The following Fedora 20 Security updates need testing: Age URL 73 https://admin.fedoraproject.org/updates/FEDORA-2014-5897/nrpe-2.15-2.fc20 53 https://admin.fedoraproject.org/updates/FEDORA-2014-6551/chicken-4.8.0.6-2.f... 51 https://admin.fedoraproject.org/updates/FEDORA-2014-6615/drupal7-views-3.8-1... 24 https://admin.fedoraproject.org/updates/FEDORA-2014-7523/readline-6.2-10.fc2... 22 https://admin.fedoraproject.org/updates/FEDORA-2014-7551/asterisk-11.10.2-2.... 22 https://admin.fedoraproject.org/updates/FEDORA-2014-7613/perl-Email-Address-... 19 https://admin.fedoraproject.org/updates/FEDORA-2014-7697/dpkg-1.16.15-1.fc20 13 https://admin.fedoraproject.org/updates/FEDORA-2014-7936/python3-3.3.2-16.fc... 8 https://admin.fedoraproject.org/updates/FEDORA-2014-8099/lz4-r119-1.fc20 4 https://admin.fedoraproject.org/updates/FEDORA-2014-8189/krb5-1.11.5-8.fc20 4 https://admin.fedoraproject.org/updates/FEDORA-2014-8227/ocsinventory-2.0.5-... 4 https://admin.fedoraproject.org/updates/FEDORA-2014-8208/libXfont-1.4.8-1.fc... 4 https://admin.fedoraproject.org/updates/FEDORA-2014-8065/rubygem-activerecor... 2 https://admin.fedoraproject.org/updates/FEDORA-2014-7657/couchdb-1.6.0-9.fc2... 1 https://admin.fedoraproject.org/updates/FEDORA-2014-7896/zarafa-7.1.10-2.fc2... 1 https://admin.fedoraproject.org/updates/FEDORA-2014-5497/openstack-keystone-... 0 https://admin.fedoraproject.org/updates/FEDORA-2014-8308/php-ZendFramework-1... 0 https://admin.fedoraproject.org/updates/FEDORA-2014-8316/polarssl-1.2.11-1.f... 0 https://admin.fedoraproject.org/updates/FEDORA-2014-8334/python-bottle-0.12.... 0 https://admin.fedoraproject.org/updates/FEDORA-2014-8331/transmission-2.84-1...
The following Fedora 20 Critical Path updates have yet to be approved: Age URL 12 https://admin.fedoraproject.org/updates/FEDORA-2014-7968/perl-Pod-Usage-1.64... 8 https://admin.fedoraproject.org/updates/FEDORA-2014-8109/libfm-1.2.1-1.fc20,... 1 https://admin.fedoraproject.org/updates/FEDORA-2014-8305/gdb-7.7.1-17.fc20
The following builds have been pushed to Fedora 20 updates-testing
ProDy-1.5.1-3.fc20 python-bottle-0.12.6-1.fc20 python-docker-py-0.3.2-1.fc20 spectrwm-2.5.1-1.fc20 tkgate-2.0-20.beta10.fc20 transmission-2.84-1.fc20
Details about builds:
================================================================================ ProDy-1.5.1-3.fc20 (FEDORA-2014-8333) Application for protein structure, dynamics and sequence analysis -------------------------------------------------------------------------------- Update Information:
* Some fixes based on Python guidelines. -------------------------------------------------------------------------------- ChangeLog:
* Sat Jul 12 2014 Antonio Trande sagitter@fedoraproject.org 1.5.1-3 - Some fixes based on Python guidelines * Fri Jun 6 2014 Fedora Release Engineering rel-eng@lists.fedoraproject.org - 1.5.1-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild --------------------------------------------------------------------------------
================================================================================ python-bottle-0.12.6-1.fc20 (FEDORA-2014-8334) Fast and simple WSGI-framework for small web-applications -------------------------------------------------------------------------------- Update Information:
resolves rhbz#1093257 - JSON content type not restrictive enough -------------------------------------------------------------------------------- ChangeLog:
* Sat Jul 12 2014 Rahul Sundaram sundaram@fedoraproject.org - 0.12.6-1 - resolves rhbz#1093257 - JSON content type not restrictive enough * Sat Jun 7 2014 Fedora Release Engineering rel-eng@lists.fedoraproject.org - 0.11.6-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Mon May 19 2014 Bohuslav Kabrda bkabrda@redhat.com - 0.11.6-3 - Rebuilt for https://fedoraproject.org/wiki/Changes/Python_3.4 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1093255 - CVE-2014-3137 python-bottle: JSON content-type not restrictive enough https://bugzilla.redhat.com/show_bug.cgi?id=1093255 --------------------------------------------------------------------------------
