The following Fedora 22 Security updates need testing: Age URL 134 https://bodhi.fedoraproject.org/updates/FEDORA-2015-5878 83 https://bodhi.fedoraproject.org/updates/FEDORA-2015-9110 83 https://bodhi.fedoraproject.org/updates/FEDORA-2015-9185 52 https://bodhi.fedoraproject.org/updates/FEDORA-2015-10944 39 https://bodhi.fedoraproject.org/updates/FEDORA-2015-11473 16 https://bodhi.fedoraproject.org/updates/FEDORA-2015-12781 7 https://bodhi.fedoraproject.org/updates/FEDORA-2015-13529 2 https://bodhi.fedoraproject.org/updates/FEDORA-2015-13718 2 https://bodhi.fedoraproject.org/updates/FEDORA-2015-13758 2 https://bodhi.fedoraproject.org/updates/FEDORA-2015-13616 1 https://bodhi.fedoraproject.org/updates/FEDORA-2015-13823 0 https://bodhi.fedoraproject.org/updates/FEDORA-2015-13433 0 https://bodhi.fedoraproject.org/updates/conntrack-tools-1.4.2-9.fc22 0 https://bodhi.fedoraproject.org/updates/mediawiki-1.25.2-2.fc22 0 https://bodhi.fedoraproject.org/updates/ca-certificates-2015.2.5-1.0.fc22 0 https://bodhi.fedoraproject.org/updates/FEDORA-2015-13916 0 https://bodhi.fedoraproject.org/updates/FEDORA-2015-13918 0 https://bodhi.fedoraproject.org/updates/FEDORA-2015-13925 0 https://bodhi.fedoraproject.org/updates/FEDORA-2015-13945 The following Fedora 22 Critical Path updates have yet to be approved: Age URL 80 https://bodhi.fedoraproject.org/updates/FEDORA-2015-9342 9 https://bodhi.fedoraproject.org/updates/FEDORA-2015-13210 7 https://bodhi.fedoraproject.org/updates/FEDORA-2015-13481 2 https://bodhi.fedoraproject.org/updates/FEDORA-2015-13684 2 https://bodhi.fedoraproject.org/updates/FEDORA-2015-13652 2 https://bodhi.fedoraproject.org/updates/FEDORA-2015-13710 2 https://bodhi.fedoraproject.org/updates/FEDORA-2015-13646 2 https://bodhi.fedoraproject.org/updates/FEDORA-2015-13778 1 https://bodhi.fedoraproject.org/updates/FEDORA-2015-13833 1 https://bodhi.fedoraproject.org/updates/FEDORA-2015-13826 0 https://bodhi.fedoraproject.org/updates/FEDORA-2015-13954 0 https://bodhi.fedoraproject.org/updates/FEDORA-2015-13944 0 https://bodhi.fedoraproject.org/updates/FEDORA-2015-13925 0 https://bodhi.fedoraproject.org/updates/FEDORA-2015-13909 0 https://bodhi.fedoraproject.org/updates/FEDORA-2015-13899 0 https://bodhi.fedoraproject.org/updates/FEDORA-2015-13886 0 https://bodhi.fedoraproject.org/updates/FEDORA-2015-13883 0 https://bodhi.fedoraproject.org/updates/FEDORA-2015-13860 0 https://bodhi.fedoraproject.org/updates/FEDORA-2015-13837 0 https://bodhi.fedoraproject.org/updates/FEDORA-2015-13814 0 https://bodhi.fedoraproject.org/updates/FEDORA-2015-13801 0 https://bodhi.fedoraproject.org/updates/FEDORA-2015-13797 0 https://bodhi.fedoraproject.org/updates/ca-certificates-2015.2.5-1.0.fc22 0 https://bodhi.fedoraproject.org/updates/freetype-2.5.5-2.fc22 0 https://bodhi.fedoraproject.org/updates/FEDORA-2015-10143 The following builds have been pushed to Fedora 22 updates-testing CGAL-4.6.2-1.fc22 NetworkManager-1.0.6-0.2.20150813git7e2caa2.fc22 PackageKit-1.0.8-2.fc22 aespipe-2.4d-2.fc22 antimicro-2.18.1-1.fc22 appstream-data-22-9.fc22 bodhi-0.9.12.2-3.fc22 btrfs-progs-4.1.2-1.fc22 buildbot-0.8.10-4.fc22 ca-certificates-2015.2.5-1.0.fc22 conntrack-tools-1.4.2-9.fc22 dnf-plugin-spacewalk-2.4.15-1.fc22 docker-compose-1.2.0-3.fc22 dpm-xrootd-3.5.4-1.fc22 drupal7-7.39-1.fc22 dt-18.32-3.fc22 eclipse-nls-4.5.0.v20150804081228-1.fc22 eclipse-pydev-4.1.0-3.fc22 elementary-xfce-icon-theme-0.6-1.fc22 eog-3.16.3-1.fc22 eog-plugins-3.16.1-1.fc22 epix-1.2.15-1.fc22 evolution-rspam-0.6.0-11.fc22 fedmsg-0.15.0-1.fc22 firefox-40.0-7.fc22 fish-2.2.0-3.fc22 font-manager-0.7.2-2.fc22 fontconfig-2.11.94-4.fc22 fpaste-0.3.8.0-1.fc22 freeciv-2.5.1-1.fc22 freeradius-3.0.9-1.fc22 freetype-2.5.5-2.fc22 gdk-pixbuf2-2.31.6-1.fc22 geany-plugins-1.25-3.fc22 gofed-0.0.8-1.fc22 golang-github-coreos-go-systemd-3-1.fc22 golang-github-cpuguy83-go-md2man-1-9.fc22 golang-googlecode-gcfg-0-0.6.git5866678.fc22 golang-googlecode-go-crypto-0-0.5.gitc57d4a7.fc22 golang-googlecode-go-decimal-inf-0-0.3.hg42ca6cd68aa9.fc22 golang-googlecode-go-exp-0-0.6.gite1eb486.fc22 golang-googlecode-goauth2-0-0.11.gitb5adcc2.fc22 golang-googlecode-gomock-0-0.3.gitd581abf.fc22 gtranslator-2.91.7-2.fc22 ibus-libzhuyin-1.7.4-1.fc22 ipsilon-1.0.0-5.fc22 kubernetes-1.1.0-0.14.gitb6f18c7.fc22 latexila-3.16.2-1.fc22 libinput-0.99.1-1.fc22 librsvg2-2.40.10-1.fc22 libzhuyin-1.0.91-1.fc22 lua-argparse-0.4.1-1.fc22 marco-1.10.2-1.fc22 mate-polkit-1.10.0-3.fc22 mate-settings-daemon-1.10.1-2.fc22 mediawiki-1.25.2-2.fc22 mongo-cxx-driver-1.0.5-1.fc22 mongodb-2.6.11-1.fc22 mutter-3.16.3-3.fc22 network-manager-applet-1.0.4-2.fc22 openssh-6.9p1-6.fc22.1 parcimonie.sh-0-0.4.20150804gitc009937.fc22 pavucontrol-3.0-3.fc22 perl-Image-ExifTool-10.00-1.fc22 php-twig-1.20.0-1.fc22 phpMyAdmin-4.4.14-1.fc22 pius-2.1.1-3.fc22 pki-core-10.2.6-7.fc22 platform-1.0.10-4.fc22 python-fedmsg-meta-fedora-infrastructure-0.15.0-1.fc22 python-fedora-0.5.4-1.fc22 python-flask-restful-0.3.4-1.fc22 python-rpmfluff-0.4.2-1.fc22 python-rtslib-2.1.fb57-2.fc22 qgis-2.8.3-1.fc22 rubygem-zoom-0.5.0-1.fc22 sstp-client-1.0.10-1.fc22 stockfish-7-0.6.20150817git69a1a80.fc22 thunderbird-38.2.0-2.fc22 tigervnc-1.5.0-2.fc22 vim-7.4.827-1.fc22 wireshark-1.12.7-2.fc22 xfdesktop-4.12.3-2.fc22 xorg-x11-drv-intel-2.99.917-15.20150729.fc22 yubioath-desktop-2.1.1-3.fc22 zbackup-1.4.3-1.fc22 Details about builds: ================================================================================ CGAL-4.6.2-1.fc22 (FEDORA-2015-13887) Computational Geometry Algorithms Library -------------------------------------------------------------------------------- Update Information: CGAL-4.6.2-1.fc22 - New upstream release: a bug-fix release -------------------------------------------------------------------------------- ================================================================================ NetworkManager-1.0.6-0.2.20150813git7e2caa2.fc22 (FEDORA-2015-10143) Network connection manager and user applications -------------------------------------------------------------------------------- Update Information: The new release in the NetworkManager 1.0.x stable series. Full list of changes is avialable here: http://cgit.freedesktop.org/NetworkManager/NetworkManager/tree/NEWS?h=1.0.4 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1244483 - 1.0.4-1 regression: Deletes IPv4 default route from unrelated/unmanaged interface https://bugzilla.redhat.com/show_bug.cgi?id=1244483 [ 2 ] Bug #1234121 - After update Network manager loopback address 127.0.0.1 became unavailable https://bugzilla.redhat.com/show_bug.cgi?id=1234121 [ 3 ] Bug #1224819 - [abrt] network-manager-applet: nm_client_networking_set_enabled(): nm-applet killed by SIGSEGV https://bugzilla.redhat.com/show_bug.cgi?id=1224819 [ 4 ] Bug #1253949 - [abrt] NetworkManager: nm_ip4_config_get_num_addresses(): NetworkManager killed by SIGSEGV https://bugzilla.redhat.com/show_bug.cgi?id=1253949 [ 5 ] Bug #1243078 - nm_utils_ssid_to_utf8 returns NULL when LANG is not set https://bugzilla.redhat.com/show_bug.cgi?id=1243078 [ 6 ] Bug #1221391 - IPv6 disabled by default when nm-applet creates a new WWAN connection https://bugzilla.redhat.com/show_bug.cgi?id=1221391 [ 7 ] Bug #1239184 - NetworkManager-1.0.4-0.1.git20160624 ignoring some settings https://bugzilla.redhat.com/show_bug.cgi?id=1239184 -------------------------------------------------------------------------------- ================================================================================ PackageKit-1.0.8-2.fc22 (FEDORA-2015-13860) Package management service -------------------------------------------------------------------------------- Update Information: PackageKit 1.0.8 release. - Exit quietly if we didn't prepare the offline update - Record the UID of the session user in the yumdb -------------------------------------------------------------------------------- ================================================================================ aespipe-2.4d-2.fc22 (FEDORA-2015-13936) AES-based encryption tool for tar/cpio and loop-aes images -------------------------------------------------------------------------------- Update Information: Update to v2.4d -------------------------------------------------------------------------------- References: [ 1 ] Bug #1142306 - aespipe FTBFS failed on arch ppc64le https://bugzilla.redhat.com/show_bug.cgi?id=1142306 -------------------------------------------------------------------------------- ================================================================================ antimicro-2.18.1-1.fc22 (FEDORA-2015-13863) Graphical program used to map keyboard buttons and mouse controls to a gamepad -------------------------------------------------------------------------------- Update Information: New upstream release to address thread-related issues. new upstream release v2.18 (#1253911) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1253911 - antimicro-2.18 is available https://bugzilla.redhat.com/show_bug.cgi?id=1253911 -------------------------------------------------------------------------------- ================================================================================ appstream-data-22-9.fc22 (None) Fedora AppStream metadata -------------------------------------------------------------------------------- Update Information: New metadata version. -------------------------------------------------------------------------------- ================================================================================ bodhi-0.9.12.2-3.fc22 (None) A modular framework that facilitates publishing software updates -------------------------------------------------------------------------------- Update Information: Updated to work better against bodhi2 with the latest python-fedora bindings. -------------------------------------------------------------------------------- ================================================================================ btrfs-progs-4.1.2-1.fc22 (None) Userspace programs for btrfs -------------------------------------------------------------------------------- Update Information: New upstream release 4.1.2. Also fix mkfs to not proceed with invalid options. -------------------------------------------------------------------------------- ================================================================================ buildbot-0.8.10-4.fc22 (FEDORA-2015-13927) Build/test automation system -------------------------------------------------------------------------------- Update Information: - update deps, twisted is now a monolithic package - fix #1255739: darcs is available on all arch -------------------------------------------------------------------------------- ================================================================================ ca-certificates-2015.2.5-1.0.fc22 (None) The Mozilla CA root certificate bundle -------------------------------------------------------------------------------- Update Information: This is an update to the set of CA certificates version 2.5 as released with NSS version 3.19.3 However, as in previous versions of the ca-certificates package, the CA list has been modified to keep several legacy CAs still trusted for compatibility reasons. Please refer to the project URL for details. If you prefer to use the unchanged list provided by Mozilla, and if you accept any compatibility issues it may cause, an administrator may configure the system by executing the "ca-legacy disable" command. -------------------------------------------------------------------------------- ================================================================================ conntrack-tools-1.4.2-9.fc22 (None) Manipulate netfilter connection tracking table and run High Availability -------------------------------------------------------------------------------- Update Information: Addresses a crasher (CVE-2015-6496) and various leaks -------------------------------------------------------------------------------- References: [ 1 ] Bug #1253755 - CVE-2015-6496 conntrackd crash on unexpected network traffic https://bugzilla.redhat.com/show_bug.cgi?id=1253755 -------------------------------------------------------------------------------- ================================================================================ dnf-plugin-spacewalk-2.4.15-1.fc22 (FEDORA-2015-13612) DNF plugin for Spacewalk -------------------------------------------------------------------------------- Update Information: This DNF plugin provides access to a Spacewalk server for software updates. dnf-plugin-spacewalk-2.4.15-1.fc22 - 1254551 - fixed error message output -------------------------------------------------------------------------------- References: [ 1 ] Bug #1224648 - Review Request: dnf-plugin-spacewalk - DNF plugin for Spacewalk https://bugzilla.redhat.com/show_bug.cgi?id=1224648 -------------------------------------------------------------------------------- ================================================================================ docker-compose-1.2.0-3.fc22 (FEDORA-2015-13183) Punctual, lightweight development environments using Docker -------------------------------------------------------------------------------- Update Information: Initial package BZ#1213111 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1213111 - Review Request: docker-compose - Punctual, lightweight development environments using Docker https://bugzilla.redhat.com/show_bug.cgi?id=1213111 -------------------------------------------------------------------------------- ================================================================================ dpm-xrootd-3.5.4-1.fc22 (FEDORA-2015-13873) XROOT interface to the Disk Pool Manager (DPM) -------------------------------------------------------------------------------- Update Information: Update for new upstream release -------------------------------------------------------------------------------- ================================================================================ drupal7-7.39-1.fc22 (FEDORA-2015-13916) An open-source content-management platform -------------------------------------------------------------------------------- Update