The following Fedora 19 Security updates need testing:
Age URL
138
https://admin.fedoraproject.org/updates/FEDORA-2013-19963/openstack-glanc...
75
https://admin.fedoraproject.org/updates/FEDORA-2013-24023/varnish-3.0.5-1...
56
https://admin.fedoraproject.org/updates/FEDORA-2014-0797/libinfinity-0.5....
29
https://admin.fedoraproject.org/updates/FEDORA-2014-2260/NetworkManager-s...
26
https://admin.fedoraproject.org/updates/FEDORA-2014-2445/augeas-1.2.0-1.fc19
26
https://admin.fedoraproject.org/updates/FEDORA-2014-2439/maradns-2.0.09-1...
21
https://admin.fedoraproject.org/updates/FEDORA-2014-2710/zabbix-2.0.11-2....
19
https://admin.fedoraproject.org/updates/FEDORA-2014-2825/postgresql-9.2.7...
6
https://admin.fedoraproject.org/updates/FEDORA-2014-3485/libssh-0.6.3-1.fc19
6
https://admin.fedoraproject.org/updates/FEDORA-2014-3453/catfish-0.4.0.2-...
6
https://admin.fedoraproject.org/updates/FEDORA-2014-3493/mingw-gnutls-3.1...
5
https://admin.fedoraproject.org/updates/FEDORA-2014-3573/rubygem-rbovirt-...
5
https://admin.fedoraproject.org/updates/FEDORA-2014-3567/subversion-1.7.1...
5
https://admin.fedoraproject.org/updates/FEDORA-2014-3589/file-5.11-13.fc19
5
https://admin.fedoraproject.org/updates/FEDORA-2014-3537/php-5.5.10-1.fc19
2
https://admin.fedoraproject.org/updates/FEDORA-2014-3696/wireshark-1.10.6...
2
https://admin.fedoraproject.org/updates/FEDORA-2014-3714/udisks2-2.1.2-2....
0
https://admin.fedoraproject.org/updates/FEDORA-2014-3771/cups-filters-1.0...
0
https://admin.fedoraproject.org/updates/FEDORA-2014-3782/jansson-2.6-1.fc19
0
https://admin.fedoraproject.org/updates/FEDORA-2014-3779/asterisk-11.8.1-...
0
https://admin.fedoraproject.org/updates/FEDORA-2014-3812/springframework-...
0
https://admin.fedoraproject.org/updates/FEDORA-2014-3791/libmodplug-0.8.8...
0
https://admin.fedoraproject.org/updates/FEDORA-2014-3815/samba-4.0.16-1.fc19
The following Fedora 19 Critical Path updates have yet to be approved:
Age URL
86
https://admin.fedoraproject.org/updates/FEDORA-2013-22326/fedora-bookmark...
12
https://admin.fedoraproject.org/updates/FEDORA-2014-3243/cryptsetup-1.6.4...
12
https://admin.fedoraproject.org/updates/FEDORA-2014-3245/testdisk-6.14-2....
11
https://admin.fedoraproject.org/updates/FEDORA-2014-3179/kde-workspace-4....
8
https://admin.fedoraproject.org/updates/FEDORA-2014-3367/nss-util-3.15.5-...
6
https://admin.fedoraproject.org/updates/FEDORA-2014-3450/bind-9.9.3-15.P2...
5
https://admin.fedoraproject.org/updates/FEDORA-2014-3605/abrt-2.2.0-1.fc1...
5
https://admin.fedoraproject.org/updates/FEDORA-2014-3589/file-5.11-13.fc19
5
https://admin.fedoraproject.org/updates/FEDORA-2014-3619/ibus-1.5.6-1.fc19
4
https://admin.fedoraproject.org/updates/FEDORA-2014-3651/kernel-3.13.6-10...
2
https://admin.fedoraproject.org/updates/FEDORA-2014-3714/udisks2-2.1.2-2....
