The following Fedora EPEL 6 Security updates need testing:
Age URL
544 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5620/bugzilla-3.4.…
59 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-11274/ssmtp-2.61-2…
20 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-11703/chicken-4.8.…
9 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-11771/mod_fcgid-2.…
8 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-11803/dropbear-201…
8 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-11785/phpMyAdmin-3…
1 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-11865/quassel-0.9.…
1 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-11817/ReviewBoard-…
1 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-11880/GraphicsMagi…
0 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-11883/salt-0.17.1-…
The following builds have been pushed to Fedora EPEL 6 updates-testing
collectl-3.6.8-1.el6
gdisk-0.8.8-1.el6
imapsync-1.569-1.el6
perl-Archive-Peek-0.35-2.el6
perl-Mail-IMAPClient-3.34-1.el6
php-bartlett-PHP-CompatInfo-2.24.0-1.el6
php-bartlett-PHP-Reflect-1.9.0-1.el6
python-velruse-1.0.3-6.el6
salt-0.17.1-1.el6
znc-infobot-1.2-0.3.beta1.el6
Details about builds:
================================================================================
collectl-3.6.8-1.el6 (FEDORA-EPEL-2013-11889)
A utility to collect various Linux performance data
--------------------------------------------------------------------------------
Update Information:
- update to upstream version 3.6.8
- upstream changelog at http://collectl.sourceforge.net/Releases.html
--------------------------------------------------------------------------------
ChangeLog:
* Fri Oct 18 2013 Dan Horák <dan[at]danny.cz> - 3.6.8-1
- upgrade to upstream version 3.6.8
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1020247 - collectl-3.6.8 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1020247
--------------------------------------------------------------------------------
================================================================================
gdisk-0.8.8-1.el6 (FEDORA-EPEL-2013-11888)
An fdisk-like partitioning tool for GPT disks
--------------------------------------------------------------------------------
Update Information:
Update to 0.8.8:
- Fixed bug that could cause segfault when passing an invalid partition number to sgdisk's -i/--info command.
- Added new type code: 933AC7E1-2EB4-4F13-B844-0E14E2AEF915, or gdisk code 8302, for Linux /home partitions. This type code is used by recent versions of systemd to permit /home to be auto-mounted; see http://www.freedesktop.org/software/systemd/man/systemd-gpt-auto-generator.… for details.
- Added new type code: 9E1A2D38-C612-4316-AA26-8B49521E5A8B, or gdisk code 4100, for PowerPC PReP (PowerPC reference platform) boot.
- The number of partition type codes has grown large enough that it fills an 80x24 display. I've therefore added a pause (with a prompt to hit <Enter>) to display more items after showing 21 lines in gdisk or after the screen has nearly filled with entries in cgdisk. There's no such pause/prompt in sgdisk, though.
- Fine-tuned verification ('v') check for 0xEE partition that doesn't begin on sector 1: Previously, a disk with multiple 0xEE partitions would always trigger this warning. Now, the warning occurs only if NONE of the 0xEE partitions begins on sector 1.
- Fixed hybrid MBR creation on disks larger than 2TiB: Previously, if one opted to create an extra partition to cover unused space following hybridized partitions, gdisk would hang.
- Added check for an active/bootable 0xEE protective partition to the verify ('v') function. If found, this is not counted as an error, but it is called out to the user, since it can cause some EFIs (such as VirtualBox's EFI) to ignore the disk.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Oct 17 2013 Terje Rosten <terje.rosten(a)ntnu.no> - 0.8.8-1
- 0.8.8
* Fri Sep 13 2013 Richard W.M. Jones <rjones(a)redhat.com> - 0.8.7-2
- Range check -i option (RHBZ#1007847).
--------------------------------------------------------------------------------
================================================================================
imapsync-1.569-1.el6 (FEDORA-EPEL-2013-11886)
Tool to migrate email between IMAP servers
--------------------------------------------------------------------------------
Update Information:
Update to latest versions
--------------------------------------------------------------------------------
ChangeLog:
* Thu Oct 17 2013 Nick Bebout <nb(a)fedoraproject.org> - 1.569-1
- Upgrade to 1.569
--------------------------------------------------------------------------------
================================================================================
perl-Archive-Peek-0.35-2.el6 (FEDORA-EPEL-2013-11885)
Peek into archives without extracting them
--------------------------------------------------------------------------------
Update Information:
This is the first Fedora/EPEL release of perl-Archive-Peek.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1020404 - Review Request: perl-Archive-Peek - Peek into archives without extracting them
https://bugzilla.redhat.com/show_bug.cgi?id=1020404
--------------------------------------------------------------------------------
================================================================================
perl-Mail-IMAPClient-3.34-1.el6 (FEDORA-EPEL-2013-11886)
An IMAP Client API
--------------------------------------------------------------------------------
Update Information:
Update to latest versions
--------------------------------------------------------------------------------
ChangeLog:
* Thu Oct 17 2013 Nick Bebout <nb(a)fedoraproject.org> - 3.34-1
- Upgrade to 3.34
* Sat Aug 3 2013 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 3.33-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
* Mon Jul 22 2013 Petr Pisar <ppisar(a)redhat.com> - 3.33-2
- Perl 5.18 rebuild
--------------------------------------------------------------------------------
================================================================================
php-bartlett-PHP-CompatInfo-2.24.0-1.el6 (FEDORA-EPEL-2013-11835)
Find out version and the extensions required for a piece of code to run
--------------------------------------------------------------------------------
Update Information:
PHP_Reflect Version 1.9.0 (2013-10-12)
Additions and changes:
* drop support of PHP 5.2
* add Composer support
Bug fixes:
* avoid wrong trait detection if source code used a class property named trait: $this->trait
PHP_CompatInfo Version 2.24.0 (2013-10-17)
Additions and changes:
* add both support to PHP 5.4.21 and 5.5.5
* update imagick reference to 3.1.2
* update mongo reference to 1.4.4
* update xhprof reference to 0.9.4
* update varnish reference to 1.1.0
* update zip reference to 1.12.1
* update xcache reference to 3.1.0
* update zend opcache reference to 7.0.3-dev bundled in PHP 5.5.5
* convert test case classes from standard fixtures to shared fixtures
* DYN (lazy loader) is now rules completed. May be used in production
* tests suites may be now run with default memory limit
* extension not available message is received by all PHPUnit test listeners
* add a new PHPUnit test listener useful to know what reference is loaded and tested
* add composer support (GH-102 request)
* raise PHP_Reflect dependency to 1.9.0
* detect more constants (when used as argument in function signature/call)
--------------------------------------------------------------------------------
ChangeLog:
* Fri Oct 18 2013 Remi Collet <remi(a)fedoraproject.org> - 2.24.0-1
- update to 2.24.0
- raise dependency, PHP_Reflect 1.9.0
- drop HashTest.php for EPEL-6
--------------------------------------------------------------------------------
================================================================================
php-bartlett-PHP-Reflect-1.9.0-1.el6 (FEDORA-EPEL-2013-11835)
Adds the ability to reverse-engineer PHP
--------------------------------------------------------------------------------
Update Information:
PHP_Reflect Version 1.9.0 (2013-10-12)
Additions and changes:
* drop support of PHP 5.2
* add Composer support
Bug fixes:
* avoid wrong trait detection if source code used a class property named trait: $this->trait
PHP_CompatInfo Version 2.24.0 (2013-10-17)
Additions and changes:
* add both support to PHP 5.4.21 and 5.5.5
* update imagick reference to 3.1.2
* update mongo reference to 1.4.4
* update xhprof reference to 0.9.4
* update varnish reference to 1.1.0
* update zip reference to 1.12.1
* update xcache reference to 3.1.0
* update zend opcache reference to 7.0.3-dev bundled in PHP 5.5.5
* convert test case classes from standard fixtures to shared fixtures
* DYN (lazy loader) is now rules completed. May be used in production
* tests suites may be now run with default memory limit
* extension not available message is received by all PHPUnit test listeners
* add a new PHPUnit test listener useful to know what reference is loaded and tested
* add composer support (GH-102 request)
* raise PHP_Reflect dependency to 1.9.0
* detect more constants (when used as argument in function signature/call)
--------------------------------------------------------------------------------
ChangeLog:
* Sat Oct 12 2013 Remi Collet <remi(a)fedoraproject.org> - 1.9.0-1
- Update to 1.9.0
- raise dependency on PHP >= 5.3
--------------------------------------------------------------------------------
================================================================================
python-velruse-1.0.3-6.el6 (FEDORA-EPEL-2013-11882)
Simplify third-party authentication for web applications
--------------------------------------------------------------------------------
Update Information:
Apply patch introducing new extension point for openid.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Oct 17 2013 Ralph Bean <rbean(a)redhat.com> - 1.0.3-6
- Apply patch introducing an new extension point
* Sun Aug 4 2013 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 1.0.3-5
- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
* Thu Feb 14 2013 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 1.0.3-4
- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
salt-0.17.1-1.el6 (FEDORA-EPEL-2013-11883)
A parallel remote execution system
--------------------------------------------------------------------------------
Update Information:
Update to bugfix release 0.17.1.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Oct 17 2013 Erik Johnson <erik(a)saltstack.com> - 0.17.1-1
- Update to bugfix release 0.17.1
* Thu Sep 26 2013 Erik Johnson <erik(a)saltstack.com> - 0.17.0-1
- Update to feature release 0.17.0
* Wed Sep 11 2013 David Anderson <dave(a)dubkat.com>
- Change sourcing order of init functions and salt default file
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1020306 - CVE-2013-4439 salt: saltstack minion identity usurpation
https://bugzilla.redhat.com/show_bug.cgi?id=1020306
--------------------------------------------------------------------------------
================================================================================
znc-infobot-1.2-0.3.beta1.el6 (FEDORA-EPEL-2013-11884)
infobot module for ZNC IRC Bouncer
--------------------------------------------------------------------------------
Update Information:
Updated to Support ZNC 1.2-0.3.beta1
--------------------------------------------------------------------------------
ChangeLog:
* Fri Oct 18 2013 Keiran Smith <fedora(a)affix.me> - 1.2-03.beta1
- Rebuild for new ZNC Version
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #991832 - znc-infobot need to be updated for znc-1.2.0-0.1.alpha1
https://bugzilla.redhat.com/show_bug.cgi?id=991832
--------------------------------------------------------------------------------
The following Fedora EPEL 5 Security updates need testing:
Age URL
543 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5630/bugzilla-3.2.…
57 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-11276/ssmtp-2.61-2…
34 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-11560/fail2ban-0.8…
6 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-11811/mod_fcgid-2.…
6 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-11813/libtar-1.2.1…
0 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-11879/scipy-0.6.0-…
The following builds have been pushed to Fedora EPEL 5 updates-testing
R-qtl-1.28.19-1.el5
gsoap-2.7.13-5.el5
ipwatchd-1.2.1-3.el5
libodb-2.2.3-1.el5
nrpe-2.14-5.el5
pagekite-0.5.6d-1.el5
scipy-0.6.0-7.el5
tomcat-native-1.1.29-1.el5
voms-api-java-2.0.10-4.el5
wgrib-1.8.1.2b-1.el5
Details about builds:
================================================================================
R-qtl-1.28.19-1.el5 (FEDORA-EPEL-2013-11878)
Tools for analyzing QTL experiments
--------------------------------------------------------------------------------
Update Information:
Update to version 1.28.
