package-announce June 2014

package-announce@lists.fedoraproject.org

1 participants
1106 discussions

Fedora 20 Update: nodejs-0.10.29-1.fc20
by updates＠fedoraproject.org 30 Jun '14

30 Jun '14

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2014-7527 2014-06-19 22:09:42 -------------------------------------------------------------------------------- Name : nodejs Product : Fedora 20 Version : 0.10.29 Release : 1.fc20 URL : http://nodejs.org/ Summary : JavaScript runtime Description : Node.js is a platform built on Chrome's JavaScript runtime for easily building fast, scalable network applications. Node.js uses an event-driven, non-blocking I/O model that makes it lightweight and efficient, perfect for data-intensive real-time applications that run across distributed devices. -------------------------------------------------------------------------------- Update Information: 2014.06.05, Version 0.10.29 (Stable) * child_process: do not set args before throwing (Greg Sabia Tucker) * child_process: spawn() does not throw TypeError (Greg Sabia Tucker) * constants: export O_NONBLOCK (Fedor Indutny) * crypto: improve memory usage (Alexis Campailla) * fs: close file if fstat() fails in readFile() (cjihrig) * lib: name EventEmitter prototype methods (Ben Noordhuis) * tls: fix performance issue (Alexis Campailla) The invalid UTF8 fix has been reverted since this breaks v8 API, which cannot be done in a stable distribution release. This build of nodejs will behave as if NODE_INVALID_UTF8 was set. For more information on the implications, see: http://blog.nodejs.org/2014/06/16/openssl-and-breaking-utf-8-change/ Additionally, a minor bug in v8 has been fixed that caused certain integer comparisons to return true when they should have returned false. Please note that there is no OpenSSL security fixes as part of this update as there were upstream; nodejs in Fedora uses the system OpenSSL library and thus receives security updates as soon as the "openssl" packages on your system are updated. -------------------------------------------------------------------------------- ChangeLog: * Thu Jun 19 2014 T.C. Hollingsworth <tchollingsworth(a)gmail.com> - 0.10.29-1 - new upstream release 0.10.29 http://blog.nodejs.org/2014/06/16/node-v0-10-29-stable/ - The invalid UTF8 fix has been reverted since this breaks v8 API, which cannot be done in a stable distribution release. This build of nodejs will behave as if NODE_INVALID_UTF8 was set. For more information on the implications, see: http://blog.nodejs.org/2014/06/16/openssl-and-breaking-utf-8-change/ * Sat May 3 2014 T.C. Hollingsworth <tchollingsworth(a)gmail.com> - 0.10.28-1 - new upstream release 0.10.28 There is no dfference between 0.10.27 and 0.10.28 for Fedora, as the only thing updated was npm, which is shipped seperately. The latest was only packaged to avoid confusion. Please see the v0.10.27 changelog for relevant changes in this update: http://blog.nodejs.org/2014/05/01/node-v0-10-27-stable/ * Thu Feb 20 2014 T.C. Hollingsworth <tchollingsworth(a)gmail.com> - 0.10.26-1 - new upstream release 0.10.26 http://blog.nodejs.org/2014/02/18/node-v0-10-26-stable/ * Fri Feb 14 2014 T.C. Hollingsworth <tchollingsworth(a)gmail.com> - 0.10.25-2 - rebuild for icu-53 (via v8) * Mon Jan 27 2014 T.C. Hollingsworth <tchollingsworth(a)gmail.com> - 0.10.25-1 - new upstream release 0.10.25 http://blog.nodejs.org/2014/01/23/node-v0-10-25-stable/ * Thu Dec 19 2013 T.C. Hollingsworth <tchollingsworth(a)gmail.com> - 0.10.24-1 - new upstream release 0.10.24 http://blog.nodejs.org/2013/12/19/node-v0-10-24-stable/ - upstream install script installs the headers now * Thu Dec 12 2013 T.C. Hollingsworth <tchollingsworth(a)gmail.com> - 0.10.23-1 - new upstream release 0.10.23 http://blog.nodejs.org/2013/12/11/node-v0-10-23-stable/ * Tue Nov 12 2013 T.C. Hollingsworth <tchollingsworth(a)gmail.com> - 0.10.22-1 - new upstream release 0.10.22 http://blog.nodejs.org/2013/11/12/node-v0-10-22-stable/ -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update nodejs' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

1 0

Fedora 20 Update: python-rtslib-2.1.fb48-1.fc20
by updates＠fedoraproject.org 30 Jun '14

