Fedora 19 updates-testing report
updates at fedoraproject.org
updates at fedoraproject.org
Thu May 8 10:19:32 UTC 2014
The following Fedora 19 Security updates need testing:
Age URL
194 https://admin.fedoraproject.org/updates/FEDORA-2013-19963/openstack-glance-2013.1.4-1.fc19
23 https://admin.fedoraproject.org/updates/FEDORA-2014-5024/smb4k-1.1.1-2.fc19
19 https://admin.fedoraproject.org/updates/FEDORA-2014-5308/srm-1.2.13-1.fc19
9 https://admin.fedoraproject.org/updates/FEDORA-2014-5759/cups-filters-1.0.53-1.fc19
6 https://admin.fedoraproject.org/updates/FEDORA-2014-5896/nrpe-2.15-2.fc19
6 https://admin.fedoraproject.org/updates/FEDORA-2014-5903/miniupnpc-1.9-1.fc19,megaglest-3.9.1-2.fc19,0ad-0.0.15-4.fc19
5 https://admin.fedoraproject.org/updates/FEDORA-2014-5938/rxvt-unicode-9.20-1.fc19
5 https://admin.fedoraproject.org/updates/FEDORA-2014-5941/xen-4.2.4-4.fc19
4 https://admin.fedoraproject.org/updates/FEDORA-2014-5974/python-fmn-web-0.2.4-3.fc19
4 https://admin.fedoraproject.org/updates/FEDORA-2014-5948/python-fedora-0.3.34-1.fc19
4 https://admin.fedoraproject.org/updates/FEDORA-2014-5984/php-5.5.12-1.fc19
2 https://admin.fedoraproject.org/updates/FEDORA-2014-6028/mingw-qt-4.8.6-1.fc19
2 https://admin.fedoraproject.org/updates/FEDORA-2014-5999/mingw-qt5-qtbase-5.2.1-3.fc19
1 https://admin.fedoraproject.org/updates/FEDORA-2014-6046/cifs-utils-6.3-2.fc19
0 https://admin.fedoraproject.org/updates/FEDORA-2014-6083/qt-4.8.6-5.fc19
0 https://admin.fedoraproject.org/updates/FEDORA-2014-6127/rubygem-actionpack-3.2.13-6.fc19
The following Fedora 19 Critical Path updates have yet to be approved:
Age URL
142 https://admin.fedoraproject.org/updates/FEDORA-2013-22326/fedora-bookmarks-15-5.fc19
68 https://admin.fedoraproject.org/updates/FEDORA-2014-3245/testdisk-6.14-2.fc19.1,ntfs-3g-2014.2.15-1.fc19
12 https://admin.fedoraproject.org/updates/FEDORA-2014-5620/abrt-2.2.1-1.fc19,libreport-2.2.2-2.fc19
11 https://admin.fedoraproject.org/updates/FEDORA-2014-5665/curl-7.29.0-18.fc19
8 https://admin.fedoraproject.org/updates/FEDORA-2014-5809/xorg-x11-drv-synaptics-1.7.4-9.fc19
7 https://admin.fedoraproject.org/updates/FEDORA-2014-5818/libssh2-1.4.3-7.fc19
7 https://admin.fedoraproject.org/updates/FEDORA-2014-5867/kde-workspace-4.11.9-2.fc19
7 https://admin.fedoraproject.org/updates/FEDORA-2014-5448/ibus-1.5.7-1.fc19
1 https://admin.fedoraproject.org/updates/FEDORA-2014-6047/gupnp-0.20.11-1.fc19
0 https://admin.fedoraproject.org/updates/FEDORA-2014-6113/xorg-x11-drv-evdev-2.8.4-1.fc19
0 https://admin.fedoraproject.org/updates/FEDORA-2014-6075/selinux-policy-3.12.1-74.26.fc19