See http://rqtl.org/STATUS.txt for details.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Oct 15 2013 Mattias Ellert <mattias.ellert(a)fysast.uu.se> - 1.28.19-1
- Update to 1.28.19
* Fri Aug 2 2013 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 1.27.10-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
* Wed Apr 17 2013 Tom Callaway <spot(a)fedoraproject.org> - 1.27.10-2
- rebuild for R3
--------------------------------------------------------------------------------
================================================================================
gsoap-2.7.13-5.el5 (FEDORA-EPEL-2013-11849)
Generator Tools for Coding SOAP/XML Web Services in C and C++
--------------------------------------------------------------------------------
Update Information:
Pad non-ipv6 struct gsoap to match ipv6 version.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Oct 16 2013 Mattias Ellert <mattias.ellert(a)fysast.uu.se> - 2.7.13-5
- Pad non-ipv6 struct gsoap to match ipv6 version
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #978872 - stdsoap2.h: struct soap should match exactly with what libgsoap uses
https://bugzilla.redhat.com/show_bug.cgi?id=978872
--------------------------------------------------------------------------------
================================================================================
ipwatchd-1.2.1-3.el5 (FEDORA-EPEL-2013-11847)
IP conflict detection tool
--------------------------------------------------------------------------------
Update Information:
IPwatchD is a simple daemon that analyses all incoming ARP packets in order to detect IP conflicts on Linux. It can be configured to listen on one or more interfaces (alias interfaces are also supported) in active or passive mode. In active mode IPwatchD protects your host before IP takeover by answering Gratuitous ARP requests received from conflicting system. In passive mode it just records information about conflict through standard syslog interface.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #726989 - Review Request: ipwatchd - IP conflict detection tool
https://bugzilla.redhat.com/show_bug.cgi?id=726989
--------------------------------------------------------------------------------
================================================================================
libodb-2.2.3-1.el5 (FEDORA-EPEL-2013-11855)
Common ODB runtime library from Code Synthesis
--------------------------------------------------------------------------------
Update Information:
- Initial build
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #975312 - Review Request: libodb - Common ODB runtime library
https://bugzilla.redhat.com/show_bug.cgi?id=975312
--------------------------------------------------------------------------------
================================================================================
nrpe-2.14-5.el5 (FEDORA-EPEL-2013-11859)
Host/service/network monitoring agent for Nagios
--------------------------------------------------------------------------------
Update Information:
- Allow building for aarch64 (rhbz #926244)
- Allow user to redefine default commands (rhbz #963703)
--------------------------------------------------------------------------------
ChangeLog:
* Wed Oct 16 2013 Peter Lemenkov <lemenkov(a)gmail.com> - 2.14-5
- Allow building for aarch64 (rhbz #926244)
- Allow user to redefine default commands (rhbz #963703)
* Sat Aug 3 2013 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 2.14-4
- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #926244 - nrpe: Does not support aarch64 in f19 and rawhide
https://bugzilla.redhat.com/show_bug.cgi?id=926244
[ 2 ] Bug #963703 - nrpe.cfg set config values after including user configuration(s)
https://bugzilla.redhat.com/show_bug.cgi?id=963703
--------------------------------------------------------------------------------
================================================================================
pagekite-0.5.6d-1.el5 (FEDORA-EPEL-2013-11850)
Makes localhost servers visible to the world
--------------------------------------------------------------------------------
Update Information:
The fast, reliable localhost tunneling solution
--------------------------------------------------------------------------------
================================================================================
scipy-0.6.0-7.el5 (FEDORA-EPEL-2013-11879)
Scipy: Scientific Tools for Python
--------------------------------------------------------------------------------
Update Information:
Add patch for CVE-2013-4251: insecure use of /tmp by scipy.weave
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #916690 - CVE-2013-4251 scipy: weave /tmp and current directory issues
https://bugzilla.redhat.com/show_bug.cgi?id=916690
--------------------------------------------------------------------------------
================================================================================
tomcat-native-1.1.29-1.el5 (FEDORA-EPEL-2013-11856)
Tomcat native library
--------------------------------------------------------------------------------
Update Information:
Update to version 1.1.29.
http://tomcat.apache.org/native-doc/miscellaneous/changelog.html
--------------------------------------------------------------------------------
ChangeLog:
* Tue Oct 15 2013 Ville Skyttä <ville.skytta(a)iki.fi> - 1.1.29-1
- Update to 1.1.29.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1019169 - tomcat-native-1.1.29 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1019169
--------------------------------------------------------------------------------
================================================================================
voms-api-java-2.0.10-4.el5 (FEDORA-EPEL-2013-11871)
Virtual Organization Membership Service Java API
--------------------------------------------------------------------------------
Update Information:
Disable tests that fail due to expired CRL in sources.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Oct 14 2013 Mattias Ellert <mattias.ellert(a)fysast.uu.se> - 2.0.10-4
- Disable CRL tests (the CRL in the sources has expired)
* Sun Aug 4 2013 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 2.0.10-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
wgrib-1.8.1.2b-1.el5 (FEDORA-EPEL-2013-11846)
Manipulate, inventory and decode GRIB files
--------------------------------------------------------------------------------
Update Information:
- added JMA table 200 for JRA-55
- added fflush(dump_file) and fflush(stdout), enhancement for potential apps
- changes from Jeffery S Smith for Albers equal area projection
- seekgrib: scan entire file for grib data because ECMWF files have grib1+grib2 data
- Paul Schou: fixed #define GDS_Lambert_LonSP(gds) INT3(gds[37],gds[38],gds[39])
- update ncep table 128, 129, 130, 133, 205
- moved int ec_large and len_ec_bds to seek_grib.c, helped people who just call subroutines, suggested by P. Tran
- changed add_time: old: 1month + Jan31 returns Feb31, now returns Feb 28/29
- PDStimes .. make time units consistent in inv
- added code from Brian Doty for large ECMWF files
- added level 216/217/239/241
- warning message if grib2 message encountered
- added ncep table 141
- Dusan Jovic's changes for Arakawa staggered b-grid (205)
- added -cmc by NCO request
- updated/added ectables: 128, 129, 131, 132, 133, 140, 150,
151, 160, 162, 170, 171, 173, 174, 180, 190, 200, 210, 211, 228
- fix: bit 1 table 7 doesn't apply to lambert conformal
- make center LAMI point to DWD tables (Davide Sacchetti) (removed)
- (preliminary) MDL table
- polar & lambert conformal grid: dx/dy now respect bit 1 of resolution flag
- update time ranges for CFSRR
--------------------------------------------------------------------------------
The following Fedora EPEL 6 Security updates need testing:
Age URL
543 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5620/bugzilla-3.4.…
57 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-11274/ssmtp-2.61-2…
18 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-11703/chicken-4.8.…
8 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-11771/mod_fcgid-2.…
6 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-11803/dropbear-201…
6 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-11785/phpMyAdmin-3…
0 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-11865/quassel-0.9.…
0 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-11817/ReviewBoard-…
0 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-11880/GraphicsMagi…
The following builds have been pushed to Fedora EPEL 6 updates-testing
GraphicsMagick-1.3.18-2.el6
R-qtl-1.28.19-1.el6
ReviewBoard-1.7.16-2.el6.1
diskimage-builder-0.0.5-1.el6
dyninst-8.1.2-4.el6
fedfs-utils-0.9.4-1.el6
fedora-review-0.5.0-3.el6
golang-bitbucket-kardianos-osext-0-0.3.hg364fb577de68.el6
golang-bitbucket-kardianos-osext-0-0.4.hg364fb577de68.el6
golang-github-coreos-go-systemd-0-0.2.git68bc612.el6
golang-github-gorilla-context-0-0.19.git708054d.el6
golang-github-kr-pty-0-0.15.git3b1f648.el6
golang-googlecode-goprotobuf-0-0.6.hg61664b8425f3.el6
golang-googlecode-net-0-0.10.hg84a4013f96e0.el6
golang-googlecode-sqlite-0-0.8.hg74691fb6f837.el6
gsoap-2.7.16-4.el6
ipwatchd-1.2.1-3.el6
libodb-2.2.3-1.el6
nagios-plugins-1.4.16-10.el6
nrpe-2.14-5.el6
nx-libs-3.5.0.21-4.el6
pagekite-0.5.6d-1.el6
pss-1.38-1.el6
python-TornadIO2-0.0.4-4.el6
python-amqp-1.3.0-1.el6
python-djblets-0.7.21-1.el6
python-flask-mongoengine-0.7-2.el6
python-oslo-sphinx-1.0-3.el6
quassel-0.9.1-1.el6
tomcat-native-1.1.29-1.el6
voms-api-java-2.0.10-4.el6
wannier90-2.0.0-1.el6
wgrib-1.8.1.2b-1.el6
x2goclient-4.0.1.1-1.el6
x2godesktopsharing-3.1.1.0-4.el6
x2goserver-4.0.1.6-5.el6
Details about builds:
================================================================================
GraphicsMagick-1.3.18-2.el6 (FEDORA-EPEL-2013-11880)
An ImageMagick fork, offering faster image generation and better quality
--------------------------------------------------------------------------------
Update Information:
Update to the latest GraphicsMagick release, includes an important security-related fix for exporting (some) 8-bit images.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Jun 26 2013 Rex Dieter <rdieter(a)fedoraproject.org> 1.3.18-2
- GraphicsMagick needs to recognize aarch64 as 64bit arch (#978351)
* Mon Mar 11 2013 Rex Dieter <rdieter(a)fedoraproject.org> - 1.3.18-1
- 1.3.18 (#920064)
- add %rhel conditionals
* Wed Feb 13 2013 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 1.3.17-4
- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild
* Fri Jan 18 2013 Adam Tkac <atkac redhat com> - 1.3.17-3
- rebuild due to "jpeg8-ABI" feature drop
* Fri Dec 21 2012 Adam Tkac <atkac redhat com> - 1.3.17-2
- rebuild against new libjpeg
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1019085 - graphicsmagick: 8-bit RGBA images export DoS vulnerability
https://bugzilla.redhat.com/show_bug.cgi?id=1019085
--------------------------------------------------------------------------------
================================================================================
R-qtl-1.28.19-1.el6 (FEDORA-EPEL-2013-11876)
Tools for analyzing QTL experiments
--------------------------------------------------------------------------------
Update Information:
Update to version 1.28.
See http://rqtl.org/STATUS.txt for details.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Oct 15 2013 Mattias Ellert <mattias.ellert(a)fysast.uu.se> - 1.28.19-1
- Update to 1.28.19
* Fri Aug 2 2013 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 1.27.10-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
ReviewBoard-1.7.16-2.el6.1 (FEDORA-EPEL-2013-11817)
Web-based code review tool
--------------------------------------------------------------------------------
Update Information:
Review Board 1.6.19 and 1.7.15 fix a few issues in the API where users could access certain data they should not have been able to access, if using the Local Sites feature, invite-only groups, or private repositories. It also fixes cases with invite-only groups where the group name and list of private review requests would show up on some pages (though the review requests themselves were not accessible).
These issues do not affect most of the installations out there, but we strongly recommend upgrading anyway. There are no known cases of anyone exploiting these bugs, and in fact we discovered these internally while building new tools to test for security vulnerabilities in our codebase.
There are also some other bug fixes, and important changes needed for extensions that provide their own REST APIs.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Oct 16 2013 Stephen Gallagher <sgallagh(a)redhat.com> - 1.7.16-2.1
- Remove setup.py strict requirement on pytz. RHEL provides a patched
version that meets the needs.
* Sun Oct 13 2013 Patrick Uiterwijk <puiterwijk(a)gmail.com> - 1.7.16-2
- Update Djblets version
* Sun Oct 13 2013 Patrick Uiterwijk <puiterwijk(a)redhat.com> - 1.7.15-2
- New upstream bugfix release 1.7.16
- Fixes a breakage when accessing the Review Group Users resource
- Fixes pagination in dashboard and similar pages
* Thu Oct 10 2013 Stephen Gallagher <sgallagh(a)redhat.com> - 1.7.15-1
- New upstream security release 1.7.15
- http://www.reviewboard.org/docs/releasenotes/reviewboard/1.7.15/
- Resolves: CVE-2013-4410
- Fixes access-control problems with REST API
- Resolves: CVE-2013-4411
- Fixes URL processing allowing unauthorized users to view review lists
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1016596 - CVE-2013-4410 ReviewBoard: access-control problems with REST API
https://bugzilla.redhat.com/show_bug.cgi?id=1016596
[ 2 ] Bug #1016599 - CVE-2013-4411 ReviewBoard: URL processing allows unauthorized users to view review lists
https://bugzilla.redhat.com/show_bug.cgi?id=1016599
[ 3 ] Bug #1016601 - CVE-2013-4409 python-djblets: unsanitized eval() vulnerability
https://bugzilla.redhat.com/show_bug.cgi?id=1016601
--------------------------------------------------------------------------------
================================================================================
diskimage-builder-0.0.5-1.el6 (FEDORA-EPEL-2013-11877)
Image building tools for OpenStack
--------------------------------------------------------------------------------
Update Information:
Release 0.0.5
--------------------------------------------------------------------------------
ChangeLog:
* Wed Oct 9 2013 Jeff Peeler <jpeeler(a)redhat.com> 0.0.5-1
- rebase to 0.0.5
- drop unnecessary pbr patch since 0.5.21 now in EPEL
--------------------------------------------------------------------------------
================================================================================
dyninst-8.1.2-4.el6 (FEDORA-EPEL-2013-11852)
An API for Run-time Code Generation
--------------------------------------------------------------------------------
Update Information:
Dyninst is an Application Program Interface (API) to permit the insertion of code into a running program. The API also permits changing or removing subroutine calls from the application program. Run-time code changes are useful to support a variety of applications including debugging, performance monitoring, and to support composing applications out of existing packages. The goal of this API is to provide a machine independent interface to permit the creation of tools and applications that use run-time code patching.
