The following Fedora 18 Security updates need testing:
Age URL
40 https://admin.fedoraproject.org/updates/FEDORA-2013-21875/389-ds-base-1.3.0…
27 https://admin.fedoraproject.org/updates/FEDORA-2013-22949/net-snmp-5.7.2-7.…
14 https://admin.fedoraproject.org/updates/FEDORA-2013-23662/rubygem-actionpac…
14 https://admin.fedoraproject.org/updates/FEDORA-2013-23663/ibus-chewing-1.4.…
6 https://admin.fedoraproject.org/updates/FEDORA-2013-23988/varnish-3.0.5-1.f…
3 https://admin.fedoraproject.org/updates/FEDORA-2013-24142/asterisk-11.7.0-1…
3 https://admin.fedoraproject.org/updates/FEDORA-2013-24155/libsrtp-1.4.4-9.2…
0 https://admin.fedoraproject.org/updates/FEDORA-2014-0025/goffice-0.10.9-1.f…
0 https://admin.fedoraproject.org/updates/FEDORA-2014-0085/rubygem-will_pagin…
The following Fedora 18 Critical Path updates have yet to be approved:
Age URL
327 https://admin.fedoraproject.org/updates/FEDORA-2013-2192/nautilus-3.6.3-5.f…
11 https://admin.fedoraproject.org/updates/FEDORA-2013-23882/libbluray-0.5.0-2…
The following builds have been pushed to Fedora 18 updates-testing
certmonger-0.70-1.fc18
homerun-1.1.0-1.fc18
lz4-r110-1.fc18
mate-keyring-1.6.1-1.fc18
meld-1.8.3-1.fc18
numpy-1.7.2-7.fc18
php-drush-drush-6.2.0-2.fc18
python-djblets-0.7.28-1.fc18
rubygem-will_paginate-3.0.2-5.fc18
Details about builds:
================================================================================
certmonger-0.70-1.fc18 (FEDORA-2013-23416)
Certificate status monitor and PKI enrollment client
--------------------------------------------------------------------------------
Update Information:
This update fixes crashes in the daemon when there are errors reading some of its data files or errors saving newly-obtained certificates to disk.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jan 2 2014 Nalin Dahyabhai <nalin(a)redhat.com> 0.70-1
- add a --with-homedir option to configure, and use it, since subprocesses
which we run and which use NSS may attempt to write to $HOME/.pki, and
0.69's strategy of setting that to "/" was rightly hitting SELinux policy
denials (#1047798)
* Fri Dec 27 2013 Daniel Mach <dmach(a)redhat.com> - 0.69-2
- Mass rebuild 2013-12-27
* Mon Dec 9 2013 Nalin Dahyabhai <nalin(a)redhat.com> 0.69-1
- tweak how we decide whether we're on the master or a minion when we're
told to use certmaster as a CA
- clean up one of the tests so that it doesn't have to work around internal
logging producing duplicate messages
- when logging errors while setting up to contact xmlrpc servers, explicitly
note that the error is client-side
- don't abort() due to incorrect locking when an attempt to save an issued
certificate to the designated location fails (part of #1032760/#1033333,
ticket #22)
- when reading an issued certificate from an enrollment helper, ignore
noise before or after the certificate itself (more of #1032760/1033333,
ticket #22)
- run subprocesses in a cleaned-up environment (more of #1032760/1033333,
ticket #22)
- clear the ca-error that we saved when we had an error talking to the CA if we
subsequently succeed in talking to the CA
- various other static-analysis fixes
* Thu Aug 29 2013 Nalin Dahyabhai <nalin(a)redhat.com> 0.68-1
- notice when the OpenSSL RNG isn't seeded
- notice when saving certificates or keys fails due to filesystem-related
permission denial (#996581)
* Tue Aug 6 2013 Nalin Dahyabhai <nalin(a)redhat.com> 0.67-3
- pull up a patch from master to adapt self-tests to certutil's diagnostic
output having changed (#992050)
* Sat Aug 3 2013 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 0.67-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
* Mon Mar 11 2013 Nalin Dahyabhai <nalin(a)redhat.com> 0.67-1
- when saving certificates to NSS databases, try to preserve the trust
value assigned to a previously-present certificate with the same nickname
and subject, if one is found
- when saving certificates to NSS databases, also prune certificates from
the database which have both the same nickname and subject as the one
we're adding, to avoid tripping up tools that only fetch one certificate
by nickname
* Wed Feb 13 2013 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 0.65-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild
* Wed Jan 23 2013 Nalin Dahyabhai <nalin(a)redhat.com> 0.66-1
- build as position-independent executables with early binding (#883966)
- also don't tag the unit file as a configuration file (internal tooling)
* Wed Jan 23 2013 Nalin Dahyabhai <nalin(a)redhat.com> 0.65-2
- don't tag the D-Bus session .service file as a configuration file (internal
tooling)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #995022 - certmonger coredumps when certificates cannot be created due to permissions
https://bugzilla.redhat.com/show_bug.cgi?id=995022
[ 2 ] Bug #1043017 - [abrt] certmonger-0.67-1.fc19: strcmp: Process /usr/sbin/certmonger was killed by signal 11 (SIGSEGV)
https://bugzilla.redhat.com/show_bug.cgi?id=1043017
--------------------------------------------------------------------------------
================================================================================
homerun-1.1.0-1.fc18 (FEDORA-2014-0082)
KDE Application Launcher
--------------------------------------------------------------------------------
Update Information:
Update to latest upstream release
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jan 2 2014 Joseph Marrero <jmarrero(a)fedoraproject.org> 1.1.0-1
- update to latest upstream version
* Sat Aug 3 2013 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 1.0.0-6
- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
lz4-r110-1.fc18 (FEDORA-2014-0079)
Extremely fast compression algorithm
--------------------------------------------------------------------------------
Update Information:
Fixed issues:
#99 -> https://code.google.com/p/lz4/issues/detail?id=99
#100 -> https://code.google.com/p/lz4/issues/detail?id=100
lz4-r108 release.
lz4-r108 release.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jan 2 2014 pjp <pjp(a)fedoraproject.org> - r110-1
- new release r110
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1047435 - This package hasn't been built for rawhide
https://bugzilla.redhat.com/show_bug.cgi?id=1047435
--------------------------------------------------------------------------------
================================================================================
mate-keyring-1.6.1-1.fc18 (FEDORA-2014-0072)
Framework for managing passwords and other secrets
--------------------------------------------------------------------------------
Update Information:
- update to 1.6.1 release
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jan 2 2014 Wolfgang Ulbrich <chat-to-me(a)raveit.de> - 1.6.1-1
- update to 1.6.1 release
--------------------------------------------------------------------------------
================================================================================
meld-1.8.3-1.fc18 (FEDORA-2014-0101)
Visual diff and merge tool
--------------------------------------------------------------------------------
Update Information:
This update brings the new minor version 1.8.3 of Meld to your home.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Jan 1 2014 Dominic Hopf <dmaphy(a)fedoraproject.org> - 1.8.3-1
- New upstream release: Meld 1.8.3
--------------------------------------------------------------------------------
================================================================================
numpy-1.7.2-7.fc18 (FEDORA-2014-0053)
A fast multidimensional array facility for Python
--------------------------------------------------------------------------------
Update Information:
This is a bugfix only release. More than 42 issues were fixed, the most important issues are listed in the release notes: https://github.com/numpy/numpy/blob/v1.7.2/doc/release/1.7.2-notes.rst
--------------------------------------------------------------------------------
ChangeLog:
* Wed Jan 1 2014 Orion Poplawski <orion(a)nwra.com> - 1:1.7.2-1
- Update to 1.7.2
- Drop library-ext patch applied upstream
* Wed Nov 27 2013 Orion Poplawski <orion(a)nwra.com> - 1:1.7.1-7
- Build sphinx docs (bug #1034357)
- Ship doc module (bug #1034357)
- Move f2py documentation to f2py package (bug #1027394)
* Mon Oct 14 2013 Tomas Tomecek <ttomecek(a)redhat.com> - 1:1.7.1-6
- fix name of shared library extensions (rhbz#1018783)
* Tue Aug 27 2013 Jon Ciesla <limburgher(a)gmail.com> - 1:1.7.1-5
- URL Fix, BZ 1001337
* Sat Aug 3 2013 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 1:1.7.1-4
- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
* Tue Jul 30 2013 Tomas Tomecek <ttomecek(a)redhat.com> - 1:1.7.1-3
- Fix rpmlint warnings
- Update License
- Apply patch: change shebang of f2py to use binary directly
* Sun Jun 2 2013 Orion Poplawski <orion(a)nwra.com> - 1:1.7.1-2
- Specfile cleanup (bug #969854)
--------------------------------------------------------------------------------
================================================================================
php-drush-drush-6.2.0-2.fc18 (FEDORA-2014-0050)
Command line shell and Unix scripting interface for Drupal
--------------------------------------------------------------------------------
Update Information:
Fixes dependency issue (BZ #1047971)
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jan 2 2014 Shawn Iwinski <shawn.iwinski(a)gmail.com> 6.2.0-2
- Fix Fedora 18 dependency issue (BZ #1047971)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1047971 - Failed dependency for php-symfony-yaml
https://bugzilla.redhat.com/show_bug.cgi?id=1047971
--------------------------------------------------------------------------------
================================================================================
python-djblets-0.7.28-1.fc18 (FEDORA-2014-0106)
A collection of useful classes and functions for Django
--------------------------------------------------------------------------------
Update Information:
Fix error 500 issue in ReviewBoard when errors occur in registration (such as attempting to register a name already in use).
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jan 2 2014 Stephen Gallagher <sgallagh(a)redhat.com> - 0.7.28-1
- New upstream release 0.7.28
- http://downloads.reviewboard.org/releases/Djblets/0.7/Djblets-0.7.28.NEWS
* djblets.auth:
* Fixed HTTP 500 errors when failing to save the registration form
--------------------------------------------------------------------------------
================================================================================
rubygem-will_paginate-3.0.2-5.fc18 (FEDORA-2014-0085)
Most awesome pagination solution for Rails
--------------------------------------------------------------------------------
Update Information:
Fix XSS vulnerabilities (CVE-2013-6459).
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jan 2 2014 Vít Ondruch <vondruch(a)redhat.com> - 3.0.2-5
- Fix XSS vulnerabilities (CVE-2013-6459).