Information: Updated to 7.39 * [Release notes](https://www.drupal.org/drupal-7.39-release- notes) * [Drupal Core - Critical - Multiple Vulnerabilities - SA- CORE-2015-003](https://www.drupal.org/SA-CORE-2015-003) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1255672 - drupal7: drupal: Several issues in 6.x and 7.x (SA-CORE-2015-003) [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1255672 -------------------------------------------------------------------------------- ================================================================================ dt-18.32-3.fc22 (None) Generic data test program -------------------------------------------------------------------------------- Update Information: drop unneeded dependency on tcsh -------------------------------------------------------------------------------- References: [ 1 ] Bug #1249287 - Uneeded dependency of tcsh https://bugzilla.redhat.com/show_bug.cgi?id=1249287 -------------------------------------------------------------------------------- ================================================================================ eclipse-nls-4.5.0.v20150804081228-1.fc22 (FEDORA-2015-13791) Babel language packs for the Eclipse platform and various plug-ins -------------------------------------------------------------------------------- Update Information: eclipse-nls-4.5.0.v20150804081228-1.fc22 - Update to Mars release. -------------------------------------------------------------------------------- ================================================================================ eclipse-pydev-4.1.0-3.fc22 (None) Eclipse Python development plug-in -------------------------------------------------------------------------------- Update Information: This update fixes a blank "template" dialog seen when creating a new PyDev Module. -------------------------------------------------------------------------------- ================================================================================ elementary-xfce-icon-theme-0.6-1.fc22 (FEDORA-2015-13951) Icons for Xfce based on the elementary Project Icon Theme -------------------------------------------------------------------------------- Update Information: - update to latest upstream version -------------------------------------------------------------------------------- ================================================================================ eog-3.16.3-1.fc22 (FEDORA-2015-13906) Eye of GNOME image viewer -------------------------------------------------------------------------------- Update Information: Latest bug fix releases for eog and eog-plugins, featuring updated translations. -------------------------------------------------------------------------------- ================================================================================ eog-plugins-3.16.1-1.fc22 (FEDORA-2015-13906) A collection of plugins for the eog image viewer -------------------------------------------------------------------------------- Update Information: Latest bug fix releases for eog and eog-plugins, featuring updated translations. -------------------------------------------------------------------------------- ================================================================================ epix-1.2.15-1.fc22 (FEDORA-2015-13896) Utilities for mathematically accurate figures -------------------------------------------------------------------------------- Update Information: epix-1.2.15-1.fc22 - Update to 1.2.15 -------------------------------------------------------------------------------- ================================================================================ evolution-rspam-0.6.0-11.fc22 (None) Evolution Plugin for reporting spam -------------------------------------------------------------------------------- Update Information: Fixes the bug #1254256 where the evolution-rspam unrefs an ESource twice, effectively causing use-after-free later in the code. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1254256 - [abrt] ESource double unref https://bugzilla.redhat.com/show_bug.cgi?id=1254256 -------------------------------------------------------------------------------- ================================================================================ fedmsg-0.15.0-1.fc22 (FEDORA-2015-13842) Tools for Fedora Infrastructure real-time messaging -------------------------------------------------------------------------------- Update Information: Latest upstream. New msg2subjective() API. -------------------------------------------------------------------------------- ================================================================================ firefox-40.0-7.fc22 (FEDORA-2015-13883) Mozilla Firefox Web browser -------------------------------------------------------------------------------- Update Information: firefox-40.0-7.fc22 - Fix crash reporter layout under GTK3 - mozbz#1192243 -------------------------------------------------------------------------------- ================================================================================ fish-2.2.0-3.fc22 (FEDORA-2015-13854) A friendly interactive shell -------------------------------------------------------------------------------- Update Information: Update to fish 2.2.0 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1242223 - fish-2.2.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1242223 -------------------------------------------------------------------------------- ================================================================================ font-manager-0.7.2-2.fc22 (None) A simple font management application for Gtk+ Desktop Environments -------------------------------------------------------------------------------- Update Information: Update to new upstream version, based on Jerry Casiano spec file -------------------------------------------------------------------------------- References: [ 1 ] Bug #1249203 - font-manager shouldn't need to own /usr/share/applications https://bugzilla.redhat.com/show_bug.cgi?id=1249203 [ 2 ] Bug #1225273 - Outdated / Broken https://bugzilla.redhat.com/show_bug.cgi?id=1225273 -------------------------------------------------------------------------------- ================================================================================ fontconfig-2.11.94-4.fc22 (FEDORA-2015-13797) Font configuration and customization library -------------------------------------------------------------------------------- Update Information: Fix the broken cache issue (rhbz#1236034) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1236034 - many fonts missing in fontconfig cache after installation, forced refresh needed https://bugzilla.redhat.com/show_bug.cgi?id=1236034 -------------------------------------------------------------------------------- ================================================================================ fpaste-0.3.8.0-1.fc22 (FEDORA-2015-13891) A simple tool for pasting info onto sticky notes instances -------------------------------------------------------------------------------- Update Information: fpaste-0.3.8.0-1.fc22 - Update to latest upstream release - python 3 is here! -------------------------------------------------------------------------------- References: [ 1 ] Bug #1177053 - fpaste doesn't work when default python is python3 https://bugzilla.redhat.com/show_bug.cgi?id=1177053 -------------------------------------------------------------------------------- ================================================================================ freeciv-2.5.1-1.fc22 (FEDORA-2015-13902) A multi-player strategy game -------------------------------------------------------------------------------- Update Information: freeciv-2.5.1-1.fc22 - Latest upstream. - Disable esound. - Fix doc packaging. -------------------------------------------------------------------------------- ================================================================================ freeradius-3.0.9-1.fc22 (FEDORA-2015-13844) High-performance and highly configurable free RADIUS server -------------------------------------------------------------------------------- Update Information: Upgrade FreeRADIUS packages to v3.0.9 upstream release. This fixes the following bugs: * Bug 1248894 - freeradius: the EAP-PWD module performs insufficient validation on packets received from an EAP peer * Bug 1234976 - CVE-2015-4680 freeradius: insufficent CRL application Note that this release changes extensions of the installed SNMP MIB files from .txt to .mib. -------------------------------------------------------------------------------- ================================================================================ freetype-2.5.5-2.fc22 (None) A free and portable font rendering engine -------------------------------------------------------------------------------- Update Information: This update improves thread-safety of freetype library. -------------------------------------------------------------------------------- References: [ 1 ] Bug #678397 - gray_find_cell() - longjmp causes uninitialized stack frame https://bugzilla.redhat.com/show_bug.cgi?id=678397 -------------------------------------------------------------------------------- ================================================================================ gdk-pixbuf2-2.31.6-1.fc22 (FEDORA-2015-13925) An image loading library -------------------------------------------------------------------------------- Update Information: Security fix for CVE-2015-4491 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1252290 - CVE-2015-4491 Mozilla: Heap overflow in gdk-pixbuf when scaling bitmap images (MFSA 2015-88) https://bugzilla.redhat.com/show_bug.cgi?id=1252290 -------------------------------------------------------------------------------- ================================================================================ geany-plugins-1.25-3.fc22 (FEDORA-2015-13876) Plugins for Geany -------------------------------------------------------------------------------- Update Information: This update fixes a dependency issue with updating to latest Geany Plugins when you have installed geany-plugins-geanylua and or geany-plugins-gproject (which has been renamed to geany-plugins-projectorganizer). -------------------------------------------------------------------------------- ================================================================================ gofed-0.0.8-1.fc22 (FEDORA-2015-13949) Tool for development of golang devel packages -------------------------------------------------------------------------------- Update Information: Updated to version 0.0.8 Updated to version 0.0.6 Updated to version 0.0.5 Update to version 0.0.3 Update to version 0.0.1 Initial commit for Fedora -------------------------------------------------------------------------------- References: [ 1 ] Bug #1255891 - gofed 0.0.8 released https://bugzilla.redhat.com/show_bug.cgi?id=1255891 [ 2 ] Bug #1204614 - Review Request: gofed - Tool for development of golang devel packages https://bugzilla.redhat.com/show_bug.cgi?id=1204614 -------------------------------------------------------------------------------- ================================================================================ golang-github-coreos-go-systemd-3-1.fc22 (FEDORA-2015-13932) Go bindings to systemd socket activation, journal and D-BUS APIs -------------------------------------------------------------------------------- Update Information: Bump to upstream be94bc700879ae8217780e9d141789a2defa302b -------------------------------------------------------------------------------- References: [ 1 ] Bug #1248722 - Tracker for golang-github-coreos-go-systemd https://bugzilla.redhat.com/show_bug.cgi?id=1248722 -------------------------------------------------------------------------------- ================================================================================ golang-github-cpuguy83-go-md2man-1-9.fc22 (FEDORA-2015-13938) Process markdown into manpages -------------------------------------------------------------------------------- Update Information: Update spec file to spec-2.0 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1222796 - Tracker for golang-github-cpuguy83-go-md2man https://bugzilla.redhat.com/show_bug.cgi?id=1222796 -------------------------------------------------------------------------------- ================================================================================ golang-googlecode-gcfg-0-0.6.git5866678.fc22 (None) Gcfg reads INI-style configuration files into Go structs -------------------------------------------------------------------------------- Update Information: Update spec file to spec-2.0 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1250517 - Tracker for golang-googlecode-gcfg https://bugzilla.redhat.com/show_bug.cgi?id=1250517 -------------------------------------------------------------------------------- ================================================================================ golang-googlecode-go-crypto-0-0.5.gitc57d4a7.fc22 (None) Supplementary Go cryptography libraries -------------------------------------------------------------------------------- Update Information: Update spec file to spec-2.0 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1231618 - Tracker for golang-googlecode-go-crypto https://bugzilla.redhat.com/show_bug.cgi?id=1231618 -------------------------------------------------------------------------------- ================================================================================ golang-googlecode-go-decimal-inf-0-0.3.hg42ca6cd68aa9.fc22 (None) Package implementing "infinite-precision" decimal arithmetic -------------------------------------------------------------------------------- Update Information: Update spec file to spec-2.0 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1250518 - Tracker for golang-googlecode-go-decimal-inf https://bugzilla.redhat.com/show_bug.cgi?id=1250518 -------------------------------------------------------------------------------- ================================================================================ golang-googlecode-go-exp-0-0.6.gite1eb486.fc22 (None) Experimental tools and packages for Go -------------------------------------------------------------------------------- Update Information: Update spec file to spec-2.0 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1250519 - Tracker for golang-googlecode-go-exp https://bugzilla.redhat.com/show_bug.cgi?id=1250519 -------------------------------------------------------------------------------- ================================================================================ golang-googlecode-goauth2-0-0.11.gitb5adcc2.fc22 (None) OAuth 2.0 for Go clients -------------------------------------------------------------------------------- Update Information: Update spec file to spec-2.0 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1227273 - Tracker for golang-googlecode-goauth2 https://bugzilla.redhat.com/show_bug.cgi?id=1227273 -------------------------------------------------------------------------------- ================================================================================ golang-googlecode-gomock-0-0.3.gitd581abf.fc22 (None) Mocking framework for the Go -------------------------------------------------------------------------------- Update Information: Update spec file to spec-2.0 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1250520 - Tracker for golang-googlecode-gomock https://bugzilla.redhat.com/show_bug.cgi?id=1250520 -------------------------------------------------------------------------------- ================================================================================ gtranslator-2.91.7-2.fc22 (FEDORA-2015-13900) Gettext po file editor for GNOME -------------------------------------------------------------------------------- Update Information: This update adds a missing dependency on libgda-sqlite that was causing runtime errors with gtranslator. -------------------------------------------------------------------------------- References: [ 1 ] Bug #842050 - [abrt] gtranslator-2.91.5-1.fc17: crash in gtr_gda_store_list(): rpm misses dependency for libgda-sqlite https://bugzilla.redhat.com/show_bug.cgi?id=842050 -------------------------------------------------------------------------------- ================================================================================ ibus-libzhuyin-1.7.4-1.fc22 (None) New Zhuyin engine based on libzhuyin for IBus -------------------------------------------------------------------------------- Update Information: new upstream release. -------------------------------------------------------------------------------- ================================================================================ ipsilon-1.0.0-5.fc22 (FEDORA-2015-13918) An Identity Provider Server -------------------------------------------------------------------------------- Update Information: ipsilon-1.0.0-5.fc22 - Backported some patches - Fix for CVE-2015-5215/CVE-2015-5216/CVE-2015-5217 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1250566 - ipsilon-client-install fails with ImportError: No module named requests https://bugzilla.redhat.com/show_bug.cgi?id=1250566 [ 2 ] Bug #1255176 - CVE-2015-5215 CVE-2015-5217 CVE-2015-5216 ipsilon: various flaws [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1255176 -------------------------------------------------------------------------------- ================================================================================ kubernetes-1.1.0-0.14.gitb6f18c7.fc22 (FEDORA-2015-13940) Container cluster management -------------------------------------------------------------------------------- Update Information: Bump to upstream b6f18c7ce08714c8d4f6019463879a164a41750e -------------------------------------------------------------------------------- References: [ 1 ] Bug #1211266 - Tracking bugzilla for kubernetes updates https://bugzilla.redhat.com/show_bug.cgi?id=1211266 -------------------------------------------------------------------------------- ================================================================================ latexila-3.16.2-1.fc22 (None) Integrated LaTeX Environment for the GNOME desktop -------------------------------------------------------------------------------- Update Information: latexila 3.16.2 release. * Ensure that the personal build tools are correctly saved * A few other small bug fixes * Translation update -------------------------------------------------------------------------------- ================================================================================ libinput-0.99.1-1.fc22 (FEDORA-2015-13869) Input device library -------------------------------------------------------------------------------- Update Information: libinput 1.0RC1, improves short touchpad scroll motions -------------------------------------------------------------------------------- References: [ 1 ] Bug #1249365 - Two finger scrolling is insensitive for small movements, then too sensitive https://bugzilla.redhat.com/show_bug.cgi?id=1249365 -------------------------------------------------------------------------------- ================================================================================ librsvg2-2.40.10-1.fc22 (FEDORA-2015-13909) An SVG library based on cairo -------------------------------------------------------------------------------- Update Information: librsvg 2.40.10 release. See https://mail.gnome.org/archives/ftp-release- list/2015-August/msg00013.html for details. -------------------------------------------------------------------------------- ================================================================================ libzhuyin-1.0.91-1.fc22 (None) Library to deal with zhuyin -------------------------------------------------------------------------------- Update Information: new upstream release. -------------------------------------------------------------------------------- ================================================================================ lua-argparse-0.4.1-1.fc22 (FEDORA-2015-13866) Feature-rich command line parser for Lua -------------------------------------------------------------------------------- Update Information: Initial import -------------------------------------------------------------------------------- ================================================================================ marco-1.10.2-1.fc22 (FEDORA-2015-13853) MATE Desktop window manager -------------------------------------------------------------------------------- Update Information: marco-1.10.2-1.fc22 - update to 1.10.2 release - remove upstreamed patches - fix rhbz (#1011869) (#1226530) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1226530 - [abrt] marco: meta_rectangle_edge_aligns(): marco killed by SIGABRT https://bugzilla.redhat.com/show_bug.cgi?id=1226530 -------------------------------------------------------------------------------- ================================================================================ mate-polkit-1.10.0-3.fc22 (FEDORA-2015-13795) Integrates polkit authentication for MATE desktop -------------------------------------------------------------------------------- Update