The following Fedora EPEL 7 Security updates need testing:
Age URL
105
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-3989/cross-binutils-2.23.88.0.1-2.el7.1
21
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-0626/perl-Gtk2-1.2495-1.el7
0
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-0977/novnc-0.5.1-2.el7
0
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-0952/qpid-cpp-0.30-12.el7
0
https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-0862/nodejs-0.10.36-3.el7,libuv-0.10.34-1.el7,v8-3.14.5.10-17.el7
The following builds have been pushed to Fedora EPEL 7 updates-testing
dkms-2.2.0.3-30.git.7c3e7c5.el7
figlet-2.2.5-7.el7
kdevelop-4.7.1-1.el7
kdevplatform-1.7.1-1.el7
librepo-1.7.14-1.el7
libuv-0.10.34-1.el7
mmg3d-4.0.2-1.el7
nodejs-0.10.36-3.el7
novnc-0.5.1-2.el7
perl-Finance-Quote-1.37-2.el7
perl-Tangerine-0.13-1.el7
php-PHPParser-1.1.0-1.el7
php-ZendFramework-1.12.11-1.el7
php-ocramius-code-generator-utils-0.3.1-1.el7
php-ocramius-generated-hydrator-1.1.1-1.el7
python-httpretty-0.8.3-2.el7
qpid-cpp-0.30-12.el7
qpid-dispatch-0.3-4.el7
rubygem-puppet-lint-1.1.0-2.el7
smbldap-tools-0.9.10-6.el7
spamass-milter-0.3.2-15.el7
v8-3.14.5.10-17.el7
x2goserver-4.0.1.19-1.el7
Details about builds:
================================================================================
dkms-2.2.0.3-30.git.7c3e7c5.el7 (FEDORA-EPEL-2015-0975)
Dynamic Kernel Module Support Framework
--------------------------------------------------------------------------------
Update Information:
Add which and file requirements, enable license macro where appropriate
--------------------------------------------------------------------------------
ChangeLog:
* Wed Feb 25 2015 Simone Caronni <negativ...@gmail.com> - 2.2.0.3-30.git.7c3e7c5
- Add which and file requirements for real.
* Tue Feb 24 2015 Simone Caronni <negativ...@gmail.com> - 2.2.0.3-29.git.7c3e7c5
- Add which and file requirements (#1194652).
- Add license macro.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1194652 - Missing which and file requirements in dkms package spec
file
https://bugzilla.redhat.com/show_bug.cgi?id=1194652
--------------------------------------------------------------------------------
================================================================================
figlet-2.2.5-7.el7 (FEDORA-EPEL-2015-0974)
A program for making large letters out of ordinary text
--------------------------------------------------------------------------------
Update Information:
Add license macro.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Feb 25 2015 Simone Caronni <negativ...@gmail.com> - 2.2.5-7
- Add license macro.
- Add upstream patches.
* Sat Aug 16 2014 Fedora Release Engineering <rel-...@lists.fedoraproject.org>
- 2.2.5-6
- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild
* Sat Jun 7 2014 Fedora Release Engineering <rel-...@lists.fedoraproject.org>
- 2.2.5-5
- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild
* Sat Aug 3 2013 Fedora Release Engineering <rel-...@lists.fedoraproject.org>
- 2.2.5-4
- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
--------------------------------------------------------------------------------
================================================================================
kdevelop-4.7.1-1.el7 (FEDORA-EPEL-2015-0963)
Integrated Development Environment for C++/C
--------------------------------------------------------------------------------
Update Information:
KDevelop 4.7.1 release.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Feb 3 2015 Jan Grulich <jgrul...@redhat.com> - 9:4.7.1-1
- Update to 4.7.1
* Tue Jan 27 2015 Petr Machata <pmach...@redhat.com> - 9:4.7.0-2
- Rebuild for boost 1.57.0
--------------------------------------------------------------------------------
================================================================================
kdevplatform-1.7.1-1.el7 (FEDORA-EPEL-2015-0963)
Libraries for use by KDE development tools
--------------------------------------------------------------------------------
Update Information:
KDevelop 4.7.1 release.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Feb 3 2015 Jan Grulich <jgrul...@redhat.com> - 1.7.1-1
- Update to 1.7.1
* Sat Jan 31 2015 Rex Dieter <rdie...@fedoraproject.org> - 1.7.0-3