2
https://admin.fedoraproject.org/updates/FEDORA-2014-3340/gdisk-0.8.10-2.fc19
0
https://admin.fedoraproject.org/updates/FEDORA-2014-3815/samba-4.0.16-1.fc19
The following builds have been pushed to Fedora 19 updates-testing
dmlite-0.6.2-1.fc19
dmlite-shell-0.6.2-2.fc19
elixir-0.12.5-1.fc19
gscan2pdf-1.2.3-1.fc19
ibus-table-1.5.0.20140312-1.fc19
ktp-accounts-kcm-0.8.0-1.fc19
ktp-approver-0.8.0-1.fc19
ktp-auth-handler-0.8.0-1.fc19
ktp-call-ui-0.8.0-1.fc19
ktp-common-internals-0.8.0-1.fc19
ktp-contact-list-0.8.0-1.fc19
ktp-contact-runner-0.8.0-1.fc19
ktp-desktop-applets-0.8.0-1.fc19
ktp-filetransfer-handler-0.8.0-1.fc19
ktp-kded-integration-module-0.8.0-1.fc19
ktp-send-file-0.8.0-1.fc19
ktp-text-ui-0.8.0-1.fc19
libkpeople-0.2.1-1.fc19
libmodplug-0.8.8.5-1.fc19
nodejs-ansistyles-0.1.3-3.fc19
perl-Digest-SHA-5.85-2.fc19
perl-PDF-API2-2.021-1.fc19
powerline-0.0.1-6.20140226git70a94e.fc19
python-behave-1.2.3-9.fc19
qt5-qtbase-5.2.1-6.fc19
samba-4.0.16-1.fc19
springframework-security-3.1.6-1.fc19
Details about builds:
================================================================================
dmlite-0.6.2-1.fc19 (FEDORA-2014-3810)
Common libraries for grid data management and storage
--------------------------------------------------------------------------------
Update Information:
dmlite release 0.6.2
--------------------------------------------------------------------------------
ChangeLog:
* Tue Mar 11 2014 Adrien Devresse <adevress at cern.ch> - 0.6.2-1
- dmlite release 0.6.2
--------------------------------------------------------------------------------
================================================================================
dmlite-shell-0.6.2-2.fc19 (FEDORA-2014-3790)
Shell environment for dmlite
--------------------------------------------------------------------------------
Update Information:
Fedora/EPEL push dmlite shell 0.6.2
Initial import
--------------------------------------------------------------------------------
================================================================================
elixir-0.12.5-1.fc19 (FEDORA-2014-3803)
A modern approach to programming for the Erlang VM
--------------------------------------------------------------------------------
Update Information:
Update to upstream 0.12.5.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Mar 12 2014 Ricky Elrod <codeblock(a)fedoraproject.org> - 0.12.5-1
- Update to upstream 0.12.5.
* Thu Feb 13 2014 Ricky Elrod <codeblock(a)fedoraproject.org> - 0.12.4-1
- Update to upstream 0.12.4.
