The following Fedora EPEL 6 Security updates need testing: Age URL 1051 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2012-5620/bugzilla-3.4.14-2.el6 115 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-4008/cross-binutils-2.23.51.0.3-1.el6.1 104 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-4242/facter-1.6.18-8.el6 92 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-4485/python-tornado-2.2.1-7.el6 74 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2014-4884/mapserver-6.0.4-1.el6 54 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-0232/chicken-4.9.0.1-2.el6 31 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-0644/perl-Gtk2-1.2495-1.el6 28 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-0696/drupal7-path_breadcrumbs-3.2-1.el6 21 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-0779/drupal7-views-3.10-1.el6 10 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-0942/novnc-0.5.1-2.el6 10 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-0864/nodejs-0.10.36-3.el6,libuv-0.10.34-1.el6,v8-3.14.5.10-17.el6 9 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-0992/libpng10-1.0.63-1.el6 9 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-0985/drupal7-entity-1.6-1.el6 7 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-1022/cabextract-1.5-1.el6 0 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-1047/putty-0.63-4.el6 0 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-1107/dokuwiki-0-0.24.20140929c.el6 0 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-1108/librsync-1.0.0-1.el6,csync2-1.34-15.el6,duplicity-0.6.22-4.el6,rdiff-backup-1.2.8-6.el6 0 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-1173/seamonkey-2.28-4.ESR_31.5.0.el6 0 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-1177/libmspack-0.5-0.1.alpha.el6 0 https://admin.fedoraproject.org/updates/FEDORA-EPEL-2015-1069/phpMyAdmin-4.0.10.9-1.el6
The following builds have been pushed to Fedora EPEL 6 updates-testing HepMC-2.06.09-9.el6 R-qtl-1.36.6-1.el6 bash-argsparse-1.7-1.el6 csdiff-1.2.1-1.el6 csmock-1.7.2-1.el6 cswrap-1.3.0-1.el6 csync2-1.34-15.el6 dokuwiki-0-0.24.20140929c.el6 drupal7-features-2.4-1.el6 drupal7-token-1.6-1.el6 duplicity-0.6.22-4.el6 fedpkg-minimal-1.0.0-3.el6 fts-3.2.32-1.el6 fts-monitoring-3.2.32-1.el6 fts-mysql-3.2.32-1.el6 getmail-4.47.0-1.el6 gfal2-2.8.4-1.el6 git-review-1.24-4.el6 globus-ftp-client-8.20-1.el6 golang-bitbucket-ww-goautoneg-0-0.2.git75cd24fc2f2c.el6 golang-github-docker-spdystream-0-0.2.gite9bf991.el6 golang-github-google-gofuzz-0-0.5.gitbbcb9da.el6 golang-github-matttproud-golang_protobuf_extensions-0-0.2.gitba7d65a.el6 golang-github-prometheus-client_golang-0-0.3.gite5098ac.el6 golang-github-prometheus-client_model-0-0.3.gitfa8ad6f.el6 golang-github-prometheus-procfs-0-0.2.git6c34ef8.el6 golang-github-rackspace-gophercloud-1.0.0-5.el6 golang-github-russross-blackfriday-1.2-5.el6 golang-github-stretchr-testify-0-0.7.gite4ec815.el6 golang-googlecode-goprotobuf-0-0.13.gitc22ae3c.el6 ipv6calc-0.98.0-10.el6 js-jquery-2.1.3-1.el6 js-jquery1-1.11.2-2.el6 js-sizzle-2.1.1-1.jquery.2.1.2.el6 lhapdf-5.9.1-9.el6 libmspack-0.5-0.1.alpha.el6 librsync-1.0.0-1.el6 milter-greylist-4.5.12-2.el6 milter-regex-2.0-1.el6 mingw-zlib-1.2.8-2.el6 munin-2.0.25-2.el6 opendkim-2.10.1-2.el6 opendmarc-1.3.1-3.el6 owncloud-7.0.4-3.el6 perl-Class-Virtual-0.07-1.el6 perl-SOAP-Lite-0.716-4.el6 php-google-apiclient-1.1.2-2.el6 php-horde-Horde-Core-2.19.2-1.el6 php-horde-Horde-Group-2.0.5-1.el6 php-horde-Horde-HashTable-1.2.3-1.el6 php-horde-Horde-Http-2.1.4-1.el6 php-horde-Horde-Service-Weather-2.1.6-1.el6 php-horde-Horde-Util-2.5.4-1.el6 php-pecl-redis-2.2.7-1.el6 php-sabre-dav-1.8.12-1.el6 php-sabredav-Sabre_VObject-2.1.7-1.el6 phpMyAdmin-4.0.10.9-1.el6 putty-0.63-4.el6 pyflakes-0.7.3-5.el6 python-fedora-0.3.37-1.el6 python-httpretty-0.8.3-3.el6 python-pep8-1.4.6-3.el6 qsstv-8.2.10-1.el6 rdiff-backup-1.2.8-6.el6 root-5.34.26-1.el6 seamonkey-2.28-4.ESR_31.5.0.el6 srm-ifce-1.22.2-1.el6 udt-4.11-4.el6 Details about builds: ================================================================================ HepMC-2.06.09-9.el6 (FEDORA-EPEL-2015-1172) C++ Event Record for Monte Carlo Generators -------------------------------------------------------------------------------- Update Information: Avoid hexfloat notation (gcc 5), Use greater allowed epsilon for test (fixes i686 build). -------------------------------------------------------------------------------- ChangeLog: * Fri Mar 6 2015 Mattias Ellert <mattias.ell...@fysast.uu.se> - 2.06.09-9 - Increase epsilon - for i686 Fedora 22+ tests * Fri Mar 6 2015 Mattias Ellert <mattias.ell...@fysast.uu.se> - 2.06.09-8 - Do not trigger hexfloat output with gcc 5 * Fri Aug 15 2014 Fedora Release Engineering <rel-...@lists.fedoraproject.org> - 2.06.09-7 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild * Fri Jun 6 2014 Fedora Release Engineering <rel-...@lists.fedoraproject.org> - 2.06.09-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Thu Aug 8 2013 Mattias Ellert <mattias.ell...@fysast.uu.se> - 2.06.09-5 - Use _pkgdocdir * Fri Aug 2 2013 Fedora Release Engineering <rel-...@lists.fedoraproject.org> - 2.06.09-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ R-qtl-1.36.6-1.el6 (FEDORA-EPEL-2015-1078) Tools for analyzing QTL experiments -------------------------------------------------------------------------------- Update Information: Version 1.36, 2015-03-05 Major changes: * None. Minor changes: * Added a function flip.order() for flipping the order of markers on selected chromosomes. * Added scanonevar.meanperm and scanonevar.varperm (from Robert Corty) for permutation tests with scanonevar(). * Revised plotPheno (aka plot.pheno) so that one can control the x-axis label and title (also, in a histogram, the breaks). * plotPXG: if infer=FALSE and there are no fully-informative genotypes (e.g., in a 4-way cross), give a more informative error. * geno.image: allow control of x- and y-axis labels; allow suppression of axes. * Removed some warnings about missing end-of-line characters, in read.cross with MapQTL format. * Fixed a bug in scanonevar; was failing with an error about coercing class "A" to a data.frame * Dropped the name summary.scantwo.old(); still available as summaryScantwoOld(). -------------------------------------------------------------------------------- ChangeLog: * Fri Mar 6 2015 Mattias Ellert <mattias.ell...@fysast.uu.se> - 1.36.6-1 - Update to 1.36.6 -------------------------------------------------------------------------------- ================================================================================ bash-argsparse-1.7-1.el6 (FEDORA-EPEL-2015-1165) An high level argument parsing library for bash -------------------------------------------------------------------------------- Update Information: Updated to upstream version 1.7 -------------------------------------------------------------------------------- ChangeLog: * Thu Mar 5 2015 Dams <bash-argsparse[AT]livna.org> - 1.7-1 - Version 1.7 * Wed Jan 28 2015 Dams <bash-argsparse[AT]livna.org> - 1.6.2-1 - Version 1.6.2 - Dropped fedora patch (included upstream) -------------------------------------------------------------------------------- ================================================================================ csdiff-1.2.1-1.el6 (FEDORA-EPEL-2015-1152) Non-interactive tools for processing code scan results in plain-text -------------------------------------------------------------------------------- Update Information: latest upstream version of csmock and its dependencies -------------------------------------------------------------------------------- ChangeLog: * Tue Mar 3 2015 Kamil Dudka <kdu...@redhat.com> 1.2.1-1 - update to latest upstream release -------------------------------------------------------------------------------- ================================================================================ csmock-1.7.2-1.el6 (FEDORA-EPEL-2015-1152) A mock wrapper for Static Analysis tools -------------------------------------------------------------------------------- Update Information: latest upstream version of csmock and its dependencies -------------------------------------------------------------------------------- ChangeLog: * Tue Mar 3 2015 Kamil Dudka <kdu...@redhat.com> 1.7.2-1 - update to latest upstream -------------------------------------------------------------------------------- ================================================================================ cswrap-1.3.0-1.el6 (FEDORA-EPEL-2015-1152) Generic compiler wrapper -------------------------------------------------------------------------------- Update Information: latest upstream version of csmock and its dependencies -------------------------------------------------------------------------------- ChangeLog: * Wed Feb 18 2015 Kamil Dudka <kdu...@redhat.com> 1.3.0-1 - update to latest upstream -------------------------------------------------------------------------------- ================================================================================ csync2-1.34-15.el6 (FEDORA-EPEL-2015-1108) Cluster synchronization tool -------------------------------------------------------------------------------- Update Information: Changes in librsync 1.0.0 (2015-01-23) ====================================== * SECURITY: CVE-2014-8242: librsync previously used a truncated MD4 "strong" check sum to match blocks. However, MD4 is not cryptographically strong. It's possible that an attacker who can control the contents of one part of a file could use it to control other regions of the file, if it's transferred using librsync/rdiff. For example this might occur in a database, mailbox, or VM image containing some attacker-controlled data. To mitigate this issue, signatures will by default be computed with a 256-bit BLAKE2 hash. Old versions of librsync will complain about a bad magic number when given these signature files. Backward compatibility can be obtained using the new `rdiff sig --hash=md4` option or through specifying the "signature magic" in the API, but this should not be used when either the old or new file contain untrusted data. Deltas generated from those signatures will also use BLAKE2 during generation, but produce output that can be read by old versions. See https://github.com/librsync/librsync/issues/5. Thanks to Michael Samuel <miknet.net> for reporting this and offering an initial patch. * Various build fixes, thanks Timothy Gu. * Improved rdiff man page from Debian. * Improved librsync.spec file for building RPMs. * Fixed bug #1110812 'internal error: job made no progress'; on large files. * Moved hosting to https://github.com/librsync/librsync/ * Travis-CI.org integration test at https://travis-ci.org/librsync/librsync/ * Remove bundled copy of popt; it must be installed separately. * You can set `$LIBTOOLIZE` before running `autogen.sh`, for example on OS X Homebrew where it is called `glibtoolize`. -------------------------------------------------------------------------------- ChangeLog: * Sun Mar 1 2015 Robert Scheck <rob...@fedoraproject.org> 1.34-15 - Rebuild for librsync 1.0.0 (#1126712) * Sat Aug 16 2014 Fedora Release Engineering <rel-...@lists.fedoraproject.org> - 1.34-14 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild * Sat Jun 7 2014 Fedora Release Engineering <rel-...@lists.fedoraproject.org> - 1.34-13 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Sat Aug 3 2013 Fedora Release Engineering <rel-...@lists.fedoraproject.org> - 1.34-12 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild * Wed Feb 13 2013 Fedora Release Engineering <rel-...