- kde-apps cleanup, .spec cleanup, update URL
* Mon Jan 26 2015 Petr Machata <pmach...@redhat.com> - 1.7.0-2
- Rebuild for boost 1.57.0
--------------------------------------------------------------------------------
================================================================================
librepo-1.7.14-1.el7 (FEDORA-EPEL-2015-0971)
Repodata downloading library
--------------------------------------------------------------------------------
Update Information:
Update to 1.7.14
--------------------------------------------------------------------------------
ChangeLog:
* Wed Feb 25 2015 Tomas Mlcoch <tmlcoch at redhat.com> - 1.7.14-2
- compat: fix ck_assert_msg() segfault in rhel-7
* Wed Feb 25 2015 Tomas Mlcoch <tmlcoch at redhat.com> - 1.7.14-1
- tests: Use g_assert_cmpuint instead of ck_assert_uint_eq (Pullrequest #43)
- Add LRO_OFFLINE
- Python: Handle: Raise ValueError instead of TypeError when an unknown option
is specified
- Python: Result: Use ValueError instead of TypeError when an unknown option
value is specified
- Add LR_VERSION constant with version string
- python: Import contants from C librepo module in a loop
- repoconf: Add support for failover and skip_if_unavailable options
- handle: Change of LRO_LOCAL causes invalidation of internal mirrorlist
(related to RhBug: 1188600)
- Load local mirrorlists when LRO_LOCAL is on (related to RhBug: 1188600)
- util: Add lr_is_local_path()
- New module repoconf for reading *.repo files
- Add LRO_HTTPHEADER option (RhBug: 1181123)
* Fri Jan 23 2015 Tomas Mlcoch <tmlcoch at redhat.com> - 1.7.13-1
- Fix ABI compatibility (RhBug: 1185180)
- fastestmirror: Add LRO_FASTESTMIRRORTIMEOUT option
- downloader: Move broken mirror at the end of the list of mirrors (RhBug:
1183998)
- Make building tests and docs optional
- librepo: Don't download remote mirrorlist/metalink when LRO_LOCAL is
specified (Resolves #41)
* Fri Jan 16 2015 Tomas Mlcoch <tmlcoch at redhat.com> - 1.7.12-1
- downloader: Allow max one resume + nicer message if xattr cannot be set
(RhBug: 1130685)
- downloader: Resume only files that were originaly downloaded by Librepo
(RhBug: 1130685)
- downloader: Show also calculated checksums in error message about bad checksum
- Python: Return all strings in unicode
* Mon Dec 22 2014 Tomas Mlcoch <tmlcoch at redhat.com> - 1.7.11-2
- Make tests port agnostic
* Fri Dec 19 2014 Tomas Mlcoch <tmlcoch at redhat.com> - 1.7.11-1
- Substitute vars in URL in the lr_downloadtarget_new()
- New module repoconf for reading of *.repo files
- Add LRE_VALUE code + LR_REPOCONF_ERROR error domain
- Fail if gpgcheck enabled but repomd.xml signature is not available
- Support for RHEL6
- Add LRO_GNUPGHOMEDIR option
- Refactoring to prevent RhBug: 1144741
- fastest_mirror: Use <0.0 (-1.0) instead of DBL_MAX when a connection time
wasn't measured
- Add sanity checks in order to avoid bugs like: 1166533, 1160087
- Refactoring
* Mon Dec 1 2014 Tomas Mlcoch <tmlcoch at redhat.com> - 1.7.10-1
- repomd: Add error reporting support to lr_yum_repomd_get_highest_timestamp()
(RhBug: 1149436)
* Thu Nov 20 2014 Tomas Mlcoch <tmlcoch at redhat.com> - 1.7.9-1
- handle: Fix memory leak when looking for local metalink/mirrorlist (Issue #33)
- Return -1 for LRR_YUM_TIMESTAMP if no repomd is available
- Use CURLOPT_ERRORBUFFER to get more useful error messages
- repoutil_yum: lr_repoutil_yum_check_repo: fix path handling
* Wed Sep 24 2014 Tomas Mlcoch <tmlcoch at redhat.com> - 1.7.7-1
- Initialize struct sigaction vars correctly (RhBug: 1145656 )
* Tue Aug 12 2014 Tomas Mlcoch <tmlcoch at redhat.com> - 1.7.6-1
- New option LRO_ADAPTIVEMIRRORSORTING
- Increase limits to make librepo more robust (RhBug: 1124349)
- New option LRO_ALLOWEDMIRRORFAILURES
- Refactoring
- Default value of LRO_MAXDOWNLOADSPERMIRROR changed from 2 to 3
* Tue Jul 8 2014 Tomas Mlcoch <tmlcoch at redhat.com> - 1.7.5-1
- accepts unicoded destination as UTF-8 string (Related: RhBug:1108908)
- downloader: Do not print debug message about preparing internal mirror list
if no internal mirror is available
- fastestmirror: subtract name lookup (dns) time from plain connect time
- fastestmirror: Small refactoring
* Thu Jun 26 2014 Tomas Mlcoch <tmlcoch at redhat.com> - 1.7.4-3