--------------------------------------------------------------------------------
================================================================================
fedfs-utils-0.9.4-1.el6 (FEDORA-EPEL-2013-11843)
Utilities for mounting and managing FedFS
--------------------------------------------------------------------------------
Update Information:
Enable more subpackages; update to upstream 0.9.4 to address bugs
--------------------------------------------------------------------------------
ChangeLog:
* Tue Oct 15 2013 Chuck Lever <chuck.lever(a)oracle.com> - 0.9.4-1
- update to upstream fedfs-utils 0.9.4
- "make install-strip" works now, so use it
- add -admin subpackage so single-use administrative tools are available
- add -nsdbparams subpackage because -admin requires it (and so will -server)
- add -devel subpackage so el6 mountd can be built with junction support
--------------------------------------------------------------------------------
================================================================================
fedora-review-0.5.0-3.el6 (FEDORA-EPEL-2013-11853)
Review tool for fedora rpm packages
--------------------------------------------------------------------------------
Update Information:
Update dependency on licensecheck script and fix phpci plugin dependency
Update dependency on licensecheck script and fix phpci plugin dependency
--------------------------------------------------------------------------------
ChangeLog:
* Tue Oct 15 2013 Stanislav Ochotnicky <sochotnicky(a)redhat.com> - 0.5.0-3
- Really use phpcompatinfo instead of phpci
* Mon Oct 14 2013 Stanislav Ochotnicky <sochotnicky(a)redhat.com> - 0.5.0-2
- Fix requires for licensecheck (#1016309)
- Remove separate php plugin subpackage (#971875)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1016309 - Add dependency on %{_bindir}/licensecheck
https://bugzilla.redhat.com/show_bug.cgi?id=1016309
[ 2 ] Bug #971875 - phpci command renamed to phpcompatinfo
https://bugzilla.redhat.com/show_bug.cgi?id=971875
--------------------------------------------------------------------------------
================================================================================
golang-bitbucket-kardianos-osext-0-0.3.hg364fb577de68.el6 (FEDORA-EPEL-2013-11841)
Extensions to the standard Go OS package
--------------------------------------------------------------------------------
Update Information:
Initial upload.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1018501 - Review Request: golang-bitbucket-kardianos-osext - Extensions to the standard Go OS package
https://bugzilla.redhat.com/show_bug.cgi?id=1018501
--------------------------------------------------------------------------------
================================================================================
golang-bitbucket-kardianos-osext-0-0.4.hg364fb577de68.el6 (FEDORA-EPEL-2013-11866)
Extensions to the standard Go OS package
--------------------------------------------------------------------------------
Update Information:
removed double quotes from Provides.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1020121 - remove double quotes from provides
https://bugzilla.redhat.com/show_bug.cgi?id=1020121
--------------------------------------------------------------------------------
================================================================================
golang-github-coreos-go-systemd-0-0.2.git68bc612.el6 (FEDORA-EPEL-2013-11858)
Go bindings to systemd socket activation, journal and D-BUS APIs
--------------------------------------------------------------------------------
Update Information:
Initial upload.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1018533 - Review Request: golang-github-coreos-go-systemd - Go bindings to systemd socket activation, journal and D-BUS APIs
https://bugzilla.redhat.com/show_bug.cgi?id=1018533
--------------------------------------------------------------------------------
================================================================================
golang-github-gorilla-context-0-0.19.git708054d.el6 (FEDORA-EPEL-2013-11872)
A golang registry for global request variables
--------------------------------------------------------------------------------
Update Information:
removed double quotes from Provides.
noarch for f19+ and rhel7+, exclusivearch otherwise.
no longer noarch, cause no golang for ppc64.
pkg archives no longer installed,dep for gorilla/mux.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1020109 - remove double quotes from provides
https://bugzilla.redhat.com/show_bug.cgi?id=1020109
[ 2 ] Bug #1001300 - Review Request: golang-github-gorilla-context - A golang registry for global request variables
https://bugzilla.redhat.com/show_bug.cgi?id=1001300
--------------------------------------------------------------------------------
================================================================================
golang-github-kr-pty-0-0.15.git3b1f648.el6 (FEDORA-EPEL-2013-11860)
PTY interface for Go
--------------------------------------------------------------------------------
Update Information:
removed double quotes from Provides.
noarch for f19+ and rhel7+, exclusivearch otherwise.
no longer noarch, cause no golang for ppc64.
Fixes docker first run error.
pkg archives no longer installed,dep for docker.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1020118 - remove double quotes from provides
https://bugzilla.redhat.com/show_bug.cgi?id=1020118
[ 2 ] Bug #1001396 - Review Request: golang-github-kr-pty - PTY interface for Go
https://bugzilla.redhat.com/show_bug.cgi?id=1001396
[ 3 ] Bug #1012701 - update for O_NOCTTY fix
https://bugzilla.redhat.com/show_bug.cgi?id=1012701
--------------------------------------------------------------------------------
================================================================================
golang-googlecode-goprotobuf-0-0.6.hg61664b8425f3.el6 (FEDORA-EPEL-2013-11842)
Go support for Google protocol buffers
--------------------------------------------------------------------------------
Update Information:
* Initial build
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1018057 - Review Request: golang-googlecode-goprotobuf - Go support for Google protocol buffers
https://bugzilla.redhat.com/show_bug.cgi?id=1018057
--------------------------------------------------------------------------------
================================================================================
golang-googlecode-net-0-0.10.hg84a4013f96e0.el6 (FEDORA-EPEL-2013-11854)
Supplementary Go networking libraries
--------------------------------------------------------------------------------
Update Information:
removed double quotes from Provides.
noarch for f19+ and rhel7+, exclusivearch otherwise.
no longer noarch, cause no golang for ppc64.
pkg archives no longer installed,dep for docker.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1020119 - remove double quotes from provides
https://bugzilla.redhat.com/show_bug.cgi?id=1020119
[ 2 ] Bug #1009967 - Review Request: golang-googlecode-net - Supplementary Go networking libraries
https://bugzilla.redhat.com/show_bug.cgi?id=1009967
--------------------------------------------------------------------------------
================================================================================
golang-googlecode-sqlite-0-0.8.hg74691fb6f837.el6 (FEDORA-EPEL-2013-11862)
Trivial sqlite3 binding for Go
--------------------------------------------------------------------------------
Update Information:
removed double quotes from Provides.
Initial package upload.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1020126 - remove double quotes from provides
https://bugzilla.redhat.com/show_bug.cgi?id=1020126
[ 2 ] Bug #1015857 - Review Request: golang-googlecode-sqlite - Trivial sqlite3 binding for Go
https://bugzilla.redhat.com/show_bug.cgi?id=1015857
--------------------------------------------------------------------------------
================================================================================
gsoap-2.7.16-4.el6 (FEDORA-EPEL-2013-11867)
Generator Tools for Coding SOAP/XML Web Services in C and C++
--------------------------------------------------------------------------------
Update Information:
Pad non-ipv6 struct gsoap to match ipv6 version.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Oct 16 2013 Mattias Ellert <mattias.ellert(a)fysast.uu.se> - 2.7.16-4
- Pad non-ipv6 struct gsoap to match ipv6 version
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #978872 - stdsoap2.h: struct soap should match exactly with what libgsoap uses
https://bugzilla.redhat.com/show_bug.cgi?id=978872
--------------------------------------------------------------------------------
================================================================================
ipwatchd-1.2.1-3.el6 (FEDORA-EPEL-2013-11844)
IP conflict detection tool
--------------------------------------------------------------------------------
Update Information:
IPwatchD is a simple daemon that analyses all incoming ARP packets in order to detect IP conflicts on Linux. It can be configured to listen on one or more interfaces (alias interfaces are also supported) in active or passive mode. In active mode IPwatchD protects your host before IP takeover by answering Gratuitous ARP requests received from conflicting system. In passive mode it just records information about conflict through standard syslog interface.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #726989 - Review Request: ipwatchd - IP conflict detection tool
https://bugzilla.redhat.com/show_bug.cgi?id=726989
--------------------------------------------------------------------------------
================================================================================
libodb-2.2.3-1.el6 (FEDORA-EPEL-2013-11864)
Common ODB runtime library from Code Synthesis
--------------------------------------------------------------------------------
Update Information:
- Initial build
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #975312 - Review Request: libodb - Common ODB runtime library
https://bugzilla.redhat.com/show_bug.cgi?id=975312
--------------------------------------------------------------------------------
================================================================================
nagios-plugins-1.4.16-10.el6 (FEDORA-EPEL-2013-11845)
Host/service/network monitoring program plugins for Nagios
--------------------------------------------------------------------------------
Update Information:
- Remove EL4 and EL5 support
- Backport patches to fix check_linux_raid in case of resyncing (rhbz #504721)
- Fix smart attribute comparison (rhbz #913085)
--------------------------------------------------------------------------------
ChangeLog:
* Wed Oct 16 2013 Peter Lemenkov <lemenkov(a)gmail.com> - 1.4.16-10
- Remove EL4 and EL5 support
- Backport patches to fix check_linux_raid in case of resyncing (rhbz #504721)
- Fix smart attribute comparison (rhbz #913085)
* Sat Aug 3 2013 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 1.4.16-9
- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
* Sun Jul 21 2013 Petr Pisar <ppisar(a)redhat.com> - 1.4.16-8
- Perl 5.18 rebuild
* Wed May 22 2013 Jose Pedro Oliveira <jpo at di.uminho.pt> - 1.4.16-7
- Build package with PIE flags (#965536)
* Thu Feb 14 2013 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 1.4.16-6
- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #504721 - Check Linux raid Nagios plugin fails to report recovery status of software RAID controller
https://bugzilla.redhat.com/show_bug.cgi?id=504721
[ 2 ] Bug #913085 - check_ide_smart issues errors when value equals threshold
https://bugzilla.redhat.com/show_bug.cgi?id=913085
--------------------------------------------------------------------------------
================================================================================
nrpe-2.14-5.el6 (FEDORA-EPEL-2013-11848)
Host/service/network monitoring agent for Nagios
--------------------------------------------------------------------------------
Update Information:
- Allow building for aarch64 (rhbz #926244)
- Allow user to redefine default commands (rhbz #963703)
--------------------------------------------------------------------------------
ChangeLog:
* Wed Oct 16 2013 Peter Lemenkov <lemenkov(a)gmail.com> - 2.14-5
- Allow building for aarch64 (rhbz #926244)
- Allow user to redefine default commands (rhbz #963703)
* Sat Aug 3 2013 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 2.14-4
- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #926244 - nrpe: Does not support aarch64 in f19 and rawhide
https://bugzilla.redhat.com/show_bug.cgi?id=926244
[ 2 ] Bug #963703 - nrpe.cfg set config values after including user configuration(s)
https://bugzilla.redhat.com/show_bug.cgi?id=963703
--------------------------------------------------------------------------------
================================================================================
nx-libs-3.5.0.21-4.el6 (FEDORA-EPEL-2013-11818)
NX X11 protocol compression libraries
--------------------------------------------------------------------------------
Update Information:
X2Go is a server based computing environment with
- session resuming
- low bandwidth support
- LDAP support
- client side mass storage mounting support
- audio support
- authentication by smartcard and USB stick
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1018556 - x2goagent has unsatisfied dependencies: x2goserver
https://bugzilla.redhat.com/show_bug.cgi?id=1018556
--------------------------------------------------------------------------------
================================================================================
pagekite-0.5.6d-1.el6 (FEDORA-EPEL-2013-11873)
Makes localhost servers visible to the world
--------------------------------------------------------------------------------
Update Information:
The fast, reliable localhost tunneling solution
--------------------------------------------------------------------------------
================================================================================
pss-1.38-1.el6 (FEDORA-EPEL-2013-11870)
A power-tool for searching inside source code files
--------------------------------------------------------------------------------
Update Information:
New update of pss tool.
--------------------------------------------------------------------------------
================================================================================
python-TornadIO2-0.0.4-4.el6 (FEDORA-EPEL-2013-11874)
Socket.io server on top of Tornado framework
--------------------------------------------------------------------------------
Update Information:
New package.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #980168 - Review Request: python-TornadIO2 - Socket.io server on top of Tornado framework
https://bugzilla.redhat.com/show_bug.cgi?id=980168
--------------------------------------------------------------------------------
================================================================================
python-amqp-1.3.0-1.el6 (FEDORA-EPEL-2013-11857)
Low-level AMQP client for Python (fork of amqplib)
--------------------------------------------------------------------------------
Update Information:
Introduce python-amqp-1.3.0
--------------------------------------------------------------------------------
================================================================================
python-djblets-0.7.21-1.el6 (FEDORA-EPEL-2013-11817)
A collection of useful classes and functions for Django
--------------------------------------------------------------------------------
Update Information:
Review Board 1.6.19 and 1.7.15 fix a few issues in the API where users could access certain data they should not have been able to access, if using the Local Sites feature, invite-only groups, or private repositories. It also fixes cases with invite-only groups where the group name and list of private review requests would show up on some pages (though the review requests themselves were not accessible).
These issues do not affect most of the installations out there, but we strongly recommend upgrading anyway. There are no known cases of anyone exploiting these bugs, and in fact we discovered these internally while building new tools to test for security vulnerabilities in our codebase.
There are also some other bug fixes, and important changes needed for extensions that provide their own REST APIs.
--------------------------------------------------------------------------------
ChangeLog:
* Sun Oct 13 2013 Patrick Uiterwijk <puiterwijk(a)gmail.com> - 0.7.21-1
- New upstream bugfix release 0.7.21
- http://downloads.reviewboard.org/releases/Djblets/0.7/Djblets-0.7.21.NEWS
- Added a has_list_access_permissions function, which is used to
determine access to a list resource.