@lists.fedoraproject.org> - 1.34-11 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1126712 - CVE-2014-8242 librsync: MD4 collision file corruption https://bugzilla.redhat.com/show_bug.cgi?id=1126712 -------------------------------------------------------------------------------- ================================================================================ dokuwiki-0-0.24.20140929c.el6 (FEDORA-EPEL-2015-1107) Standards compliant simple to use wiki -------------------------------------------------------------------------------- Update Information: This update fixes CVE-2015-2172 * There's a security hole in the ACL plugins remote API component. The plugin failes to check for superuser permissions before executing ACL addition or deletion. This means everybody with permissions to call the XMLRPC API also has permissions to set up their own ACL rules and thus circumventing any existing rules. Update to the 2014-09-29b release which contains various fixes, notably: Security: * CVE-2014-9253 - XSS via SFW file upload * CVE-2012-6662 - jquery-ui XSS vulnerability Bugfixes: * dokuwiki requires php-xml (RHBZ#1061477) * wrong SELinux file context for writable files/directories (RHBZ#1064524) * drop httpd requirement (RHBZ#1164396) Update to the 2014-09-29b release which contains various fixes, notably: Security: * CVE-2014-9253 - XSS via SFW file upload * CVE-2012-6662 - jquery-ui XSS vulnerability Bugfixes: * dokuwiki requires php-xml (RHBZ#1061477) * wrong SELinux file context for writable files/directories (RHBZ#1064524) * drop httpd requirement (RHBZ#1164396) Update to the 2014-09-29b release which contains various fixes, notably: Security: * CVE-2014-9253 - XSS via SFW file upload * CVE-2012-6662 - jquery-ui XSS vulnerability Bugfixes: * dokuwiki requires php-xml (RHBZ#1061477) * wrong SELinux file context for writable files/directories (RHBZ#1064524) * drop httpd requirement (RHBZ#1164396) Update to the 2014-09-29b release which contains various fixes, notably: Security: * CVE-2014-9253 - XSS via SFW file upload * CVE-2012-6662 - jquery-ui XSS vulnerability Bugfixes: * dokuwiki requires php-xml (RHBZ#1061477) * wrong SELinux file context for writable files/directories (RHBZ#1064524) * drop httpd requirement (RHBZ#1164396) This update adds dokuwiki package to EPEL7 -------------------------------------------------------------------------------- ChangeLog: * Tue Mar 3 2015 Adam Tkac <von...@gmail.com> - 0.0.24.20140929c - update to the latest upstream (CVE-2015-2172) * Fri Dec 26 2014 Adam Tkac <von...@gmail.com> - 0.0.23.20140929b - update to the latest upstream - drop requirement of httpd (#1164396) - fix SELinux file contexts (#1064524) - require php-xml (#1061477) * Sat Jun 7 2014 Fedora Release Engineering <rel-...@lists.fedoraproject.org> - 0-0.22.20131208 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1197822 - CVE-2015-2172 dokuwiki: privilege escalation in RPC API https://bugzilla.redhat.com/show_bug.cgi?id=1197822 -------------------------------------------------------------------------------- ================================================================================ drupal7-features-2.4-1.el6 (FEDORA-EPEL-2015-1046) Provides feature management for Drupal -------------------------------------------------------------------------------- Update Information: Update to upstream 2.4 release for bug fixes -------------------------------------------------------------------------------- ChangeLog: * Thu Mar 5 2015 Jared Smith <jsm...@fedoraproject.org> - 2.4-1 - Update to upstream 2.4 release for bug fixes - Upstream changelog for this release: https://www.drupal.org/node/2446159 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1199065 - drupal7-features-2.4 is available https://bugzilla.redhat.com/show_bug.cgi?id=1199065 -------------------------------------------------------------------------------- ================================================================================ drupal7-token-1.6-1.el6 (FEDORA-EPEL-2015-1062) Provides a user interface for the Token API and some missing core tokens -------------------------------------------------------------------------------- Update Information: Fixes bugs in the Token module. For complete details, refer to: https://www.drupal.org/node/2443407 -------------------------------------------------------------------------------- ChangeLog: * Mon Mar 2 2015 Paul W. Frields <sticks...@gmail.com> - 1.6-1 - New upstream version. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1197526 - drupal7-token-1.6 is available https://bugzilla.redhat.com/show_bug.cgi?id=1197526 -------------------------------------------------------------------------------- ================================================================================ duplicity-0.6.22-4.el6 (FEDORA-EPEL-2015-1108) Encrypted bandwidth-efficient backup using rsync algorithm -------------------------------------------------------------------------------- Update Information: Changes in librsync 1.0.0 (2015-01-23) ====================================== * SECURITY: CVE-2014-8242: librsync previously used a truncated MD4 "strong" check sum to match blocks. However, MD4 is not cryptographically strong. It's possible that an attacker who can control the contents of one part of a file could use it to control other regions of the file, if it's transferred using librsync/rdiff. For example this might occur in a database, mailbox, or VM image containing some attacker-controlled data. To mitigate this issue, signatures will by default be computed with a 256-bit BLAKE2 hash. Old versions of librsync will complain about a bad magic number when given these signature files. Backward compatibility can be obtained using the new `rdiff sig --hash=md4` option or through specifying the "signature magic" in the API, but this should not be used when either the old or new file contain untrusted data. Deltas generated from those signatures will also use BLAKE2 during generation, but produce output that can be read by old versions. See https://github.com/librsync/librsync/issues/5. Thanks to Michael Samuel <miknet.net> for reporting this and offering an initial patch. * Various build fixes, thanks Timothy Gu. * Improved rdiff man page from Debian. * Improved librsync.spec file for building RPMs. * Fixed bug #1110812 'internal error: job made no progress'; on large files. * Moved hosting to https://github.com/librsync/librsync/ * Travis-CI.org integration test at https://travis-ci.org/librsync/librsync/ * Remove bundled copy of popt; it must be installed separately. * You can set `$LIBTOOLIZE` before running `autogen.sh`, for example on OS X Homebrew where it is called `glibtoolize`. -------------------------------------------------------------------------------- ChangeLog: * Sat Mar 7 2015 Robert Scheck <rob...@fedoraproject.org> - 0.6.22-4 - Rebuild for librsync 1.0.0 (#1126712) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1126712 - CVE-2014-8242 librsync: MD4 collision file corruption https://bugzilla.redhat.com/show_bug.cgi?id=1126712 -------------------------------------------------------------------------------- ================================================================================ fedpkg-minimal-1.0.0-3.el6 (FEDORA-EPEL-2015-1096) Script to allow fedpkg fetch to work -------------------------------------------------------------------------------- Update Information: fedpkg replacement for use in Fedora buildsystem buildroots -------------------------------------------------------------------------------- References: [ 1 ] Bug #1189611 - Review Request: fedpkg-minimal - Script to allow fedpkg fetch to work https://bugzilla.redhat.com/show_bug.cgi?id=1189611 -------------------------------------------------------------------------------- ================================================================================ fts-3.2.32-1.el6 (FEDORA-EPEL-2015-1150) File Transfer Service V3 -------------------------------------------------------------------------------- Update Information: fts 3.2.32 release -------------------------------------------------------------------------------- ChangeLog: * Thu Mar 5 2015 Alejandro Alvarez Ayllon <aalva...@cern.ch> - 3.2.31-1 - Update for new upstream release * Thu Jan 29 2015 Petr Machata <pmach...@redhat.com> - 3.2.30-3 - Rebuild for boost 1.57.0 - Include <boost/scoped_ptr.hpp> in src/url-copy/main.cpp (fts-3.2.30-boost157.patch) * Mon Jan 26 2015 Alejandro Alvarez Ayllon <aalva...@cern.ch> - 3.2.30-2 - Rebuilt for gsoap 2.8.21 -------------------------------------------------------------------------------- ================================================================================ fts-monitoring-3.2.32-1.el6 (FEDORA-EPEL-2015-1051) FTS3 Web Application for monitoring -------------------------------------------------------------------------------- Update Information: Release 3.2.32 -------------------------------------------------------------------------------- ChangeLog: * Fri Mar 6 2015 Alejandro Alarez Ayllon <aalva...@cern.ch> - 3.2.32-1 - Update for new upstream release -------------------------------------------------------------------------------- ================================================================================ fts-mysql-3.2.32-1.el6 (FEDORA-EPEL-2015-1086) File Transfer Service V3 mysql plug-in -------------------------------------------------------------------------------- Update Information: New release 3.2.32 -------------------------------------------------------------------------------- ChangeLog: * Fri Mar 6 2015 Alejandro Alvarez Ayllon <aalva...@cern.ch> - 3.2.32-1 - Update for new upstream release * Tue Feb 3 2015 Alejandro Alvarez Ayllon <aalva...@cern.ch> - 3.2.30-2 - Rebuilt for new Boost release -------------------------------------------------------------------------------- ================================================================================ getmail-4.47.0-1.el6 (FEDORA-EPEL-2015-1128) POP3, IMAP4 and SDPS mail retriever with Maildir delivery -------------------------------------------------------------------------------- Update Information: new upstream release -------------------------------------------------------------------------------- ChangeLog: * Mon Mar 2 2015 Markus Mayer <lotharl...@gmx.de> - 4.47.0-1 - Upstream 4.47.0 release. -------------------------------------------------------------------------------- ================================================================================ gfal2-2.8.4-1.el6 (FEDORA-EPEL-2015-1105) Grid file access library 2.0 -------------------------------------------------------------------------------- Update Information: Update for release of gfal2 2.8.4 -------------------------------------------------------------------------------- ChangeLog: * Mon Mar 2 2015 Alejandro Alvarez Ayllon <aalvarez at cern.ch> - 2.8.4-1 - Upgraded to upstream release 2.8.4 -------------------------------------------------------------------------------- ================================================================================ git-review-1.24-4.el6 (FEDORA-EPEL-2015-1068) A Git helper for integration with Gerrit -------------------------------------------------------------------------------- Update Information: This update provides upstream version 1.24, which replaces the version 1.17 previously available. It should be fully compatible and provides a large number of bugfixes and new features. -------------------------------------------------------------------------------- ChangeLog: * Thu Feb 5 2015 Pete Zaitcev <zait...