- Increase default value of LRO_LOWSPEEDTIME from 10 to 30 (RhBug: 1109189)
* Sat Jun 7 2014 Fedora Release Engineering <rel-...@lists.fedoraproject.org>
- 1.7.4-2
- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild
* Mon Jun 2 2014 Tomas Mlcoch <tmlcoch at redhat.com> - 1.7.4-1
- Add LRO_IPRESOLVE option to set a kind of IP addresses to use when resolving
host names
- Relicenced from GPLv2 to LGPLv2+
- error mesage is in unicode (RhBug:1096452)
* Tue May 6 2014 Tomas Mlcoch <tmlcoch at redhat.com> - 1.7.3-1
- Fix some issues which were found by coverity scan
- Add missing support for Handle Mirror Failure Callback (hmfcb)
while downloading repomd.xml (related to RhBug: 1093014)
- Add LRO_SSLVERIFYPEER and LRO_SSLVERIFYHOST options (RhBug: 1093014)
--------------------------------------------------------------------------------
================================================================================
libuv-0.10.34-1.el7 (FEDORA-EPEL-2015-0862)
Platform layer for node.js
--------------------------------------------------------------------------------
Update Information:
# nodejs
* tls: re-add 1024-bit SSL certs removed by f9456a2 (Chris Dickinson)
* timers: don't close interval timers when unrefd (Julien Gilli)
* timers: don't mutate unref list while iterating it (Julien Gilli)
* child_process: check execFile args is an array (Sam Roberts)
* child_process: check fork args is an array (Sam Roberts)
* crypto: update root certificates (Ben Noordhuis)
* domains: fix issues with abort on uncaught (Julien Gilli)
* timers: Avoid linear scan in _unrefActive. (Julien Gilli)
* timers: fix unref() memory leak (Trevor Norris)
* debugger: fix when using "use strict" (Julien Gilli)
# libuv
* linux: fix epoll_pwait() regression with < 2.6.19 (Ben Noordhuis)
* linux: fix epoll_pwait() sigmask size calculation (Ben Noordhuis)
* linux: fix sigmask size arg in epoll_pwait() call (Ben Noordhuis)
* linux: handle O_NONBLOCK != SOCK_NONBLOCK case (Helge Deller)
* doc: update project links (Ben Noordhuis)
* unix: add flag for blocking SIGPROF during poll (Ben Noordhuis)
* unix, windows: add uv_loop_configure() function (Ben Noordhuis)
# v8
* Fix debugger and strict mode regression (Julien Gilli)
* don't busy loop in cpu profiler thread (Ben Noordhuis)
* add api for aborting on uncaught exception (Julien Gilli)
--------------------------------------------------------------------------------
ChangeLog:
* Tue Feb 24 2015 T.C. Hollingsworth <tchollingswo...@gmail.com> - 1:0.10.34-1
- new upstream release 0.10.34
https://github.com/joyent/libuv/blob/v0.10.34/ChangeLog
- resolves incorrect revocation while reliquishing privileges security
vulnerability (CVE-2015-0278, RHBZ#1194651)
* Thu Feb 19 2015 T.C. Hollingsworth <tchollingswo...@gmail.com> - 1:0.10.33-2
- add missing %{_?isa} to devel requires of main package
- fix some issues with the pkgconfig file and Group reported by Michael Schwendt
* Thu Feb 19 2015 T.C. Hollingsworth <tchollingswo...@gmail.com> - 1:0.10.33-1
- new upstream release 0.10.33
https://github.com/joyent/libuv/blob/v0.10.33/ChangeLog
- update URL to point to the new libuv.org
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1194651 - CVE-2015-0278 libuv: incorrect revocation order while
relinquishing privileges
https://bugzilla.redhat.com/show_bug.cgi?id=1194651
--------------------------------------------------------------------------------
================================================================================
mmg3d-4.0.2-1.el7 (FEDORA-EPEL-2015-0946)
Anisotropic Tetrahedral Remesher / Moving Mesh Generator
--------------------------------------------------------------------------------
Update Information:
Update to version 4.0.2.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Feb 25 2015 Sandro Mani <manisan...@gmail.com> - 4.0.2-1
- Update to 4.0.2
--------------------------------------------------------------------------------
================================================================================
nodejs-0.10.36-3.el7 (FEDORA-EPEL-2015-0862)
JavaScript runtime
--------------------------------------------------------------------------------
Update Information:
# nodejs
* tls: re-add 1024-bit SSL certs removed by f9456a2 (Chris Dickinson)
