[SECURITY] Fedora 17 Update: kde-workspace-4.10.5-3.fc17
updates at fedoraproject.org
updates at fedoraproject.org
Tue Jul 30 17:40:43 UTC 2013
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2013-13499
2013-07-24 01:32:53
--------------------------------------------------------------------------------
Name : kde-workspace
Product : Fedora 17
Version : 4.10.5
Release : 3.fc17
URL : https://projects.kde.org/projects/kde/kde-workspace
Summary : KDE Workspace
Description :
The KDE Workspace consists of what is the desktop of the
KDE Desktop Environment.
This package contains:
* khotkeys (a hotkey daemon)
* klipper (a cut & paste history utility)
* kmenuedit (the menu editor)
* krunner (a command run interface)
* kwin (the window manager of KDE)
* plasma (the KDE desktop, panels and widgets workspace application)
* systemsettings (the configuration editor)
* krandrtray (resize and rotate X screens)
--------------------------------------------------------------------------------
Update Information:
KDE released updates for its Workspaces, Applications, and Development Platform. These updates are the last in a series of monthly stabilization updates to the 4.10 series. 4.10.5 updates bring many bugfixes on top of the latest edition in the 4.10 series and are recommended updates for everyone running 4.10.4 or earlier versions. See also: http://kde.org/announcements/announce-4.10.5.php
Fix for CVE-2013-2126, double-free flaw when handling damaged full-color in Foveon and sRAW files
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jul 11 2013 Rex Dieter <rdieter at fedoraproject.org> - 4.10.5-3
- backport systray icons memleak fix (kde #314919)
- backport potential kcheckpass security issue
* Tue Jul 2 2013 Than Ngo <than at redhat.com> - 4.10.5-2
- drop the rejected KMix memory leak workaround
* Sun Jun 30 2013 Than Ngo <than at redhat.com> - 4.10.5-1
- 4.10.5
* Wed Jun 26 2013 Rex Dieter <rdieter at fedoraproject.org> 4.10.4-6
- kmix: media track change memory leaks with pulseaudio+oxygen widget style (kde#309464, #912457)
* Fri Jun 14 2013 Lukáš Tinkl <ltinkl at redhat.com> - 4.10.4-5
- fix kickoff menu kbd navigation (kdebz#310166)
* Fri Jun 14 2013 Daniel Vrátil <dvratil at redhat.com> - 4.10.4-4
- add upstream patch for #921742
* Thu Jun 13 2013 Martin Briza <mbriza at redhat.com> - 4.10.4-3
- Fix VT numbers on starting a new session (#857366)
* Tue Jun 11 2013 Daniel Vrátil <dvratil at redhat.com> - 4.10.4-2
- backport upstream patch for #921781
* Sat Jun 1 2013 Rex Dieter <rdieter at fedoraproject.org> - 4.10.4-1
- 4.10.4
* Mon May 6 2013 Than Ngo <than at redhat.com> - 4.10.3-1
- 4.10.3
- restore patch omitting broken launchers
* Fri May 3 2013 Rex Dieter <rdieter at fedoraproject.org> - 4.10.2-12
- -DKDE4_ENABLE_FPIE:BOOL=ON
- don't write fonts.conf on load (kde#105797)
* Mon Apr 29 2013 Than Ngo <than at redhat.com> - 4.10.2-11
- drop old patch for aurora
- fix multilib issue
* Mon Apr 29 2013 Martin Briza <mbriza at redhat.com> 4.10.2-10
- changed the systemd-displaymanager patch to switch the sessions using systemd-logind, too
* Thu Apr 25 2013 Martin Briza <mbriza at redhat.com> 4.10.2-9
- regenerated the systemd-displaymanager patch against latest upstream master
- worked around #955374 before I fix it clean upstream
* Wed Apr 24 2013 Rex Dieter <rdieter at fedoraproject.org> 4.10.2-8
- avoid/revert commit to avoid plasma crash on wallpaper change (kde#318806)
* Mon Apr 22 2013 Than Ngo <than at redhat.com> - 4.10.2-7
- fedora/rhel condition
* Sun Apr 21 2013 Rex Dieter <rdieter at fedoraproject.org> 4.10.2-6
- sync to latest 4.10 branch commits
* Thu Apr 18 2013 Rex Dieter <rdieter at fedoraproject.org> 4.10.2-5
- drop LD_BIND_NOW from startkde (#908380)
- fold all startkde-related patches into redhat_startkde.patch
* Thu Apr 11 2013 Daniel Vrátil <dvratil at redhat.com> 4.10.2-4
- clear screenlocker password on ESC (#949452)
