The following Fedora 19 Security updates need testing:
Age URL
216
https://admin.fedoraproject.org/updates/FEDORA-2013-19963/openstack-glanc...
29
https://admin.fedoraproject.org/updates/FEDORA-2014-5896/nrpe-2.15-2.fc19
24
https://admin.fedoraproject.org/updates/FEDORA-2014-6046/cifs-utils-6.3-2...
20
https://admin.fedoraproject.org/updates/FEDORA-2014-5759/cups-filters-1.0...
18
https://admin.fedoraproject.org/updates/FEDORA-2014-6255/smb4k-1.1.2-1.fc19
18
https://admin.fedoraproject.org/updates/FEDORA-2014-6233/dpkg-1.16.14-1.fc19
17
https://admin.fedoraproject.org/updates/FEDORA-2014-6331/dovecot-2.2.13-1...
9
https://admin.fedoraproject.org/updates/FEDORA-2014-6553/chicken-4.8.0.6-...
9
https://admin.fedoraproject.org/updates/FEDORA-2014-6569/openssh-6.2p2-8....
7
https://admin.fedoraproject.org/updates/FEDORA-2014-6594/libtiff-4.0.3-10...
7
https://admin.fedoraproject.org/updates/FEDORA-2014-6597/drupal7-views-3....
6
https://admin.fedoraproject.org/updates/FEDORA-2014-6645/libgadu-1.12.0-0...
3
https://admin.fedoraproject.org/updates/FEDORA-2014-6717/libpng-1.5.13-3....
3
https://admin.fedoraproject.org/updates/FEDORA-2014-6716/readline-6.2-7.fc19
1
https://admin.fedoraproject.org/updates/FEDORA-2014-6818/check-mk-1.2.4p2...
1
https://admin.fedoraproject.org/updates/FEDORA-2014-6851/mingw-libgcrypt-...
1
https://admin.fedoraproject.org/updates/FEDORA-2014-6831/mingw-libtiff-4....
1
https://admin.fedoraproject.org/updates/FEDORA-2014-6858/mingw-icu-50.1.2...
1
https://admin.fedoraproject.org/updates/FEDORA-2014-6829/mingw-pixman-0.3...
1
https://admin.fedoraproject.org/updates/FEDORA-2014-6859/mingw-libjpeg-tu...
1
https://admin.fedoraproject.org/updates/FEDORA-2014-6833/mingw-freetype-2...
1
https://admin.fedoraproject.org/updates/FEDORA-2014-6866/mingw-readline-6...
0
https://admin.fedoraproject.org/updates/FEDORA-2014-6892/mingw-libpng-1.5...
0
https://admin.fedoraproject.org/updates/FEDORA-2014-6921/mingw-curl-7.37....
0
https://admin.fedoraproject.org/updates/FEDORA-2014-6896/qt3-3.3.8b-58.fc19
0
https://admin.fedoraproject.org/updates/FEDORA-2014-6904/php-doctrine-orm...
0
https://admin.fedoraproject.org/updates/FEDORA-2014-6881/gnutls-3.1.20-5....
0
https://admin.fedoraproject.org/updates/FEDORA-2014-6919/libtasn1-3.6-1.fc19
The following Fedora 19 Critical Path updates have yet to be approved:
Age URL
165
https://admin.fedoraproject.org/updates/FEDORA-2013-22326/fedora-bookmark...
91
https://admin.fedoraproject.org/updates/FEDORA-2014-3245/testdisk-6.14-2....
13
https://admin.fedoraproject.org/updates/FEDORA-2014-6447/xfsprogs-3.2.0-1...
12
https://admin.fedoraproject.org/updates/FEDORA-2014-6462/libxfce4ui-4.10....
9
https://admin.fedoraproject.org/updates/FEDORA-2014-6587/libnl3-3.2.22-3....
9
https://admin.fedoraproject.org/updates/FEDORA-2014-6578/ibus-1.5.7-2.fc19
7
https://admin.fedoraproject.org/updates/FEDORA-2014-6613/langtable-0.0.24...
