Fedora 20 updates-testing report
updates at fedoraproject.org
updates at fedoraproject.org
Tue Dec 3 18:24:10 UTC 2013
The following Fedora 20 Security updates need testing:
Age URL
46 https://admin.fedoraproject.org/updates/FEDORA-2013-19198/quassel-0.9.1-1.fc20
39 https://admin.fedoraproject.org/updates/FEDORA-2013-19934/openstack-glance-2013.2-2.fc20
34 https://admin.fedoraproject.org/updates/FEDORA-2013-19507/openstack-keystone-2013.2-2.fc20
9 https://admin.fedoraproject.org/updates/FEDORA-2013-22042/varnish-3.0.4-2.fc20
7 https://admin.fedoraproject.org/updates/FEDORA-2013-22130/chicken-4.8.0.5-1.fc20
6 https://admin.fedoraproject.org/updates/FEDORA-2013-22267/xen-4.3.1-4.fc20
4 https://admin.fedoraproject.org/updates/FEDORA-2013-22396/ganglia-3.6.0-3.fc20
4 https://admin.fedoraproject.org/updates/FEDORA-2013-22377/seamonkey-2.22.1-1.fc20
4 https://admin.fedoraproject.org/updates/FEDORA-2013-22352/drupal6-6.29-1.fc20
4 https://admin.fedoraproject.org/updates/FEDORA-2013-22393/ruby-2.0.0.353-16.fc20
0 https://admin.fedoraproject.org/updates/FEDORA-2013-22652/xdialog-2.3.1-13.fc20
0 https://admin.fedoraproject.org/updates/FEDORA-2013-22667/openstack-nova-2013.2-4.fc20
0 https://admin.fedoraproject.org/updates/FEDORA-2013-22644/python-keyring-3.3-1.fc20
0 https://admin.fedoraproject.org/updates/FEDORA-2013-22557/nbd-3.5-1.fc20
0 https://admin.fedoraproject.org/updates/FEDORA-2013-22586/python-django-horizon-2013.2-4.fc20
0 https://admin.fedoraproject.org/updates/FEDORA-2013-22565/maradns-2.0.07d-1.fc20
0 https://admin.fedoraproject.org/updates/FEDORA-2013-22575/subversion-1.8.5-2.fc20
0 https://admin.fedoraproject.org/updates/FEDORA-2013-22645/tuxcut-5.0-15.fc20
The following Fedora 20 Critical Path updates have yet to be approved:
Age URL
58 https://admin.fedoraproject.org/updates/FEDORA-2013-18447/createrepo-0.9.9-23.fc20
20 https://admin.fedoraproject.org/updates/FEDORA-2013-21163/libproxy-0.4.11-8.fc20
7 https://admin.fedoraproject.org/updates/FEDORA-2013-22152/btrfs-progs-3.12-1.fc20
6 https://admin.fedoraproject.org/updates/FEDORA-2013-22274/kbd-1.15.5-12.fc20
6 https://admin.fedoraproject.org/updates/FEDORA-2013-22293/lxde-common-0.5.5-0.9.20110328git87c368d7.fc20
4 https://admin.fedoraproject.org/updates/FEDORA-2013-22412/libosinfo-0.2.8-1.fc20
2 https://admin.fedoraproject.org/updates/FEDORA-2013-22527/libbluray-0.4.0-2.fc20
2 https://admin.fedoraproject.org/updates/FEDORA-2013-22535/llvm-3.3-3.fc20
0 https://admin.fedoraproject.org/updates/FEDORA-2013-22638/dnf-0.4.9-1.fc20
0 https://admin.fedoraproject.org/updates/FEDORA-2013-22654/NetworkManager-0.9.9.0-20.git20131003.fc20
0 https://admin.fedoraproject.org/updates/FEDORA-2013-22661/PackageKit-0.8.14-2.fc20
0 https://admin.fedoraproject.org/updates/FEDORA-2013-22646/selinux-policy-3.12.1-106.fc20
0 https://admin.fedoraproject.org/updates/FEDORA-2013-22641/libfm-1.1.3-1.fc20
0 https://admin.fedoraproject.org/updates/FEDORA-2013-22657/kdelibs-4.11.3-3.fc20
0 https://admin.fedoraproject.org/updates/FEDORA-2013-22656/policycoreutils-2.2.2-3.fc20
0 https://admin.fedoraproject.org/updates/FEDORA-2013-22666/anaconda-20.25.13-1.fc20
0 https://admin.fedoraproject.org/updates/FEDORA-2013-22576/less-458-5.fc20
0 https://admin.fedoraproject.org/updates/FEDORA-2013-22570/libdrm-2.4.49-2.fc20
The following builds have been pushed to Fedora 20 updates-testing
NetworkManager-0.9.9.0-20.git20131003.fc20
PackageKit-0.8.14-2.fc20
anaconda-20.25.13-1.fc20
bluefish-2.2.4-4.fc20
cdac-sakal-marathi-fonts-9.21-3.fc20
dnf-0.4.9-1.fc20
docker-registry-0.6.0-3.fc20
golang-googlecode-tools-0-0.3.hg17c8fe23290a.fc20
gromacs-4.6.5-1.fc20
hg-git-0.4.0-4.fc20
javolution-5.5.1-0.4.fc20
jdo-api-3.1-0.3.rc1.fc20
kdelibs-4.11.3-3.fc20
kexec-tools-2.0.4-14.fc20
latexmk-4.39-1.fc20
libfm-1.1.3-1.fc20
mingw-glibmm24-2.38.1-1.fc20
mingw-libxml++-2.37.1-1.fc20
mingw-qwt-6.1.0-1.fc20
monitorix-3.4.0-1.fc20
openlmi-tools-0.9-8.fc20
openstack-nova-2013.2-4.fc20
openstack-packstack-2013.2.1-0.17.dev876.fc20
pdfbox-1.8.3-1.fc20
perl-Date-Manip-6.42-1.fc20
policycoreutils-2.2.2-3.fc20
python-django-extensions-1.2.5-1.fc20
python-keyring-3.3-1.fc20
remmina-1.0.0-9.fc20
rtpproxy-1.2.1-14.git2121113.fc20
selinux-policy-3.12.1-106.fc20
sugar-pippy-53-1.fc20
tuxcut-5.0-15.fc20
uboot-tools-2013.10-3.fc20
undbx-0.21-1.fc20
vdsm-4.13.0-11.fc20
xdialog-2.3.1-13.fc20
xinetd-2.3.15-10.fc20
Details about builds:
================================================================================
NetworkManager-0.9.9.0-20.git20131003.fc20 (FEDORA-2013-22654)
Network connection manager and user applications
--------------------------------------------------------------------------------
Update Information:
Fixes a problem with some OpenVPN configurations
--------------------------------------------------------------------------------
ChangeLog:
* Mon Dec 2 2013 Dan Winship <danw at redhat.com> - 0.9.9.0-20.git20131003
- core: Fix PtP/peer address support, for OpenVPN (rh #1018317)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1018317 - Network Manager can't connect to OpenVPN network in F20
https://bugzilla.redhat.com/show_bug.cgi?id=1018317
--------------------------------------------------------------------------------
================================================================================
PackageKit-0.8.14-2.fc20 (FEDORA-2013-22661)
Package management service
--------------------------------------------------------------------------------
Update Information:
Backport a patch from master to fix a crash when getting package history
- New upstream release
- Cache the loaded hawkey sacks to save 280ms for repeat transactions
- Deprecate service packs, catalogs and messages
- Do not check processes when updating as this is racy
- Do not hardcode x86_64 as the native architecture for hawkey
- Many daemon speedups for common operations
- Remove PmUtils script helper as pm-utils is dead upstream
- Remove quite a few config options that didn't make sense
- Remove the Udev firmware loading functionality as it's removed from systemd
- Remove the zif backend as nearly all functionality is available in hawkey
- Speed up common operations in libpackagekit-glib
- Own /usr/lib/packageKit-plugins
- Show some text progress when the offline update is going on
--------------------------------------------------------------------------------
ChangeLog:
* Tue Dec 3 2013 Richard Hughes <rhughes at redhat.com> - 0.8.14-2
- Backport a patch from master to fix a crash when getting package history
- Resolves: #1036837
* Mon Dec 2 2013 Richard Hughes <rhughes at redhat.com> - 0.8.14-1
- New upstream release
- Cache the loaded hawkey sacks to save 280ms for repeat transactions
- Deprecate service packs, catalogs and messages
- Do not check processes when updating as this is racy
- Do not hardcode x86_64 as the native architecture for hawkey
- Many daemon speedups for common operations
- Remove PmUtils script helper as pm-utils is dead upstream
- Remove quite a few config options that didn't make sense
- Remove the Udev firmware loading functionality as it's removed from systemd
- Remove the zif backend as nearly all functionality is available in hawkey
- Speed up common operations in lipackagekit-glib
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1036837 - PackageKit crash using gnome-software
https://bugzilla.redhat.com/show_bug.cgi?id=1036837
--------------------------------------------------------------------------------
================================================================================
anaconda-20.25.13-1.fc20 (FEDORA-2013-22666)
Graphical system installer
--------------------------------------------------------------------------------
Update Information:
A couple small fixes for final release.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Dec 2 2013 Brian C. Lane <bcl at redhat.com> - 20.25.13-1
- Don't try to investigate empty string for unicode chars (#1035799) (vpodzime)
- Do not write out the vconsole.keymap boot option (#1035316) (vpodzime)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1035799 - f20 tc3, adding a new mount point, desired capacity empty, crash
https://bugzilla.redhat.com/show_bug.cgi?id=1035799
[ 2 ] Bug #1035316 - anaconda should not write the vconsole.keymap=... boot option
https://bugzilla.redhat.com/show_bug.cgi?id=1035316
--------------------------------------------------------------------------------
================================================================================
bluefish-2.2.4-4.fc20 (FEDORA-2013-22648)
GTK2 web development application for experienced users
--------------------------------------------------------------------------------
Update Information:
This update fixes a syntax highlighting issue, and includes a new javascript minifier implementation that will be used in bluefish 2.2.5.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Dec 2 2013 Paul Howarth <paul at city-fan.org> - 2.2.4-4
- Replace v8 jsmin implementation (which doesn't work with bluefish) with an
MIT-licensed version that will be in bluefish 2.2.5
- Add upstream fix for syntax highlighting problem (#983902, Gnome Bug #704108)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #983902 - Syntax highlighting broken
https://bugzilla.redhat.com/show_bug.cgi?id=983902
--------------------------------------------------------------------------------
================================================================================
cdac-sakal-marathi-fonts-9.21-3.fc20 (FEDORA-2013-22633)
Marathi language font from CDAC
--------------------------------------------------------------------------------
Update Information:
This is a new package providing Open type font for Marathi language.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1031569 - Review Request: cdac-sakal-marathi-fonts - Marathi language font from CDAC