* timers: don't close interval timers when unrefd (Julien Gilli)
* timers: don't mutate unref list while iterating it (Julien Gilli)
* child_process: check execFile args is an array (Sam Roberts)
* child_process: check fork args is an array (Sam Roberts)
* crypto: update root certificates (Ben Noordhuis)
* domains: fix issues with abort on uncaught (Julien Gilli)
* timers: Avoid linear scan in _unrefActive. (Julien Gilli)
* timers: fix unref() memory leak (Trevor Norris)
* debugger: fix when using "use strict" (Julien Gilli)
# libuv
* linux: fix epoll_pwait() regression with < 2.6.19 (Ben Noordhuis)
* linux: fix epoll_pwait() sigmask size calculation (Ben Noordhuis)
* linux: fix sigmask size arg in epoll_pwait() call (Ben Noordhuis)
* linux: handle O_NONBLOCK != SOCK_NONBLOCK case (Helge Deller)
* doc: update project links (Ben Noordhuis)
* unix: add flag for blocking SIGPROF during poll (Ben Noordhuis)
* unix, windows: add uv_loop_configure() function (Ben Noordhuis)
# v8
* Fix debugger and strict mode regression (Julien Gilli)
* don't busy loop in cpu profiler thread (Ben Noordhuis)
* add api for aborting on uncaught exception (Julien Gilli)
--------------------------------------------------------------------------------
ChangeLog:
* Tue Feb 24 2015 T.C. Hollingsworth <tchollingswo...@gmail.com> - 0.10.36-3
- bump v8 requires (RHBZ#1195457)
* Thu Feb 19 2015 T.C. Hollingsworth <tchollingswo...@gmail.com> - 0.10.36-1
- new upstream release 0.10.36
http://blog.nodejs.org/2015/01/26/node-v0-10-36-stable/
- Please note that several upstream releases were skipped due to regressions
reported in the upstream bug tracker. Please also review the 0.10.34 and
0.10.35 changelogs available at the above URL for a list of all changes.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1194651 - CVE-2015-0278 libuv: incorrect revocation order while
relinquishing privileges
https://bugzilla.redhat.com/show_bug.cgi?id=1194651
--------------------------------------------------------------------------------
================================================================================
novnc-0.5.1-2.el7 (FEDORA-EPEL-2015-0977)
VNC client using HTML5 (Web Sockets, Canvas) with encryption support
--------------------------------------------------------------------------------
Update Information:
Security fix (via update to 0.5.1) for session hijack through insecurely set
session token cookies
--------------------------------------------------------------------------------
ChangeLog:
* Thu Feb 19 2015 Solly Ross <sr...@redhat.com> - 0.5.1-2
- Update Source0 to point to correct URL
* Sat Jan 10 2015 Alan Pevec <ape...@redhat.com> - 0.5.1-1
- update to the new upstream version, for changes since 0.4 see:
https://github.com/kanaka/noVNC/releases/tag/v0.5
https://github.com/kanaka/noVNC/releases/tag/v0.5.1
* Sat Jun 7 2014 Fedora Release Engineering <rel-...@lists.fedoraproject.org>
- 0.4-9
- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild
* Sat Aug 3 2013 Fedora Release Engineering <rel-...@lists.fedoraproject.org>
- 0.4-8
- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
* Mon Jun 24 2013 Nikola Đipanov <ndipa...@redhat.com> - 0.4-7
- Remove the openstack-nova-novncproxy subpackage (moved to openstack-nova)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1193451 - novnc: session hijack through insecurely set session
token cookies
https://bugzilla.redhat.com/show_bug.cgi?id=1193451
--------------------------------------------------------------------------------
================================================================================
perl-Finance-Quote-1.37-2.el7 (FEDORA-EPEL-2015-0962)
A Perl module that retrieves stock and mutual fund quotes
--------------------------------------------------------------------------------
Update Information:
This updates fixes some issues relating to retrieval of UK fund prices.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Feb 24 2015 Paul Howarth <p...@city-fan.org> - 1.37-2
- Fix GBX pricing in FTfunds (CPAN RT#99783)
- Fix MStaruk quote retrieval (CPAN RT#99784)
--------------------------------------------------------------------------------
================================================================================
perl-Tangerine-0.13-1.el7 (FEDORA-EPEL-2015-0955)