* Tue Feb 4 2014 Ricky Elrod <codeblock(a)fedoraproject.org> - 0.12.3-1
- Update to upstream 0.12.3.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1074886 - elixir-0.12.5 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1074886
--------------------------------------------------------------------------------
================================================================================
gscan2pdf-1.2.3-1.fc19 (FEDORA-2014-3786)
GUI for producing a multipage PDF from a scan
--------------------------------------------------------------------------------
Update Information:
v 1.2.3 (bz #1034069)
--------------------------------------------------------------------------------
ChangeLog:
* Tue Mar 11 2014 Bernard Johnson <bjohnson(a)symetirx.com> - 1.2.3-1
- v 1.2.3 (bz #1034069)
- substitute a sed command to change gconftool-2 change
* Sat Aug 3 2013 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
1.1.3-4
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
* Thu Jul 18 2013 Petr Pisar <ppisar(a)redhat.com> - 1.1.3-3
- Perl 5.18 rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1034069 - gscan2pdf-1.2.3 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1034069
--------------------------------------------------------------------------------
================================================================================
ibus-table-1.5.0.20140312-1.fc19 (FEDORA-2014-3801)
The Table engine for IBus platform
--------------------------------------------------------------------------------
Update Information:
fix another regression introduced by the Python3 port (a spelling mistake in a variable
name)
--------------------------------------------------------------------------------
ChangeLog:
* Wed Mar 12 2014 Mike FABIAN <mfabian(a)redhat.com> - 1.5.0.20140312-1
- update to latest upstream
- fix another regression introduced by the Python3 port (a spelling mistake in a variable
name)
- Resolves: rhbz#1072940
* Tue Mar 11 2014 Mike FABIAN <mfabian(a)redhat.com> - 1.5.0.20140311-1
- update to latest upstream
- fix a regression introduced by the Python3 port
- add a .desktop file and make the setup tool work with Gnome
- make it possible to interrupt the setup tool with Control-C from the command line
* Thu Mar 6 2014 Mike FABIAN <mfabian(a)redhat.com> - 1.5.0.20140306-1
- update to latest upstream
- Resolves: rhbz#1072940 - Left Shift stopped work for
ibus-table-1.5.0.20140218-1.fc20.noarch
- port from Python2 to Python3, require Python3 in this rpm now
- fix directory for setup tool, setup tool should work now
- add profiling support
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1072940 - Left Shift stopped work for
ibus-table-1.5.0.20140218-1.fc20.noarch
https://bugzilla.redhat.com/show_bug.cgi?id=1072940
--------------------------------------------------------------------------------
================================================================================
ktp-accounts-kcm-0.8.0-1.fc19 (FEDORA-2014-3807)
KDE Configuration Module for Telepathy Instant Messaging Accounts
--------------------------------------------------------------------------------
Update Information:
KDE Telepathy 0.8.0 release.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Mar 12 2014 Jan Grulich <jgrulich(a)redhat.com> 0.8.0-1
- 0.8.0
* Wed Feb 26 2014 Jan Grulich <jgrulich(a)redhat.com> - 0.7.80-1
- 0.7.80
--------------------------------------------------------------------------------
================================================================================
ktp-approver-0.8.0-1.fc19 (FEDORA-2014-3807)
KDE Channel Approver for Telepathy
--------------------------------------------------------------------------------
Update Information:
KDE Telepathy 0.8.0 release.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Mar 12 2014 Jan Grulich <jgrulich(a)redhat.com> 0.8.0-1
- 0.8.0
* Wed Feb 26 2014 Jan Grulich <jgrulich(a)redhat.com> - 0.7.80-1
- 0.7.80
--------------------------------------------------------------------------------
================================================================================
ktp-auth-handler-0.8.0-1.fc19 (FEDORA-2014-3807)
Provide UI/KWallet Integration
--------------------------------------------------------------------------------
Update Information:
KDE Telepathy 0.8.0 release.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Mar 12 2014 Jan Grulich <jgrulich(a)redhat.com> 0.8.0-1
- 0.8.0
* Wed Feb 26 2014 Jan Grulich <jgrulich(a)redhat.com> - 0.7.80-1
- 0.7.80
--------------------------------------------------------------------------------
================================================================================
ktp-call-ui-0.8.0-1.fc19 (FEDORA-2014-3807)
Telepathy call handler
--------------------------------------------------------------------------------
Update Information:
KDE Telepathy 0.8.0 release.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Mar 12 2014 Jan Grulich <jgrulich(a)redhat.com> 0.8.0-1
- 0.8.0