- Disable Sequel test, since Sequel 4.x does not seem to be supported by
will_paginate yet.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1046642 - CVE-2013-6459 rubygem-will_paginate: XSS vulnerabilities
https://bugzilla.redhat.com/show_bug.cgi?id=1046642
--------------------------------------------------------------------------------
The following Fedora 20 Security updates need testing:
Age URL
77 https://admin.fedoraproject.org/updates/FEDORA-2013-19198/quassel-0.9.1-1.f…
38 https://admin.fedoraproject.org/updates/FEDORA-2013-22130/chicken-4.8.0.5-1…
28 https://admin.fedoraproject.org/updates/FEDORA-2013-22809/net-snmp-5.7.2-16…
23 https://admin.fedoraproject.org/updates/FEDORA-2013-23116/python-swiftclien…
15 https://admin.fedoraproject.org/updates/FEDORA-2013-23524/openstack-nova-20…
14 https://admin.fedoraproject.org/updates/FEDORA-2013-23636/rubygem-actionpac…
14 https://admin.fedoraproject.org/updates/FEDORA-2013-23659/ibus-chewing-1.4.…
6 https://admin.fedoraproject.org/updates/FEDORA-2013-24018/varnish-3.0.5-1.f…
5 https://admin.fedoraproject.org/updates/FEDORA-2013-24059/mingw-openjpeg-1.…
3 https://admin.fedoraproject.org/updates/FEDORA-2013-24108/asterisk-11.7.0-1…
3 https://admin.fedoraproject.org/updates/FEDORA-2013-24153/libsrtp-1.4.4-9.2…
0 https://admin.fedoraproject.org/updates/FEDORA-2014-0033/goffice-0.10.9-1.f…
0 https://admin.fedoraproject.org/updates/FEDORA-2014-0066/rubygem-will_pagin…
The following Fedora 20 Critical Path updates have yet to be approved:
Age URL
51 https://admin.fedoraproject.org/updates/FEDORA-2013-21163/libproxy-0.4.11-8…
13 https://admin.fedoraproject.org/updates/FEDORA-2013-23721/krb5-1.11.3-38.fc…
11 https://admin.fedoraproject.org/updates/FEDORA-2013-23850/libbluray-0.5.0-2…
10 https://admin.fedoraproject.org/updates/FEDORA-2013-23915/rygel-0.20.3-1.fc…
0 https://admin.fedoraproject.org/updates/FEDORA-2014-0088/policycoreutils-2.…
0 https://admin.fedoraproject.org/updates/FEDORA-2014-0042/grep-2.16-1.fc20
0 https://admin.fedoraproject.org/updates/FEDORA-2014-0099/libldb-1.1.16-4.fc…
0 https://admin.fedoraproject.org/updates/FEDORA-2014-0089/dnf-0.4.10-1.fc20
0 https://admin.fedoraproject.org/updates/FEDORA-2014-0044/gnutls-3.1.18-3.fc…
0 https://admin.fedoraproject.org/updates/FEDORA-2014-0096/hwdata-0.259-1.fc20
The following builds have been pushed to Fedora 20 updates-testing
LuxRender-1.3.1-4.fc20
demorse-1.2-1.fc20
dnf-0.4.10-1.fc20
edgar-1.14-1.fc20
fedfs-utils-0.9.5-1.fc20
gnutls-3.1.18-3.fc20
grep-2.16-1.fc20
homerun-1.1.0-1.fc20
hppc-0.5.3-2.fc20
hwdata-0.259-1.fc20
impressive-0.10.4-2.fc20
junit-benchmarks-0.7.2-1.fc20
kde-connect-0.4.2-1.fc20
kde-plasma-nm-0.9.3.2-2.fc20
libldb-1.1.16-4.fc20
librabbitmq-0.4.1-2.fc20
lz4-r110-1.fc20
meld-1.8.3-1.fc20
nemo-2.0.8-6.fc20
nodejs-bson-0.2.3-3.fc20
opensc-0.13.0-9.fc20
openstack-heat-2013.2.1-1.0.fc20
perl-Data-GUID-0.048-1.fc20
perl-Email-Address-List-0.01-1.fc20
perl-Image-Dot-1.1-2.fc20
perl-Symbol-Global-Name-0.04-1.fc20
php-EasyRdf-0.8.0-1.fc20
php-pear-Net-URL2-2.0.5-1.fc20
php-pecl-http-2.0.4-1.fc20
php-pecl-http1-1.7.6-4.fc20
php-pecl-memprof-1.0.0-3.fc20
php-solarium-3.1.2-2.fc20
policycoreutils-2.2.4-6.fc20
postfix-2.10.2-3.fc20
python-djblets-0.7.28-1.fc20
python-flake8-2.0-5.fc20
rubygem-will_paginate-3.0.4-4.fc20
unifont-6.3.20131221-2.fc20
vdr-live-0.3.0-6.69f84f9.fc20
Details about builds:
================================================================================
LuxRender-1.3.1-4.fc20 (FEDORA-2014-0093)
Lux Renderer, an unbiased rendering system
--------------------------------------------------------------------------------
Update Information:
Update to latest upstream (1.3.1).
--------------------------------------------------------------------------------
ChangeLog:
* Wed Jan 1 2014 François Cami <fcami(a)fedoraproject.org> - 1.3.1-4
- Fix FTBS.
* Tue Dec 10 2013 Björn Esser <bjoern.esser(a)gmail.com> - 1.3.1-3
- rebuilt to fix several broken dependencies in Rawhide
* Wed Nov 27 2013 Rex Dieter <rdieter(a)fedoraproject.org> - 1.3.1-2
- rebuild (openexr)
* Tue Nov 19 2013 Nicolas Chauvet <kwizart(a)gmail.com> - 1.3.1-1
- Update to 1.3.1
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1047722 - [PATCH] RFE: Update LuxRender to 1.3.1 (fix FTBS)
https://bugzilla.redhat.com/show_bug.cgi?id=1047722
--------------------------------------------------------------------------------
================================================================================
demorse-1.2-1.fc20 (FEDORA-2014-0067)
Command line tool for decoding Morse code signals
--------------------------------------------------------------------------------
Update Information:
This is new version of the package.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jan 2 2014 Jaroslav Škarvada <jskarvad(a)redhat.com> - 1.2-1
- New version
Resolves: rhbz#1044371
- Fixed whitespaces in the description
- Dropped format-security patch (upstreamed)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1044371 - demorse-1.2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1044371
--------------------------------------------------------------------------------
================================================================================
dnf-0.4.10-1.fc20 (FEDORA-2014-0089)
Package manager forked from Yum, using libsolv as a dependency resolver
--------------------------------------------------------------------------------
Update Information:
Here is where you give.
--------------------------------------------------------------------------------
ChangeLog:
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #967264 - [plugins] Support post-transaction actions
https://bugzilla.redhat.com/show_bug.cgi?id=967264
[ 2 ] Bug #1018284 - [rfe] [api] refactor check for valid id into separate function
https://bugzilla.redhat.com/show_bug.cgi?id=1018284
[ 3 ] Bug #1035164 - [abrt] dnf-0.4.7-1.fc20: miscutils.py:61:checkSig:OSError: [Errno 2] Adresář nebo soubor neexistuje: '/var/cache/dnf/x86_64/20/updates-testing/packages/kernel-3.11.9-300.fc20.x86_64.rpm'
https://bugzilla.redhat.com/show_bug.cgi?id=1035164
[ 4 ] Bug #1036147 - [locking] Traceback for dnf search if running under su - USER
https://bugzilla.redhat.com/show_bug.cgi?id=1036147
[ 5 ] Bug #1036211 - Install groups using @ sign
https://bugzilla.redhat.com/show_bug.cgi?id=1036211
[ 6 ] Bug #1038403 - [abrt] dnf-0.4.9-1.fc20: base.py:1832:handle_erase:AssertionError
https://bugzilla.redhat.com/show_bug.cgi?id=1038403
[ 7 ] Bug #1038937 - [plugins] [api] Add hook for metadata download complete event
https://bugzilla.redhat.com/show_bug.cgi?id=1038937
[ 8 ] Bug #1040255 - dnf show wrong Installed size when install packages
https://bugzilla.redhat.com/show_bug.cgi?id=1040255
[ 9 ] Bug #1044502 - [abrt] dnf: base.py:125:_add_repo_to_sack:UnicodeDecodeError: 'ascii' codec can't decode byte 0xd0 in position 113: ordinal not in range(128)
https://bugzilla.redhat.com/show_bug.cgi?id=1044502
[ 10 ] Bug #1044981 - [doc] [rfe] support setopt
https://bugzilla.redhat.com/show_bug.cgi?id=1044981
[ 11 ] Bug #1044999 - [doc] show dependencies during update
https://bugzilla.redhat.com/show_bug.cgi?id=1044999
--------------------------------------------------------------------------------
================================================================================
edgar-1.14-1.fc20 (FEDORA-2014-0102)
A platform game
--------------------------------------------------------------------------------
Update Information:
* Made some minor graphical improvements to the Sewer and Basement maps
* Added Chaos's chain
* Fixed a grammar problem when Edgar talks after the cauldron explodes
* Added Dutch, Persian and Romanian translations
* Updated German translation
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jan 2 2014 Andrea Musuruane <musuruan(a)gmail.com> - 1.14-1
- Updated to upstream 1.14-1
--------------------------------------------------------------------------------
================================================================================
fedfs-utils-0.9.5-1.fc20 (FEDORA-2014-0095)
Utilities for mounting and managing FedFS
--------------------------------------------------------------------------------
Update Information:
Update to 0.9.5: three bugfixes from upstream
--------------------------------------------------------------------------------
ChangeLog:
* Mon Dec 30 2013 Chuck Lever <chuck.lever(a)oracle.com> - 0.9.5-1
- update to fedfs-utils 0.9.5
- Update BuildRequires according to https://fedorahosted.org/fpc/ticket/318
--------------------------------------------------------------------------------
================================================================================
gnutls-3.1.18-3.fc20 (FEDORA-2014-0044)
A TLS protocol implementation
--------------------------------------------------------------------------------
Update Information:
Fixed crash in gnutls_global_deinit (#1046672)
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jan 2 2014 Nikos Mavrogiannopoulos <nmav(a)redhat.com> 3.1.18-3
- Applied complete patch from (#1046672)
* Thu Jan 2 2014 Nikos Mavrogiannopoulos <nmav(a)redhat.com> 3.1.18-2
- Applied fix in suiteb patch to prevent crash in multiple
deinitializations (#1046672)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1046672 - Crash in gnutls_global_deinit
https://bugzilla.redhat.com/show_bug.cgi?id=1046672
--------------------------------------------------------------------------------
================================================================================
grep-2.16-1.fc20 (FEDORA-2014-0042)
Pattern matching utilities
--------------------------------------------------------------------------------
Update Information:
This is new version of grep, for details see upstream announcement: http://savannah.gnu.org/forum/forum.php?forum_id=7836
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jan 2 2014 Jaroslav Škarvada <jskarvad(a)redhat.com> - 2.16-1
- New version
Resolves: rhbz#1047813
- De-fuzzified patches
* Tue Nov 26 2013 Jaroslav Škarvada <jskarvad(a)redhat.com> - 2.15-2
- Removed coloring restriction for interactive shells
Resolves: rhbz#1034631
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1047813 - grep-2.16 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1047813
[ 2 ] Bug #1044654 - [abrt] grep: Pexecute(): Process /usr/bin/grep was killed by signal 6 (SIGABRT)
https://bugzilla.redhat.com/show_bug.cgi?id=1044654
--------------------------------------------------------------------------------
================================================================================
homerun-1.1.0-1.fc20 (FEDORA-2014-0078)
KDE Application Launcher
--------------------------------------------------------------------------------
Update Information:
Update to latest upstream release
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jan 2 2014 Joseph Marrero <jmarrero(a)fedoraproject.org> 1.1.0-1
- update to latest upstream version
--------------------------------------------------------------------------------
================================================================================
hppc-0.5.3-2.fc20 (FEDORA-2014-0098)
High Performance Primitive Collections for Java
--------------------------------------------------------------------------------
Update Information:
Initial import (#1002165).
