(a)fedoraproject.org> - 2.3.9-1 - Update to 2.3.9 * Fri May 8 2015 Remi Collet <remi(a)fedoraproject.org> - 2.3.8-1 - Update to 2.3.8 * Fri Mar 13 2015 Remi Collet <remi(a)fedoraproject.org> - 2.3.7-1 - Update to 2.3.7 * Tue Feb 24 2015 Remi Collet <remi(a)fedoraproject.org> - 2.3.5-1 - Update to 2.3.5 - add patch for icu 54, FTBFS detected by Koschei * Fri Jan 16 2015 Remi Collet <remi(a)fedoraproject.org> - 2.3.4-1 - Update to 2.3.4 - drop GLPI patch, fixed upstream - add dependency on ircmaxell/random-lib - apply upstream changes to inter-package dependencies * Fri Oct 17 2014 Shawn Iwinski <shawn.iwinski(a)gmail.com> - 2.3.3-2 - Drop php-gmp dependency from Math component (BZ #1152440) - Fix tests' autoloader * Fri Oct 10 2014 Remi Collet <remi(a)fedoraproject.org> - 2.3.3-1 - Update to 2.3.3 - fix SQL injection with SqlSrv ZF2014-05 CVE-2014-8088 #1151276 - fix null byte issue on Ldap connect ZF2014-06 CVE-2014-8089 #1151277 * Wed Aug 20 2014 Remi Collet <remi(a)fedoraproject.org> - 2.3.2-1 - Update to 2.3.2 - tests from github - run test suite during build * Sun Jul 20 2014 Remi Collet <remi(a)fedoraproject.org> - 2.3.1-3 - composer dependencies - add missing license * Sat Jun 7 2014 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 2.3.1-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Tue May 20 2014 Shawn Iwinski <shawn.iwinski(a)gmail.com> - 2.3.1-1 - Updated to 2.3.1 * Sun May 18 2014 Shawn Iwinski <shawn.iwinski(a)gmail.com> - 2.2.7-1 - Updated to 2.2.7 (security update for ZF2014-03) * Tue Apr 1 2014 Remi Collet <remi(a)fedoraproject.org> - 2.2.6-1 - Updated to 2.2.6 for CVE-2014-2681 CVE-2014-2682 CVE-2014-2683 CVE-2014-2684 CVE-2014-2685 - new package ZendXml - fix for unversioned doc directory -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update php-ZendFramework2' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

8 years, 11 months

1
0
0 / 0

Fedora 22 Update: squid-3.4.12-2.fc22

by updates＠fedoraproject.org

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2015-5302 2015-04-02 00:26:19 -------------------------------------------------------------------------------- Name : squid Product : Fedora 22 Version : 3.4.12 Release : 2.fc22 URL : http://www.squid-cache.org Summary : The Squid proxy caching server Description : Squid is a high-performance proxy caching server for Web clients, supporting FTP, gopher, and HTTP data objects. Unlike traditional caching software, Squid handles all requests in a single, non-blocking, I/O-driven process. Squid keeps meta data and especially hot objects cached in RAM, caches DNS lookups, supports non-blocking DNS lookups, and implements negative caching of failed requests. Squid consists of a main server program squid, a Domain Name System lookup program (dnsserver), a program for retrieving FTP data (ftpget), and some management and client tools. -------------------------------------------------------------------------------- Update Information: Update F22 to match F21. Update to latest upstream version 3.4.12. Fix bug #1173946 crash on older CPUs -------------------------------------------------------------------------------- ChangeLog: * Mon Mar 23 2015 Pavel Šimerda <psimerda(a)redhat.com> - 7:3.4.12-2 - Resolves: #1145235, #1173488, #1176318 – revert a couple of recent changes * Wed Feb 25 2015 Henrik Nordstrom <henrik(a)henriknordstrom.net> - 7:3.4.12-1 - Update to latest upstream version 3.4.12 - bug #1173946: Disable -march=native compile time optimization, use Fedora defaults. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1173946 - Squid fails to run. Gives Illegal instruction (core dumped) https://bugzilla.redhat.com/show_bug.cgi?id=1173946 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update squid' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