Analyse perl files and report module-related information
--------------------------------------------------------------------------------
Update Information:
A new release of Tangerine available. This version introduces heavily improved
support for Inline and support for Module::Pluggable routines.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Feb 25 2015 Petr Šabata <con...@redhat.com> - 0.13-1
- 0.13 bump
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1195991 - perl-Tangerine-0.13 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1195991
--------------------------------------------------------------------------------
================================================================================
php-PHPParser-1.1.0-1.el7 (FEDORA-EPEL-2015-0969)
A PHP parser written in PHP
--------------------------------------------------------------------------------
Update Information:
**PHP-Parser 1.1.0**
* Methods that do not specify an explicit visibility (e.g. function method())
will now have the MODIFIER_PUBLIC flag set. This also means that their
isPublic() method will return true.
* Declaring a property as abstract or final is now an error.
* The Lexer and Lexer\Emulative classes now accept an $options array in their
constructors. Currently only the usedAttributes option is supported, which
determines which attributes will be added to AST nodes. In particular it is now
possible to add information on the token and file positions corresponding to a
node. For more details see the Lexer component documentation.
* Node visitors can now return NodeTraverser::DONT_TRAVERSE_CHILDREN from
enterNode() in order to skip all children of the current node, for all visitors.
* Added builders for traits and namespaces.
* The class, interface, trait, function, method and property builders now
support adding doc comments using the setDocComment() method.
* Added support for fully-qualified and namespace-relative names in builders.
No longer allow use of name component arrays.
* Do not add documentation and tests to distribution archive files.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Feb 25 2015 Remi Collet <r...@fedoraproject.org> - 1.1.0-1
- update to 1.1.0
- use git snapshot as upstream tarball don't provide the test suite
- provide the php-parse command
--------------------------------------------------------------------------------
================================================================================
php-ZendFramework-1.12.11-1.el7 (FEDORA-EPEL-2015-0967)
Leading open-source PHP framework
--------------------------------------------------------------------------------
Update Information:
Update to 1.12.11 with minor bugfixes
Adding Zend Framework 1 to the EPEL 7 repository.
--------------------------------------------------------------------------------
================================================================================
php-ocramius-code-generator-utils-0.3.1-1.el7 (FEDORA-EPEL-2015-0969)
A set of code generator utilities built on top of PHP-Parsers
--------------------------------------------------------------------------------
Update Information:
**PHP-Parser 1.1.0**
* Methods that do not specify an explicit visibility (e.g. function method())
will now have the MODIFIER_PUBLIC flag set. This also means that their
isPublic() method will return true.
* Declaring a property as abstract or final is now an error.
* The Lexer and Lexer\Emulative classes now accept an $options array in their
constructors. Currently only the usedAttributes option is supported, which
determines which attributes will be added to AST nodes. In particular it is now
possible to add information on the token and file positions corresponding to a
node. For more details see the Lexer component documentation.
* Node visitors can now return NodeTraverser::DONT_TRAVERSE_CHILDREN from
enterNode() in order to skip all children of the current node, for all visitors.
* Added builders for traits and namespaces.
* The class, interface, trait, function, method and property builders now
support adding doc comments using the setDocComment() method.
* Added support for fully-qualified and namespace-relative names in builders.
No longer allow use of name component arrays.