* Fri Oct 11 2013 Stephen Gallagher <sgallagh(a)redhat.com> - 0.7.20-1
- New upstream bugfix release 0.7.20
- http://downloads.reviewboard.org/releases/Djblets/0.7/Djblets-0.7.20.NEWS
- Fixed regression with pagination on the datagrid
* Thu Oct 10 2013 Stephen Gallagher <sgallagh(a)redhat.com> - 0.7.19-1
- New upstream security release 0.7.19
- http://downloads.reviewboard.org/releases/Djblets/0.7/Djblets-0.7.19.NEWS
- Resolves: CVE-2013-4409
- Resolves unsanitized eval() vulnerability
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1016596 - CVE-2013-4410 ReviewBoard: access-control problems with REST API
https://bugzilla.redhat.com/show_bug.cgi?id=1016596
[ 2 ] Bug #1016599 - CVE-2013-4411 ReviewBoard: URL processing allows unauthorized users to view review lists
https://bugzilla.redhat.com/show_bug.cgi?id=1016599
[ 3 ] Bug #1016601 - CVE-2013-4409 python-djblets: unsanitized eval() vulnerability
https://bugzilla.redhat.com/show_bug.cgi?id=1016601
--------------------------------------------------------------------------------
================================================================================
python-flask-mongoengine-0.7-2.el6 (FEDORA-EPEL-2013-11875)
Flask extension that provides integration with MongoEngine
--------------------------------------------------------------------------------
Update Information:
Flask support for MongoDB
--------------------------------------------------------------------------------
================================================================================
python-oslo-sphinx-1.0-3.el6 (FEDORA-EPEL-2013-11861)
OpenStack Sphinx Extensions
--------------------------------------------------------------------------------
Update Information:
- New savanna build dependency
--------------------------------------------------------------------------------
================================================================================
quassel-0.9.1-1.el6 (FEDORA-EPEL-2013-11865)
A modern distributed IRC system
--------------------------------------------------------------------------------
Update Information:
Fix CVE-2013-4422 - Postgresql, possible SQL injection vulnerability
New package for EPEL - quassel IRC
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1017437 - CVE-2013-4422 quassel: potential SQL injection flaw
https://bugzilla.redhat.com/show_bug.cgi?id=1017437
--------------------------------------------------------------------------------
================================================================================
tomcat-native-1.1.29-1.el6 (FEDORA-EPEL-2013-11851)
Tomcat native library
--------------------------------------------------------------------------------
Update Information:
Update to version 1.1.29.
http://tomcat.apache.org/native-doc/miscellaneous/changelog.html
--------------------------------------------------------------------------------
ChangeLog:
* Tue Oct 15 2013 Ville Skyttä <ville.skytta(a)iki.fi> - 1.1.29-1
- Update to 1.1.29.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1019169 - tomcat-native-1.1.29 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1019169
--------------------------------------------------------------------------------
================================================================================
voms-api-java-2.0.10-4.el6 (FEDORA-EPEL-2013-11869)
Virtual Organization Membership Service Java API
--------------------------------------------------------------------------------
Update Information:
Disable tests that fail due to expired CRL in sources.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Oct 14 2013 Mattias Ellert <mattias.ellert(a)fysast.uu.se> - 2.0.10-4
- Disable CRL tests (the CRL in the sources has expired)
* Sun Aug 4 2013 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 2.0.10-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
wannier90-2.0.0-1.el6 (FEDORA-EPEL-2013-11868)
Maximally-localised Wannier functions
--------------------------------------------------------------------------------
Update Information:
Update to version 2.0.0. See changelog at http://www.wannier.org/doc/CHANGE.log
--------------------------------------------------------------------------------
ChangeLog:
* Tue Oct 15 2013 Susi Lehtola <jussilehtola(a)fedoraproject.org> - 2.0.0-1
- Update to 2.0.0.
* Mon Sep 23 2013 Susi Lehtola <jussilehtola(a)fedoraproject.org> - 1.2-9
- Rebuild against new ATLAS.
* Sun Aug 4 2013 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 1.2-8
- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
* Wed Mar 6 2013 Susi Lehtola <jussilehtola(a)fedoraproject.org> - 1.2-7
- Fix FTBFS in rawhide.
* Fri Feb 15 2013 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 1.2-6
- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild
* Sun Jul 22 2012 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 1.2-5
- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild
* Sat Jan 14 2012 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 1.2-4
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
* Mon Feb 7 2011 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 1.2-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1019173 - wannier90-2.0.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1019173
--------------------------------------------------------------------------------
================================================================================
wgrib-1.8.1.2b-1.el6 (FEDORA-EPEL-2013-11863)
Manipulate, inventory and decode GRIB files
--------------------------------------------------------------------------------
Update Information:
- added JMA table 200 for JRA-55
- added fflush(dump_file) and fflush(stdout), enhancement for potential apps
- changes from Jeffery S Smith for Albers equal area projection
- seekgrib: scan entire file for grib data because ECMWF files have grib1+grib2 data
- Paul Schou: fixed #define GDS_Lambert_LonSP(gds) INT3(gds[37],gds[38],gds[39])
- update ncep table 129, 130, 133
--------------------------------------------------------------------------------
ChangeLog:
* Wed Oct 16 2013 - Orion Poplawski <orion(a)cora.nwra.com> - 1.8.1.2b-1
- Update to 1.8.1.2b
* Fri Jul 29 2011 - Orion Poplawski <orion(a)cora.nwra.com> - 1.8.1.2a-1
- Update to 1.8.1.2a
* Thu May 26 2011 - Orion Poplawski <orion(a)cora.nwra.com> - 1.8.1.0h-1
- Update to 1.8.1.0h
* Mon Feb 7 2011 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 1.8.1.0d-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
* Sat Oct 2 2010 - Orion Poplawski <orion(a)cora.nwra.com> - 1.8.1.0d-1
- Update to 1.8.1.0d
--------------------------------------------------------------------------------
================================================================================
x2goclient-4.0.1.1-1.el6 (FEDORA-EPEL-2013-11818)
Graphical client for use with the X2Go network based computing environment
--------------------------------------------------------------------------------
Update Information:
X2Go is a server based computing environment with
- session resuming
- low bandwidth support
- LDAP support
- client side mass storage mounting support
- audio support
- authentication by smartcard and USB stick
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1018556 - x2goagent has unsatisfied dependencies: x2goserver
https://bugzilla.redhat.com/show_bug.cgi?id=1018556
--------------------------------------------------------------------------------
================================================================================
x2godesktopsharing-3.1.1.0-4.el6 (FEDORA-EPEL-2013-11818)
Share X2Go desktops with other users
--------------------------------------------------------------------------------
Update Information:
X2Go is a server based computing environment with
- session resuming
- low bandwidth support
- LDAP support
- client side mass storage mounting support
- audio support
- authentication by smartcard and USB stick
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1018556 - x2goagent has unsatisfied dependencies: x2goserver
https://bugzilla.redhat.com/show_bug.cgi?id=1018556
--------------------------------------------------------------------------------
================================================================================
x2goserver-4.0.1.6-5.el6 (FEDORA-EPEL-2013-11818)
X2Go server daemon scripts
--------------------------------------------------------------------------------
Update Information:
X2Go is a server based computing environment with
- session resuming
- low bandwidth support
- LDAP support
- client side mass storage mounting support
- audio support
- authentication by smartcard and USB stick
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1018556 - x2goagent has unsatisfied dependencies: x2goserver
https://bugzilla.redhat.com/show_bug.cgi?id=1018556
--------------------------------------------------------------------------------
The following Fedora EPEL 5 Security updates need testing:
Age URL
540 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5630/bugzilla-3.2.…
54 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-11276/ssmtp-2.61-2…
30 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-11560/fail2ban-0.8…
3 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-11811/mod_fcgid-2.…
3 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-11813/libtar-1.2.1…
The following builds have been pushed to Fedora EPEL 5 updates-testing
cppcheck-1.62-1.el5
drbdlinks-1.25-1.el5
kobo-0.4.1-1.el5
tinyxml2-1.0.11-4.20130805git0323851.el5
tlock-1.5-8.el5
Details about builds:
================================================================================
cppcheck-1.62-1.el5 (FEDORA-EPEL-2013-11832)
Tool for static C/C++ code analysis
--------------------------------------------------------------------------------
Update Information:
First release of tinyxml2 in EPEL.
--------------------------------------------------------------------------------
ChangeLog:
* Sun Oct 13 2013 Susi Lehtola <jussilehtola(a)fedoraproject.org> - 1.62-1
- Update to 1.62.
* Sat Aug 10 2013 Susi Lehtola <jussilehtola(a)fedoraproject.org> - 1.61-1
- Update to 1.61.
* Sat Aug 3 2013 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 1.60.1-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
* Mon Jun 3 2013 François Cami <fcami(a)fedoraproject.org> - 1.60.1-1
- Update to 1.60.1.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #996042 - Review Request: tinyxml2 - Simple, small and efficient C++ XML parser
https://bugzilla.redhat.com/show_bug.cgi?id=996042
--------------------------------------------------------------------------------
================================================================================
drbdlinks-1.25-1.el5 (FEDORA-EPEL-2013-11834)
A program for managing links into a DRBD shared partition
--------------------------------------------------------------------------------
Update Information:
Upstream changes:
* Fixing string formatting exception in initialize_shared_storage (Fix by Flavio Grossi)
--------------------------------------------------------------------------------
ChangeLog:
* Sun Oct 13 2013 Robert Scheck <robert(a)fedoraproject.org> 1.25-1
- Upgrade to 1.25
--------------------------------------------------------------------------------
================================================================================
kobo-0.4.1-1.el5 (FEDORA-EPEL-2013-11836)
Python modules for tools development
--------------------------------------------------------------------------------
Update Information:
Bump version to 0.4.1.
Completely remove Django support on el5 and el6.
New upstream release
New upstream release
Completely remove Django support on el5 and el6.
New upstream release
New upstream release
New upstream release
--------------------------------------------------------------------------------
ChangeLog:
* Mon Oct 14 2013 Daniel Mach <dmach(a)redhat.com> - 0.4.1-1
- Return 'nosrc' arch when RPMTAG_NOPATCH RPM header is set. (Daniel Mach)
- Fix 'ImproperlyConfigured: The SECRET_KEY setting must not be empty.' exception in test_types.py. (Daniel Mach)
- Fix setup script to install additional package data. (Daniel Mach)
- Fix reading RPMTAG_NOSOURCE and RPMTAG_NOPATCH headers from 'nosrc' RPMs. (Daniel Mach)
* Mon Jul 29 2013 Daniel Mach <dmach(a)redhat.com> - 0.4.0-2
- Drop admin subpackage on rhel <= 5
- Drop admin, django and hub subpackages on epel 6
* Thu Jul 25 2013 Daniel Mach <dmach(a)redhat.com> - 0.4.0-1
- Drop django and hub subpackages on rhel <= 5
- Set filename to be real name of a downloaded file. (Tomas Tomecek)
- Fix logwatcher to scroll to latest logs. (Tomas Tomecek)
- Remove obsolete function kobo.django.views.generic._object_list(). (Tomas Kopecek)
- Updated README for 0.4.0 release (Tomas Kopecek)
- Revamp setup.py and related files. (Daniel Mach)
- LongnameUser table has auth_user db table name for easier upgrade. (Tomas Kopecek)
- Add checksum_type to SimpleRpmWrapper. (Tomas Kopecek)
- Add kobo.threads.run_in_threads() helper. (Tomas Kopecek)
- Django 1.5 rebase. (Tomas Kopecek)
- Remove unnecessary slots from pkgset.FileCache. (Daniel Mach)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #997735 - Error in packaging default.conf
https://bugzilla.redhat.com/show_bug.cgi?id=997735
[ 2 ] Bug #990016 - "make bkradd" is failing as kobo-client does not provide default.conf
https://bugzilla.redhat.com/show_bug.cgi?id=990016
--------------------------------------------------------------------------------
================================================================================
tinyxml2-1.0.11-4.20130805git0323851.el5 (FEDORA-EPEL-2013-11832)
Simple, small and efficient C++ XML parser
--------------------------------------------------------------------------------
Update Information:
First release of tinyxml2 in EPEL.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #996042 - Review Request: tinyxml2 - Simple, small and efficient C++ XML parser
https://bugzilla.redhat.com/show_bug.cgi?id=996042
--------------------------------------------------------------------------------
================================================================================
tlock-1.5-8.el5 (FEDORA-EPEL-2013-11824)
Terminal lock
--------------------------------------------------------------------------------
Update Information:
Update autoconf(1) scripts to version >= 2.69.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #926640 - tlock: Does not support aarch64 in f19 and rawhide
https://bugzilla.redhat.com/show_bug.cgi?id=926640
--------------------------------------------------------------------------------
The following Fedora EPEL 6 Security updates need testing:
Age URL
540 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5620/bugzilla-3.4.…
54 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-11274/ssmtp-2.61-2…
15 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-11703/chicken-4.8.…
15 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-11706/fedmsg-0.7.1…
12 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-11733/php-pecl-xhp…
5 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-11771/mod_fcgid-2.…
3 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-11803/dropbear-201…
3 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-11785/phpMyAdmin-3…
0 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-11817/ReviewBoard-…
The following builds have been pushed to Fedora EPEL 6 updates-testing
ReviewBoard-1.7.16-2.el6
archivemount-0.8.1-2.el6
cppcheck-1.62-1.el6
drbdlinks-1.25-1.el6
fedora-review-0.5.0-2.el6
kobo-0.4.1-1.el6
perl-Crypt-Blowfish_PP-1.12-7.el6
perl-Term-Size-0.207-6.el6
perl-WWW-Salesforce-0.20-1.el6
php-bartlett-PHP-Reflect-1.9.0-1.el6
php-xcache-3.0.4-1.el6
python-djblets-0.7.21-1.el6
python-wsme-0.5b5-2.el6
qpdfview-0.4.6-1.el6
qtdbf-1.0.0-1.el6
tinyxml2-1.0.11-4.20130805git0323851.el6
tlock-1.5-8.el6
transifex-1.2.1-2.el6
xalan-c-1.11.0-1.el6
Details about builds:
================================================================================
ReviewBoard-1.7.16-2.el6 (FEDORA-EPEL-2013-11817)
Web-based code review tool
--------------------------------------------------------------------------------
Update Information:
Review Board 1.6.19 and 1.7.15 fix a few issues in the API where users could access certain data they should not have been able to access, if using the Local Sites feature, invite-only groups, or private repositories. It also fixes cases with invite-only groups where the group name and list of private review requests would show up on some pages (though the review requests themselves were not accessible).
