The following Fedora 21 Security updates need testing: Age URL 251 https://bodhi.fedoraproject.org/updates/FEDORA-2015-1467 openstack-glance-2014.1.3-4.fc21 131 https://bodhi.fedoraproject.org/updates/FEDORA-2015-9090 fossil-1.33-1.fc21 131 https://bodhi.fedoraproject.org/updates/FEDORA-2015-9141 ceph-deploy-1.5.25-1.fc21 120 https://bodhi.fedoraproject.org/updates/FEDORA-2015-9744 squid-3.4.13-1.fc21 64 https://bodhi.fedoraproject.org/updates/FEDORA-2015-12773 python-kdcproxy-0.3.2-1.fc21 48 https://bodhi.fedoraproject.org/updates/FEDORA-2015-1fed73bab8 conntrack-tools-1.4.2-9.fc21 43 https://bodhi.fedoraproject.org/updates/FEDORA-2015-14179 libreswan-3.15-1.fc21 43 https://bodhi.fedoraproject.org/updates/FEDORA-2015-14200 sblim-sfcb-1.4.8-5.fc21 43 https://bodhi.fedoraproject.org/updates/FEDORA-2015-14211 ntp-4.2.6p5-33.fc21 35 https://bodhi.fedoraproject.org/updates/FEDORA-2015-14852 libwmf-0.2.8.4-46.fc21 30 https://bodhi.fedoraproject.org/updates/FEDORA-2015-15290 ipsilon-1.1.0-1.fc21 24 https://bodhi.fedoraproject.org/updates/FEDORA-2015-15768 bugzilla-4.4.10-1.fc21 18 https://bodhi.fedoraproject.org/updates/FEDORA-2015-16238 nagios-4.0.8-1.fc21 6 https://bodhi.fedoraproject.org/updates/FEDORA-2015-bf08670f31 firefox-41.0-6.fc21 5 https://bodhi.fedoraproject.org/updates/FEDORA-2015-71973a6d71 pixman-0.32.8-1.fc21 5 https://bodhi.fedoraproject.org/updates/FEDORA-2015-af1b712fce python-pymongo-3.0.3-1.fc21 5 https://bodhi.fedoraproject.org/updates/FEDORA-2015-1c9ed24c61 openjpeg2-2.1.0-7.fc21 5 https://bodhi.fedoraproject.org/updates/FEDORA-2015-d292a98f01 cyrus-imapd-2.4.18-1.fc21 5 https://bodhi.fedoraproject.org/updates/FEDORA-2015-366f3dd73f php-5.6.14-1.fc21 5 https://bodhi.fedoraproject.org/updates/FEDORA-2015-048e95ac1d thunderbird-38.3.0-1.fc21 5 https://bodhi.fedoraproject.org/updates/FEDORA-2015-111f449417 community-mysql-5.6.27-1.fc21 2 https://bodhi.fedoraproject.org/updates/FEDORA-2015-d6ea74993a xen-4.4.3-5.fc21 1 https://bodhi.fedoraproject.org/updates/FEDORA-2015-d7e074ba30 kernel-4.1.10-100.fc21 0 https://bodhi.fedoraproject.org/updates/FEDORA-2015-cdea5324a8 sssd-1.12.5-4.fc21 0 https://bodhi.fedoraproject.org/updates/FEDORA-2015-d683ebb786 postgresql-9.3.10-1.fc21 0 https://bodhi.fedoraproject.org/updates/FEDORA-2015-7766c0d939 lxdm-0.4.1-10.fc21 0 https://bodhi.fedoraproject.org/updates/FEDORA-2015-3ca3f2138b libvdpau-1.1.1-2.fc21
The following Fedora 21 Critical Path updates have yet to be approved: Age URL 196 https://bodhi.fedoraproject.org/updates/FEDORA-2015-4638 lcms2-2.7-1.fc21 83 https://bodhi.fedoraproject.org/updates/FEDORA-2015-11787 redhat-rpm-config-29-1.fc21 70 https://bodhi.fedoraproject.org/updates/FEDORA-2015-12402 gstreamer1-plugins-good-1.4.5-3.fc21 58 https://bodhi.fedoraproject.org/updates/FEDORA-2015-13233 yum-utils-1.1.31-28.fc21 58 https://bodhi.fedoraproject.org/updates/FEDORA-2015-13239 yum-3.4.3-154.fc21 48 https://bodhi.fedoraproject.org/updates/FEDORA-2015-13877 libteam-1.18-1.fc21 48 https://bodhi.fedoraproject.org/updates/FEDORA-2015-13805 tigervnc-1.5.0-2.fc21 48 https://bodhi.fedoraproject.org/updates/FEDORA-2015-90d3a9ce48 dracut-038-40.git20150819.fc21 48 https://bodhi.fedoraproject.org/updates/FEDORA-2015-37e78bb9af btrfs-progs-4.1.2-1.fc21 46 https://bodhi.fedoraproject.org/updates/FEDORA-2015-14019 nss-3.20.0-1.0.fc21 nss-softokn-3.20.0-1.0.fc21 nss-util-3.20.0-1.0.fc21 45 https://bodhi.fedoraproject.org/updates/FEDORA-2015-14070 selinux-policy-3.13.1-105.21.fc21 26 https://bodhi.fedoraproject.org/updates/FEDORA-2015-15614 mesa-10.4.7-2.20150323.fc21 12 https://bodhi.fedoraproject.org/updates/FEDORA-2015-5d4e159c10 python-2.7.8-15.fc21 python3-3.4.1-18.fc21 6 https://bodhi.fedoraproject.org/updates/FEDORA-2015-9bcdcdc46b dnf-0.6.4-7.fc21 6 https://bodhi.fedoraproject.org/updates/FEDORA-2015-bf08670f31 firefox-41.0-6.fc21 5 