* Do not add documentation and tests to distribution archive files.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Feb 25 2015 Remi Collet <r...@fedoraproject.org> - 0.3.1-1
- update to 0.3.1 (no change)
- raise nikic/php-parser max version
--------------------------------------------------------------------------------
================================================================================
php-ocramius-generated-hydrator-1.1.1-1.el7 (FEDORA-EPEL-2015-0969)
An object hydrator
--------------------------------------------------------------------------------
Update Information:
**PHP-Parser 1.1.0**
* Methods that do not specify an explicit visibility (e.g. function method())
will now have the MODIFIER_PUBLIC flag set. This also means that their
isPublic() method will return true.
* Declaring a property as abstract or final is now an error.
* The Lexer and Lexer\Emulative classes now accept an $options array in their
constructors. Currently only the usedAttributes option is supported, which
determines which attributes will be added to AST nodes. In particular it is now
possible to add information on the token and file positions corresponding to a
node. For more details see the Lexer component documentation.
* Node visitors can now return NodeTraverser::DONT_TRAVERSE_CHILDREN from
enterNode() in order to skip all children of the current node, for all visitors.
* Added builders for traits and namespaces.
* The class, interface, trait, function, method and property builders now
support adding doc comments using the setDocComment() method.
* Added support for fully-qualified and namespace-relative names in builders.
No longer allow use of name component arrays.
* Do not add documentation and tests to distribution archive files.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Feb 25 2015 Remi Collet <r...@fedoraproject.org> - 1.1.1-1
- update to 1.1.1 (no change)
- raise nikic/php-parser max version
--------------------------------------------------------------------------------
================================================================================
python-httpretty-0.8.3-2.el7 (FEDORA-EPEL-2015-0954)
HTTP request mock tool for Python
--------------------------------------------------------------------------------
Update Information:
Enable building package for epel7.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1194268 - Please build for epel7 and el6
https://bugzilla.redhat.com/show_bug.cgi?id=1194268
--------------------------------------------------------------------------------
================================================================================
qpid-cpp-0.30-12.el7 (FEDORA-EPEL-2015-0952)
Libraries for Qpid C++ client applications
--------------------------------------------------------------------------------
Update Information:
Added qpidtoollibs to the qpid-tools package.
Fixed path to qpid-ha in the systemd service descriptor.
Resolves: BZ#1186308
Apply patch 10.
Resolves: BZ#1184488
Resolves: BZ#1181721
Enabled building the linear store.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Feb 25 2015 Darryl L. Pierce <dpie...@redhat.com> - 0.30-12
- Added qpidtoollibs to the qpid-tools package.
* Fri Feb 20 2015 Darryl L. Pierce <dpie...@redhat.com> - 0.30-11
- Fixed path to qpid-ha in the systemd service descriptor.
* Wed Feb 4 2015 Petr Machata <pmach...@redhat.com> - 0.30-10
- Bump for rebuild.
* Mon Feb 2 2015 Darryl L. Pierce <dpie...@redhat.com> - 0.30-9
- Resolves: BZ#1186308
* Tue Jan 27 2015 Petr Machata <pmach...@redhat.com> - 0.30-8
- Rebuild for boost 1.57.0
* Thu Jan 22 2015 Darryl L. Pierce <dpie...@redhat.com> - 0.30-7
- Apply patch 10.
* Wed Jan 21 2015 Darryl L. Pierce <dpie...@redhat.com> - 0.30-6
- Resolves: BZ#1184488
* Fri Jan 16 2015 Darryl L. Pierce <dpie...@redhat.com> - 0.30-5
- Resolves: BZ#1181721
* Wed Oct 29 2014 Darryl L. Pierce <dpie...@redhat.com> - 0.30-4
- QPID-6170: Fixes builds on aarch64 and ppc64le architectures.
* Tue Oct 14 2014 Darryl L. Pierce <dpie...@redhat.com> - 0.30-3
- Enabled building the linear store.
- Added qpid-cpp-server-linearstore package.
- QPID-6150: qpid-qls-analyze tool cannot find Python modules
* Wed Oct 8 2014 Darryl L. Pierce <dpie...@redhat.com> - 0.30-2
- Readded the qpid-tools subpackage rather than moving it to a new package.
* Thu Oct 2 2014 Darryl L. Pierce <dpie...@redhat.com> - 0.30-1
- Rebased on Qpid 0.30.
- Upstream tarball filename changed from qpid-##.#.tar.gz to
qpid-cpp-##.#.tar.gz.
- qpid-tools moved out to a separate package.
- Moved qpid-send and qpid-receive to the qpid-cpp-client-devel package.
* Mon Aug 25 2014 Darryl L. Pierce <dpie...@redhat.com> - 0.28-9
- Removed the linear store block that was commented out.