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1002165 - Review Request: hppc - High Performance Primitive Collections for Java
https://bugzilla.redhat.com/show_bug.cgi?id=1002165
--------------------------------------------------------------------------------
================================================================================
hwdata-0.259-1.fc20 (FEDORA-2014-0096)
Hardware identification and configuration data
--------------------------------------------------------------------------------
Update Information:
Update of pci, usb and vendor ids.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Dec 31 2013 Michal Minar <miminar(a)redhat.com> 0.259-1
- Update of pci, usb and vendor ids.
--------------------------------------------------------------------------------
================================================================================
impressive-0.10.4-2.fc20 (FEDORA-2014-0054)
A program that displays presentation slides
--------------------------------------------------------------------------------
Update Information:
sync with upstream bugfix release
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jan 2 2014 Michael J Gruber <mjg(a)fedoraproject.org> - 0.11.4-2
- upate requires as recommended by upstream
* Thu Jan 2 2014 Michael J Gruber <mjg(a)fedoraproject.org> - 0.11.4-1
- sync with upstream
- drop pillow compatibility patch (upstreamed)
- drop backported PDF parser fix (upstreamed)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1047205 - impressive-0.10.4 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1047205
--------------------------------------------------------------------------------
================================================================================
junit-benchmarks-0.7.2-1.fc20 (FEDORA-2014-0038)
Code benchmarking in JUnit4
--------------------------------------------------------------------------------
Update Information:
Initial import (#1002166).
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1002166 - Review Request: junit-benchmarks - Code benchmarking in JUnit4
https://bugzilla.redhat.com/show_bug.cgi?id=1002166
--------------------------------------------------------------------------------
================================================================================
kde-connect-0.4.2-1.fc20 (FEDORA-2014-0074)
KDE Connect client for communication with smartphones
--------------------------------------------------------------------------------
Update Information:
Imported the package.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1020309 - Review Request: kde-connect - KDE Connect client for communication with smartphones
https://bugzilla.redhat.com/show_bug.cgi?id=1020309
--------------------------------------------------------------------------------
================================================================================
kde-plasma-nm-0.9.3.2-2.fc20 (FEDORA-2014-0081)
Plasma applet written in QML for managing network connections
--------------------------------------------------------------------------------
Update Information:
Some upstream fixes
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jan 2 2014 Jan Grulich <jgrulich(a)redhat.com> - 0.9.3.2-2
- Pickup some upstream fixes
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1043195 - KDE lies when asks for wifi password at startup
https://bugzilla.redhat.com/show_bug.cgi?id=1043195
[ 2 ] Bug #1031997 - Prevent auto-reconnect on secrets failure until agents change
https://bugzilla.redhat.com/show_bug.cgi?id=1031997
--------------------------------------------------------------------------------
================================================================================
libldb-1.1.16-4.fc20 (FEDORA-2014-0099)
A schema-less, ldap like, API and database
--------------------------------------------------------------------------------
Update Information:
Build libldb with support for the LDAP module.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jan 2 2014 Stephen Gallagher <sgallagh(a)redhat.com> - 1.1.16-4
- Enable building libldb's LDAP interface module
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #961839 - LDB tools do not ship with ldb_ldap modules
https://bugzilla.redhat.com/show_bug.cgi?id=961839
--------------------------------------------------------------------------------
================================================================================
librabbitmq-0.4.1-2.fc20 (FEDORA-2014-0055)
Client library for AMQP
--------------------------------------------------------------------------------
Update Information:
fix broken librabbitmq.pc
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jan 2 2014 Remi Collet <remi(a)fedoraproject.org> - 0.4.1-2
- fix broken librabbitmq.pc, #1039555
- fix Source0 URL
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1039555 - Latest version of librabbitmq has a bogus pkg-config file
https://bugzilla.redhat.com/show_bug.cgi?id=1039555
--------------------------------------------------------------------------------
================================================================================
lz4-r110-1.fc20 (FEDORA-2014-0063)
Extremely fast compression algorithm
--------------------------------------------------------------------------------
Update Information:
Fixed issues:
#99 -> https://code.google.com/p/lz4/issues/detail?id=99
#100 -> https://code.google.com/p/lz4/issues/detail?id=100
lz4-r108 release.
lz4-r108 release.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jan 2 2014 pjp <pjp(a)fedoraproject.org> - r110-1
- new release r110
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1047435 - This package hasn't been built for rawhide
https://bugzilla.redhat.com/show_bug.cgi?id=1047435
--------------------------------------------------------------------------------
================================================================================
meld-1.8.3-1.fc20 (FEDORA-2014-0073)
Visual diff and merge tool
--------------------------------------------------------------------------------
Update Information:
This update brings the new minor version 1.8.3 of Meld to your home.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Jan 1 2014 Dominic Hopf <dmaphy(a)fedoraproject.org> - 1.8.3-1
- New upstream release: Meld 1.8.3
--------------------------------------------------------------------------------
================================================================================
nemo-2.0.8-6.fc20 (FEDORA-2014-0107)
File manager for Cinnamon
--------------------------------------------------------------------------------
Update Information:
- hopefully fix rename position issue (bz 1045181)
- patch to make background transparent
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jan 2 2014 Leigh Scott <leigh123linux(a)googlemail.com> - 2.0.8-6
- patch to make background transparent
* Thu Jan 2 2014 Leigh Scott <leigh123linux(a)googlemail.com> - 2.0.8-5
- hopefully fix rename position issue (bz 1045181)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1045181 - Rename files and directory : invisible field
https://bugzilla.redhat.com/show_bug.cgi?id=1045181
--------------------------------------------------------------------------------
================================================================================
nodejs-bson-0.2.3-3.fc20 (FEDORA-2014-0092)
A bson parser for node.js and the browser
--------------------------------------------------------------------------------
Update Information:
Newpackage
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1016753 - Review Request: nodejs-bson - bson parser for node.js
https://bugzilla.redhat.com/show_bug.cgi?id=1016753
--------------------------------------------------------------------------------
================================================================================
opensc-0.13.0-9.fc20 (FEDORA-2014-0091)
Smart card library and applications
--------------------------------------------------------------------------------
Update Information:
Applied epass2003 related patch (#981462)
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jan 2 2014 Nikos Mavrogiannopoulos <nmav(a)redhat.com> - 0.13.0-9
- Applied epass2003 related patch (#981462)
* Mon Dec 23 2013 Nikos Mavrogiannopoulos <nmav(a)redhat.com> - 0.13.0-8
- Compile using the --enable-sm option (related but does not fix #981462)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #981462 - ePass2003 not working
https://bugzilla.redhat.com/show_bug.cgi?id=981462
--------------------------------------------------------------------------------
================================================================================
openstack-heat-2013.2.1-1.0.fc20 (FEDORA-2014-0087)
OpenStack Orchestration (heat)
--------------------------------------------------------------------------------
Update Information:
update to 2013.2.1
Rebase to havana-rc2
Rebase to havana-rc1
Distribute dist defaults in heat-dist.conf
Rebase to havana-3, remove cli package and unit tests
add api-paste-dist.ini to /usr/share/heat
--------------------------------------------------------------------------------
ChangeLog:
* Mon Dec 16 2013 Jeff Peeler <jpeeler(a)redhat.com> 2013.2.1-1
- update to 2013.2.1
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1008560 - Heat package needs to distribute dist defaults for heat.conf
https://bugzilla.redhat.com/show_bug.cgi?id=1008560
[ 2 ] Bug #1006868 - heat-api and heat-engine [havana][packstack] try to load heat-api.conf and heat-engine.conf
https://bugzilla.redhat.com/show_bug.cgi?id=1006868
[ 3 ] Bug #1006911 - heat-engine requires dependency python-pbr
https://bugzilla.redhat.com/show_bug.cgi?id=1006911
[ 4 ] Bug #996972 - openstack-heat-cli package should be removed
https://bugzilla.redhat.com/show_bug.cgi?id=996972
[ 5 ] Bug #996965 - openstack-heat-common package should not contain tests
https://bugzilla.redhat.com/show_bug.cgi?id=996965
--------------------------------------------------------------------------------
================================================================================
perl-Data-GUID-0.048-1.fc20 (FEDORA-2014-0090)
Globally unique identifiers
--------------------------------------------------------------------------------
Update Information:
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1044910 - Review Request: perl-Data-GUID - Globally unique identifiers
https://bugzilla.redhat.com/show_bug.cgi?id=1044910
--------------------------------------------------------------------------------
================================================================================
perl-Email-Address-List-0.01-1.fc20 (FEDORA-2014-0104)
RFC close address list parsing
--------------------------------------------------------------------------------
Update Information:
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1044935 - Review Request: perl-Email-Address-List - RFC close address list parsing
https://bugzilla.redhat.com/show_bug.cgi?id=1044935
--------------------------------------------------------------------------------
================================================================================
perl-Image-Dot-1.1-2.fc20 (FEDORA-2014-0049)
Create 1x1 pixel image files in pure perl
--------------------------------------------------------------------------------
Update Information:
Create 1x1 pixel image files in pure perl
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1045826 - Review Request: perl-Image-Dot - Create 1x1 pixel image files in pure perl
https://bugzilla.redhat.com/show_bug.cgi?id=1045826
--------------------------------------------------------------------------------
================================================================================
perl-Symbol-Global-Name-0.04-1.fc20 (FEDORA-2014-0077)
Finds name and type of a global variable
--------------------------------------------------------------------------------
Update Information:
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1044875 - Review Request: perl-Symbol-Global-Name - Finds name and type of a global variable
https://bugzilla.redhat.com/show_bug.cgi?id=1044875
--------------------------------------------------------------------------------
================================================================================
php-EasyRdf-0.8.0-1.fc20 (FEDORA-2014-0036)
A PHP library designed to make it easy to consume and produce RDF
--------------------------------------------------------------------------------
Update Information:
EasyRdf 0.8.0
=============
Major new features
------------------
* Now PSR-2 compliant
* Added RDFa parser
* Added SPARQL Update support to `EasyRdf_Sparql_Client`
API changes
-----------
* `is_a()` has been renamed to `isA()`
* `isBnode()` has been renamed to `isBNode()`
* `getNodeId()` has been renamed to `getBNodeId()`
* Added a `$value` property to `hasProperty()`
* Renamed `toArray()` to `toRdfPhp()`
* Renamed `count()` to `countValues()` in `EasyRdf_Graph` and `EasyRdf_Resource`
* Made passing a URI to `delete()` behave more like `all()` and `get()` - you must enclose in `<>`
* `dump(true)` has changed to `dump('html')`
* `getUri()` in `EasyRdf_Sparql_Client` has been renamed to `getQueryUri()`
Enhancements
------------
* Added `EasyRdf_Container` class to help iterate through `rdf:Alt`, `rdf:Bag` and `rdf:Seq`
* Added `EasyRdf_Collection` class to help iterate through `rdf:List`
* Added `EasyRdf_Literal_HTML` and `EasyRdf_Literal_XML`
* Changed formatting of `xsd:dateTime` from `DateTime::ISO8601` to `DateTime::ATOM`
* Added `rss:title` to the list of properties that `label()` will check for
* Added support for serialising containers to the RDF/XML serialiser
* Added getGraph method to `EasyRdf_Resource`
* Turtle parser improvements
* Added the `application/n-triples` MIME type for the N-Triples format
* Added support to `EasyRdf_Namespace` for expanding `a` to `rdf:type`
* Added `listNamedGraphs()` function to `EasyRdf_Sparql_Client`
* Added line and column number to exceptions in the built-in parsers
Bug Fixes
---------
* Fixed bug in `EasyRdf_Namespace::expand()` (see issue #114)
* Fix for dumping SPARQL SELECT query with unbound result (see issue #112)
* Sesame compatibility : avoid duplicate Content-Length header
* Fix for for passing objects of type DateTime to $graph->add() (see issue #119)
* Fix for SPARQL queries longer than 2KB (see issue #85)
* Fix for dumping literal with unshortenable datatype uri (see issue #120)
* Fix for getting default mime type or extension when there isn't one
* Fix for missing trailing slash the HTTP client
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jan 2 2014 Shawn Iwinski <shawn.iwinski(a)gmail.com> 0.8.0-1
- Updated to 0.8.0
- Updated PHP min version from 5.2.8 to 5.3.3
- Added php-[libxml,mbstring,reflection,simplexml] requires
- Removed pre-0.8.0 fixes
- Updated %check to use PHPUnit directly and skip tests that sometimes cause
timeout exceptions
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1047694 - php-EasyRdf-0.8.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1047694
--------------------------------------------------------------------------------
================================================================================
php-pear-Net-URL2-2.0.5-1.fc20 (FEDORA-2013-23977)
Class for parsing and handling URL
--------------------------------------------------------------------------------
Update Information:
Upstream Changelog:
Version 2.0.5:
* Fixed #17036: Brackets broken for query variables
* Fixed diverse coding style violations and misc. minor issues
* Increased code coverage
Version 2.0.4:
* Fixed #20161: URLs with "0" as host fail to normalize with empty path
* A flaw in NetURL2::removeDotSegments() introduced in 2.0.1 has been fixed
* New: NetURL2::removeDotSegments() emits a warning on loop limit reach
* Url-segment maximum count raised from 100 to 256 (loop limit)
Version 2.0.3:
* Fixed #20156: setAuthority() flaw with "0" as host
* Fixed #20157: normalize() flaw with "0" as path
* Fixed #20158: Fragment-only references are not resolved to non-absolute base URI
* Fixed #20159: Authority not terminated by slash
* Fixed diverse coding style violations and misc. minor issues
* Increased code coverage
* Added support for Scrutinizer CI
Version 2.0.2:
* Fixed #19684: Redirects containing spaces do not work
* Fixed diverse coding style violations and misc. minor issues
* Improved source package distribution
* Added support for Travis CI
Version 2.0.1:
* Fixed Bug #20013: getNormalizedURL() adds leading "@" chars in the Authority
* Fixed Bug #20016: Wrong data in 6d4f4dd "Package.xml preparation."