https://bugzilla.redhat.com/show_bug.cgi?id=1031569
--------------------------------------------------------------------------------
================================================================================
dnf-0.4.9-1.fc20 (FEDORA-2013-22638)
Package manager forked from Yum, using libsolv as a dependency resolver
--------------------------------------------------------------------------------
Update Information:
Here.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Dec 3 2013 Aleš Kozumplík <ales at redhat.com> - 0.4.9-1
- doc: api: initiali version of the plugin interface. (Ales Kozumplik)
- doc: api: logging. (Ales Kozumplik)
- doc: api: Base.reset() (Ales Kozumplik)
- remove: conf.keepcache option. (Ales Kozumplik)
- plugins: loading from the CLI. (Ales Kozumplik)
- plugins: test plugin loading (Ales Kozumplik)
- plugins: basic plugins loading and running. (Ales Kozumplik)
- cli: commands: state whether the command might try to modify rpmdb. (Ales Kozumplik)
- remove: dnf.yum.plugins and all references. (Ales Kozumplik)
- doc: update the --allowerasing comment. (Ales Kozumplik)
- doc: Document packages replacement command. (Radek Holy)
- Work around a bug in NamedTemporaryFile(). (RhBug:1036116) (Zdenek Pavlas)
- remove: dnf.yum.constants (Radek Holy)
- Add --allowerasing flag option (RhBug:963137) (Radek Holy)
- remove: dnf.yum.packages.PackageObject (Radek Holy)
- remove: dnf.yum.packages.FakeSack (Radek Holy)
- remove: dnf.yum.packages.FakeRepository (Radek Holy)
- reduce usage of dnf.yum.constants. (Ales Kozumplik)
- remove: bunch of old, unused Base() methods. (Ales Kozumplik)
- Set "history" reason to packages installed during undos. (Radek Holy)
- test_localPkg: test also remote packages (Zdenek Pavlas)
- remove: Package.localpath. (Ales Kozumplik)
- po.localPkg(): return the right localpath. (RhBug:1034607) (Zdenek Pavlas)
- cli: fix grammar of some sentences. (Ales Kozumplik)
- tests: cosmetic: order packages in .repo files by name. (Ales Kozumplik)
- Add "history userinstalled" command (RhBug:884615) (Radek Holy)
- Support printing of package names. (Radek Holy)
- Support iteration over packages installed by the user. (Radek Holy)
- tests: Make tests independent of locale settings. (Radek Holy)
- refactor: Do not give package-marking exceptions long messages. (Radek Holy)
- remove: Do not give package-marking exceptions translated messages. (Radek Holy)
- refactor: Raise/catch proper exceptions in/by package-marking methods. (Radek Holy)
- doc: clarify 'Specifying Transaction' a bit. (Ales Kozumplik)
- doc: api: document marking packages for transactions in Base. (Ales Kozumplik)
- rename: Base.update*() -> Base.upgrade*() (Ales Kozumplik)
- fixed JSON decode error in persistor.py (RhBug:1032455) (Jan Silhan)
- doc: api: Base.read_all_repos() (Ales Kozumplik)
- remove: conf.config_file_age and repo.repo_config_age. (Ales Kozumplik)
- history: fix tests in py3. (Ales Kozumplik)
- tests: Remove unneeded test of HistoryCommand.doCheck. (Radek Holy)
- doc: Use imperative mood in documentation of the undo command. (Radek Holy)
- Enable the "history rollback" command (RhBug:991038) (Radek Holy)
- remove: force from history rollback command. (Radek Holy)
- Add history-rollback-specific transaction check error output. (Radek Holy)
- Fix AttributeError raised when BaseCli.history_rollback_transaction called. (Radek Holy)
- refactor: Move the content of HistoryCommand._hcmd_rollback to BaseCli.history_rollback_transaction. (Radek Holy)
- refactor: Rename Base.history_undo to Base.history_undo_operations. (Radek Holy)
- refactor: Move the content of HistoryCommand._hcmd_undo to BaseCli.history_undo_transaction. (Radek Holy)
- refactor: Move obsoleted packages handling within Base.history_undo. (Radek Holy)
- refactor: Rename functions in Base.history_undo. (Radek Holy)
- Return history of a transaction in the new container. (Radek Holy)
- Remove unneeded sack parameter from open_history. (Radek Holy)
- Add container of operations on packages by their NEVRAs. (Radek Holy)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #884615 - RFE: Provide list of packages installed on top of the system
https://bugzilla.redhat.com/show_bug.cgi?id=884615
[ 2 ] Bug #963137 - [rfe] perform complex packaging operations as a CLI user
https://bugzilla.redhat.com/show_bug.cgi?id=963137
[ 3 ] Bug #991038 - lacks history rollback
https://bugzilla.redhat.com/show_bug.cgi?id=991038
[ 4 ] Bug #1032455 - [abrt] dnf-0.4.7-1.fc20: decoder.py:383:raw_decode:ValueError: No JSON object could be decoded
https://bugzilla.redhat.com/show_bug.cgi?id=1032455
[ 5 ] Bug #1034607 - dnf does not work with media repo
https://bugzilla.redhat.com/show_bug.cgi?id=1034607
[ 6 ] Bug #1036116 - dnf install failed with exception
https://bugzilla.redhat.com/show_bug.cgi?id=1036116
--------------------------------------------------------------------------------
================================================================================
docker-registry-0.6.0-3.fc20 (FEDORA-2013-22659)
Registry server for Docker
--------------------------------------------------------------------------------
Update Information:
Added EPEL support
Initial packaging
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1032670 - Review Request: docker-registry - Registry server for Docker
https://bugzilla.redhat.com/show_bug.cgi?id=1032670
--------------------------------------------------------------------------------
================================================================================
golang-googlecode-tools-0-0.3.hg17c8fe23290a.fc20 (FEDORA-2013-22647)
Supplementary tools and packages for Go
--------------------------------------------------------------------------------
Update Information:
initial release of go.tools package
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1029068 - Review Request: golang-googlecode-tools - Supplementary tools and packages for Go
https://bugzilla.redhat.com/show_bug.cgi?id=1029068
--------------------------------------------------------------------------------
================================================================================
gromacs-4.6.5-1.fc20 (FEDORA-2013-22636)
Fast, Free and Flexible Molecular Dynamics
--------------------------------------------------------------------------------
Update Information:
Update to 4.6.5. See changelog at http://www.gromacs.org/About_Gromacs/Release_Notes/Versions_4.6.x .
--------------------------------------------------------------------------------
ChangeLog:
* Tue Dec 3 2013 Susi Lehtola <jussilehtola at fedoraproject.org> - 4.6.5-1
- Update to 4.6.5.
* Thu Nov 14 2013 Susi Lehtola <jussilehtola at fedoraproject.org> - 4.6.4-1
- Update to 4.6.4.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #969153 - gromacs-4.6.5 is available
https://bugzilla.redhat.com/show_bug.cgi?id=969153
--------------------------------------------------------------------------------
================================================================================
hg-git-0.4.0-4.fc20 (FEDORA-2013-22642)
Mercurial Plugin for Communicating with Git Servers
--------------------------------------------------------------------------------
Update Information:
Remove aggresive dep workingaround.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Dec 2 2013 Matěj Cepl <mcepl at redhat.com> - 0.4.0-4
- We only need python-ordereddict on EPEL<=6.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1036831 - ordered dict is required only with python <= 2.6 (i.e., only EPEL-6)
https://bugzilla.redhat.com/show_bug.cgi?id=1036831
--------------------------------------------------------------------------------
================================================================================
javolution-5.5.1-0.4.fc20 (FEDORA-2013-22634)
Java Solution for Real-Time and Embedded Systems
--------------------------------------------------------------------------------
Update Information:
A Java library for real-time applications.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1009153 - Review Request: javolution - Real-time Java library
https://bugzilla.redhat.com/show_bug.cgi?id=1009153
--------------------------------------------------------------------------------
================================================================================
jdo-api-3.1-0.3.rc1.fc20 (FEDORA-2013-22643)
JDO 3.1 API
--------------------------------------------------------------------------------
Update Information:
The Java Data Objects (JDO) API is a standard interface based Java model abstraction of persistence, developed as Java Specification Requests (JSR 12 and 243) under the auspices of the Java Community Process. Note that this is the version 3 API.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1011696 - Review Request: jdo-api
https://bugzilla.redhat.com/show_bug.cgi?id=1011696
--------------------------------------------------------------------------------
================================================================================
kdelibs-4.11.3-3.fc20 (FEDORA-2013-22657)
KDE Libraries
--------------------------------------------------------------------------------
Update Information:
Workaround for the referenced ARM blocker.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Dec 2 2013 Than Ngo <than at redhat.com> - 6:4.11.3-3
- add the arm's check in kdelibs
* Mon Dec 2 2013 Than Ngo <than at redhat.com> - 6:4.11.3-2
- add workaround for bz#969524
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #969524 - qml-based systray plasma widgets unclickable on arm
https://bugzilla.redhat.com/show_bug.cgi?id=969524
--------------------------------------------------------------------------------
================================================================================
kexec-tools-2.0.4-14.fc20 (FEDORA-2013-22663)
The kexec/kdump userspace component.