* Sun Aug 17 2014 Fedora Release Engineering <rel-...@lists.fedoraproject.org>
- 0.28-8
- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild
* Fri Aug 15 2014 Darryl L. Pierce <dpie...@redhat.com> - 0.28-7
- Removed ssl package references.
* Thu Aug 14 2014 Darryl L. Pierce <dpie...@redhat.com> - 0.28-6
- Renamed the virtual provides to conform with project needs.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1181721 - CVE-2015-0203 qpid-cpp: qpidd can be crashed by
unauthenticated user
https://bugzilla.redhat.com/show_bug.cgi?id=1181721
[ 2 ] Bug #1186308 - CVE-2015-0223 qpid-cpp: anonymous access to qpidd cannot
be prevented
https://bugzilla.redhat.com/show_bug.cgi?id=1186308
--------------------------------------------------------------------------------
================================================================================
qpid-dispatch-0.3-4.el7 (FEDORA-EPEL-2015-0965)
Dispatch router for Qpid
--------------------------------------------------------------------------------
Update Information:
Changed SysVInit script to properly name qdrouterd as the service to start.
Update inter-package dependencies to include release as well as version.
Disabled building documentation due to missing pandoc-pdf on EL6.
Rebased on Dispatch 0.3.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Feb 24 2015 Darryl L. Pierce <dpie...@redhat.com> - 0.3-4
- Changed SysVInit script to properly name qdrouterd as the service to start.
* Fri Feb 20 2015 Darryl L. Pierce <dpie...@redhat.com> - 0.3-3
- Update inter-package dependencies to include release as well as version.
* Wed Feb 11 2015 Darryl L. Pierce <dpie...@redhat.com> - 0.3-2
- Disabled building documentation due to missing pandoc-pdf on EL6.
- Disabled daemon setgid.
- Fixes to accomodate Python 2.6 on EL6.
- Removed implicit dependency on python-qpid-proton in qpid-dispatch-router.
* Tue Jan 27 2015 Darryl L. Pierce <dpie...@redhat.com> - 0.3-1
- Rebased on Dispatch 0.3.
- Increased the minimum Proton version needed to 0.8.
- Moved all tests to the -devel package.
- Ensure executable bit turned off on systemd file.
- Set the location of installed documentation.
--------------------------------------------------------------------------------
================================================================================
rubygem-puppet-lint-1.1.0-2.el7 (FEDORA-EPEL-2015-0947)
Ensure your Puppet manifests conform with the Puppetlabs style guide
--------------------------------------------------------------------------------
Update Information:
Support building for EPEL 7
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1191370 - Please build to EPEL 7
https://bugzilla.redhat.com/show_bug.cgi?id=1191370
--------------------------------------------------------------------------------
================================================================================
smbldap-tools-0.9.10-6.el7 (FEDORA-EPEL-2015-0945)
User and group administration tools for Samba/OpenLDAP
--------------------------------------------------------------------------------
Update Information:
This update fixes an issue in smbldap-usermod in which it cannot modify a
user's uid.
--------------------------------------------------------------------------------
ChangeLog:
* Tue Feb 24 2015 Paul Howarth <p...@city-fan.org> - 0.9.10-6
- Add missing export of account_base_rid, needed by smbldap_usermod (#1138608)
(https://gna.org/support/?3213)
- Use %license where possible
* Wed Aug 27 2014 Jitka Plesnikova <jples...@redhat.com> - 0.9.10-5
- Perl 5.20 rebuild
* Sun Jun 8 2014 Fedora Release Engineering <rel-...@lists.fedoraproject.org>
- 0.9.10-4
- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild
* Sun Aug 4 2013 Fedora Release Engineering <rel-...@lists.fedoraproject.org>
- 0.9.10-3
- Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild
* Wed Jul 17 2013 Petr Pisar <ppi...@redhat.com> - 0.9.10-2
- Perl 5.18 rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1138608 - smblap-mod uid - Undefined subroutine
https://bugzilla.redhat.com/show_bug.cgi?id=1138608
--------------------------------------------------------------------------------
================================================================================
spamass-milter-0.3.2-15.el7 (FEDORA-EPEL-2015-0956)
Milter (mail filter) for spamassassin
--------------------------------------------------------------------------------
Update Information:
This update adds a "-R reject-text" option to allow the SMTP rejection text to
be changed from the default "Blocked By Spamassasin".