3
https://admin.fedoraproject.org/updates/FEDORA-2014-6708/webkitgtk3-2.0.4...
3
https://admin.fedoraproject.org/updates/FEDORA-2014-6716/readline-6.2-7.fc19
3
https://admin.fedoraproject.org/updates/FEDORA-2014-6717/libpng-1.5.13-3....
1
https://admin.fedoraproject.org/updates/FEDORA-2014-6814/device-mapper-pe...
0
https://admin.fedoraproject.org/updates/FEDORA-2014-6898/openldap-2.4.39-...
0
https://admin.fedoraproject.org/updates/FEDORA-2014-6919/libtasn1-3.6-1.fc19
0
https://admin.fedoraproject.org/updates/FEDORA-2014-6881/gnutls-3.1.20-5....
The following builds have been pushed to Fedora 19 updates-testing
din-5.2.1-1.fc19
fox-1.6.50-1.fc19
gnutls-3.1.20-5.fc19
grilo-plugins-0.2.8-3.fc19
groonga-4.0.2-1.fc19
libtasn1-3.6-1.fc19
mingw-curl-7.37.0-1.fc19
mingw-fontconfig-2.11.1-1.fc19
mingw-libpng-1.5.18-1.fc19
openldap-2.4.39-3.fc19
php-5.5.13-1.fc19
php-doctrine-orm-2.4.2-2.fc19
php-pear-text-wiki-1.2.1-3.fc19
php-phpunit-PHPUnit-MockObject-1.2.3-4.fc19
python-django-extensions-1.3.7-1.fc19
python-flask-login-0.2.11-1.fc19
python-okaara-1.0.34-1.fc19
qt3-3.3.8b-58.fc19
rubygem-narray-0.6.0.9-1.fc19
Details about builds:
================================================================================
din-5.2.1-1.fc19 (FEDORA-2014-6884)
A musical instrument using multiple Bezier curves
--------------------------------------------------------------------------------
Update Information:
Update to upstream 5.2.1
--------------------------------------------------------------------------------
ChangeLog:
* Wed May 28 2014 Adam Huffman <bloch(a)verdurin.com> - 5.2.1-1
- Update to upstream 5.2.1
* Wed May 21 2014 Jaroslav Škarvada <jskarvad(a)redhat.com> - 3.5-6
- Rebuilt for
https://fedoraproject.org/wiki/Changes/f21tcl86
* Sat Aug 3 2013 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
3.5-5
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
fox-1.6.50-1.fc19 (FEDORA-2014-6890)
C++ based Toolkit for developing Graphical User Interfaces
--------------------------------------------------------------------------------
Update Information:
New version 1.6.50 is released.
--------------------------------------------------------------------------------
ChangeLog:
* Fri May 30 2014 Mamoru TASAKA <mtasaka(a)fedoraproject.org> - 1.6.50-1
- Update to 1.6.50
* Sat Aug 3 2013 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
1.6.49-3
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
gnutls-3.1.20-5.fc19 (FEDORA-2014-6881)
A TLS protocol implementation
--------------------------------------------------------------------------------
Update Information:
Added fix for CVE-2014-3466
--------------------------------------------------------------------------------
ChangeLog:
* Fri May 30 2014 Nikos Mavrogiannopoulos <nmav(a)redhat.com> - 3.1.20-5
- fixes CVE-2014-3466 (#1103046)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1101932 - CVE-2014-3466 gnutls: insufficient session id length check in
_gnutls_read_server_hello (GNUTLS-SA-2014-3)
https://bugzilla.redhat.com/show_bug.cgi?id=1101932
--------------------------------------------------------------------------------
================================================================================
grilo-plugins-0.2.8-3.fc19 (FEDORA-2014-6882)
Plugins for the Grilo framework
--------------------------------------------------------------------------------
Update Information:
Use SSL for Flickr API
--------------------------------------------------------------------------------
ChangeLog:
* Fri May 30 2014 Debarshi Ray <rishi(a)fedoraproject.org> - 0.2.8-3
- Use SSL for Flickr API (GNOME #730812)
--------------------------------------------------------------------------------
================================================================================
groonga-4.0.2-1.fc19 (FEDORA-2014-6897)
An Embeddable Fulltext Search Engine
--------------------------------------------------------------------------------
Update Information:
Update to 4.0.2. See
http://groonga.org/en/blog/2014/05/29/release.html
--------------------------------------------------------------------------------
ChangeLog:
* Fri May 30 2014 HAYASHI Kentaro <hayashi(a)clear-code.com> - 4.0.2-1
- new upstream release.