These issues do not affect most of the installations out there, but we strongly recommend upgrading anyway. There are no known cases of anyone exploiting these bugs, and in fact we discovered these internally while building new tools to test for security vulnerabilities in our codebase.
There are also some other bug fixes, and important changes needed for extensions that provide their own REST APIs.
--------------------------------------------------------------------------------
ChangeLog:
* Sun Oct 13 2013 Patrick Uiterwijk <puiterwijk(a)gmail.com> - 1.7.16-2
- Update Djblets version
* Sun Oct 13 2013 Patrick Uiterwijk <puiterwijk(a)redhat.com> - 1.7.15-2
- New upstream bugfix release 1.7.16
- Fixes a breakage when accessing the Review Group Users resource
- Fixes pagination in dashboard and similar pages
* Thu Oct 10 2013 Stephen Gallagher <sgallagh(a)redhat.com> - 1.7.15-1
- New upstream security release 1.7.15
- http://www.reviewboard.org/docs/releasenotes/reviewboard/1.7.15/
- Resolves: CVE-2013-4410
- Fixes access-control problems with REST API
- Resolves: CVE-2013-4411
- Fixes URL processing allowing unauthorized users to view review lists
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1016596 - CVE-2013-4410 ReviewBoard: access-control problems with REST API
https://bugzilla.redhat.com/show_bug.cgi?id=1016596
[ 2 ] Bug #1016599 - CVE-2013-4411 ReviewBoard: URL processing allows unauthorized users to view review lists
https://bugzilla.redhat.com/show_bug.cgi?id=1016599
[ 3 ] Bug #1016601 - CVE-2013-4409 python-djblets: unsanitized eval() vulnerability
https://bugzilla.redhat.com/show_bug.cgi?id=1016601
--------------------------------------------------------------------------------
================================================================================
archivemount-0.8.1-2.el6 (FEDORA-EPEL-2013-11838)
FUSE based filesystem for mounting compressed archives
--------------------------------------------------------------------------------
Update Information:
Update to the latest release of archivemount
--------------------------------------------------------------------------------
ChangeLog:
* Sun Oct 13 2013 Niels de Vos <devos(a)fedoraproject.org> - 0.8.1-2
- Do not call fuse_main() to prevent a confusing error message (#1018587)
* Wed Sep 25 2013 Niels de Vos <devos(a)fedoraproject.org> - 0.8.1-1
- Update to version 0.8.1 (#1011795)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1018587 - confusing message "fuse: missing mountpoint parameter" is displayed upon successful mount
https://bugzilla.redhat.com/show_bug.cgi?id=1018587
[ 2 ] Bug #1011795 - Update archivemount to the latest release 0.8.1
https://bugzilla.redhat.com/show_bug.cgi?id=1011795
--------------------------------------------------------------------------------
================================================================================
cppcheck-1.62-1.el6 (FEDORA-EPEL-2013-11840)
Tool for static C/C++ code analysis
--------------------------------------------------------------------------------
Update Information:
First release of tinyxml2 in EPEL.
--------------------------------------------------------------------------------
ChangeLog:
* Sun Oct 13 2013 Susi Lehtola <jussilehtola(a)fedoraproject.org> - 1.62-1
- Update to 1.62.
* Sat Aug 10 2013 Susi Lehtola <jussilehtola(a)fedoraproject.org> - 1.61-1
- Update to 1.61.
* Sat Aug 3 2013 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 1.60.1-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
* Mon Jun 3 2013 François Cami <fcami(a)fedoraproject.org> - 1.60.1-1
- Update to 1.60.1.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #996042 - Review Request: tinyxml2 - Simple, small and efficient C++ XML parser
https://bugzilla.redhat.com/show_bug.cgi?id=996042
--------------------------------------------------------------------------------
================================================================================
drbdlinks-1.25-1.el6 (FEDORA-EPEL-2013-11821)
A program for managing links into a DRBD shared partition
--------------------------------------------------------------------------------
Update Information:
Upstream changes:
* Fixing string formatting exception in initialize_shared_storage (Fix by Flavio Grossi)
--------------------------------------------------------------------------------
ChangeLog:
* Sun Oct 13 2013 Robert Scheck <robert(a)fedoraproject.org> 1.25-1
- Upgrade to 1.25
--------------------------------------------------------------------------------
================================================================================
fedora-review-0.5.0-2.el6 (FEDORA-EPEL-2013-11828)
Review tool for fedora rpm packages
--------------------------------------------------------------------------------
Update Information:
Update dependency on licensecheck script and fix phpci plugin dependency
--------------------------------------------------------------------------------
ChangeLog:
* Mon Oct 14 2013 Stanislav Ochotnicky <sochotnicky(a)redhat.com> - 0.5.0-2
- Fix requires for licensecheck (#1016309)
- Remove separate php plugin subpackage (#971875)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #971875 - phpci command renamed to phpcompatinfo
https://bugzilla.redhat.com/show_bug.cgi?id=971875
[ 2 ] Bug #1016309 - Add dependency on %{_bindir}/licensecheck
https://bugzilla.redhat.com/show_bug.cgi?id=1016309
--------------------------------------------------------------------------------
================================================================================
kobo-0.4.1-1.el6 (FEDORA-EPEL-2013-11837)
Python modules for tools development
--------------------------------------------------------------------------------
Update Information:
Bump version to 0.4.1.
Completely remove Django support on el5 and el6.
New upstream release
New upstream release
Completely remove Django support on el5 and el6.
New upstream release
New upstream release
New upstream release
--------------------------------------------------------------------------------
ChangeLog:
* Mon Oct 14 2013 Daniel Mach <dmach(a)redhat.com> - 0.4.1-1
- Return 'nosrc' arch when RPMTAG_NOPATCH RPM header is set. (Daniel Mach)
- Fix 'ImproperlyConfigured: The SECRET_KEY setting must not be empty.' exception in test_types.py. (Daniel Mach)
- Fix setup script to install additional package data. (Daniel Mach)
- Fix reading RPMTAG_NOSOURCE and RPMTAG_NOPATCH headers from 'nosrc' RPMs. (Daniel Mach)
* Mon Jul 29 2013 Daniel Mach <dmach(a)redhat.com> - 0.4.0-2
- Drop admin subpackage on rhel <= 5
- Drop admin, django and hub subpackages on epel 6
* Thu Jul 25 2013 Daniel Mach <dmach(a)redhat.com> - 0.4.0-1
- Drop django and hub subpackages on rhel <= 5
- Set filename to be real name of a downloaded file. (Tomas Tomecek)
- Fix logwatcher to scroll to latest logs. (Tomas Tomecek)
- Remove obsolete function kobo.django.views.generic._object_list(). (Tomas Kopecek)
- Updated README for 0.4.0 release (Tomas Kopecek)
- Revamp setup.py and related files. (Daniel Mach)
- LongnameUser table has auth_user db table name for easier upgrade. (Tomas Kopecek)
- Add checksum_type to SimpleRpmWrapper. (Tomas Kopecek)
- Add kobo.threads.run_in_threads() helper. (Tomas Kopecek)
- Django 1.5 rebase. (Tomas Kopecek)
- Remove unnecessary slots from pkgset.FileCache. (Daniel Mach)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #997735 - Error in packaging default.conf
https://bugzilla.redhat.com/show_bug.cgi?id=997735
[ 2 ] Bug #990016 - "make bkradd" is failing as kobo-client does not provide default.conf
https://bugzilla.redhat.com/show_bug.cgi?id=990016
--------------------------------------------------------------------------------
================================================================================
perl-Crypt-Blowfish_PP-1.12-7.el6 (FEDORA-EPEL-2013-11830)
Blowfish encryption algorithm implemented purely in Perl
--------------------------------------------------------------------------------
Update Information:
Initial epel-6 build
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1018334 - Please build for EPEL-6
https://bugzilla.redhat.com/show_bug.cgi?id=1018334
--------------------------------------------------------------------------------
================================================================================
perl-Term-Size-0.207-6.el6 (FEDORA-EPEL-2013-11823)
Simple way to get terminal size
--------------------------------------------------------------------------------
Update Information:
Initial epel-6 build
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1018332 - Please build for EPEL-6
https://bugzilla.redhat.com/show_bug.cgi?id=1018332
--------------------------------------------------------------------------------
================================================================================
perl-WWW-Salesforce-0.20-1.el6 (FEDORA-EPEL-2013-11822)
WWW::Salesforce Perl module
--------------------------------------------------------------------------------
Update Information:
Update to a later version.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Oct 14 2013 Lubomir Rintel (GoodData) <lubo.rintel(a)gooddata.com> - 0.20-1
- Update to later version
* Mon Aug 5 2013 Petr Pisar <ppisar(a)redhat.com> - 0.13-8
- Perl 5.18 rebuild
* Sun Aug 4 2013 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 0.13-7
- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
* Thu Feb 14 2013 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 0.13-6
- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild
* Fri Jul 20 2012 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 0.13-5
- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild
* Fri Jun 29 2012 Petr Pisar <ppisar(a)redhat.com> - 0.13-4
- Perl 5.16 rebuild
* Fri Jan 13 2012 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 0.13-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
* Tue Jul 19 2011 Petr Sabata <contyk(a)redhat.com> - 0.13-2
- Perl mass rebuild
--------------------------------------------------------------------------------
================================================================================
php-bartlett-PHP-Reflect-1.9.0-1.el6 (FEDORA-EPEL-2013-11835)
Adds the ability to reverse-engineer PHP
--------------------------------------------------------------------------------
Update Information:
Version 1.9.0 (2013-10-12)
Additions and changes:
* drop support of PHP 5.2
* add Composer support
Bug fixes:
* avoid wrong trait detection if source code used a class property named trait: $this->trait
--------------------------------------------------------------------------------
ChangeLog:
* Sat Oct 12 2013 Remi Collet <remi(a)fedoraproject.org> - 1.9.0-1
- Update to 1.9.0
- raise dependency on PHP >= 5.3
--------------------------------------------------------------------------------
================================================================================
php-xcache-3.0.4-1.el6 (FEDORA-EPEL-2013-11825)
Fast, stable PHP opcode cacher
--------------------------------------------------------------------------------
Update Information:
Update to 3.0.4 bugfixes version
Upstream Changelog:
* cacher: fixed #324: xcache.readonly_protection = Off cause SEGV under mass concurrent
* cacher: fixed #323: refix locking impl for threaded env
--------------------------------------------------------------------------------
ChangeLog:
* Sat Oct 12 2013 Remi Collet <remi(a)fedoraproject.org> - 3.0.4-1
- version 3.0.4 (bugfixes)
--------------------------------------------------------------------------------
================================================================================
python-djblets-0.7.21-1.el6 (FEDORA-EPEL-2013-11817)
A collection of useful classes and functions for Django
--------------------------------------------------------------------------------
Update Information:
Review Board 1.6.19 and 1.7.15 fix a few issues in the API where users could access certain data they should not have been able to access, if using the Local Sites feature, invite-only groups, or private repositories. It also fixes cases with invite-only groups where the group name and list of private review requests would show up on some pages (though the review requests themselves were not accessible).
These issues do not affect most of the installations out there, but we strongly recommend upgrading anyway. There are no known cases of anyone exploiting these bugs, and in fact we discovered these internally while building new tools to test for security vulnerabilities in our codebase.
There are also some other bug fixes, and important changes needed for extensions that provide their own REST APIs.
--------------------------------------------------------------------------------
ChangeLog:
* Sun Oct 13 2013 Patrick Uiterwijk <puiterwijk(a)gmail.com> - 0.7.21-1
- New upstream bugfix release 0.7.21
- http://downloads.reviewboard.org/releases/Djblets/0.7/Djblets-0.7.21.NEWS
- Added a has_list_access_permissions function, which is used to
determine access to a list resource.
