The following Fedora 22 Security updates need testing: Age URL 127 https://admin.fedoraproject.org/updates/FEDORA-2015-5878/echoping-6.1-0.beta.r434svn.1.fc22 76 https://admin.fedoraproject.org/updates/FEDORA-2015-9110/fossil-1.33-1.fc22 76 https://admin.fedoraproject.org/updates/FEDORA-2015-9185/ceph-deploy-1.5.25-1.fc22 65 https://admin.fedoraproject.org/updates/FEDORA-2015-5279/strongswan-5.3.2-1.fc22 45 https://admin.fedoraproject.org/updates/FEDORA-2015-10944/openhpi-3.4.0-2.fc22 32 https://admin.fedoraproject.org/updates/FEDORA-2015-11473/squid-3.4.13-2.fc22 17 https://admin.fedoraproject.org/updates/FEDORA-2015-12020/uwsgi-2.0.11.1-1.fc22 9 https://admin.fedoraproject.org/updates/FEDORA-2015-12781/python-kdcproxy-0.3.2-1.fc22 7 https://admin.fedoraproject.org/updates/FEDORA-2015-13001/webkitgtk4-2.8.5-1.fc22 7 https://admin.fedoraproject.org/updates/FEDORA-2015-12978/rubygem-rack-1.6.1-2.fc22 4 https://admin.fedoraproject.org/updates/FEDORA-2015-13083/icecast-2.4.2-1.fc22 1 https://admin.fedoraproject.org/updates/FEDORA-2015-13396/kernel-4.1.5-200.fc22 1 https://admin.fedoraproject.org/updates/FEDORA-2015-13402/qemu-2.3.1-1.fc22 1 https://admin.fedoraproject.org/updates/FEDORA-2015-13419/mariadb-10.0.21-1.fc22 0 https://admin.fedoraproject.org/updates/FEDORA-2015-13526/audit-2.4.4-1.fc22 0 https://admin.fedoraproject.org/updates/FEDORA-2015-13520/openssh-6.9p1-5.fc22 0 https://admin.fedoraproject.org/updates/FEDORA-2015-13433/php-twig-1.20.0-1.fc22 0 https://admin.fedoraproject.org/updates/FEDORA-2015-13436/firefox-40.0-4.fc22 0 https://admin.fedoraproject.org/updates/FEDORA-2015-13529/php-ZendFramework2-2.4.7-1.fc22,php-guzzle-Guzzle-3.9.3-5.fc22 The following Fedora 22 Critical Path updates have yet to be approved: Age URL 7 https://admin.fedoraproject.org/updates/FEDORA-2015-12906/exo-0.10.6-4.fc22 2 https://admin.fedoraproject.org/updates/FEDORA-2015-13187/system-config-users-1.3.8-1.fc22 2 https://admin.fedoraproject.org/updates/FEDORA-2015-13220/yum-utils-1.1.31-508.fc22 2 https://admin.fedoraproject.org/updates/FEDORA-2015-13210/yum-3.4.3-508.fc22 1 https://admin.fedoraproject.org/updates/FEDORA-2015-13410/nss-3.19.3-1.0.fc22 0 https://admin.fedoraproject.org/updates/FEDORA-2015-13481/dbusmenu-qt-0.9.3-0.10.20150604.fc22 0 https://admin.fedoraproject.org/updates/FEDORA-2015-13520/openssh-6.9p1-5.fc22 0 https://admin.fedoraproject.org/updates/FEDORA-2015-13526/audit-2.4.4-1.fc22 0 https://admin.fedoraproject.org/updates/FEDORA-2015-13444/gnupg2-2.1.7-1.fc22 0 https://admin.fedoraproject.org/updates/FEDORA-2015-13523/openssl-1.0.1k-12.fc22 0 https://admin.fedoraproject.org/updates/FEDORA-2015-13513/util-linux-2.26.2-3.fc22 0 https://admin.fedoraproject.org/updates/FEDORA-2015-13501/selinux-policy-3.13.1-128.10.fc22 0 https://admin.fedoraproject.org/updates/FEDORA-2015-10143/NetworkManager-1.0.6-0.1.20150813git7e2caa2.fc22,network-manager-applet-1.0.4-2.fc22 The following builds have been pushed to Fedora 22 updates-testing Cython-0.23-1.fc22 NetworkManager-1.0.6-0.1.20150813git7e2caa2.fc22 audit-2.4.4-1.fc22 clufter-0.50.2-1.fc22 criu-1.6.1-1.fc22 dbusmenu-qt-0.9.3-0.10.20150604.fc22 device-mapper-persistent-data-0.5.5-1.fc22 drbd-8.9.3-2.fc22 firefox-40.0-4.fc22 fwknop-2.6.6-2.fc22 gnupg2-2.1.7-1.fc22 hplip-3.15.7-2.fc22 i3-4.10.3-1.fc22 libdom-0.1.2-1.fc22 liberation-fonts-1.07.4-6.fc22 libmediainfo-0.7.76-1.fc22 libnsbmp-0.1.2-1.fc22 libreswan-3.14-1.fc22 mediainfo-0.7.76-1.fc22 network-manager-applet-1.0.4-2.fc22 openssh-6.9p1-5.fc22 openssl-1.0.1k-12.fc22 php-Monolog-1.16.0-1.fc22 php-ZendFramework2-2.4.7-1.fc22 php-guzzle-Guzzle-3.9.3-5.fc22 php-scssphp-0.1.9-1.fc22 php-silex-1.3.1-1.fc22 php-twig-1.20.0-1.fc22 php-zendframework-zend-diactoros-1.1.3-1.fc22 python-idna-2.0-1.fc22 python-txsocksx-1.15.0.2-1.fc22 sayonara-0.6.6-6.svn119.fc22 selinux-policy-3.13.1-128.10.fc22 util-linux-2.26.2-3.fc22 will-crash-0.10-1.fc22 Details about builds: ================================================================================ Cython-0.23-1.fc22 (FEDORA-2015-13453) A language for writing Python extension modules -------------------------------------------------------------------------------- Update Information: see https://github.com/cython/cython/blob/master/CHANGES.rst -------------------------------------------------------------------------------- ChangeLog: * Wed Aug 12 2015 Neal Becker <ndbecker2@xxxxxxxxx> - 0.23-2 - Update to 0.23 * Tue Jun 16 2015 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.22-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ NetworkManager-1.0.6-0.1.20150813git7e2caa2.fc22 (FEDORA-2015-10143) Network connection manager and user applications -------------------------------------------------------------------------------- Update Information: The new release in the NetworkManager 1.0.x stable series. Full list of changes is avialable here: http://cgit.freedesktop.org/NetworkManager/NetworkManager/tree/NEWS?h=1.0.4 -------------------------------------------------------------------------------- ChangeLog: * Thu Aug 13 2015 Lubomir Rintel <lkundrak@xxxxx> - 1:1.0.6-0.1.20150813git7e2caa2 - Update to a Git snapshot * Tue Jul 14 2015 Lubomir Rintel <lkundrak@xxxxx> - 1:1.0.4-2 - Fix an assertion failure in nmcli (rh #1244048) - Fix default route handling on assumed connections (rh #1245648) * Tue Jul 14 2015 Lubomir Rintel <lkundrak@xxxxx> - 1:1.0.4-1 - Update to 1.0.4 release * Tue Jul 14 2015 Dan Horák <dan[at]danny.cz> - 1:1.0.4-0.5.git20150713.38bf2cb0 - WEXT depends on enabled wifi * Mon Jul 13 2015 Lubomir Rintel <lkundrak@xxxxx> - 1:1.0.4-0.4.git20150713.38bf2cb0 - A bit more recent Git snapshot * Tue Jul 7 2015 Lubomir Rintel <lkundrak@xxxxx> - 1:1.0.4-0.3.git20150707.e3bd4e1 - A bit more recent Git snapshot - This one fixes a regression with default route management * Tue Jul 7 2015 Jiří Klimeš <jklimes@xxxxxxxxxx> - 1:1.0.4-0.2.git20150707.cf15f2a - Update to a new 1.0.3 development snapshot (git20150707) - core: fix handling of ignore-auto-* properties (rh #1239184) * Wed Jun 24 2015 Lubomir Rintel <lkundrak@xxxxx> - 1:1.0.4-0.1.git20160624.f245b49a - A bit more recent Git snapshot * Thu Jun 18 2015 Lubomir Rintel <lkundrak@xxxxx> - 1:1.0.4-0.1.git20150618.8cffaf3bf5 - Update to a recent Git snapshot * Tue Jun 16 2015 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1:1.0.2-1.1 - Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1234121 - After update Network manager loopback address 127.0.0.1 became unavailable https://bugzilla.redhat.com/show_bug.cgi?id=1234121 [ 2 ] Bug #1224819 - [abrt] network-manager-applet: nm_client_networking_set_enabled(): nm-applet killed by SIGSEGV https://bugzilla.redhat.com/show_bug.cgi?id=1224819 [ 3 ] Bug #1239184 - NetworkManager-1.0.4-0.1.git20160624 ignoring some settings https://bugzilla.redhat.com/show_bug.cgi?id=1239184 [ 4 ] Bug #1221391 - IPv6 disabled by default when nm-applet creates a new WWAN connection https://bugzilla.redhat.com/show_bug.cgi?id=1221391 [ 5 ] Bug #1244483 - 1.0.4-1 regression: Deletes IPv4 default route from unrelated/unmanaged interface https://bugzilla.redhat.com/show_bug.cgi?id=1244483 [ 6 ] Bug #1243078 - nm_utils_ssid_to_utf8 returns NULL when LANG is not set https://bugzilla.redhat.com/show_bug.cgi?id=1243078 -------------------------------------------------------------------------------- ================================================================================ audit-2.4.4-1.fc22 (FEDORA-2015-13526) User space tools for 2.6 kernel auditing -------------------------------------------------------------------------------- Update Information: This update fixes CVE-2015-5186. The issue is that ausearch/report did not escape terminal emulator sequences when interpreting untrusted data. -------------------------------------------------------------------------------- ChangeLog: * Thu Aug 13 2015 Steve Grubb <sgrubb@xxxxxxxxxx> 2.4.4-1 - New upstream bugfix release - Fixes CVE-2015-5186 Audit: log terminal emulator escape sequences handling -------------------------------------------------------------------------------- ================================================================================ clufter-0.50.2-1.fc22 (FEDORA-2015-13429) Tool/library for transforming/analyzing cluster configuration formats -------------------------------------------------------------------------------- Update Information: bump upstream package -------------------------------------------------------------------------------- ChangeLog: * Wed Aug 12 2015 Jan Pokorný <jpokorny+rpm-clufter@xxxxxxxxxxxxxxxxx> - 0.50.2-1 - bump upstream package -------------------------------------------------------------------------------- ================================================================================ criu-1.6.1-1.fc22 (FEDORA-2015-13485) Tool for Checkpoint/Restore in User-space -------------------------------------------------------------------------------- Update Information: Updated to 1.6.1 -------------------------------------------------------------------------------- ChangeLog: * Thu Aug 13 2015 Adrian Reber <adrian@xxxxxxxx> - 1.6.1-1 - Update to 1.6.1 - Merge changes for RHEL packaging * Wed Jun 17 2015 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.6-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild * Tue Jun 9 2015 Adrian Reber <areber@xxxxxxxxxx> - 1.6-1.1 - adapt to RHEL7 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1253093 - criu-1.6.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1253093 -------------------------------------------------------------------------------- ================================================================================ dbusmenu-qt-0.9.3-0.10.20150604.fc22 (FEDORA-2015-13481) A Qt implementation of the DBusMenu protocol -------------------------------------------------------------------------------- Update Information: Update to latest upstream snapshot (and to match what is shipped in other distributions, like kubuntu), for better dbusmenu-qt5 support (mostly). -------------------------------------------------------------------------------- ChangeLog: * Thu Jun 25 2015 Rex Dieter <rdieter@xxxxxxxxxxxxxxxxx> - 0.9.3-0.10.20150604 - consolidate dbusmenu-qt5 here (instead of using a separate module) - fresh(er) 20150604 snapshot - -doc noarch subpkg * Wed Jun 17 2015 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.9.2-10 - Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild * Sat May 2 2015 Kalev Lember <kalevlember@xxxxxxxxx> - 0.9.2-9 - Rebuilt for GCC 5 C++11 ABI change -------------------------------------------------------------------------------- ================================================================================ device-mapper-persistent-data-0.5.5-1.fc22 (FEDORA-2015-13498) Device-mapper Persistent Data Tools -------------------------------------------------------------------------------- Update Information: Update to latest upstream release with bug fixes and enhancements: * Update man pages to make it clearer that tools shouldn't be run on live metadata. * Fix bugs in the metadata reference counting for thin_check. * Tools now open the metadata device in O_EXCL mode to stop running the tools on active metadata. * Add space map checking for thin_check. * Add --clear-needs-check option for cache_check. * New thin_delta and thin_trim commands. -------------------------------------------------------------------------------- ChangeLog: * Thu Aug 13 2015 Peter Rajnoha <prajnoha@xxxxxxxxxx> - 0.5.5-1 - Update man pages to make it clearer that tools shouldn't be run on live metadata. - Fix bugs in the metadata reference counting for thin_check. - Tools now open the metadata device in O_EXCL mode to stop running the tools on active metadata. - Add space map checking for thin_check. - Add --clear-needs-check option for cache_check. - New thin_delta and thin_trim commands. -------------------------------------------------------------------------------- ================================================================================ drbd-8.9.3-2.fc22 (FEDORA-2015-13500) DRBD user-land tools and scripts -------------------------------------------------------------------------------- Update Information: Fix RHBZ 1253056 -------------------------------------------------------------------------------- ChangeLog: * Thu Aug 13 2015 Major Hayden <major@xxxxxxxx> - 8.9.3-2 - Fix RHBZ 1253056 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1253056 - DRBD userland needs upstream 8.9.3-2 for pacemaker integration fix https://bugzilla.redhat.com/show_bug.cgi?id=1253056 -------------------------------------------------------------------------------- ================================================================================ firefox-40.0-4.fc22 (FEDORA-2015-13436) Mozilla Firefox Web browser -------------------------------------------------------------------------------- Update Information: For list of changes see: https://www.mozilla.org/en-US/firefox/40.0/releasenotes/ -------------------------------------------------------------------------------- ChangeLog: * Wed Aug 12 2015 Jan Horak <jhorak@xxxxxxxxxx> - 40.0-4 - Workaround for reported crashes (layers.offmainthreadcomposition.enabled set to false) * Tue Aug 11 2015 Jan Horak <jhorak@xxxxxxxxxx> - 40.0-3 - Update to 40.0 Build 5 * Fri Aug 7 2015 Martin Stransky <stransky@xxxxxxxxxx> - 40.0-2 - Patches updated (GtkEntry padding patch, toolbar button patch) * Fri Aug 7 2015 Martin Stransky <stransky@xxxxxxxxxx> - 40.0-1 - Update to 40.0 Build 4 -------------------------------------------------------------------------------- ================================================================================ fwknop-2.6.6-2.fc22 (FEDORA-2015-13426) A Single Packet Authorization (SPA) implementation -------------------------------------------------------------------------------- Update Information: This update provides only division between devel and base package. -------------------------------------------------------------------------------- ChangeLog: * Wed Aug 12 2015 Jakub Jelen <jjelen@xxxxxxxxxx> 2.6.6-2 - Provide -devel subpackage (#1252077) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1252077 - add fwknop-devel https://bugzilla.redhat.com/show_bug.cgi?id=1252077 -------------------------------------------------------------------------------- ================================================================================ gnupg2-2.1.7-1.fc22 (FEDORA-2015-13444) Utility for secure communication and data storage -------------------------------------------------------------------------------- Update Information: Minor update from upstream fixing some problems with upgrades from older gnupg2 versions and other minor bugs. -------------------------------------------------------------------------------- ChangeLog: * Thu Aug 13 2015 Tomáš Mráz <tmraz@xxxxxxxxxx> - 2.1.7-1 - upgrade to 2.1.7 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1242652 - gpg2 hang when encrypting to a sign-only key (?) https://bugzilla.redhat.com/show_bug.cgi?id=1242652 -------------------------------------------------------------------------------- ================================================================================ hplip-3.15.7-2.fc22 (FEDORA-2015-13512) HP Linux Imaging and Printing Project -------------------------------------------------------------------------------- Update Information: Fixes one issue introduced with 3.15.7 -------------------------------------------------------------------------------- ChangeLog: * Tue Aug 11 2015 Jiri Popelka <jpopelka@xxxxxxxxxx> - 3.15.7-2 - Upstream fix for 'Stopped "Filter Failed"' (Launchpad #1476920) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1253236 - Cannot print with MFP m127fw after upgrading to 3.15.7-1 https://bugzilla.redhat.com/show_bug.cgi?id=1253236 -------------------------------------------------------------------------------- ================================================================================ i3-4.10.3-1.fc22 (FEDORA-2015-13445) Improved tiling window manager -------------------------------------------------------------------------------- Update Information: == i3 v4.10.3 == │ Bugfixes: • serialize con_id with %p in run_binding() (For FreeBSD) • ignore InputHint when not in WM_HINTS (fixes e.g. mupdf focus) • disable physically disconnect RandR outputs • initialize workspace rect to the output's upon creation • userguide: quoted strings need to be used, escaping isn’t possible • mkdirp: do not throw an error if directory exists (fixes layout loss for in-place restarts) • i3bar: fix freeing static strings -- Michael Stapelberg, 2015-07-30 -------------------------------------------------------------------------------- ChangeLog: * Thu Aug 13 2015 Martin Preisler <mpreisle@xxxxxxxxxx> - 4.10.3-1 - Update to 4.10.3 (#1248840) - Added Getopt::Long perl build dep * Fri Jun 5 2015 Jitka Plesnikova <jplesnik@xxxxxxxxxx> - 4.10.2-2 - Perl 5.22 rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1248840 - i3-4.10.3 is available https://bugzilla.redhat.com/show_bug.cgi?id=1248840 -------------------------------------------------------------------------------- ================================================================================ libdom-0.1.2-1.fc22 (FEDORA-2015-13435) C implementation of the W3C DOM API -------------------------------------------------------------------------------- Update Information: == Update to 0.1.2 == * Fix resource leak with html collection creation. * Fix unref issue with html collection in applets callback. * Fix removal of event listeners. * Leave top 8 bits of dom exception unused. -------------------------------------------------------------------------------- ChangeLog: * Wed Jul 15 2015 Christopher Meng <rpm@xxxxxxxx> - 0.1.2-1 - Update to 0.1.2 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1202168 - libdom-0.1.