* Thu Apr 11 2013 Martin Briza <mbriza at redhat.com> 4.10.2-3
- added basic support for automatic multi-seat in KDM (#884271)
* Tue Apr 9 2013 Rex Dieter <rdieter at fedoraproject.org> 4.10.2-2
- rebase systray_ktp-presence patch for applet rename
* Sun Mar 31 2013 Rex Dieter <rdieter at fedoraproject.org> 4.10.2-1
- 4.10.2
* Sun Mar 24 2013 Rex Dieter <rdieter at fedoraproject.org> 4.10.1-3
- don't apply no_HAL on el6
* Wed Mar 13 2013 Rex Dieter <rdieter at fedoraproject.org> 4.10.1-2
- PowerDevil should use upower to suspend on F17 (#920874)
- other small upstream fixes (xrandrbrightness, login1 leak, stop screensaver)
* Sat Mar 2 2013 Rex Dieter <rdieter at fedoraproject.org> 4.10.1-1
- 4.10.1
* Wed Feb 20 2013 Rex Dieter <rdieter at fedoraproject.org> 4.10.0-11
- python-scriptengine-python: s/Requires: PyKDE4/Requires: pykde4/
* Fri Feb 15 2013 Rex Dieter <rdieter at fedoraproject.org> 4.10.0-10
- respin BUILD_KCM_RANDR.patch, avoid failure in startkde when krandrstartup doesn't exist
* Fri Feb 15 2013 Rex Dieter <rdieter at fedoraproject.org> 4.10.0-9
- drop solid_krunner_disable patch (seems better now)
* Thu Feb 14 2013 Rex Dieter <rdieter at fedoraproject.org> 4.10.0-8
- kscreen support => disable all of kcontrol/randr (f19+ currently)
* Sat Feb 9 2013 Rex Dieter <rdieter at fedoraproject.org> 4.10.0-7
- fedora-plasma-cache.sh: don't delete Trolltech.conf
* Sat Feb 9 2013 Rex Dieter <rdieter at fedoraproject.org> 4.10.0-6
- tweak fedora-plasma-cache.sh for plasma-svgelements*, Trolltech.conf too
- enable powerdevil-login1 support on f18
* Fri Feb 8 2013 Rex Dieter <rdieter at fedoraproject.org> 4.10.0-5
- fix fedora-plasma-cache.sh (to not exit)
* Thu Feb 7 2013 Lukáš Tinkl <ltinkl at redhat.com> 4.10.0-4
- fix wrong description and size for 2-stage USB storage devices
* Mon Feb 4 2013 Rex Dieter <rdieter at fedoraproject.org> 4.10.0-3
- refresh Powerdevil login1 patch
* Sat Feb 2 2013 Kevin Kofler <Kevin at tigcc.ticalc.org> - 4.10.0-2
- fix kcmdatetimehelper search path so hwclock and zic are found (#906854)
* Thu Jan 31 2013 Rex Dieter <rdieter at fedoraproject.org> - 4.10.0-1
- 4.10.0
* Wed Jan 30 2013 Lukáš Tinkl <ltinkl at redhat.com> 4.9.98-7
- update Powerdevil login1 patch
* Mon Jan 28 2013 Rex Dieter <rdieter at fedoraproject.org> 4.9.98-6
- unconditionally Obsoletes: kded_randrmonitor
* Mon Jan 28 2013 Rex Dieter <rdieter at fedoraproject.org> 4.9.98-5
- Requires: kscreen, Obsoletes: kded_randrmonitor (f19+)
* Mon Jan 28 2013 Rex Dieter <rdieter at fedoraproject.org> 4.9.98-4
- drop Requires: kde-display-management (for now)
- switch fedora-plasma-cache hack to env script
* Fri Jan 25 2013 Rex Dieter <rdieter at fedoraproject.org> 4.9.98-3
- add fedora-plasma-cache kconf_update script
* Tue Jan 22 2013 Rex Dieter <rdieter at fedoraproject.org> 4.9.98-2
- respin systemd_login1 patch
* Sun Jan 20 2013 Rex Dieter <rdieter at fedoraproject.org> - 4.9.98-1
- 4.9.98
* Fri Jan 18 2013 Adam Tkac <atkac redhat com> - 4.9.97-6
- rebuild due to "jpeg8-ABI" feature drop
* Mon Jan 14 2013 Rex Dieter <rdieter at fedoraproject.org> 4.9.97-5
- refresh powerdevil_systemd_login1 patch (kde review#108407)
* Mon Jan 14 2013 Rex Dieter <rdieter at fedoraproject.org> 4.9.97-4
- proper powerdevil systemd-login1 support (kde review#108407)
* Thu Jan 10 2013 Rex Dieter <rdieter at fedoraproject.org> 4.9.97-3
- hack to use org.freedesktop.login1 to handle suspend (instead of upower),
seems to help avoid double-sleep (#859227)
* Wed Jan 9 2013 Rex Dieter <rdieter at fedoraproject.org> 4.9.97-2
- kded_xrandrmonitor subpkg, to allow use of it or kscreen
* Fri Jan 4 2013 Rex Dieter <rdieter at fedoraproject.org> - 4.9.97-1
- 4.9.97
* Thu Dec 20 2012 Rex Dieter <rdieter at fedoraproject.org> - 4.9.95-1
- 4.9.95
* Thu Dec 6 2012 Martin Briza <mbriza at redhat.com> 4.9.90-2
- Merged and cleaned the systemd shutdown and logout patches.