https://bodhi.fedoraproject.org/updates/FEDORA-2015-048e95ac1d thunderbird-38.3.0-1.fc21 5 https://bodhi.fedoraproject.org/updates/FEDORA-2015-d9098b1692 firefox-41.0.1-2.fc21 5 https://bodhi.fedoraproject.org/updates/FEDORA-2015-b22ba553bf kde-baseapps-15.04.3-1.fc21.1 oxygen-icon-theme-15.04.3-2.fc21 kde-runtime-15.08.1-1.fc21 kdepimlibs-4.14.10-3.fc21 kdelibs-4.14.12-1.fc21 5 https://bodhi.fedoraproject.org/updates/FEDORA-2015-ff9eaa3e01 device-mapper-multipath-0.4.9-68.fc21.6 5 https://bodhi.fedoraproject.org/updates/FEDORA-2015-71973a6d71 pixman-0.32.8-1.fc21 5 https://bodhi.fedoraproject.org/updates/FEDORA-2015-16119 avahi-0.6.31-43.fc21 1 https://bodhi.fedoraproject.org/updates/FEDORA-2015-9e6a99b895 gnome-terminal-3.14.3-2.fc21 1 https://bodhi.fedoraproject.org/updates/FEDORA-2015-145685a32d perl-Encode-2.78-1.fc21 1 https://bodhi.fedoraproject.org/updates/FEDORA-2015-d7e074ba30 kernel-4.1.10-100.fc21 The following builds have been pushed to Fedora 21 updates-testing cabal-rpm-0.9.8-1.fc21 eom-1.10.5-1.fc21 ghc-rpm-macros-1.2.20-1.fc21 gnucash-2.6.9-1.fc21 gnucash-docs-2.6.9-1.fc21 golang-github-AdRoll-goamz-0-0.2.gitf8c4952.fc21 golang-googlecode-go-crypto-0-0.7.gitc57d4a7.fc21 gparted-0.20.0-2.fc21 groonga-5.0.8-1.fc21 i2c-tools-3.1.0-15.fc21 icecat-38.3.0-4.fc21 jpfcodegen-0.4-10.fc21 layla-fonts-1.5-1.fc21 libvdpau-1.1.1-2.fc21 lxdm-0.4.1-10.fc21 magic-8.0.174-4.fc21 nomacs-2.4.6-2.fc21 php-pear-1.10.0-1.fc21 postgresql-9.3.10-1.fc21 python-debian-0.1.27-1.fc21 qlipper-2.0.2-1.fc21 rubygem-domain_name-0.5.25-1.fc21 rubygem-mongoid-3.1.7-3.fc21 sane-backends-1.0.25-1.fc21 spring-100.0-1.fc21 vrq-1.0.113-1.fc21 xfce4-equake-plugin-1.3.8-1.fc21 Details about builds: ================================================================================ cabal-rpm-0.9.8-1.fc21 (FEDORA-2015-c6a56b1cae) RPM packaging tool for Haskell Cabal-based packages -------------------------------------------------------------------------------- Update Information: 0.9.8: - improve license logic - fix handling of versions without '.' - no duplicate test deps 0.9.7: - only list buildable executables in spec file - bring back 'build' as an alias for 'local' - use license macro - do not warn about missing optional system programs -------------------------------------------------------------------------------- ================================================================================ eom-1.10.5-1.fc21 (FEDORA-2015-c6b8f4db5c) Eye of MATE image viewer -------------------------------------------------------------------------------- Update Information: eom-1.10.5-1.fc21 - update to 1.10.5 release -------------------------------------------------------------------------------- ================================================================================ ghc-rpm-macros-1.2.20-1.fc21 (FEDORA-2015-750776fab8) RPM macros for building packages for GHC -------------------------------------------------------------------------------- Update Information: - `%cabal` now sets utf8 locale - introduce `%ghc_pkgdocdir` since no `_pkgdocdir` in RHEL 7 and earlier - add `%cabal_test` - only run haddock for real libraries with modules - make sure basepkg.files is also created for meta packages - `%ghc_fix_dynamic_rpath`: on ARMv7 RPATH is RUNPATH -------------------------------------------------------------------------------- ================================================================================ gnucash-2.6.9-1.fc21 (FEDORA-2015-7d271d5e63) Finance management application -------------------------------------------------------------------------------- Update Information: This updates GnuCash to 2.6.9, the latest upstream release. For a list of bugs fixed in this release, see the upstream release notes at: http://gnucash.org/. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1266794 - gnucash-2.6.8 is available https://bugzilla.redhat.com/show_bug.cgi?id=1266794 -------------------------------------------------------------------------------- ================================================================================ gnucash-docs-2.6.9-1.fc21 (FEDORA-2015-7d271d5e63) Help files and documentation for the GnuCash personal finanace manager -------------------------------------------------------------------------------- Update Information: This updates GnuCash to 2.6.9, the latest upstream release. For a list of bugs fixed in this release, see the upstream release notes at: http://gnucash.org/. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1266794 - gnucash-2.6.8 is available https://bugzilla.redhat.com/show_bug.cgi?id=1266794 -------------------------------------------------------------------------------- ================================================================================ golang-github-AdRoll-goamz-0-0.2.gitf8c4952.fc21 (FEDORA-2015-aa0e566072) Fork of the GOAMZ with additional functionality with DynamoDB -------------------------------------------------------------------------------- Update Information: Add s3 package for openshift/origin ---- First package for Fedora -------------------------------------------------------------------------------- References: [ 1 ] Bug #1269571 - Tracker for golang-github-AdRoll-goamz https://bugzilla.redhat.com/show_bug.cgi?id=1269571 [ 2 ] Bug #1262714 - Review Request: golang-github-AdRoll-goamz - Fork of the GOAMZ with additional functionality with DynamoDB https://bugzilla.redhat.com/show_bug.cgi?id=1262714 -------------------------------------------------------------------------------- ================================================================================ golang-googlecode-go-crypto-0-0.7.gitc57d4a7.fc21 (FEDORA-2015-3a21abb828) Supplementary Go cryptography libraries -------------------------------------------------------------------------------- Update Information: Fix sed for import path ---- Update spec file to spec-2.0 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1231618 - Tracker for golang-googlecode-go-crypto https://bugzilla.redhat.com/show_bug.cgi?id=1231618 -------------------------------------------------------------------------------- ================================================================================ gparted-0.20.0-2.fc21 (FEDORA-2015-8e53ce29c5) Gnome Partition Editor -------------------------------------------------------------------------------- Update Information: - Update to fix "one sector error" - Fixes #1269440 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1269440 - Fix off by one sector data corruption error in GParted < 0.21.0 https://bugzilla.redhat.com/show_bug.cgi?id=1269440 -------------------------------------------------------------------------------- ================================================================================ groonga-5.0.8-1.fc21 (FEDORA-2015-5fe3c3645c) An Embeddable Fulltext Search Engine -------------------------------------------------------------------------------- Update Information: See http://groonga.org/en/blog/2015/09/29/release.html -------------------------------------------------------------------------------- References: [ 1 ] Bug #1266889 - groonga-5.0.8 is available https://bugzilla.redhat.com/show_bug.cgi?id=1266889 -------------------------------------------------------------------------------- ================================================================================ i2c-tools-3.1.0-15.fc21 (FEDORA-2015-b1c8d93987) A heterogeneous set of I2C tools for Linux -------------------------------------------------------------------------------- Update Information: i2c-tools-3.1.0-15.fc21 - Adding i2c-dev auto-load in th %post and modules- load.d (#913203) i2c-tools-3.1.0-15.fc22 - Adding i2c-dev auto-load in th %post and