The following Fedora 20 Security updates need testing: Age URL 82 https://admin.fedoraproject.org/updates/FEDORA-2013-24018/varnish-3.0.5-1.fc... 63 https://admin.fedoraproject.org/updates/FEDORA-2014-0792/libinfinity-0.5.5-1... 29 https://admin.fedoraproject.org/updates/FEDORA-2014-2693/openstack-glance-20... 28 https://admin.fedoraproject.org/updates/FEDORA-2014-2751/zabbix-2.0.11-2.fc2... 26 https://admin.fedoraproject.org/updates/FEDORA-2014-2875/oath-toolkit-2.4.1-... 7 https://admin.fedoraproject.org/updates/FEDORA-2014-3778/jansson-2.6-1.fc20 6 https://admin.fedoraproject.org/updates/FEDORA-2014-3811/springframework-sec... 6 https://admin.fedoraproject.org/updates/FEDORA-2014-3795/libmodplug-0.8.8.5-... 4 https://admin.fedoraproject.org/updates/FEDORA-2014-3887/lighttpd-1.4.35-1.f... 4 https://admin.fedoraproject.org/updates/FEDORA-2014-3874/perltidy-20130922-1... 4 https://admin.fedoraproject.org/updates/FEDORA-2014-3860/imapsync-1.584-2.fc... 4 https://admin.fedoraproject.org/updates/FEDORA-2014-3915/squid-3.3.12-1.fc20 4 https://admin.fedoraproject.org/updates/FEDORA-2014-3818/udisks-1.0.4-13.fc2...
The following Fedora 20 Critical Path updates have yet to be approved: Age URL 127 https://admin.fedoraproject.org/updates/FEDORA-2013-21163/libproxy-0.4.11-8.... 13 https://admin.fedoraproject.org/updates/FEDORA-2014-3510/krb5-1.11.5-5.fc20 4 https://admin.fedoraproject.org/updates/FEDORA-2014-3884/libosinfo-0.2.9-1.f... 1 https://admin.fedoraproject.org/updates/FEDORA-2014-4019/lcms2-2.6-1.fc20 1 https://admin.fedoraproject.org/updates/FEDORA-2014-4021/gnome-shell-3.10.4-... 0 https://admin.fedoraproject.org/updates/FEDORA-2014-4085/libevdev-0.6-4.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2014-4061/gnome-online-accoun... 0 https://admin.fedoraproject.org/updates/FEDORA-2014-4052/fftw-3.3.4-1.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2014-4064/audit-2.3.5-1.fc20 0 https://admin.fedoraproject.org/updates/FEDORA-2014-4040/linux-firmware-2014...
The following builds have been pushed to Fedora 20 updates-testing
SDL2-2.0.3-1.fc20 bodhi-0.9.9-1.fc20 enigma-1.20-1.fc20 fedora-packager-0.5.10.3-1.fc20 firefox-28.0-2.fc20 glyphicons-halflings-fonts-3.1.0-2.20140211git728067b.fc20 libevdev-0.6-4.fc20 lv2-artyfx-plugins-1.1-0.1.20140317git1dc4f00.fc20 nginx-1.4.7-1.fc20 nodejs-async-0.2.10-1.fc20 openscap-1.0.6-1.fc20 python-pthreading-0.1.3-0.fc20 thunderbird-24.4.0-1.fc20 xorg-x11-drv-wacom-0.23.0-5.fc20 xtv-1.0-1.fc20
Details about builds:
================================================================================ SDL2-2.0.3-1.fc20 (FEDORA-2014-4087) A cross-platform multimedia library -------------------------------------------------------------------------------- Update Information:
2.0.3 upstream release -------------------------------------------------------------------------------- ChangeLog:
* Wed Mar 19 2014 Igor Gnatenko i.gnatenko.brain@gmail.com - 2.0.3-1 - 2.0.3 upstream release -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1077635 - SDL2-2.0.3 is available https://bugzilla.redhat.com/show_bug.cgi?id=1077635 --------------------------------------------------------------------------------
================================================================================ bodhi-0.9.9-1.fc20 (FEDORA-2014-4083) A modular framework that facilitates publishing software updates -------------------------------------------------------------------------------- Update Information:
**Summary of major changes**
* Reset the karma to 0 when new builds are added to an existing update (Mathieu Bridon) https://fedorahosted.org/fesco/ticket/1238 https://fedorahosted.org/bodhi/ticket/388
* Disable karma automatism upon AutoQA test failures (Luke Macken) https://fedorahosted.org/fesco/ticket/1242 https://github.com/fedora-infra/bodhi/issues/36
* Do not trigger the stablekarma threshold if the update is being pushed (Luke Macken) https://fedorahosted.org/bodhi/ticket/649
* Prefix the updateinfo file with its hash in the repo metadata (Mathieu Bridon) https://github.com/fedora-infra/bodhi/pull/35
* Fixed a bug in querying the RPM changelogs, which are used in the update announcement (Mathieu Bridon) https://github.com/fedora-infra/bodhi/pull/38
-------------------------------------------------------------------------------- ChangeLog:
* Fri Mar 14 2014 Luke Macken lmacken@redhat.com - 0.9.9-1 - Update to 0.9.9 * Wed Feb 19 2014 Luke Macken lmacken@redhat.com - 0.9.8-2 - Remove the python-simplejson requirement (#1060234) --------------------------------------------------------------------------------
================================================================================ enigma-1.20-1.fc20 (FEDORA-2014-4088) Game where you control a marble with the mouse -------------------------------------------------------------------------------- Update Information:
This is an update of the enigma game to version 1.20. It brings new levels and many bugfixes. -------------------------------------------------------------------------------- ChangeLog:
