Fedora 21 Update: php-guzzlehttp-psr7-1.2.0-1.fc21
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2015-13579
2015-08-27 19:40:20.010841
--------------------------------------------------------------------------------
Name : php-guzzlehttp-psr7
Product : Fedora 21
Version : 1.2.0
Release : 1.fc21
URL : https://github.com/guzzle/psr7
Summary : PSR-7 message implementation
Description :
PSR-7 message implementation, several stream decorators, and some helpful
functionality like query string parsing.
--------------------------------------------------------------------------------
Update Information:
## 1.2.0 - 2015-08-15 * Body as `"0"` is now properly added to a response. *
Now allowing forward seeking in CachingStream. * Now properly parsing HTTP
requests that contain proxy targets in `parse_request`. * functions.php is now
conditionally required. * user-info is no longer dropped when resolving URIs.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1253997 - php-guzzlehttp-psr7-1.2.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1253997
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update php-guzzlehttp-psr7' at the command line.
For more information, refer to "Managing Software with yum",
available at https://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
8 years, 8 months
[SECURITY] Fedora 21 Update: rt-4.2.12-1.fc21
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2015-13664
2015-08-27 19:40:20.010788
--------------------------------------------------------------------------------
Name : rt
Product : Fedora 21
Version : 4.2.12
Release : 1.fc21
URL : http://www.bestpractical.com/rt
Summary : Request tracker
Description :
RT is an enterprise-grade ticketing system which enables a group of people
to intelligently and efficiently manage tasks, issues, and requests submitted
by a community of users.
--------------------------------------------------------------------------------
Update Information:
Security fix for CVE-2015-5475
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1254111 - CVE-2015-5475 CVE-2015-6506 rt: multiple XSS flaws
https://bugzilla.redhat.com/show_bug.cgi?id=1254111
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update rt' at the command line.
For more information, refer to "Managing Software with yum",
available at https://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
8 years, 8 months
Fedora 21 Update: rubygem-gem2rpm-0.11.2-1.fc21
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2015-13774
2015-08-27 19:40:20.010733
--------------------------------------------------------------------------------
Name : rubygem-gem2rpm
Product : Fedora 21
Version : 0.11.2
Release : 1.fc21
URL : https://github.com/fedora-ruby/gem2rpm
Summary : Generate rpm specfiles from gems
Description :
Generate source rpms and rpm spec files from a Ruby Gem. The spec file
tries to follow the gem as closely as possible, and be compliant with the
Fedora rubygem packaging guidelines.
--------------------------------------------------------------------------------
Update Information:
Update to gem2rpm 0.11.2.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1253872 - rubygem-gem2rpm-0.11.2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1253872
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update rubygem-gem2rpm' at the command line.
For more information, refer to "Managing Software with yum",
available at https://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
8 years, 8 months
[SECURITY] Fedora 21 Update: maradns-2.0.12-1.fc21
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2015-14033
2015-08-27 19:40:20.010620
--------------------------------------------------------------------------------
Name : maradns
Product : Fedora 21
Version : 2.0.12
Release : 1.fc21
URL : http://www.maradns.org/
Summary : Authoritative and recursive DNS server made with security in mind
Description :
MaraDNS is a package that implements the Domain Name Service (DNS), an
essential internet service. MaraDNS has the following advantages:
* Secure.
* Supported.
* Easy to use.
* Small.
* Open Source.
--------------------------------------------------------------------------------
Update Information:
This update fixes Denial-of-Service vulnerability in ”zoneserver” component. By
making the zoneserver daemon free an invalid memory location, it was possible to
terminate the zoneserver process. It is not known whether or not this bug is
remotely exploitable. More details: http://samiam.org/blog/2015-08-19.html
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update maradns' at the command line.
For more information, refer to "Managing Software with yum",
available at https://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
8 years, 8 months
Fedora 21 Update: firefox-40.0.3-1.fc21
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2015-14411
2015-08-27 19:40:20.010497
--------------------------------------------------------------------------------
Name : firefox
Product : Fedora 21
Version : 40.0.3
Release : 1.fc21
URL : http://www.mozilla.org/projects/firefox/
Summary : Mozilla Firefox Web browser
Description :
Mozilla Firefox is an open-source web browser, designed for standards
compliance, performance and portability.
--------------------------------------------------------------------------------
Update Information:
firefox-40.0.3-1.fc21 - Updated to latest upstream (40.0.3)
firefox-40.0.3-1.fc22 - Updated to latest upstream (40.0.3)
firefox-40.0.3-1.fc23 - Updated to latest upstream (40.0.3)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1256875 - Firefox crash on gmail login
https://bugzilla.redhat.com/show_bug.cgi?id=1256875
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update firefox' at the command line.