* Wed Feb 26 2014 Jan Grulich <jgrulich(a)redhat.com> - 0.7.80-1
- 0.7.80
--------------------------------------------------------------------------------
================================================================================
ktp-common-internals-0.8.0-1.fc19 (FEDORA-2014-3807)
Common internals for KDE Telepathy
--------------------------------------------------------------------------------
Update Information:
KDE Telepathy 0.8.0 release.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Mar 12 2014 Jan Grulich <jgrulich(a)redhat.com> 0.8.0-1
- 0.8.0
* Tue Feb 25 2014 Jan Grulich <jgrulich(a)redhat.com> 0.7.80-1
- 0.7.80
--------------------------------------------------------------------------------
================================================================================
ktp-contact-list-0.8.0-1.fc19 (FEDORA-2014-3807)
Telepathy contact list application
--------------------------------------------------------------------------------
Update Information:
KDE Telepathy 0.8.0 release.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Mar 12 2014 Jan Grulich <jgrulich(a)redhat.com> 0.8.0-1
- 0.8.0
* Wed Feb 26 2014 Jan Grulich <jgrulich(a)redhat.com> - 0.7.80-1
- 0.7.80
--------------------------------------------------------------------------------
================================================================================
ktp-contact-runner-0.8.0-1.fc19 (FEDORA-2014-3807)
Plasma runner for KDE Telepathy
--------------------------------------------------------------------------------
Update Information:
KDE Telepathy 0.8.0 release.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Mar 12 2014 Jan Grulich <jgrulich(a)redhat.com> 0.8.0-1
- 0.8.0
* Wed Feb 26 2014 Jan Grulich <jgrulich(a)redhat.com> - 0.7.80-1
- 0.7.80
--------------------------------------------------------------------------------
================================================================================
ktp-desktop-applets-0.8.0-1.fc19 (FEDORA-2014-3807)
KDE Telepathy desktop applets
--------------------------------------------------------------------------------
Update Information:
KDE Telepathy 0.8.0 release.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Mar 12 2014 Jan Grulich <jgrulich(a)redhat.com> 0.8.0-1
- 0.8.0
* Wed Feb 26 2014 Jan Grulich <jgrulich(a)redhat.com> - 0.7.80-1
- 0.7.80
--------------------------------------------------------------------------------
================================================================================
ktp-filetransfer-handler-0.8.0-1.fc19 (FEDORA-2014-3807)
Telepathy file transfer handler
--------------------------------------------------------------------------------
Update Information:
KDE Telepathy 0.8.0 release.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Mar 12 2014 Jan Grulich <jgrulich(a)redhat.com> 0.8.0-1
- 0.8.0
* Wed Feb 26 2014 Jan Grulich <jgrulich(a)redhat.com> - 0.7.80-1
- 0.7.80
--------------------------------------------------------------------------------
================================================================================
ktp-kded-integration-module-0.8.0-1.fc19 (FEDORA-2014-3807)
KDE integration for telepathy
--------------------------------------------------------------------------------
Update Information:
KDE Telepathy 0.8.0 release.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Mar 12 2014 Jan Grulich <jgrulich(a)redhat.com> 0.8.0-1
- 0.8.0
* Wed Feb 26 2014 Jan Grulich <jgrulich(a)redhat.com> - 0.7.80-1
- 0.7.80
--------------------------------------------------------------------------------
================================================================================
ktp-send-file-0.8.0-1.fc19 (FEDORA-2014-3807)
A File manager plugin to launch file transfer jobs
--------------------------------------------------------------------------------
Update Information:
KDE Telepathy 0.8.0 release.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Mar 12 2014 Jan Grulich <jgrulich(a)redhat.com> 0.8.0-1
- 0.8.0
* Wed Feb 26 2014 Jan Grulich <jgrulich(a)redhat.com> - 0.7.80-1
- 0.7.80
--------------------------------------------------------------------------------
================================================================================
ktp-text-ui-0.8.0-1.fc19 (FEDORA-2014-3807)
Telepathy text chat handler
--------------------------------------------------------------------------------
Update Information:
KDE Telepathy 0.8.0 release.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Mar 12 2014 Jan Grulich <jgrulich(a)redhat.com> 0.8.0-1
- 0.8.0
* Wed Feb 26 2014 Jan Grulich <jgrulich(a)redhat.com> - 0.7.80-1
- 0.7.80
--------------------------------------------------------------------------------
================================================================================
libkpeople-0.2.1-1.fc19 (FEDORA-2014-3807)
Meta-contact aggregation library
--------------------------------------------------------------------------------
Update Information:
KDE Telepathy 0.8.0 release.