================================================================================ python-docker-py-0.3.2-1.fc20 (FEDORA-2014-8337) An API client for docker written in Python -------------------------------------------------------------------------------- Update Information:
version bump to 0.3.2 -------------------------------------------------------------------------------- ChangeLog:
* Sat Jul 12 2014 Lokesh Mandvekar lsm5@fedoraproject.org - 0.3.2-1 - version bump to 0.3.2 - Resolves: rhbz#1097415 * Sat Jun 7 2014 Fedora Release Engineering rel-eng@lists.fedoraproject.org - 0.2.3-9 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1097415 - python-docker-py missing requires: python-six https://bugzilla.redhat.com/show_bug.cgi?id=1097415 --------------------------------------------------------------------------------
================================================================================ spectrwm-2.5.1-1.fc20 (FEDORA-2014-8325) Minimalist tiling window manager written in C -------------------------------------------------------------------------------- Update Information:
Resolves: rhbz#1095890 - upstream version bump to 2.5.1 -------------------------------------------------------------------------------- ChangeLog:
* Sun Jul 13 2014 Lokesh Mandvekar lsm5@fedoraproject.org - 2.5.1-1 - Resolves: rhbz#1095890 - upstream version bump to 2.5.1 - Resolves: rhbz#1095967 - spectrwm packaging issues - generate and install appropriate licenses * Sun Jun 8 2014 Fedora Release Engineering rel-eng@lists.fedoraproject.org - 2.5.0-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1095890 - spectrwm-2.5.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1095890 [ 2 ] Bug #1095967 - Packaging Issues https://bugzilla.redhat.com/show_bug.cgi?id=1095967 --------------------------------------------------------------------------------
================================================================================ tkgate-2.0-20.beta10.fc20 (FEDORA-2014-8336) An event driven digital circuit simulator -------------------------------------------------------------------------------- Update Information:
-------------------------------------------------------------------------------- ChangeLog:
* Sat Jul 12 2014 Ralf Corsépius corsepiu@fedoraproject.org - 2.0-20.beta10 - Append -DUSE_INTERP_RESULT to CFLAGS to work-around Tcl/Tk-8.6 incompatibilities (FTBFS RHBZ #1107452). - Adopt tkgate-2.0-typos.patch, tkgate-2.0-hardening.patch from Debian (FTBFS RHBZ #1107452, RHBZ #1037359). - Partially modernize spec. - Don't ship *.orig2 editor backup files. - Make locale packages noarch. - Fix paths to tools. - Rebase patches. - Reflect Source0: having changed. * Sat Jul 12 2014 Ville Skyttä ville.skytta@iki.fi - 2.0-19.beta10 - Don't ship editor backup files - Fix bogus dates in %changelog -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1037359 - tkgate FTBFS if "-Werror=format-security" flag is used https://bugzilla.redhat.com/show_bug.cgi?id=1037359 [ 2 ] Bug #1087077 - Don't ship editor backup files https://bugzilla.redhat.com/show_bug.cgi?id=1087077 [ 3 ] Bug #1107452 - tkgate: FTBFS in rawhide https://bugzilla.redhat.com/show_bug.cgi?id=1107452 --------------------------------------------------------------------------------
================================================================================ transmission-2.84-1.fc20 (FEDORA-2014-8331) A lightweight GTK+ BitTorrent client -------------------------------------------------------------------------------- Update Information:
update to 2.84 -------------------------------------------------------------------------------- ChangeLog:
* Sat Jul 12 2014 Rahul Sundaram sundaram@fedoraproject.org - 2.84-1 - update to 2.84 - resolves rhbz#1118291 - peer communication vulnerability * Sun Jun 8 2014 Fedora Release Engineering rel-eng@lists.fedoraproject.org - 2.83-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Sun May 25 2014 Ankur Sinha <ankursinha AT fedoraproject DOT org> 2.83-1 - Updated to 2.83 - https://trac.transmissionbt.com/wiki/Changes - Remove patch: https://trac.transmissionbt.com/ticket/5465 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1118290 - CVE-2014-4909 transmission: peer communication vulnerability https://bugzilla.redhat.com/show_bug.cgi?id=1118290 --------------------------------------------------------------------------------