@redhat.com> - 1.24-4 - Catch internal exceptions properly, avoid tripping abrtd (#1188913) * Thu Dec 11 2014 Pete Zaitcev <zait...@redhat.com> - 1.24-3 - Fix up the man page (#1170410) * Tue Nov 11 2014 Pete Zaitcev <zait...@redhat.com> - 1.24-2 - Require python-requests (#1162709) * Wed Oct 29 2014 Pete Zaitcev <zait...@redhat.com> - 1.24-1 - Upstream 1.24: better deal w/ proxies, https; bugfixes (e.g. unicode crash) - Checking for updates is out, other configuration options are in * Fri Aug 9 2013 Pete Zaitcev <zait...@redhat.com> - 1.22-1 - Upstream 1.22: per-user configurations, tweaks to gerrit branch search * Thu Mar 21 2013 Pete Zaitcev <zait...@redhat.com> - 1.20-0.1 - Upstream 1.20: can have a file called "HEAD"; add -d option - Patch the breakage with manpage in setup.py (temporarily - upstream pending) * Thu Sep 13 2012 Pete Zaitcev <zait...@redhat.com> - 1.18-1 - Upstream 1.18: list actions -------------------------------------------------------------------------------- ================================================================================ globus-ftp-client-8.20-1.el6 (FEDORA-EPEL-2015-1161) Globus Toolkit - GridFTP Client Library -------------------------------------------------------------------------------- Update Information: Improved fix for GGUS 109089/109576 (from upstream git) -------------------------------------------------------------------------------- ChangeLog: * Fri Mar 6 2015 Mattias Ellert <mattias.ell...@fysast.uu.se> - 8.20-1 - GT6 update (upstream's release of previous fix) * Thu Mar 5 2015 Mattias Ellert <mattias.ell...@fysast.uu.se> - 8.19-2 - Improved fix for GGUS 109089/109576 (from upstream git) -------------------------------------------------------------------------------- ================================================================================ golang-bitbucket-ww-goautoneg-0-0.2.git75cd24fc2f2c.el6 (FEDORA-EPEL-2015-1137) HTTP Content-Type Autonegotiation -------------------------------------------------------------------------------- Update Information: Add missing provides First package for Fedora -------------------------------------------------------------------------------- References: [ 1 ] Bug #1198803 - Review Request: golang-bitbucket-ww-goautoneg - HTTP Content-Type Autonegotiation https://bugzilla.redhat.com/show_bug.cgi?id=1198803 -------------------------------------------------------------------------------- ================================================================================ golang-github-docker-spdystream-0-0.2.gite9bf991.el6 (FEDORA-EPEL-2015-1156) A multiplexed stream library using spdy -------------------------------------------------------------------------------- Update Information: Bump to upstream e9bf9912b85eec0ed6aaf317808a0eab25e3ca43 First package for Fedora -------------------------------------------------------------------------------- References: [ 1 ] Bug #1196363 - Review Request: golang-github-docker-spdystream - A multiplexed stream library using spdy https://bugzilla.redhat.com/show_bug.cgi?id=1196363 -------------------------------------------------------------------------------- ================================================================================ golang-github-google-gofuzz-0-0.5.gitbbcb9da.el6 (FEDORA-EPEL-2015-1035) Library for populating go objects with random values -------------------------------------------------------------------------------- Update Information: Bump to upstream bbcb9da2d746f8bdbd6a936686a0a6067ada0ec5 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1141817 - Review Request: golang-github-google-gofuzz - Library for populating go objects with random values https://bugzilla.redhat.com/show_bug.cgi?id=1141817 -------------------------------------------------------------------------------- ================================================================================ golang-github-matttproud-golang_protobuf_extensions-0-0.2.gitba7d65a.el6 (FEDORA-EPEL-2015-1091) Support for streaming Protocol Buffer messages for the Go language (golang) -------------------------------------------------------------------------------- Update Information: Bump to upstream ba7d65ac66e9da93a714ca18f6d1bc7a0c09100c -------------------------------------------------------------------------------- ChangeLog: * Thu Mar 5 2015 jchaloup <jchal...@redhat.com> - 0-0.2.gitba7d65a - Bump to upstream ba7d65ac66e9da93a714ca18f6d1bc7a0c09100c related: #1190438 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1190438 - Review Request: golang-github-matttproud-golang_protobuf_extensions - Support for streaming Protocol Buffer messages for the Go language (golang) https://bugzilla.redhat.com/show_bug.cgi?id=1190438 -------------------------------------------------------------------------------- ================================================================================ golang-github-prometheus-client_golang-0-0.3.gite5098ac.el6 (FEDORA-EPEL-2015-1059) Prometheus instrumentation library for Go applications -------------------------------------------------------------------------------- Update Information: Bump to upstream e5098ac1ff13c7f85b68b120b253dd834ba49682 Bump to upstream 39e4bc83f974fb141a9e67c042b26322bacc917b First package for Fedora -------------------------------------------------------------------------------- References: [ 1 ] Bug #1190442 - Review Request: golang-github-prometheus-client_golang - Prometheus instrumentation library for Go applications https://bugzilla.redhat.com/show_bug.cgi?id=1190442 -------------------------------------------------------------------------------- ================================================================================ golang-github-prometheus-client_model-0-0.3.gitfa8ad6f.el6 (FEDORA-EPEL-2015-1079) Data model artifacts for Prometheus -------------------------------------------------------------------------------- Update Information: Update build-time dependencies Bump to upstream fa8ad6fec33561be4280a8f0514318c79d7f6cb6 -------------------------------------------------------------------------------- ChangeLog: * Thu Mar 5 2015 jchaloup <jchal...@redhat.com> - 0-0.3.gitfa8ad6f - Update build-time dependencies related: #1190437 * Wed Mar 4 2015 jchaloup <jchal...@redhat.com> - 0-0.2.gitfa8ad6f - Bump to upstream fa8ad6fec33561be4280a8f0514318c79d7f6cb6 related: #1190437 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1190437 - Review Request: golang-github-prometheus-client_model - Data model artifacts for Prometheus https://bugzilla.redhat.com/show_bug.cgi?id=1190437 -------------------------------------------------------------------------------- ================================================================================ golang-github-prometheus-procfs-0-0.2.git6c34ef8.el6 (FEDORA-EPEL-2015-1166) Functions to retrieve system, kernel and process metrics from the /proc fs -------------------------------------------------------------------------------- Update Information: Bump to upstream 6c34ef819e19b4e16f410100ace4aa006f0e3bf8 -------------------------------------------------------------------------------- ChangeLog: * Wed Mar 4 2015 jchaloup <jchal...@redhat.com> - 0-0.2.git6c34ef8 - Bump to upstream 6c34ef819e19b4e16f410100ace4aa006f0e3bf8 related: #1190413 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1190413 - Review Request: golang-github-prometheus-procfs - Functions to retrieve system, kernel and process metrics from the /proc fs https://bugzilla.redhat.com/show_bug.cgi?id=1190413 -------------------------------------------------------------------------------- ================================================================================ golang-github-rackspace-gophercloud-1.0.0-5.el6 (FEDORA-EPEL-2015-1056) The Go SDK for Openstack http://gophercloud.io -------------------------------------------------------------------------------- Update Information: Fix root provide, replace double % with one Fix Provides, used import_path macro instead of its value Bump to upstream 6753165c3bb83a2b41bc495210509eacb12926d6 Bump to upstream 75c3fecab50deff8ff90bce2147a9d3140c5a13f -------------------------------------------------------------------------------- References: [ 1 ] Bug #1153733 - Review Request: golang-github-rackspace-gophercloud - The Go SDK for Openstack http://gophercloud.io https://bugzilla.redhat.com/show_bug.cgi?id=1153733 -------------------------------------------------------------------------------- ================================================================================ golang-github-russross-blackfriday-1.2-5.el6 (FEDORA-EPEL-2015-1072) Markdown processor implemented in Go -------------------------------------------------------------------------------- Update Information: Bump to upstream 77efab57b2f74dd3f9051c79752b2e8995c8b789 Add commit and shortcommit global variable -------------------------------------------------------------------------------- ChangeLog: * Mon Mar 2 2015 jchaloup <jchal...@redhat.com> - 1.2-5 - Bump to upstream 77efab57b2f74dd3f9051c79752b2e8995c8b789 Update spec file to used commit tarball related: #1156176 * Wed Feb 25 2015 jchaloup <jchal...@redhat.com> - 1.2-4 - Add commit and shortcommit global variable related: #1156176 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1156176 - Review Request: golang-github-russross-blackfriday - Markdown processor implemented in Go https://bugzilla.redhat.com/show_bug.cgi?id=1156176 -------------------------------------------------------------------------------- ================================================================================ golang-github-stretchr-testify-0-0.7.gite4ec815.el6 (FEDORA-EPEL-2015-1030) Tools for testifying that your code will behave as you intend -------------------------------------------------------------------------------- Update Information: update URL to point to github repository Bump to upstream e4ec8152c15fc46bd5056ce65997a07c7d415325 -------------------------------------------------------------------------------- ChangeLog: * Fri Mar 6 2015 jchaloup <jchal...@redhat.com> - 0-0.7.gite4ec815 - update URL to point to github repository related: #1141872 * Thu Mar 5 2015 jchaloup <jchal...@redhat.com> - 0-0.6.gite4ec815 - Bump to upstream e4ec8152c15fc46bd5056ce65997a07c7d415325 related: #1141872 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1141872 - Review Request: golang-github-stretchr-testify - Tools for testifying that your code will behave as you intend https://bugzilla.redhat.com/show_bug.cgi?id=1141872 -------------------------------------------------------------------------------- ================================================================================ golang-googlecode-goprotobuf-0-0.13.gitc22ae3c.el6 (FEDORA-EPEL-2015-1112) Go support for Google protocol buffers -------------------------------------------------------------------------------- Update Information: Bump to upstream c22ae3cf020a21ebb7ae566dccbe90fc8ea4f9ea -------------------------------------------------------------------------------- ChangeLog: * Thu Mar 5 2015 jchaloup <jchal...@redhat.com> - 0-0.13.gitc22ae3c - Bump to upstream c22ae3cf020a21ebb7ae566dccbe90fc8ea4f9ea related: #1018057 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1018057 - Review Request: golang-googlecode-goprotobuf - Go support for Google protocol buffers https://bugzilla.redhat.com/show_bug.cgi?id=1018057 -------------------------------------------------------------------------------- ================================================================================ ipv6calc-0.98.0-10.el6 (FEDORA-EPEL-2015-1125) IPv6 address format change and calculation utility -------------------------------------------------------------------------------- Update Information: new release 0.98.0 (2nd try) -------------------------------------------------------------------------------- ChangeLog: * Mon Mar 2 2015 Peter Bieringer <p...