--------------------------------------------------------------------------------
Update Information:
backport two commits from upstream
--------------------------------------------------------------------------------
ChangeLog:
* Tue Dec 3 2013 WANG Chao <chaowang at redhat.com> - 2.0.4-13
- Add rd.memdebug in kdump module
- kdumpctl: Avoid leaking fd to subshell
- makedumpfile: Understand >= v3.11-rc4 dmesg
- makedumpfile, ppc: Support to filter dump for kernels that use CONFIG_SPARSEMEM_VMEMMAP.
* Fri Nov 15 2013 WANG Chao <chaowang at redhat.com> - 2.0.4-13
- makedumpfile: disable mmap()
--------------------------------------------------------------------------------
================================================================================
latexmk-4.39-1.fc20 (FEDORA-2013-22639)
A make-like utility for LaTeX files
--------------------------------------------------------------------------------
Update Information:
Upstream notes on this version:
- Automatic creation of necessary subdirectories of auxdir when needed for writing aux files.
- Add error diagnostics to if_source
- Allow $print_type = 'auto', and make this the default, so that when the -p option to latexmk is used to print the file, the default is to determine the type of file to be printed, rather than always requiring postscript.
- Fix the failures when dealing with directories whose names contained certain special characters in them (notably '[', ']' and space). [Technical issue: these characters had special meaning when previously interpreted as metacharacters in a glob operation.] This gives dependency on Perl's File::Glob module, which is a standard module in normal installations of Perl.
- When an output directory is a subdirectory of a directory, ensure that it is correctly created, if it has to be created. Previously, the creation of the output directory when it does not exist only worked for one level. This gives dependency on Perl's File::Path module with v. >= 2.08, which is a standard module in normal installations of Perl.
- In output of dependencies, include pathname of target file(s) in the rule.
- In -pvc mode, writing of deps file (caused by the -M and related options) is per make not per overall run.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Dec 2 2013 Jerry James <loganjerry at gmail.com> - 4.39-1
- Update to 4.39:
- Automatic creation of subdirectories of auxdir
- Add error diagnostics to if_source
- Allow print_type = 'auto'
- Fix use of directories with names containing perl glob characters
- Ensure that subdirectories are created properly
- In output of dependencies, include pathname of target file(s) in the rule.
- In -pvc mode, writing of deps file is per make not per overall run.
--------------------------------------------------------------------------------
================================================================================
libfm-1.1.3-1.fc20 (FEDORA-2013-22641)
GIO-based library for file manager-like programs
--------------------------------------------------------------------------------
Update Information:
New version 1.1.3 is released.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Dec 3 2013 Mamoru TASAKA <mtasaka at fedoraproject.org> - 1.1.3-1
- 1.1.3
* Mon Nov 11 2013 Christoph Wickert <wickert at kolabsys.com> - 1.1.2.2-3
- Rebuild for new menu-cache 0.5.x
--------------------------------------------------------------------------------
================================================================================
mingw-glibmm24-2.38.1-1.fc20 (FEDORA-2013-22651)
MinGW Windows C++ interface for GTK2 (a GUI library for X)
--------------------------------------------------------------------------------
Update Information:
update to match native version
--------------------------------------------------------------------------------
ChangeLog:
* Tue Dec 3 2013 Thomas Sailer <t.sailer at alumni.ethz.ch> - 2.38.1-1
- update to 2.38.1
--------------------------------------------------------------------------------
================================================================================
mingw-libxml++-2.37.1-1.fc20 (FEDORA-2013-22651)
MinGW Windows C++ wrapper for the libxml2 XML parser library
--------------------------------------------------------------------------------
Update Information:
update to match native version
--------------------------------------------------------------------------------
ChangeLog:
* Tue Dec 3 2013 Thomas Sailer <t.sailer at alumni.ethz.ch> - 2.37.1-1
- Update to 2.37.1
--------------------------------------------------------------------------------
================================================================================
mingw-qwt-6.1.0-1.fc20 (FEDORA-2013-22653)
MinGW Windows Qwt library
--------------------------------------------------------------------------------
Update Information:
update to match native
--------------------------------------------------------------------------------
ChangeLog:
* Tue Dec 3 2013 Thomas Sailer <t.sailer at alumni.ethz.ch> - 6.1.0-1
- update to 6.1.0
--------------------------------------------------------------------------------
================================================================================
monitorix-3.4.0-1.fc20 (FEDORA-2013-22649)
A free, open source, lightweight system monitoring tool
--------------------------------------------------------------------------------
Update Information:
3.4.0 - 02-Dec-2013
====================
- Added a complete statistical Memcached graph. [#27]
- Added support for different BIND stats versions (2 and 3 right now).
(thanks to Ivo Brhel, ivb AT volny.cz)
- Added two new alerts in the 'disk' graph in order to know if a disk drive has
exceeded or reached a threshold for reallocated and pending sectors.
(suggested by Matthew Connelly, maff AT maff.im)
- Added a new option called 'max_historic_years' (with a default value of 1),
which enables the ability to have up to 5 years of data. Beware with this
option because it generates a new '.rrd' file every time the value is
extended, losing the current historical data.
(suggested by Mohan Reddy, Mohan.Reddy AT analog.com)
- Improved the regexp when collecting data from devices's interrupts which also
fixes some annoying messages on using non-numeric arguments.
- Added support for the Pure-FTPd logs in the 'serv' and 'ftp' graphs.
- Added the new configuration option 'https_url'. [#31]
- Fixed error messages about use of uninitialized values in 'system' graph on
BSD systems.
- Fixed error messages about not numeric argument in addition in 'fs' graph on
BSD systems.
- Fixed in 'emailreports' to use the command line 'hostname' if the variable
$ENV{HOSTNAME} is not defined (Debian/Ubuntu and perhaps other systems).
(thanks to Skibbi, skibbi AT gmail.com for pointing this out)
- Fixed the error message 'String ends after the = sign on CDEF:allvalues=' in
the 'int' graph (the Interrupts graph is pending to have a complete rewrite).
- Fixed the 'int' graph in order to be more compatible with Raspberry Pi.
- Fixed in 'bind.pm' to store a 0 value if threads are disabled. [#29]
- Fixed to correctly sent images in graphs 'proc', 'port' and 'fail2ban' when
using emailreports.
(thanks to Bénoît Segond von Banchet,
bjm.segondvonbanchet AT telfort.nl for pointing this out)
- Fixed to show the real hostname in the emailreports.
- Fixed the 'int' graph in order to be compatible with Excito B3 product.
(thanks to Patrick Fallberg, patrick AT fallberg.net for pointing this out)
- Fixed to correctly sanitize the input string in the built-in HTTP server
which led into a number of security vulnerabilities. [#30]
- Fixed the lack of minimum definition in some data sources of 'bind' graph.
(thanks to Andreas Itzchak Rehberg, izzy AT qumran.org for pointing this out)
- Fixed a fail to adequately sanitize request strings of malicious JavaScript.
[#30]
(thanks to Jacob Amey, jamey AT securityinspection.com for pointing this out)
- Fixed a typo in monitorix.service. [#32]
- Fixed the requests value in the 'nginx' graph. Now it honours the label to
show the value per second, instead of per minute.
(thanks to Martin Culak, culak AT firma.azet.sk for pointing this out)
- Small fixes and typos.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Dec 3 2013 Christopher Meng <rpm at cicku.me> - 3.4.0-1
- Update to 3.4.0
* Sat Nov 23 2013 Christopher Meng <rpm at cicku.me> - 3.3.1-1
- Urgent security update.
--------------------------------------------------------------------------------
================================================================================
openlmi-tools-0.9-8.fc20 (FEDORA-2013-22650)
Set of CLI tools for Openlmi providers
--------------------------------------------------------------------------------
Update Information:
fixed LMIShell naming
fixed interactive connect(), when -i option present
fix missing log messages in connect()
fix instance comparision
fix passing method params
- fix instance deletion
- fix passing LMIInstance argumetns to method calls
Upgrade to v0.9.
fix instance comparision
fix passing method params
- fix instance deletion
- fix passing LMIInstance argumetns to method calls
Upgrade to v0.9.
fix missing log messages in connect()
fix instance comparision
fix passing method params
- fix instance deletion
- fix passing LMIInstance argumetns to method calls
Upgrade to v0.9.