0 https://admin.fedoraproject.org/updates/FEDORA-2014-6126/policycoreutils-2.1.14-46.8.fc19
0 https://admin.fedoraproject.org/updates/FEDORA-2014-6083/qt-4.8.6-5.fc19
0 https://admin.fedoraproject.org/updates/FEDORA-2014-5590/libcap-ng-0.7.4-1.fc19
The following builds have been pushed to Fedora 19 updates-testing
ansible-1.6.1-1.fc19
canl-c-2.1.4-1.fc19
fldigi-3.21.82-1.fc19
ghc-optparse-applicative-0.8.0.1-2.fc19
glite-px-proxyrenewal-1.3.35-1.fc19
gnulib-0-8.20140504git.fc19
jspecview-2-8.1649svn.fc19
libcap-ng-0.7.4-1.fc19
libreoffice-4.1.6.2-2.fc19
os-prober-1.58-6.fc19
perl-DateTime-1.06-2.fc19
perl-MooX-late-0.014-3.fc19
perl-Params-Validate-1.08-8.fc19
policycoreutils-2.1.14-46.8.fc19
qt-4.8.6-5.fc19
recoll-1.19.13-1.fc19
rubygem-actionpack-3.2.13-6.fc19
salt-2014.1.4-1.fc19
scl-utils-20140127-5.fc19
selinux-policy-3.12.1-74.26.fc19
suricata-2.0-1.fc19
webkitgtk-2.0.4-2.fc19
whois-5.1.2-1.fc19
wordpress-3.9-1.fc19
xorg-x11-drv-evdev-2.8.4-1.fc19
Details about builds:
================================================================================
ansible-1.6.1-1.fc19 (FEDORA-2014-6139)
SSH-based configuration management, deployment, and task execution system
--------------------------------------------------------------------------------
Update Information:
Upstream bugfix release: https://github.com/ansible/ansible/blob/release1.6.1/CHANGELOG.md
In particular, it fixes port not being closed with accelerate mode
Update to upstream 1.6 release:
https://github.com/ansible/ansible/blob/devel/CHANGELOG.md
Update to upstream 1.6 release:
https://github.com/ansible/ansible/blob/devel/CHANGELOG.md
Update to upstream 1.6 release:
https://github.com/ansible/ansible/blob/devel/CHANGELOG.md
--------------------------------------------------------------------------------
ChangeLog:
* Wed May 7 2014 Toshio Kuratomi <toshio at fedoraproject.org> - 1.6.1-1
- Bugfix 1.6.1 release
* Mon May 5 2014 Toshio Kuratomi <toshio at fedoraproject.org> - 1.6-1
- Update to 1.6
- Drop accelerate fix, merged upstream
- Refresh RHEL6 pycrypto patch. It was half-merged upstream.
--------------------------------------------------------------------------------
================================================================================
canl-c-2.1.4-1.fc19 (FEDORA-2014-6142)
EMI Common Authentication library - bindings for C
--------------------------------------------------------------------------------
Update Information:
Fixed certificate chain validation errors. Affected were tools like gridsite's htproxyinfo and many others.