* Fixed Bug #19176: resolve() does not merge the path if the base path is empty
* Fixed Bug #19315: removeDotSegments("0") not working
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jan 2 2014 Remi Collet <remi(a)fedoraproject.org> - 2.0.5-1
- Update to 2.0.5 (stable)
* Tue Dec 31 2013 Remi Collet <remi(a)fedoraproject.org> - 2.0.4-1
- Update to 2.0.4 (stable)
* Mon Dec 30 2013 Remi Collet <remi(a)fedoraproject.org> - 2.0.3-1
- Update to 2.0.3 (stable)
* Sat Dec 28 2013 Remi Collet <remi(a)fedoraproject.org> - 2.0.2-1
- Update to 2.0.2 (stable)
* Wed Dec 25 2013 Remi Collet <remi(a)fedoraproject.org> - 2.0.1-1
- Update to 2.0.1 (stable)
--------------------------------------------------------------------------------
================================================================================
php-pecl-http-2.0.4-1.fc20 (FEDORA-2014-0034)
Extended HTTP support
--------------------------------------------------------------------------------
Update Information:
Upstream Changelog:
* Removed the pecl/event conflict
* Fixed bug #66388 (Crash on POST with Content-Length:0 and untouched body)
Package Changelog:
* fix link to documentation, http://devel-m6w6.rhcloud.com/mdref/http
* update provided configuration, fix default value, drop unsupported option
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jan 2 2014 Remi Collet <remi(a)fedoraproject.org> - 2.0.4-1
- Update to 2.0.4
- fix link to documentation
- update provided configuration
- add upstream patch for -Werror=format-security
--------------------------------------------------------------------------------
================================================================================
php-pecl-http1-1.7.6-4.fc20 (FEDORA-2014-0100)
Extended HTTP support
--------------------------------------------------------------------------------
Update Information:
The HTTP extension aims to provide a convenient and powerful set of functionality for major applications.
The HTTP extension eases handling of HTTP URLs, dates, redirects, headers and messages in a HTTP context (both incoming and outgoing). It also provides means for client negotiation of preferred language and charset, as well as
a convenient way to exchange arbitrary data with caching and resuming capabilities.
It provides powerful request functionality, if built with CURL support. Parallel requests are available for PHP 5 and greater.
Note:
. php-pecl-http1 provides API version 1
. php-pecl-http provides API version 2
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #990904 - Review Request: php-pecl-http1 - Extended HTTP support
https://bugzilla.redhat.com/show_bug.cgi?id=990904
--------------------------------------------------------------------------------
================================================================================
php-pecl-memprof-1.0.0-3.fc20 (FEDORA-2014-0069)
Memory usage profiler
--------------------------------------------------------------------------------
Update Information:
Memory usage profiler for PHP scripts.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1018133 - Review Request: php-pecl-memprof - Memory usage profiler
https://bugzilla.redhat.com/show_bug.cgi?id=1018133
--------------------------------------------------------------------------------
================================================================================
php-solarium-3.1.2-2.fc20 (FEDORA-2014-0108)
Solarium PHP Solr client library
--------------------------------------------------------------------------------
Update Information:
Solarium is a PHP Solr client library that accurately model Solr concepts.
Where many other Solr libraries only handle the communication with Solr, Solarium also relieves you of handling all the complex Solr query parameters using a well documented API.
Documentation: http://wiki.solarium-project.org/
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1023879 - Review Request: php-solarium - Solarium PHP Solr client library
https://bugzilla.redhat.com/show_bug.cgi?id=1023879
--------------------------------------------------------------------------------
================================================================================
policycoreutils-2.2.4-6.fc20 (FEDORA-2014-0088)
SELinux policy core utilities
--------------------------------------------------------------------------------
Update Information:
- Fix sepolicy gui selection for advanced screen
- Update Translations
- Move requires checkpolicy requirement into policycoreutils-python
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jan 2 2014 Dan Walsh <dwalsh(a)redhat.com> - 2.2.4-6
- Fix sepolicy gui selection for advanced screen
- Update Translations
- Move requires checkpolicy requirement into policycoreutils-python
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1025239 - [audit2allow] compilation failed: checkmodule not found
https://bugzilla.redhat.com/show_bug.cgi?id=1025239
--------------------------------------------------------------------------------
================================================================================
postfix-2.10.2-3.fc20 (FEDORA-2014-0083)
Postfix Mail Transport Agent
--------------------------------------------------------------------------------
Update Information:
This is an update that fixes ECDHE support.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jan 2 2014 Jaroslav Škarvada <jskarvad(a)redhat.com> - 2:2.10.2-3
- Rebuilt regarding ECDHE
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1019254 - ECDHE: now supported in Fedora's OpenSSL
https://bugzilla.redhat.com/show_bug.cgi?id=1019254
--------------------------------------------------------------------------------
================================================================================
python-djblets-0.7.28-1.fc20 (FEDORA-2014-0057)
A collection of useful classes and functions for Django
--------------------------------------------------------------------------------
Update Information:
Fix error 500 issue in ReviewBoard when errors occur in registration (such as attempting to register a name already in use).
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jan 2 2014 Stephen Gallagher <sgallagh(a)redhat.com> - 0.7.28-1
- New upstream release 0.7.28
- http://downloads.reviewboard.org/releases/Djblets/0.7/Djblets-0.7.28.NEWS
* djblets.auth:
* Fixed HTTP 500 errors when failing to save the registration form
--------------------------------------------------------------------------------
================================================================================
python-flake8-2.0-5.fc20 (FEDORA-2014-0103)
Code checking using pep8 and pyflakes
--------------------------------------------------------------------------------
Update Information:
add missing requires to pep8, python-mccabe and pyflakes (rhbz#1046955)
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jan 2 2014 Matthias Runge <mrunge(a)redhat.com> - 2.0-5
- add missing requires to pep8, python-mccabe and pyflakes (rhbz#1046955)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1046955 - Does not specify proper dependencies
https://bugzilla.redhat.com/show_bug.cgi?id=1046955
--------------------------------------------------------------------------------
================================================================================
rubygem-will_paginate-3.0.4-4.fc20 (FEDORA-2014-0066)
Most awesome pagination solution for Rails
--------------------------------------------------------------------------------
Update Information:
Fix XSS vulnerabilities (CVE-2013-6459).
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jan 2 2014 Vít Ondruch <vondruch(a)redhat.com> - 3.0.4-4
- Fix XSS vulnerabilities (CVE-2013-6459).