fix instance comparision
fix passing method params
- fix instance deletion
- fix passing LMIInstance argumetns to method calls
Upgrade to v0.9.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Dec 3 2013 Peter Hatina <phatina at redhat.com> - 0.9-8
- fix interactive connect when run with -i
* Tue Dec 3 2013 Peter Hatina <phatina at redhat.com> - 0.9-7
- unify LMIShell naming
* Mon Dec 2 2013 Peter Hatina <phatina at redhat.com> - 0.9-6
- fix missing log messages in connect()
* Wed Nov 20 2013 Peter Hatina <phatina at redhat.com> - 0.9-5
- fix passing method params
* Wed Nov 20 2013 Peter Hatina <phatina at redhat.com> - 0.9-4
- fix instance comparision
* Wed Nov 6 2013 Peter Hatina <phatina at redhat.com> - 0.9-3
- fix passing instance references to method call
* Wed Nov 6 2013 Peter Hatina <phatina at redhat.com> - 0.9-2
- fix instance deletion
* Mon Nov 4 2013 Peter Hatina <phatina at redhat.com> - 0.9-1
- upgrade to v0.9
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1035693 - lmishell does not return success or error status message when connecting to CIMOM
https://bugzilla.redhat.com/show_bug.cgi?id=1035693
--------------------------------------------------------------------------------
================================================================================
openstack-nova-2013.2-4.fc20 (FEDORA-2013-22667)
OpenStack Compute (nova)
--------------------------------------------------------------------------------
Update Information:
* Ensure we don't boot oversized images (CVE-2013-4463 and CVE-2013-2096)
* Require ipmitool for baremetal driver (#1022243)
* Remove cert and scheduler hard dependency on cinderclient (#1031679)
--------------------------------------------------------------------------------
ChangeLog:
* Tue Dec 3 2013 Xavier Queralt <xqueralt at redhat.com> - 2013.2-4
- Fix the CVE number references from the latest change
* Mon Nov 18 2013 Xavier Queralt <xqueralt at redhat.com> - 2013.2-3
- Remove cert and scheduler hard dependency on cinderclient - rhbz#1031679
- Require ipmitool for baremetal driver - rhbz#1022243
- Ensure we don't boot oversized images (CVE-2013-4463 and CVE-2013-2096)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1023239 - CVE-2013-4463 OpenStack Nova: Compressed disk image DoS
https://bugzilla.redhat.com/show_bug.cgi?id=1023239
[ 2 ] Bug #1023581 - CVE-2013-4469 OpenStack Nova: Incomplete fix for CVE-2013-2096
https://bugzilla.redhat.com/show_bug.cgi?id=1023581
--------------------------------------------------------------------------------
================================================================================
openstack-packstack-2013.2.1-0.17.dev876.fc20 (FEDORA-2013-22664)
Openstack Install Utility
--------------------------------------------------------------------------------
Update Information:
This build updates puppet-ceilometer module, which was missing in previous build. This build contains several bugfixes. For details please check changelog.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Dec 3 2013 Martin Mágr <mmagr at redhat.com> - 2013.2.1-0.17.dev876
- Add information on location of horizon password (rhbz#1002326)
- Updates puppet-ceilometer module so it won't fails as 2013.2.1-0.16.dev870 do
* Mon Dec 2 2013 Martin Mágr <mmagr at redhat.com> - 2013.2.1-0.16.dev870
- Add information on location of horizon password (rhbz#1002326)
- Make network_vlan_ranges available in GRE setups (rhbz#1006534)
- Include the host's FQDN in Horizon's ALLOWED_HOSTS (rhbz#1028678)
- Improve error reporting for shell commands (rhbz#1031786)
- Fixed comments for interactive installation (rhbz#1030767)
- Replace qpid_host with qpid_hostname (lp#1242715)
- Make sure iptables are enabled (rhbz#1023955)
- Align packstack templates with ceilometer upstream git repo (rhbz#1022189)
- Add missing options to packstack man page (rhbz#1032103)
- Disable unsupported features in Horizon for RHOS (rhbz#1035651)
* Thu Nov 14 2013 Martin Mágr <mmagr at redhat.com> - 2013.2.1-0.15.dev847
- Use packstack fork of puppet-keystone (rhbz#1022686)
* Wed Nov 13 2013 Martin Mágr <mmagr at redhat.com> - 2013.2.1-0.14.dev846
- Module update (rhbz#1026279)
* Mon Nov 4 2013 Martin Mágr <mmagr at redhat.com> - 2013.2.1-0.13.dev840
- Update Horizon submodule to the latest (rhbz#988316)
- Fixes EPEL problem (rhbz#1025437)
* Wed Oct 30 2013 Martin Mágr <mmagr at redhat.com> - 2013.2.1-0.12.dev835
- Ensure horizon SSL is configured when enabled (rhbz#966094)
- Improves EPEL and RDO repo setup (rhbz#974971, rhbz#990642)
- Ensure Nova Network-compatible demo provisioning (lp#1242668)
- Include Logging and Debug info to packstack docs (rhbz#999929)
- Added Swift hash setting (rhbz#1005727)
- Change msg with Exec resource too (rhbz#1022044)
- Added SSL configuration to qpid (rhbz#1022312)
- Fixes Neutron firewall rule creation on wrong host (#1023561)
- Fixed str formating (rhbz#1022580)
- Use rpm -q --whatprovides as a more general check
- Add puppet-certmonger as a submodule
- Exposes tempest uri/branch selection if provision-tempest is y
- Removed Changed-the-settings-for-qpid-0.24.patch
* Thu Oct 17 2013 Martin Mágr <mmagr at redhat.com> - 2013.2.1-0.12.dev806
- Added patches required for Fedora 20
* Thu Oct 17 2013 Martin Mágr <mmagr at redhat.com> - 2013.2.1-0.11.dev806
- Improved logging (lp#1228187)
- Adds error checking when puppet fails internally (rhbz#958587)
- Store iptables in file when testing netns (rhbz#1016773)
- Got rid of create_resources module (rhbz#961049)
- Creates keystonerc_admin for user (rhbz#964005, rhbz#976394)
- Prescript plugin improvement (rhbz#976787, rhbz#967369)
- Enable optional channel when RHSM is used (rhbz#978651)
- Changes error message in certain cases (rhbz#989334, rhbz#1006476, rhbz#1003959)
- Rephrase support message (rhbz#991801)
- Adds support for multihost nova-network (rhbz#1001916)
- Adds Firewall rules for access to OpenStack components (rhbz#1002063)
- Allows overlapping IPs for Neutron (rhbz#1008863)
* Tue Sep 24 2013 Martin Mágr <mmagr at redhat.com> - 2013.2.1-0.10.dev763
- Adds "default-storage-engine=InnoDB" to /etc/my.cnf (#980593)
- Accepts more CLI options (#985361)
- Added GRE support (#1004397)
* Mon Sep 9 2013 Martin Mágr <mmagr at redhat.com> - 2013.2.1-0.9.dev756
- Use python-pymongo for EL distros too (#1006401)
* Mon Sep 9 2013 Martin Mágr <mmagr at redhat.com> - 2013.2.1-0.8.dev754
- Fixed KeyErrors in case VlanManager is not used (#1006214)
* Mon Sep 9 2013 Martin Mágr <mmagr at redhat.com> - 2013.2.1-0.7.dev752
- Cinder fixes
* Mon Sep 9 2013 Martin Mágr <mmagr at redhat.com> - 2013.2.1-0.6.dev749
- Added posibility to change Nova network manager (#915365)
- Support for Ceilometer installation (#967310)
- Support for Heat installation (#967309)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1022189 - Ceilometer have two other services
https://bugzilla.redhat.com/show_bug.cgi?id=1022189
--------------------------------------------------------------------------------
================================================================================
pdfbox-1.8.3-1.fc20 (FEDORA-2013-22631)
Java library for working with PDF documents
--------------------------------------------------------------------------------
Update Information:
- Update to 1.8.3:
This is an incremental bugfix release based on the earlier 1.8.2 release. It contains a couple of fixes and small improvements.
For more details on all fixes included in this release, please refer to the following issues on the PDFBox issue tracker at
https://issues.apache.org/jira/browse/PDFBOX.
Bug Fixes
[PDFBOX-465] - invalid date formats
[PDFBOX-823] - NullPointerException in DateConverter.toISO8601(DateConverter.java:221)
[PDFBOX-837] - Wrong RevisionNumber when disabling all permissions and using 128bit encryption
[PDFBOX-1219] - org.apache.jempbox.impl.DateConverter unable to parse correct date value
[PDFBOX-1342] - Tags not fully preserved when merging PDFs.
[PDFBOX-1412] - NullPointerException when getting fields from a PDF file
[PDFBOX-1564] - Extending COSName to produce PDF/A with correct OutputIntents
[PDFBOX-1576] - StackOverflowError [COSDictionary.toString(COSDictionary.java:1418)]
[PDFBOX-1606] - NonSequentialPDFParser produces garbage text in document info
[PDFBOX-1607] - StringIndexOutOfBoundsException in PDFParser
[PDFBOX-1617] - Null pointer exception
[PDFBOX-1622] - TextNormalize init not thread-safe, may lead to infinite loop
[PDFBOX-1627] - Exception in thread "main" java.lang.NullPointerException
[PDFBOX-1629] - Null PointerException
[PDFBOX-1630] - An interesting Exception error
[PDFBOX-1631] - Group Exception
[PDFBOX-1632] - Exception with validation
[PDFBOX-1633] - DateConverter needs to work
[PDFBOX-1638] - PDCcitt doesn't use color space
[PDFBOX-1639] - Infinite loop with PDFParser used by tika.
[PDFBOX-1643] - Check for missing validation processes does not work properly in Preflight
[PDFBOX-1653] - Fix pdfbox eating up big chunks of memory for identical CID mappings
[PDFBOX-1655] - Wasted work (or incorrect behavior) in PDCIDFontType2Font.readCIDToGIDMapping
[PDFBOX-1657] - glyph contours missing
[PDFBOX-1663] - Hello World using a TrueType font ArrayIndexOutOfBoundsException
[PDFBOX-1674] - Preflight doesn't correctly parse PDF if obj identifier not followed by line terminator
[PDFBOX-1681] - java.lang.IllegalArgumentException: Color parameter outside of expected range: Red
[PDFBOX-1692] - java.lang.OutOfMemoryError: Java heap space
[PDFBOX-1694] - Bug in org.apache.pdfbox.io.Ascii85InputStream
[PDFBOX-1696] - Bug in org.apache.pdfbox.io.Ascii85OutputStream
[PDFBOX-1714] - Merging PDFs results in java.io.IOException: expected='R' actual='0'
[PDFBOX-1719] - NPE while signing PDF - acroform without fields
[PDFBOX-1730] - Image in PDF has extremely different colors when rendered
[PDFBOX-1735] - Convert page pdf to image
[PDFBOX-1737] - Skip whitespaces when resolving a XRef
[PDFBOX-1743] - OutOfMemoryError in fontbox
[PDFBOX-1749] - Out of memory exception when parsing TTF file
[PDFBOX-1753] - The font gets gibbrish when adding a line of text to an existing PDF with a table
[PDFBOX-1758] - Preflight doesn't report Filespec dictionary that refers (indirectly) to an EmbeddedFile entry in some cases
[PDFBOX-1764] - PDFBox takes ages to render page 2 of the attached PDF
[PDFBOX-1768] - cannot build last source code
[PDFBOX-1778] - Rounding issue in generated PDF file
[PDFBOX-1780] - previous revision is damaged after signing
Improvement
[PDFBOX-1213] - Adding style information to the PDF to HTML converter
[PDFBOX-1564] - Extending COSName to produce PDF/A with correct OutputIntents
[PDFBOX-1613] - The ability to inject the time/random component into the COSWriter process to write a PDF document allows some advanced signature creation scenarios where the signature is generated on a separate server that does not hold the full PDF document.