30 Jun '14

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2014-7608 2014-06-21 22:51:55 -------------------------------------------------------------------------------- Name : python-rtslib Product : Fedora 20 Version : 2.1.fb48 Release : 1.fc20 URL : https://fedorahosted.org/targetcli-fb/ Summary : API for Linux kernel LIO SCSI target Description : API for generic Linux SCSI kernel target. Includes the 'target' service and targetctl tool for restoring configuration. -------------------------------------------------------------------------------- Update Information: fix error with emulate_write_cache -------------------------------------------------------------------------------- ChangeLog: * Fri Jun 20 2014 Andy Grover <agrover(a)redhat.com> - 2.1.fb48-1 - New upstream version * Sat Jun 7 2014 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 2.1.fb47-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Wed May 28 2014 Kalev Lember <kalevlember(a)gmail.com> - 2.1.fb47-2 - Rebuilt for https://fedoraproject.org/wiki/Changes/Python_3.4 * Fri Mar 14 2014 Andy Grover <agrover(a)redhat.com> - 2.1.fb47-1 - New upstream version * Tue Feb 18 2014 Andy Grover <agrover(a)redhat.com> - 2.1.fb46-1 - New upstream version * Wed Jan 15 2014 Andy Grover <agrover(a)redhat.com> - 2.1.fb45-1 - New upstream version * Wed Dec 18 2013 Andy Grover <agrover(a)redhat.com> - 2.1.fb44-1 - New upstream version * Wed Dec 4 2013 Andy Grover <agrover(a)redhat.com> - 2.1.fb43-1 - New upstream version - Remove rtslib-fix-setup.patch * Wed Nov 6 2013 Andy Grover <agrover(a)redhat.com> - 2.1.fb41-3 - Don't overwrite py2 scripts with py3 scripts * Mon Nov 4 2013 Andy Grover <agrover(a)redhat.com> - 2.1.fb41-2 - Update rtslib-fix-setup.patch with backported fixups - Add in missing systemd requires * Fri Nov 1 2013 Andy Grover <agrover(a)redhat.com> - 2.1.fb41-1 - New upstream version - Remove obsolete spec stuff: clean, buildroot - Add target.service -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update python-rtslib' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

1 0

[SECURITY] Fedora 20 Update: kernel-3.14.9-200.fc20
by updates＠fedoraproject.org 30 Jun '14