--------------------------------------------------------------------------------
ChangeLog:
* Tue May 6 2014 František Dvořák <valtri at civ.zcu.cz> - 2.1.4-1
- New upstream version
- Remove patch merged in upstream
* Wed Jan 29 2014 František Dvořák <valtri at civ.zcu.cz> - 2.1.3-2
- Patch to remove comment.sty LaTeX package (not available on RHEL7)
--------------------------------------------------------------------------------
================================================================================
fldigi-3.21.82-1.fc19 (FEDORA-2014-6100)
Digital modem program for Linux
--------------------------------------------------------------------------------
Update Information:
=Version 3.21.82=
92a7d01: hash-fix
b0db34c: RnA Analysis
fa9e10a: Phase accumulator
b7ce1cd: Base Directories
c9c6f28: WF Height/Speed
ca61d3f: RX Only
43fbe22: RTTY mem leak
f470ce3: Olivia/Contestia custom
b87e664: ARQ abort
a9818aa: RTTY Custom Shift
--------------------------------------------------------------------------------
ChangeLog:
* Wed Apr 30 2014 Richard Shaw <hobbes1069 at gmail.com> - 3.21.82-1
- Update to latest upstream release.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1092923 - fldigi-3.21.82 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1092923
--------------------------------------------------------------------------------
================================================================================
ghc-optparse-applicative-0.8.0.1-2.fc19 (FEDORA-2014-6095)
Utilities and combinators for parsing command line options
--------------------------------------------------------------------------------
Update Information:
Utilities and combinators for parsing command line options
- http://hackage.haskell.org/package/optparse-applicative
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1086444 - Review Request: ghc-optparse-applicative - Utilities and combinators for parsing command line options
https://bugzilla.redhat.com/show_bug.cgi?id=1086444
--------------------------------------------------------------------------------
================================================================================
glite-px-proxyrenewal-1.3.35-1.fc19 (FEDORA-2014-6112)
gLite proxyrenewal renews existing proxy certificates for grid users
--------------------------------------------------------------------------------
Update Information:
New release 1.3.35.
Changes:
* Make sure 1024-bit keys are explicitly requested from Globus for initiating proxy certificates, overriding the current Globus default of 512 bits
* Hardened build has been enabled, result binaries are more secured now
--------------------------------------------------------------------------------
ChangeLog:
* Tue May 6 2014 František Dvořák <valtri at civ.zcu.cz> - 1.3.35-1
- Release glite-px-proxyrenewal 1.3.35
- Enable hardened build
- Update patches, add EPEL 7 support
- Simplify scriptlets
--------------------------------------------------------------------------------
================================================================================
gnulib-0-8.20140504git.fc19 (FEDORA-2014-6072)
GNU Portability Library
--------------------------------------------------------------------------------
Update Information:
Update GNULIB on 20140504
--------------------------------------------------------------------------------
ChangeLog:
* Sun May 4 2014 Mosaab Alzoubi <moceap at hotmail.com> - 0-8.20140504git
- Update on 20140504.
--------------------------------------------------------------------------------
================================================================================
jspecview-2-8.1649svn.fc19 (FEDORA-2014-6106)
JAVA applets for the display of JCAMP-DX and AnIML/CML spectral files
--------------------------------------------------------------------------------
Update Information:
Update to newest upstream. Remove bundled libraries (BZ #1095316).
--------------------------------------------------------------------------------
ChangeLog:
* Wed May 7 2014 Susi Lehtola <jussilehtola at fedoraproject.org> - 2-8.1649svn
- Remove bundled libraries (BZ #1095316).
- Update to revision 1649.
* Thu Mar 6 2014 Michal Srb <msrb at redhat.com> - 2-7.1464svn
- Remove unneeded BR: itext
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1095316 - jspecview: Embeds classes from icedtea-web
https://bugzilla.redhat.com/show_bug.cgi?id=1095316
--------------------------------------------------------------------------------
================================================================================
libcap-ng-0.7.4-1.fc19 (FEDORA-2014-5590)
An alternate posix capabilities library
--------------------------------------------------------------------------------
Update Information:
Add CAPNG_INIT_SUPP_GRP to capng_change_id. Update the autotools components. Dynamically detect last capability.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Apr 24 2014 Steve Grubb <sgrubb at redhat.com> 0.7.4-1
