--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2014-7579
2014-06-21 02:06:00
--------------------------------------------------------------------------------
Name : kdelibs
Product : Fedora 20
Version : 4.12.5
Release : 4.fc20
URL :
http://www.kde.org/
Summary : KDE Libraries
Description :
Libraries for KDE 4.
--------------------------------------------------------------------------------
Update Information:
Fix security issue where POP3 kioslave silently accepted invalid SSL certificates.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jun 19 2014 Rex Dieter <rdieter(a)fedoraproject.org> 4.12.5-4
- Provides: kdelibs4-webkit ...
* Thu Jun 19 2014 Rex Dieter <rdieter(a)fedoraproject.org> 4.12.5-3
- POP3 kiosloave silently accepted invalid SSL certificates (#1111022, #1111023,
CVE-2014-3494)
* Tue Apr 29 2014 Rex Dieter <rdieter(a)fedoraproject.org> 4.12.5-2
- respin
* Fri Apr 25 2014 Rex Dieter <rdieter(a)fedoraproject.org> 4.12.5-1
- 4.12.5
* Wed Apr 2 2014 Than Ngo <than(a)redhat.com> - 6:4.12.4-1
- 4.12.4
* Sat Mar 1 2014 Rex Dieter <rdieter(a)fedoraproject.org> - 6:4.12.3-1
- 4.12.3
* Sat Feb 15 2014 Kevin Kofler <Kevin(a)tigcc.ticalc.org> - 6:4.12.2-3
- Plasma PackageKit integration: fix plasmapkg to not query Plasma for available
script engines if component is not Plasma/*, but e.g. KWin/Script (#1065688)
* Sun Feb 2 2014 Rex Dieter <rdieter(a)fedoraproject.org> - 6:4.12.2-2
- drop autostart-debug.patch
* Fri Jan 31 2014 Rex Dieter <rdieter(a)fedoraproject.org> - 6:4.12.2-1
- 4.12.2
* Fri Jan 10 2014 Rex Dieter <rdieter(a)fedoraproject.org> - 6:4.12.1-1
- 4.12.1
* Thu Dec 19 2013 Rex Dieter <rdieter(a)fedoraproject.org> 6:4.12.0-2
- disable tests
* Wed Dec 18 2013 Rex Dieter <rdieter(a)fedoraproject.org> - 6:4.12.0-1
- 4.12.0
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1111022 - CVE-2014-3494 kdelibs: POP3 kioslave silently accepted invalid SSL
certificates
https://bugzilla.redhat.com/show_bug.cgi?id=1111022
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update kdelibs' at the command line.
For more information, refer to "Managing Software with yum",
available at
http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------