- It is possible to use systemd and/or CK without defining it at compile time
* Mon Dec 3 2012 Rex Dieter <rdieter at fedoraproject.org> 4.9.90-1
- 4.9.90 (4.10 beta2)
* Mon Dec 3 2012 Than Ngo <than at redhat.com> - 4.9.4-1
- 4.9.4
* Fri Nov 16 2012 Martin Briza <mbriza at redhat.com> - 4.9.3-3
- user switching dialog now doesn't list inactive (closing) sessions and more information is retrieved from logind
* Thu Nov 15 2012 Rex Dieter <rdieter at fedoraproject.org> - 4.9.3-2
- pull upstream fix for some regressions (krunner, analog clock)
- drop unused llvm_whitelist patch
* Fri Nov 2 2012 Rex Dieter <rdieter at fedoraproject.org> 4.9.3-1
- 4.9.3
* Fri Nov 2 2012 Than Ngo <than at redhat.com> - 4.9.2-10
- rhel/fedora condition
* Thu Nov 1 2012 Lukáš Tinkl<ltinkl at redhat.com> 4.9.2-9
- build against prison only under Fedora
* Tue Oct 30 2012 Rex Dieter <rdieter at fedoraproject.org> 4.9.2-8
- more systemd_inhibit love (#859227, kde#307412)
* Fri Oct 26 2012 Rex Dieter <rdieter at fedoraproject.org> 4.9.2-7
- rework fontconfig patch to ensure $XDG_CONFIG_HOME/fontconfig exists
* Thu Oct 18 2012 Rex Dieter <rdieter at fedoraproject.org> 4.9.2-6
- monitor sleep settings reset, resulting in monitor turning off (kde#295164)
* Mon Oct 8 2012 Martin Briza <mbriza at redhat.com> 4.9.2-5
- Fixing user switching with SystemD (#859347), for LightDM
* Thu Oct 4 2012 Rex Dieter <rdieter at fedoraproject.org> 4.9.2-4
- ongoing systemd_inhibit work (#859227)
* Mon Oct 1 2012 Rex Dieter <rdieter at fedoraproject.org> 4.9.2-3
- tarball respin (includes plasma/python2 patch)
* Mon Oct 1 2012 Lukáš Tinkl <ltinkl at redhat.com> - 4.9.2-2
- fix loading of Python2 plasmoids
* Fri Sep 28 2012 Rex Dieter <rdieter at fedoraproject.org> - 4.9.2-1
- 4.9.2
* Thu Sep 27 2012 Rex Dieter <rdieter at fedoraproject.org> 4.9.1-7
- disable plasma-runner-solid by default (kde#307445)
* Fri Sep 21 2012 Lukáš Tinkl <ltinkl at redhat.com> 4.9.1-6
- update the systemd PowerDevil Policy Agent patch to match the upstream
version (part of KDE 4.9.2)
- update clock applets on system date/time changes
* Tue Sep 18 2012 Lukáš Tinkl <ltinkl at redhat.com> 4.9.1-5
- fix device notifier Free Space meter
* Thu Sep 13 2012 Lukáš Tinkl <ltinkl at redhat.com> 4.9.1-4
- hopefully also solve the screen dimming issue when inactive session goes idle
* Thu Sep 13 2012 Lukáš Tinkl <ltinkl at redhat.com> 4.9.1-3
- Resolves #849334 - screen lock failure (laptop lid)
* Wed Sep 5 2012 Rex Dieter <rdieter at fedoraproject.org> 4.9.1-2
- upstream patch for kwin regression (kde#306260, kde#306275)
* Mon Sep 3 2012 Than Ngo <than at redhat.com> - 4.9.1-1
- 4.9.1
* Mon Aug 27 2012 Lukáš Tinkl <ltinkl at redhat.com> 4.9.0-6
- Resolves #851887 - KDE Logout does not Suspend to RAM/Disk
* Tue Aug 21 2012 Rex Dieter <rdieter at fedoraproject.org> 4.9.0-5
- Add apper to default kickoff favorites (#850445)