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1046642 - CVE-2013-6459 rubygem-will_paginate: XSS vulnerabilities
https://bugzilla.redhat.com/show_bug.cgi?id=1046642
--------------------------------------------------------------------------------
================================================================================
unifont-6.3.20131221-2.fc20 (FEDORA-2014-0043)
Tools and glyph descriptions in a very simple text format
--------------------------------------------------------------------------------
Update Information:
New package.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1036462 - Review Request: unifont - Tools and glyph descriptions in a very simple text format
https://bugzilla.redhat.com/show_bug.cgi?id=1036462
--------------------------------------------------------------------------------
================================================================================
vdr-live-0.3.0-6.69f84f9.fc20 (FEDORA-2014-0076)
An interactive web interface for VDR
--------------------------------------------------------------------------------
Update Information:
%changelog
* Sun Dec 29 2013 Martin Gansser <martinkg(a)fedoraproject.org> - 0.3.0-6.69f84f9
- Capitalized first letter
- Fixed spelling
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1045756 - Review Request: vdr-live - An interactive web interface for VDR
https://bugzilla.redhat.com/show_bug.cgi?id=1045756
--------------------------------------------------------------------------------
The following Fedora 19 Security updates need testing:
Age URL
76 https://admin.fedoraproject.org/updates/FEDORA-2013-19262/quassel-0.9.1-1.f…
69 https://admin.fedoraproject.org/updates/FEDORA-2013-19963/openstack-glance-…
27 https://admin.fedoraproject.org/updates/FEDORA-2013-22919/net-snmp-5.7.2-13…
14 https://admin.fedoraproject.org/updates/FEDORA-2013-23592/rubygem-actionpac…
14 https://admin.fedoraproject.org/updates/FEDORA-2013-23622/ibus-chewing-1.4.…
13 https://admin.fedoraproject.org/updates/FEDORA-2013-23722/libjpeg-turbo-1.2…
10 https://admin.fedoraproject.org/updates/FEDORA-2013-23922/nss-3.15.3.1-1.fc…
6 https://admin.fedoraproject.org/updates/FEDORA-2013-24023/varnish-3.0.5-1.f…
5 https://admin.fedoraproject.org/updates/FEDORA-2013-24079/mingw-openjpeg-1.…
3 https://admin.fedoraproject.org/updates/FEDORA-2013-24119/asterisk-11.7.0-1…
3 https://admin.fedoraproject.org/updates/FEDORA-2013-24114/libsrtp-1.4.4-9.2…
0 https://admin.fedoraproject.org/updates/FEDORA-2014-0020/goffice-0.10.9-1.f…
0 https://admin.fedoraproject.org/updates/FEDORA-2014-0094/rubygem-will_pagin…
The following Fedora 19 Critical Path updates have yet to be approved:
Age URL
43 https://admin.fedoraproject.org/updates/FEDORA-2013-21772/unzip-6.0-11.fc19
17 https://admin.fedoraproject.org/updates/FEDORA-2013-22326/fedora-bookmarks-…
13 https://admin.fedoraproject.org/updates/FEDORA-2013-23706/crontabs-1.11-7.2…
13 https://admin.fedoraproject.org/updates/FEDORA-2013-23691/selinux-policy-3.…
13 https://admin.fedoraproject.org/updates/FEDORA-2013-23727/libdvdnav-4.2.1-1…
13 https://admin.fedoraproject.org/updates/FEDORA-2013-23739/krb5-1.11.3-18.fc…
13 https://admin.fedoraproject.org/updates/FEDORA-2013-23722/libjpeg-turbo-1.2…
12 https://admin.fedoraproject.org/updates/FEDORA-2013-23760/llvm-3.3-4.fc19
11 https://admin.fedoraproject.org/updates/FEDORA-2013-23871/libbluray-0.5.0-2…
10 https://admin.fedoraproject.org/updates/FEDORA-2013-23922/nss-3.15.3.1-1.fc…
5 https://admin.fedoraproject.org/updates/FEDORA-2013-24072/tracker-0.16.2-3.…
0 https://admin.fedoraproject.org/updates/FEDORA-2014-0051/libldb-1.1.16-4.fc…
0 https://admin.fedoraproject.org/updates/FEDORA-2014-0039/gnutls-3.1.18-3.fc…
0 https://admin.fedoraproject.org/updates/FEDORA-2014-0062/hwdata-0.259-1.fc19
The following builds have been pushed to Fedora 19 updates-testing
certmonger-0.70-1.fc19
demorse-1.2-1.fc19
dragonegg-3.3-1.fc19
edgar-1.14-1.fc19
fedfs-utils-0.9.5-1.fc19
gnutls-3.1.18-3.fc19
homerun-1.1.0-1.fc19
hwdata-0.259-1.fc19
impressive-0.10.4-2.fc19
kde-connect-0.4.2-1.fc19
libldb-1.1.16-4.fc19
lz4-r110-1.fc19
mate-keyring-1.6.1-1.fc19
mate-themes-1.6.3-1.fc19
meld-1.8.3-1.fc19
nodejs-bson-0.2.3-3.fc19
numpy-1.7.2-7.fc19
perl-Data-GUID-0.048-1.fc19
perl-Email-Address-List-0.01-1.fc19
perl-Symbol-Global-Name-0.04-1.fc19
php-EasyRdf-0.8.0-1.fc19
php-pear-Net-URL2-2.0.5-1.fc19
php-pecl-http-2.0.4-1.fc19
php-pecl-http1-1.7.6-4.fc19
php-pecl-memprof-1.0.0-3.fc19
php-solarium-3.1.2-2.fc19
python-djblets-0.7.28-1.fc19
rubygem-will_paginate-3.0.4-2.fc19
unifont-6.3.20131221-2.fc19
Details about builds:
================================================================================
certmonger-0.70-1.fc19 (FEDORA-2013-23409)
Certificate status monitor and PKI enrollment client
--------------------------------------------------------------------------------
Update Information:
This update fixes crashes in the daemon when there are errors reading some of its data files or errors saving newly-obtained certificates to disk.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jan 2 2014 Nalin Dahyabhai <nalin(a)redhat.com> 0.70-1
- add a --with-homedir option to configure, and use it, since subprocesses
which we run and which use NSS may attempt to write to $HOME/.pki, and
0.69's strategy of setting that to "/" was rightly hitting SELinux policy
denials (#1047798)
* Fri Dec 27 2013 Daniel Mach <dmach(a)redhat.com> - 0.69-2
- Mass rebuild 2013-12-27
* Mon Dec 9 2013 Nalin Dahyabhai <nalin(a)redhat.com> 0.69-1
- tweak how we decide whether we're on the master or a minion when we're
told to use certmaster as a CA
- clean up one of the tests so that it doesn't have to work around internal
logging producing duplicate messages
- when logging errors while setting up to contact xmlrpc servers, explicitly
note that the error is client-side
- don't abort() due to incorrect locking when an attempt to save an issued
certificate to the designated location fails (part of #1032760/#1033333,
ticket #22)
- when reading an issued certificate from an enrollment helper, ignore
noise before or after the certificate itself (more of #1032760/1033333,
ticket #22)
- run subprocesses in a cleaned-up environment (more of #1032760/1033333,
ticket #22)
- clear the ca-error that we saved when we had an error talking to the CA if we
subsequently succeed in talking to the CA
- various other static-analysis fixes
* Thu Aug 29 2013 Nalin Dahyabhai <nalin(a)redhat.com> 0.68-1
- notice when the OpenSSL RNG isn't seeded
- notice when saving certificates or keys fails due to filesystem-related
permission denial (#996581)
* Tue Aug 6 2013 Nalin Dahyabhai <nalin(a)redhat.com> 0.67-3
- pull up a patch from master to adapt self-tests to certutil's diagnostic
output having changed (#992050)
* Sat Aug 3 2013 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 0.67-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #995022 - certmonger coredumps when certificates cannot be created due to permissions
https://bugzilla.redhat.com/show_bug.cgi?id=995022
[ 2 ] Bug #1043017 - [abrt] certmonger-0.67-1.fc19: strcmp: Process /usr/sbin/certmonger was killed by signal 11 (SIGSEGV)
https://bugzilla.redhat.com/show_bug.cgi?id=1043017
--------------------------------------------------------------------------------
================================================================================
demorse-1.2-1.fc19 (FEDORA-2014-0105)
Command line tool for decoding Morse code signals
--------------------------------------------------------------------------------
Update Information:
This is new version of the package.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jan 2 2014 Jaroslav Škarvada <jskarvad(a)redhat.com> - 1.2-1
- New version
Resolves: rhbz#1044371
- Fixed whitespaces in the description
- Dropped format-security patch (upstreamed)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1044371 - demorse-1.2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1044371
--------------------------------------------------------------------------------
================================================================================
dragonegg-3.3-1.fc19 (FEDORA-2014-0084)
GCC plugin to use LLVM optimizers and code generators
--------------------------------------------------------------------------------
Update Information:
rebuilt for GCC 4.8.2-7.
--------------------------------------------------------------------------------
ChangeLog:
--------------------------------------------------------------------------------
================================================================================
edgar-1.14-1.fc19 (FEDORA-2014-0071)
A platform game
--------------------------------------------------------------------------------
Update Information:
* Made some minor graphical improvements to the Sewer and Basement maps
* Added Chaos's chain
* Fixed a grammar problem when Edgar talks after the cauldron explodes
* Added Dutch, Persian and Romanian translations
* Updated German translation
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jan 2 2014 Andrea Musuruane <musuruan(a)gmail.com> - 1.14-1
- Updated to upstream 1.14-1
--------------------------------------------------------------------------------
================================================================================
fedfs-utils-0.9.5-1.fc19 (FEDORA-2014-0065)
Utilities for mounting and managing FedFS
--------------------------------------------------------------------------------
Update Information:
Update to 0.9.5: three bugfixes from upstream
--------------------------------------------------------------------------------
ChangeLog:
* Mon Dec 30 2013 Chuck Lever <chuck.lever(a)oracle.com> - 0.9.5-1
- update to fedfs-utils 0.9.5
- Update BuildRequires according to https://fedorahosted.org/fpc/ticket/318
--------------------------------------------------------------------------------
================================================================================
gnutls-3.1.18-3.fc19 (FEDORA-2014-0039)
A TLS protocol implementation
--------------------------------------------------------------------------------
Update Information:
Prevent crash in gnutls_global_deinit and update to latest upstream.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jan 2 2014 Nikos Mavrogiannopoulos <nmav(a)redhat.com> 3.1.18-3
- Applied fix in suiteb patch to prevent crash in multiple
deinitializations (#1046672)
- new upstream release
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1046672 - Crash in gnutls_global_deinit
https://bugzilla.redhat.com/show_bug.cgi?id=1046672
--------------------------------------------------------------------------------
================================================================================
homerun-1.1.0-1.fc19 (FEDORA-2014-0059)
KDE Application Launcher
--------------------------------------------------------------------------------
Update Information:
Update to latest upstream release
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jan 2 2014 Joseph Marrero <jmarrero(a)fedoraproject.org> 1.1.0-1
- update to latest upstream version
* Sat Aug 3 2013 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 1.0.0-6
- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
hwdata-0.259-1.fc19 (FEDORA-2014-0062)
Hardware identification and configuration data
--------------------------------------------------------------------------------
Update Information:
Update of pci, usb and vendor ids.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Dec 31 2013 Michal Minar <miminar(a)redhat.com> 0.259-1
- Update of pci, usb and vendor ids.
--------------------------------------------------------------------------------
================================================================================
impressive-0.10.4-2.fc19 (FEDORA-2014-0052)
A program that displays presentation slides
--------------------------------------------------------------------------------
Update Information:
sync with upstream bugfix release
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jan 2 2014 Michael J Gruber <mjg(a)fedoraproject.org> - 0.11.4-2
- upate requires as recommended by upstream
* Thu Jan 2 2014 Michael J Gruber <mjg(a)fedoraproject.org> - 0.11.4-1
- sync with upstream
- drop pillow compatibility patch (upstreamed)
- drop backported PDF parser fix (upstreamed)
* Sat Aug 3 2013 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 0.10.3-12
- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1047205 - impressive-0.10.4 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1047205
--------------------------------------------------------------------------------
================================================================================
kde-connect-0.4.2-1.fc19 (FEDORA-2014-0061)
KDE Connect client for communication with smartphones
--------------------------------------------------------------------------------
Update Information:
Imported the package.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1020309 - Review Request: kde-connect - KDE Connect client for communication with smartphones
https://bugzilla.redhat.com/show_bug.cgi?id=1020309
--------------------------------------------------------------------------------
================================================================================
libldb-1.1.16-4.fc19 (FEDORA-2014-0051)
A schema-less, ldap like, API and database
--------------------------------------------------------------------------------
Update Information:
Build libldb with support for the LDAP module.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jan 2 2014 Stephen Gallagher <sgallagh(a)redhat.com> - 1.1.16-4
- Enable building libldb's LDAP interface module
* Sat Aug 3 2013 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 1.1.16-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
* Mon Jul 8 2013 Jakub Hrozek <jhrozek(a)redhat.com> - 1.1.16-2
- Make the Requires arch-specific
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #961839 - LDB tools do not ship with ldb_ldap modules
https://bugzilla.redhat.com/show_bug.cgi?id=961839
--------------------------------------------------------------------------------
================================================================================
lz4-r110-1.fc19 (FEDORA-2014-0068)
Extremely fast compression algorithm
--------------------------------------------------------------------------------
Update Information:
Fixed issues:
#99 -> https://code.google.com/p/lz4/issues/detail?id=99
#100 -> https://code.google.com/p/lz4/issues/detail?id=100
lz4-r108 release.
lz4-r108 release.