30 Jun '14

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2014-7863 2014-06-29 02:02:51 -------------------------------------------------------------------------------- Name : kernel Product : Fedora 20 Version : 3.14.9 Release : 200.fc20 URL : http://www.kernel.org/ Summary : The Linux kernel Description : The kernel package contains the Linux kernel (vmlinuz), the core of any Linux operating system. The kernel handles the basic functions of the operating system: memory allocation, process allocation, device input and output, etc. -------------------------------------------------------------------------------- Update Information: The 3.14.9 stable update contains a number of important fixes across the tree. -------------------------------------------------------------------------------- ChangeLog: * Thu Jun 26 2014 Justin M. Forbes <jforbes(a)fedoraproject.org> - 3.14.9-200 - Linux v3.14.9 * Wed Jun 25 2014 Josh Boyer <jwboyer(a)fedoraproject.org> - Revert commit that breaks Wacom Intuos4 from Benjamin Tissoires - CVE-2014-0206 aio: insufficient head sanitization in aio_read_events_ring (rhbz 1094602 1112975) * Mon Jun 23 2014 Josh Boyer <jwboyer(a)fedoraproject.org> - CVE-2014-4508 BUG in x86_32 syscall auditing (rhbz 1111590 1112073) * Fri Jun 20 2014 Josh Boyer <jwboyer(a)fedoraproject.org> - Bring in intel_pstate regression fixes for BayTrail (rhbz 1111920) * Mon Jun 16 2014 Justin M. Forbes <jforbes(a)fedoraproject.org> - 3.14.8-200 - Linux v3.14.8 * Mon Jun 16 2014 Josh Boyer <jwboyer(a)fedoraproject.org> - CVE-2014-4014 possible priv escalation in userns (rhbz 1107966 1109836) * Wed Jun 11 2014 Josh Boyer <jwboyer(a)fedoraproject.org> - 3.14.7-200 - Fix elantech right click on Dell vostro 5470 (rhbz 1103528) - Fix fstrim on dm-thin volume data (rhbz 1106856) - Fix NFS NULL pointer deref with ipv6 (rhbz 1099761) - Fix promisc mode on certain e1000e cards (rhbz 1064516) - Fix i915 backlight issue on gen4 (rhbz 1094066) - Linux v3.14.7 * Sat Jun 7 2014 Justin M. Forbes <jforbes(a)fedoraproject.org> - 3.14.6-200 - Linux v3.14.6 * Fri Jun 6 2014 Josh Boyer <jwboyer(a)fedoraproject.org> - CVE-2014-3153 futex: pi futexes requeue issue (rhbz 1103626 1105609) - CVE-2014-3940 missing check during hugepage migration (rhbz 1104097 1105042) * Tue Jun 3 2014 Josh Boyer <jwboyer(a)fedoraproject.org> - Add fix for team MTU settings from Jiri Pirko (rhbz 1099857) - Backport fix for issues with Quagga introduced by CVE fixes (rhbz 1097684) * Mon Jun 2 2014 Justin M. Forbes <jforbes(a)fedoraproject.org> - 3.14.5-200 - Linux v3.14.5 * Thu May 29 2014 Josh Boyer <jwboyer(a)fedoraproject.org> - CVE-2014-3917 DoS with syscall auditing (rhbz 1102571 1102715) * Fri May 23 2014 Peter Robinson <pbrobinson(a)fedoraproject.org> - Re-add rebased Beagle patch set for 3.14 (RHBZ 1094768) - Drop some no longer needed ARM patches * Tue May 20 2014 Josh Boyer <jwboyer(a)fedoraproject.org> - Backport patch to add new elantech touchpad support (rhbz 1051668) * Wed May 14 2014 Hans de Goede <hdegoede(a)redhat.com> - Add synaptics min/max quirk patch for the ThinkPad W540 (rhbz 1096436) * Tue May 13 2014 Justin M. Forbes <jforbes(a)fedoraproject.org> - 3.14.4-200 - Linux v3.14.4 * Mon May 12 2014 Josh Boyer <jwboyer(a)fedoraproject.org> - CVE-2014-3144/CVE-2014-3145 filter: prevent nla from peeking beyond eom (rhbz 1096775, 1096784) * Fri May 9 2014 Josh Boyer <jwboyer(a)fedoraproject.org> - CVE-2014-1738 CVE-2014-1737 floppy: priv esclation (rhbz 1094299 1096195) * Thu May 8 2014 Neil Horman <nhorman(a)redhat.com> - Fix dma unmap error in jme driver (rhbz 1082266) * Tue May 6 2014 Josh Boyer <jwboyer(a)fedoraproject.org> 3.14.3-200 - CVE-2014-0181 insufficient netlink permission checks (rhbz 1094270 1094265) * Tue May 6 2014 Justin M. Forbes <jforbes(a)fedoraproject.org> - Linux v3.14.3 * Tue May 6 2014 Hans de Goede <hdegoede(a)redhat.com> - Add a patch to fix the Synaptics Touch Pad V 103S found on some keyboard docks for win8 tablets - Add a patch to fix the elantech touchpad on Gigabyte U2442 laptops - Add a patch to fix backlight control on the Samsung NC210/NC110 (rhbz#861573) - Add a patch to fix backlight & wifi on the Asus EEE PC 1015PX (rhbz#1067181) * Tue May 6 2014 Josh Boyer <jwboyer(a)fedoraproject.org> - CVE-2014-0196 pty race leading to memory corruption (rhbz 1094232 1094240) - Add patch to fix smdb soft-lockup (rhbz 1082586) * Mon May 5 2014 Hans de Goede <hdegoede(a)redhat.com> - Add use_native_brightness quirk for the ThinkPad T530 (rhbz 1089545) * Sat May 3 2014 Josh Boyer <jwboyer(a)fedoraproject.org> - Fix TUN performance regression (rhbz 1093931) - Add patch to fix HID rmi driver from Benjamin Tissoires (rhbz 1090161) * Thu May 1 2014 Josh Boyer <jwboyer(a)fedoraproject.org> - Add backported drm qxl fix (rhbz 1060327) * Thu May 1 2014 Hans de Goede <hdegoede(a)redhat.com> - Sync min/max quirk patch with upstream to add a quirk for the ThinkPad L540 (rhbz 1088588) * Thu May 1 2014 Hans de Goede <hdegoede(a)redhat.com> - Add use_native_backlight quirk for 4 laptops (rhbz 983342 1093120) * Wed Apr 30 2014 Josh Boyer <jwboyer(a)fedoraproject.org> - CVE-2014-3122: mm: fix locking DoS issue (rhbz 1093084 1093076) * Mon Apr 28 2014 Justin M. Forbes <jforbes(a)fedoraproject.org> 3.14.2-200 - Linux v3.14.2 (rhbz 1067071 1091722 906568) * Fri Apr 25 2014 Josh Boyer <jwboyer(a)fedoraproject.org> - Add patch from Will Woods to fix fanotify EOVERFLOW issue (rhbz 696821) - Fix ACPI issue preventing boot on AMI firmware (rhbz 1090746) * Fri Apr 25 2014 Hans de Goede <hdegoede(a)redhat.com> - Add synaptics min-max quirk for