[SECURITY] Fedora 20 Update: kdelibs-4.12.5-4.fc20

updates at fedoraproject.org updates at fedoraproject.org
Tue Jul 1 07:23:33 UTC 2014 

--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2014-7579
2014-06-21 02:06:00
--------------------------------------------------------------------------------

Name        : kdelibs
Product     : Fedora 20
Version     : 4.12.5
Release     : 4.fc20
URL         : http://www.kde.org/
Summary     : KDE Libraries
Description :
Libraries for KDE 4.

--------------------------------------------------------------------------------
Update Information:

Fix security issue where POP3 kioslave silently accepted invalid SSL certificates.
--------------------------------------------------------------------------------
ChangeLog:

* Thu Jun 19 2014 Rex Dieter <rdieter at fedoraproject.org> 4.12.5-4
- Provides: kdelibs4-webkit ...
* Thu Jun 19 2014 Rex Dieter <rdieter at fedoraproject.org> 4.12.5-3
- POP3 kiosloave silently accepted invalid SSL certificates (#1111022, #1111023, CVE-2014-3494)
* Tue Apr 29 2014 Rex Dieter <rdieter at fedoraproject.org> 4.12.5-2
- respin
* Fri Apr 25 2014 Rex Dieter <rdieter at fedoraproject.org> 4.12.5-1
- 4.12.5
* Wed Apr  2 2014 Than Ngo <than at redhat.com> - 6:4.12.4-1
- 4.12.4
* Sat Mar  1 2014 Rex Dieter <rdieter at fedoraproject.org> - 6:4.12.3-1
- 4.12.3
* Sat Feb 15 2014 Kevin Kofler <Kevin at tigcc.ticalc.org> - 6:4.12.2-3
- Plasma PackageKit integration: fix plasmapkg to not query Plasma for available
  script engines if component is not Plasma/*, but e.g. KWin/Script (#1065688)
* Sun Feb  2 2014 Rex Dieter <rdieter at fedoraproject.org> - 6:4.12.2-2
- drop autostart-debug.patch
* Fri Jan 31 2014 Rex Dieter <rdieter at fedoraproject.org> - 6:4.12.2-1
- 4.12.2
* Fri Jan 10 2014 Rex Dieter <rdieter at fedoraproject.org> - 6:4.12.1-1
- 4.12.1
* Thu Dec 19 2013 Rex Dieter <rdieter at fedoraproject.org> 6:4.12.0-2
- disable tests
* Wed Dec 18 2013 Rex Dieter <rdieter at fedoraproject.org> - 6:4.12.0-1
- 4.12.0
--------------------------------------------------------------------------------
References:

  [ 1 ] Bug #1111022 - CVE-2014-3494 kdelibs: POP3 kioslave silently accepted invalid SSL certificates
        https://bugzilla.redhat.com/show_bug.cgi?id=1111022
--------------------------------------------------------------------------------

This update can be installed with the "yum" update program.  Use
su -c 'yum update kdelibs' at the command line.
For more information, refer to "Managing Software with yum",
available at http://docs.fedoraproject.org/yum/.

All packages are signed with the Fedora Project GPG key.  More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------

More information about the package-announce mailing list