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jan 2 2014 pjp <pjp(a)fedoraproject.org> - r110-1
- new release r110
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1047435 - This package hasn't been built for rawhide
https://bugzilla.redhat.com/show_bug.cgi?id=1047435
--------------------------------------------------------------------------------
================================================================================
mate-keyring-1.6.1-1.fc19 (FEDORA-2014-0060)
Framework for managing passwords and other secrets
--------------------------------------------------------------------------------
Update Information:
- update to 1.6.1 release
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jan 2 2014 Wolfgang Ulbrich <chat-to-me(a)raveit.de> - 1.6.1-1
- update to 1.6.1 release
--------------------------------------------------------------------------------
================================================================================
mate-themes-1.6.3-1.fc19 (FEDORA-2014-0075)
MATE Desktop themes
--------------------------------------------------------------------------------
Update Information:
- update to 1.6.3 release
--------------------------------------------------------------------------------
ChangeLog:
* Wed Jan 1 2014 Wolfgang Ulbrich <chat-to-me(a)raveit.de> - 1.6.1-1
- update to 1.6.3 release
--------------------------------------------------------------------------------
================================================================================
meld-1.8.3-1.fc19 (FEDORA-2014-0046)
Visual diff and merge tool
--------------------------------------------------------------------------------
Update Information:
This update brings the new minor version 1.8.3 of Meld to your home.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Jan 1 2014 Dominic Hopf <dmaphy(a)fedoraproject.org> - 1.8.3-1
- New upstream release: Meld 1.8.3
--------------------------------------------------------------------------------
================================================================================
nodejs-bson-0.2.3-3.fc19 (FEDORA-2014-0047)
A bson parser for node.js and the browser
--------------------------------------------------------------------------------
Update Information:
Newpackage
--------------------------------------------------------------------------------
================================================================================
numpy-1.7.2-7.fc19 (FEDORA-2014-0058)
A fast multidimensional array facility for Python
--------------------------------------------------------------------------------
Update Information:
This is a bugfix only release. More than 42 issues were fixed, the most important issues are listed in the release notes: https://github.com/numpy/numpy/blob/v1.7.2/doc/release/1.7.2-notes.rst
--------------------------------------------------------------------------------
ChangeLog:
* Wed Jan 1 2014 Orion Poplawski <orion(a)nwra.com> - 1:1.7.2-1
- Update to 1.7.2
- Drop library-ext patch applied upstream
--------------------------------------------------------------------------------
================================================================================
perl-Data-GUID-0.048-1.fc19 (FEDORA-2014-0048)
Globally unique identifiers
--------------------------------------------------------------------------------
Update Information:
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1044910 - Review Request: perl-Data-GUID - Globally unique identifiers
https://bugzilla.redhat.com/show_bug.cgi?id=1044910
--------------------------------------------------------------------------------
================================================================================
perl-Email-Address-List-0.01-1.fc19 (FEDORA-2014-0040)
RFC close address list parsing
--------------------------------------------------------------------------------
Update Information:
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1044935 - Review Request: perl-Email-Address-List - RFC close address list parsing
https://bugzilla.redhat.com/show_bug.cgi?id=1044935
--------------------------------------------------------------------------------
================================================================================
perl-Symbol-Global-Name-0.04-1.fc19 (FEDORA-2014-0109)
Finds name and type of a global variable
--------------------------------------------------------------------------------
Update Information:
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1044875 - Review Request: perl-Symbol-Global-Name - Finds name and type of a global variable
https://bugzilla.redhat.com/show_bug.cgi?id=1044875
--------------------------------------------------------------------------------
================================================================================
php-EasyRdf-0.8.0-1.fc19 (FEDORA-2014-0064)
A PHP library designed to make it easy to consume and produce RDF
--------------------------------------------------------------------------------
Update Information:
EasyRdf 0.8.0
=============
Major new features
------------------
* Now PSR-2 compliant
* Added RDFa parser
* Added SPARQL Update support to `EasyRdf_Sparql_Client`
API changes
-----------
* `is_a()` has been renamed to `isA()`
* `isBnode()` has been renamed to `isBNode()`
* `getNodeId()` has been renamed to `getBNodeId()`
* Added a `$value` property to `hasProperty()`
* Renamed `toArray()` to `toRdfPhp()`
* Renamed `count()` to `countValues()` in `EasyRdf_Graph` and `EasyRdf_Resource`
* Made passing a URI to `delete()` behave more like `all()` and `get()` - you must enclose in `<>`
* `dump(true)` has changed to `dump('html')`
* `getUri()` in `EasyRdf_Sparql_Client` has been renamed to `getQueryUri()`
Enhancements
------------
* Added `EasyRdf_Container` class to help iterate through `rdf:Alt`, `rdf:Bag` and `rdf:Seq`
* Added `EasyRdf_Collection` class to help iterate through `rdf:List`
* Added `EasyRdf_Literal_HTML` and `EasyRdf_Literal_XML`
* Changed formatting of `xsd:dateTime` from `DateTime::ISO8601` to `DateTime::ATOM`
* Added `rss:title` to the list of properties that `label()` will check for
* Added support for serialising containers to the RDF/XML serialiser
* Added getGraph method to `EasyRdf_Resource`
* Turtle parser improvements
* Added the `application/n-triples` MIME type for the N-Triples format
* Added support to `EasyRdf_Namespace` for expanding `a` to `rdf:type`
* Added `listNamedGraphs()` function to `EasyRdf_Sparql_Client`
* Added line and column number to exceptions in the built-in parsers
Bug Fixes
---------
* Fixed bug in `EasyRdf_Namespace::expand()` (see issue #114)
* Fix for dumping SPARQL SELECT query with unbound result (see issue #112)
* Sesame compatibility : avoid duplicate Content-Length header
* Fix for for passing objects of type DateTime to $graph->add() (see issue #119)
* Fix for SPARQL queries longer than 2KB (see issue #85)
* Fix for dumping literal with unshortenable datatype uri (see issue #120)
* Fix for getting default mime type or extension when there isn't one
* Fix for missing trailing slash the HTTP client
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jan 2 2014 Shawn Iwinski <shawn.iwinski(a)gmail.com> 0.8.0-1
- Updated to 0.8.0
- Updated PHP min version from 5.2.8 to 5.3.3
- Added php-[libxml,mbstring,reflection,simplexml] requires
- Removed pre-0.8.0 fixes
- Updated %check to use PHPUnit directly and skip tests that sometimes cause
timeout exceptions
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1047694 - php-EasyRdf-0.8.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1047694
--------------------------------------------------------------------------------
================================================================================
php-pear-Net-URL2-2.0.5-1.fc19 (FEDORA-2013-23970)
Class for parsing and handling URL
--------------------------------------------------------------------------------
Update Information:
Upstream Changelog:
Version 2.0.5:
* Fixed #17036: Brackets broken for query variables
* Fixed diverse coding style violations and misc. minor issues
* Increased code coverage
Version 2.0.4:
* Fixed #20161: URLs with "0" as host fail to normalize with empty path
* A flaw in NetURL2::removeDotSegments() introduced in 2.0.1 has been fixed
* New: NetURL2::removeDotSegments() emits a warning on loop limit reach
* Url-segment maximum count raised from 100 to 256 (loop limit)
Version 2.0.3:
* Fixed #20156: setAuthority() flaw with "0" as host
* Fixed #20157: normalize() flaw with "0" as path
* Fixed #20158: Fragment-only references are not resolved to non-absolute base URI
* Fixed #20159: Authority not terminated by slash
* Fixed diverse coding style violations and misc. minor issues
* Increased code coverage
* Added support for Scrutinizer CI
Version 2.0.2:
* Fixed #19684: Redirects containing spaces do not work
* Fixed diverse coding style violations and misc. minor issues
* Improved source package distribution
* Added support for Travis CI
Version 2.0.1:
* Fixed Bug #20013: getNormalizedURL() adds leading "@" chars in the Authority
* Fixed Bug #20016: Wrong data in 6d4f4dd "Package.xml preparation."
* Fixed Bug #19176: resolve() does not merge the path if the base path is empty
* Fixed Bug #19315: removeDotSegments("0") not working
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jan 2 2014 Remi Collet <remi(a)fedoraproject.org> - 2.0.5-1
- Update to 2.0.5 (stable)
* Tue Dec 31 2013 Remi Collet <remi(a)fedoraproject.org> - 2.0.4-1
- Update to 2.0.4 (stable)
* Mon Dec 30 2013 Remi Collet <remi(a)fedoraproject.org> - 2.0.3-1
- Update to 2.0.3 (stable)
* Sat Dec 28 2013 Remi Collet <remi(a)fedoraproject.org> - 2.0.2-1
- Update to 2.0.2 (stable)
* Wed Dec 25 2013 Remi Collet <remi(a)fedoraproject.org> - 2.0.1-1
- Update to 2.0.1 (stable)
--------------------------------------------------------------------------------
================================================================================
php-pecl-http-2.0.4-1.fc19 (FEDORA-2014-0037)
Extended HTTP support
--------------------------------------------------------------------------------
Update Information:
Upstream Changelog:
* Removed the pecl/event conflict
* Fixed bug #66388 (Crash on POST with Content-Length:0 and untouched body)
Package Changelog:
* fix link to documentation, http://devel-m6w6.rhcloud.com/mdref/http
* update provided configuration, fix default value, drop unsupported option
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jan 2 2014 Remi Collet <remi(a)fedoraproject.org> - 2.0.4-1
- Update to 2.0.4
- fix link to documentation
- update provided configuration
- add upstream patch for -Werror=format-security
--------------------------------------------------------------------------------
================================================================================
php-pecl-http1-1.7.6-4.fc19 (FEDORA-2014-0097)
Extended HTTP support
--------------------------------------------------------------------------------
Update Information:
The HTTP extension aims to provide a convenient and powerful set of functionality for major applications.
The HTTP extension eases handling of HTTP URLs, dates, redirects, headers and messages in a HTTP context (both incoming and outgoing). It also provides means for client negotiation of preferred language and charset, as well as
a convenient way to exchange arbitrary data with caching and resuming capabilities.
It provides powerful request functionality, if built with CURL support. Parallel requests are available for PHP 5 and greater.
Note:
. php-pecl-http1 provides API version 1
. php-pecl-http provides API version 2
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #990904 - Review Request: php-pecl-http1 - Extended HTTP support
https://bugzilla.redhat.com/show_bug.cgi?id=990904
--------------------------------------------------------------------------------
================================================================================
php-pecl-memprof-1.0.0-3.fc19 (FEDORA-2014-0041)
Memory usage profiler
--------------------------------------------------------------------------------
Update Information:
Memory usage profiler for PHP scripts.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1018133 - Review Request: php-pecl-memprof - Memory usage profiler
https://bugzilla.redhat.com/show_bug.cgi?id=1018133
--------------------------------------------------------------------------------
================================================================================
php-solarium-3.1.2-2.fc19 (FEDORA-2014-0086)
Solarium PHP Solr client library
--------------------------------------------------------------------------------
Update Information:
Solarium is a PHP Solr client library that accurately model Solr concepts.