ThinkPad Edge E431 (rhbz#1089689) * Wed Apr 23 2014 Josh Boyer <jwboyer(a)fedoraproject.org> - Fix SELinux wine issue again (rhbz 1013466) * Tue Apr 22 2014 Josh Boyer <jwboyer(a)fedoraproject.org> - Add patch to fix Synaptics touchscreens and HID rmi driver (rhbz 1089583) * Mon Apr 21 2014 Josh Boyer <jwboyer(a)fedoraproject.org> - 3.14.1-200 - Fix Brainboxes Express Cards (rhbz 1071914) - Fix build issues with CONFIG_DEBUG_VM set (rhbz 1074710) - Fix perf build failures * Mon Apr 21 2014 Justin M. Forbes <jforbes(a)fedoraproject.org> - Linux v3.14.1 * Thu Apr 17 2014 Hans de Goede <hdegoede(a)redhat.com> - Update min/max quirk patch to add a quirk for the ThinkPad L540 (rhbz1088588) * Mon Apr 14 2014 Justin M. Forbes <jforbes(a)fedoraproject.org> - 3.13.10-200 - Linux v3.13.10 * Mon Apr 14 2014 Hans de Goede <hdegoede(a)redhat.com> - Add min/max quirks for various new Thinkpad touchpads (rhbz 1085582 1085697) * Mon Apr 14 2014 Josh Boyer <jwboyer(a)fedoraproject.org> - CVE-2014-2851 net ipv4 ping refcount issue in ping_init_sock (rhbz 1086730 1087420) * Thu Apr 10 2014 Josh Boyer <jwboyer(a)fedoraproject.org> - Backported HID RMI driver for Haswell Dell XPS machines from Benjamin Tissoires (rhbz 1048314) * Wed Apr 9 2014 Josh Boyer <jwboyer(a)fedoraproject.org> - CVE-2014-0155 KVM: BUG caused by invalid guest ioapic redirect table (rhbz 1081589 1085016) - Add patch to fix SELinux lables on /proc files (rhbz 1084829) - Add patch to fix S3 in KVM guests (rhbz 1074235) * Thu Apr 3 2014 Justin M. Forbes <jforbes(a)fedoraproject.org> - 3.13.9-200 - Linux v3.13.9 * Tue Apr 1 2014 Josh Boyer <jwboyer(a)fedoraproject.org> - CVE-2014-2678 net: rds: deref of NULL dev in rds_iw_laddr_check (rhbz 1083274 1083280) * Mon Mar 31 2014 Justin M. Forbes <jforbes(a)fedoraproject.org> - 3.13.8-200 - Linux v3.13.8 * Mon Mar 31 2014 Hans de Goede <hdegoede(a)redhat.com> - Fix clicks getting lost with cypress_ps2 touchpads with recent xorg-x11-drv-synaptics versions (bfdo#76341) * Fri Mar 28 2014 Josh Boyer <jwboyer(a)fedoraproject.org> - CVE-2014-2580 xen: netback crash trying to disable due to malformed packet (rhbz 1080084 1080086) - CVE-2014-0077 vhost-net: insufficent big packet handling in handle_rx (rhbz 1064440 1081504) - CVE-2014-0055 vhost-net: insufficent error handling in get_rx_bufs (rhbz 1062577 1081503) - CVE-2014-2568 net: potential info leak when ubuf backed skbs are zero copied (rhbz 1079012 1079013) * Mon Mar 24 2014 Justin M. Forbes <jforbes(a)fedoraproject.org> - 3.13.7-200 - Linux v3.13.7 * Thu Mar 20 2014 Josh Boyer <jwboyer(a)fedoraproject.org> - CVE-2014-0131: skbuff: use-after-free during segmentation with zerocopy (rhbz 1074589 1079006) - Fix readahead semantics on pipes and sockets (rhbz 1078894) * Mon Mar 17 2014 Josh Boyer <jwboyer(a)fedoraproject.org> - CVE-2014-2523 netfilter: nf_conntrack_dccp: incorrect skb_header_pointer API usages (rhbz 1077343 1077350) * Wed Mar 12 2014 Josh Boyer <jwboyer(a)fedoraproject.org> - Fix locking issue in iwldvm (rhbz 1046495) * Tue Mar 11 2014 Josh Boyer <jwboyer(a)fedoraproject.org> - CVE-2014-2309 ipv6: crash due to router advertisment flooding (rhbz 1074471 1075064) * Fri Mar 7 2014 Justin M. Forbes <jforbes(a)fedoraproject.org> - 3.13.6-200 - Linux v3.13.6 * Fri Mar 7 2014 Josh Boyer <jwboyer(a)fedoraproject.org> - Add patch to fix iwldvm WARN (rhbz 1065663) - Revert two xhci fixes that break USB mass storage (rhbz 1073180) * Thu Mar 6 2014 Josh Boyer <jwboyer(a)fedoraproject.org> - Fix stale EC events on Samsung systems (rhbz 1003602) - Fix depmod error message from hci_vhci module (rhbz 1051748) - Fix bogus WARN in iwlwifi (rhbz 1071998) * Tue Mar 4 2014 Josh Boyer <jwboyer(a)fedoraproject.org> - Fix MAC-before-DAC check for mmap_zero (rhbz 1013466) - Fix hidp crash with apple bluetooth trackpads (rhbz 1027465) * Mon Mar 3 2014 Josh Boyer <jwboyer(a)fedoraproject.org> - 3.13.5-202 - CVE-2014-0100 net: inet frag race condition use-after-free (rhbz 1072026 1070618) - CVE-2014-0101 sctp: null ptr deref when processing auth cookie_echo chunk (rhbz 1070209 1070705) - Fix overly verbose audit logs (rhbz 1066064) * Mon Mar 3 2014 Josh Boyer <jwboyer(a)fedoraproject.org> - 3.13.5-201 - CVE-2014-0049 kvm: mmio_fragments out-of-bounds access (rhbz 1062368 1071837) - Fix atomic sched BUG in tty low_latency (rhbz 1065087) * Fri Feb 28 2014 Josh Boyer <jwboyer(a)fedoraproject.org> - CVE-2014-0102 keyctl_link can be used to cause an oops (rhbz 1071396) * Fri Feb 28 2014 Josh Boyer <jwboyer(a)fedoraproject.org> - Drop alx phy reset patch that is already in 3.13 * Tue Feb 25 2014 Josh Boyer <jwboyer(a)fedoraproject.org> - Fix mounting issues on cifs (rhbz 1068862) * Mon Feb 24 2014 Josh Boyer <jwboyer(a)fedoraproject.org> - 3.13.5-200 - CVE-2014-2039 s390: crash due to linkage stack instructions (rhbz 1067558 1068758) - Fix lockdep issue in EHCI when using threaded IRQs (rhbz 1056170) * Mon Feb 24 2014 Justin M. Forbes <jforbes(a)fedoraproject.org> - Linux v3.13.5 * Fri Feb 21 2014 Josh Boyer <jwboyer(a)fedoraproject.org> - Fix WARN from e100 from Michele Baldessari (rhbz 994438) * Thu Feb 20 2014 Peter Robinson <pbrobinson(a)fedoraproject.org> - 3.13.4-200 - Rebase i.MX6 Utilite to upstream version * Thu Feb 20 2014 Justin M. Forbes <jforbes(a)fedoraproject.org> - Linux v3.13.4 * Tue Feb 18 2014 Josh Boyer <jwboyer(a)fedoraproject.org> - Fix r8169 ethernet after suspend (rhbz 1054408) - Enable INTEL_MIC drivers (rhbz 1064086) * Fri Feb 14 2014 Josh Boyer <jwboyer(a)fedoraproject.org> - 3.13.3-201 - CVE-2014-0069 cifs: incorrect handling of bogus user pointers (rhbz 1064253 