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=1202168 -------------------------------------------------------------------------------- ================================================================================ liberation-fonts-1.07.4-6.fc22 (FEDORA-2015-13460) Fonts to replace commonly used Microsoft Windows fonts -------------------------------------------------------------------------------- Update Information: This is an update that adds meta package to install all subpackages. -------------------------------------------------------------------------------- ChangeLog: * Thu Aug 13 2015 Pravin Satpute <psatpute@xxxxxxxxxx> - 1:1.07.4-6 - Resolves #1252564: Enabled Meta packages for installing mono, narrow, sans and serif. - Release bump to match with F23. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1252564 - Provide a liberation-fonts virtual package https://bugzilla.redhat.com/show_bug.cgi?id=1252564 -------------------------------------------------------------------------------- ================================================================================ libmediainfo-0.7.76-1.fc22 (FEDORA-2015-13509) Library for supplies technical and tag information about a video or audio file -------------------------------------------------------------------------------- Update Information: Update libmediainfo and mediainfo -------------------------------------------------------------------------------- ChangeLog: * Fri Aug 14 2015 Vasiliy N. Glazov <vascom2@xxxxxxxxx> 0.7.76-1 - Update to 0.7.76 * Fri Jul 17 2015 Vasiliy N. Glazov <vascom2@xxxxxxxxx> 0.7.75-2 - Bump release -------------------------------------------------------------------------------- ================================================================================ libnsbmp-0.1.2-1.fc22 (FEDORA-2015-13477) Decoding library for BMP and ICO image file formats -------------------------------------------------------------------------------- Update Information: libnsbmp is a decoding library for BMP and ICO image file formats being used by netsurf browser. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1128336 - Review Request: libnsbmp - Decoding library for BMP and ICO image file formats https://bugzilla.redhat.com/show_bug.cgi?id=1128336 -------------------------------------------------------------------------------- ================================================================================ libreswan-3.14-1.fc22 (FEDORA-2015-13443) IPsec implementation with IKEv1 and IKEv2 keying protocols -------------------------------------------------------------------------------- Update Information: Various IKEv2 enhancements, integrated FIPS CAVS testing, OCSP support -------------------------------------------------------------------------------- ChangeLog: * Thu Aug 13 2015 Paul Wouters <pwouters@xxxxxxxxxx> - 3.14-1 - Updated to 3.14 - Include CAVS testing during build - Bump nss minimum to 3.16.1 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1252636 - libreswan-3.14 is available https://bugzilla.redhat.com/show_bug.cgi?id=1252636 -------------------------------------------------------------------------------- ================================================================================ mediainfo-0.7.76-1.fc22 (FEDORA-2015-13509) Supplies technical and tag information about a video or audio file (CLI) -------------------------------------------------------------------------------- Update Information: Update libmediainfo and mediainfo -------------------------------------------------------------------------------- ChangeLog: * Fri Aug 14 2015 Vasiliy N. Glazov <vascom2@xxxxxxxxx> 0.7.76-1 - Update to 0.7.76 -------------------------------------------------------------------------------- ================================================================================ network-manager-applet-1.0.4-2.fc22 (FEDORA-2015-10143) A network control and status applet for NetworkManager -------------------------------------------------------------------------------- Update Information: The new release in the NetworkManager 1.0.x stable series. Full list of changes is avialable here: http://cgit.freedesktop.org/NetworkManager/NetworkManager/tree/NEWS?h=1.0.4 -------------------------------------------------------------------------------- ChangeLog: * Wed Jul 15 2015 Lubomir Rintel <lkundrak@xxxxx> - 1.0.4-2 - Version the newly added ABI * Tue Jul 14 2015 Lubomir Rintel <lkundrak@xxxxx> - 1.0.4-1 - Update to 1.0.4 release * Tue Jul 7 2015 Lubomir Rintel <lkundrak@xxxxx> - 1.0.4-0.1.git20160702.25368df - Update to a later Git snapshot * Thu Jun 18 2015 Lubomir Rintel <lkundrak@xxxxx> - 1.0.4-0.1.git20160615.28a0e28 - Update to a later Git snapshot * Wed Jun 17 2015 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.0.2-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1234121 - After update Network manager loopback address 127.0.0.1 became unavailable https://bugzilla.redhat.com/show_bug.cgi?id=1234121 [ 2 ] Bug #1224819 - [abrt] network-manager-applet: nm_client_networking_set_enabled(): nm-applet killed by SIGSEGV https://bugzilla.redhat.com/show_bug.cgi?id=1224819 [ 3 ] Bug #1239184 - NetworkManager-1.0.4-0.1.git20160624 ignoring some settings https://bugzilla.redhat.com/show_bug.cgi?id=1239184 [ 4 ] Bug #1221391 - IPv6 disabled by default when nm-applet creates a new WWAN connection https://bugzilla.redhat.com/show_bug.cgi?id=1221391 [ 5 ] Bug #1244483 - 1.0.4-1 regression: Deletes IPv4 default route from unrelated/unmanaged interface https://bugzilla.redhat.com/show_bug.cgi?id=1244483 [ 6 ] Bug #1243078 - nm_utils_ssid_to_utf8 returns NULL when LANG is not set https://bugzilla.redhat.com/show_bug.cgi?id=1243078 -------------------------------------------------------------------------------- ================================================================================ openssh-6.9p1-5.fc22 (FEDORA-2015-13520) An open source implementation of SSH protocol versions 1 and 2 -------------------------------------------------------------------------------- Update Information: This update brings fixes for vulnerabilities published with openssh-7.0 and is fixing pam_ssh_agent_auth module to be functional again. -------------------------------------------------------------------------------- ChangeLog: * Fri Aug 14 2015 Jakub Jelen <jjelen@xxxxxxxxxx> 6.9p1-5 + 0.9.3-6 - Fix vulnerabilities published with openssh-7.0: - Incorrectly set TTYs to be world-writable (#1252861) - Privilege separation weakness related to PAM support (#1252844) - Use-after-free bug related to PAM support (#1252852) - Fix pam_ssh_agent_auth after rebase (#1251777) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1252861 - openssh: Incorrectly set TTYs to be world-writable https://bugzilla.redhat.com/show_bug.cgi?id=1252861 [ 2 ] Bug #1252844 - openssh: Privilege separation weakness related to PAM support https://bugzilla.redhat.com/show_bug.cgi?id=1252844 [ 3 ] Bug #1252852 - openssh: Use-after-free bug related to PAM support https://bugzilla.redhat.com/show_bug.cgi?id=1252852 -------------------------------------------------------------------------------- ================================================================================ openssl-1.0.1k-12.fc22 (FEDORA-2015-13523) Utilities from the general purpose cryptography library with TLS implementation -------------------------------------------------------------------------------- Update Information: Enable secp256k1 curve in openssl. -------------------------------------------------------------------------------- ChangeLog: * Thu Aug 13 2015 Tom Callaway <spot@xxxxxxxxxxxxxxxxx> 1.0.1k-12 - enable secp256k1 (bz1021898) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1021898 - Enable curve secp256k1 https://bugzilla.redhat.com/show_bug.cgi?id=1021898 -------------------------------------------------------------------------------- ================================================================================ php-Monolog-1.16.0-1.fc22 (FEDORA-2015-13517) Sends your logs to files, sockets, inboxes, databases and various web services -------------------------------------------------------------------------------- Update Information: ### 1.16.0 (2015-08-09) * Added IFTTTHandler to notify ifttt.com triggers * Added Logger::setHandlers() to allow setting/replacing all handlers * Added $capSize in RedisHandler to cap the log size * Fixed StreamHandler creation of directory to only trigger when the first log write happens * Fixed bug in the handling of curl failures * Fixed duplicate logging of fatal errors when both error and fatal error handlers are registered in monolog's ErrorHandler * Fixed missing fatal errors records with handlers that need to be closed to flush log records * Fixed TagProcessor::addTags support for associative arrays -------------------------------------------------------------------------------- ChangeLog: * Tue Aug 11 2015 Shawn Iwinski <shawn.iwinski@xxxxxxxxx> - 1.16.0-1 - Updated to 1.16.0 (RHBZ #1251783) - Updated autoloader to load dependencies after self registration -------------------------------------------------------------------------------- References: [ 1 ] Bug #1251783 - php-Monolog-1.16.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1251783 -------------------------------------------------------------------------------- ================================================================================ php-ZendFramework2-2.4.7-1.fc22 (FEDORA-2015-13529) Zend Framework 2 -------------------------------------------------------------------------------- Update Information: Zend Framework Upstream ChangeLogs: * [Version 2.4.7](http://framework.zend.com/changelog/2.4.7/) * [Version 2.4.6](http://framework.zend.com/changelog/2.4.6/) * [Version 2.4.5](http://framework.zend.com/changelog/2.4.5/) * [Version 2.4.4](http://framework.zend.com/changelog/2.4.4/) * [Version 2.4.3](http://framework.zend.com/changelog/2.4.3/) * [Version 2.4.2](http://framework.zend.com/changelog/2.4.2/) * [Version 2.4.1](http://framework.zend.com/changelog/2.4.1/) * [Version 2.4.0](http://framework.zend.com/changelog/2.4.0/) -------------------------------------------------------------------------------- ChangeLog: * Wed Aug 12 2015 Remi Collet <remi@xxxxxxxxxxxxxxxxx> - 2.4.7-1 - Update to 2.4.7 - add autoloader in php-ZendFramework2-Loader * Thu Jun 18 2015 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 2.3.9-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1253250 - CVE-2015-5161 php-ZendFramework: XML external entity injection (XXE) on PHP FPM https://bugzilla.redhat.com/show_bug.cgi?id=1253250 -------------------------------------------------------------------------------- ================================================================================ php-guzzle-Guzzle-3.9.3-5.fc22 (FEDORA-2015-13529) PHP HTTP client library and framework for building RESTful web service clients -------------------------------------------------------------------------------- Update Information: Zend Framework Upstream ChangeLogs: * [Version 2.4.7](http://framework.zend.com/changelog/2.4.7/) * [Version 2.4.6](http://framework.zend.com/changelog/2.4.6/) * [Version 2.4.5](http://framework.zend.com/changelog/2.4.5/) * [Version 2.4.4](http://framework.zend.com/changelog/2.4.4/) * [Version 2.4.3](http://framework.zend.com/changelog/2.4.3/) * [Version 2.4.2](http://framework.zend.com/changelog/2.4.2/) * [Version 2.4.1](http://framework.zend.com/changelog/2.4.1/) * [Version 2.4.0](http://framework.zend.com/changelog/2.4.0/) -------------------------------------------------------------------------------- ChangeLog: * Thu Aug 13 2015 Shawn Iwinski <shawn.iwinski@xxxxxxxxx> - 3.9.3-5 - Added explicit autoloader build dependency - Minor cleanups * Wed Aug 12 2015 Remi Collet <remi@xxxxxxxxxxxxxxxxx> - 3.9.3-4 - raise max version for Zend Framework -------------------------------------------------------------------------------- References: [ 1 ] Bug #1253250 - CVE-2015-5161 php-ZendFramework: XML external entity injection (XXE) on PHP FPM https://bugzilla.redhat.com/show_bug.cgi?id=1253250 -------------------------------------------------------------------------------- ================================================================================ php-scssphp-0.1.9-1.fc22 (FEDORA-2015-13437) A compiler for SCSS written in PHP -------------------------------------------------------------------------------- Update Information: ## v0.1.9 ### Announcements * Adoption of the [Sass Community Guidelines](http://leafo.github.io/scssphp/community/) ### Compatibility Bug Fixes * Nested selector fixes with lists, interpolated string, and parent selector * Implement list-separator() and set-nth() built-ins * Implement @warn and @error * Removed spaceship operator pending discussion with reference implementators ## v0.1.8 ### Announcements * Online documentation moved to http://leafo.github.com/scssphp/ ### Compatibility Bug Fixes * index() - map support; now returns null (instead of false) when value not found * lighten(), darken() - percentages don't require % unit * str-slice() - edge cases when starts-at or ends-at is 0 * type-of() - returns arglist for variable arguments * != * @return inside @each ## v0.1.7 ### Announcements * simplified licensing (MIT) ### Enhancements * bin/pscss: added --line-numbers and --debug-info options * Compiler: added setLineNumberStyle() and 'q' unit ### Maintenance * Parser: deprecated show() and to() methods * refactoring internals and misc bug fixes (maps, empty list, function-exists()) -------------------------------------------------------------------------------- ChangeLog: * Thu Aug 13 2015 Shawn Iwinski <shawn.iwinski@xxxxxxxxx> - 0.1.9-1 - Updated to 0.1.9 (RHBZ #1238727) - As of version 0.1.7 license is just MIT (i.e. GPLv3 removed) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1238727 - php-scssphp-v0.1.9 is available https://bugzilla.redhat.com/show_bug.cgi?id=1238727 -------------------------------------------------------------------------------- ================================================================================ php-silex-1.3.1-1.fc22 (FEDORA-2015-13465) PHP micro-framework based on the Symfony components -------------------------------------------------------------------------------- Update Information: 1.3.1 (2015-08-04) ------------------ * added missing support for the Expression constraint * fixed the possibility to override translations for validator error messages * fixed sub-mounts with same name clash * fixed session logout handler when a firewall is stateless 1.3.0 (2015-06-05) ------------------ * added a `$app['user']` to get the current user (security provider) * added view handlers * added support for the OPTIONS HTTP method * added caching for the Translator provider * deprecated `$app['exception_handler']->disable()` in favor of `unset($app['exception_handler'])` * made Silex compatible with Symfony 2.7 and 2.8 (and keep compatibility with Symfony 2.3, 2.5, and 2.6) * removed deprecated TwigCoreExtension class (register the new HttpFragmentServiceProvider instead) * bumped minimum version of PHP to 5.3.9 -------------------------------------------------------------------------------- ChangeLog: * Thu Aug 13 2015 Shawn Iwinski <shawn.iwinski@xxxxxxxxx> - 1.3.1-1 - Updated to 1.3.1 (RHBZ #1250055) - Updated autoloader to load dependencies after self registration -------------------------------------------------------------------------------- References: [ 1 ] Bug #1250055 - php-silex-v1.3.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1250055 -------------------------------------------------------------------------------- ================================================================================ php-twig-1.20.0-1.fc22 (FEDORA-2015-13433) The flexible, fast, and secure template engine for PHP -------------------------------------------------------------------------------- Update Information: ## 1.20.0 (2015-08-12) * forbid access to the Twig environment from templates and internal parts of Twig_Template * fixed limited RCEs when in sandbox mode * deprecated Twig_Template::getEnvironment() * deprecated the _self variable for usage outside of the from and import tags * added Twig_BaseNodeVisitor to ease the compatibility of node visitors between 1.x and 2.x ## 1.19.0 (2015-07-31) * fixed wrong error message when including an undefined template in a child template * added support for variadic filters, functions, and tests * added support for extra positional arguments in macros * added ignore_missing flag to the source function * fixed batch filter with zero items * deprecated Twig_Environment::clearTemplateCache() * fixed sandbox disabling when using the include function -------------------------------------------------------------------------------- ChangeLog: * Wed Aug 12 2015 Shawn Iwinski <shawn.iwinski@xxxxxxxxx> - 1.20.0-1 - Updated to 1.20.0 (BZ #1249259) * Thu Jun 18 2015 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.18.2-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1249259 - php-twig-v1.20.