[PDFBOX-1687] - add dispose() in pdfbox\pdmodel\PDPage.convertToImage()
[PDFBOX-1690] - Add description to embedded file
[PDFBOX-1702] - Performance improvement in PDPageContentStream.drawString
[PDFBOX-1744] - Be resilient to PDFs with missing version info
[PDFBOX-1782] - Add getMaxLength() and setMaxLength() methods to PDTextbox
New Feature
[PDFBOX-1054] - DateConverter: allow for external adding of potential date parsing formats
[PDFBOX-1766] - [PATCH] Visible Signature using PDFbox
[PDFBOX-1540] - Add XML output option to preflight
- New pcfi.jar location
--------------------------------------------------------------------------------
ChangeLog:
* Mon Dec 2 2013 Orion Poplawski <orion at cora.nwra.com> - 1.8.3-1
- Update to 1.8.3
- New pcfi.jar location
--------------------------------------------------------------------------------
================================================================================
perl-Date-Manip-6.42-1.fc20 (FEDORA-2013-22662)
Date manipulation routines
--------------------------------------------------------------------------------
Update Information:
This release completes DM6 functional interface with ParseDateFormat() function, it adds support for the Apache date format, it updates zone data to 2013h. It fixes date in delta with a time zone format and it silents a warning when no events were applied.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Dec 3 2013 Petr Pisar <ppisar at redhat.com> - 6.42-1
- 6.42 bump
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1037520 - perl-Date-Manip-6.42 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1037520
--------------------------------------------------------------------------------
================================================================================
policycoreutils-2.2.2-3.fc20 (FEDORA-2013-22656)
SELinux policy core utilities
--------------------------------------------------------------------------------
Update Information:
This update reduces the size of policycoreutils-python by moving out some files that mistakenly wound up in after the 2.2.2-2 changes. This should help return the Fedora 20 desktop live image to its size target - #1000893.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Dec 2 2013 Dan Walsh <dwalsh at redhat.com> - 2.2.2-3
- Mv sepolicy help files to gui
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1000893 - Desktop Live is oversized (larger than 1 GB)
https://bugzilla.redhat.com/show_bug.cgi?id=1000893
--------------------------------------------------------------------------------
================================================================================
python-django-extensions-1.2.5-1.fc20 (FEDORA-2013-22632)
Extensions for Django
--------------------------------------------------------------------------------
Update Information:
New version.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Oct 24 2013 Richard Marko <rmarko at fedoraproject.org> - 1.2.5-1
- New version
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1001129 - python-django-extensions-1.2.5 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1001129
--------------------------------------------------------------------------------
================================================================================
python-keyring-3.3-1.fc20 (FEDORA-2013-22644)
Python 2.x library to store and access passwords safely
--------------------------------------------------------------------------------
Update Information:
=======
CHANGES
=======
---
3.3
---
* Pull request #40: KWallet backend will now honor the ``KDE_FULL_SESSION``
environment variable as found on openSUSE.
-----
3.2.1
-----
* SecretService backend: use a different function to check that the
backend is functional. The default collection may not exist, but
the collection will remain usable in that case.
Also, make the error message more verbose.
Resolves https://bugs.launchpad.net/bugs/1242412.
---
3.2
---
* Issue #120: Invoke KeyringBackend.priority during load_keyring to ensure
that any keyring loaded is actually viable (or raises an informative
exception).
* File keyring:
- Issue #123: fix removing items.
- Correctly escape item name when removing.
- Use with statement when working with files.
* Add a test for removing one item in group.
* Issue #81: Added experimental support for third-party backends. See
`keyring.core._load_library_extensions` for information on supplying
a third-party backend.
---
3.1
---
* All code now runs natively on both Python 2 and Python 3, no 2to3 conversion
is required.
* Testsuite: clean up, and make more use of unittest2 methods.
-----
3.0.5
-----
* Issue #114: Fix logic in pyfs detection.
-----
3.0.4
-----
* Issue #114: Fix detection of pyfs under Mercurial Demand Import.
-----
3.0.3
-----
* Simplified the implementation of ``keyring.core.load_keyring``. It now uses
``__import__`` instead of loading modules explicitly. The ``keyring_path``
parameter to ``load_keyring`` is now deprecated. Callers should instead
ensure their module is available on ``sys.path`` before calling
``load_keyring``. Keyring still honors ``keyring-path``. This change fixes
Issue #113 in which the explicit module loading of keyring modules was
breaking package-relative imports.
-----
3.0.2
-----
* Renamed ``keyring.util.platform`` to ``keyring.util.platform_``. As reported
in Issue #112 and `mercurial_keyring #31
<https://bitbucket.org/Mekk/mercurial_keyring/issue/31>`_ and in `Mercurial
itself <http://bz.selenic.com/show_bug.cgi?id=4029>`_, Mercurial's Demand
Import does not honor ``absolute_import`` directives, so it's not possible
to have a module with the same name as another top-level module. A patch is
in place to fix this issue upstream, but to support older Mercurial
versions, this patch will remain for some time.
-----
3.0.1
-----
* Ensure that modules are actually imported even in Mercurial's Demand Import
environment.
---
3.0
---
* Removed support for Python 2.5.
* Removed names in ``keyring.backend`` moved in 1.1 and previously retained
for compatibilty.
-----
2.1.1
-----
* Restored Python 2.5 compatibility (lost in 2.0).
---
2.1
---
* Issue #10: Added a 'store' attribute to the OS X Keyring, enabling custom
instances of the KeyringBackend to use another store, such as the
'internet' store. For example::
keys = keyring.backends.OS_X.Keyring()
keys.store = 'internet'
keys.set_password(system, user, password)
keys.get_password(system, user)
The default for all instances can be set in the class::
keyring.backends.OS_X.Keyring.store = 'internet'
* GnomeKeyring: fix availability checks, and make sure the warning
message from pygobject is not printed.
* Fixes to GnomeKeyring and SecretService tests.
-----
2.0.3
-----
* Issue #112: Backend viability/priority checks now are more aggressive about
module presence checking, requesting ``__name__`` from imported modules to
force the demand importer to actually attempt the import.
-----
2.0.2
-----
* Issue #111: Windows backend isn't viable on non-Windows platforms.
-----
2.0.1
-----
* Issue #110: Fix issues with ``Windows.RegistryKeyring``.
---
2.0
---
* Prioritized backend support. The primary interface for Keyring backend
classes has been refactored to now emit a 'priority' based on the current
environment (operating system, libraries available, etc). These priorities
provide an indication of the applicability of that backend for the current
environment. Users are still welcome to specify a particular backend in
configuration, but the default behavior should now be to select the most
appropriate backend by default.
-----
1.6.1
-----
* Only include pytest-runner in 'setup requirements' when ptr invocation is
indicated in the command-line (Issue #105).
---
1.6
---
* GNOME Keyring backend:
- Use the same attributes (``username`` / ``service``) as the SecretService
backend uses, allow searching for old ones for compatibility.
- Also set ``application`` attribute.
- Correctly handle all types of errors, not only ``CANCELLED`` and ``NO_MATCH``.
- Avoid printing warnings to stderr when GnomeKeyring is not available.
* Secret Service backend:
- Use a better label for passwords, the same as GNOME Keyring backend uses.
---
1.5
---
* SecretService: allow deleting items created using previous python-keyring
versions.
Before the switch to secretstorage, python-keyring didn't set "application"
attribute. Now in addition to supporting searching for items without that
attribute, python-keyring also supports deleting them.
* Use ``secretstorage.get_default_collection`` if it's available.
On secretstorage 1.0 or later, python-keyring now tries to create the
default collection if it doesn't exist, instead of just raising the error.
* Improvements for tests, including fix for Issue #102.
---
1.4
---
* Switch GnomeKeyring backend to use native libgnome-keyring via
GObject Introspection, not the obsolete python-gnomekeyring module.
---
1.3
---
* Use the `SecretStorage library <https://pypi.python.org/pypi/SecretStorage>`_
to implement the Secret Service backend (instead of using dbus directly).
Now the keyring supports prompting for and deleting passwords. Fixes #69,
#77, and #93.
* Catch `gnomekeyring.IOError` per the issue `reported in Nova client
<https://bugs.launchpad.net/python-novaclient/+bug/1116302>`_.
* Issue #92 Added support for delete_password on Mac OS X Keychain.
-----
1.2.3
-----
* Fix for Encrypted File backend on Python 3.
* Issue #97 Improved support for PyPy.
-----
1.2.2
-----
* Fixed handling situations when user cancels kwallet dialog or denies access
for the app.
-----
1.2.1
-----
* Fix for kwallet delete.
* Fix for OS X backend on Python 3.
* Issue #84: Fix for Google backend on Python 3 (use of raw_input not caught
by 2to3).
---
1.2
---
* Implemented delete_password on most keyrings. Keyring 2.0 will require
delete_password to implement a Keyring. Fixes #79.
-----
1.1.2
-----
* Issue #78: pyfilesystem backend now works on Windows.
-----
1.1.1
-----
* Fixed MANIFEST.in so .rst files are included.
---
1.1
---
This is the last build that will support installation in a pure-distutils
mode. Subsequent releases will require setuptools/distribute to install.
Python 3 installs have always had this requirement (for 2to3 install support),
but starting with the next minor release (1.2+), setuptools will be required.