1062584) * Thu Feb 13 2014 Justin M. Forbes <jforbes(a)fedoraproject.org> - 3.13.3-200 - Linux v3.13.3 * Wed Feb 12 2014 Josh Boyer <jwboyer(a)fedoraproject.org> - Add patch to fix list corruption from pinctrl (rhbz 1051918) - Add IFA_FLAGS for IPv6 temporary addresses back (rhbz 1064430) - Fix cgroup destroy oops (rhbz 1045755) - Fix backtrace in amd_e400_idle (rhbz 1031296) - CVE-2014-1874 SELinux: local denial of service (rhbz 1062356 1062507) * Wed Feb 12 2014 Justin M. Forbes <jforbes(a)fedoraproject.org> - 3.13.2-200 - Packaging fixes for tmon and trace * Tue Feb 11 2014 Peter Robinson <pbrobinson(a)fedoraproject.org> - Update am33xx (BeagleBone) patch for 3.13 - Minor ARM updates * Mon Feb 10 2014 Justin M. Forbes <jforbes(a)fedoraproject.org> - Linux v3.13.2 - Fixes (rhbz 1062144) * Thu Feb 6 2014 Justin M. Forbes <jforbes(a)fedoraproject.org> - 3.12.10-300 - Linux v3.12.10 * Wed Feb 5 2014 Justin M. Forbes <jforbes(a)fedoraproject.org> - fix resume issues on Renesas chips in Samsung laptops (rhbz 950630) * Wed Jan 29 2014 Justin M. Forbes <jforbes(a)fedoraproject.org> - 3.12.9-301 - ipv6 addrconf: revert /proc/net/if_inet6 ifa_flag format (rhbz 1056711) * Tue Jan 28 2014 Josh Boyer <jwboyer(a)fedoraproject.org> - Add patch from Stanislaw Gruszka to fix ath9k BUG (rhbz 990955) * Mon Jan 27 2014 Justin M. Forbes <jforbes(a)fedoraproject.org> - 3.12.9-300 - Backport new IPv6 address flag IFA_F_NOPREFIXROUTE and IFA_F_MANAGETEMPADDR (rhbz 1056711) - Linux v3.12.9 - i915: remove pm_qos request on error (rhbz 1057533) * Sun Jan 26 2014 Peter Robinson <pbrobinson(a)fedoraproject.org> - Minor ARM config updates - Disable highbank cpuidle driver - Update CPU thermal scaling options for ARM * Wed Jan 15 2014 Justin M. Forbes <jforbes(a)fedoraproject.org - 3.12.8-300 - Linux v3.12.8 * Wed Jan 15 2014 Josh Boyer <jwboyer(a)fedoraproject.org> - CVE-2014-1446 hamradio/yam: information leak in ioctl (rhbz 1053620 1053647) - CVE-2014-1438 x86: exceptions are not cleared in AMD FXSAVE workaround (rhbz 1053599 1052914) * Tue Jan 14 2014 Josh Boyer <jwboyer(a)fedoraproject.org> - Fix k-m-e Provides to be explicit to only the package flavor (rhbz 1046246) * Tue Jan 14 2014 Neil Horman <nhorman(a)redhat.com> - Backport ipv6 route cache expiration fix (rhbz 1040128) * Sun Jan 12 2014 Peter Robinson <pbrobinson(a)fedoraproject.org> - Enable generic cpufreq-cpu0 driver on ARM - Enable thermal userspace support for ARM * Fri Jan 10 2014 Justin M. Forbes <jforbes(a)fedoraproject.org - 3.12.7-300 - Linux v3.12.7 * Wed Jan 8 2014 Josh Boyer <jwboyer(a)fedoraproject.org> - Backport support for ALPS Dolphin devices (rhbz 953211) - Enable BCMA_DRIVER_GPIO by turning on GPIOLIB everywhere (rhbz 1021098) * Mon Jan 6 2014 Josh Boyer <jwboyer(a)fedoraproject.org> - Add support for BCM57786 devices to tg3 (rhbz 1044471) - Fix use after free crash in KVM (rhbz 1047892) - Fix oops in KVM with invalid root_hpa (rhbz 924916) - CVE-2013-4579: ath9k_htc improper MAC update (rhbz 1032753 1033072) * Sat Dec 28 2013 Peter Robinson <pbrobinson(a)fedoraproject.org> - Update am33xx (BeagleBone) cpsw patch to upstream version * Mon Dec 23 2013 Justin M. Forbes <jforbes(a)fedoraproject.org - 3.12.6-300 - Linux v3.12.6 * Fri Dec 20 2013 Josh Boyer <jwboyer(a)fedoraproject.org> - Add patches to fix dummy gssd entry (rhbz 1037793) * Wed Dec 18 2013 Josh Boyer <jwboyer(a)fedoraproject.org> - Fix nowatchdog-on-virt.patch to actually work in KVM guests * Tue Dec 17 2013 Josh Boyer <jwboyer(a)fedoraproject.org> - 3.12.5-302 - Add patch to avoid using queued trim on M500 SSD (rhbz 1024002) * Mon Dec 16 2013 Josh Boyer <jwboyer(a)fedoraproject.org> - Fix host lockup in bridge code when starting from virt guest (rhbz 1025770) * Fri Dec 13 2013 Josh Boyer <jwboyer(a)fedoraproject.org> 3.12.5-301 - More keys fixes from upstream to fix keyctl_get_persisent crash (rhbz 1043033) * Fri Dec 13 2013 Justin M. Forbes <jforbes(a)fedoraproject.org - 3.12.5-300 - Linux v3.12.5 rebase * Thu Dec 12 2013 Josh Boyer <jwboyer(a)fedoraproject.org> - CVE-2013-4587 kvm: out-of-bounds access (rhbz 1030986 1042071) - CVE-2013-6376 kvm: BUG_ON in apic_cluster_id (rhbz 1033106 1042099) - CVE-2013-6368 kvm: cross page vapic_addr access (rhbz 1032210 1042090) - CVE-2013-6367 kvm: division by 0 in apic_get_tmcct (rhbz 1032207 1042081) * Wed Dec 11 2013 Josh Boyer <jwboyer(a)fedoraproject.org> - Add patches to support ETPS/2 Elantech touchpads (rhbz 1030802) * Tue Dec 10 2013 Josh Boyer <jwboyer(a)fedoraproject.org> - CVE-2013-XXXX net: memory leak in recvmsg (rhbz 1039845 1039874) * Fri Dec 6 2013 Peter Robinson <pbrobinson(a)fedoraproject.org> - Fix up ARM usb gadget config to make it useful -------------------------------------------------------------------------------- References: [ 1 ] Bug #1113967 - CVE-2014-4667 kernel: sctp: sk_ack_backlog wrap-around problem https://bugzilla.redhat.com/show_bug.cgi?id=1113967 [ 2 ] Bug #1113899 - CVE-2014-4608 kernel: lzo1x_decompress_safe() integer overflow https://bugzilla.redhat.com/show_bug.cgi?id=1113899 [ 3 ] Bug #1112436 - CVE-2014-4611 LZ4: LZ4_decompress_generic() integer overflow https://bugzilla.redhat.com/show_bug.cgi?id=1112436 [ 4 ] Bug #1094602 - CVE-2014-0206 kernel: aio: insufficient sanitization of head in aio_read_events_ring() https://bugzilla.redhat.com/show_bug.cgi?id=1094602 [ 5 ] Bug #1111590 - CVE-2014-4508 Kernel: x86_32: BUG in syscall auditing https://bugzilla.redhat.com/show_bug.cgi?id=1111590 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update kernel' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