modules-load.d (#913203) i2c-tools-3.1.0-15.fc23 - Adding i2c-dev auto-load in th %post and modules-load.d (#913203) -------------------------------------------------------------------------------- References: [ 1 ] Bug #913203 - Load i2c-dev module when i2cdetect is executed https://bugzilla.redhat.com/show_bug.cgi?id=913203 -------------------------------------------------------------------------------- ================================================================================ icecat-38.3.0-4.fc21 (FEDORA-2015-afd32aef91) GNU version of Firefox browser -------------------------------------------------------------------------------- Update Information: icecat-38.3.0-4.fc21 - Updated appdata and manpage files - Update to 38.3.0 - Patches updated - Language files not packaged - Build defined for Gtk3 - Disabled crashreporter on F22+ - WebRTC disabled on extra arches -------------------------------------------------------------------------------- ================================================================================ jpfcodegen-0.4-10.fc21 (FEDORA-2015-485df7b684) A tool for generating classes from JPF plug-ins -------------------------------------------------------------------------------- Update Information: jpfcodegen-0.4-10.fc22 - Update to Java8. - Change to new project page. jpfcodegen-0.4-10.el7 - Update to Java8. - Change to new project page. jpfcodegen-0.4-10.fc21 - Update to Java8. - Change to new project page. jpfcodegen-0.4-10.fc23 - Update to Java8. - Change to new project page. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1239617 - jpfcodegen: FTBFS in rawhide https://bugzilla.redhat.com/show_bug.cgi?id=1239617 -------------------------------------------------------------------------------- ================================================================================ layla-fonts-1.5-1.fc21 (FEDORA-2015-fe27a4fb6b) A collection of traditional Arabic fonts -------------------------------------------------------------------------------- Update Information: Added numbers and symbol glyphs to the BasicArabic font file -------------------------------------------------------------------------------- References: [ 1 ] Bug #1079090 - Review Request: layla-fonts - A collection of traditional Arabic fonts https://bugzilla.redhat.com/show_bug.cgi?id=1079090 -------------------------------------------------------------------------------- ================================================================================ libvdpau-1.1.1-2.fc21 (FEDORA-2015-3ca3f2138b) Wrapper library for the Video Decode and Presentation API -------------------------------------------------------------------------------- Update Information: libvdpau-1.1.1-2.fc21 - Backport current patches - Switch to new upstream git repository on freedesktop.org ---- Update to 1.1.1 Security fix for CVE-2015-5198, CVE-2015-5199, CVE-2015-5200 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1253827 - CVE-2015-5200 libvdpau vulnerability in trace functionality https://bugzilla.redhat.com/show_bug.cgi?id=1253827 [ 2 ] Bug #1253826 - CVE-2015-5199 libvdpau directory traversal in dlopen https://bugzilla.redhat.com/show_bug.cgi?id=1253826 [ 3 ] Bug #1253824 - CVE-2015-5198 libvdpau incorrect check for security transition https://bugzilla.redhat.com/show_bug.cgi?id=1253824 -------------------------------------------------------------------------------- ================================================================================ lxdm-0.4.1-10.fc21 (FEDORA-2015-7766c0d939) Lightweight X11 Display Manager -------------------------------------------------------------------------------- Update Information: It is found that lxdm does not close file descriptor for log file althouhg it should. Also session started via lxdm can allow any local user to connect X. This new rpm should fix these issues. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1268900 - lxdm: X server started without -auth, exposing it to connections form any local user https://bugzilla.redhat.com/show_bug.cgi?id=1268900 [ 2 ] Bug #846086 - lxdm: leaks file descriptors https://bugzilla.redhat.com/show_bug.cgi?id=846086 -------------------------------------------------------------------------------- ================================================================================ magic-8.0.174-4.fc21 (FEDORA-2015-72a43af612) A very capable VLSI layout tool -------------------------------------------------------------------------------- Update Information: Some tcl related files were missing. This new rpm should fix this issue. -------------------------------------------------------------------------------- ================================================================================ nomacs-2.4.6-2.fc21 (FEDORA-2015-212e7f6626) Lightweight image viewer -------------------------------------------------------------------------------- Update Information: Rebuild for new LibRaw. -------------------------------------------------------------------------------- ================================================================================ php-pear-1.10.0-1.fc21 (FEDORA-2015-3f14808d08) PHP Extension and Application Repository framework -------------------------------------------------------------------------------- Update Information: **PEAR 1.10.0** Changes since version 1.9.5: * Implement #20488: Add support for PHP 7 [cweiske] * Drop support for PHP 4 and 5.0 - 5.3 [cweiske] * Remove deprecated methods [cweiske] * Add --showdiff to "pear run-tests" to print diff for failed tests [tyrael] * Implement #20333: New role=man for man pages [bjori] * Implement #20334: add "metadata_dir" configuration option [remicollet] * Add long option names to install-pear.php [remicollet] * Remove PEAR/ErrorStack5.php [cweiske] * Fix #17045: avoid overwriting include path [glen] * Fix #17399: "pear help" doesn't mention the "version" command [kguest] * Fix #18638 and #18405: Make PEAR::loadExtension static [cweiske] * Fix #20319: allow pear to work when cache_dir is not writable [remicollet] * Fix #20507: pear list- upgrades does not take PHP version into account [cweiske] * Fix #20927: Use correct php-config [cweiske] * Fix #20946: PEAR_Builder::log() declaration [remicollet] * Fix channel.xml downloading from https if it did not change [cweiske] * Fix static warnings [cweiske] **PEAR_Manpages 1.10.0** * First release -------------------------------------------------------------------------------- ================================================================================ postgresql-9.3.10-1.fc21 (FEDORA-2015-d683ebb786) PostgreSQL client programs -------------------------------------------------------------------------------- Update Information: update to 9.3.10 per release notes http://www.postgresql.org/docs/9.3/static/release-9-3-10.html -------------------------------------------------------------------------------- ================================================================================ python-debian-0.1.27-1.fc21 (FEDORA-2015-674cb05e6d) Modules for Debian-related data formats -------------------------------------------------------------------------------- Update Information: support for xz -------------------------------------------------------------------------------- ================================================================================ qlipper-2.0.2-1.fc21 (FEDORA-2015-5bf8c40735) Lightweight clipboard history -------------------------------------------------------------------------------- Update Information: Version bump. -------------------------------------------------------------------------------- ================================================================================ rubygem-domain_name-0.5.25-1.fc21 (FEDORA-2015-ea2d997f5a) Domain Name manipulation library for Ruby -------------------------------------------------------------------------------- Update Information: New version 0.5.25 is released. -------------------------------------------------------------------------------- ================================================================================ rubygem-mongoid-3.1.7-3.fc21 (FEDORA-2015-409d1be4d9) Elegant Persistance in Ruby for MongoDB -------------------------------------------------------------------------------- Update Information: Fix doc / epoch dependency -------------------------------------------------------------------------------- ================================================================================ sane-backends-1.0.25-1.fc21 (FEDORA-2015-8adf20e71f) Scanner access software -------------------------------------------------------------------------------- Update Information: New upstream feature and bugfix release. * Upstream changes: * New backends: epsonds (Epson DS, PX and WF series), pieusb (PIE and Reflecta film/slide scanners). * Support for JPG and PNG output format in scanimage. * Significant enhancements to avision, canon_dr, epjitsu, fujitsu, genesys, kodakaio and pixma backends. * Minor updates, bugfixes or scanners added in several backends. * 300 new scanner models supported. * Workaround for USB3 problems in Linux kernel. * Added code for IR functionality. * Documentation and translation updates. * Bugfixes (threading, networking, udev rules). * ship umax_pp tool * add weak dependencies so backend drivers get installed automatically if available in repositories -------------------------------------------------------------------------------- References: [ 1 ] Bug #1268712 - sane-backends-1.0.25 is available https://bugzilla.redhat.com/show_bug.cgi?id=1268712 -------------------------------------------------------------------------------- ================================================================================ spring-100.0-1.fc21 (FEDORA-2015-e72d6e9b6a) Multiplayer, 3D realtime strategy combat game -------------------------------------------------------------------------------- Update Information: spring-100.0-1.fc21/2/3: - Upstream release: 100.0. - Drop 98.0 specific patches. - Add libunwind BR. -------------------------------------------------------------------------------- ================================================================================ vrq-1.0.113-1.fc21 (FEDORA-2015-98476ea952) Verilog tool framework with plugins for manipulating source code -------------------------------------------------------------------------------- Update Information: vrq-1.0.113-1.fc21 - Rebuilt for new upstream version 1.0.113, fixes rhbz #1269316 vrq-1.0.113-1.fc22 - Rebuilt for new upstream version 1.0.113, fixes rhbz #1269316 vrq-1.0.113-1.fc23 - Rebuilt for new upstream version 1.0.113, fixes rhbz #1269316 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1269316 - vrq-1.0.112 is available https://bugzilla.redhat.com/show_bug.cgi?id=1269316 -------------------------------------------------------------------------------- ================================================================================ xfce4-equake-plugin-1.3.8-1.fc21 (FEDORA-2015-1c938891b9) Plugin for the XFCE panel which monitors earthquakes -------------------------------------------------------------------------------- Update Information: xfce4-equake-plugin-1.3.8-1.fc21 - Rebuilt for new upstream version 1.3.8 xfce4-equake-plugin-1.3.8-1.fc23 - Rebuilt for new upstream version 1.3.8 xfce4-equake-plugin-1.3.8-1.fc22 - Rebuilt for new upstream version 1.3.8 -------------------------------------------------------------------------------- -- test mailing list test@lists.fedoraproject.org To unsubscribe: https://admin.fedoraproject.org/mailman/listinfo/test