@bieringer.de> - 0.98.0-10 - new (fixed) upstream 0.98.0 tar.gz * Sun Mar 1 2015 Peter Bieringer <p...@bieringer.de> - 0.98.0-9 - remove not necessary x-bits for some files by proper definition in %files section * Fri Feb 20 2015 Peter Bieringer <p...@bieringer.de> - 0.98.0-8 - new release 0.98.0 * Wed Feb 18 2015 Peter Bieringer <p...@bieringer.de> - add support for conditional builds * Sat Oct 25 2014 Peter Bieringer <p...@bieringer.de> - add /usr/share/ipv6calc/db directory * Sat Oct 11 2014 Peter Bieringer <p...@bieringer.de> - add additional requirements for ipv6calc-ipv6calcweb - enable db-ip.com & external database support * Thu Aug 28 2014 Jitka Plesnikova <jples...@redhat.com> - 0.97.4-7 - Perl 5.20 rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1190796 - ipv6calc-0.97.4-7.fc22 FTBFS: ipv6calcoptions.c:80:29: error: 'sizeof' on array function parameter 'longopts_custom' will return size of 'const struct option *' [-Werror=sizeof-array-argument] https://bugzilla.redhat.com/show_bug.cgi?id=1190796 -------------------------------------------------------------------------------- ================================================================================ js-jquery-2.1.3-1.el6 (FEDORA-EPEL-2015-1171) JavaScript DOM manipulation, event handling, and AJAX library -------------------------------------------------------------------------------- Update Information: jQuery is a fast, small, and feature-rich JavaScript library. It makes things like HTML document traversal and manipulation, event handling, animation, and Ajax much simpler with an easy-to-use API that works across a multitude of browsers. With a combination of versatility and extensibility, jQuery has changed the way that millions of people write JavaScript. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1078368 - Review Request: js-jquery - JavaScript DOM manipulation, event handling, and AJAX library https://bugzilla.redhat.com/show_bug.cgi?id=1078368 [ 2 ] Bug #1078371 - Review Request: js-jquery1 - JavaScript DOM manipulation, event handling, and AJAX library - for legacy browsers https://bugzilla.redhat.com/show_bug.cgi?id=1078371 -------------------------------------------------------------------------------- ================================================================================ js-jquery1-1.11.2-2.el6 (FEDORA-EPEL-2015-1171) JavaScript DOM manipulation, event handling, and AJAX library -------------------------------------------------------------------------------- Update Information: jQuery is a fast, small, and feature-rich JavaScript library. It makes things like HTML document traversal and manipulation, event handling, animation, and Ajax much simpler with an easy-to-use API that works across a multitude of browsers. With a combination of versatility and extensibility, jQuery has changed the way that millions of people write JavaScript. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1078368 - Review Request: js-jquery - JavaScript DOM manipulation, event handling, and AJAX library https://bugzilla.redhat.com/show_bug.cgi?id=1078368 [ 2 ] Bug #1078371 - Review Request: js-jquery1 - JavaScript DOM manipulation, event handling, and AJAX library - for legacy browsers https://bugzilla.redhat.com/show_bug.cgi?id=1078371 -------------------------------------------------------------------------------- ================================================================================ js-sizzle-2.1.1-1.jquery.2.1.2.el6 (FEDORA-EPEL-2015-1171) A pure-JavaScript CSS selector engine -------------------------------------------------------------------------------- Update Information: jQuery is a fast, small, and feature-rich JavaScript library. It makes things like HTML document traversal and manipulation, event handling, animation, and Ajax much simpler with an easy-to-use API that works across a multitude of browsers. With a combination of versatility and extensibility, jQuery has changed the way that millions of people write JavaScript. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1078368 - Review Request: js-jquery - JavaScript DOM manipulation, event handling, and AJAX library https://bugzilla.redhat.com/show_bug.cgi?id=1078368 [ 2 ] Bug #1078371 - Review Request: js-jquery1 - JavaScript DOM manipulation, event handling, and AJAX library - for legacy browsers https://bugzilla.redhat.com/show_bug.cgi?id=1078371 -------------------------------------------------------------------------------- ================================================================================ lhapdf-5.9.1-9.el6 (FEDORA-EPEL-2015-1082) Les Houches Accord PDF Interface -------------------------------------------------------------------------------- Update Information: Fix to example code. -------------------------------------------------------------------------------- ChangeLog: * Sat Mar 7 2015 Mattias Ellert <mattias.ell...@fysast.uu.se> - 5.9.1-9 - Fix lhacontrol common block in example * Sun Oct 12 2014 Mattias Ellert <mattias.ell...@fysast.uu.se> - 5.9.1-8 - Re-enable octave for EPEL 7 * Sun Aug 17 2014 Fedora Release Engineering <rel-...@lists.fedoraproject.org> - 5.9.1-7 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild * Sat Jun 7 2014 Fedora Release Engineering <rel-...@lists.fedoraproject.org> - 5.9.1-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Tue Jun 3 2014 Mattias Ellert <mattias.ell...@fysast.uu.se> - 5.9.1-5 - Disable octave for EPEL 7 - not yet available -------------------------------------------------------------------------------- ================================================================================ libmspack-0.5-0.1.alpha.el6 (FEDORA-EPEL-2015-1177) Library for CAB and related files compression and decompression -------------------------------------------------------------------------------- Update Information: updated to bugfix release 0.5alpha -------------------------------------------------------------------------------- ChangeLog: * Tue Mar 3 2015 Dan Horák <dan[at]danny.cz> - 0.5-0.1.alpha - updated to 0.5alpha * Sun Aug 17 2014 Fedora Release Engineering <rel-...@lists.fedoraproject.org> - 0.4-0.4.alpha - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild * Sat Jun 7 2014 Fedora Release Engineering <rel-...@lists.fedoraproject.org> - 0.4-0.3.alpha - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Sat Aug 3 2013 Fedora Release Engineering <rel-...@lists.fedoraproject.org> - 0.4-0.2.alpha - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1196153 - libmspack: off-by-one(?) buffer under-read in mspack/lzxd.c https://bugzilla.redhat.com/show_bug.cgi?id=1196153 [ 2 ] Bug #1196157 - libmspack: off-by-one buffer over-read in mspack/mszipd.c https://bugzilla.redhat.com/show_bug.cgi?id=1196157 [ 3 ] Bug #1180177 - libmspack: pointer arithmetic overflow during CHM decompression https://bugzilla.redhat.com/show_bug.cgi?id=1180177 [ 4 ] Bug #1180175 - libmspack: denial of service while processing crafted CHM file (floating point exception) https://bugzilla.redhat.com/show_bug.cgi?id=1180175 [ 5 ] Bug #1178867 - CVE-2014-9556 libmspack: buffer overflow causing denial of service in qtmd_decompress() https://bugzilla.redhat.com/show_bug.cgi?id=1178867 -------------------------------------------------------------------------------- ================================================================================ librsync-1.0.0-1.el6 (FEDORA-EPEL-2015-1108) Rsync libraries -------------------------------------------------------------------------------- Update Information: Changes in librsync 1.0.0 (2015-01-23) ====================================== * SECURITY: CVE-2014-8242: librsync previously used a truncated MD4 "strong" check sum to match blocks. However, MD4 is not cryptographically strong. It's possible that an attacker who can control the contents of one part of a file could use it to control other regions of the file, if it's transferred using librsync/rdiff. For example this might occur in a database, mailbox, or VM image containing some attacker-controlled data. To mitigate this issue, signatures will by default be computed with a 256-bit BLAKE2 hash. Old versions of librsync will complain about a bad magic number when given these signature files. Backward compatibility can be obtained using the new `rdiff sig --hash=md4` option or through specifying the "signature magic" in the API, but this should not be used when either the old or new file contain untrusted data. Deltas generated from those signatures will also use BLAKE2 during generation, but produce output that can be read by old versions. See https://github.com/librsync/librsync/issues/5. Thanks to Michael Samuel <miknet.net> for reporting this and offering an initial patch. * Various build fixes, thanks Timothy Gu. * Improved rdiff man page from Debian. * Improved librsync.spec file for building RPMs. * Fixed bug #1110812 'internal error: job made no progress'; on large files. * Moved hosting to https://github.com/librsync/librsync/ * Travis-CI.org integration test at https://travis-ci.org/librsync/librsync/ * Remove bundled copy of popt; it must be installed separately. * You can set `$LIBTOOLIZE` before running `autogen.sh`, for example on OS X Homebrew where it is called `glibtoolize`. -------------------------------------------------------------------------------- ChangeLog: * Sun Mar 1 2015 Robert Scheck <rob...@fedoraproject.org> 1.0.0-1 - Upgrade to 1.0.0 (#1126712) * Sun Aug 17 2014 Fedora Release Engineering <rel-...@lists.fedoraproject.org> - 0.9.7-24 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild * Sat Jun 7 2014 Fedora Release Engineering <rel-...@lists.fedoraproject.org> - 0.9.7-23 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Sun Dec 8 2013 Robert Scheck <rob...@fedoraproject.org> 0.9.7-22 - Solved build failures with "-Werror=format-security" (#1037171) * Sat Aug 3 2013 Fedora Release Engineering <rel-...@lists.fedoraproject.org> - 0.9.7-21 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild * Sat Feb 23 2013 Robert Scheck <rob...@fedoraproject.org> 0.9.7-20 - Made autoreconf copying the missing auxiliary files (#914147) * Thu Feb 14 2013 Fedora Release Engineering <rel-...@lists.fedoraproject.org> - 0.9.7-19 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild * Thu Jul 19 2012 Fedora Release Engineering <rel-...@lists.fedoraproject.org> - 0.9.7-18 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild * Fri Jan 13 2012 Fedora Release Engineering <rel-...@lists.fedoraproject.org> - 0.9.7-17 - Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild * Tue Feb 8 2011 Fedora Release Engineering <rel-...@lists.fedoraproject.org> - 0.9.7-16 - Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1126712 - CVE-2014-8242 librsync: MD4 collision file corruption https://bugzilla.redhat.com/show_bug.cgi?id=1126712 -------------------------------------------------------------------------------- ================================================================================ milter-greylist-4.5.12-2.el6 (FEDORA-EPEL-2015-1089) Milter for greylisting, the next step in the spam control war -------------------------------------------------------------------------------- Update Information: Cumulative bug fix release from upstream. See package changelog for full details. -------------------------------------------------------------------------------- ChangeLog: * Fri Mar 6 2015 Paul Howarth <p...