--------------------------------------------------------------------------------
ChangeLog:
--------------------------------------------------------------------------------
================================================================================
libmodplug-0.8.8.5-1.fc19 (FEDORA-2014-3791)
Modplug mod music file format library
--------------------------------------------------------------------------------
Update Information:
Update to version 0.8.8.5, fixes CVE-2013-4233 and CVE-2013-4234.
http://modplug-xmms.sourceforge.net/#news
--------------------------------------------------------------------------------
ChangeLog:
* Mon Mar 10 2014 Ville Skyttä <ville.skytta(a)iki.fi> - 1:0.8.8.5-1
- Update to 0.8.8.5 (CVE-2013-4233, CVE-2013-4234, #995580).
* Sat Aug 3 2013 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
1:0.8.8.4-5
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #995578 - CVE-2013-4233 CVE-2013-4234 libmodplug: ABC file parsing
vulnerabilities
https://bugzilla.redhat.com/show_bug.cgi?id=995578
--------------------------------------------------------------------------------
================================================================================
nodejs-ansistyles-0.1.3-3.fc19 (FEDORA-2014-3806)
Functions that surround a string with ansistyle codes so it prints in style
--------------------------------------------------------------------------------
Update Information:
New package
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1074639 - Review Request: nodejs-ansistyles
https://bugzilla.redhat.com/show_bug.cgi?id=1074639
--------------------------------------------------------------------------------
================================================================================
perl-Digest-SHA-5.85-2.fc19 (FEDORA-2014-3800)
Perl extension for SHA-1/224/256/384/512
--------------------------------------------------------------------------------
Update Information:
This release fixes crash when calling methods on uninitialized Digest::SHA methods.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Mar 12 2014 Petr Pisar <ppisar(a)redhat.com> - 1:5.85-2
- Fix possible crash on uninitialized object (bug #1075478)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1075478 - Crash in Digest::SHA if a method is invoked on an uninitialized
object
https://bugzilla.redhat.com/show_bug.cgi?id=1075478
--------------------------------------------------------------------------------
================================================================================
perl-PDF-API2-2.021-1.fc19 (FEDORA-2014-3787)
Perl module for creation and modification of PDF files
--------------------------------------------------------------------------------
Update Information:
v 2.021 (bz #902236)
--------------------------------------------------------------------------------
ChangeLog:
* Tue Mar 11 2014 Bernard Johnson <bjohnson(a)symetrix.com> - 2.021-1
- v 2.021 (bz #902236)
* Sun Aug 4 2013 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> -
2.020-2
- Rebuilt for
https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
* Thu Jul 25 2013 Petr Pisar <ppisar(a)redhat.com> - 2.020-1
- 2.020 bump
* Wed Jul 24 2013 Petr Pisar <ppisar(a)redhat.com> - 2.019-6
- Perl 5.18 rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #902236 - perl-PDF-API2-2.021 is available
https://bugzilla.redhat.com/show_bug.cgi?id=902236
--------------------------------------------------------------------------------
================================================================================
powerline-0.0.1-6.20140226git70a94e.fc19 (FEDORA-2014-3809)
The ultimate status-line/prompt utility
--------------------------------------------------------------------------------
Update Information:
Update to revision 20140226git70a94e.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Mar 12 2014 - Andreas Schneider <asn(a)redhat.com> - 0.0.1-6.20140226git70a94e
- Update to revision 0.0.1-6.20140226git70a94e
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1075307 - [abrt] powerline: update_refs(): python2.7 killed by SIGSEGV
https://bugzilla.redhat.com/show_bug.cgi?id=1075307