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1249259 -------------------------------------------------------------------------------- ================================================================================ php-zendframework-zend-diactoros-1.1.3-1.fc22 (FEDORA-2015-13478) PSR HTTP Message implementations -------------------------------------------------------------------------------- Update Information: ## 1.1.3 - 2015-08-10 ### Added - Nothing. ### Deprecated - Nothing. ### Removed - Nothing. ### Fixed - [#71](https://github.com/zendframework/zend-diactoros/pull/71) fixes the docblock of the `JsonResponse` constructor to typehint the `$data` argument as `mixed`. - [#73](https://github.com/zendframework/zend-diactoros/pull/73) changes the behavior in `Request` such that if it marshals a stream during instantiation, the stream is marked as writeable (specifically, mode `wb+`). - [#85](https://github.com/zendframework/zend-diactoros/pull/85) updates the behavior of `Zend\Diactoros\Uri`'s various `with*()` methods that are documented as accepting strings to raise exceptions on non-string input. Previously, several simply passed non-string input on verbatim, others normalized the input, and a few correctly raised the exceptions. Behavior is now consistent across each. - [#87](https://github.com/zendframework/zend-diactoros/pull/87) fixes `UploadedFile` to ensure that `moveTo()` works correctly in non-SAPI environments when the file provided to the constructor is a path. -------------------------------------------------------------------------------- ChangeLog: * Tue Aug 11 2015 Shawn Iwinski <shawn.iwinski@xxxxxxxxx> - 1.1.3-1 - Updated to 1.1.3 (RHBZ #1252195) - Updated autoloader to load dependencies after self registration -------------------------------------------------------------------------------- References: [ 1 ] Bug #1252195 - php-zendframework-zend-diactoros-1.1.3 is available https://bugzilla.redhat.com/show_bug.cgi?id=1252195 -------------------------------------------------------------------------------- ================================================================================ python-idna-2.0-1.fc22 (FEDORA-2015-13533) Internationalized Domain Names in Applications (IDNA) -------------------------------------------------------------------------------- Update Information: Update to 2.0 which is required by python-cryptography -------------------------------------------------------------------------------- ChangeLog: * Thu Aug 13 2015 Paul Wouters <pwouters@xxxxxxxxxx> - 2.0-1 - Update to 2.0 which is required by python-cryptography * Thu Jun 18 2015 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.0-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild -------------------------------------------------------------------------------- ================================================================================ python-txsocksx-1.15.0.2-1.fc22 (FEDORA-2015-13522) Twisted client endpoints for SOCKS{4,4a,5} -------------------------------------------------------------------------------- Update Information: Bump release -------------------------------------------------------------------------------- ChangeLog: * Thu Aug 13 2015 Robert Mayr <robyduck@xxxxxxxxxxxxxxxxxx> 1.15.0.2-1 - Bump release * Thu Jun 18 2015 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 1.13.0.3-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1249842 - python-txsocksx-1.15.0.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=1249842 -------------------------------------------------------------------------------- ================================================================================ sayonara-0.6.6-6.svn119.fc22 (FEDORA-2015-13496) A lightweight Qt Audio player -------------------------------------------------------------------------------- Update Information: rebuild for new svn release -------------------------------------------------------------------------------- ChangeLog: * Fri Aug 14 2015 Martin Gansser <martinkg@xxxxxxxxxxxxxxxxx> - 0.6.6-6.svn119 - rebuild for new svn release * Fri Jul 17 2015 Martin Gansser <martinkg@xxxxxxxxxxxxxxxxx> - 0.6.6-5.svn80 - rebuild for new svn release -------------------------------------------------------------------------------- References: [ 1 ] Bug #1251702 - Sayonara: No sound engine available https://bugzilla.redhat.com/show_bug.cgi?id=1251702 -------------------------------------------------------------------------------- ================================================================================ selinux-policy-3.13.1-128.10.fc22 (FEDORA-2015-13501) SELinux policy configuration -------------------------------------------------------------------------------- Update Information: More info: http://koji.fedoraproject.org/koji/buildinfo?buildID=677023 -------------------------------------------------------------------------------- ChangeLog: * Wed Aug 12 2015 Lukas Vrabec <lvrabec@xxxxxxxxxx> 3.13.1-128.10 - Allow pcp_domain to manage pcp_var_lib_t lnk_files. - Allow chronyd to execute mkdir command. - Allow chronyd_t to read dhcpc state. - Label /usr/libexec/chrony-helper as chronyd_exec_t - Allow openhpid liboa_soap plugin to read resolv.conf file. - Allow openhpid liboa_soap plugin to read generic certs. - Allow openhpid use libwatchdog plugin. (Allow openhpid_t rw watchdog device) - Allow logrotate to reload services. - Allow apcupsd_t to read /sys/devices - Allow kpropd to connect to kropd tcp port. - Allow lsmd also setuid capability. Some commands need to executed under root privs. Other commands are executed under unprivileged user. - Allow snapperd to pass data (one way only) via pipe negotiated over dbus. - Add snapper_read_inherited_pipe() interface. - Add missing ";" in kerberos.te - Add support for /var/lib/kdcproxy and label it as krb5kdc_var_lib_t. It needs to be accessible by useradd_t. - Add support for /etc/sanlock which is writable by sanlock daemon. - Allow mdadm to access /dev/random and add support to create own files/dirs as mdadm_tmpfs_t. - firewalld needs to relabel own config files BZ(#1250537) - Allow rhsmcertd to send signull to unconfined_service. - Allow lsm_plugin_t to rw raw_fixed_disk. - Allow lsm_plugin_t to read sysfs, read hwdata, rw to