- New upstream release
* Thu Nov 14 2013 Steve Grubb <sgrubb at redhat.com> 0.7.3-6
- Rebuild to pickup current CAP_LAST_CAP
* Sat Aug 3 2013 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 0.7.3-5
- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
* Tue Jul 2 2013 Karsten Hopp <karsten at redhat.com> 0.7.3-4
- bump release and rebuild to fix dependencies on PPC
--------------------------------------------------------------------------------
================================================================================
libreoffice-4.1.6.2-2.fc19 (FEDORA-2014-6099)
Free Software Productivity Suite
--------------------------------------------------------------------------------
Update Information:
Resolves: fdo#78294 default null-date, fdo#76663 matrix in PRODUCT
new upstream release
--------------------------------------------------------------------------------
ChangeLog:
* Tue May 6 2014 Eike Rathke <erack at redhat.com> - 1:4.1.6.2-2
- Resolves: fdo#78294 default null-date for document import is 1899-12-30
- Resolves: fdo#76663 let's not skip the first element of a matrix in PRODUCT
* Tue Apr 29 2014 David Tardon <dtardon at redhat.com> - 1:4.1.6.2-1
- new upstream release
--------------------------------------------------------------------------------
================================================================================
os-prober-1.58-6.fc19 (FEDORA-2014-6117)
Probes disks on the system for installed operating systems
--------------------------------------------------------------------------------
Update Information:
- Fix separate /usr partitions for usrmove distros (bug #1044760)
- Fix umount error when directory is temporarily busy (bug #903906)
--------------------------------------------------------------------------------
ChangeLog:
* Tue May 6 2014 Hedayat Vatankhah <hedayat.fwd+rpmchlog at gmail.com> - 1.58-6
- Fix separate /usr partitions for usrmove distros (bug #1044760)
- Fix umount error when directory is temporarily busy (bug #903906)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1044760 - os-prober doesn't find other os
https://bugzilla.redhat.com/show_bug.cgi?id=1044760
[ 2 ] Bug #903906 - grub2-mkconfig produces a umount error
https://bugzilla.redhat.com/show_bug.cgi?id=903906
--------------------------------------------------------------------------------
================================================================================
perl-DateTime-1.06-2.fc19 (FEDORA-2014-6131)
Date and time object
--------------------------------------------------------------------------------
Update Information:
This release fixes clobberting a DateTime object after failed truncate() call.
--------------------------------------------------------------------------------
ChangeLog:
* Wed May 7 2014 Petr Pisar <ppisar at redhat.com> - 2:1.06-2
- Restore object after failed truncate() call (bug #1095104)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1095104 - If truncate(to=>'week') fails, it will clobber the object
https://bugzilla.redhat.com/show_bug.cgi?id=1095104
--------------------------------------------------------------------------------
================================================================================
perl-MooX-late-0.014-3.fc19 (FEDORA-2014-6090)
Easily translate Moose code to Moo
--------------------------------------------------------------------------------
Update Information:
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1079618 - Review Request: perl-MooX-late - Easily translate Moose code to Moo
https://bugzilla.redhat.com/show_bug.cgi?id=1079618
--------------------------------------------------------------------------------
================================================================================
perl-Params-Validate-1.08-8.fc19 (FEDORA-2014-6074)
Params-Validate Perl module
--------------------------------------------------------------------------------
Update Information:
--------------------------------------------------------------------------------
ChangeLog:
* Wed May 7 2014 Ralf Corsépius <corsepiu at fedoraproject.org> - 1.08-8
- Use aspell-en instead of hunspell.
* Tue May 6 2014 Ralf Corsépius <corsepiu at fedoraproject.org> - 1.08-7
- Add "'globals" to Params-Validate-1.08.diff (FTBFS RHBZ #1094169).
- Remove %defattr.
* Wed Aug 14 2013 Jitka Plesnikova <jplesnik at redhat.com> - 1.08-6
- Perl 5.18 re-rebuild of bootstrapped packages
* Sun Aug 4 2013 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 1.08-5
- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
* Wed Jul 24 2013 Petr Pisar <ppisar at redhat.com> - 1.08-4
- Perl 5.18 rebuild
* Thu Jul 18 2013 Ralf Corsépius <corsepiu at fedoraproject.org> - 1.08-3
- Adjust license tag (RHBZ #977787).
* Thu Jul 18 2013 Ralf Corsépius <corsepiu at fedoraproject.org> - 1.08-2
- Add %bcond --without release-tests.
- Skip release tests when bootstrapping (RHBZ #982253).