1 0

Fedora 19 Update: recoll-1.19.13-1.fc19
by updates＠fedoraproject.org 30 Jun '14

30 Jun '14

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2014-6134 2014-05-08 09:11:41 -------------------------------------------------------------------------------- Name : recoll Product : Fedora 19 Version : 1.19.13 Release : 1.fc19 URL : http://www.lesbonscomptes.com/recoll/ Summary : Desktop full text search tool with Qt GUI Description : Recoll is a personal full text search package for Linux, FreeBSD and other Unix systems. It is based on a very strong back end (Xapian), for which it provides an easy to use, feature-rich, easy administration interface. -------------------------------------------------------------------------------- Update Information: Update to latest upstream release recoll 1.19.13, fixing threading and index issues. -------------------------------------------------------------------------------- ChangeLog: * Tue May 6 2014 Terje Rosten <terje.rosten(a)ntnu.no> - 1.19.13-1 - 1.19.13 * Mon Jan 20 2014 Terje Rosten <terje.rosten(a)ntnu.no> - 1.19.11-1 - 1.19.11 * Mon Nov 11 2013 Terje Rosten <terje.rosten(a)ntnu.no> - 1.19.9-1 - 1.19.9 * Tue Nov 5 2013 Terje Rosten <terje.rosten(a)ntnu.no> - 1.19.8-1 - 1.19.8 * Sun Aug 4 2013 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 1.19.4-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild * Wed Jun 12 2013 Terje Rosten <terje.rosten(a)ntnu.no> - 1.19.4-2 - Fix filter setup * Mon Jun 10 2013 Terje Rosten <terje.rosten(a)ntnu.no> - 1.19.4-1 - 1.19.4 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1085800 - [abrt] recoll: ole.py:60:byteOrder:IndexError: string index out of range https://bugzilla.redhat.com/show_bug.cgi?id=1085800 [ 2 ] Bug #1076619 - [abrt] recoll: _M_find_node(): recollindex killed by SIGSEGV https://bugzilla.redhat.com/show_bug.cgi?id=1076619 [ 3 ] Bug #1059716 - [abrt] recoll: _M_dispose(): recollindex killed by SIGABRT https://bugzilla.redhat.com/show_bug.cgi?id=1059716 [ 4 ] Bug #1059737 - [abrt] recoll: ole.py:231:parse:OverflowError: Python int too large to convert to C long https://bugzilla.redhat.com/show_bug.cgi?id=1059737 [ 5 ] Bug #1060634 - [abrt] recoll: ole.py:431:getSectorIDChain:IndexError: list index out of range https://bugzilla.redhat.com/show_bug.cgi?id=1060634 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update recoll' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