* Fri Oct 11 2013 Stephen Gallagher <sgallagh(a)redhat.com> - 0.7.20-1
- New upstream bugfix release 0.7.20
- http://downloads.reviewboard.org/releases/Djblets/0.7/Djblets-0.7.20.NEWS
- Fixed regression with pagination on the datagrid
* Thu Oct 10 2013 Stephen Gallagher <sgallagh(a)redhat.com> - 0.7.19-1
- New upstream security release 0.7.19
- http://downloads.reviewboard.org/releases/Djblets/0.7/Djblets-0.7.19.NEWS
- Resolves: CVE-2013-4409
- Resolves unsanitized eval() vulnerability
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1016596 - CVE-2013-4410 ReviewBoard: access-control problems with REST API
https://bugzilla.redhat.com/show_bug.cgi?id=1016596
[ 2 ] Bug #1016599 - CVE-2013-4411 ReviewBoard: URL processing allows unauthorized users to view review lists
https://bugzilla.redhat.com/show_bug.cgi?id=1016599
[ 3 ] Bug #1016601 - CVE-2013-4409 python-djblets: unsanitized eval() vulnerability
https://bugzilla.redhat.com/show_bug.cgi?id=1016601
--------------------------------------------------------------------------------
================================================================================
python-wsme-0.5b5-2.el6 (FEDORA-EPEL-2013-11826)
Web Services Made Easy
--------------------------------------------------------------------------------
Update Information:
- Latest upstream
- Latest upstream
--------------------------------------------------------------------------------
ChangeLog:
* Thu Oct 10 2013 Dan Prince <dprince(a)redhat.com> - 0.5b5-2
- Don't remove egg.info required by pbr
* Thu Oct 10 2013 Pádraig Brady <pbrady(a)redhat.com> - 0.5b5-1
- Latest upstream
* Sun Aug 4 2013 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 0.5b2-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
qpdfview-0.4.6-1.el6 (FEDORA-EPEL-2013-11833)
Tabbed PDF Viewer
--------------------------------------------------------------------------------
Update Information:
Version bump.
--------------------------------------------------------------------------------
ChangeLog:
* Sun Oct 13 2013 TI_Eugene <ti.eugene(a)gmail.com> 0.4.6-1
- Version bump
* Fri Sep 6 2013 TI_Eugene <ti.eugene(a)gmail.com> 0.4.5-1
- Version bump
--------------------------------------------------------------------------------
================================================================================
qtdbf-1.0.0-1.el6 (FEDORA-EPEL-2013-11839)
A simple DBF viewer and editor
--------------------------------------------------------------------------------
Update Information:
Version bump.
--------------------------------------------------------------------------------
ChangeLog:
* Sun Oct 13 2013 TI_Eugene <ti.eugene(a)gmail.com> 1.0.0-1
- Version bump
* Thu Aug 29 2013 TI_Eugene <ti.eugene(a)gmail.com> 0.9.11-1
- Version bump
--------------------------------------------------------------------------------
================================================================================
tinyxml2-1.0.11-4.20130805git0323851.el6 (FEDORA-EPEL-2013-11840)
Simple, small and efficient C++ XML parser
--------------------------------------------------------------------------------
Update Information:
First release of tinyxml2 in EPEL.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #996042 - Review Request: tinyxml2 - Simple, small and efficient C++ XML parser
https://bugzilla.redhat.com/show_bug.cgi?id=996042
--------------------------------------------------------------------------------
================================================================================
tlock-1.5-8.el6 (FEDORA-EPEL-2013-11827)
Terminal lock
--------------------------------------------------------------------------------
Update Information:
Update autoconf(1) scripts to version >= 2.69.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #926640 - tlock: Does not support aarch64 in f19 and rawhide
https://bugzilla.redhat.com/show_bug.cgi?id=926640
--------------------------------------------------------------------------------
================================================================================
transifex-1.2.1-2.el6 (FEDORA-EPEL-2013-11829)
A system for distributed translation submissions
--------------------------------------------------------------------------------
Update Information:
A system for distributed translation submissions
--------------------------------------------------------------------------------
================================================================================
xalan-c-1.11.0-1.el6 (FEDORA-EPEL-2013-11831)
Xalan XSLT processor for C
--------------------------------------------------------------------------------
Update Information:
Updated to 1.11 to fix segfault issue in bug #807816
--------------------------------------------------------------------------------
ChangeLog:
* Tue Oct 8 2013 Nick Le Mouton <nick(a)noodles.net.nz> - 1.11.0-1
- Rebuilt for xalan-c 1.11, fixes a few problems with using newer xerces-c
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #807816 - Xalan-c segfaults on any input
https://bugzilla.redhat.com/show_bug.cgi?id=807816
--------------------------------------------------------------------------------
I'm not sure what the proper avenue for requesting updates to EPEL packages
is, so if such requests aren't welcome on this mailing list, please
redirect me.
I'm trying to switch over to the tiling window manager i3, but the version
in the EPEL repo is at version 4.0.1, which was compiled in 2011. Would
anyone be willing to package a newer version and get it into the repo? I
tried installing the latest version in the Fedora 19 repo, but tried to
install ~1800 packages as dependencies and failed due to conflicts (which
probably has something to do with the fact that I'm on a CentOS 6.4 system).
There are some pretty aggravating bugs in the current repo version that
have been fixed in later versions, including one especially annoying Chrome
bug that was fixed as early as v. 4.0.2 (https://faq.i3wm.org/question/2686
).
Thank you!
--
*Kyle Strand*
*Software Engineer
ASIC Products Division
Avago Technologies
970-288-3342
*
The following Fedora EPEL 6 Security updates need testing:
Age URL
537 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5620/bugzilla-3.4.…
51 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-11274/ssmtp-2.61-2…
12 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-11703/chicken-4.8.…
12 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-11706/fedmsg-0.7.1…
10 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-11733/php-pecl-xhp…
2 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-11771/mod_fcgid-2.…
0 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-11803/dropbear-201…
0 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-11785/phpMyAdmin-3…
0 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-11817/ReviewBoard-…
The following builds have been pushed to Fedora EPEL 6 updates-testing
ReviewBoard-1.7.15-1.el6
nodejs-node-static-0.7.1-2.el6
nx-libs-3.5.0.21-4.el6
perl-Term-ShellUI-0.92-2.el6
python-djblets-0.7.20-1.el6
python-py-1.4.17-1.el6
satyr-0.10-1.el6
transifex-client-0.9-4.el6
Details about builds:
================================================================================
ReviewBoard-1.7.15-1.el6 (FEDORA-EPEL-2013-11817)
Web-based code review tool
--------------------------------------------------------------------------------
Update Information:
Review Board 1.6.19 and 1.7.15 fix a few issues in the API where users could access certain data they should not have been able to access, if using the Local Sites feature, invite-only groups, or private repositories. It also fixes cases with invite-only groups where the group name and list of private review requests would show up on some pages (though the review requests themselves were not accessible).
These issues do not affect most of the installations out there, but we strongly recommend upgrading anyway. There are no known cases of anyone exploiting these bugs, and in fact we discovered these internally while building new tools to test for security vulnerabilities in our codebase.
There are also some other bug fixes, and important changes needed for extensions that provide their own REST APIs.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Oct 10 2013 Stephen Gallagher <sgallagh(a)redhat.com> - 1.7.15-1
- New upstream security release 1.7.15
- http://www.reviewboard.org/docs/releasenotes/reviewboard/1.7.15/
- Resolves: CVE-2013-4410
- Fixes access-control problems with REST API
- Resolves: CVE-2013-4411
- Fixes URL processing allowing unauthorized users to view review lists
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1016596 - CVE-2013-4410 ReviewBoard: access-control problems with REST API
https://bugzilla.redhat.com/show_bug.cgi?id=1016596
[ 2 ] Bug #1016599 - CVE-2013-4411 ReviewBoard: URL processing allows unauthorized users to view review lists
https://bugzilla.redhat.com/show_bug.cgi?id=1016599
[ 3 ] Bug #1016601 - CVE-2013-4409 python-djblets: unsanitized eval() vulnerability
https://bugzilla.redhat.com/show_bug.cgi?id=1016601
--------------------------------------------------------------------------------
================================================================================
nodejs-node-static-0.7.1-2.el6 (FEDORA-EPEL-2013-11816)
Simple, compliant file streaming module for node
--------------------------------------------------------------------------------
Update Information:
Newpackage
--------------------------------------------------------------------------------
================================================================================
nx-libs-3.5.0.21-4.el6 (FEDORA-EPEL-2013-11818)
NX X11 protocol compression libraries
--------------------------------------------------------------------------------
Update Information:
NX is a software suite which implements very efficient compression of
the X11 protocol. This increases performance when using X
applications over a network, especially a slow one.
This package provides the core nx-X11 libraries customized for
nxagent/x2goagent.
--------------------------------------------------------------------------------
================================================================================
perl-Term-ShellUI-0.92-2.el6 (FEDORA-EPEL-2013-11814)
Perl module to implement a full-featured shell-like command line environment
--------------------------------------------------------------------------------
Update Information:
Initial push
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1002319 - Review Request: perl-Term-ShellUI - Fully-featured shell-like command line environment
https://bugzilla.redhat.com/show_bug.cgi?id=1002319
--------------------------------------------------------------------------------
================================================================================
python-djblets-0.7.20-1.el6 (FEDORA-EPEL-2013-11817)
A collection of useful classes and functions for Django
--------------------------------------------------------------------------------
Update Information:
Review Board 1.6.19 and 1.7.15 fix a few issues in the API where users could access certain data they should not have been able to access, if using the Local Sites feature, invite-only groups, or private repositories. It also fixes cases with invite-only groups where the group name and list of private review requests would show up on some pages (though the review requests themselves were not accessible).
These issues do not affect most of the installations out there, but we strongly recommend upgrading anyway. There are no known cases of anyone exploiting these bugs, and in fact we discovered these internally while building new tools to test for security vulnerabilities in our codebase.
There are also some other bug fixes, and important changes needed for extensions that provide their own REST APIs.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Oct 11 2013 Stephen Gallagher <sgallagh(a)redhat.com> - 0.7.20-1
- New upstream bugfix release 0.7.20
- http://downloads.reviewboard.org/releases/Djblets/0.7/Djblets-0.7.20.NEWS
- Fixed regression with pagination on the datagrid
* Thu Oct 10 2013 Stephen Gallagher <sgallagh(a)redhat.com> - 0.7.19-1
- New upstream security release 0.7.19
- http://downloads.reviewboard.org/releases/Djblets/0.7/Djblets-0.7.19.NEWS
- Resolves: CVE-2013-4409
- Resolves unsanitized eval() vulnerability
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1016596 - CVE-2013-4410 ReviewBoard: access-control problems with REST API
https://bugzilla.redhat.com/show_bug.cgi?id=1016596
[ 2 ] Bug #1016599 - CVE-2013-4411 ReviewBoard: URL processing allows unauthorized users to view review lists
https://bugzilla.redhat.com/show_bug.cgi?id=1016599
[ 3 ] Bug #1016601 - CVE-2013-4409 python-djblets: unsanitized eval() vulnerability
https://bugzilla.redhat.com/show_bug.cgi?id=1016601
--------------------------------------------------------------------------------
================================================================================
python-py-1.4.17-1.el6 (FEDORA-EPEL-2013-11815)
Library with cross-python path, ini-parsing, io, code, log facilities
--------------------------------------------------------------------------------
Update Information:
Update pylib to the latest stable version.
Changes between 1.4.16 and 1.4.17:
- make py.io.TerminalWriter() prefer colorama if it is available and avoid empty lines when separator-lines are printed by being defensive and reducing the working terminalwidth by 1
- introduce optional "expanduser" argument to py.path.local so that local("~", expanduser=True) gives the home directory of "user".
--------------------------------------------------------------------------------
ChangeLog:
* Fri Oct 4 2013 Thomas Moschny <thomas.moschny(a)gmx.de> - 1.4.17-1
- Update to 1.4.17.
* Thu Oct 3 2013 Thomas Moschny <thomas.moschny(a)gmx.de> - 1.4.16-1
- Update to 1.4.16.
* Sun Aug 4 2013 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 1.4.15-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
satyr-0.10-1.el6 (FEDORA-EPEL-2013-11820)
Tools to create anonymous, machine-friendly problem reports
--------------------------------------------------------------------------------
Update Information:
- Fix a segmentation fault in sr_rpm_package_uniq()
- Respect kernel flavor when parsing package name
- Parse backtrace without Thread header
- Fix koops json output if there are no modules
- Add support for multiple koops stacks
* Enrich koops uReport data with koops text and kernel version.
* Improve koops modules handling.
* Added support for json de/serialization of reports and stacktraces.
* Library version number increased, as the interface changed since the last release
--------------------------------------------------------------------------------
ChangeLog:
* Thu Oct 3 2013 Jakub Filak <jfilak(a)redhat.com> 0.10-1
- New upstream version
- Fix a segmentation fault in sr_rpm_package_uniq()
- Respect kernel flavor when parsing package name
- Parse backtrace without Thread header
- Fix koops json output if there are no modules
- Add support for multiple koops stacks
* Wed Sep 11 2013 Jakub Filak <jfilak(a)redhat.com> 0.9-1
- New upstream version
- Enrich koops uReport data with koops text and kernel version.
- Improve koops modules handling.
* Wed Aug 28 2013 Richard Marko<rmarko(a)redhat.com> 0.8-1
- New upstream version
- Added support for json de/serialization of reports and stacktraces.