For more information, refer to "Managing Software with yum",
available at https://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
8 years, 8 months
Fedora 22 Update: vbindiff-3.0-0.13.beta4.fc22
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2015-9265
2015-08-27 17:52:04.307294
--------------------------------------------------------------------------------
Name : vbindiff
Product : Fedora 22
Version : 3.0
Release : 0.13.beta4.fc22
URL : http://www.cjmweb.net/vbindiff/
Summary : Visual binary diff
Description :
VBinDiff (Visual Binary Diff) displays files in hexadecimal
and ASCII (or EBCDIC). It can also display two files at once,
and highlight the differences between them.
Unlike diff, it works well with large files (up to 4 GB).
VBinDiff was inspired by the Compare Files function
of the ProSel utilities by Glen Bredon, for the Apple II.
The single-file mode was inspired by the LIST utility
of 4DOS and friends. While less provides a good line-oriented display,
it has no equivalent to LIST's hex display.
--------------------------------------------------------------------------------
Update Information:
- fix crash when comparing certain files
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1093968 - [abrt] vbindiff: ConWindow::putAttribs(): vbindiff killed by SIGSEGV
https://bugzilla.redhat.com/show_bug.cgi?id=1093968
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update vbindiff' at the command line.
For more information, refer to "Managing Software with yum",
available at https://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
8 years, 8 months
Fedora 22 Update: gobby05-0.5.0-3.fc22
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2015-9612
2015-08-27 17:52:04.307256
--------------------------------------------------------------------------------
Name : gobby05
Product : Fedora 22
Version : 0.5.0
Release : 3.fc22
URL : https://github.com/gobby/gobby/wiki
Summary : Collaborative editor supporting multiple documents
Description :
Gobby is a free collaborative editor supporting multiple documents in one
session and a multi-user chat. It runs on Microsoft Windows, Mac OS X, Linux
and other Unix-like platforms.
--------------------------------------------------------------------------------
Update Information:
Use proper system ca certificates
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1227163 - gobby05: use system ca-certificates
https://bugzilla.redhat.com/show_bug.cgi?id=1227163
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update gobby05' at the command line.
For more information, refer to "Managing Software with yum",
available at https://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
8 years, 8 months
Fedora 22 Update: qca-2.1.0-14.fc22
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2015-12813
2015-08-27 17:52:04.307227
--------------------------------------------------------------------------------
Name : qca
Product : Fedora 22
Version : 2.1.0
Release : 14.fc22
URL : http://delta.affinix.com/qca
Summary : Qt Cryptographic Architecture
Description :
Taking a hint from the similarly-named Java Cryptography Architecture,
QCA aims to provide a straightforward and cross-platform crypto API,
using Qt datatypes and conventions. QCA separates the API from the
implementation, using plugins known as Providers. The advantage of this
model is to allow applications to avoid linking to or explicitly depending
on any particular cryptographic library. This allows one to easily change
or upgrade crypto implementations without even needing to recompile the
application!
--------------------------------------------------------------------------------
Update Information:
Missing header break upcoming compilations
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update qca' at the command line.
For more information, refer to "Managing Software with yum",
available at https://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
8 years, 8 months
Fedora 22 Update: python-netifaces-0.10.4-2.fc22
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2015-12935
2015-08-27 17:52:04.307190
--------------------------------------------------------------------------------
Name : python-netifaces
Product : Fedora 22
Version : 0.10.4
Release : 2.fc22
URL : https://pypi.python.org/pypi/netifaces
Summary : Python library to retrieve information about network interfaces
Description :
This package provides a cross platform API for getting address information
from network interfaces.
--------------------------------------------------------------------------------
Update Information:
Add python3 subpackage
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update python-netifaces' at the command line.
For more information, refer to "Managing Software with yum",
available at https://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
8 years, 8 months
Fedora 22 Update: python-defusedxml-0.4.1-4.fc22
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2015-12899
2015-08-27 17:52:04.307160
--------------------------------------------------------------------------------
Name : python-defusedxml
Product : Fedora 22
Version : 0.4.1
Release : 4.fc22
URL : https://bitbucket.org/tiran/defusedxml
Summary : XML bomb protection for Python stdlib modules
Description :
The defusedxml package contains several Python-only workarounds and fixes for
denial of service and other vulnerabilities in Python's XML libraries. In order
to benefit from the protection you just have to import and use the listed
functions / classes from the right defusedxml module instead of the original
module.
--------------------------------------------------------------------------------
Update Information:
Add patches by Avram Lubkin (fix tests and .format() issues)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #927883 - Review Request: python-defusedxml - XML bomb protection for Python stdlib modules
https://bugzilla.redhat.com/show_bug.cgi?id=927883
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update python-defusedxml' at the command line.
For more information, refer to "Managing Software with yum",
available at https://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
8 years, 8 months