--------------------------------------------------------------------------------
================================================================================
libtasn1-3.6-1.fc19 (FEDORA-2014-6919)
The ASN.1 library used in GNUTLS
--------------------------------------------------------------------------------
Update Information:
new upstream release
--------------------------------------------------------------------------------
ChangeLog:
* Mon May 26 2014 Nikos Mavrogiannopoulos <nmav(a)redhat.com> - 3.6-1
- new upstream release
* Fri May 2 2014 Nikos Mavrogiannopoulos <nmav(a)redhat.com> - 3.5-1
- new upstream release
* Wed Nov 27 2013 Nikos Mavrogiannopoulos <nmav(a)redhat.com> - 3.4-1
- new upstream release
* Sat Aug 3 2013 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
3.3-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1102022 - CVE-2014-3467 libtasn1: multiple boundary check issues
https://bugzilla.redhat.com/show_bug.cgi?id=1102022
[ 2 ] Bug #1102323 - CVE-2014-3468 libtasn1: asn1_get_bit_der() can return negative bit
length
https://bugzilla.redhat.com/show_bug.cgi?id=1102323
[ 3 ] Bug #1102329 - CVE-2014-3469 libtasn1: asn1_read_value_type() NULL pointer
dereference
https://bugzilla.redhat.com/show_bug.cgi?id=1102329
--------------------------------------------------------------------------------
================================================================================
mingw-curl-7.37.0-1.fc19 (FEDORA-2014-6921)
MinGW Windows port of curl and libcurl
--------------------------------------------------------------------------------
Update Information:
* Update to 7.37.0
* Fixes CVE-2014-0138 and CVE-2014-0139 (RHBZ #1080880)
--------------------------------------------------------------------------------
ChangeLog:
* Thu May 29 2014 Erik van Pienbroek <epienbro(a)fedoraproject.org> - 7.37.0-1
- Update to 7.37.0
- Fixes CVE-2014-0138 and CVE-2014-0139 (RHBZ #1080880)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1080880 - CVE-2014-0138 CVE-2014-0139 mingw-curl: various flaws [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1080880
--------------------------------------------------------------------------------
================================================================================
mingw-fontconfig-2.11.1-1.fc19 (FEDORA-2014-6900)
MinGW Windows Fontconfig library
--------------------------------------------------------------------------------
Update Information:
Update to 2.11.1
--------------------------------------------------------------------------------
ChangeLog:
* Thu May 29 2014 Erik van Pienbroek <epienbro(a)fedoraproject.org> - 2.11.1-1
- Update to 2.11.1
* Wed Nov 20 2013 Erik van Pienbroek <epienbro(a)fedoraproject.org> - 2.11.0-1
- Update to 2.11.0
* Sat Sep 7 2013 Erik van Pienbroek <epienbro(a)fedoraproject.org> - 2.10.95-1
- Update to 2.10.95
* Sat Aug 3 2013 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
2.10.93-3
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
mingw-libpng-1.5.18-1.fc19 (FEDORA-2014-6892)
MinGW Windows Libpng library
--------------------------------------------------------------------------------
Update Information:
* Update to 1.5.18
* Fixes CVE-2013-7353 CVE-2013-7354 (RHBZ #1086671)