--------------------------------------------------------------------------------
================================================================================
policycoreutils-2.1.14-46.8.fc19 (FEDORA-2014-6126)
SELinux policy core utilities
--------------------------------------------------------------------------------
Update Information:
seunshare: Use setcurrent before setexec from luto at amacapital.net
--------------------------------------------------------------------------------
ChangeLog:
* Mon Apr 7 2014 Miroslav Grepl <mgrepl at redhat.com> - 2.1.14-46.8
- seunshare: Use setcurrent before setexec from luto at amacapital.net
* Fri Jan 3 2014 Miroslav Grepl <mgrepl at redhat.com> - 2.1.14-46.7
- policycoreutils-python should require checkpolicy
--------------------------------------------------------------------------------
================================================================================
qt-4.8.6-5.fc19 (FEDORA-2014-6083)
Qt toolkit
--------------------------------------------------------------------------------
Update Information:
New upstream stable bugfix release, as well as a fix for:
DoS vulnerability in the GIF image handler (QTBUG-38367).
See also http://blog.qt.digia.com/blog/2014/04/24/qt-4-8-6-released/
--------------------------------------------------------------------------------
ChangeLog:
* Mon May 5 2014 Rex Dieter <rdieter at fedoraproject.org> - 4.8.6-5
- drop f21 gcc-4.9 workarounds (they didn't work)
- omit qt-cupsEnumDests.patch, again, pending more testing (#980952)
* Fri Apr 25 2014 Rex Dieter <rdieter at fedoraproject.org> 4.8.6-4
- -fno-tree-vrp (#1091482)
* Fri Apr 25 2014 Rex Dieter <rdieter at fedoraproject.org> 4.8.6-3
- try -fno-delete-null-pointer-checks to workaround bug #1091482
* Thu Apr 24 2014 Rex Dieter <rdieter at fedoraproject.org> 4.8.6-2
- DoS vulnerability in the GIF image handler (QTBUG-38367)
* Thu Apr 24 2014 Rex Dieter <rdieter at fedoraproject.org> 4.8.6-1
- 4.8.6 (final)
* Tue Apr 15 2014 Rex Dieter <rdieter at fedoraproject.org> 4.8.6-0.2.rc2
- 4.8.6-rc2
* Tue Apr 1 2014 Rex Dieter <rdieter at fedoraproject.org> - 4.8.6-0.1.rc1
- 4.8.6-rc1
* Wed Mar 26 2014 Rex Dieter <rdieter at fedoraproject.org> 4.8.5-24
- support ppc64le arch (#1081216)
* Sat Mar 8 2014 Kevin Kofler <Kevin at tigcc.ticalc.org> 4.8.5-23
- fix QMAKE_STRIP handling (#1074041)
* Fri Mar 7 2014 Rex Dieter <rdieter at fedoraproject.org> 4.8.5-22
- respin mysql_config patch
* Fri Mar 7 2014 Rex Dieter <rdieter at fedoraproject.org> 4.8.5-21
- restore qt-cupsEnumDests.patch (#980952)
* Thu Mar 6 2014 Rex Dieter <rdieter at fedoraproject.org> 4.8.5-20
- systemtrayicon plugin support (from kubuntu)
* Tue Feb 18 2014 Rex Dieter <rdieter at fedoraproject.org> 4.8.5-19
- cleanup QMAKE_STRIP handling
* Wed Feb 12 2014 Rex Dieter <rdieter at fedoraproject.org> 4.8.5-18
- rebuild (libicu)
* Sat Feb 1 2014 Rex Dieter <rdieter at fedoraproject.org> 4.8.5-17
- better %rpm_macros_dir handling
* Sun Jan 26 2014 Rex Dieter <rdieter at fedoraproject.org> 4.8.5-16
- macros.qt4: ++%_qt4_examplesdir (keep %_qt4_examples around for compatibility)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1088142 - CVE-2014-0190 qt: NULL pointer dereference flaw in QGIFFormat::fillRect
https://bugzilla.redhat.com/show_bug.cgi?id=1088142
--------------------------------------------------------------------------------
================================================================================
recoll-1.19.13-1.fc19 (FEDORA-2014-6134)
Desktop full text search tool with Qt GUI
--------------------------------------------------------------------------------
Update Information:
Update to latest upstream release recoll 1.19.13, fixing threading and index issues.