Additionally, this release has made some substantial refactoring in an
attempt to modularize the backends. An attempt has been made to maintain 100%
backward-compatibility, although if your library does anything fancy with
module structure or clasess, some tweaking may be necessary. The
backward-compatible references will be removed in 2.0, so the 1.1+ releases
represent a transitional implementation which should work with both legacy
and updated module structure.
* Added a console-script 'keyring' invoking the command-line interface.
* Deprecated _ExtensionKeyring.
* Moved PasswordSetError and InitError to an `errors` module (references kept
for backward-compatibility).
* Moved concrete backend implementations into their own modules (references
kept for backward compatibility):
- OSXKeychain -> backends.OS_X.Keyring
- GnomeKeyring -> backends.Gnome.Keyring
- SecretServiceKeyring -> backends.SecretService.Keyring
- KDEKWallet -> backends.kwallet.Keyring
- BasicFileKeyring -> backends.file.BaseKeyring
- CryptedFileKeyring -> backends.file.EncryptedKeyring
- UncryptedFileKeyring -> backends.file.PlaintextKeyring
- Win32CryptoKeyring -> backends.Windows.EncryptedKeyring
- WinVaultKeyring -> backends.Windows.WinVaultKeyring
- Win32CryptoRegistry -> backends.Windows.RegistryKeyring
- select_windows_backend -> backends.Windows.select_windows_backend
- GoogleDocsKeyring -> backends.Google.DocsKeyring
- Credential -> keyring.credentials.Credential
- BaseCredential -> keyring.credentials.SimpleCredential
- EnvironCredential -> keyring.credentials.EnvironCredential
- GoogleEnvironCredential -> backends.Google.EnvironCredential
- BaseKeyczarCrypter -> backends.keyczar.BaseCrypter
- KeyczarCrypter -> backends.keyczar.Crypter
- EnvironKeyczarCrypter -> backends.keyczar.EnvironCrypter
- EnvironGoogleDocsKeyring -> backends.Google.KeyczarDocsKeyring
- BasicPyfilesystemKeyring -> backends.pyfs.BasicKeyring
- UnencryptedPyfilesystemKeyring -> backends.pyfs.PlaintextKeyring
- EncryptedPyfilesystemKeyring -> backends.pyfs.EncryptedKeyring
- EnvironEncryptedPyfilesystemKeyring -> backends.pyfs.KeyczarKeyring
- MultipartKeyringWrapper -> backends.multi.MultipartKeyringWrapper
* Officially require Python 2.5 or greater (although unofficially, this
requirement has been in place since 0.10).
---
1.0
---
This backward-incompatible release attempts to remove some cruft from the
codebase that's accumulated over the versions.
* Removed legacy file relocation support. `keyring` no longer supports loading
configuration or file-based backends from ~. If upgrading from 0.8 or later,
the files should already have been migrated to their new proper locations.
If upgrading from 0.7.x or earlier, the files will have to be migrated
manually.
* Removed CryptedFileKeyring migration support. To maintain an existing
CryptedFileKeyring, one must first upgrade to 0.9.2 or later and access the
keyring before upgrading to 1.0 to retain the existing keyring.
* File System backends now create files without group and world permissions.
Fixes #67.
------
0.10.1
------
* Merged 0.9.3 to include fix for #75.
----
0.10
----
* Add support for using `Keyczar <http://www.keyczar.org/>`_ to encrypt
keyrings. Keyczar is "an open source cryptographic toolkit designed to make
it easier and safer for developers to use cryptography in their
applications."
* Added support for storing keyrings on Google Docs or any other filesystem
supported by pyfilesystem.
* Fixed issue in Gnome Keyring when unicode is passed as the service name,
username, or password.
* Tweaked SecretService code to pass unicode to DBus, as unicode is the
preferred format.
* Issue #71 - Fixed logic in CryptedFileKeyring.
* Unencrypted keyring file will be saved with user read/write (and not group
or world read/write).
-----
0.9.3
-----
* Ensure migration is run when get_password is called. Fixes #75. Thanks to
Marc Deslauriers for reporting the bug and supplying the patch.
-----
0.9.2
-----
* Keyring 0.9.1 introduced a whole different storage format for the
CryptedFileKeyring, but this introduced some potential compatibility issues.
This release incorporates the security updates but reverts to the INI file
format for storage, only encrypting the passwords and leaving the service
and usernames in plaintext. Subsequent releases may incorporate a new
keyring to implement a whole-file encrypted version. Fixes #64.
* The CryptedFileKeyring now requires simplejson for Python 2.5 clients.
-----
0.9.1
-----
* Fix for issue where SecretServiceBackend.set_password would raise a
UnicodeError on Python 3 or when a unicode password was provided on Python
2.
* CryptedFileKeyring now uses PBKDF2 to derive the key from the user's
password and a random hash. The IV is chosen randomly as well. All the
stored passwords are encrypted at once. Any keyrings using the old format
will be automatically converted to the new format (but will no longer be
compatible with 0.9 and earlier). The user's password is no longer limited
to 32 characters. PyCrypto 2.5 or greater is now required for this keyring.
---
0.9
---
* Add support for GTK 3 and secret service D-Bus. Fixes #52.
* Issue #60 - Use correct method for decoding.
-----
0.8.1
-----
* Fix regression in keyring lib on Windows XP where the LOCALAPPDATA
environment variable is not present.
---
0.8
---
* Mac OS X keyring backend now uses subprocess calls to the `security`
command instead of calling the API, which with the latest updates, no
longer allows Python to invoke from a virtualenv. Fixes issue #13.
* When using file-based storage, the keyring files are no longer stored
in the user's home directory, but are instead stored in platform-friendly
locations (`%localappdata%\Python Keyring` on Windows and according to
the freedesktop.org Base Dir Specification
(`$XDG_DATA_HOME/python_keyring` or `$HOME/.local/share/python_keyring`)
on other operating systems). This fixes #21.
*Backward Compatibility Notice*
Due to the new storage location for file-based keyrings, keyring 0.8
supports backward compatibility by automatically moving the password
files to the updated location. In general, users can upgrade to 0.8 and
continue to operate normally. Any applications that customize the storage
location or make assumptions about the storage location will need to take
this change into consideration. Additionally, after upgrading to 0.8,
it is not possible to downgrade to 0.7 without manually moving
configuration files. In 1.0, the backward compatibilty
will be removed.
-----
0.7.1
-----
* Removed non-ASCII characters from README and CHANGES docs (required by
distutils if we're to include them in the long_description). Fixes #55.
---
0.7
---
* Python 3 is now supported. All tests now pass under Python 3.2 on
Windows and Linux (although Linux backend support is limited). Fixes #28.
* Extension modules on Mac and Windows replaced by pure-Python ctypes
implementations. Thanks to Jerome Laheurte.
* WinVaultKeyring now supports multiple passwords for the same service. Fixes
#47.
* Most of the tests don't require user interaction anymore.
* Entries stored in Gnome Keyring appears now with a meaningful name if you try
to browser your keyring (for ex. with Seahorse)
* Tests from Gnome Keyring no longer pollute the user own keyring.
* `keyring.util.escape` now accepts only unicode strings. Don't try to encode
strings passed to it.
-----
0.6.2
-----
* fix compiling on OSX with XCode 4.0
-----
0.6.1
-----
* Gnome keyring should not be used if there is no DISPLAY or if the dbus is
not around (https://bugs.launchpad.net/launchpadlib/+bug/752282).
---
0.6
---
* Added `keyring.http` for facilitating HTTP Auth using keyring.
* Add a utility to access the keyring from the command line.
-----
0.5.1
-----
* Remove a spurious KDE debug message when using KWallet
* Fix a bug that caused an exception if the user canceled the KWallet dialog
(https://bitbucket.org/kang/python-keyring-lib/issue/37/user-canceling-of-kde-wallet-dialogs).
---
0.5
---
* Now using the existing Gnome and KDE python libs instead of custom C++
code.
* Using the getpass module instead of custom code
---
0.4
---
* Fixed the setup script (some subdirs were not included in the release.)
---
0.3
---
* Fixed keyring.core when the user doesn't have a cfg, or is not
properly configured.
* Fixed escaping issues for usernames with non-ascii characters
---
0.2
---
* Add support for Python 2.4+
http://bitbucket.org/kang/python-keyring-lib/issue/2
* Fix the bug in KDE Kwallet extension compiling
http://bitbucket.org/kang/python-keyring-lib/issue/3
Update to version 3.1
Update to version 3.1
--------------------------------------------------------------------------------
ChangeLog:
* Mon Dec 2 2013 Christopher Meng <rpm at cicku.me> - 3.3-1
- Update to 3.3(BZ#1007354,BZ#872262)
- Cleanup dependencies mess(BZ#1030944).
- Optimize the %changelog section of the spec.
* Tue Oct 22 2013 Ratnadeep Debnath <rtnpro at gmail.com> - 3.1-1
- Bump to version 3.1
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #872260 - CVE-2012-4571 python-keyring: weak encryption in keyring
https://bugzilla.redhat.com/show_bug.cgi?id=872260
--------------------------------------------------------------------------------
================================================================================
remmina-1.0.0-9.fc20 (FEDORA-2013-22665)
Remote Desktop Client
--------------------------------------------------------------------------------
Update Information:
Obsolete/Provide qtnx (Bug #1034046)
--------------------------------------------------------------------------------
ChangeLog:
* Mon Dec 2 2013 Orion Poplawski <orion at cora.nwra.com> - 1.0.0-9
- Obsolete/Provide qtnx (Bug #1034046)
--------------------------------------------------------------------------------
================================================================================
rtpproxy-1.2.1-14.git2121113.fc20 (FEDORA-2013-22635)
A symmetric RTP proxy
--------------------------------------------------------------------------------
Update Information:
- Updated to the latest Git
--------------------------------------------------------------------------------
ChangeLog:
* Tue Dec 3 2013 Peter Lemenkov <lemenkov at gmail.com> - 1.2.1-14.git2121113
- Fixed FTBFS in F20+
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1037311 - rtpproxy FTBFS if "-Werror=format-security" flag is used
https://bugzilla.redhat.com/show_bug.cgi?id=1037311
--------------------------------------------------------------------------------
================================================================================
selinux-policy-3.12.1-106.fc20 (FEDORA-2013-22646)
SELinux policy configuration
--------------------------------------------------------------------------------
Update Information:
- Added fix for clout_init to transition to rpm_script_t
--------------------------------------------------------------------------------
ChangeLog:
* Sun Dec 1 2013 Dan Walsh <dwalsh at redhat.com> 3.12.1-106
- Added fix for clout_init to transition to rpm_script_t (dwalsh at redhat.com)
* Tue Nov 26 2013 Miroslav Grepl <mgrepl at redhat.com> 3.12.1-105
- Dontaudit openshift domains trying to use rawip_sockets, this is caused by a bad check in the kernel.