--------------------------------------------------------------------------------
ChangeLog:
* Thu May 29 2014 Erik van Pienbroek <epienbro(a)fedoraproject.org> - 1.5.18-1
- Update to 1.5.18
- Fixes CVE-2013-7353 CVE-2013-7354 (RHBZ #1086671)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1086671 - CVE-2013-7353 CVE-2013-7354 mingw-libpng: various flaws
[fedora-19]
https://bugzilla.redhat.com/show_bug.cgi?id=1086671
--------------------------------------------------------------------------------
================================================================================
openldap-2.4.39-3.fc19 (FEDORA-2014-6898)
LDAP support libraries
--------------------------------------------------------------------------------
Update Information:
fix: remove correct tmp file when generating server cert (#1103102)
--------------------------------------------------------------------------------
ChangeLog:
* Fri May 30 2014 Jan Synáček <jsynacek(a)redhat.com> - 2.4.39-3
- fix: remove correct tmp file when generating server cert (#1103102)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1103102 - generate-server-cert.sh leaves security relevant tmp files behind
https://bugzilla.redhat.com/show_bug.cgi?id=1103102
--------------------------------------------------------------------------------
================================================================================
php-5.5.13-1.fc19 (FEDORA-2014-6904)
PHP scripting language for creating dynamic web sites
--------------------------------------------------------------------------------
Update Information:
29 May 2014, PHP 5.5.13
CLI server:
* Fixed bug #67079 (Missing MIME types for XML/XSL files). (Anatol)
COM:
* Fixed bug #66431 (Special Character via COM Interface (CP_UTF8)). (Anatol)
Core:
* Fixed bug #65701 (copy() doesn't work when destination filename is created by
tempnam()). (Boro Sitnikovski)
* Fixed bug #67072 (Echoing unserialized "SplFileObject" crash). (Anatol)
* Fixed bug #67245 (usage of memcpy() with overlapping src and dst in zend_exceptions.c).
(Bob)
* Fixed bug #67247 (spl_fixedarray_resize integer overflow). (Stas)
* Fixed bug #67249 (printf out-of-bounds read). (Stas)
* Fixed bug #67250 (iptcparse out-of-bounds read). (Stas)
* Fixed bug #67252 (convert_uudecode out-of-bounds read). (Stas)
Curl:
* Fixed bug #64247 (CURLOPT_INFILE doesn't allow reset). (Mike)
Date:
* Fixed bug #67118 (DateTime constructor crash with invalid data). (Anatol)
* Fixed bug #67251 (date_parse_from_format out-of-bounds read). (Stas)
* Fixed bug #67253 (timelib_meridian_with_check out-of-bounds read). (Stas)
DOM:
* Fixed bug #67081 (DOMDocumentType->internalSubset returns entire DOCTYPE tag, not
only the subset). (Anatol)
Fileinfo:
* Fixed bug #66307 (Fileinfo crashes with powerpoint files). (Anatol)
* Fixed bug #67327 (fileinfo: CDF infinite loop in nelements DoS) (CVE-2014-0238).
* Fixed bug #67328 (fileinfo: fileinfo: numerous file_printf calls resulting in
performance degradation) (CVE-2014-0237).
FPM:
* Fixed bug #66908 (php-fpm reload leaks epoll_create() file descriptor). (Julio Pintos)
GD:
* Fixed bug #67248 (imageaffinematrixget missing check of parameters). (Stas)
PCRE:
* Fixed bug #67238 (Ungreedy and min/max quantifier bug, applied patch from the upstream).