1 0

Fedora 20 Update: sssd-1.11.6-1.fc20
by updates＠fedoraproject.org 30 Jun '14

30 Jun '14

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2014-7691 2014-06-24 22:29:44 -------------------------------------------------------------------------------- Name : sssd Product : Fedora 20 Version : 1.11.6 Release : 1.fc20 URL : http://fedorahosted.org/sssd/ Summary : System Security Services Daemon Description : Provides a set of daemons to manage access to remote directories and authentication mechanisms. It provides an NSS and PAM interface toward the system and a pluggable backend system to connect to multiple different account sources. It is also the basis to provide client auditing and policy services for projects like FreeIPA. The sssd subpackage is a meta-package that contains the deamon as well as all the existing back ends. -------------------------------------------------------------------------------- Update Information: New upstream release 1.11.6 https://fedorahosted.org/sssd/wiki/Releases/Notes-1.11.6 -------------------------------------------------------------------------------- ChangeLog: * Tue Jun 24 2014 Jakub Hrozek <jhrozek(a)redhat.com> - 1.11.6-1 - New upstream release 1.11.6 - https://fedorahosted.org/sssd/wiki/Releases/Notes-1.11.6 * Fri Apr 11 2014 Jakub Hrozek <jhrozek(a)redhat.com> - 1.11.5.1-1 - New upstream release 1.11.5.1 - https://fedorahosted.org/sssd/wiki/Releases/Notes-1.11.5.1 * Tue Apr 8 2014 Jakub Hrozek <jhrozek(a)redhat.com> - 1.11.5-1 - New upstream release 1.11.5 - Remove upstreamed patch - https://fedorahosted.org/sssd/wiki/Releases/Notes-1.11.5 * Thu Mar 13 2014 Sumit Bose <sbose(a)redhat.com> - 1.11.4-3 - Handle new error code for IPA password migration * Tue Mar 11 2014 Jakub Hrozek <jhrozek(a)redhat.com> - 1.11.4-2 - Include couple of patches from upstream 1.11 branch * Mon Feb 17 2014 Jakub Hrozek <jhrozek(a)redhat.com> - 1.11.4-1 - New upstream release 1.11.4 - Remove upstreamed patch - https://fedorahosted.org/sssd/wiki/Releases/Notes-1.11.4 * Tue Feb 11 2014 Jakub Hrozek <jhrozek(a)redhat.com> - 1.11.3-2 - Handle OTP response from FreeIPA server gracefully -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update sssd' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

1 0

Fedora 20 Update: OpenLP-2.0.5-1.fc20
by updates＠fedoraproject.org 30 Jun '14

30 Jun '14

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2014-7886 2014-06-30 09:45:13 -------------------------------------------------------------------------------- Name : OpenLP Product : Fedora 20 Version : 2.0.5 Release : 1.fc20 URL : http://openlp.org/ Summary : Open source Church presentation and lyrics projection application Description : OpenLP is a church presentation software, for lyrics projection software, used to display slides of Songs, Bible verses, videos, images, and presentations via LibreOffice using a computer and projector. -------------------------------------------------------------------------------- Update Information: Final release of the 2.0 services No new features only bug fixes. -------------------------------------------------------------------------------- ChangeLog: * Fri Jun 27 2014 Tim Bentley Tim.Bentley(a)openlp.org - 2.0.5-1 - 2.0.5 final release * Fri Jun 6 2014 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 2.0.4-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Sun Feb 2 2014 Tim Bentley <timbentley(a)openlp.org> - 2.0.4-1 - Release 2.0.4 * Sat Sep 14 2013 Tim Bentley <timbentley(a)openlp.org> - 2.0.3-1 - Release 2.0.3 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1013261 - upstream .desktop file is not valid https://bugzilla.redhat.com/show_bug.cgi?id=1013261 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update OpenLP' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

1 0

Fedora 19 Update: silvia-0.2.2-0.6.f14d948git.fc19
by updates＠fedoraproject.org 30 Jun '14

30 Jun '14

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2014-7609 2014-06-21 22:51:57 -------------------------------------------------------------------------------- Name : silvia Product : Fedora 19 Version : 0.2.2 Release : 0.6.f14d948git.fc19 URL : https://github.com/credentials/silvia Summary : SImple Library for the Verification and Issuance of Attributes Description : SImple Library for the Verification and Issuance of Attributes of IRMA cards (irmacard.org). -------------------------------------------------------------------------------- Update Information: Update to newest git version. This version introduces silvia_manager and silvia_proxy. -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update silvia' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