Information: - fix missing focus on polkit windows -------------------------------------------------------------------------------- ================================================================================ mate-settings-daemon-1.10.1-2.fc22 (FEDORA-2015-13808) MATE Desktop settings daemon -------------------------------------------------------------------------------- Update Information: mate-settings-daemon-1.10.1-2.fc22 - another fix for glib2/gsettings regression -------------------------------------------------------------------------------- ================================================================================ mediawiki-1.25.2-2.fc22 (None) A wiki engine -------------------------------------------------------------------------------- Update Information: * (T94116) SECURITY: Compare API watchlist token in constant time * (T97391) SECURITY: Escape error message strings in thumb.php * (T106893) SECURITY: Don't leak autoblocked IP addresses on Special:DeletedContributions * (T102562) Fix InstantCommons parameters to handle the new HTTPS-only policy of Wikimedia Commons. * (T100767) Setting a configuration setting for skin or extension to false in LocalSettings.php was not working. * (T100635) API action=opensearch json output no longer breaks when $wgDebugToolbar is enabled. * (T102522) Using an extension.json or skin.json file which has a "manifest_version" property for 1.26 compatability will no longer trigger warnings. * (T86156) Running updateSearchIndex.php will not throw an error as page_restrictions has been added to the locked table list. * Special:Version would throw notices if using SVN due to an incorrectly named variable. Add an additional check that an index is defined. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1253280 - mediawiki: multiple security fixes in 1.25.2, 1.24.3, 1.23.10 https://bugzilla.redhat.com/show_bug.cgi?id=1253280 -------------------------------------------------------------------------------- ================================================================================ mongo-cxx-driver-1.0.5-1.fc22 (None) A legacy C++ Driver for MongoDB -------------------------------------------------------------------------------- Update Information: Upgrade to version 1.0.5 -------------------------------------------------------------------------------- ================================================================================ mongodb-2.6.11-1.fc22 (None) High-performance, schema-free document-oriented database -------------------------------------------------------------------------------- Update Information: Fixed systemd service PIDFile setting (#1231269) Upgrade to minor version 2.6.11 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1231269 - typo in mongod.service https://bugzilla.redhat.com/show_bug.cgi?id=1231269 -------------------------------------------------------------------------------- ================================================================================ mutter-3.16.3-3.fc22 (FEDORA-2015-13899) Window and compositing manager based on Clutter -------------------------------------------------------------------------------- Update Information: This update fixes an issue that was causing screen update / flickering problems with NVIDIA drivers. -------------------------------------------------------------------------------- ================================================================================ network-manager-applet-1.0.4-2.fc22 (FEDORA-2015-10143) A network control and status applet for NetworkManager -------------------------------------------------------------------------------- Update Information: The new release in the NetworkManager 1.0.x stable series. Full list of changes is avialable here: http://cgit.freedesktop.org/NetworkManager/NetworkManager/tree/NEWS?h=1.0.4 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1244483 - 1.0.4-1 regression: Deletes IPv4 default route from unrelated/unmanaged interface https://bugzilla.redhat.com/show_bug.cgi?id=1244483 [ 2 ] Bug #1234121 - After update Network manager loopback address 127.0.0.1 became unavailable https://bugzilla.redhat.com/show_bug.cgi?id=1234121 [ 3 ] Bug #1224819 - [abrt] network-manager-applet: nm_client_networking_set_enabled(): nm-applet killed by SIGSEGV https://bugzilla.redhat.com/show_bug.cgi?id=1224819 [ 4 ] Bug #1253949 - [abrt] NetworkManager: nm_ip4_config_get_num_addresses(): NetworkManager killed by SIGSEGV https://bugzilla.redhat.com/show_bug.cgi?id=1253949 [ 5 ] Bug #1243078 - nm_utils_ssid_to_utf8 returns NULL when LANG is not set https://bugzilla.redhat.com/show_bug.cgi?id=1243078 [ 6 ] Bug #1221391 - IPv6 disabled by default when nm-applet creates a new WWAN connection https://bugzilla.redhat.com/show_bug.cgi?id=1221391 [ 7 ] Bug #1239184 - NetworkManager-1.0.4-0.1.git20160624 ignoring some settings https://bugzilla.redhat.com/show_bug.cgi?id=1239184 -------------------------------------------------------------------------------- ================================================================================ openssh-6.9p1-6.fc22.1 (FEDORA-2015-13814) An open source implementation of SSH protocol versions 1 and 2 -------------------------------------------------------------------------------- Update Information: This update brings fix for pam_ssh_agent_auth and two new features improving security and interoperability with older systems. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1249626 - openssh: should print both new and legacy fingerprints https://bugzilla.redhat.com/show_bug.cgi?id=1249626 [ 2 ] Bug #1251777 - pam_ssh_agent_auth does not work with gnome-keyring-daemon or ssh-agent https://bugzilla.redhat.com/show_bug.cgi?id=1251777 -------------------------------------------------------------------------------- ================================================================================ parcimonie.sh-0-0.4.20150804gitc009937.fc22 (FEDORA-2015-13752) Refresh your GnuPG keyring over Tor -------------------------------------------------------------------------------- Update Information: Initial package -------------------------------------------------------------------------------- References: [ 1 ] Bug #1242086 - Review Request: parcimonie.sh - Refresh your GnuPG keyring over Tor https://bugzilla.redhat.com/show_bug.cgi?id=1242086 -------------------------------------------------------------------------------- ================================================================================ pavucontrol-3.0-3.fc22 (None) Volume control for PulseAudio -------------------------------------------------------------------------------- Update Information: This update fixes pavucontrol to work with the default icon theme without needing to pull in gnome-icon-theme-legacy. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1249198 - pavucontrol requires gnome-icon-theme-legacy https://bugzilla.redhat.com/show_bug.cgi?id=1249198 -------------------------------------------------------------------------------- ================================================================================ perl-Image-ExifTool-10.00-1.fc22 (None) Utility for reading and writing image meta info -------------------------------------------------------------------------------- Update Information: Update to 10.00 (latest stable release from upstream). -------------------------------------------------------------------------------- ================================================================================ php-twig-1.20.0-1.fc22 (FEDORA-2015-13433) The flexible, fast, and secure template engine for PHP -------------------------------------------------------------------------------- Update Information: ## 1.20.0 (2015-08-12) * forbid access to the Twig environment from templates and internal parts of Twig_Template * fixed limited RCEs when in sandbox mode * deprecated Twig_Template::getEnvironment() * deprecated the _self variable for usage outside of the from and import tags * added Twig_BaseNodeVisitor to ease the compatibility of node visitors between 1.x and 2.x ## 1.19.0 (2015-07-31) * fixed wrong error message when including an undefined template in a child template * added support for variadic filters, functions, and tests * added support for extra positional arguments in macros * added ignore_missing flag to the source function * fixed batch filter with zero items * deprecated Twig_Environment::clearTemplateCache() * fixed sandbox disabling when using the include function -------------------------------------------------------------------------------- References: [ 1 ] Bug #1255796 - php-twig: Remote code execution via Twig templates [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1255796 [ 2 ] Bug #1249259 - php-twig-v1.20.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1249259 -------------------------------------------------------------------------------- ================================================================================ phpMyAdmin-4.4.14-1.fc22 (FEDORA-2015-13851) Handle the administration of MySQL over the World Wide Web -------------------------------------------------------------------------------- Update Information: phpMyAdmin 4.4.14.0 (2015-08-20) ================================ * Export after search, missing WHERE clause * Incomplete message after import * Incorrect scalar type declaration (reported under PHP 7) * ReCaptcha produces deprecated messages under PHP 7 * phpseclib < 2.0 produces deprecated messages on PHP 7 * "Switch to copied table" doesn't work * Missing quotes after calling "distinct values" * Cannot import database with long data in one column * SPATIAL index option is not clickable -------------------------------------------------------------------------------- ================================================================================ pius-2.1.1-3.fc22 (None) A tool for signing and emailing all UIDs on a set of PGP keys -------------------------------------------------------------------------------- Update Information: Added required library to fix module import issue. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1218974 - pius-2.1.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1218974 -------------------------------------------------------------------------------- ================================================================================ pki-core-10.2.6-7.fc22 (FEDORA-2015-13903) Certificate System - PKI Core Components -------------------------------------------------------------------------------- Update Information: Resolves: PKI TRAC Ticket #1546,1566,1575 PKI TRAC Tickets #1549,1539,1538,1543,1546,1556 Resolves: PKI TRAC Ticket #1523,1414,1522,1535,1531,1443,1518,1253,1530,1542 PKI TRAC Ticket #1414,1504,1515,1307,1511,1524 Bugzilla Bug #1244975 - PKCS12Export tool returns error PKI TRAC Ticket #1503 - Release Dogtag 10.2.6 -------------------------------------------------------------------------------- ================================================================================ platform-1.0.10-4.fc22 (FEDORA-2015-13910) Platform support library used by libCEC and binary add-ons for Kodi -------------------------------------------------------------------------------- Update Information: First import -------------------------------------------------------------------------------- References: [ 1 ] Bug #1245929 - Review Request: platform - Platform support library used by libCEC and binary add-ons for Kodi https://bugzilla.redhat.com/show_bug.cgi?id=1245929 -------------------------------------------------------------------------------- ================================================================================ python-fedmsg-meta-fedora-infrastructure-0.15.0-1.fc22 (FEDORA-2015-13857) Metadata providers for Fedora Infrastructure's fedmsg deployment -------------------------------------------------------------------------------- Update Information: Latest upstream. New msg2subjective() API. Some new handlers for bodhi2 messages and more. -------------------------------------------------------------------------------- ================================================================================ python-fedora-0.5.4-1.fc22 (None) Python modules for talking to Fedora Infrastructure Services -------------------------------------------------------------------------------- Update Information: Better detection of bodhi server version. Be more careful with python-six API usage for EPEL. -------------------------------------------------------------------------------- ================================================================================ python-flask-restful-0.3.4-1.fc22 (FEDORA-2015-13803) Simple framework for creating REST APIs for Flask -------------------------------------------------------------------------------- Update Information: new package release -------------------------------------------------------------------------------- ================================================================================ python-rpmfluff-0.4.2-1.fc22 (FEDORA-2015-13811) Lightweight way of building RPMs, and sabotaging them -------------------------------------------------------------------------------- Update Information: python-rpmfluff-0.4.2-1.fc22 - John Dulaney implemented weak dependencies -------------------------------------------------------------------------------- References: [ 1 ] Bug #1253059 - Add support for rpm Recommends, patch included https://bugzilla.redhat.com/show_bug.cgi?id=1253059 -------------------------------------------------------------------------------- ================================================================================ python-rtslib-2.1.fb57-2.fc22 (None) API for Linux kernel LIO SCSI target -------------------------------------------------------------------------------- Update Information: break systemd service out into its own package so service is not lost within a library package. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1242382 - Create subpackage for target.service to make it easier to discover https://bugzilla.redhat.com/show_bug.cgi?id=1242382 -------------------------------------------------------------------------------- ================================================================================ qgis-2.8.3-1.fc22 (FEDORA-2015-13861) A user friendly Open Source Geographic Information System -------------------------------------------------------------------------------- Update Information: http://blog.qgis.org/2015/08/06/point-release-qgis-2-8-3-wien-is-ready/ -------------------------------------------------------------------------------- ================================================================================ rubygem-zoom-0.5.0-1.fc22 (None) Ruby binding to ZOOM -------------------------------------------------------------------------------- Update Information: New version 0.5.0 is released. -------------------------------------------------------------------------------- ================================================================================ sstp-client-1.0.10-1.fc22 (FEDORA-2015-13892) Secure Socket Tunneling Protocol(SSTP) Client -------------------------------------------------------------------------------- Update Information: 1. Fixed the HTTP Proxy connection failing. 2. Fixed the PAP authentication. 3. Fixed an issue with staying connected to MikroTik routers. 4. Ease of troubleshooting with built in PPP packet dump. -------------------------------------------------------------------------------- ================================================================================ stockfish-7-0.6.20150817git69a1a80.fc22 (None) Powerful open source chess engine -------------------------------------------------------------------------------- Update Information: new upstream tarball as of 20150817 -------------------------------------------------------------------------------- ================================================================================ thunderbird-38.2.0-2.fc22 (FEDORA-2015-13886) Mozilla Thunderbird mail/newsgroup client -------------------------------------------------------------------------------- Update Information: For changes see: https://www.mozilla.org/en- US/thunderbird/38.2.0/releasenotes/ -------------------------------------------------------------------------------- ================================================================================ tigervnc-1.5.0-2.fc22 (FEDORA-2015-13801) A TigerVNC remote display system -------------------------------------------------------------------------------- Update Information: Tigervnc 1.5.0 release. See https://github.com/TigerVNC/tigervnc/releases/tag/v1.5.0 for more information. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1255661 - tigervnc server fails with -inetd option https://bugzilla.redhat.com/show_bug.cgi?id=1255661 -------------------------------------------------------------------------------- ================================================================================ vim-7.4.827-1.fc22 (FEDORA-2015-13837) The VIM editor -------------------------------------------------------------------------------- Update Information: vim-7.4.827-1.fc22 - patchlevel 827 - re-enable lua - enable python3 vim-7.4.827-1.fc23 - patchlevel 827 - re-enable lua - enable python3 -------------------------------------------------------------------------------- ================================================================================ wireshark-1.12.7-2.fc22 (FEDORA-2015-13945) Network traffic analyzer -------------------------------------------------------------------------------- Update Information: - Enable libnl3 (see rhbz#1207386, rhbz#1247566) - Remove airpcap switch (doesn't have any effect on Linux) - Backport patch no. 11 - Fixed building with F24+ * Ver. 1.12.7 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1253361 - wireshark: WCCP dissector crash (wnpa-sec-2015-29) https://bugzilla.redhat.com/show_bug.cgi?id=1253361 [ 2 ] Bug #1253352 - wireshark: protocol tree crash (wnpa-sec-2015-21) https://bugzilla.redhat.com/show_bug.cgi?id=1253352 [ 3 ] Bug #1253353 - wireshark: memory manager crash (wnpa-sec-2015-22) https://bugzilla.redhat.com/show_bug.cgi?id=1253353 [ 4 ] Bug #1253354 - wireshark: Dissector table crash (wnpa-sec-2015-23) https://bugzilla.redhat.com/show_bug.cgi?id=1253354 [ 5 ] Bug #1253355 - wireshark: ZigBee dissector crash (wnpa-sec-2015-24) https://bugzilla.redhat.com/show_bug.cgi?id=1253355 [ 6 ] Bug #1253356 - wireshark: GSM RLC/MAC dissector infinite loop (wnpa-sec-2015-25) https://bugzilla.redhat.com/show_bug.cgi?id=1253356 [ 7 ] Bug #1253357 - wireshark: WaveAgent dissector crash (wnpa-sec-2015-26) https://bugzilla.redhat.com/show_bug.cgi?id=1253357 [ 8 ] Bug #1253359 - wireshark: OpenFlow dissector infinite loop (wnpa-sec-2015-27) https://bugzilla.redhat.com/show_bug.cgi?id=1253359 [ 9 ] Bug #1253360 - wireshark: Ptvcursor crash (wnpa-sec-2015-28) https://bugzilla.redhat.com/show_bug.cgi?id=1253360 -------------------------------------------------------------------------------- ================================================================================ xfdesktop-4.12.3-2.fc22 (FEDORA-2015-13954) Desktop manager for the Xfce Desktop Environment -------------------------------------------------------------------------------- Update Information: Add upstream patch to not redraw desktop on every mouse click. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1252078 - Unnecessary desktop redraws on mouse click breaking root-tail https://bugzilla.redhat.com/show_bug.cgi?id=1252078 -------------------------------------------------------------------------------- ================================================================================ xorg-x11-drv-intel-2.99.917-15.20150729.fc22 (FEDORA-2015-13944) Xorg X11 Intel video driver -------------------------------------------------------------------------------- Update Information: Updated git snapshot -------------------------------------------------------------------------------- ================================================================================ yubioath-desktop-2.1.1-3.fc22 (FEDORA-2015-13846) Yubikey tool for generating OATH event-based HOTP and time-based TOTP codes -------------------------------------------------------------------------------- Update Information: Initial release -------------------------------------------------------------------------------- References: [ 1 ] Bug #1251238 - Review Request: yubioath-desktop - Yubikey tool for generating OATH tokens https://bugzilla.redhat.com/show_bug.cgi?id=1251238 -------------------------------------------------------------------------------- ================================================================================ zbackup-1.4.3-1.fc22 (None) A versatile deduplicating backup tool -------------------------------------------------------------------------------- Update Information: Version bumped to 1.4.3 -------------------------------------------------------------------------------- -- test mailing list test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe: https://admin.fedoraproject.org/mailman/listinfo/test