(Anatol)
Phar:
* Fix bug #64498 ($phar->buildFromDirectory can't compress file with an accent in
its name). (PR #588)
--------------------------------------------------------------------------------
ChangeLog:
* Fri May 30 2014 Remi Collet <rcollet(a)redhat.com> 5.5.13-1
- Update to 5.5.13
http://www.php.net/releases/5_5_13.php
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1103223 - PHPUnit compatibility with PHP 5.5.13
https://bugzilla.redhat.com/show_bug.cgi?id=1103223
[ 2 ] Bug #1103219 - Doctrine compatitility with PHP 5.5.13
https://bugzilla.redhat.com/show_bug.cgi?id=1103219
--------------------------------------------------------------------------------
================================================================================
php-doctrine-orm-2.4.2-2.fc19 (FEDORA-2014-6904)
Doctrine Object-Relational-Mapper (ORM)
--------------------------------------------------------------------------------
Update Information:
29 May 2014, PHP 5.5.13
CLI server:
* Fixed bug #67079 (Missing MIME types for XML/XSL files). (Anatol)
COM:
* Fixed bug #66431 (Special Character via COM Interface (CP_UTF8)). (Anatol)
Core:
* Fixed bug #65701 (copy() doesn't work when destination filename is created by
tempnam()). (Boro Sitnikovski)
* Fixed bug #67072 (Echoing unserialized "SplFileObject" crash). (Anatol)
* Fixed bug #67245 (usage of memcpy() with overlapping src and dst in zend_exceptions.c).
(Bob)
* Fixed bug #67247 (spl_fixedarray_resize integer overflow). (Stas)
* Fixed bug #67249 (printf out-of-bounds read). (Stas)
* Fixed bug #67250 (iptcparse out-of-bounds read). (Stas)
* Fixed bug #67252 (convert_uudecode out-of-bounds read). (Stas)
Curl:
* Fixed bug #64247 (CURLOPT_INFILE doesn't allow reset). (Mike)
Date:
* Fixed bug #67118 (DateTime constructor crash with invalid data). (Anatol)
* Fixed bug #67251 (date_parse_from_format out-of-bounds read). (Stas)
* Fixed bug #67253 (timelib_meridian_with_check out-of-bounds read). (Stas)
DOM:
* Fixed bug #67081 (DOMDocumentType->internalSubset returns entire DOCTYPE tag, not
only the subset). (Anatol)
Fileinfo:
* Fixed bug #66307 (Fileinfo crashes with powerpoint files). (Anatol)
* Fixed bug #67327 (fileinfo: CDF infinite loop in nelements DoS) (CVE-2014-0238).
* Fixed bug #67328 (fileinfo: fileinfo: numerous file_printf calls resulting in
performance degradation) (CVE-2014-0237).
FPM:
* Fixed bug #66908 (php-fpm reload leaks epoll_create() file descriptor). (Julio Pintos)
GD:
* Fixed bug #67248 (imageaffinematrixget missing check of parameters). (Stas)
PCRE:
* Fixed bug #67238 (Ungreedy and min/max quantifier bug, applied patch from the upstream).
(Anatol)
Phar:
* Fix bug #64498 ($phar->buildFromDirectory can't compress file with an accent in
its name). (PR #588)
--------------------------------------------------------------------------------
ChangeLog:
* Fri May 30 2014 Remi Collet <remi(a)fedoraproject.org> 2.4.2-2
- upstream fix for latest PHP (#1103219)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1103223 - PHPUnit compatibility with PHP 5.5.13
https://bugzilla.redhat.com/show_bug.cgi?id=1103223
[ 2 ] Bug #1103219 - Doctrine compatitility with PHP 5.5.13
https://bugzilla.redhat.com/show_bug.cgi?id=1103219
--------------------------------------------------------------------------------
================================================================================
php-pear-text-wiki-1.2.1-3.fc19 (FEDORA-2014-6907)
Transforms Wiki and BBCode markup into XHTML, LaTeX or plain text
--------------------------------------------------------------------------------
Update Information:
Transforms Wiki and BBCode markup into XHTML, LaTeX or plain text markup. This is the base
engine for all of the Text_Wiki sub-classes
The text transformation is done in 2 steps. The chosen parser uses markup rules to
tokenize the tags and content.
Renderers output the tokens and text into the requested format. The tokenized form
replaces the tags by a protected byte value associated
to an index in an options table. This form shares up to 50 rules by all parsers and
renderers.
The package is intented for versatile transformers as well as converters. Text_Wiki is
delivered with its own parser, which is used by Yawiki or Horde's Wicked and three
basic renderers: XHTML , LaTeX and plain text. Strong sanitizing of XHTML is default.