@city-fan.org> - 4.5.12-2 - Include milter-greylist.m4 as %doc - Add preset support for EL-7 build - Tag README as %license where possible as it includes the license details * Thu Dec 18 2014 Paul Howarth <p...@city-fan.org> - 4.5.12-1 - Update to 4.5.12 - Prevent buffer overflow on IP address in DRAC code - Remove duplicate dkim check in configure - Let MX clause work if a MX has no DNS A record - Fix build on CentOS * Sun Aug 17 2014 Fedora Release Engineering <rel-...@lists.fedoraproject.org> - 4.5.11-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild * Sat Jun 7 2014 Fedora Release Engineering <rel-...@lists.fedoraproject.org> - 4.5.11-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Fri Feb 21 2014 Paul Howarth <p...@city-fan.org> - 4.5.11-1 - Update to 4.5.11 - Use asynchronous LDAP calls to reduce lock contention on heavy load - Work around warning about _BSD_SOURCE being deprecated in favor of _DEFAULT_SOURCE breaking build due to use of -Werror * Mon Feb 10 2014 Paul Howarth <p...@city-fan.org> - 4.5.10-1 - Update to 4.5.10 - Fix msgcount miscomputation and crashes * Wed Feb 5 2014 Paul Howarth <p...@city-fan.org> - 4.5.9-1 - Update to 4.5.9 - multiracl option to disable sticky whitelisting among recipients * Tue Feb 4 2014 Paul Howarth <p...@city-fan.org> - 4.5.8-1 - Update to 4.5.8 - FreeBSD build fix - Fix CRLF in multiline headers for DKIM - Support OpenDKIM - Build if PACKAGE_URL is not defined - res_state Solaris build fix - Fix maxpeek usage for body matching clauses - Drop DKIM re-entrancy patch -------------------------------------------------------------------------------- ================================================================================ milter-regex-2.0-1.el6 (FEDORA-EPEL-2015-1159) Milter plug-in for regular expression filtering -------------------------------------------------------------------------------- Update Information: This update, to the current upstream release, adds a couple of new options: * -j (chroot) * -l (log level) It also adds support for STARTTLS macro checking. -------------------------------------------------------------------------------- ChangeLog: * Mon Mar 2 2015 Paul Howarth <p...@city-fan.org> - 2.0-1 - update to 2.0 - add -l option to specify maximum log level - drop upstreamed cleanup and starttls patches - add patch to fix declaration of yyparse() * Mon Mar 2 2015 Paul Howarth <p...@city-fan.org> - 1.9-3 - add support for STARTTLS macro checking (#840665) * Mon Mar 2 2015 Paul Howarth <p...@city-fan.org> - 1.9-1 - update to 1.9 - add -j option to chroot - improve building on various platforms - fix some typos in documentation and example config - drop upstreamed strlcat patch - drop gcc patch, no longer needed - build with additional warnings enabled, and add patch to fix warnings where possible (libmilter API is missing some 'const' attributes, so it's not possible to get rid of all of them) * Mon Mar 2 2015 Paul Howarth <p...@city-fan.org> - 1.8-3 - clean up for modern rpmbuild - drop Sendmail references as the milter should work with Postfix too - nobody else likes macros for commands -------------------------------------------------------------------------------- References: [ 1 ] Bug #1197717 - Compile milter-regex 2.0 for EPEL 6 https://bugzilla.redhat.com/show_bug.cgi?id=1197717 -------------------------------------------------------------------------------- ================================================================================ mingw-zlib-1.2.8-2.el6 (FEDORA-EPEL-2015-1117) MinGW Windows zlib compression library -------------------------------------------------------------------------------- Update Information: Initial build for EPEL6 -------------------------------------------------------------------------------- ================================================================================ munin-2.0.25-2.el6 (FEDORA-EPEL-2015-1031) Network-wide graphing framework (grapher/gatherer) -------------------------------------------------------------------------------- Update Information: Merge 2.1 paches back to 2.0 -------------------------------------------------------------------------------- ChangeLog: * Sat Mar 7 2015 "D. Johnson" <fenri...@fedoraproject.org> - 2.0.25-2 - Merge 2.1 paches back to 2.0 - BZ# 1149949 - munin-async init script to override defaults (PR-274 backport) - BZ# 1049262 - munin ntp_ plugin uses perl features from perl 5.10.0 but can only use perl 5.8.8 - BZ# 1140015 - Munin mysql plugin fails to parse MariaDB status -------------------------------------------------------------------------------- References: [ 1 ] Bug #1149949 - munin-async init script to override defaults https://bugzilla.redhat.com/show_bug.cgi?id=1149949 [ 2 ] Bug #1049262 - munin ntp_ plugin uses perl features from perl 5.10.0 but can only use perl 5.8.8 https://bugzilla.redhat.com/show_bug.cgi?id=1049262 [ 3 ] Bug #1140015 - Munin mysql plugin fails to parse MariaDB status https://bugzilla.redhat.com/show_bug.cgi?id=1140015 -------------------------------------------------------------------------------- ================================================================================ opendkim-2.10.1-2.el6 (FEDORA-EPEL-2015-1157) A DomainKeys Identified Mail (DKIM) milter to sign and/or verify mail -------------------------------------------------------------------------------- Update Information: Updating to 2.10.1 source (bug #1178373) and adding IPv6 localhost (::1) to default TrustedHosts file (bug #1049204). Updating to 2.10.1 upstream source, addition of README.fedora file, and various bug fixes. Updating to 2.9.2-2 This build is primarily to address SELinux issues, and no longer auto-creates default keys on startup. Privileged user must now generate keys after install, so they can be owned by root. Updating to newer upstream source: 2.9.2 Updating to newer upstream source: 2.9.2 Updating to newer upstream source: 2.9.2 Updating to newer upstream source: 2.9.2 Updating to 2.9.2-2 This build is primarily to address SELinux issues, and no longer auto-creates default keys on startup. Privileged user must now generate keys after install, so they can be owned by root. Updating to newer upstream source: 2.9.2 Updating to newer upstream source: 2.9.2 Updating to newer upstream source: 2.9.2 Updating to newer upstream source: 2.9.2 Updating to 2.9.2-2 This build is primarily to address SELinux issues, and no longer auto-creates default keys on startup. Privileged user must now generate keys after install, so they can be owned by root. Updating to newer upstream source: 2.9.2 Updating to newer upstream source: 2.9.2 Updating to newer upstream source: 2.9.2 Updating to newer upstream source: 2.9.2 Updating to 2.10.1 upstream source, addition of README.fedora file, and various bug fixes. Updating to 2.9.2-2 This build is primarily to address SELinux issues, and no longer auto-creates default keys on startup. Privileged user must now generate keys after install, so they can be owned by root. Updating to newer upstream source: 2.9.2 Updating to newer upstream source: 2.9.2 Updating to newer upstream source: 2.9.2 Updating to newer upstream source: 2.9.2 Updating to 2.9.2-2 This build is primarily to address SELinux issues, and no longer auto-creates default keys on startup. Privileged user must now generate keys after install, so they can be owned by root. Updating to newer upstream source: 2.9.2 Updating to newer upstream source: 2.9.2 Updating to newer upstream source: 2.9.2 Updating to newer upstream source: 2.9.2 Updating to 2.9.2-2 This build is primarily to address SELinux issues, and no longer auto-creates default keys on startup. Privileged user must now generate keys after install, so they can be owned by root. Updating to newer upstream source: 2.9.2 Updating to newer upstream source: 2.9.2 Updating to newer upstream source: 2.9.2 Updating to newer upstream source: 2.9.2 Updating to 2.10.1 upstream source, addition of README.fedora file, and various bug fixes. Updating to 2.9.2-2 This build is primarily to address SELinux issues, and no longer auto-creates default keys on startup. Privileged user must now generate keys after install, so they can be owned by root. Updating to newer upstream source: 2.9.2 Updating to newer upstream source: 2.9.2 Updating to newer upstream source: 2.9.2 Updating to newer upstream source: 2.9.2 Updating to 2.9.2-2 This build is primarily to address SELinux issues, and no longer auto-creates default keys on startup. Privileged user must now generate keys after install, so they can be owned by root. Updating to newer upstream source: 2.9.2 Updating to newer upstream source: 2.9.2 Updating to newer upstream source: 2.9.2 Updating to newer upstream source: 2.9.2 Updating to 2.9.2-2 This build is primarily to address SELinux issues, and no longer auto-creates default keys on startup. Privileged user must now generate keys after install, so they can be owned by root. Updating to newer upstream source: 2.9.2 Updating to newer upstream source: 2.9.2 Updating to newer upstream source: 2.9.2 Updating to newer upstream source: 2.9.2 Updating to 2.10.1 upstream source, addition of README.fedora file, and various bug fixes. Updating to 2.9.2-2 This build is primarily to address SELinux issues, and no longer auto-creates default keys on startup. Privileged user must now generate keys after install, so they can be owned by root. Updating to newer upstream source: 2.9.2 Updating to newer upstream source: 2.9.2 Updating to newer upstream source: 2.9.2 Updating to newer upstream source: 2.9.2 Updating to 2.9.2-2 This build is primarily to address SELinux issues, and no longer auto-creates default keys on startup. Privileged user must now generate keys after install, so they can be owned by root. Updating to newer upstream source: 2.9.2 Updating to newer upstream source: 2.9.2 Updating to newer upstream source: 2.9.2 Updating to newer upstream source: 2.9.2 Updating to 2.9.2-2 This build is primarily to address SELinux issues, and no longer auto-creates default keys on startup. Privileged user must now generate keys after install, so they can be owned by root. Updating to newer upstream source: 2.9.2 Updating to newer upstream source: 2.9.2 Updating to newer upstream source: 2.9.2 Updating to newer upstream source: 2.9.2 Updating to 2.10.1 upstream source, addition of README.fedora file, and various bug fixes. Updating to 2.9.2-2 This build is primarily to address SELinux issues, and no longer auto-creates default keys on startup. Privileged user must now generate keys after install, so they can be owned by root. Updating to newer upstream source: 2.9.2 Updating to newer upstream source: 2.9.2 Updating to newer upstream source: 2.9.2 Updating to newer upstream source: 2.9.2 Updating to 2.9.2-2 This build is primarily to address SELinux issues, and no longer auto-creates default keys on startup. Privileged user must now generate keys after install, so they can be owned by root. Updating to newer upstream source: 2.9.2 Updating to newer upstream source: 2.9.2 Updating to newer upstream source: 2.9.2 Updating to newer upstream source: 2.9.2 Updating to 2.9.2-2 This build is primarily to address SELinux issues, and no longer auto-creates default keys on startup. Privileged user must now generate keys after install, so they can be owned by root. Updating to newer upstream source: 2.9.2 Updating to newer upstream source: 2.9.2 Updating to newer upstream source: 2.9.2 Updating to newer upstream source: 2.9.2 Updating to 2.10.1 upstream source, addition of README.fedora file, and various bug fixes. Updating to 2.9.2-2 This build is primarily to address SELinux issues, and no longer auto-creates default keys on startup. Privileged user must now generate keys after install, so they can be owned by root. Updating to newer upstream source: 2.9.2 Updating to newer upstream source: 2.9.2 Updating to newer upstream source: 2.9.2 Updating to newer upstream source: 2.9.2 Updating to 2.9.2-2 This build is primarily to address SELinux issues, and no longer auto-creates default keys on startup. Privileged user must now generate keys after install, so they can be owned by root. Updating to newer upstream source: 2.9.2 Updating to newer upstream source: 2.9.2 Updating to newer upstream source: 2.9.2 Updating to newer upstream source: 2.9.2 Updating to 2.9.2-2 This build is primarily to address SELinux issues, and no longer auto-creates default keys on startup. Privileged user must now generate keys after install, so they can be owned by root. Updating to newer upstream source: 2.9.2 Updating to newer upstream source: 2.9.2 Updating to newer upstream source: 2.9.2 Updating to newer upstream source: 2.9.2 -------------------------------------------------------------------------------- ChangeLog: * Tue Mar 3 2015 Steve Jenkins <st...