1 0

Fedora 20 Update: gap-io-4.3.1-1.fc20
by updates＠fedoraproject.org 30 Jun '14

30 Jun '14

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2014-7612 2014-06-21 22:52:05 -------------------------------------------------------------------------------- Name : gap-io Product : Fedora 20 Version : 4.3.1 Release : 1.fc20 URL : http://neunhoef.github.io/io/ Summary : Unix I/O functionality for GAP Description : This GAP package provides a link to the standard UNIX I/O functionality that is available through the C library. This part basically consists of functions on the GAP level that allow functions in the C library to be called. Built on top of this is a layer for buffered input/output which is implemented completely in the GAP language. It is intended to be used by programs for which it is not necessary to have full direct access to the operating system. On this level, quite a few convenience functions are implemented for interprocess communication like starting up pipelines of processes to filter data through them and to start up processes and then communicate with them. There is also support for creating network connections over TCP/IP and UDP. Building on this, the package contains an implementation of the client side of the HTTP protocol making it possible among other things to access web pages from within GAP. Another part of the package is a framework for object serialization. That is, GAP objects can be converted into a platform-independent byte sequence which can be stored to a file or sent over the network. The code takes complete care of arbitrarily self-referential data structures like lists containing themselves as an entry. The resulting byte strings can be read back into GAP and the original objects are rebuilt with exactly the same self-references. This works for most of the standard builtin types of GAP like numbers, permutations, polynomials, lists, and records and can be extended to nearly arbitrary GAP objects. -------------------------------------------------------------------------------- Update Information: Changes in version 4.3: - Update and tweak the package build system - Move package repository and website to GitHub - Pickling/Unpickling of Floats Changes in version 4.3.1: - Previous release had an invalid release date in PackageInfo.g (2014-04-31 instead of 2014-03-31). - Merge HISTORY and CHANGES files. -------------------------------------------------------------------------------- ChangeLog: * Fri Jun 20 2014 Jerry James <loganjerry(a)gmail.com> - 4.3.1-1 - New upstream release - New project and source URLs * Sat Jun 7 2014 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 4.2-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update gap-io' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

1 0

Fedora 20 Update: nml-0.3.1-1.fc20
by updates＠fedoraproject.org 30 Jun '14

30 Jun '14

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2014-7591 2014-06-21 22:51:07 -------------------------------------------------------------------------------- Name : nml Product : Fedora 20 Version : 0.3.1 Release : 1.fc20 URL : http://dev.openttdcoop.org/projects/nml Summary : NewGRF Meta Language compiler Description : A tool to compile nml files to grf or nfo files, making newgrf coding easier. -------------------------------------------------------------------------------- Update Information: Update the OpenTTD stack to support 1.4.1 -------------------------------------------------------------------------------- ChangeLog: * Sat Jun 21 2014 Felix Kaechele <heffer(a)fedoraproject.org> - 0.3.1-1 - update to 0.3.1 - change Source0 URL / source dir name *again* (for the worse, le sigh) * Sat Jun 7 2014 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 0.3.0-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Mon Mar 31 2014 Felix Kaechele <heffer(a)fedoraproject.org> - 0.3.0-1 - update to 0.3.0 - drop patch for pillow support (upstreamed) - change Source0 URL / source dir name -------------------------------------------------------------------------------- References: [ 1 ] Bug #1111767 - OpenTTD 1.4.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1111767 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update nml' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

1 0

Fedora 20 Update: openttd-1.4.1-1.fc20
by updates＠fedoraproject.org 30 Jun '14

30 Jun '14

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2014-7591 2014-06-21 22:51:07 -------------------------------------------------------------------------------- Name : openttd Product : Fedora 20 Version : 1.4.1 Release : 1.fc20 URL : http://www.openttd.org Summary : Transport system simulation game Description : OpenTTD is modeled after a popular transportation business simulation game by Chris Sawyer and enhances the game experience dramatically. Many features were inspired by TTDPatch while others are original. -------------------------------------------------------------------------------- Update Information: Update the OpenTTD stack to support 1.4.1 -------------------------------------------------------------------------------- ChangeLog: * Sat Jun 21 2014 Felix Kaechele <heffer(a)fedoraproject.org> - 1.4.1-1 - update to 1.4.1 - change my e-mail in the changelogs * Sat Jun 7 2014 Fedora Release Engineering <rel-eng(a)lists.fedoraproject.org> - 1.4.0-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Fri Apr 4 2014 Felix Kaechele <heffer(a)fedoraproject.org> - 1.4.0-1 - update to 1.4.0 - bump dependency on openttd-opengfx to 0.5.0 * Thu Feb 13 2014 Felix Kaechele <heffer(a)fedoraproject.org> - 1.3.3-2 - rebuild for new ICU * Thu Dec 12 2013 Felix Kaechele <heffer(a)fedoraproject.org> - 1.3.3-1 - update to 1.3.3 - fixes CVE-2013-6411 * Sat Sep 21 2013 Felix Kaechele <heffer(a)fedoraproject.org> - 1.3.2-3 - another try at a rebuild to fix BZ#989786 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1111767 - OpenTTD 1.4.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1111767 -------------------------------------------------------------------------------- This update can be installed with the "yum" update program. Use su -c 'yum update openttd' at the command line. For more information, refer to "Managing Software with yum", available at http://docs.fedoraproject.org/yum/. All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

1 0

← Newer
1
...
4
5
6
7
8
9
10
...
111
Older →

Jump to page:

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

package-announce June 2014