Where many other Solr libraries only handle the communication with Solr, Solarium also relieves you of handling all the complex Solr query parameters using a well documented API.
Documentation: http://wiki.solarium-project.org/
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1023879 - Review Request: php-solarium - Solarium PHP Solr client library
https://bugzilla.redhat.com/show_bug.cgi?id=1023879
--------------------------------------------------------------------------------
================================================================================
python-djblets-0.7.28-1.fc19 (FEDORA-2014-0045)
A collection of useful classes and functions for Django
--------------------------------------------------------------------------------
Update Information:
Fix error 500 issue in ReviewBoard when errors occur in registration (such as attempting to register a name already in use).
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jan 2 2014 Stephen Gallagher <sgallagh(a)redhat.com> - 0.7.28-1
- New upstream release 0.7.28
- http://downloads.reviewboard.org/releases/Djblets/0.7/Djblets-0.7.28.NEWS
* djblets.auth:
* Fixed HTTP 500 errors when failing to save the registration form
--------------------------------------------------------------------------------
================================================================================
rubygem-will_paginate-3.0.4-2.fc19 (FEDORA-2014-0094)
Most awesome pagination solution for Rails
--------------------------------------------------------------------------------
Update Information:
Fix XSS vulnerabilities (CVE-2013-6459).
--------------------------------------------------------------------------------
ChangeLog:
* Thu Jan 2 2014 Vít Ondruch <vondruch(a)redhat.com> - 3.0.4-2
- Fix XSS vulnerabilities (CVE-2013-6459).
- Disable Sequel test, since Sequel 4.x does not seem to be supported by
will_paginate yet.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1046642 - CVE-2013-6459 rubygem-will_paginate: XSS vulnerabilities
https://bugzilla.redhat.com/show_bug.cgi?id=1046642
--------------------------------------------------------------------------------
================================================================================
unifont-6.3.20131221-2.fc19 (FEDORA-2014-0070)
Tools and glyph descriptions in a very simple text format
--------------------------------------------------------------------------------
Update Information:
New package.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1036462 - Review Request: unifont - Tools and glyph descriptions in a very simple text format
https://bugzilla.redhat.com/show_bug.cgi?id=1036462
--------------------------------------------------------------------------------
Hi,
I tried upgrade , with fedup [1]
I tried a no conventional update, yum localinstall /system-upgrade/*rpm
but now system doesn't boot normally , just boots when I put debug in
kernel boot parameters on grub .
I think is systemd boot order , looking to
journalctl -b | grep -i faile , I see :
Jan 02 14:37:08 segulix systemd[1]: Failed to load configuration for
syslog.service: No such file or directory
Jan 02 14:37:08 segulix systemd[1]: Failed to load configuration for
systemd-readahead-replay.service: No such file or directory
Jan 02 14:37:08 segulix systemd[1]: Failed to load configuration for
systemd-readahead-collect.service: No such file or directory
Jan 02 14:37:20 segulix systemd[1]: Failed to load configuration for
sys-kernel-config.mount: No such file or directory
Jan 02 14:37:20 segulix systemd[1]: Failed to add job
sys-kernel-config.mount/start, ignoring: Invalid argument.
Jan 02 14:37:27 segulix systemd[1]: systemd-udevd-kernel.socket got
notified about service death (failed permanently: no)
Jan 02 14:37:27 segulix systemd[1]: systemd-udevd-control.socket got
notified about service death (failed permanently: no)
Jan 02 14:37:37 segulix systemd[1]: Failed to open private bus
connection: Failed to connect to socket /var/run/dbus/system_bus_socket:
No such file or directory
Jan 02 14:37:37 segulix systemd[1]: Failed to connect to system D-Bus,
retrying later
Jan 02 14:37:37 segulix systemd[1]: Failed to load configuration for
syslog.target: No such file or directory
Jan 02 14:37:37 segulix systemd[1]: Failed to load configuration for
exim.service: No such file or directory
Jan 02 14:37:37 segulix systemd[1]: Failed to load configuration for
postfix.service: No such file or directory
Jan 02 14:37:37 segulix systemd[1]: Failed to load configuration for
sntp.service: No such file or directory
Jan 02 14:37:37 segulix systemd[1]: Failed to load configuration for
lvm2-activation.service: No such file or directory
Jan 02 14:37:37 segulix systemd[1]: Failed to load configuration for
lvm2-activation-early.service: No such file or directory
Jan 02 14:37:37 segulix systemd[1]: Failed to load configuration for
systemd-random-seed-load.service: No such file or directory
Jan 02 14:37:37 segulix systemd[1]: Failed to load configuration for
sysroot.mount: No such file or directory
Jan 02 14:37:37 segulix systemd[1]: systemd-journald.socket got notified
about service death (failed permanently: no)
etc ...
but D-bus seems not start at time ,
and in /etc/systemd/system
syslog.service -> /usr/lib/systemd/system/rsyslog.service
this link should exists ?
but why just boots with kernel with debug boot options , and what I
should do to but with quiet parameter or in default mode ?
[1]
https://bugzilla.redhat.com/show_bug.cgi?id=1045847#c12
TIA,
--
Sérgio M. B.
Hi, folks. Now things have calmed down a bit in Fedora 20 and Rawhide, I
have time to write this mail!
Many of you may already know that there was a significant issue with
upgrades to Fedora 20 around release day - 2013-12-17.
Summary of the issue
--------------------
Upgrading to Fedora 20 using version 0.7 of the FedUp tool does not
work. Upgrading with version 0.8 works (in the main - of course there
are bugs, there are always bugs).
At the time Fedora 20 was released, version 0.7 of FedUp was present in
the Fedora 18 and Fedora 19 'updates' repositories. Version 0.8 of FedUp
was present in 'updates-testing' for both Fedora 18 and Fedora 19 at the
time.
Immediate response to the issue
-------------------------------
We realized quite quickly during the course of release day support that
this was the case, though at first we thought perhaps only some upgrades
were failing. Once it became clear that all 0.7-based upgrades would
fail, several folks worked hard at communicating this to as many users
in as many places as possible, including via IRC, mailing lists, the
Common Bugs page
(https://fedoraproject.org/wiki/Common_F20_bugs#fedup-07-fail ), the
forums, and social network sites like G+. We advised using fedup 0.8
from updates-testing to upgrade.
We rapidly ensured 0.8 was submitted for stable push for both F18 and
F19. It was submitted for F19 at 2013-12-17 21:12:18 (I believe Bodhi
timestamps are UTC, so that was mid-afternoon on release day in NA) and
for F18 at 2013-12-18 11:51:47 (early morning on the day after release).
However, release engineering complications (there were some problems
with stable pushes at the time) meant it wasn't finally pushed until
2013-12-19 07:23:09 UTC for F19 (late on the day after release NA time)
and 2013-12-19 14:05:50 UTC for F18 (early morning two days after
release) and wouldn't have made it to most mirrors until 2013-12-19, two
days after release, and probably 2013-12-20 in 'early' timezones in
Europe and Asia.
Proximate cause of the issue
----------------------------
We have not yet identified the direct (proximate) cause of the bug;
doing so did not seem especially important in comparison to ensuring
news of the issue was spread as widely as possible, ensuring 0.8 was
sent stable as soon as possible, and resolving some related issues (see
later). However, QA's current inference is that there is some
incompatibility between how fedup 0.7 modifies the initramfs used by the
upgrade process and/or how it configures the upgrade boot environment,
and the expectations of the upgrade environment as it exists within the
final shipped upgrade initramfs. The upgrade initramfs is generated as
part of the release compose process, and is dependent on factors
including the versions of dracut and fedup-dracut used to build it.
Broadly, we suspect that an upgrade run with fedup 0.7 which uses an
upgrade initramfs generated with fedup-dracut 0.8 will not work, for
reasons not yet identified.
Indirect causes of the issue
----------------------------
We could perhaps make a very broad characterization of the 'indirect
causes' of the issue as follows: an upgrade using fedup depends on
several moving parts, and neither our development nor testing processes
are sufficiently robust to ensure that we cover all possible
combinations of those parts.
fedup / fedup-dracut interdependencies
++++++++++++++++++++++++++++++++++++++
So far as I can discern, there is not at present any policy (whether
written or enforced by some kind of mechanism) with regard to the
inter-dependencies between the 'fedup' package side of the fedup process
and the 'fedup-dracut' side of the process which involves release
engineering generating an upgrade initramfs via fedup-dracut. As this
issue suggests that not all 'fedups' work with all 'fedup-dracuts',
perhaps this is something that might be required, but we leave that to
the superior knowledge and expertise of the FedUp maintainer.
Test procedure inadequacies
+++++++++++++++++++++++++++
Similarly, QA's upgrade testing process clearly did not sufficiently
carefully consider the same issue. This is something we have now moved
to address.
Prior to Fedora 20's release, the test cases for fedup recommended
testing the latest version of fedup from updates-testing against the
upgrade initramfs from the development/20 tree. This procedure was a
holdover from the very early days of FedUp, when it was changing daily
and testing anything older was uninteresting, and when procedures for
the generation and publishing of the upgrade initramfs had not yet been
clearly established (and TC/RC trees did not contain one). However, it
is no longer appropriate for the more mature state of FedUp development
at this point in time, and it should have been changed earlier. We in QA
apologize to the project for this oversight.
Other factors
+++++++++++++
Additionally, various parties have noted in discussion of this issue
that we would have been more likely to notice it, even with our
imperfect testing procedures, if a couple of other factors had been
different:
* The lifetime of the final release candidate
* The timing of changes to fedup
In recent Fedora releases it has become something of a habit (for which
I personally bear rather a large share of the blame) for us to reach RC
stage late, iterate RCs rapidly, and often ship an RC that was built
only days or even hours before the Go/No-Go decision. This has allowed
us to fix bugs we might not otherwise have fixed and to avoid release
delays.
However, it has the obvious danger that testing of the final release
bits may not be as comprehensive as it could be. We always ensure the
formal validation testing is sufficiently complete, but an issue like
this highlights that a few more days of testing are likely to catch
things the formal validation testing process may miss for various
reasons, including the kind of deficiency noted above. Even though our
test procedure for fedup was outdated, if the final RC had lived for two
or three days before being signed off, someone would likely have
happened across this issue in time for something to be done about it.
The fact that fedup 0.8 and fedup-dracut 0.8 landed quite late in the
cycle is also relevant. fedup 0.8 was submitted for updates-testing on
2013-12-11; fedup-dracut was submitted on 2013-12-06, but the first
compose which used it was RC1, built on 2013-12-12 (there was a delay of
several days between TC5 and RC1, as blocker bugs kept appearing and
needing to be fixed before an RC1 could be spun). RC1.1 was signed off
for release on 2013-12-12. Even the mathematically-challenged will note
that this left us extremely limited time to spot the problem. (I had
tested upgrades with the updated fedup-dracut using a 'scratch built'
upgrade initramfs rather earlier, but I must have used fedup 0.8 rather
than 0.7 for my tests).