8 years, 11 months

1
0
0 / 0

[SECURITY] Fedora 21 Update: kernel-4.0.4-202.fc21

by updates＠fedoraproject.org

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2015-9127 2015-05-30 09:30:06 -------------------------------------------------------------------------------- Name : kernel Product : Fedora 21 Version : 4.0.4 Release : 202.fc21 URL : http://www.kernel.org/ Summary : The Linux kernel Description : The kernel meta package -------------------------------------------------------------------------------- Update Information: The 4.0.4-202 update contains a fix for a namespace crash issue. -------------------------------------------------------------------------------- ChangeLog: * Wed May 27 2015 Josh Boyer <jwboyer(a)fedoraproject.org> - 4.0.4-202 - Apply queued fixes for crasher reported by Alex Larsson * Tue May 26 2015 Laura Abbott <labbott(a)fedoraproject.org> - Fix signed division error (rhbz 1200353) * Tue May 26 2015 Josh Boyer <jwboyer(a)fedoraproject.org> - Backport patch to fix might_sleep splat (rhbz 1220519) * Thu May 21 2015 Josh Boyer <jwboyer(a)fedoraproject.org> - 4.0.4-201 - Add patch to fix discard on md RAID0 (rhbz 1223332) - Add submitted stable fix for i915 flickering on ilk (rhbz 1218688) * Mon May 18 2015 Laura Abbott <labbott(a)fedoraproject.org> - Re-add the v4l2 query caps patch which was dropped * Mon May 18 2015 Josh Boyer <jwboyer(a)fedoraproject.org> - Fix incorrect bandwidth on some Chicony webcams * Mon May 18 2015 Justin M. Forbes <jforbes(a)fedoraproject.org> - 4.0.4-200 - Disable YAMA for F21 - Linux v4.0.4 * Fri May 15 2015 Laura Abbott <labbott(a)fedoraproject.org> - Fix DVB oops (rhbz 1220118) * Thu May 14 2015 Justin M. Forbes <jforbes(a)fedoraproject.org> - 4.0.3-201 - Linux v4.0.3 - Disable i915 verbose state checks * Mon May 11 2015 Laura Abbott <labbott(a)fedoraproject.org> - 3.19.8-200 - Linux v3.19.8 * Thu May 7 2015 Laura Abbott <labbott(a)fedoraproject.org> - 3.19.7-200 - Linux v3.19.7 * Tue May 5 2015 Josh Boyer <jwboyer(a)fedoraproject.org> - Backport patch to blacklist TRIM on all Samsung 8xx series SSDs (rhbz 1218662) - CVE-2015-3636 ping-sockets use-after-free privilege escalation (rhbz 1218074 1218110) * Thu Apr 30 2015 Laura Abbott <labbott(a)fedoraproject.org> - 3.19.6-200 - Linux v3.19.6 * Thu Apr 30 2015 Josh Boyer <jwboyer(a)fedoraproject.org> - Fix backlight on various Toshiba machines (rhbz 1206036 1215989) * Tue Apr 28 2015 Laura Abbott <labbott(a)fedoraproject.org> - Fix more missing v4l2 caps * Fri Apr 24 2015 Josh Boyer <jwboyer(a)fedoraproject.org> - CVE-2015-3339 race condition between chown and execve (rhbz 1214030) - Fix iscsi with QNAP devices (rhbz 1208999) * Thu Apr 23 2015 Laura Abbott <labbott(a)fedoraproject.com> - Fix noisy iwlwifi warning (rhbz 1205083) * Mon Apr 20 2015 Justin M. Forbes <jforbes(a)fedoraproject.org> - 3.19.5-200 - Linux v3.19.5 * Fri Apr 17 2015 Josh Boyer <jwboyer(a)fedoraproject.org> - Allow disabling raw mode in logitech-hidpp (rhbz 1210801) * Wed Apr 15 2015 Josh Boyer <jwboyer(a)fedoraproject.org> - Add patch to fix tty closure race (rhbz 1208953) * Mon