* Thu Aug 9 2012 Rex Dieter <rdieter at fedoraproject.org> 4.9.0-4
- upstream patch for aurora/qml-based kwin decorations
* Tue Aug 7 2012 Rex Dieter <rdieter at fedoraproject.org> 4.9.0-3
- window keeps status 'asking for attention' after gaining focus (kde#303208)
* Fri Aug 3 2012 Rex Dieter <rdieter at fedoraproject.org> 4.9.0-2
- kcm_fonts should use $XDG_CONFIG_HOME/fontconfig/fonts.conf for storage settings for fontconfig > 2.10.0 (kde#304317)
* Thu Jul 26 2012 Lukas Tinkl <ltinkl at redhat.com> - 4.9.0-1
- 4.9.0
* Thu Jul 19 2012 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 4.8.97-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild
* Thu Jul 12 2012 Than Ngo <than at redhat.com> - 4.8.97-2
- remove obsolete stuffs in startkde, kde-4.6.x already uses QLocale
to try obtain a default country.
* Wed Jul 11 2012 Rex Dieter <rdieter at fedoraproject.org> - 4.8.97-1
- 4.8.97
* Tue Jul 10 2012 Rex Dieter <rdieter at fedoraproject.org> 4.8.95-4
- fix tooltip for OpticalDisc
* Mon Jul 9 2012 Rex Dieter <rdieter at fedoraproject.org> 4.8.95-3
- Battery Monitor widget stops tracking charging state changes after suspend/resume cycle (#837345, kde#287952)
* Tue Jul 3 2012 Rex Dieter <rdieter at fedoraproject.org> 4.8.95-2
- restore stable kdecoration API to 4.8 (#831958, kde#301728)
* Wed Jun 27 2012 Jaroslav Reznik <jreznik at redhat.com> - 4.8.95-1
- 4.8.95
- remove battery size patch
* Mon Jun 25 2012 Rex Dieter <rdieter at fedoraproject.org> 4.8.90-3
- Requires: konsole
* Tue Jun 19 2012 Rex Dieter <rdieter at fedoraproject.org> 4.8.90-2
- battery plasmoid icon does not scale below a certain size (kde#301877)
* Sat Jun 9 2012 Rex Dieter <rdieter at fedoraproject.org> - 4.8.90-1
- 4.8.90
* Fri Jun 1 2012 Jaroslav Reznik <jreznik at redhat.com> 4.8.80-4
- respin
- remove kwin check opengl patch
* Tue May 29 2012 Rex Dieter <rdieter at fedoraproject.org> 4.8.80-3
- Provides: plasma4(scriptengine-declarativescript)
* Sat May 26 2012 Kevin Kofler <Kevin at tigcc.ticalc.org> - 4.8.80-2
- new showremainingtime patch, now just defaults the option to true
(It doesn't have ugly side effects anymore with the rewritten plasmoid.)
* Sat May 26 2012 Jaroslav Reznik <jreznik at redhat.com> - 4.8.80-1
- 4.8.80
- remove remaining time patch, should be enabled in kde-settings
* Tue May 8 2012 Than Ngo <than at redhat.com> - 4.8.3-4
- add rhel/fedora conditions
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #970713 - CVE-2013-2126 LibRaw: double-free flaw when handling damaged full-color in Foveon and sRAW files [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=970713
--------------------------------------------------------------------------------
This update can be installed with the "yum" update program. Use
su -c 'yum update kde-workspace' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
More information about the package-announce
mailing list