--------------------------------------------------------------------------------
ChangeLog:
* Tue May 6 2014 Terje Rosten <terje.rosten at ntnu.no> - 1.19.13-1
- 1.19.13
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1085800 - [abrt] recoll: ole.py:60:byteOrder:IndexError: string index out of range
https://bugzilla.redhat.com/show_bug.cgi?id=1085800
[ 2 ] Bug #1076619 - [abrt] recoll: _M_find_node(): recollindex killed by SIGSEGV
https://bugzilla.redhat.com/show_bug.cgi?id=1076619
[ 3 ] Bug #1059716 - [abrt] recoll: _M_dispose(): recollindex killed by SIGABRT
https://bugzilla.redhat.com/show_bug.cgi?id=1059716
[ 4 ] Bug #1059737 - [abrt] recoll: ole.py:231:parse:OverflowError: Python int too large to convert to C long
https://bugzilla.redhat.com/show_bug.cgi?id=1059737
[ 5 ] Bug #1060634 - [abrt] recoll: ole.py:431:getSectorIDChain:IndexError: list index out of range
https://bugzilla.redhat.com/show_bug.cgi?id=1060634
--------------------------------------------------------------------------------
================================================================================
rubygem-actionpack-3.2.13-6.fc19 (FEDORA-2014-6127)
Web-flow and rendering framework putting the VC in MVC
--------------------------------------------------------------------------------
Update Information:
Fix for CVE-2014-0130 - Avoid directory traversal
--------------------------------------------------------------------------------
ChangeLog:
* Wed May 7 2014 Josef Stribny <jstribny at redhat.com> - 1:3.2.13-6
- Fix for CVE-2014-0130
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1095105 - CVE-2014-0130 rubygem-actionpack: directory traversal issue
https://bugzilla.redhat.com/show_bug.cgi?id=1095105
--------------------------------------------------------------------------------
================================================================================
salt-2014.1.4-1.fc19 (FEDORA-2014-6124)
A parallel remote execution system
--------------------------------------------------------------------------------
Update Information:
Update to bugfix release 2014.1.4
--------------------------------------------------------------------------------
ChangeLog:
* Tue May 6 2014 Erik Johnson <erik at saltstack.com> - 2014.1.4-1
- Update to bugfix release 2014.1.4
--------------------------------------------------------------------------------
================================================================================
scl-utils-20140127-5.fc19 (FEDORA-2014-6105)
Utilities for alternative packaging
--------------------------------------------------------------------------------
Update Information:
Due to cleanup in rpm, this update is required to make scl-utils-build working.
Changed script paths in __os_install_post macro.
--------------------------------------------------------------------------------
ChangeLog:
* Wed May 7 2014 Albert Uchytil <auchytil at redhat.com> - 20140127-5
- changed __os_install_post script paths to keep up with rpm (#1093074)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1093074 - scl-utils: /usr/lib/rpm/redhat/brp-strip-static-archive: No such file or directory
https://bugzilla.redhat.com/show_bug.cgi?id=1093074
--------------------------------------------------------------------------------
================================================================================
selinux-policy-3.12.1-74.26.fc19 (FEDORA-2014-6075)
SELinux policy configuration
--------------------------------------------------------------------------------
Update Information:
Update sandbox_transition() to call sandbox_dyntrasition().
See http://koji.fedoraproject.org/koji/buildinfo?buildID=506047
--------------------------------------------------------------------------------
ChangeLog:
* Fri May 2 2014 Miroslav Grepl <mgrepl at redhat.com> 3.12.1-74.26
- Update sandbox_transition() to call sandbox_dyntrasition().