Apr 13 2015 Justin M. Forbes <jforbes(a)fedoraproject.org> - 3.19.4-200 - Linux v3.19.4 * Thu Apr 2 2015 Josh Boyer <jwboyer(a)fedoraproject.org> - DoS against IPv6 stacks due to improper handling of RA (rhbz 1203712 1208491) * Wed Apr 1 2015 Josh Boyer <jwboyer(a)fedoraproject.org> - Backport patch to fix tg3 deadlock (rhbz 1207789) - Fix gssproxy (rhbz 1203913) - CVE-2015-2150 xen: NMIs triggerable by guests (rhbz 1196266 1200397) * Thu Mar 26 2015 Justin M. Forbes <jforbes(a)fedoraproject.org> - 3.19.3-200 - Linux v3.19.3 * Thu Mar 26 2015 Peter Robinson <pbrobinson(a)fedoraproject.org> - Disable the broken CONFIG_MSM_IOMMU * Tue Mar 24 2015 Josh Boyer <jwboyer(a)fedoraproject.org> - Fix tun bug causing Juniper VPN failure (rhbz 1204512) * Mon Mar 23 2015 Josh Boyer <jwboyer(a)fedoraproject.org> - 3.19.2-201 - Enable CONFIG_SND_BEBOB (rhbz 1204342) - Validate iovec range in sys_sendto/sys_recvfrom - CVE-2015-2666 execution in the early microcode loader (rhbz 1204724 1204722) * Mon Mar 23 2015 Peter Robinson <pbrobinson(a)fedoraproject.org> - Refix Panda on ARMv7 crash on boot * Fri Mar 20 2015 Josh Boyer <jwboyer(a)fedoraproject.org> - Fix brightness on Lenovo Ideapad Z570 (rhbz 1187004) * Thu Mar 19 2015 Justin M. Forbes <jforbes(a)fedoraproject.org> - 3.19.2-200 - Linux v3.19.2 * Wed Mar 18 2015 Peter Robinson <pbrobinson(a)fedoraproject.org> - Add upstream aarch64 patch to fix hang due to cache invalidation bug - Fix aarch64 DTBs now they're in vendor sub dirs * Tue Mar 17 2015 Justin M. Forbes <jforbes(a)fedoraproject.org> - 3.19.1-201 - Re-add patch to quiet i915 state machine * Mon Mar 16 2015 Justin M. Forbes <jforbes(a)fedoraproject.org> - 3.19.1-200 - Linux v3.19.1 * Fri Mar 13 2015 Kyle McMartin <kyle(a)fedoraproject.org> - arm64-revert-tlb-rcu_table_free.patch: revert 5e5f6dc1 which causes lockups on arm64 machines. - Add kernel-4* to .gitignore. - arm64-fix-ooo-descriptor-read.patch: fix an xgene-enet crash. * Fri Mar 13 2015 Josh Boyer <jwboyer(a)fedoraproject.org> - Add patch to support clickpads (rhbz 1201532) * Thu Mar 12 2015 Josh Boyer <jwboyer(a)fedoraproject.org> - CVE-2014-8159 infiniband: uverbs: unprotected physical memory access (rhbz 1181166 1200950) * Wed Mar 11 2015 Josh Boyer <jwboyer(a)fedoraproject.org> - Fix blank screen after resume with various radeon devices (rhbz 1069027) - CVE-2015-2150 xen: NMIs triggerable by guests (rhbz 1196266 1200397) - Patch series to fix Lenovo *40 and Carbon X1 touchpads (rhbz 1200777 1200778) * Tue Mar 10 2015 Josh Boyer <jwboyer(a)fedoraproject.org> - CVE-2015-2042 rds: information handling flaw in sysctl (rhbz 1195355 1199365) * Mon Mar 9 2015 Justin M. Forbes <jforbes(a)fedoraproject.org> - 3.18.9-200 - Linux v3.18.9 * Mon Mar 2 2015 Josh Boyer <jwboyer(a)fedoraproject.org> - Add patch to fix nfsd soft lockup (rhbz 1185519) - Enable ET131X driver (rhbz 1197842) * Sat Feb 28 2015 Peter Robinson <pbrobinson(a)fedoraproject.org> - Fix Panda on ARMv7 crash on boot * Fri Feb 27 2015 Kyle McMartin <kyle(a)fedoraproject.org> - 3.18.8-201 - Fix up aarch64 build... mis-merge in kernel-arm64.patch. * Fri