The following Fedora 20 Security updates need testing:
Age URL
73
https://admin.fedoraproject.org/updates/FEDORA-2014-5897/nrpe-2.15-2.fc20
53
https://admin.fedoraproject.org/updates/FEDORA-2014-6551/chicken-4.8.0.6-...
51
https://admin.fedoraproject.org/updates/FEDORA-2014-6615/drupal7-views-3....
24
https://admin.fedoraproject.org/updates/FEDORA-2014-7523/readline-6.2-10....
22
https://admin.fedoraproject.org/updates/FEDORA-2014-7551/asterisk-11.10.2...
22
https://admin.fedoraproject.org/updates/FEDORA-2014-7613/perl-Email-Addre...
19
https://admin.fedoraproject.org/updates/FEDORA-2014-7697/dpkg-1.16.15-1.fc20
13
https://admin.fedoraproject.org/updates/FEDORA-2014-7936/python3-3.3.2-16...
8
https://admin.fedoraproject.org/updates/FEDORA-2014-8099/lz4-r119-1.fc20
4
https://admin.fedoraproject.org/updates/FEDORA-2014-8189/krb5-1.11.5-8.fc20
4
https://admin.fedoraproject.org/updates/FEDORA-2014-8227/ocsinventory-2.0...
4
https://admin.fedoraproject.org/updates/FEDORA-2014-8208/libXfont-1.4.8-1...
4
https://admin.fedoraproject.org/updates/FEDORA-2014-8065/rubygem-activere...
2
https://admin.fedoraproject.org/updates/FEDORA-2014-7657/couchdb-1.6.0-9....
1
https://admin.fedoraproject.org/updates/FEDORA-2014-7896/zarafa-7.1.10-2....
1
https://admin.fedoraproject.org/updates/FEDORA-2014-5497/openstack-keysto...
0
https://admin.fedoraproject.org/updates/FEDORA-2014-8308/php-ZendFramewor...
0
https://admin.fedoraproject.org/updates/FEDORA-2014-8316/polarssl-1.2.11-...
0
https://admin.fedoraproject.org/updates/FEDORA-2014-8334/python-bottle-0....
0
https://admin.fedoraproject.org/updates/FEDORA-2014-8331/transmission-2.8...
The following Fedora 20 Critical Path updates have yet to be approved:
Age URL
12
https://admin.fedoraproject.org/updates/FEDORA-2014-7968/perl-Pod-Usage-1...
8
https://admin.fedoraproject.org/updates/FEDORA-2014-8109/libfm-1.2.1-1.fc...
1
https://admin.fedoraproject.org/updates/FEDORA-2014-8305/gdb-7.7.1-17.fc20
The following builds have been pushed to Fedora 20 updates-testing
ProDy-1.5.1-3.fc20
python-bottle-0.12.6-1.fc20
python-docker-py-0.3.2-1.fc20
spectrwm-2.5.1-1.fc20
tkgate-2.0-20.beta10.fc20
transmission-2.84-1.fc20
Details about builds:
================================================================================
ProDy-1.5.1-3.fc20 (FEDORA-2014-8333)
Application for protein structure, dynamics and sequence analysis
--------------------------------------------------------------------------------
Update Information:
* Some fixes based on Python guidelines.