@stevejenkins.com> - 2.10.1-2 - Added IPv6 ::1 support to TrustedHosts (RH Bugzilla #1049204) * Tue Mar 3 2015 Steve Jenkins <st...@stevejenkins.com> - 2.10.1-1 - Updated to use newer upstream 2.10.1 source code * Tue Dec 9 2014 Steve Jenkins <st...@stevejenkins.com> - 2.10.0-1 - Updated to use newer upstream 2.10.0 source code - Removed unbound compile option due to orphaned upstream dependency - Removed AUTOCREATE_DKIM_KEYS option - Added README.fedora with basic key generation and config instructions * Sun Aug 17 2014 Fedora Release Engineering <rel-...@lists.fedoraproject.org> - 2.9.2-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild * Mon Aug 4 2014 Steve Jenkins <st...@stevejenkins.com> - 2.9.2-2 - Change file ownerships/permissions to fix https://bugzilla.redhat.com/show_bug.cgi?id=891292 - Default keys no longer created on startup. Privileged user must run opendkim-default-keygen or create manually (after install) * Wed Jul 30 2014 Steve Jenkins <st...@stevejenkins.com> - 2.9.2-1 - Updated to use newer upstream 2.9.2 source code - Fixed invalid date in changelog * Sat Jun 7 2014 Fedora Release Engineering <rel-...@lists.fedoraproject.org> - 2.9.0-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #973541 - opendkim-2.9.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=973541 [ 2 ] Bug #1178373 - opendkim-2.10.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1178373 [ 3 ] Bug #1049204 - TrustedHosts is missing IPv6 ::1 https://bugzilla.redhat.com/show_bug.cgi?id=1049204 [ 4 ] Bug #891292 - SELinux is preventing /usr/sbin/opendkim from using the dac_override capability https://bugzilla.redhat.com/show_bug.cgi?id=891292 -------------------------------------------------------------------------------- ================================================================================ opendmarc-1.3.1-3.el6 (FEDORA-EPEL-2015-1054) A Domain-based Message Authentication, Reporting & Conformance (DMARC) milter and library -------------------------------------------------------------------------------- Update Information: * Fri Mar 06 2015 Steve Jenkins <st...@stevejenkins.com> 1.3.1-3 - Added libbsd and libbsd-devel build requirement to fix libstrl issue - initial packaged version of OpenDMARC for Fedora-based systems - initial packaged version of OpenDMARC for Fedora-based systems - initial packaged version of OpenDMARC for Fedora-based systems - initial packaged version of OpenDMARC for Fedora-based systems - initial packaged version of OpenDMARC for Fedora-based systems - initial packaged version of OpenDMARC for Fedora-based systems -------------------------------------------------------------------------------- References: [ 1 ] Bug #905304 - Review Request: OpenDMARC - Domain-based Message Authentication, Reporting & Conformance (DMARC) milter and library https://bugzilla.redhat.com/show_bug.cgi?id=905304 -------------------------------------------------------------------------------- ================================================================================ owncloud-7.0.4-3.el6 (FEDORA-EPEL-2015-1155) Private file sync and share server -------------------------------------------------------------------------------- Update Information: This update provides ownCloud 7.x (7.0.4, currently) for EPEL 6. It brings EPEL 6 into line with EPEL 7, Fedora 20, and Fedora 21. This is a MAJOR version upgrade in line with the ownCloud package update policy: https://fedoraproject.org/wiki/OwnCloud#ownCloud_package_update_policy . Please ensure you back up your user data, ownCloud configuration, and database before installing the updated packages and running the upgrade process. Please note that the Apache configuration has been refined in this update. If you have edited /etc/httpd/conf.d/owncloud.conf , please examine the updated package version (which should be installed as owncloud.conf.rpmnew) and merge in any appropriate changes. In particular you should add the line: Alias /owncloud/apps-appstore /var/lib/owncloud/apps to ensure the 'app store' feature works correctly. If you simply want a standard ownCloud installation with remote access enabled (by default access is permitted only from localhost for security purposes), we now recommend you leave all the Apache configuration files in the package untouched and run this command: ln -s /etc/httpd/conf.d/owncloud-access.conf.avail /etc/httpd/conf.d/z-owncloud-access.conf this should ensure things continue to work automatically through future updates, as owncloud-access.conf.avail will be updated to always grant access to the appropriate locations for the version of ownCloud it is packaged with. -------------------------------------------------------------------------------- ChangeLog: * Sun Feb 22 2015 Adam Williamson <awill...@redhat.com> - 7.0.4-3 - revise and strengthen Apache configuration layout, fix external apps - fix external apps for Nginx * Sat Dec 20 2014 Adam Williamson <awill...@redhat.com> - 7.0.4-2 - backport upstream support for google PHP lib 1.x and unbundle it * Tue Dec 9 2014 Adam Williamson <awill...@redhat.com> - 7.0.4-1 - new release 7.0.4 * Tue Nov 25 2014 Adam Williamson <awill...@redhat.com> - 7.0.3-3 - fix dropbox autoload patch (thanks Tomas Dolezal) #1168082 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1199486 - Build of owncloud7 for EPEL6 https://bugzilla.redhat.com/show_bug.cgi?id=1199486 -------------------------------------------------------------------------------- ================================================================================ perl-Class-Virtual-0.07-1.el6 (FEDORA-EPEL-2015-1129) Base class for virtual base classes in Perl -------------------------------------------------------------------------------- Update Information: Update to 0.07 release -------------------------------------------------------------------------------- References: [ 1 ] Bug #1195862 - Review Request: perl-Class-Virtual - Base class for virtual base classes in Perl https://bugzilla.redhat.com/show_bug.cgi?id=1195862 -------------------------------------------------------------------------------- ================================================================================ perl-SOAP-Lite-0.716-4.el6 (FEDORA-EPEL-2015-1116) Client and server side SOAP implementation -------------------------------------------------------------------------------- Update Information: SOAP::Lite is a collection of Perl modules which provides a simple and lightweight interface to the Simple Object Access Protocol (SOAP) both on client and server side. -------------------------------------------------------------------------------- ================================================================================ php-google-apiclient-1.1.2-2.el6 (FEDORA-EPEL-2015-1155) Client library for Google APIs -------------------------------------------------------------------------------- Update Information: This update provides ownCloud 7.x (7.0.4, currently) for EPEL 6. It brings EPEL 6 into line with EPEL 7, Fedora 20, and Fedora 21. This is a MAJOR version upgrade in line with the ownCloud package update policy: https://fedoraproject.org/wiki/OwnCloud#ownCloud_package_update_policy . Please ensure you back up your user data, ownCloud configuration, and database before installing the updated packages and running the upgrade process. Please note that the Apache configuration has been refined in this update. If you have edited /etc/httpd/conf.d/owncloud.conf , please examine the updated package version (which should be installed as owncloud.conf.rpmnew) and merge in any appropriate changes. In particular you should add the line: Alias /owncloud/apps-appstore /var/lib/owncloud/apps to ensure the 'app store' feature works correctly. If you simply want a standard ownCloud installation with remote access enabled (by default access is permitted only from localhost for security purposes), we now recommend you leave all the Apache configuration files in the package untouched and run this command: ln -s /etc/httpd/conf.d/owncloud-access.conf.avail /etc/httpd/conf.d/z-owncloud-access.conf this should ensure things continue to work automatically through future updates, as owncloud-access.conf.avail will be updated to always grant access to the appropriate locations for the version of ownCloud it is packaged with. -------------------------------------------------------------------------------- ChangeLog: * Fri Jan 2 2015 Adam Williamson <awill...@redhat.com> - 1.1.2-2 - update autoloader relocation patch to match latest upstream submission * Sat Dec 20 2014 Adam Williamson <awill...@redhat.com> - 1.1.2-1 - new upstream release 1.1.2 - relocate autoloader to make it work with systemwide installation * Sat Dec 20 2014 Adam Williamson <awill...@redhat.com> - 1.0.6-0.3.beta - use new %doc directory - add Packagist/Composer provide * Fri Nov 7 2014 Adam Williamson <awill...@redhat.com> - 1.0.6-0.2.beta - apply CA trust store path substitution to Curl as well as Stream * Fri Nov 7 2014 Adam Williamson <awill...@redhat.com> - 1.0.6-0.1.beta - new upstream release 1.0.6-beta * Sat Jun 7 2014 Fedora Release Engineering <rel-...@lists.fedoraproject.org> - 1.0.3-0.3.beta - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1199486 - Build of owncloud7 for EPEL6 https://bugzilla.redhat.com/show_bug.cgi?id=1199486 -------------------------------------------------------------------------------- ================================================================================ php-horde-Horde-Core-2.19.2-1.el6 (FEDORA-EPEL-2015-1118) Horde Core Framework libraries -------------------------------------------------------------------------------- Update Information: **Horde_Core 2.19.1** * [jan] Revert to using ECB mode for encryption, to not break existing credentials (Bug #13869). * [mjr] Fix replying to email from search results in some broken ActiveSync clients (Bug #13878). * [jan] Fix propagating the LDAP hostspec configuration field (Bug #13872). **Horde_Core 2.19.2** * [mjr] Fix combination X509 and http plain authentication with ActiveSync. -------------------------------------------------------------------------------- ChangeLog: * Wed Mar 4 2015 Remi Collet <r...@fedoraproject.org> - 2.19.2-1 - Update to 2.19.2 * Tue Mar 3 2015 Remi Collet <r...