Feb 27 2015 Josh Boyer <jwboyer(a)fedoraproject.org> - 3.18.8-200 - Linux v3.18.8 * Thu Feb 26 2015 Josh Boyer <jwboyer(a)fedoraproject.org> - CVE-2015-1421 sctp: slab corruption from use after free on INIT collisions (rhbz 1196581 1196595) * Wed Feb 25 2015 Josh Boyer <jwboyer(a)fedoraproject.org> - Add support for AR5B195 devices from Alexander Ploumistos (rhbz 1190947) * Tue Feb 24 2015 Josh Boyer <jwboyer(a)fedoraproject.org> - Fix ext4 remount with journal_checksum option (rhbz 1190933) * Mon Feb 23 2015 Josh Boyer <jwboyer(a)fedoraproject.org> - Add patch for HID i2c from Seth Forshee (rhbz 1188439) - CVE-2015-0275 ext4: fallocate zero range page size > block size BUG (rhbz 1193907 1195178) * Fri Feb 20 2015 Josh Boyer <jwboyer(a)fedoraproject.org> - Move mtpspi and related mods to kernel-core for VMWare guests (rhbz 1194612) * Mon Feb 16 2015 Josh Boyer <jwboyer(a)fedoraproject.org> - CVE-XXXX-XXXX potential memory corruption in vhost/scsi driver (rhbz 1189864 1192079) - CVE-2015-1593 stack ASLR integer overflow (rhbz 1192519 1192520) * Wed Feb 11 2015 Justin M. Forbes <jforbes(a)fedoraproject.org> - 3.18.7-200 - Linux v3.18.7 - Add disable_native_backlight quirk for Samsung 510R (rhbz 1186097) * Fri Feb 6 2015 Justin M. Forbes <jforbes(a)fedoraproject.org> - 3.18.6-200 - Linux v3.18.6 * Mon Feb 2 2015 Justin M. Forbes <jforbes(a)fedoraproject.org> - 3.18.5-201 - Fixup adjtimex freq validation on 32bit systems (rhbz 1188074) * Mon Feb 2 2015 Josh Boyer <jwboyer(a)fedoraproject.org> - CVE-XXXX-XXX DoS due to routing packets to too many different dsts/too fast (rhbz 1183744 1188347) * Fri Jan 30 2015 Justin M. Forbes <jforbes(a)fedoraproject.org> - 3.18.5-200 - Linux v3.18.5 * Thu Jan 29 2015 Josh Boyer <jwboyer(a)fedoraproject.org> - Backport patch from Rob Clark to toggle i915 state machine checks - Disable i915 state checks * Tue Jan 27 2015 Justin M. Forbes <jforbes(a)fedoraproject.org> - 3.18.4-200 - Linux v3.18.4 * Tue Jan 27 2015 Josh Boyer <jwboyer(a)fedoraproject.org> - CVE-2015-0239 kvm: insufficient sysenter emulation from 16-bit (rhbz 1186448 1186453) * Mon Jan 19 2015 Justin M. Forbes <jforbes(a)fedoraproject.org> - 3.18.3-201 - Add fixes from 3.18.4 queue to fix i915 issues (rhbz 1183232) - xhci: Check if slot is already in default state before moving it there (rhbz 1183289) * Fri Jan 16 2015 Justin M. Forbes <jforbes(a)fedoraproject.org> - 3.18.3-200 - Linux v3.18.3 * Thu Jan 15 2015 Justin M. Forbes <jforbes(a)fedoraproject.org> - Build fixes for big-endian arches * Tue Jan 13 2015 Justin M. Forbes <jforbes(a)fedoraproject.org> - 3.18.2-200 - Linux v3.18.2 * Mon Jan 12 2015 Josh Boyer <jwboyer(a)fedoraproject.org> - CVE-2014-9585 ASLR brute-force possible for vdso (rhbz 1181054 1181056) - Backlight fixes for Samsung and Dell machines (rhbz 1094948 1115713 1163574) - Add various UAS quirks (rhbz 1124119) - Add patch to fix loop in VDSO (rhbz 1178975) * Thu Jan 8 2015 Justin M. Forbes <jforbes(a)fedoraproject.org> - 3.17.8-300 - Linux v3.17.8 * Wed Jan 7 2015 Josh Boyer <jwboyer(a)fedoraproject.org> - CVE-2014-9529 memory corruption or panic during