--------------------------------------------------------------------------------
ChangeLog:
* Sat Jul 12 2014 Antonio Trande <sagitter(a)fedoraproject.org> 1.5.1-3
- Some fixes based on Python guidelines
* Fri Jun 6 2014 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
1.5.1-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
python-bottle-0.12.6-1.fc20 (FEDORA-2014-8334)
Fast and simple WSGI-framework for small web-applications
--------------------------------------------------------------------------------
Update Information:
resolves rhbz#1093257 - JSON content type not restrictive enough
--------------------------------------------------------------------------------
ChangeLog:
* Sat Jul 12 2014 Rahul Sundaram <sundaram(a)fedoraproject.org> - 0.12.6-1
- resolves rhbz#1093257 - JSON content type not restrictive enough
* Sat Jun 7 2014 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
0.11.6-4
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild
* Mon May 19 2014 Bohuslav Kabrda <bkabrda(a)redhat.com> - 0.11.6-3
- Rebuilt for
https://fedoraproject.org/wiki/Changes/Python_3.4
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1093255 - CVE-2014-3137 python-bottle: JSON content-type not restrictive
enough
https://bugzilla.redhat.com/show_bug.cgi?id=1093255
--------------------------------------------------------------------------------
================================================================================
python-docker-py-0.3.2-1.fc20 (FEDORA-2014-8337)
An API client for docker written in Python
--------------------------------------------------------------------------------
Update Information:
version bump to 0.3.2
--------------------------------------------------------------------------------
ChangeLog:
* Sat Jul 12 2014 Lokesh Mandvekar <lsm5(a)fedoraproject.org> - 0.3.2-1
- version bump to 0.3.2
- Resolves: rhbz#1097415
* Sat Jun 7 2014 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
0.2.3-9
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1097415 - python-docker-py missing requires: python-six
https://bugzilla.redhat.com/show_bug.cgi?id=1097415
--------------------------------------------------------------------------------
================================================================================
spectrwm-2.5.1-1.fc20 (FEDORA-2014-8325)
Minimalist tiling window manager written in C
--------------------------------------------------------------------------------
Update Information:
Resolves: rhbz#1095890 - upstream version bump to 2.5.1
--------------------------------------------------------------------------------
ChangeLog:
* Sun Jul 13 2014 Lokesh Mandvekar <lsm5(a)fedoraproject.org> - 2.5.1-1
- Resolves: rhbz#1095890 - upstream version bump to 2.5.1
- Resolves: rhbz#1095967 - spectrwm packaging issues
- generate and install appropriate licenses
* Sun Jun 8 2014 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
2.5.0-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1095890 - spectrwm-2.5.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1095890
[ 2 ] Bug #1095967 - Packaging Issues
https://bugzilla.redhat.com/show_bug.cgi?id=1095967
--------------------------------------------------------------------------------
================================================================================
tkgate-2.0-20.beta10.fc20 (FEDORA-2014-8336)
An event driven digital circuit simulator
--------------------------------------------------------------------------------
Update Information:
--------------------------------------------------------------------------------
ChangeLog:
* Sat Jul 12 2014 Ralf Corsépius <corsepiu(a)fedoraproject.org> - 2.0-20.beta10
- Append -DUSE_INTERP_RESULT to CFLAGS to work-around Tcl/Tk-8.6
incompatibilities (FTBFS RHBZ #1107452).
- Adopt tkgate-2.0-typos.patch, tkgate-2.0-hardening.patch from Debian
(FTBFS RHBZ #1107452, RHBZ #1037359).
- Partially modernize spec.
- Don't ship *.orig2 editor backup files.
- Make locale packages noarch.
- Fix paths to tools.
- Rebase patches.
- Reflect Source0: having changed.
* Sat Jul 12 2014 Ville Skyttä <ville.skytta(a)iki.fi> - 2.0-19.beta10
- Don't ship editor backup files
- Fix bogus dates in %changelog
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1037359 - tkgate FTBFS if "-Werror=format-security" flag is used
https://bugzilla.redhat.com/show_bug.cgi?id=1037359
[ 2 ] Bug #1087077 - Don't ship editor backup files
https://bugzilla.redhat.com/show_bug.cgi?id=1087077
[ 3 ] Bug #1107452 - tkgate: FTBFS in rawhide
https://bugzilla.redhat.com/show_bug.cgi?id=1107452
--------------------------------------------------------------------------------
================================================================================
transmission-2.84-1.fc20 (FEDORA-2014-8331)
A lightweight GTK+ BitTorrent client
--------------------------------------------------------------------------------
Update Information:
update to 2.84
--------------------------------------------------------------------------------
ChangeLog:
* Sat Jul 12 2014 Rahul Sundaram <sundaram(a)fedoraproject.org> - 2.84-1
- update to 2.84
- resolves rhbz#1118291 - peer communication vulnerability
* Sun Jun 8 2014 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
2.83-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild
* Sun May 25 2014 Ankur Sinha <ankursinha AT fedoraproject DOT org> 2.83-1
- Updated to 2.83
-
https://trac.transmissionbt.com/wiki/Changes
- Remove patch:
https://trac.transmissionbt.com/ticket/5465
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1118290 - CVE-2014-4909 transmission: peer communication vulnerability
https://bugzilla.redhat.com/show_bug.cgi?id=1118290
--------------------------------------------------------------------------------