@fedoraproject.org> - 2.19.1-1 - Update to 2.19.1 -------------------------------------------------------------------------------- ================================================================================ php-horde-Horde-Group-2.0.5-1.el6 (FEDORA-EPEL-2015-1122) Horde User Groups System -------------------------------------------------------------------------------- Update Information: **Horde_Group 2.0.5** * [jan] Add schema definition for LDAP groups. * [jan] Don't throw exception from listUsers() if group not found in LDAP directory (Bug #13879). **Horde_HashTable 1.2.3** * [jan] Fix setting key prefixes. **Horde_Http 2.1.4** * [jan] Make Horde_Http_Base_Response::headers array keys lowercase again (Bug #13843). * [jan] Fix return code from multi-request actions in Peclhttp2 driver. -------------------------------------------------------------------------------- ChangeLog: * Wed Mar 4 2015 Remi Collet <r...@fedoraproject.org> - 2.0.5-1 - Update to 2.0.5 - add provides php-composer(horde/horde-group) -------------------------------------------------------------------------------- ================================================================================ php-horde-Horde-HashTable-1.2.3-1.el6 (FEDORA-EPEL-2015-1122) Horde Hash Table Interface -------------------------------------------------------------------------------- Update Information: **Horde_Group 2.0.5** * [jan] Add schema definition for LDAP groups. * [jan] Don't throw exception from listUsers() if group not found in LDAP directory (Bug #13879). **Horde_HashTable 1.2.3** * [jan] Fix setting key prefixes. **Horde_Http 2.1.4** * [jan] Make Horde_Http_Base_Response::headers array keys lowercase again (Bug #13843). * [jan] Fix return code from multi-request actions in Peclhttp2 driver. -------------------------------------------------------------------------------- ChangeLog: * Wed Mar 4 2015 Remi Collet <r...@fedoraproject.org> - 1.2.3-1 - Update to 1.2.3 -------------------------------------------------------------------------------- ================================================================================ php-horde-Horde-Http-2.1.4-1.el6 (FEDORA-EPEL-2015-1122) Horde HTTP libraries -------------------------------------------------------------------------------- Update Information: **Horde_Group 2.0.5** * [jan] Add schema definition for LDAP groups. * [jan] Don't throw exception from listUsers() if group not found in LDAP directory (Bug #13879). **Horde_HashTable 1.2.3** * [jan] Fix setting key prefixes. **Horde_Http 2.1.4** * [jan] Make Horde_Http_Base_Response::headers array keys lowercase again (Bug #13843). * [jan] Fix return code from multi-request actions in Peclhttp2 driver. -------------------------------------------------------------------------------- ChangeLog: * Wed Mar 4 2015 Remi Collet <r...@fedoraproject.org> - 2.1.4-1 - Update to 2.1.4 - open https://github.com/horde/horde/pull/125 - add provides php-composer(horde/horde-http) -------------------------------------------------------------------------------- ================================================================================ php-horde-Horde-Service-Weather-2.1.6-1.el6 (FEDORA-EPEL-2015-1101) Horde Weather Provider -------------------------------------------------------------------------------- Update Information: **Horde_Service_Weather 2.1.6** * [mjr] Fix fatal error when using pecl_http (Bug #13897). -------------------------------------------------------------------------------- ChangeLog: * Wed Mar 4 2015 Remi Collet <r...@fedoraproject.org> - 2.1.6-1 - Update to 2.1.6 - add dependency on Horde_Translation 2.2.0 - add provides php-composer(horde/horde-service-weather) -------------------------------------------------------------------------------- ================================================================================ php-horde-Horde-Util-2.5.4-1.el6 (FEDORA-EPEL-2015-1132) Horde Utility Libraries -------------------------------------------------------------------------------- Update Information: **Horde_Util 2.5.4** * [mms] Fix error detection when using Horde_String::substr() with mb_substr(). -------------------------------------------------------------------------------- ChangeLog: * Tue Mar 3 2015 Remi Collet <r...@fedoraproject.org> - 2.5.4-1 - Update to 2.5.4 - enable the test suite during build -------------------------------------------------------------------------------- ================================================================================ php-pecl-redis-2.2.7-1.el6 (FEDORA-EPEL-2015-1167) Extension for communicating with the Redis key-value store -------------------------------------------------------------------------------- Update Information: phpredis 2.2.7 **Improvements** * Implemented PFADD, PFMERGE, and PFCOUNT command handling * Implemented ZRANGEBYLEX command (holding off on ZREVRANGEBYLEX as that won't be out until 3.0) * Implemented getMode() so clients can detect whether we're in ATOMIC/MULTI/PIPELINE mode. * Implemented rawCommand() so clients can send arbitrary things to the redis server * Implemented DEBUG OBJECT (@michael-grunder, @isage) * Added/abide by connect timeout for RedisArray * Select to the last selected DB when phpredis reconnects **Fixes** * Fix a possible invalid free in _serialize * Added SAVE and BGSAVE to "distributable" commands for RedisArray * @welting -- Fixed invalid "argc" calculation re HLL commands * Allow clients to break out of the subscribe loop and return context. * Fixes a memory leak in SCAN when OPT_SCAN_RETRY id. * @remicollet -- Fix possible segfault when igbinary is enabled. * Add a couple of cases where we throw on an error (LOADING/NOAUTH/MASTERDOWN) * Fix several issues with serialization NARY * @itcom -- Fix missing TSRMLS_CC and a TSRMLS_DC/TSRMLS_CC typo -------------------------------------------------------------------------------- ChangeLog: * Tue Mar 3 2015 Remi Collet <r...@fedoraproject.org> - 2.2.7-1 - Update to 2.2.7 (stable) -------------------------------------------------------------------------------- ================================================================================ php-sabre-dav-1.8.12-1.el6 (FEDORA-EPEL-2015-1037) WebDAV Framework for PHP -------------------------------------------------------------------------------- Update Information: This update provides the latest upstream 1.8 release, which is a bugfix release with no expected compatibility changes. The upstream changes can be seen at https://github.com/fruux/sabre-dav/blob/1.8/ChangeLog . -------------------------------------------------------------------------------- ChangeLog: * Fri Mar 6 2015 Adam Williamson <awill...@redhat.com> - 1.8.12-1 - update to 1.8.12 (bugfix release, no bc breaks) * Sat Jun 7 2014 Fedora Release Engineering <rel-...@lists.fedoraproject.org> - 1.8.10-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ php-sabredav-Sabre_VObject-2.1.7-1.el6 (FEDORA-EPEL-2015-1038) An intuitive reader for iCalendar and vCard objects -------------------------------------------------------------------------------- Update Information: This update provides the latest upstream release of the 2.1 series. It is a stable bugfix release. The most significant change since 2.1.4 is a workaround for https://github.com/fruux/sabre-vobject/issues/94 , which should improve interoperability with several clients. -------------------------------------------------------------------------------- ChangeLog: * Fri Mar 6 2015 Adam Williamson <awill...@redhat.com> - 2.1.7-1 - update to 2.1.7 -------------------------------------------------------------------------------- ================================================================================ phpMyAdmin-4.0.10.9-1.el6 (FEDORA-EPEL-2015-1069) Handle the administration of MySQL over the World Wide Web -------------------------------------------------------------------------------- Update Information: phpMyAdmin 4.0.10.9 (2015-03-04) ================================ - [security] Risk of BREACH attack, see PMASA-2015-1 -------------------------------------------------------------------------------- ChangeLog: * Wed Mar 4 2015 Robert Scheck <rob...@fedoraproject.org> 4.0.10.9-1 - Upgrade to 4.0.10.9 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1198794 - CVE-2015-2206 phpMyAdmin: Risk of BREACH attack due to reflected parameter (PMASA-2015-1) https://bugzilla.redhat.com/show_bug.cgi?id=1198794 -------------------------------------------------------------------------------- ================================================================================ putty-0.63-4.el6 (FEDORA-EPEL-2015-1047) SSH, Telnet and Rlogin client -------------------------------------------------------------------------------- Update Information: Fixed an issue when private keys weren't scrub from memory after use. -------------------------------------------------------------------------------- ChangeLog: * Tue Mar 3 2015 Jaroslav Škarvada <jskar...@redhat.com> - 0.63-4 - Scrub private keys from memory after use Resolves: CVE-2015-2157 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1198192 - CVE-2015-2157 putty: failure to scrub private keys from memory after use https://bugzilla.redhat.com/show_bug.cgi?id=1198192 -------------------------------------------------------------------------------- ================================================================================ pyflakes-0.7.3-5.el6 (FEDORA-EPEL-2015-1104) A simple program which checks Python source files for errors -------------------------------------------------------------------------------- Update Information: import for epel7 -------------------------------------------------------------------------------- ChangeLog: * Wed May 7 2014 Matthias Runge <mru...@redhat.com> - 0.7.3-5 - import for epel7 - minor spec cleanup (remove bundled egg-info, no py3 on rhel7) * Wed Dec 11 2013 Ville Skyttä <ville.sky...@iki.fi> - 0.7.3-4 - Avoid interfering with pies in version check (#1039706, Timothy Crosley). - Refresh Debian additions tarball. * Mon Sep 9 2013 Ville Skyttä <ville.sky...@iki.fi> - 0.7.3-3 - Build Python 3 version (#1004668). - Add dependency on setuptools. - Update summary and description. * Sun Aug 4 2013 Fedora Release Engineering <rel-...@lists.fedoraproject.org> - 0.7.3-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild * Sun Jul 7 2013 Ville Skyttä <ville.sky...@iki.fi> - 0.7.3-1 - Update to 0.7.3. * Mon Apr 29 2013 Ville Skyttä <ville.sky...@iki.fi> - 0.7.2-1 - Update to 0.7.2. * Tue Apr 23 2013 Ville Skyttä <ville.sky...@iki.fi> - 0.7.1-1 - Update to 0.7.1. * Thu Apr 18 2013 Ville Skyttä <ville.sky...@iki.fi> - 0.7-1 - Update to 0.7. * Thu Feb 14 2013 Fedora Release Engineering <rel-...@lists.fedoraproject.org> - 0.6.1-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_19_Mass_Rebuild * Tue Feb 5 2013 Ville Skyttä <ville.sky...@iki.fi> - 0.6.1-1 - Update to 0.6.1. * Sat Jul 21 2012 Fedora Release Engineering <rel-...@lists.fedoraproject.org> - 0.5.0-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild * Sat Jan 14 2012 Fedora Release Engineering <rel-...@lists.fedoraproject.org> - 0.5.0-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild * Mon Sep 5 2011 Ville Skyttä <ville.sky...@iki.fi> - 0.5.0-2 - Bring back null byte input traceback patch. - Include LICENSE and NEWS.txt in docs. * Sun Sep 4 2011 Jeffrey C. Ollie <j...@ocjtech.us> - 0.5.0-1 - Update to 0.5.0 - Remove patches that no longer apply * Mon Apr 4 2011 Ville Skyttä <ville.sky...@iki.fi> - 0.4.0-5 - Avoid traceback on input with null bytes (#691164). * Sun Feb 13 2011 Ville Skyttä <ville.sky...@iki.fi> - 0.4.0-4 - Backport upstream changes for set and dict comprehension support (#677032). - Add man page and file descriptor close patch from Debian. * Tue Feb 8 2011 Fedora Release Engineering <rel-...