scsi_generic_device - Allow openhpid to use libsnmp_bc plugin (allow read snmp lib files). - Allow qpid to create lnk_files in qpid_var_lib_t. - Allow httpd_suexec_t to read and write Apache stream sockets - Allow audisp client to read system state. - Label /var/run/xtables.lock as iptables_var_run_t. - Add fstools_filetrans_named_content_fsadm() and call it for named_filetrans_domain domains. We need to be sure that /run/blkid is created with correct labeling. - Add labels for /dev/memory_bandwith and /dev/vhci. Thanks ssekidde - Add interface to read/write watchdog device. - Add transition rule for iptables_var_lib_t - Allow useradd add homedir located in /var/lib/kdcproxy in ipa-server RPM scriplet. - Add fstools_filetrans_named_content_fsadm() and call it for named_filetrans_domain domains. We need to be sure that /run/blkid is created with correct labeling. - arping running as netutils_t needs to access /etc/ld.so.cache in MLS. - Allow sysadm to execute systemd-sysctl in the sysadm_t domain. It is needed for ifup command in MLS mode. - Add systemd_exec_sysctl() and systemd_domtrans_sysctl() interfaces. - Allow udev, lvm and fsadm to access systemd-cat in /var/tmp/dracut if 'dracut -fv' is executed in MLS. - Allow admin SELinu users to communicate with kernel_t. It is needed to access /run/systemd/journal/stdout if 'dracut -vf' is executed. We allow it for other SELinux users. - depmod runs as insmod_t and it needs to manage user tmp files which was allowed for depmod_t. It is needed by dracut command for SELinux restrictive policy (confined users, MLS). - Allow sysadm to administrate ldap environment and allow to bind ldap port to allow to setup an LDAP server (389ds). * Wed Jul 29 2015 Lukas Vrabec <lvrabec@xxxxxxxxxx> 3.13.1-128.9 - Allow virt_qemu_ga_t domtrans to passwd_t. - Allow redis to read kernel parameters. - Label /etc/rt dir as httpd_sys_rw_content_t BZ(#1185500) - Allow hostapd to manage sock file in /va/run/hostapd Add fsetid cap. for hostapd Add net_raw cap. for hostpad BZ(#1237343) - Allow bumblebee to seng kill signal to xserver - glusterd call pcs utility which calls find for cib.* files and runs pstree under glusterd. Dontaudit access to security files and update gluster boolean to reflect these changes. - Allow drbd to get attributes from filesystems. - Allow glusterd to communicate with cluster domains over stream socket. - Allow drbd to read configuration options used when loading modules. - Allow glusterd to communicate with cluster domains over stream socket. - Added Booleans: pcp_read_generic_logs. - Allow pcp_pmcd daemon to read postfix config files. Allow pcp_pmcd daemon to search postfix spool dirs. - Remove diplicate sftpd_write_ssh_home boolean rule. - Allow sysadm to administrate ldap environment and allow to bind ldap port to allow to setup an LDAP server (389ds). - Label /usr/sbin/chpasswd as passwd_exec_t. - Allow audisp_remote_t to read/write user domain pty. - Allow audisp_remote_t to start power unit files domain to allow halt system. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1243459 - Policy for command setting root/administrator account password https://bugzilla.redhat.com/show_bug.cgi?id=1243459 [ 2 ] Bug #1244600 - SELinux is preventing bumblebeed from using the 'sigkill' accesses on a process. https://bugzilla.redhat.com/show_bug.cgi?id=1244600 -------------------------------------------------------------------------------- ================================================================================ util-linux-2.26.2-3.fc22 (FEDORA-2015-13513) A collection of basic system utilities -------------------------------------------------------------------------------- Update Information: fix #1248115 - sfdisk: you cannot change a partition into an extended one or vice versa -------------------------------------------------------------------------------- ChangeLog: * Thu Aug 13 2015 Karel Zak <kzak@xxxxxxxxxx> 2.26.2-3 - fix #1248115 - sfdisk: you cannot change a partition into an extended one or vice versa - fix dates in the spec file * Fri Jun 19 2015 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 2.26.2-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild -------------------------------------------------------------------------------- References: [ 1 ] Bug #1248115 - sfdisk: you cannot change a partition into an extended one or vice versa https://bugzilla.redhat.com/show_bug.cgi?id=1248115 -------------------------------------------------------------------------------- ================================================================================ will-crash-0.10-1.fc22 (FEDORA-2015-13516) Set of crashing executables written in various languages -------------------------------------------------------------------------------- Update Information: - Version bump - fix will_python_sigsegv for s390x - Make it possible to run will_oops.in multiple times in row - will_ruby_raise: fancy stacktrace - Add --help to will_abort -------------------------------------------------------------------------------- ChangeLog: * Thu Aug 13 2015 Richard Marko <rmarko@xxxxxxxxxxxxxxxxx> - 0.10-1 - Version bump - fix will_python_sigsegv for s390x - Make it possible to run will_oops.in multiple times in row - will_ruby_raise: fancy stacktrace - Add --help to will_abort * Fri Jun 19 2015 Fedora Release Engineering <rel-eng@xxxxxxxxxxxxxxxxxxxxxxx> - 0.9-4 - Rebuilt for https://fedoraproject.org/wiki/Fedora_23_Mass_Rebuild * Sat May 2 2015 Kalev Lember <kalevlember@xxxxxxxxx> - 0.9-3 - Rebuilt for GCC 5 C++11 ABI change * Mon Nov 24 2014 Richard Marko <rmarko@xxxxxxxxxxxxxxxxx> - 0.9-2 - fix will_java_throw_suppressed availability on RHEL6 -------------------------------------------------------------------------------- -- test mailing list test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe: https://admin.fedoraproject.org/mailman/listinfo/test