key gc (rhbz 1179813 1179853) - Enable POWERCAP and INTEL_RAPL * Tue Jan 6 2015 Josh Boyer <jwboyer(a)fedoraproject.org> - CVE-2014-9419 partial ASLR bypass through TLS base addr leak (rhbz 1177260 1177263) - CVE-2014-9428 remote DoS via batman-adv (rhbz 1178826 1178833) - Fix CIFS login issue (rhbz 1163927) * Mon Dec 29 2014 Josh Boyer <jwboyer(a)fedoraproject.org> - Enable F2FS (rhbz 972446) * Thu Dec 18 2014 Josh Boyer <jwboyer(a)fedoraproject.org> - CVE-2014-8989 userns can bypass group restrictions (rhbz 1170684 1170688) - Fix dm-cache crash (rhbz 1168434) - Fix blk-mq crash on CPU hotplug (rhbz 1175261) * Wed Dec 17 2014 Josh Boyer <jwboyer(a)fedoraproject.org> - Enable USBIP in modules-extra from Johnathan Dieter (rhbz 1169478) - CVE-2014-XXXX isofs: infinite loop in CE record entries (rhbz 1175235 1175250) * Tue Dec 16 2014 Josh Boyer <jwboyer(a)fedoraproject.org> - Linux v3.17.7 - CVE-2014-8559 deadlock due to incorrect usage of rename_lock (rhbz 1159313 1173814) - Add patch from Josh Stone to restore var-tracking via Kconfig (rhbz 1126580) * Mon Dec 15 2014 Josh Boyer <jwboyer(a)fedoraproject.org> - Fix ppc64 boot with smt-enabled=off (rhbz 1173806) - CVE-2014-8133 x86: espfix(64) bypass via set_thread_area and CLONE_SETTLS (rhbz 1172797 1174374) * Fri Dec 12 2014 Kyle McMartin <kyle(a)fedoraproject.org> - build in ahci_platform on aarch64 temporarily. * Fri Dec 12 2014 Josh Boyer <jwboyer(a)fedoraproject.org> - Remove pointless warning in cfg80211 (rhbz 1172543) * Wed Dec 10 2014 Josh Boyer <jwboyer(a)fedoraproject.org> - Fix MSI issues on another Samsung pci-e SSD (rhbz 1084928) - Fix UAS crashes with Seagate and Fresco Logic drives (rhbz 1164945) - CVE-2014-8134 fix espfix for 32-bit KVM paravirt guests (rhbz 1172765 1172769) * Mon Dec 8 2014 Justin M. Forbes <jforbes(a)fedoraproject.org> - 3.17.6-300 - Linux v3.17.6 * Fri Dec 5 2014 Kyle McMartin <kyle(a)fedoraproject.org> - 3.17.4-303 - arm64-fix-xgene_enet_process_ring.patch: fix a panic under load. * Thu Dec 4 2014 Josh Boyer <jwboyer(a)fedoraproject.org> - 3.17.4-302 - CVE-2014-9090 local DoS via do_double_fault due to improper SS faults (rhbz 1170691) * Thu Dec 4 2014 Kyle McMartin <kyle(a)fedoraproject.org> - kernel-arm64.patch: update. - arm64-force-serial-to-be-active-consdev.patch: force serial consoles to be the primary console device instead of defaulting to tty0. No changes to drivers outside of ARM-land. - arm64-vgic-error-to-info.patch: change an error to a warning so that kvm will work. * Mon Dec 1 2014 Josh Boyer <jwboyer(a)fedoraproject.org> - Add patch to quiet i915 driver on long hdps - Add patch to fix oops when using xpad (rhbz 1094048) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1220519 - kernel/sched/core.c:7291 __might_sleep+0x87/0x90() https://bugzilla.redhat.com/show_bug.cgi?id=1220519 [ 2 ] Bug #1200353 - regression in ktime.h breaks infrared IR blaster/transmitter after upgrade to Fedora 21 https://bugzilla.redhat.com/show_bug.cgi?id=1200353 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update kernel' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