- Library version number increased, as the interface changed since the last release
* Mon Aug 26 2013 Martin Milata <mmilata(a)redhat.com> 0.7-1
- New upstream version
- Fix couple of crashes (#997076, #994747)
* Mon Jul 29 2013 Martin Milata <mmilata(a)redhat.com> 0.6-1
- New upstream version
- Do not export internal function symbols.
--------------------------------------------------------------------------------
================================================================================
transifex-client-0.9-4.el6 (FEDORA-EPEL-2013-11819)
Command line tool for Transifex translation management
--------------------------------------------------------------------------------
Update Information:
Command line tool for Transifex translation management
--------------------------------------------------------------------------------
ChangeLog:
* Thu Oct 10 2013 Luis Bazan <lbazan(a)fedoraproject.org> - 0.9-4
- Fix BZ #1002546
* Mon Aug 26 2013 Luis Bazan <lbazan(a)fedoraproject.org> - 0.9-3
- remove dependency
* Thu Aug 15 2013 Luis Bazan <lbazan(a)fedoraproject.org> - 0.9-2
- add new requirement
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1002546 - Missing Dependency: python-setuptools.noarch
https://bugzilla.redhat.com/show_bug.cgi?id=1002546
--------------------------------------------------------------------------------
The following Fedora EPEL 6 Security updates need testing:
Age URL
536 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5620/bugzilla-3.4.…
51 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-11274/ssmtp-2.61-2…
11 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-11703/chicken-4.8.…
11 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-11706/fedmsg-0.7.1…
9 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-11733/php-pecl-xhp…
1 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-11771/mod_fcgid-2.…
0 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-11785/phpMyAdmin-3…
The following builds have been pushed to Fedora EPEL 6 updates-testing
ansible-1.3.3-1.el6
cabal-rpm-0.8.6-1.el6
dropbear-2013.59-1.el6
geome-2.0-1.el6
golang-github-gorilla-context-0-0.18.git708054d.el6
golang-github-gorilla-mux-0-0.8.gite718e93.el6
golang-github-kr-pty-0-0.14.git3b1f648.el6
golang-googlecode-net-0-0.9.hg84a4013f96e0.el6
golang-googlecode-sqlite-0-0.7.hg74691fb6f837.el6
mozilla-https-everywhere-3.4.2-1.el6
nodejs-mysql-2.0.0-alpha9.2.el6
ovirt-engine-cli-3.3.0.5-1.el6
ovirt-engine-sdk-python-3.3.0.7-1.el6
phpMyAdmin-3.5.8.2-1.el6
python-celery-2.2.8-2.el6
python-cssmin-0.1.4-5.el6
python-flask-assets-0.8-2.el6
python-mongoengine-0.7.10-2.el6
python-six-1.4.1-1.el6
python-sphinxcontrib-httpdomain-1.1.8-3.el6
python-wsme-0.5b5-1.el6
qt5-qtdoc-5.1.1-2.el6
savanna-image-elements-0.3-0.3.88511begit.el6
stomppy-3.1.6-1.el6
zabbix-1.8.18-1.el6
zabbix20-2.0.9-1.el6
Details about builds:
================================================================================
ansible-1.3.3-1.el6 (FEDORA-EPEL-2013-11802)
SSH-based configuration management, deployment, and task execution system
--------------------------------------------------------------------------------
Update Information:
Updated to 1.3.3 upsteam with a number of accelerate mode fixes:
- Make packet reception less greedy, so multiple frames of data are not consumed by one call.
- Adding two timeout values (one for connection and one for data reception timeout).
- Added keepalive packets, so async mode is no longer required for long-running tasks.
- Modified accelerate daemon to use the verbose logging level of the ansible command that started it.
- Fixed bug where accelerate would not work in check-mode.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Oct 8 2013 Kevin Fenzi <kevin(a)scrye.com> 1.3.3-1
- Update to 1.3.3
--------------------------------------------------------------------------------
================================================================================
cabal-rpm-0.8.6-1.el6 (FEDORA-EPEL-2013-11715)
RPM package creator for Haskell Cabal-based packages
--------------------------------------------------------------------------------
Update Information:
- devel provides ghc-<pkg>-static
- drop release from initial changelog entry for packager to add an entry
- use repoquery to determine extra C library dependencies
- quote "pkgconfig(foo)" for rpm query and yum install
- show sudo command before sudo password prompt appears
- exclude hsc2hs from build tool deps
- do not try to fetch tarball for a darcs or git source dir
- make cblrpm-diff quieter
--------------------------------------------------------------------------------
ChangeLog:
* Tue Oct 8 2013 Jens Petersen <petersen(a)redhat.com> - 0.8.6-1
- check for _darcs or .git dir in package topdir not pwd
* Sun Sep 29 2013 Jens Petersen <petersen(a)redhat.com> - 0.8.5-1
- fix repoquery when a package update exists for C lib
- make cblrpm-diff quieter
* Sat Sep 28 2013 Jens Petersen <petersen(a)redhat.com> - 0.8.4-1
- use repoquery to determine extra C library dependencies
- quote "pkgconfig(foo)" for rpm query and yum install
- show sudo command before sudo password prompt appears
- exclude hsc2hs from build tool deps
- devel now provides ghc-<pkg>-static
- drop release from initial changelog entry for packager to add an entry
- do not try to fetch tarball for a darcs or git source dir
* Sat Aug 3 2013 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 0.8.3-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
* Fri Jul 12 2013 Jens Petersen <petersen(a)redhat.com> - 0.8.3-1
- only try to install missing dependencies
- word-wrap generic descriptions
- now handles ghc_fix_dynamic_rpath for executables depending on own lib
- map ffi to libffi
- source module rearrangements
--------------------------------------------------------------------------------
================================================================================
dropbear-2013.59-1.el6 (FEDORA-EPEL-2013-11803)
SSH2 server and client
--------------------------------------------------------------------------------
Update Information:
New version/Unbundle libtom*/harden build/AArch64 support.
--------------------------------------------------------------------------------
ChangeLog:
* Mon Oct 7 2013 Christopher Meng <rpm(a)cicku.me> - 2013.59-1
- New version.
- Adapt the version tag to match the actual one.
- Add systemd BR(BZ#992141).
- Unbundle libtom libraries(BZ#992141).
- Add AArch64 support(BZ#925278).
- SPEC cleanup.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #992141 - dropbear: FTBFS in rawhide
https://bugzilla.redhat.com/show_bug.cgi?id=992141
[ 2 ] Bug #925278 - dropbear: Does not support aarch64 in f19 and rawhide
https://bugzilla.redhat.com/show_bug.cgi?id=925278
--------------------------------------------------------------------------------
================================================================================
geome-2.0-1.el6 (FEDORA-EPEL-2013-11783)
Obtain your geo-location data from Google using NetworkManager
--------------------------------------------------------------------------------
Update Information:
Use the new Google APIs (gears API shut down)
--------------------------------------------------------------------------------
ChangeLog:
* Sun Oct 6 2013 Paul Wouters <pwouters(a)redhat.com> - 2.0-1
- Updated to 2.0 - uses new Google API, extended lib functions and cli client
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #921467 - geome fails with "Unexected failure while determing location" - discontinued API ?
https://bugzilla.redhat.com/show_bug.cgi?id=921467
--------------------------------------------------------------------------------
================================================================================
golang-github-gorilla-context-0-0.18.git708054d.el6 (FEDORA-EPEL-2013-11786)
A golang registry for global request variables
--------------------------------------------------------------------------------
Update Information:
noarch for f19+ and rhel7+, exclusivearch otherwise.
no longer noarch, cause no golang for ppc64.
pkg archives no longer installed,dep for gorilla/mux.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1001300 - Review Request: golang-github-gorilla-context - A golang registry for global request variables
https://bugzilla.redhat.com/show_bug.cgi?id=1001300
--------------------------------------------------------------------------------
================================================================================
golang-github-gorilla-mux-0-0.8.gite718e93.el6 (FEDORA-EPEL-2013-11792)
A powerful URL router and dispatcher for golang
--------------------------------------------------------------------------------
Update Information:
noarch for f19+ and rhel7+, exclusivearch otherwise.
no longer noarch, cause no golang for ppc64.
pkg archives no longer installed, dep for docker.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1001317 - Review Request: golang-github-gorilla-mux - A powerful URL router and dispatcher for golang
https://bugzilla.redhat.com/show_bug.cgi?id=1001317
--------------------------------------------------------------------------------
================================================================================
golang-github-kr-pty-0-0.14.git3b1f648.el6 (FEDORA-EPEL-2013-11800)
PTY interface for Go
--------------------------------------------------------------------------------
Update Information:
noarch for f19+ and rhel7+, exclusivearch otherwise.
no longer noarch, cause no golang for ppc64.
Fixes docker first run error.
pkg archives no longer installed,dep for docker.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1001396 - Review Request: golang-github-kr-pty - PTY interface for Go
https://bugzilla.redhat.com/show_bug.cgi?id=1001396
[ 2 ] Bug #1012701 - update for O_NOCTTY fix
https://bugzilla.redhat.com/show_bug.cgi?id=1012701
--------------------------------------------------------------------------------
================================================================================
golang-googlecode-net-0-0.9.hg84a4013f96e0.el6 (FEDORA-EPEL-2013-11793)
Supplementary Go networking libraries
--------------------------------------------------------------------------------
Update Information:
noarch for f19+ and rhel7+, exclusivearch otherwise.
no longer noarch, cause no golang for ppc64.
pkg archives no longer installed,dep for docker.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1009967 - Review Request: golang-googlecode-net - Supplementary Go networking libraries
https://bugzilla.redhat.com/show_bug.cgi?id=1009967
--------------------------------------------------------------------------------
================================================================================
golang-googlecode-sqlite-0-0.7.hg74691fb6f837.el6 (FEDORA-EPEL-2013-11784)
Trivial sqlite3 binding for Go
--------------------------------------------------------------------------------
Update Information:
Initial package upload.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1015857 - Review Request: golang-googlecode-sqlite - Trivial sqlite3 binding for Go
https://bugzilla.redhat.com/show_bug.cgi?id=1015857
--------------------------------------------------------------------------------
================================================================================
mozilla-https-everywhere-3.4.2-1.el6 (FEDORA-EPEL-2013-11794)
HTTPS/HSTS enforcement extension for Mozilla Firefox and SeaMonkey
--------------------------------------------------------------------------------
Update Information:
- HTTPS Everywhere builds are now deterministic!
- Global memory leak bug fixes
- Updated rules: Craigslist, Apple.com, Microsoft, CloudFront, UKLocalGov,
-- Bing, Cengage
- New rules from dev: IPTorrents.com, TvTorrents
--------------------------------------------------------------------------------
ChangeLog:
* Wed Oct 9 2013 Russell Golden <niveusluna(a)niveusluna.org> - 3.4.2-1
- HTTPS Everywhere builds are now deterministic!
- Global memory leak bug fixes
- Updated rules: Craigslist, Apple.com, Microsoft, CloudFront, UKLocalGov,
-- Bing, Cengage
- New rules from dev: IPTorrents.com, TvTorrents
--------------------------------------------------------------------------------
================================================================================
nodejs-mysql-2.0.0-alpha9.2.el6 (FEDORA-EPEL-2013-11789)
A node.js driver for mysql
--------------------------------------------------------------------------------
Update Information:
Fix require-all dependancy to work with version in Fedora
Newpackage
--------------------------------------------------------------------------------
================================================================================
ovirt-engine-cli-3.3.0.5-1.el6 (FEDORA-EPEL-2013-11808)
oVirt Engine Command Line Interface
--------------------------------------------------------------------------------
Update Information:
Update to upstream 3.3.0.5
--------------------------------------------------------------------------------
ChangeLog:
* Wed Oct 9 2013 Juan Hernandez <juan.hernandez(a)redhat.com> - 3.3.0.5-1
- Update to upstream 3.3.0.5
--------------------------------------------------------------------------------
================================================================================
ovirt-engine-sdk-python-3.3.0.7-1.el6 (FEDORA-EPEL-2013-11796)
oVirt Engine Software Development Kit (Python)
--------------------------------------------------------------------------------
Update Information:
Update to upstream 3.3.0.7
--------------------------------------------------------------------------------
ChangeLog:
* Wed Oct 9 2013 Juan Hernandez <juan.hernandez(a)redhat.com> - 3.3.0.7-1
- Update to upstream 3.3.0.7
--------------------------------------------------------------------------------
================================================================================
phpMyAdmin-3.5.8.2-1.el6 (FEDORA-EPEL-2013-11785)
Handle the administration of MySQL over the World Wide Web
--------------------------------------------------------------------------------
Update Information:
Security update for PMASA-2013-8, PMASA-2013-9, PMASA-2013-11, PMASA-2013-12 PMASA-2013-14 and PMASA-2013-15
--------------------------------------------------------------------------------
ChangeLog:
* Wed Oct 9 2013 Paul Wouters <pwouters(a)redhat.com> - 3.5.8.2-1
- Upgrade to 3.5.8.2 (Various security issues)
* Sun Aug 4 2013 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 3.5.8.1-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
python-celery-2.2.8-2.el6 (FEDORA-EPEL-2013-11807)
Distributed Task Queue
--------------------------------------------------------------------------------
Update Information:
Change requirement to python-dateutil15 as python-dateutil is too old
--------------------------------------------------------------------------------
ChangeLog:
* Wed Oct 9 2013 Matthias Runge <mrunge(a)redhat.com> - 2.2.8-2
- require python-dateutil15 (rhbz#1002787)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1002787 - python-celery cannot be used because it has a runtime dependency on python-dateutil >= 1.5.0, which is unavailable
https://bugzilla.redhat.com/show_bug.cgi?id=1002787
--------------------------------------------------------------------------------
================================================================================
python-cssmin-0.1.4-5.el6 (FEDORA-EPEL-2013-11788)
A Python port of the YUI CSS compression algorithm
--------------------------------------------------------------------------------
Update Information:
A Python port of the YUI CSS compression algorithm
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1014601 - Review Request: python-cssmin - A Python port of the YUI CSS compression algorithm
https://bugzilla.redhat.com/show_bug.cgi?id=1014601
--------------------------------------------------------------------------------
================================================================================
python-flask-assets-0.8-2.el6 (FEDORA-EPEL-2013-11805)
Asset management for flask
--------------------------------------------------------------------------------
Update Information:
Added python-webassets as require.