* Fri May 2 2014 Lukas Vrabec <lvrabec at redhat.com> 3.12.1-74.25
- Add interface sysnet_manage_ifconfig_run
- Added sysnet_filetrans_named_content_ifconfig interface
- Added dnsmasq_read_state interface
- Add some rules from F20 branch in quantum policy
- Allow exim to use pam stack to check passwords
* Mon Apr 14 2014 Lukas Vrabec <lvrabec at redhat.com> 3.12.1-74.24
- Add modutils_dontaudit_exec_insmod interface
- Allow rabbitmq to bind to amanda port
- Allow kill capability to winbind_t
- Dontaudit exec insmod in boinc policy
- Allow exim to use pam stack to check passwords
* Fri Mar 21 2014 Lukas Vrabec <lvrabec at redhat.com> 3.12.1-74.23
- Add bumblebee to unconfined_domain
* Thu Mar 20 2014 Lukas Vrabec <lvrabec at redhat.com> 3.12.1-74.22
- Allow couchdb to listen on port 6984
- Added kernel_dontaudit_access_check_proc interface
- Added modutils_signal_insmod interface
- Add xserver_manage_xkb_libs interface
- Fixed ftp_home_dir boolean
- Added policy for bumblebee
* Mon Mar 17 2014 Lukas Vrabec <lvrabec at redhat.com> 3.12.1-74.21
- Added sysnet_domtrans_ifconfig in neutron policy
* Mon Mar 17 2014 Lukas Vrabec <lvrabec at redhat.com> 3.12.1-74.20
- Backported quantum and neutron rules from rawhide
- Allow couchdb can manage rabbitmq files
- Added couchdb_manage_files interface
- Fixed quantum policy
- Allow snort to manage its log files
- Allow procman to list doveconf_etc_t
- Dontaudit unpriv users creating rawip_socket, will be blocked by DAC
- Allow postgresql to read network state
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #993279 - SELinux is preventing /usr/lib64/erlang/erts-5.10.1/bin/beam from 'name_bind' accesses on the tcp_socket .
https://bugzilla.redhat.com/show_bug.cgi?id=993279
[ 2 ] Bug #1076250 - SELinux policy for freeipa does not work when admin is in sysadm_t
https://bugzilla.redhat.com/show_bug.cgi?id=1076250
[ 3 ] Bug #1082631 - SELinux is preventing /usr/bin/bash from 'read' accesses on the file /usr/bin/kmod.
https://bugzilla.redhat.com/show_bug.cgi?id=1082631
[ 4 ] Bug #1083111 - Upcoming varnish-4.0.0 release needs changes in selinux policy
https://bugzilla.redhat.com/show_bug.cgi?id=1083111
[ 5 ] Bug #1023610 - SELinux is preventing /usr/bin/postgres from 'read' accesses on the file unix.
https://bugzilla.redhat.com/show_bug.cgi?id=1023610
[ 6 ] Bug #1026851 - selinux with procmail and doveadm
https://bugzilla.redhat.com/show_bug.cgi?id=1026851
[ 7 ] Bug #1028178 - SELinux is preventing /usr/lib64/chromium-browser/chromium-browser from 'write' accesses on the sock_file bumblebee.socket.
https://bugzilla.redhat.com/show_bug.cgi?id=1028178
[ 8 ] Bug #1066124 - ftp_home_dir set to off allows FTP login to user home directory
https://bugzilla.redhat.com/show_bug.cgi?id=1066124
[ 9 ] Bug #1072642 - SELinux is preventing /usr/lib64/erlang/erts-5.10.4/bin/beam.smp from 'create' accesses on the file couchdb.pid.
https://bugzilla.redhat.com/show_bug.cgi?id=1072642
[ 10 ] Bug #1072983 - Wrong SELinux policies set for neutron-dhcp-agent
https://bugzilla.redhat.com/show_bug.cgi?id=1072983
[ 11 ] Bug #1076672 - SELinux is preventing /usr/sbin/snort-plain from 'write' accesses on the file /var/log/snort/snort.log.1394809020.