@lists.fedoraproject.org> - 0.4.0-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ python-fedora-0.3.37-1.el6 (FEDORA-EPEL-2015-1028) Python modules for talking to Fedora Infrastructure Services -------------------------------------------------------------------------------- Update Information: Upstream release. -------------------------------------------------------------------------------- ChangeLog: * Sat Jan 24 2015 Xavier Lamien <laxat...@fedoraproject.org> - 0.3.37-1 - Upstream release. -------------------------------------------------------------------------------- ================================================================================ python-httpretty-0.8.3-3.el6 (FEDORA-EPEL-2015-1146) HTTP request mock tool for Python -------------------------------------------------------------------------------- Update Information: Build package for el6. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1194268 - Please build for epel7 and el6 https://bugzilla.redhat.com/show_bug.cgi?id=1194268 -------------------------------------------------------------------------------- ================================================================================ python-pep8-1.4.6-3.el6 (FEDORA-EPEL-2015-1120) Python style guide checker -------------------------------------------------------------------------------- Update Information: Fix build on EL6 -------------------------------------------------------------------------------- ChangeLog: * Thu Mar 5 2015 Haïkel Guémar <hgue...@fedoraproject.org> - 1.4.6-3 - Fix build on EL6 * Wed Feb 26 2014 Matthias Runge <mru...@redhat.com> -1.4.6-2 - rename py3 version of pep8 to python3-pep8 (rhbz#1060408) - built for epel7 * Tue Aug 13 2013 Ian Weller <iwel...@redhat.com> - 1.4.6-1 - update to 1.4.6 * Sun Aug 4 2013 Fedora Release Engineering <rel-...@lists.fedoraproject.org> - 1.4.5-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_20_Mass_Rebuild * Fri Jun 14 2013 Matthias Runge <mru...@redhat.com> - 1.4.5-1 - update to 1.4.5 (rhbz#918924) - introduce py3 package (rhbz#971941) * Tue Feb 26 2013 Ian Weller <iwel...@redhat.com> - 1.4.4-1 - Update to 1.4.4 * Mon Feb 11 2013 Ian Weller <iwel...@redhat.com> - 1.4.2-1 - Update to 1.4.2 * Tue Jan 29 2013 Ian Weller <iwel...@redhat.com> - 1.4.1-1 - Update to 1.4.1 - Add Sphinx docs * Fri Sep 7 2012 Ian Weller <iwel...@redhat.com> - 1.3.3-3 - Run test suite using the pep8.py that has been installed * Fri Sep 7 2012 Ian Weller <iwel...@redhat.com> - 1.3.3-2 - Add test suite * Thu Sep 6 2012 Ian Weller <iwel...@redhat.com> - 1.3.3-1 - Update to 1.3.3 * Sat Jul 21 2012 Fedora Release Engineering <rel-...@lists.fedoraproject.org> - 1.3-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_18_Mass_Rebuild * Sat Jun 16 2012 Ian Weller <iwel...@redhat.com> - 1.3-1 - Update to 1.3 * Sat Apr 7 2012 Ian Weller <iwel...@redhat.com> - 1.0.1-1 - Update to 1.0.1 * Fri Jan 27 2012 Ian Weller <iwel...@redhat.com> - 0.6.1-1 - Update to 0.6.1 * Sat Jan 14 2012 Fedora Release Engineering <rel-...@lists.fedoraproject.org> - 0.6.0-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_17_Mass_Rebuild * Tue Feb 8 2011 Fedora Release Engineering <rel-...@lists.fedoraproject.org> - 0.6.0-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_15_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ qsstv-8.2.10-1.el6 (FEDORA-EPEL-2015-1064) Qt-based slow-scan TV and fax -------------------------------------------------------------------------------- Update Information: -fix for autosave button in rx (enable disable on the fly without restarting, next image will be autosaved if enabled) -fix manual save button in rx, is now working -when saving file, filename has now hours with leading zeroes -hybrid password is now correctly loaded/saved -xml interface (flrig) is now working again -changed Sensitivity in SSTV -------------------------------------------------------------------------------- ChangeLog: * Sun Mar 1 2015 Richard Shaw <hobbes1...@gmail.com> - 8.2.10-1 - Update to latest upstream release, 8.2.10. * Sun Dec 7 2014 Richard Shaw <hobbes1...@gmail.com> - 8.2.9-1 - Update to latest upstream release. * Sat Oct 11 2014 Richard Shaw <hobbes1...@gmail.com> - 8.2.8-1 - Update to latest upstream release. - Move documentation to a doc subpackage. * Sun Aug 17 2014 Fedora Release Engineering <rel-...@lists.fedoraproject.org> - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild * Sun Jun 8 2014 Fedora Release Engineering <rel-...@lists.fedoraproject.org> - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_Mass_Rebuild * Mon Apr 14 2014 Richard Shaw <hobbes1...@gmail.com> - 8.2.7-1 - Update to latest upstream release. * Fri Apr 4 2014 Richard Shaw <hobbes1...@gmail.com> - 8.2.6-1 - Update to latest upstream release. * Sat Mar 8 2014 Kevin Kofler <ke...@tigcc.ticalc.org> - 8.2.4-2 - Rebuild against fixed qt to fix -debuginfo (#1074041) * Sun Mar 2 2014 Richard Shaw <hobbes1...@gmail.com> - 8.2.4-1 - Update to latest upstream release. * Tue Feb 11 2014 Richard Shaw <hobbes1...@gmail.com> - 8.1.17-1 - Update to latest upstream release. * Wed Jan 29 2014 Richard Shaw <hobbes1...@gmail.com> - 8.1.14-1 - Update to latest upstream release. * Sun Jan 26 2014 Richard Shaw <hobbes1...@gmail.com> - 8.1.13-1 - Update to latest upstream release. * Mon Jan 6 2014 Richard Shaw <hobbes1...@gmail.com> - 8.1.12-1 - Update to latest upstream release. * Tue Dec 17 2013 Richard Shaw <hobbes1...@gmail.com> - 8.1.3 - Update to latest upstream release. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1197538 - qsstv-8.2.10 is available https://bugzilla.redhat.com/show_bug.cgi?id=1197538 -------------------------------------------------------------------------------- ================================================================================ rdiff-backup-1.2.8-6.el6 (FEDORA-EPEL-2015-1108) Convenient and transparent local/remote incremental mirror/backup -------------------------------------------------------------------------------- Update Information: Changes in librsync 1.0.0 (2015-01-23) ====================================== * SECURITY: CVE-2014-8242: librsync previously used a truncated MD4 "strong" check sum to match blocks. However, MD4 is not cryptographically strong. It's possible that an attacker who can control the contents of one part of a file could use it to control other regions of the file, if it's transferred using librsync/rdiff. For example this might occur in a database, mailbox, or VM image containing some attacker-controlled data. To mitigate this issue, signatures will by default be computed with a 256-bit BLAKE2 hash. Old versions of librsync will complain about a bad magic number when given these signature files. Backward compatibility can be obtained using the new `rdiff sig --hash=md4` option or through specifying the "signature magic" in the API, but this should not be used when either the old or new file contain untrusted data. Deltas generated from those signatures will also use BLAKE2 during generation, but produce output that can be read by old versions. See https://github.com/librsync/librsync/issues/5. Thanks to Michael Samuel <miknet.net> for reporting this and offering an initial patch. * Various build fixes, thanks Timothy Gu. * Improved rdiff man page from Debian. * Improved librsync.spec file for building RPMs. * Fixed bug #1110812 'internal error: job made no progress'; on large files. * Moved hosting to https://github.com/librsync/librsync/ * Travis-CI.org integration test at https://travis-ci.org/librsync/librsync/ * Remove bundled copy of popt; it must be installed separately. * You can set `$LIBTOOLIZE` before running `autogen.sh`, for example on OS X Homebrew where it is called `glibtoolize`. -------------------------------------------------------------------------------- ChangeLog: * Sat Mar 7 2015 Robert Scheck <rob...@fedoraproject.org> - 1.2.8-6 - Rebuild for librsync 1.0.0 (#1126712) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1126712 - CVE-2014-8242 librsync: MD4 collision file corruption https://bugzilla.redhat.com/show_bug.cgi?id=1126712 -------------------------------------------------------------------------------- ================================================================================ root-5.34.26-1.el6 (FEDORA-EPEL-2015-1049) Numerical data analysis framework -------------------------------------------------------------------------------- Update Information: root 5.34.26 https://root.cern.ch/drupal/content/patch-release-53426 -------------------------------------------------------------------------------- ChangeLog: * Tue Feb 24 2015 Mattias Ellert <mattias.ell...@fysast.uu.se> - 5.34.26-1 - Update to 5.34.26 - Drop patch root-xrdversion.patch * Thu Jan 29 2015 Mattias Ellert <mattias.ell...@fysast.uu.se> - 5.34.24-3 - Rebuild with fixed cairo (bz 1183242) * Sat Jan 17 2015 Mamoru TASAKA <mtas...@fedoraproject.org> - 5.34.24-2 - Rebuild for https://fedoraproject.org/wiki/Changes/Ruby_2.2 -------------------------------------------------------------------------------- ================================================================================ seamonkey-2.28-4.ESR_31.5.0.el6 (FEDORA-EPEL-2015-1173) Web browser, e-mail, news, IRC client, HTML editor -------------------------------------------------------------------------------- Update Information: Update to the codebase of Extended Support Release (ESR) 31.5.0 Fixes various security issues, see https://www.mozilla.org/security/known-vulnerabilities/firefoxESR.html and https://www.mozilla.org/security/known-vulnerabilities/thunderbird.html for more info -------------------------------------------------------------------------------- ChangeLog: * Fri Mar 6 2015 Dmitry Butskoy <dmi...@butskoy.name> 2.28-4.ESR_31.5.0 - update to Extended Support Release version 31.5.0, derived from the correspond thunderbird source tree. - add some patches from firefox-31.5.0 package -------------------------------------------------------------------------------- ================================================================================ srm-ifce-1.22.2-1.el6 (FEDORA-EPEL-2015-1179) SRM client side library -------------------------------------------------------------------------------- Update Information: Release of srm-ifce 1.22.2 -------------------------------------------------------------------------------- ChangeLog: * Mon Mar 2 2015 Alejandro Alvarez Ayllon <aalvarez at cern.ch> - 1.22.2-1 - Release srm-ifce 1.22.2 * Mon Jan 26 2015 Alejandro Alvarez Ayllon <aalvarez at cern.ch> - 1.22.1-2 - Rebuilt for gsoap 2.8.21 -------------------------------------------------------------------------------- ================================================================================ udt-4.11-4.el6 (FEDORA-EPEL-2015-1085) UDP based Data Transfer Protocol -------------------------------------------------------------------------------- Update Information: Fix sed substitutions in case of slashes in rpm macros -------------------------------------------------------------------------------- ChangeLog: * Sat Mar 7 2015 Mattias Ellert <mattias.ell...@fysast.uu.se> - 4.11-4 - Fix sed substitutions in case of slashes in rpm macros * Mon Aug 18 2014 Fedora Release Engineering <rel-...@lists.fedoraproject.org> - 4.11-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_21_22_Mass_Rebuild -------------------------------------------------------------------------------- _______________________________________________ epel-devel mailing list epel-devel@lists.fedoraproject.org https://admin.fedoraproject.org/mailman/listinfo/epel-devel