It is highly configurable and can be easily extended.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1098625 - Review Request: php-pear-text-wiki - Transforms Wiki and BBCode
markup into XHTML, LaTeX or plain text
https://bugzilla.redhat.com/show_bug.cgi?id=1098625
--------------------------------------------------------------------------------
================================================================================
php-phpunit-PHPUnit-MockObject-1.2.3-4.fc19 (FEDORA-2014-6904)
Mock Object library for PHPUnit
--------------------------------------------------------------------------------
Update Information:
29 May 2014, PHP 5.5.13
CLI server:
* Fixed bug #67079 (Missing MIME types for XML/XSL files). (Anatol)
COM:
* Fixed bug #66431 (Special Character via COM Interface (CP_UTF8)). (Anatol)
Core:
* Fixed bug #65701 (copy() doesn't work when destination filename is created by
tempnam()). (Boro Sitnikovski)
* Fixed bug #67072 (Echoing unserialized "SplFileObject" crash). (Anatol)
* Fixed bug #67245 (usage of memcpy() with overlapping src and dst in zend_exceptions.c).
(Bob)
* Fixed bug #67247 (spl_fixedarray_resize integer overflow). (Stas)
* Fixed bug #67249 (printf out-of-bounds read). (Stas)
* Fixed bug #67250 (iptcparse out-of-bounds read). (Stas)
* Fixed bug #67252 (convert_uudecode out-of-bounds read). (Stas)
Curl:
* Fixed bug #64247 (CURLOPT_INFILE doesn't allow reset). (Mike)
Date:
* Fixed bug #67118 (DateTime constructor crash with invalid data). (Anatol)
* Fixed bug #67251 (date_parse_from_format out-of-bounds read). (Stas)
* Fixed bug #67253 (timelib_meridian_with_check out-of-bounds read). (Stas)
DOM:
* Fixed bug #67081 (DOMDocumentType->internalSubset returns entire DOCTYPE tag, not
only the subset). (Anatol)
Fileinfo:
* Fixed bug #66307 (Fileinfo crashes with powerpoint files). (Anatol)
* Fixed bug #67327 (fileinfo: CDF infinite loop in nelements DoS) (CVE-2014-0238).
* Fixed bug #67328 (fileinfo: fileinfo: numerous file_printf calls resulting in
performance degradation) (CVE-2014-0237).
FPM:
* Fixed bug #66908 (php-fpm reload leaks epoll_create() file descriptor). (Julio Pintos)
GD:
* Fixed bug #67248 (imageaffinematrixget missing check of parameters). (Stas)
PCRE:
* Fixed bug #67238 (Ungreedy and min/max quantifier bug, applied patch from the upstream).
(Anatol)
Phar:
* Fix bug #64498 ($phar->buildFromDirectory can't compress file with an accent in
its name). (PR #588)
--------------------------------------------------------------------------------
ChangeLog:
* Fri May 30 2014 Remi Collet <remi(a)fedoraproject.org> - 1.2.3-4
- upstream fix for latest PHP (#1103223)
* Sun Aug 4 2013 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
1.2.3-3
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1103223 - PHPUnit compatibility with PHP 5.5.13
https://bugzilla.redhat.com/show_bug.cgi?id=1103223
[ 2 ] Bug #1103219 - Doctrine compatitility with PHP 5.5.13
https://bugzilla.redhat.com/show_bug.cgi?id=1103219
--------------------------------------------------------------------------------
================================================================================
python-django-extensions-1.3.7-1.fc19 (FEDORA-2014-6889)
Extensions for Django
--------------------------------------------------------------------------------
Update Information:
New version
New version.