--------------------------------------------------------------------------------
ChangeLog:
* Fri Oct 4 2013 Praveen Kumar <kumarpraveen.nitdgp(a)gmail.com> - 0.8-2
- Added python-webassets as require
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1014147 - python-flask-assets: python-webassets missing as Requires
https://bugzilla.redhat.com/show_bug.cgi?id=1014147
--------------------------------------------------------------------------------
================================================================================
python-mongoengine-0.7.10-2.el6 (FEDORA-EPEL-2013-11797)
A Python Document-Object Mapper for working with MongoDB
--------------------------------------------------------------------------------
Update Information:
Fix BR python-pymongo and python-pymongo-gridfs.
Here is where you give an explanation of your update.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #901365 - Review Request: python-mongoengine - A Python Document-Object Mapper for working with MongoDB
https://bugzilla.redhat.com/show_bug.cgi?id=901365
--------------------------------------------------------------------------------
================================================================================
python-six-1.4.1-1.el6 (FEDORA-EPEL-2013-11810)
Python 2 and 3 compatibility utilities
--------------------------------------------------------------------------------
Update Information:
- update to 1.4.1
--------------------------------------------------------------------------------
ChangeLog:
* Mon Sep 16 2013 Bohuslav Kabrda <bkabrda(a)redhat.com> - 1.4.1-1
- 1.4.1
* Sun Aug 4 2013 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 1.3.0-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
* Thu Mar 21 2013 David Malcolm <dmalcolm(a)redhat.com> - 1.3.0-1
- 1.3.0
* Thu Feb 14 2013 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 1.2.0-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild
* Wed Aug 29 2012 David Malcolm <dmalcolm(a)redhat.com> - 1.2.0-1
- 1.2.0 (rhbz#852658)
- add %check section
* Sat Aug 4 2012 David Malcolm <dmalcolm(a)redhat.com> - 1.1.0-4
- rebuild for https://fedoraproject.org/wiki/Features/Python_3.3
* Sat Jul 21 2012 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 1.1.0-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
python-sphinxcontrib-httpdomain-1.1.8-3.el6 (FEDORA-EPEL-2013-11787)
Sphinx domain for documenting HTTP APIs
--------------------------------------------------------------------------------
Update Information:
The HTTP domain requires Sphinx 1.0, it does not work with Sphinx 0.6.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Oct 9 2013 Dan Callaghan <dcallagh(a)redhat.com> - 1.1.8-3
- require python-sphinx10 on EPEL
* Sun Aug 4 2013 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 1.1.8-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1016434 - Extension sphinxcontrib.httpdomain could not be imported
https://bugzilla.redhat.com/show_bug.cgi?id=1016434
--------------------------------------------------------------------------------
================================================================================
python-wsme-0.5b5-1.el6 (FEDORA-EPEL-2013-11801)
Web Services Made Easy
--------------------------------------------------------------------------------
Update Information:
- Latest upstream
--------------------------------------------------------------------------------
ChangeLog:
* Thu Oct 10 2013 Pádraig Brady <pbrady(a)redhat.com> - 0.5b5-1
- Latest upstream
* Sun Aug 4 2013 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 0.5b2-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
qt5-qtdoc-5.1.1-2.el6 (FEDORA-EPEL-2013-11790)
Main Qt5 Reference Documentation
--------------------------------------------------------------------------------
Update Information:
Main Qt5 Reference Documentation.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1010727 - Review Request: qt5-qtdoc - Main Qt5 Reference Documentation
https://bugzilla.redhat.com/show_bug.cgi?id=1010727
--------------------------------------------------------------------------------
================================================================================
savanna-image-elements-0.3-0.3.88511begit.el6 (FEDORA-EPEL-2013-11799)
Savanna diskimage-builder elements
--------------------------------------------------------------------------------
Update Information:
Updated ExclusiveArch to match diskimage-builder's
Diskimage-builder elements for Savanna
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #998702 - Review Request: savanna-image-elements - Savanna diskimage-builder elements
https://bugzilla.redhat.com/show_bug.cgi?id=998702
[ 2 ] Bug #1000293 - savanna-image-elements-0.3-0.2.88511begit.el6 has unresolved dependency diskimage-builder
https://bugzilla.redhat.com/show_bug.cgi?id=1000293
--------------------------------------------------------------------------------
================================================================================
stomppy-3.1.6-1.el6 (FEDORA-EPEL-2013-11804)
Python stomp client for messaging
--------------------------------------------------------------------------------
Update Information:
Version 3.1.6 - Sep 2013
* Integrate fix for threading primitives issue (http://code.google.com/p/stomppy/issues/detail?id=53)
* Add vhost constructor arg
* Change cli to __main__ (so you can run `python stomp` rather than `python stomp/cli.py`)
* Integrate interrupt patch (http://code.google.com/p/stomppy/issues/detail?id=48)
* Change test hosts and ports so that they're provided from the setup.py file
Version 3.1.5 - Aug 2013
* Fix for gcd division error (http://code.google.com/p/stomppy/issues/detail?id=44)
* Fix bytes incompatibility issue in Python 3.3 (http://code.google.com/p/stomppy/issues/detail?id=51)
Version 3.1.4 - Jul 2012
* Add receipt header to disconnect frame if not already present on a 1.1 connection
Version 3.1.3 - May 2012
* Fix signature on override_threading method
* Fix for duplicate header handling
* Minor fix for version var
Version 3.1.1 - Feb 2012
* Fix for encoding problems (issue #34) [Jayson Vantuyl]
* Possible fix for reconnection problems (issue #32)
* Fix for broken pipe (error not passed to client - issue #33)
* Various tidying up of the codebase
Version 3.1.0 (beta 4) - Oct 2011
* Heartbeat functionality completed
* General tidy up of unit tests
Version 3.1.0 (beta 3) - Oct 2011
* Stop loading logging configuration in module itself (so stomp.py works better as an add-on library)
* Fix for connection wait (so that it now actually waits)
* Add initial heartbeat functionality
* Add Linux TCP-Keepalive functionality, provided by Jayson Vantuyl
Version 3.1.0 (beta 2) - Sep 2011
* Various bug fixes in 1.1 code
* Fixed bug in ssl support
* Added facility to override threading library
* Updated unit test code for Apache Apollo
Version 3.1.0 (beta 1) - Sep 2011
* Initial support for STOMP Protocol 1.1
* New version of CLI
* Added disconnect receipt functionality
--------------------------------------------------------------------------------
ChangeLog:
* Wed Oct 9 2013 Steve Traylen <steve.traylen(a)cern.ch.com> - 3.1.6-1
- Update to 3.1.6, upstream moved to github.
* Sun Aug 4 2013 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 3.0.5-5
- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
* Fri Feb 15 2013 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 3.0.5-4
- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild
* Sat Aug 4 2012 David Malcolm <dmalcolm(a)redhat.com> - 3.0.5-3
- rebuild for https://fedoraproject.org/wiki/Features/Python_3.3
* Sat Jul 21 2012 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 3.0.5-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild
* Mon Feb 13 2012 Steve Traylen <steve.traylen(a)cern.ch.com> - 3.0.5-1
- Update to 3.0.5
* Sat Jan 14 2012 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 3.0.3-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild
* Wed Feb 9 2011 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 3.0.3-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #920204 - Upgrade to new upstream version
https://bugzilla.redhat.com/show_bug.cgi?id=920204
--------------------------------------------------------------------------------
================================================================================
zabbix-1.8.18-1.el6 (FEDORA-EPEL-2013-11809)
Open-source monitoring solution for your IT infrastructure
--------------------------------------------------------------------------------
Update Information:
http://www.zabbix.com/rn1.8.18.php
The following issues were already sorted out in 1.8.17-3:
- ZBX-6804
- ZBX-5924
An SQL injection vulnerability inside frontend and API was discovered and mended:
https://support.zabbix.com/browse/ZBX-7091
CVE-2013-5743
--------------------------------------------------------------------------------
ChangeLog:
* Thu Oct 10 2013 Volker Fröhlich <volker27(a)gmx.at> - 1.8.18-1
- New upstream release
- Drop patches for ZBX-7091 and ZBX-5924
* Wed Oct 2 2013 Volker Fröhlich <volker27(a)gmx.at> - 1.8.17-3
- Add patch for CVE-2013-5743 (SQL injection vulnerability, ZBX-7091)
--------------------------------------------------------------------------------
================================================================================
zabbix20-2.0.9-1.el6 (FEDORA-EPEL-2013-11791)
Open-source monitoring solution for your IT infrastructure
--------------------------------------------------------------------------------
Update Information:
http://www.zabbix.com/rn2.0.9.php
The following issues were already sorted out in 2.0.8-3:
- ZBX-6804
- ZBX-6922
- ZBX-6992
- ZBX-7091
--------------------------------------------------------------------------------
ChangeLog:
* Wed Oct 9 2013 Volker Fröhlich <volker27(a)gmx.at> - 2.0.9-1
- New upstream release
- Drop obsolete patches ZBX-6804, ZBX-7091, ZBX-6922, ZBX-6992
--------------------------------------------------------------------------------
The following Fedora EPEL 5 Security updates need testing:
Age URL
534 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5630/bugzilla-3.2.…
49 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-11276/ssmtp-2.61-2…
25 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-11560/fail2ban-0.8…
5 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2013-11749/zabbix20-2.0…
The following builds have been pushed to Fedora EPEL 5 updates-testing
boost141-1.41.0-5.el5
drupal7-features-2.0-0.8.rc5.el5
lz4-r106-4.el5
Details about builds:
================================================================================
boost141-1.41.0-5.el5 (FEDORA-EPEL-2013-11777)
The free peer-reviewed portable C++ source libraries
--------------------------------------------------------------------------------
Update Information:
- Update an upstream patch to fix a GCC warning for looser throw specifier in boost::exception_ptr::~exception_ptr (backported from boost-1.41.0-16, resolves: #921441 and related: #894072)
- Add explicitly the runtime dependency between boost-mpich2 and boost-serialization (backported from boost-1.41.0-17)
- Build math portion of Boost.TR1, package DSOs in the subpackage boost-math (backported from boost-1.41.0-18, resolves: #820670)
--------------------------------------------------------------------------------
ChangeLog:
* Tue Oct 8 2013 Robert Scheck <robert(a)fedoraproject.org> 1.41.0-5
- Update an upstream patch to fix a GCC warning for looser throw
specifier in boost::exception_ptr::~exception_ptr (backported
from boost-1.41.0-16, resolves: #921441 and related: #894072)
- Add explicitly the runtime dependency between boost-mpich2 and
boost-serialization (backported from boost-1.41.0-17)
- Build math portion of Boost.TR1, package DSOs in the subpackage
boost-math (backported from boost-1.41.0-18, resolves: #820670)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #894072 - boost exceptions broken on el5
https://bugzilla.redhat.com/show_bug.cgi?id=894072
[ 2 ] Bug #820670 - Math TR1 isn't included
https://bugzilla.redhat.com/show_bug.cgi?id=820670
[ 3 ] Bug #771370 - Boost math libraries still needed
https://bugzilla.redhat.com/show_bug.cgi?id=771370
--------------------------------------------------------------------------------
================================================================================
drupal7-features-2.0-0.8.rc5.el5 (FEDORA-EPEL-2013-11772)
Provides feature management for Drupal
--------------------------------------------------------------------------------
Update Information:
Upstream changelog for this release: https://drupal.org/node/2106567
--------------------------------------------------------------------------------
ChangeLog:
* Mon Oct 7 2013 Paul W. Frields <stickster(a)gmail.com> - 2.0-0.8.rc5
- Update to upstream 2.0-rc5 release for bug fixes
- Upstream changelog for this release: https://drupal.org/node/2106567
--------------------------------------------------------------------------------
================================================================================
lz4-r106-4.el5 (FEDORA-EPEL-2013-11780)
Extremely fast compression algorithm
--------------------------------------------------------------------------------
Update Information:
Introducing lz4: extremely fast compression algorithm.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1015263 - Review request: lz4 Extremely fast compression algorithm
https://bugzilla.redhat.com/show_bug.cgi?id=1015263
--------------------------------------------------------------------------------