8 years, 11 months

1
0
0 / 0

Fedora 21 Update: kate-4.14.3-6.fc21

by updates＠fedoraproject.org

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2015-9116 2015-05-30 09:28:28 -------------------------------------------------------------------------------- Name : kate Product : Fedora 21 Version : 4.14.3 Release : 6.fc21 URL : https://projects.kde.org/projects/kde/kdebase/kate Summary : Advanced Text Editor Description : Advanced Text Editor. -------------------------------------------------------------------------------- Update Information: Move ktexteditor plugins to kate-part pkg -------------------------------------------------------------------------------- ChangeLog: * Thu May 28 2015 Yaakov Selkowitz <yselkowi(a)redhat.com> - 4.14.3-6 - -part: Move ktexteditor plugins in from kate (#1226071) * Wed Apr 22 2015 Rex Dieter <rdieter(a)fedoraproject.org> 4.14.3-5 - -part: Provides: kate4-part%{?_isa}, %doc COPYING.LIB here * Thu Feb 19 2015 Rex Dieter <rdieter(a)fedoraproject.org> 4.14.3-4 - kwrite: use %{?kde_runtime_requires} * Sat Jan 17 2015 Rex Dieter <rdieter(a)fedoraproject.org> 4.14.3-3 - -part: Provides: kate4-part * Fri Jan 16 2015 Rex Dieter <rdieter(a)fedoraproject.org> 4.14.3-2 - kde-applications cleanups -------------------------------------------------------------------------------- References: [ 1 ] Bug #1226071 - kate4-part: include ktexteditor plugins https://bugzilla.redhat.com/show_bug.cgi?id=1226071 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update kate' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

8 years, 11 months

1
0
0 / 0

Fedora 21 Update: php-whitehat101-apr1-md5-1.0.0-1.fc21

by updates＠fedoraproject.org

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2015-8475 2015-05-19 11:37:46 -------------------------------------------------------------------------------- Name : php-whitehat101-apr1-md5 Product : Fedora 21 Version : 1.0.0 Release : 1.fc21 URL : https://github.com/whitehat101/apr1-md5 Summary : Apache's APR1-MD5 algorithm in pure PHP Description : A tested, referenced, documented, and packaged implementation of Apache's APR1 MD5 Hashing Algorithm in pure PHP. -------------------------------------------------------------------------------- Update Information: A tested, referenced, documented, and packaged implementation of Apache's APR1 MD5 Hashing Algorithm in pure PHP. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1222265 - Review Request: php-whitehat101-apr1-md5 - Apache's APR1-MD5 algorithm in pure PHP https://bugzilla.redhat.com/show_bug.cgi?id=1222265 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update php-whitehat101-apr1-md5' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

8 years, 11 months

1
0
0 / 0

[SECURITY] Fedora 21 Update: nss-util-3.19.1-1.0.fc21

by updates＠fedoraproject.org

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2015-9130 2015-05-30 09:30:13 -------------------------------------------------------------------------------- Name : nss-util Product : Fedora 21 Version : 3.19.1 Release : 1.0.fc21 URL : http://www.mozilla.org/projects/security/pki/nss/ Summary : Network Security Services Utilities Library Description : Utilities for Network Security Services and the Softoken module -------------------------------------------------------------------------------- Update Information: Security fix for CVE-2015-4000 Update to the upstream NSS 3.19.1 release, which includes a fix for the recently published logjam attack. The previous 3.19 release made several notable changes related to the TLS protocol, one of them was to disable the SSL 3 protocol by default. For the full list of changes in the 3.19 and 3.19.1 releases, please refer to the upstream release notes documents: https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.19.1_... https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.19_re... -------------------------------------------------------------------------------- ChangeLog: * Thu May 28 2015 Kai Engert <kaie(a)redhat.com> - 3.19.1-1.0 - Update to NSS 3.19.1 * Tue May 19 2015 Kai Engert <kaie(a)redhat.com> - 3.19.0-1.0 - Update to NSS 3.19 * Thu Mar 19 2015 Elio Maldonado <emaldona(a)redhat.com> - 3.18.0-1 - Update to nss-3.18.0 * Wed Jan 28 2015 Elio Maldonado <emaldona(a)redhat.com> - 3.17.4-1 - Update to nss-3.17.4 * Fri Dec 5 2014 Elio Maldonado <emaldona(a)redhat.com> - 3.17.3-1 - Update to nss-3.17.3 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1223211 - CVE-2015-4000 LOGJAM: TLS connections which support export grade DHE key-exchange are vulnerable to MITM attacks https://bugzilla.redhat.com/show_bug.cgi?id=1223211 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update nss-util' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