--------------------------------------------------------------------------------
ChangeLog:
* Thu May 29 2014 Richard Marko <rmarko(a)fedoraproject.org> - 1.3.7-1
- New version
* Thu Oct 24 2013 Richard Marko <rmarko(a)fedoraproject.org> - 1.2.5-1
- New version
* Sun Aug 4 2013 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
1.1.1-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1001129 - python-django-extensions-1.2.5 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1001129
--------------------------------------------------------------------------------
================================================================================
python-flask-login-0.2.11-1.fc19 (FEDORA-2014-6916)
User session management for Flask
--------------------------------------------------------------------------------
Update Information:
Update to 0.2.11
--------------------------------------------------------------------------------
ChangeLog:
* Fri May 30 2014 Richard Marko <rmarko(a)fedoraproject.org> - 0.2.11-1
- Update to 0.2.11
--------------------------------------------------------------------------------
================================================================================
python-okaara-1.0.34-1.fc19 (FEDORA-2014-6899)
Python command line utilities
--------------------------------------------------------------------------------
Update Information:
Updated to 1.0.34
--------------------------------------------------------------------------------
ChangeLog:
* Wed May 28 2014 Jay Dobies <jason.dobies(a)redhat.com> 1.0.34-1
- Added build requirement on python-mock (jason.dobies(a)redhat.com)
* Wed May 28 2014 Jay Dobies <jason.dobies(a)redhat.com> 1.0.33-1
- fixing a bug where prompting for password in python 2.4 caused an error
(mhrivnak(a)redhat.com)
- Updated project URL (jason.dobies(a)redhat.com)
- Initial addition of extension functionality (jason.dobies(a)redhat.com)
- Added simple validators for the Option validate_func
(jason.dobies(a)redhat.com)
- Added general int parser (jason.dobies(a)redhat.com)
--------------------------------------------------------------------------------
================================================================================
qt3-3.3.8b-58.fc19 (FEDORA-2014-6896)
The shared library for the Qt 3 GUI toolkit
--------------------------------------------------------------------------------
Update Information:
This update fixes a DoS in the Qt 3 GIF image handler (CVE-2014-0190, QTBUG-38367),
through a patch backported from Qt 4.
It also fixes the path settings in qt.sh for ppc64le, and in qt.csh for both ppc64 and
ppc64le.
--------------------------------------------------------------------------------
ChangeLog:
* Thu May 29 2014 Kevin Kofler <Kevin(a)tigcc.ticalc.org> - 3.3.8b-58
- backport CVE-2014-0190 (GIF image handler DoS, QTBUG-38367) fix from Qt 4
* Sun Feb 23 2014 Kevin Kofler <Kevin(a)tigcc.ticalc.org> - 3.3.8b-57
- add ppc64le support to qt.sh and qt.csh (#1068898)
- fix ppc64 support in qt.csh
- search for FreeType using pkg-config, fixes FTBFS with freetype >= 2.5.1
--------------------------------------------------------------------------------
================================================================================
rubygem-narray-0.6.0.9-1.fc19 (FEDORA-2014-6920)
N-dimensional Numerical Array class for Ruby
--------------------------------------------------------------------------------
Update Information:
new upstream release
--------------------------------------------------------------------------------
ChangeLog:
* Fri May 30 2014 Björn Esser <bjoern.esser(a)gmail.com> - 0.6.0.9-1
- new upstream release (#1103230)
* Mon May 26 2014 Björn Esser <bjoern.esser(a)gmail.com> - 0.6.0.8-14
- preserve `%{gem_extdir_mri}/gem.build_complete` on Fedora >= 21
- no need to modify gemspec
* Sat May 17 2014 Björn Esser <bjoern.esser(a)gmail.com> - 0.6.0.8-13
- fix gemspec on Fedora >= 21
- remove `%{gem_extdir_mri}/gem_make.out` again
* Sat May 17 2014 Björn Esser <bjoern.esser(a)gmail.com> - 0.6.0.8-12
- one must NOT delete `%{gem_extdir_mri}/gem_make.out`
* Thu May 1 2014 Björn Esser <bjoern.esser(a)gmail.com> - 0.6.0.8-11
- rebuilt for libruby.so.2.0() so-name bump
* Sun Dec 22 2013 Björn Esser <bjoern.esser(a)gmail.com> - 0.6.0.8-10
- package must not obsolete itself
- improved indention
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1103230 - rubygem-narray-0.6.0.9 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1103230
--------------------------------------------------------------------------------