- Allow git_system_t to read git_user_content if the git_system_enable_homedirs boolean is turned on
- Add lsmd_plugin_t for lsm plugins
- Allow dovecot-deliver to search mountpoints
- Add labeling for /etc/mdadm.conf
- Allow opelmi admin providers to dbus chat with init_t
- Allow sblim domain to read /dev/urandom and /dev/random
- Allow apmd to request the kernel load modules
- Add glusterd_brick_t type
- label mate-keyring-daemon with gkeyringd_exec_t
- Add plymouthd_create_log()
- Dontaudit leaks from openshift domains into mail domains, needs back port to RHEL6
- Allow sssd to request the kernel loads modules
- Allow gpg_agent to use ssh-add
- Allow gpg_agent to use ssh-add
- Dontaudit access check on /root for myslqd_safe_t
- Allow ctdb to getattr on al filesystems
- Allow abrt to stream connect to syslog
- Allow dnsmasq to list dnsmasq.d directory
- Watchdog opens the raw socket
- Allow watchdog to read network state info
- Dontaudit access check on lvm lock dir
- Allow sosreport to send signull to setroubleshootd
- Add setroubleshoot_signull() interface
- Fix ldap_read_certs() interface
- Allow sosreport all signal perms
- Allow sosreport to run systemctl
- Allow sosreport to dbus chat with rpm
- Add glusterd_brick_t files type
- Allow zabbix_agentd to read all domain state
- Clean up rtas.if
- Allow smoltclient to execute ldconfig
- Allow sosreport to request the kernel to load a module
- Fix userdom_confined_admin_template()
- Add back exec_content boolean for secadm, logadm, auditadm
- Fix files_filetrans_system_db_named_files() interface
- Allow sulogin to getattr on /proc/kcore
- Add filename transition also for servicelog.db-journal
- Add files_dontaudit_access_check_root()
- Add lvm_dontaudit_access_check_lock() interface
* Thu Nov 21 2013 Miroslav Grepl <mgrepl at redhat.com> 3.12.1-104
- Allow watchdog to read /etc/passwd
- Allow browser plugins to connect to bumblebee
- New policy for bumblebee and freqset
- Add new policy for mip6d daemon
- Add new policy for opensm daemon
- Allow condor domains to read/write condor_master udp_socket
- Allow openshift_cron_t to append to openshift log files, label /var/log/openshift
- Add back file_pid_filetrans for /var/run/dlm_controld
- Allow smbd_t to use inherited tmpfs content
- Allow mcelog to use the /dev/cpu device
- sosreport runs rpcinfo
- sosreport runs subscription-manager
- Allow staff_t to run frequency command
- Allow systemd_tmpfiles to relabel log directories
- Allow staff_t to read xserver_log file
- Label hsperfdata_root as tmp_t
* Wed Nov 20 2013 Miroslav Grepl <mgrepl at redhat.com> 3.12.1-103
- More sosreport fixes to make ABRT working
* Fri Nov 15 2013 Miroslav Grepl <mgrepl at redhat.com> 3.12.1-102
- Fix files_dontaudit_unmount_all_mountpoints()
- Add support for 2608-2609 tcp/udp ports
- Should allow domains to lock the terminal device
- More fixes for user config files to make crond_t running in userdomain
- Add back disable/reload/enable permissions for system class
- Fix manage_service_perms macro
- We need to require passwd rootok
- Fix zebra.fc
- Fix dnsmasq_filetrans_named_content() interface
- Allow all sandbox domains create content in svirt_home_t
- Allow zebra domains also create zebra_tmp_t files in /tmp
- Add support for new zebra services:isisd,babeld. Add systemd support for zebra services.
- Fix labeling on neutron and remove transition to iconfig_t
- abrt needs to read mcelog log file
- Fix labeling on dnsmasq content
- Fix labeling on /etc/dnsmasq.d
- Allow glusterd to relabel own lib files
- Allow sandbox domains to use pam_rootok, and dontaudit attempts to unmount file systems, this is caused by a bug in systemd
- Allow ipc_lock for abrt to run journalctl
* Thu Nov 14 2013 Miroslav Grepl <mgrepl at redhat.com> 3.12.1-101
- Fix config.tgz
* Tue Nov 12 2013 Miroslav Grepl <mgrepl at redhat.com> 3.12.1-100
- Fix passenger_stream_connect interface
- setroubleshoot_fixit wants to read network state
- Allow procmail_t to connect to dovecot stream sockets
- Allow cimprovagt service providers to read network states
- Add labeling for /var/run/mariadb
- pwauth uses lastlog() to update system's lastlog
- Allow account provider to read login records
- Add support for texlive2013
- More fixes for user config files to make crond_t running in userdomain
- Add back disable/reload/enable permissions for system class
- Fix manage_service_perms macro
- Allow passwd_t to connect to gnome keyring to change password
- Update mls config files to have cronjobs in the user domains
- Remove access checks that systemd does not actually do
* Fri Nov 8 2013 Miroslav Grepl <mgrepl at redhat.com> 3.12.1-99
- Add support for yubikey in homedir
- Add support for upd/3052 port
- Allow apcupsd to use PowerChute Network Shutdown
- Allow lsmd to execute various lsmplugins
- Add labeling also for /etc/watchdog\.d where are watchdog scripts located too
- Update gluster_export_all_rw boolean to allow relabel all base file types
- Allow x86_energy_perf tool to modify the MSR
- Fix /var/lib/dspam/data labeling
* Wed Nov 6 2013 Miroslav Grepl <mgrepl at redhat.com> 3.12.1-98
- Add files_relabel_base_file_types() interface
- Allow netlabel-config to read passwd
- update gluster_export_all_rw boolean to allow relabel all base file types caused by lsetxattr()
- Allow x86_energy_perf tool to modify the MSR
- Fix /var/lib/dspam/data labeling
- Allow pegasus to domtrans to mount_t
- Add labeling for unconfined scripts in /usr/libexec/watchdog/scripts
- Add support for unconfined watchdog scripts
- Allow watchdog to manage own log files
* Wed Nov 6 2013 Miroslav Grepl <mgrepl at redhat.com> 3.12.1-97
- Add label only for redhat.repo instead of /etc/yum.repos.d. But probably we will need to switch for the directory.
- Label /etc/yum.repos.d as system_conf_t
- Use sysnet_filetrans_named_content in udev.te instead of generic transition for net_conf_t
- Allow dac_override for sysadm_screen_t
- Allow init_t to read ipsec_conf_t as we had it for initrc_t. Needed by ipsec unit file.
- Allow netlabel-config to read meminfo
- Add interface to allow docker to mounton file_t
- Add new interface to exec unlabeled files
- Allow lvm to use docker semaphores
- Setup transitons for .xsessions-errors.old
- Change labels of files in /var/lib/*/.ssh to transition properly
- Allow staff_t and user_t to look at logs using journalctl
- pluto wants to manage own log file
- Allow pluto running as ipsec_t to create pluto.log
- Fix alias decl in corenetwork.te.in
- Add support for fuse.glusterfs
- Allow dmidecode to read/write /run/lock/subsys/rhsmcertd
- Allow rhsmcertd to manage redhat.repo which is now labeled as system.conf. Allow rhsmcertd to manage all log files.