8 years, 11 months

1
0
0 / 0

[SECURITY] Fedora 21 Update: nss-3.19.1-1.0.fc21

by updates＠fedoraproject.org

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2015-9130 2015-05-30 09:30:13 -------------------------------------------------------------------------------- Name : nss Product : Fedora 21 Version : 3.19.1 Release : 1.0.fc21 URL : http://www.mozilla.org/projects/security/pki/nss/ Summary : Network Security Services Description : Network Security Services (NSS) is a set of libraries designed to support cross-platform development of security-enabled client and server applications. Applications built with NSS can support SSL v2 and v3, TLS, PKCS #5, PKCS #7, PKCS #11, PKCS #12, S/MIME, X.509 v3 certificates, and other security standards. -------------------------------------------------------------------------------- Update Information: Security fix for CVE-2015-4000 Update to the upstream NSS 3.19.1 release, which includes a fix for the recently published logjam attack. The previous 3.19 release made several notable changes related to the TLS protocol, one of them was to disable the SSL 3 protocol by default. For the full list of changes in the 3.19 and 3.19.1 releases, please refer to the upstream release notes documents: https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.19.1_... https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.19_re... -------------------------------------------------------------------------------- ChangeLog: * Thu May 28 2015 Kai Engert <kaie(a)redhat.com> - 3.19.1-1.0 - Update to NSS 3.19.1 * Tue May 19 2015 Kai Engert <kaie(a)redhat.com> - 3.19.0-1.0 - Update to NSS 3.19 * Mon Mar 23 2015 Elio Maldonado <emaldona(a)redhat.com> - 3.18.0-1 - Update to nss-3.18.0 * Wed Jan 28 2015 Elio Maldonado <emaldona(a)redhat.com> - 3.17.4-1 - Update to nss-3.17.4 * Sat Jan 24 2015 Ville Skyttä <ville.skytta(a)iki.fi> - 3.17.3-4 - Own the %{_datadir}/doc/nss-tools dir * Mon Dec 15 2014 Elio Maldonado <emaldona(a)redhat.com> - 3.17.3-2 - Resolves: Bug 987189 - nss-tools RPM conflicts with perl-PAR-Packer - Install pp man page in %{_datadir}/doc/nss-tools/pp.1 - Use %{_mandir} instead of /usr/share/man as more generic * Fri Dec 5 2014 Elio Maldonado <emaldona(a)redhat.com> - 3.17.3-1 - Update to nss-3.17.3 - Resolves: Bug 1171012 - nss-3.17.3 is available * Thu Oct 16 2014 Elio Maldonado <emaldona(a)redhat.com> - 3.17.2-2 - Resolves: Bug 994599 - Enable TLS 1.2 by default -------------------------------------------------------------------------------- References: [ 1 ] Bug #1223211 - CVE-2015-4000 LOGJAM: TLS connections which support export grade DHE key-exchange are vulnerable to MITM attacks https://bugzilla.redhat.com/show_bug.cgi?id=1223211 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update nss' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

8 years, 11 months

1
0
0 / 0

[SECURITY] Fedora 21 Update: nss-softokn-3.19.1-1.0.fc21

by updates＠fedoraproject.org

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2015-9130 2015-05-30 09:30:13 -------------------------------------------------------------------------------- Name : nss-softokn Product : Fedora 21 Version : 3.19.1 Release : 1.0.fc21 URL : http://www.mozilla.org/projects/security/pki/nss/ Summary : Network Security Services Softoken Module Description : Network Security Services Softoken Cryptographic Module -------------------------------------------------------------------------------- Update Information: Security fix for CVE-2015-4000 Update to the upstream NSS 3.19.1 release, which includes a fix for the recently published logjam attack. The previous 3.19 release made several notable changes related to the TLS protocol, one of them was to disable the SSL 3 protocol by default. For the full list of changes in the 3.19 and 3.19.1 releases, please refer to the upstream release notes documents: https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.19.1_... https://developer.mozilla.org/en-US/docs/Mozilla/Projects/NSS/NSS_3.19_re... -------------------------------------------------------------------------------- ChangeLog: * Thu May 28 2015 Kai Engert <kaie(a)redhat.com> - 3.19.1-1.0 - Update to NSS 3.19.1 * Tue May 19 2015 Kai Engert <kaie(a)redhat.com> - 3.19.0-1.0 - Update to NSS 3.19 * Thu Mar 19 2015 Elio Maldonado <emaldona(a)redhat.com> - 3.18.0-1 - Update to nss-3.18.0 * Wed Jan 28 2015 Elio Maldonado <emaldona(a)redhat.com> - 3.17.4-1 - Update to nss-3.17.4 - fix dependencies so nss-softokn pulls in nss-softokn-freebl of the same version and release * Fri Dec 5 2014 Elio Maldonado <emaldona(a)redhat.com> - 3.17.3-1 - Update to nss-3.17.3 * Sat Nov 8 2014 Elio Maldonado <emaldona(a)redhat.com> - 3.17.2-2 - Resolves: Bug 1155306 - Provide sym key derive mechansm as result of encryption of message -------------------------------------------------------------------------------- References: [ 1 ] Bug #1223211 - CVE-2015-4000 LOGJAM: TLS connections which support export grade DHE key-exchange are vulnerable to MITM attacks https://bugzilla.redhat.com/show_bug.cgi?id=1223211 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update nss-softokn' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