Obviously, if these fairly significant version bumps had arrived
earlier, we may have had more time to identify issues in them. If you're
wondering how they were allowed to land so late, the answer is that they
fixed blocker bugs we had identified in earlier upgrade testing, and so
were allowed through the freeze. As we all know, it is difficult to
adhere strictly to 'best practices' with Fedora's extremely short
release cycles and ambitious pace of development, but of course it would
be best in future if we can manage to avoid landing significant changes
to fedup so late, a goal to which both QA and development groups can
contribute by identifying and fixing issues at an earlier stage.
As a 'meta' note, I think a factor that contributes to all of the above
factors may be a lack of understanding outside a very few people as to
precisely how the entire fedup process works: speaking personally, I
certainly wasn't acquainted with all the subtleties until investigating
this and other issues (not that I'd confidently claim to be an expert
even now!) I think beyond Will Woods (obviously) and possibly Tim Flink
(who did a lot of early fedup testing) and Dennis Gilmore (who tends to
be the one generating the upgrade initramfs), possibly no-one really
entirely understood the whole process.
Related issues
--------------
It is probably worth noting a somewhat-related issue at this point.
fedup 0.8's major change compared to fedup 0.7 was that it introduced
checking of GPG signatures on update packages. To facilitate this, the
signing key for the release to which one is upgrading must be available
to fedup running on the release from which one is upgrading. Again, we
did not have this fully in place at the time of Fedora 20's release.
The fedora-release-19-5 update added Fedora 20's key to Fedora 19:
https://admin.fedoraproject.org/updates/FEDORA-2013-21411/fedora-release-19… . It was submitted on 2013-11-14 and pushed stable on 2013-12-03, so this was in place ahead of release.
However, for Fedora 18, the relevant update -
https://admin.fedoraproject.org/updates/FEDORA-2013-23598/fedora-release-18… - was submitted on 2013-12-18 and pushed stable on 2013-12-22 (and then we had to add a signed .treeinfo file to the Fedora 18 repositories or things *still* didn't work, which I think we did late on 2013-12-22 or on 2013-12-23). The fact that the keys weren't available for F18 was known around F20 release time, but was not considered urgent by the parties involved as we were not aware that fedup 0.7 simply would not work and consequently that it would be an urgent matter to make fedup 0.8 available and functional, and release engineering considered it a delicate operation to add the keys for Fedora 19 and 20 to Fedora 18, and one which they were not inclined to rush.
Post-release reports also make it clear that fedup will abort if GPG
keys for *any* repository fedup finds available for the target release
cannot be found. i.e., if you have RPM Fusion or another popular third
party repository configured, it's quite likely your upgrade will fail,
because third party repos didn't have the signing key issue lined up
(not surprising if we couldn't even entirely manage it ourselves). We
were not sufficiently aware of this behaviour before release, and did
not communicate it very well. The underlying causes of this are much the
same as the underlying causes of the main issue - the fedup which
enabled GPG checking landing very late, inadequate/incorrect test
procedures, and limited knowledge of the details of fedup operation
outside a small group of people.
Addressing the problems
-----------------------
I've noted above that so far as specific code responses to any of these
issues go, we should probably defer to the wisdom of the maintainer.
However, I've filed a couple of intentionally vague and open-ended
tickets on fedup to provide a forum for action:
https://github.com/wgwoods/fedup/issues/42https://github.com/wgwoods/fedup/issues/43
In terms of QA test procedures, we (QA) have already taken action that
should help guard against a repeat of this kind of issue in future. The
FedUp test cases - for instance,
https://fedoraproject.org/wiki/QA:Testcase_upgrade_fedup_cli_previous_deskt… - have been adjusted to recommend testing the latest fedup from stable or updates (not from updates-testing), and to test against the current TC/RC tree (not the daily-updated development/ tree), now TC/RC trees contain the upgrade initramfs image. The FedUp and Upgrading wiki pages (https://fedoraproject.org/wiki/FedUp and https://fedoraproject.org/wiki/Upgrading ) have also been updated to be more consistent and correct for the current state of fedup, and the Installation Guide's section on upgrading has also been updated. Our test procedures and upgrade documentation should now be much more coherent and consistent than they were just prior to Fedora 20's release.
In wider terms, this issue is another indicator on top of several
previous ones that we should redouble our efforts to get 'releaseable'
RCs built days ahead of go/no-go, rather than hours. That's a whole
story in itself, but this is something the parties involved are all
aware of and working on. Of course, the whole release process may look
somewhat different in a Fedora.next world, but as long as we have our
current release schedule and freeze policies, this issue is likely to
exist at least in essence.
It's also another good indicator that we should do whatever we can to
try and land major changes much earlier in the release cycle. This is
hardly a new observation, of course, nor an issue of which many relevant
people were previously unaware, and there are always good reasons why we
wind up landing the kitchen sink a week before release, but it's always
good to have another reminder.
On the positive side, the simple fact that this issue occurred has
probably led to a wider understanding of at least some of the details of
how fedup operates, and the fact that more people in the project have
that knowledge should aid us in future fedup development and testing: we
should be careful to keep that knowledge in mind as we build and test
future releases.
Conclusion
----------
Er, thanks for reading this far? :)
--
Adam Williamson
Fedora QA Community Monkey
IRC: adamw | Twitter: AdamW_Fedora | XMPP: adamw AT happyassassin . net
http://www.happyassassin.net
The following Fedora 18 Security updates need testing:
Age URL
40 https://admin.fedoraproject.org/updates/FEDORA-2013-21875/389-ds-base-1.3.0…
26 https://admin.fedoraproject.org/updates/FEDORA-2013-22949/net-snmp-5.7.2-7.…
13 https://admin.fedoraproject.org/updates/FEDORA-2013-23662/rubygem-actionpac…
13 https://admin.fedoraproject.org/updates/FEDORA-2013-23663/ibus-chewing-1.4.…
5 https://admin.fedoraproject.org/updates/FEDORA-2013-23988/varnish-3.0.5-1.f…
2 https://admin.fedoraproject.org/updates/FEDORA-2013-24142/asterisk-11.7.0-1…
2 https://admin.fedoraproject.org/updates/FEDORA-2013-24155/libsrtp-1.4.4-9.2…
0 https://admin.fedoraproject.org/updates/FEDORA-2014-0025/goffice-0.10.9-1.f…
The following Fedora 18 Critical Path updates have yet to be approved:
Age URL
327 https://admin.fedoraproject.org/updates/FEDORA-2013-2192/nautilus-3.6.3-5.f…
10 https://admin.fedoraproject.org/updates/FEDORA-2013-23882/libbluray-0.5.0-2…
The following builds have been pushed to Fedora 18 updates-testing
amiri-fonts-0.107-1.fc18
gnome-chemistry-utils-0.14.5-1.fc18
gnumeric-1.12.9-1.fc18
goffice-0.10.9-1.fc18
mate-applets-1.6.2-1.fc18
Details about builds:
================================================================================
amiri-fonts-0.107-1.fc18 (FEDORA-2014-0023)
A classical Arabic font in Naskh style
--------------------------------------------------------------------------------
Update Information:
Amiri 0.107 (2013-12-30)
------------------------
* New glyphs:
- Arabic math letters from Arabic Mathematical Alphabetic Symbols block
(U+1EE00–U+1EEFF).
- Optional support for placing the kasra below the shadda, with “ss05”
feature.
- Missing proportional LTR digits in the slanted font.
* Fixes:
- Reverted the lowering of marks above wide isolated glyphs, it made the marks
look weird relative to other ones.
- Fixed the position of marks above qaf of قح.
- Dropped the special combination in تمخ when it is follow vowelled as
it was too crowded.
- Fixed the position of sukun over shadda.
- Fixed the side bearings of ثر, ثن and sisters so that the dots do not clash
with preceding glyphs.
- Positive kerning between مرين and likes.
- Slight kerning between the period and closing quotes.
- Made sure the italic European digits are really tabular.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Dec 31 2013 Mosaab Alzoubi <moceap(a)hotmail.com> - 0.107-1
- Update to 0.107.
- Upstream use zip instead of gz.
--------------------------------------------------------------------------------
================================================================================
gnome-chemistry-utils-0.14.5-1.fc18 (FEDORA-2014-0025)
A set of chemical utilities
--------------------------------------------------------------------------------
Update Information:
This is an update to the latest upstream releases of gnumeric, goffice and gnome-chemistry-utils:
* https://projects.gnome.org/gnumeric/announcements/1.12/gnumeric-1.12.9.shtml
* http://svn.savannah.nongnu.org/viewvc/*checkout*/branches/gchemutils-0.14/g…
--------------------------------------------------------------------------------
ChangeLog:
* Wed Jan 1 2014 Julian Sikorski <belegdol(a)fedoraproject.org> - 0.14.5-1
- Updated to 0.14.5
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1044858 - CVE-2013-6836 gnumeric: heap-based buffer overflow in ms_escher_get_data function [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1044858
--------------------------------------------------------------------------------
================================================================================
gnumeric-1.12.9-1.fc18 (FEDORA-2014-0025)
Spreadsheet program for GNOME
--------------------------------------------------------------------------------
Update Information:
This is an update to the latest upstream releases of gnumeric, goffice and gnome-chemistry-utils:
* https://projects.gnome.org/gnumeric/announcements/1.12/gnumeric-1.12.9.shtml
* http://svn.savannah.nongnu.org/viewvc/*checkout*/branches/gchemutils-0.14/g…
--------------------------------------------------------------------------------
ChangeLog:
* Wed Jan 1 2014 Julian Sikorski <belegdol(a)fedoraproject.org> - 1:1.12.9-1
- Updated to 1.12.9
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1044858 - CVE-2013-6836 gnumeric: heap-based buffer overflow in ms_escher_get_data function [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1044858
--------------------------------------------------------------------------------
================================================================================
goffice-0.10.9-1.fc18 (FEDORA-2014-0025)
G Office support libraries
--------------------------------------------------------------------------------
Update Information:
This is an update to the latest upstream releases of gnumeric, goffice and gnome-chemistry-utils:
* https://projects.gnome.org/gnumeric/announcements/1.12/gnumeric-1.12.9.shtml
* http://svn.savannah.nongnu.org/viewvc/*checkout*/branches/gchemutils-0.14/g…
--------------------------------------------------------------------------------
ChangeLog:
* Wed Jan 1 2014 Julian Sikorski <belegdol(a)fedoraproject.org> - 0.10.9-1
- Updated to 0.10.9
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1044858 - CVE-2013-6836 gnumeric: heap-based buffer overflow in ms_escher_get_data function [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1044858
--------------------------------------------------------------------------------
================================================================================
mate-applets-1.6.2-1.fc18 (FEDORA-2014-0024)
MATE Desktop panel applets
--------------------------------------------------------------------------------
Update Information:
- update to 1.6.2 release
- removed upstreamed upower patches
--------------------------------------------------------------------------------
ChangeLog:
* Wed Jan 1 2014 Wolfgang Ulbrich <chat-to-me(a)raveit.de> - 1.6.2-1
- update to 1.6.2 release
- remove upstreamed upower patches
--------------------------------------------------------------------------------