https://bugzilla.redhat.com/show_bug.cgi?id=1076672
--------------------------------------------------------------------------------
================================================================================
suricata-2.0-1.fc19 (FEDORA-2014-6115)
Intrusion Detection System
--------------------------------------------------------------------------------
Update Information:
Performance, stability, and accuracy improvements. Upgrade guide is here: https://redmine.openinfosecfoundation.org/projects/suricata/wiki/Upgrading_Suricata_14_to_Suricata_20
--------------------------------------------------------------------------------
ChangeLog:
* Wed Mar 26 2014 Steve Grubb <sgrubb at redhat.com> 2.0-1
- Major new upstream release with new features
--------------------------------------------------------------------------------
================================================================================
webkitgtk-2.0.4-2.fc19 (FEDORA-2014-6135)
GTK+ Web content engine library
--------------------------------------------------------------------------------
Update Information:
This update fixes a build problem on PPC, there are no changes for other archs.
--------------------------------------------------------------------------------
ChangeLog:
* Wed May 7 2014 Karsten Hopp <karsten at redhat.com> 2.0.4-2
- update libatomic patch (PPC)
--------------------------------------------------------------------------------
================================================================================
whois-5.1.2-1.fc19 (FEDORA-2014-6141)
Improved WHOIS client
--------------------------------------------------------------------------------
Update Information:
This release uses whois.nic. servers for new generic TLDs. It adds records for TLDs aw., and zm. It updates records for TLDs mk., tc., and vu. It adds records for Japanese and Korean ASNs. It fixes some invalid ASN and network entries. It updates disclaimer filters. It renames Norwegian translation from 'no' to 'nb' to reflect it's the Bokmål.
--------------------------------------------------------------------------------
ChangeLog:
* Wed May 7 2014 Petr Pisar <ppisar at redhat.com> - 5.1.2-1
- 5.1.2 bump
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1094738 - whois-5.1.2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1094738
--------------------------------------------------------------------------------
================================================================================
wordpress-3.9-1.fc19 (FEDORA-2014-6144)
Blog tool and publishing platform
--------------------------------------------------------------------------------
Update Information:
WordPress 3.9 “Smith”
Official annoucement: http://wordpress.org/news/2014/04/smith/
--------------------------------------------------------------------------------
ChangeLog:
* Wed May 7 2014 Remi Collet <remi at fedoraproject.org> - 3.9-1
- update to 3.9 “Smith”
--------------------------------------------------------------------------------
================================================================================
xorg-x11-drv-evdev-2.8.4-1.fc19 (FEDORA-2014-6113)
Xorg X11 evdev input driver
--------------------------------------------------------------------------------
Update Information:
Don't crash if we have more than MAXDEVICES devices
evdev 2.8.3, fixes horizontal scrolling on Microsoft mice
Update to 2.8.1, includes a patch we already carried, fixes potential crashes on MT devices without legacy axes and a potential misconfiguration on wheel emulation inertia (must be > 0 now)
--------------------------------------------------------------------------------
ChangeLog:
* Thu May 8 2014 Peter Hutterer <peter.hutterer at redhat.com> 2.8.4-1
- evdev 2.8.4
* Tue Apr 29 2014 Peter Hutterer <peter.hutterer at redhat.com> 2.8.3-1
- evdev 2.8.3
* Mon Oct 7 2013 Peter Hutterer <peter.hutterer at redhat.com> 2.8.2-1
- evdev 2.8.2
* Sun Aug 4 2013 Fedora Release Engineering <rel-eng at lists.fedoraproject.org> - 2.8.1-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #869065 - Horizontal scrolling with microsoft mouse scrolls vertically
https://bugzilla.redhat.com/show_bug.cgi?id=869065
--------------------------------------------------------------------------------
More information about the test
mailing list