* Tue Mar 18 2014 Michal Schmidt mschmidt@redhat.com - 1.20-1 - Update to 1.20 release. - Remove bundled zipios++ (#1077702, based on patch from Ville Skyttä) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #673640 - [abrt] enigma-1.01-11: Process /usr/bin/enigma was killed by signal 11 (SIGSEGV) https://bugzilla.redhat.com/show_bug.cgi?id=673640 [ 2 ] Bug #1000809 - Out of date https://bugzilla.redhat.com/show_bug.cgi?id=1000809 [ 3 ] Bug #1037052 - enigma FTBFS if "-Werror=format-security" flag is used https://bugzilla.redhat.com/show_bug.cgi?id=1037052 [ 4 ] Bug #1039372 - [abrt] enigma-1.01-24.fc20: vsnprintf: Process /usr/bin/enigma was killed by signal 11 (SIGSEGV) https://bugzilla.redhat.com/show_bug.cgi?id=1039372 [ 5 ] Bug #1077702 - Build with system zipios++ instead of bundled one https://bugzilla.redhat.com/show_bug.cgi?id=1077702 --------------------------------------------------------------------------------
================================================================================ fedora-packager-0.5.10.3-1.fc20 (FEDORA-2014-4103) Tools for setting up a fedora maintainer environment -------------------------------------------------------------------------------- Update Information:
Fix fedora-burn-yubikey to work properly with slot 2 -------------------------------------------------------------------------------- ChangeLog:
* Tue Mar 18 2014 Nick Bebout nb@fedoraproject.org - 0.5.10.3-1 - fix fedora-burn-yubikey script to work with slot 2 * Thu Dec 5 2013 Denis Gilmore dennis@ausil.us - 0.5.10.2-1 - update to 0.5.10.2 - drop sparc support --------------------------------------------------------------------------------
================================================================================ firefox-28.0-2.fc20 (FEDORA-2014-4106) Mozilla Firefox Web browser -------------------------------------------------------------------------------- Update Information:
New upstream version - Firefox 28.0, Thunderbird 24.4.0.
It needs a new nspr-4.10.4 package, so please give karma to those updates:
https://admin.fedoraproject.org/updates/FEDORA-2014-4071/nspr-4.10.4-1.fc19 https://admin.fedoraproject.org/updates/FEDORA-2014-4067/nspr-4.10.4-1.fc20
Thanks! -------------------------------------------------------------------------------- ChangeLog:
* Wed Mar 19 2014 Martin Stransky stransky@redhat.com - 28.0-2 - NSS version up, disable arm for now * Tue Mar 18 2014 Martin Stransky stransky@redhat.com - 28.0-1 - Update to 28.0 * Thu Mar 6 2014 Martin Stransky stransky@redhat.com - 27.0.1-2 - Removed needless build patch --------------------------------------------------------------------------------
================================================================================ glyphicons-halflings-fonts-3.1.0-2.20140211git728067b.fc20 (FEDORA-2014-4084) Precisely prepared monochromatic icons and symbols -------------------------------------------------------------------------------- Update Information:
A new iconic font designed for web applications. -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1050805 - Review Request: glyphicons-halflings-fonts - Precisely prepared monochromatic icons and symbols https://bugzilla.redhat.com/show_bug.cgi?id=1050805 --------------------------------------------------------------------------------
================================================================================ libevdev-0.6-4.fc20 (FEDORA-2014-4085) Kernel Evdev Device Wrapper Library -------------------------------------------------------------------------------- Update Information:
Backport the SYN_DROPPED fixes from 1.1, the current behaviour is so buggy that we must have these -------------------------------------------------------------------------------- ChangeLog:
* Wed Mar 19 2014 Peter Hutterer peter.hutterer@redhat.com 0.6-4 - Backport the SYN_DROPPED fixes from 1.1, too important not to have --------------------------------------------------------------------------------
================================================================================ lv2-artyfx-plugins-1.1-0.1.20140317git1dc4f00.fc20 (FEDORA-2014-4100) A collection of LV2 RT plugins -------------------------------------------------------------------------------- Update Information:
This 1.1 release of OpenAV's ArtyFx plugins introduces three new effects. Refer to http://openavproductions.com/artyfx/ for details on the new Satma, Kuiza and Della plugins
-------------------------------------------------------------------------------- ChangeLog:
* Wed Mar 19 2014 Brendan Jones brendan.jones.it@gmail.com 1.1-0.1.git - 1.1 Update, new plugins --------------------------------------------------------------------------------
================================================================================ nginx-1.4.7-1.fc20 (FEDORA-2014-4091) A high performance web server and reverse proxy server -------------------------------------------------------------------------------- Update Information:
Update to upstream release 1.4.7. A heap memory buffer overflow was found in the ngx_http_spdy_module, potentially resulting in arbitrary code execution, but this does not affect nginx on Fedora/EPEL. A bug in the "fastcgi_next_upstream" directive was also resolved with this update. * http://nginx.org/en/CHANGES-1.4 -------------------------------------------------------------------------------- ChangeLog:
* Tue Mar 18 2014 Jamie Nguyen jamielinux@fedoraproject.org - 1:1.4.7-1 - update to upstream release 1.4.7 --------------------------------------------------------------------------------
================================================================================ nodejs-async-0.2.10-1.fc20 (FEDORA-2014-4105) Higher-order functions and common patterns for asynchronous code -------------------------------------------------------------------------------- Update Information:
This update resolves an incompatibility when this module is used with IE10 via browserify and resolves some issues with documentation and examples. -------------------------------------------------------------------------------- ChangeLog:
* Tue Mar 18 2014 Zbigniew Jędrzejewski-Szmek zbyszek@in.waw.pl - 0.2.10-1 - update to upstream release 0.2.10 (#1057505) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1057505 - [PATCH] nodejs-async-0.2.10 is available https://bugzilla.redhat.com/show_bug.cgi?id=1057505 --------------------------------------------------------------------------------
================================================================================ openscap-1.0.6-1.fc20 (FEDORA-2014-4086) Set of open source libraries enabling integration of the SCAP line of standards -------------------------------------------------------------------------------- Update Information:
upgrade upgrade -------------------------------------------------------------------------------- ChangeLog:
* Wed Mar 19 2014 Šimon Lukašík slukasik@redhat.com - 1.0.6-1 - upgrade * Fri Mar 14 2014 Šimon Lukašík slukasik@redhat.com - 1.0.5-1 - upgrade --------------------------------------------------------------------------------
================================================================================ python-pthreading-0.1.3-0.fc20 (FEDORA-2014-4102) Re-implement threading.Lock, RLock and Condition with libpthread -------------------------------------------------------------------------------- Update Information:
Monkeypatch python's thread.allocate_lock -------------------------------------------------------------------------------- ChangeLog:
* Tue Mar 18 2014 Douglas Schilling Landgraf dougsland@redhat.com - 0.1.3-0 - Monkeypatch python's thread.allocate_lock -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1060749 - Mock python thread.allocate_lock with pthreading Lock https://bugzilla.redhat.com/show_bug.cgi?id=1060749 --------------------------------------------------------------------------------
================================================================================ thunderbird-24.4.0-1.fc20 (FEDORA-2014-4106) Mozilla Thunderbird mail/newsgroup client -------------------------------------------------------------------------------- Update Information:
New upstream version - Firefox 28.0, Thunderbird 24.4.0.
It needs a new nspr-4.10.4 package, so please give karma to those updates:
https://admin.fedoraproject.org/updates/FEDORA-2014-4071/nspr-4.10.4-1.fc19 https://admin.fedoraproject.org/updates/FEDORA-2014-4067/nspr-4.10.4-1.fc20
Thanks! -------------------------------------------------------------------------------- ChangeLog:
* Tue Mar 18 2014 Jan Horak jhorak@redhat.com - 24.4.0-1 - Update to 24.4.0 --------------------------------------------------------------------------------
================================================================================ xorg-x11-drv-wacom-0.23.0-5.fc20 (FEDORA-2014-4092) Xorg X11 wacom input driver -------------------------------------------------------------------------------- Update Information:
Use custom wacom inputattach tool -------------------------------------------------------------------------------- ChangeLog:
* Wed Mar 19 2014 Peter Hutterer peter.hutterer@redhat.com 0.23.0-5 - Use custom wacom inputattach tool (#1046912) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1046912 - Serial wacom tablet not recognized (systemd) https://bugzilla.redhat.com/show_bug.cgi?id=1046912 --------------------------------------------------------------------------------
================================================================================ xtv-1.0-1.fc20 (FEDORA-2014-4096) A file manager for the Linux console/xterm -------------------------------------------------------------------------------- Update Information:
The XTree View (XTV) is a file manager which is run under the Linux console/xterm. It provides an easy way to manage files/directories, and perform various operations on them by using menus and keyboard shortcuts. -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1052040 - Review Request: xtv - A file manager for the Linux console/xterm https://bugzilla.redhat.com/show_bug.cgi?id=1052040 --------------------------------------------------------------------------------