8 years, 11 months

1
0
0 / 0

[SECURITY] Fedora 20 Update: libinfinity-0.6.6-1.fc20

by updates＠fedoraproject.org

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2015-8345 2015-05-17 02:52:31 -------------------------------------------------------------------------------- Name : libinfinity Product : Fedora 20 Version : 0.6.6 Release : 1.fc20 URL : http://gobby.0x539.de/trac/wiki/Infinote/Libinfinity Summary : Library implementing the infinote protocol Description : libinfinity is an implementation of the Infinote protocol written in GObject-based C. -------------------------------------------------------------------------------- Update Information: Security update to make libinfinity properly check certificates: https://github.com/gobby/gobby/issues/61 -------------------------------------------------------------------------------- ChangeLog: * Fri May 15 2015 Till Maas <opensource(a)till.name> - 0.6.6-1 - Update to new release, fixes security issue: https://github.com/gobby/gobby/issues/61, #1221266 * Sun Nov 9 2014 Till Maas <opensource(a)till.name> - 0.6.4-1 - Update to new release * Tue Oct 21 2014 Till Maas <opensource(a)till.name> - 0.6.3-1 - Update to new release * Sat Sep 20 2014 Till Maas <opensource(a)till.name> - 0.6.2-1 - Update to new release * Fri Aug 29 2014 Till Maas <opensource(a)till.name> - 0.6.1-1 - Update to new release * Sun Aug 17 2014 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 0.5.5-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild * Sat Jun 7 2014 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 0.5.5-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Mon Jan 13 2014 Till Maas <opensource(a)till.name> - 0.5.5-1 - Update to new release -------------------------------------------------------------------------------- References: [ 1 ] Bug #1221266 - libinfinity: incorrect validation of certificates https://bugzilla.redhat.com/show_bug.cgi?id=1221266 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update libinfinity' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

8 years, 11 months

1
0
0 / 0

Fedora 21 Update: util-linux-2.25.2-3.fc21

by updates＠fedoraproject.org

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2015-8800 2015-05-25 20:40:23 -------------------------------------------------------------------------------- Name : util-linux Product : Fedora 21 Version : 2.25.2 Release : 3.fc21 URL : http://en.wikipedia.org/wiki/Util-linux Summary : A collection of basic system utilities Description : The util-linux package contains a large variety of low-level system utilities that are necessary for a Linux system to function. Among others, Util-linux contains the fdisk configuration tool and the login program. -------------------------------------------------------------------------------- Update Information: fix #1223894 - util-linux FTBFS during stage1 bootstrap -------------------------------------------------------------------------------- ChangeLog: * Fri May 22 2015 Karel Zak <kzak(a)redhat.com> 2.25.2-3 - fix #1223894 - util-linux FTBFS during stage1 bootstrap * Thu Nov 27 2014 Karel Zak <kzak(a)redhat.com> 2.25.2-2 - fix #1168490 - CVE-2014-9114 util-linux: command injection flaw in blkid -------------------------------------------------------------------------------- References: [ 1 ] Bug #1223894 - util-linux FTBFS during stage1 bootstrap - the configure script doesn't support --without-tinfo https://bugzilla.redhat.com/show_bug.cgi?id=1223894 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update util-linux' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

8 years, 11 months

1
0
0 / 0

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

package-announce June 2015