--------------------------------------------------------------------------------
ChangeLog:
* Tue Feb 24 2015 Paul Howarth <p...@city-fan.org> - 0.3.2-15
- Add -R option to specify SMTP rejection text (#1131667)
- Drop %defattr, redundant since rpm 4.4
* Thu Aug 21 2014 Kevin Fenzi <ke...@scrye.com> - 0.3.2-14
- Rebuild for rpm bug 1131960
* Mon Aug 18 2014 Fedora Release Engineering <rel-...@lists.fedoraproject.org>
- 0.3.2-13
- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild
* Sun Jun 8 2014 Fedora Release Engineering <rel-...@lists.fedoraproject.org>
- 0.3.2-12
- Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1131667 - customizeable reject text -> patches available
https://bugzilla.redhat.com/show_bug.cgi?id=1131667
--------------------------------------------------------------------------------
================================================================================
v8-3.14.5.10-17.el7 (FEDORA-EPEL-2015-0862)
JavaScript Engine
--------------------------------------------------------------------------------
Update Information:
# nodejs
* tls: re-add 1024-bit SSL certs removed by f9456a2 (Chris Dickinson)
* timers: don't close interval timers when unrefd (Julien Gilli)
* timers: don't mutate unref list while iterating it (Julien Gilli)
* child_process: check execFile args is an array (Sam Roberts)
* child_process: check fork args is an array (Sam Roberts)
* crypto: update root certificates (Ben Noordhuis)
* domains: fix issues with abort on uncaught (Julien Gilli)
* timers: Avoid linear scan in _unrefActive. (Julien Gilli)
* timers: fix unref() memory leak (Trevor Norris)
* debugger: fix when using "use strict" (Julien Gilli)
# libuv
* linux: fix epoll_pwait() regression with < 2.6.19 (Ben Noordhuis)
* linux: fix epoll_pwait() sigmask size calculation (Ben Noordhuis)
* linux: fix sigmask size arg in epoll_pwait() call (Ben Noordhuis)
* linux: handle O_NONBLOCK != SOCK_NONBLOCK case (Helge Deller)
* doc: update project links (Ben Noordhuis)
* unix: add flag for blocking SIGPROF during poll (Ben Noordhuis)
* unix, windows: add uv_loop_configure() function (Ben Noordhuis)
# v8
* Fix debugger and strict mode regression (Julien Gilli)
* don't busy loop in cpu profiler thread (Ben Noordhuis)
* add api for aborting on uncaught exception (Julien Gilli)
--------------------------------------------------------------------------------
ChangeLog:
* Thu Feb 19 2015 T.C. Hollingsworth <tchollingswo...@gmail.com> -
1:3.14.5.10-17
- backports for nodejs 0.10.36
* Mon Jan 26 2015 David Tardon <dtar...@redhat.com> - 1:3.14.5.10-16
- rebuild for ICU 54.1
* Tue Dec 2 2014 Tom Callaway <s...@fedoraproject.org> - 1:3.14.5.10-15
- use system valgrind header (bz1141483)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1194651 - CVE-2015-0278 libuv: incorrect revocation order while
relinquishing privileges
https://bugzilla.redhat.com/show_bug.cgi?id=1194651
--------------------------------------------------------------------------------
================================================================================
x2goserver-4.0.1.19-1.el7 (FEDORA-EPEL-2015-0966)
X2Go Server
--------------------------------------------------------------------------------
Update Information:
Update to 4.0.1.19:
- cross-user X2Go Desktop Sharing working again
- handle Active Directory usernames correctly when using SQLite
- new man page for x2gogetapps with disclaimer suggested by Stefan Baur
- a lot of bug fixes
--------------------------------------------------------------------------------
ChangeLog:
* Tue Feb 24 2015 Orion Poplawski <or...@cora.nwra.com> - 4.0.1.19-1
- Update to 4.0.1.19
- Drop Xsession and path patches fixed upstream
* Mon Jan 26 2015 Orion Poplawski <or...@cora.nwra.com> - 4.0.1.18-6
- Obsolete x2goserver-extensions to provide upgrade path from upstream rpms
--------------------------------------------------------------------------------
_______________________________________________
epel-devel mailing list
epel-devel@lists.fedoraproject.org
https://admin.fedoraproject.org/mailman/listinfo/epel-devel