[ 2 ] Bug #1075306 - [abrt] powerline: dict_dealloc(): python2.7 killed by SIGSEGV
https://bugzilla.redhat.com/show_bug.cgi?id=1075306
--------------------------------------------------------------------------------
================================================================================
python-behave-1.2.3-9.fc19 (FEDORA-2014-3788)
Tools for the behavior-driven development, Python style
--------------------------------------------------------------------------------
Update Information:
Add two patches provided by Vadim Rutkovsky (fix #1058371 and #1067388)
--------------------------------------------------------------------------------
ChangeLog:
* Wed Mar 12 2014 Matěj Cepl <mcepl(a)redhat.com> - 1.2.3-9
- Add two patches provided by Vadim Rutkovsky (fix #1058371 and
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1058371 - RFE: Support embedding of videos and custom captions
https://bugzilla.redhat.com/show_bug.cgi?id=1058371
[ 2 ] Bug #1067388 - Python-behave crashes when html report is created with invalid
chars are present in error message
https://bugzilla.redhat.com/show_bug.cgi?id=1067388
--------------------------------------------------------------------------------
================================================================================
qt5-qtbase-5.2.1-6.fc19 (FEDORA-2014-3698)
Qt5 - QtBase components
--------------------------------------------------------------------------------
Update Information:
This update fixes the Qt 5 QMake configuration to not strip built binaries, so that
dependent packages get valid -debuginfo packages.
It also enables some build-time dependencies that are not directly used in qt5-qtbase
itself, but make it set some global Qt configuration options when it detects them.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Mar 12 2014 Kevin Kofler <Kevin(a)tigcc.ticalc.org> 5.2.1-6
- reenable documentation
* Sat Mar 8 2014 Kevin Kofler <Kevin(a)tigcc.ticalc.org> 5.2.1-5
- make the QMAKE_STRIP sed not sensitive to whitespace (see #1074041 in Qt 4)
* Tue Feb 18 2014 Rex Dieter <rdieter(a)fedoraproject.org> 5.2.1-4
- undefine QMAKE_STRIP (and friends), so we get useful -debuginfo pkgs (#1065636)
* Wed Feb 12 2014 Rex Dieter <rdieter(a)fedoraproject.org> 5.2.1-3
- bootstrap for libicu bump
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1065636 - python-qt5-debuginfo-5.2-3.fc21 is empty
https://bugzilla.redhat.com/show_bug.cgi?id=1065636
--------------------------------------------------------------------------------
================================================================================
samba-4.0.16-1.fc19 (FEDORA-2014-3815)
Server and Client software to interoperate with Windows machines
--------------------------------------------------------------------------------
Update Information:
Fix CVE-2013-4496 and CVE-2013-6442.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Mar 12 2014 - Andreas Schneider <asn(a)redhat.com> 4.0.16-1
- Fix CVE-2013-4496 and CVE-2013-6442.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1044099 - CVE-2013-6442 samba: smbcacls will delete ACL lists in certain
circumstances
https://bugzilla.redhat.com/show_bug.cgi?id=1044099
[ 2 ] Bug #1072792 - CVE-2013-4496 samba: Password lockout not enforced for SAMR
password changes
https://bugzilla.redhat.com/show_bug.cgi?id=1072792
--------------------------------------------------------------------------------
================================================================================
springframework-security-3.1.6-1.fc19 (FEDORA-2014-3812)
Modular Java/J2EE application security framework
--------------------------------------------------------------------------------
Update Information:
This update fixes CVE-2014-0097.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Mar 12 2014 Michal Srb <msrb(a)redhat.com> - 3.1.6-1
- Update to upstream release 3.1.6 (Fixes CVE-2014-0097)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1075302 - CVE-2014-0097 Spring Framework: empty passwords may bypass
authentication
https://bugzilla.redhat.com/show_bug.cgi?id=1075302
--------------------------------------------------------------------------------