- Additional access for docker
- Added more rules to sblim policy
- Fix kdumpgui_run_bootloader boolean
- Allow dspam to connect to lmtp port
- Included sfcbd service into sblim policy
- rhsmcertd wants to manaage /etc/pki/consumer dir
- Add kdumpgui_run_bootloader boolean
- Add support for /var/cache/watchdog
- Remove virt_domain attribute for virt_qemu_ga_unconfined_t
- Fixes for handling libvirt containes
- Dontaudit attempts by mysql_safe to write content into /
- Dontaudit attempts by system_mail to modify network config
- Allow dspam to bind to lmtp ports
- Add new policy to allow staff_t and user_t to look at logs using journalctl
- Allow apache cgi scripts to list sysfs
- Dontaudit attempts to write/delete user_tmp_t files
- Allow all antivirus domains to manage also own log dirs
- Allow pegasus_openlmi_services_t to stream connect to sssd_t
* Fri Nov 1 2013 Miroslav Grepl <mgrepl at redhat.com> 3.12.1-96
- Add missing permission checks for nscd
* Wed Oct 30 2013 Miroslav Grepl <mgrepl at redhat.com> 3.12.1-95
- Fix alias decl in corenetwork.te.in
- Add support for fuse.glusterfs
- Add file transition rules for content created by f5link
- Rename quantum_port information to neutron
- Allow all antivirus domains to manage also own log dirs
- Rename quantum_port information to neutron
- Allow pegasus_openlmi_services_t to stream connect to sssd_t
* Mon Oct 28 2013 Miroslav Grepl <mgrepl at redhat.com> 3.12.1-94
- Allow sysadm_t to read login information
- Allow systemd_tmpfiles to setattr on var_log_t directories
- Udpdate Makefile to include systemd_contexts
- Add systemd_contexts
- Add fs_exec_hugetlbfs_files() interface
- Add daemons_enable_cluster_mode boolean
- Fix rsync_filetrans_named_content()
- Add rhcs_read_cluster_pid_files() interface
- Update rhcs.if with additional interfaces from RHEL6
- Fix rhcs_domain_template() to not create run dirs with cluster_var_run_t
- Allow glusterd_t to mounton glusterd_tmp_t
- Allow glusterd to unmout al filesystems
- Allow xenstored to read virt config
- Add label for swift_server.lock and make add filetrans_named_content to make sure content gets created with the correct label
- Allow mozilla_plugin_t to mmap hugepages as an executable
* Thu Oct 24 2013 Miroslav Grepl <mgrepl at redhat.com> 3.12.1-94
- Add back userdom_security_admin_template() interface and use it for sysadm_t if sysadm_secadm.pp
* Tue Oct 22 2013 Miroslav Grepl <mgrepl at redhat.com> 3.12.1-93
- Allow sshd_t to read openshift content, needs backport to RHEL6.5
- Label /usr/lib64/sasl2/libsasldb.so.3.0.0 as textrel_shlib_t
- Make sur kdump lock is created with correct label if kdumpctl is executed
- gnome interface calls should always be made within an optional_block
- Allow syslogd_t to connect to the syslog_tls port
- Add labeling for /var/run/charon.ctl socket
- Add kdump_filetrans_named_content()
- Allo setpgid for fenced_t
- Allow setpgid and r/w cluster tmpfs for fenced_t
- gnome calls should always be within optional blocks
- wicd.pid should be labeled as networkmanager_var_run_t
- Allow sys_resource for lldpad
* Thu Oct 17 2013 Miroslav Grepl <mgrepl at redhat.com> 3.12.1-92
- Add rtas policy
* Thu Oct 17 2013 Miroslav Grepl <mgrepl at redhat.com> 3.12.1-91
- Allow mailserver_domains to manage and transition to mailman data
- Dontaudit attempts by mozilla plugin to relabel content, caused by using mv and cp commands
- Allow mailserver_domains to manage and transition to mailman data
- Allow svirt_domains to read sysctl_net_t
- Allow thumb_t to use tmpfs inherited from the user
- Allow mozilla_plugin to bind to the vnc port if running with spice
- Add new attribute to discover confined_admins and assign confined admin to it
- Fix zabbix to handle attributes in interfaces
- Fix zabbix to read system states for all zabbix domains
- Fix piranha_domain_template()
- Allow ctdbd to create udp_socket. Allow ndmbd to access ctdbd var files.
- Allow lldpad sys_rouserce cap due to #986870
- Allow dovecot-auth to read nologin
- Allow openlmi-networking to read /proc/net/dev
- Allow smsd_t to execute scripts created on the fly labeled as smsd_spool_t
- Add zabbix_domain attribute for zabbix domains to treat them together
- Add labels for zabbix-poxy-* (#1018221)
- Update openlmi-storage policy to reflect #1015067
- Back port piranha tmpfs fixes from RHEL6
- Update httpd_can_sendmail boolean to allow read/write postfix spool maildrop
- Add postfix_rw_spool_maildrop_files interface
- Call new userdom_admin_user_templat() also for sysadm_secadm.pp
- Fix typo in userdom_admin_user_template()
- Allow SELinux users to create coolkeypk11sE-Gate in /var/cache/coolkey
- Add new attribute to discover confined_admins
- Fix labeling for /etc/strongswan/ipsec.d
- systemd_logind seems to pass fd to anyone who dbus communicates with it
- Dontaudit leaked write descriptor to dmesg
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #990910 - Cloud-init executes user-data scripts with PATH unset
https://bugzilla.redhat.com/show_bug.cgi?id=990910
--------------------------------------------------------------------------------
================================================================================
sugar-pippy-53-1.fc20 (FEDORA-2013-22660)
Pippy for Sugar
--------------------------------------------------------------------------------
Update Information:
New release 53 bugfix
--------------------------------------------------------------------------------
ChangeLog:
* Tue Dec 3 2013 Peter Robinson <pbrobinson at fedoraproject.org> 53-1
- Release 52
--------------------------------------------------------------------------------
================================================================================
tuxcut-5.0-15.fc20 (FEDORA-2013-22645)
Arpspoof attacks protector
--------------------------------------------------------------------------------
Update Information:
TuxCut is a utility that protect linux computers againest arpspoof attacks
Features:
- Hide your machine (ip/MAC) from arp scanner utilities.
- list all the live host in your LAN.
- cut the connection between any live host and the gateway.
- use wondershaper to limit your upload or download speed.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1015775 - Review Request: tuxcut - Arpspoof attacks protector
https://bugzilla.redhat.com/show_bug.cgi?id=1015775
--------------------------------------------------------------------------------
================================================================================
uboot-tools-2013.10-3.fc20 (FEDORA-2013-22637)
U-Boot utilities
--------------------------------------------------------------------------------
Update Information:
update the offsets for the memory addresses. beaglebone's cant access under 0x81000000 from the kernel during early boot
--------------------------------------------------------------------------------
ChangeLog:
* Tue Dec 3 2013 Dennis Gilmore <dennis at ausil.us> - 2013.10-3
- fixup beaglebone addresses, bellow 0x81000000 is not available to the kernel
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1035926 - uboot-beaglebone sets incorrect load addresses for BeagleBone Black
https://bugzilla.redhat.com/show_bug.cgi?id=1035926
--------------------------------------------------------------------------------
================================================================================
undbx-0.21-1.fc20 (FEDORA-2013-22640)
Outlook Express .dbx files extractor
--------------------------------------------------------------------------------
Update Information:
Outlook Express .dbx files extractor.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1033037 - Review Request: undbx - Outlook Express .dbx files extractor
https://bugzilla.redhat.com/show_bug.cgi?id=1033037
--------------------------------------------------------------------------------
================================================================================
vdsm-4.13.0-11.fc20 (FEDORA-2013-22658)
Virtual Desktop Server Manager
--------------------------------------------------------------------------------
Update Information:
update for vdsm-4.13.0-11.fc20
--------------------------------------------------------------------------------
ChangeLog:
* Tue Nov 12 2013 Douglas Schilling Landgraf <dougsland at redhat.com> - 4.13.0-11
- update from branch ovirt-3.3 which include:
upgrade-fix-v3ResetMetaVolSize-argument
lvm-Do-not-use-udev-cache-for-obtaining-device-list
Fix-ballooning-rules-for-computing-the-minimum-avail
Avoid-M2Crypto-races
spec-declare-we-provide-an-existing-python-cpopen
configuring-selinux-allowing-qemu-kvm-to-generate-co
* Tue Nov 12 2013 Douglas Schilling Landgraf <dougsland at redhat.com> - 4.13.0-10
- Fix requires on post for hostname.
* Tue Nov 5 2013 Douglas Schilling Landgraf <dougsland at redhat.com> - 4.13.0-9
- Build 4.13.0-9 from branch ovirt-3.3
* Wed Oct 30 2013 Cole Robinson <crobinso at redhat.com> - 4.12.1-5
- Fix broken hostname dep on rawhide
* Thu Oct 10 2013 Douglas Schilling Landgraf <dougsland at redhat.com> 4.12.1-4
- remoteFileHandler: Add create exclusive option for truncateFile (BZ#979193)
- oop: improve safety for truncateFile
* Tue Oct 8 2013 Douglas Schilling Landgraf <dougsland at redhat.com> 4.12.1-3
- vm.Vm._getUnderlyingDriveInfo: extract path of gluster disks (BZ#1007980)
- Require libvirt that allows vmUpdateDevice (BZ#1001001)
- imageSharing: return proper size in httpGetSize
- vdsmd.init: Add service-is-managed in shutdown_conflicting_srv (BZ#1006842)
* Tue Sep 10 2013 Federico Simoncelli <fsimonce at redhat.com> 4.12.1-2
- systemd init: no need to stop conflicting services (BZ#999664)
--------------------------------------------------------------------------------
================================================================================
xdialog-2.3.1-13.fc20 (FEDORA-2013-22652)
X11 drop in replacement for cdialog
--------------------------------------------------------------------------------
Update Information:
Fixes a format string issue. argv[0] was injected unchecked into a format string.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Dec 3 2013 Matthieu Saulnier <fantom at fedorapeople.org> - 2.3.1-13
- Remove obsolete Group tag
- Remove obsolete BuildRoot tag
- Remove obsolete cleanup buildroot at the beggining of %install section
- Remove obsolete %clean section
- Remove obsolete %defattr tag in %files section
* Tue Dec 3 2013 Conrad Meyer <cemeyer at uw.edu> - 2.3.1-12
- Fix fprintf() of untrusted format string (#1037393)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1037393 - xdialog FTBFS if "-Werror=format-security" flag is used
https://bugzilla.redhat.com/show_bug.cgi?id=1037393
--------------------------------------------------------------------------------
================================================================================
xinetd-2.3.15-10.fc20 (FEDORA-2013-22655)
A secure replacement for inetd
--------------------------------------------------------------------------------
Update Information:
Fix segfault when NAMEINARGS flag is specified after server_args in the configuration
Let systemd handle, if NetworkManager-wait-online is needed.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Dec 3 2013 Jan Synáček <jsynacek at redhat.com> - 2:2.3.15-10
- xinetd segfaults when connecting to tcpmux service
- Resolves: #1033528
* Fri Oct 4 2013 Jan Synáček <jsynacek at redhat.com> - 2:2.3.15-9
- xinetd should not depend on NetworkManager-wait-online
- Resolves: #1002294
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1033528 - xinetd segfaults when connecting to tcpmux service
https://bugzilla.redhat.com/show_bug.cgi?id=1033528
[ 2 ] Bug #1002294 - xinetd should not depend on NetworkManager-wait-online
https://bugzilla.redhat.com/show_bug.cgi?id=1002294
--------------------------------------------------------------------------------
More information about the test
mailing list