The following Fedora 21 Security updates need testing: Age URL 279 https://bodhi.fedoraproject.org/updates/FEDORA-2015-1467 openstack-glance-2014.1.3-4.fc21 159 https://bodhi.fedoraproject.org/updates/FEDORA-2015-9141 ceph-deploy-1.5.25-1.fc21 148 https://bodhi.fedoraproject.org/updates/FEDORA-2015-9744 squid-3.4.13-1.fc21 92 https://bodhi.fedoraproject.org/updates/FEDORA-2015-12773 python-kdcproxy-0.3.2-1.fc21 75 https://bodhi.fedoraproject.org/updates/FEDORA-2015-1fed73bab8 conntrack-tools-1.4.2-9.fc21 71 https://bodhi.fedoraproject.org/updates/FEDORA-2015-14179 libreswan-3.15-1.fc21 71 https://bodhi.fedoraproject.org/updates/FEDORA-2015-14200 sblim-sfcb-1.4.8-5.fc21 63 https://bodhi.fedoraproject.org/updates/FEDORA-2015-14852 libwmf-0.2.8.4-46.fc21 46 https://bodhi.fedoraproject.org/updates/FEDORA-2015-16238 nagios-4.0.8-1.fc21 32 https://bodhi.fedoraproject.org/updates/FEDORA-2015-af1b712fce python-pymongo-3.0.3-1.fc21 32 https://bodhi.fedoraproject.org/updates/FEDORA-2015-d292a98f01 cyrus-imapd-2.4.18-1.fc21 32 https://bodhi.fedoraproject.org/updates/FEDORA-2015-048e95ac1d thunderbird-38.3.0-1.fc21 27 https://bodhi.fedoraproject.org/updates/FEDORA-2015-d683ebb786 postgresql-9.3.10-1.fc21 25 https://bodhi.fedoraproject.org/updates/FEDORA-2015-1f9e79df21 audiofile-0.3.6-9.fc21 21 https://bodhi.fedoraproject.org/updates/FEDORA-2015-15290 ipsilon-1.1.1-2.fc21 19 https://bodhi.fedoraproject.org/updates/FEDORA-2015-6542ab6d3a libreport-2.3.0-10.fc21 abrt-2.3.0-12.fc21 8 https://bodhi.fedoraproject.org/updates/FEDORA-2015-ebfe46536f lxc-1.0.7-4.fc21 8 https://bodhi.fedoraproject.org/updates/FEDORA-2015-f1e18131bc php-ZendFramework-1.12.16-1.fc21 8 https://bodhi.fedoraproject.org/updates/FEDORA-2015-5c06260c4b php-udan11-sql-parser-3.0.4-1.fc21 phpMyAdmin-4.5.1-1.fc21 3 https://bodhi.fedoraproject.org/updates/FEDORA-2015-47cf97f125 git-2.1.0-6.fc21 3 https://bodhi.fedoraproject.org/updates/FEDORA-2015-0253d1f070 kernel-4.1.12-101.fc21 3 https://bodhi.fedoraproject.org/updates/FEDORA-2015-780302029a dovecot-2.2.19-1.fc21 3 https://bodhi.fedoraproject.org/updates/FEDORA-2015-fed35dffd7 perl-HTML-Scrubber-0.15-1.fc21 3 https://bodhi.fedoraproject.org/updates/FEDORA-2015-242be2c240 xen-4.4.3-7.fc21 3 https://bodhi.fedoraproject.org/updates/FEDORA-2015-69e6c3607f miniupnpc-1.9-6.fc21 3 https://bodhi.fedoraproject.org/updates/FEDORA-2015-d0e48b2eb1 icecat-38.3.0-10.fc21 2 https://bodhi.fedoraproject.org/updates/FEDORA-2015-cfea96144a wpa_supplicant-2.0-16.fc21 2 https://bodhi.fedoraproject.org/updates/FEDORA-2015-fb3360fc0a firefox-42.0-2.fc21 nspr-4.10.10-1.fc21 nss-3.20.1-1.0.fc21 nss-softokn-3.20.1-1.0.fc21 nss-util-3.20.1-1.0.fc21 2 https://bodhi.fedoraproject.org/updates/FEDORA-2015-240dd21cb6 perl-IPTables-Parse-1.5-2.fc21 1 https://bodhi.fedoraproject.org/updates/FEDORA-2015-19dc86f49b metis-5.1.0-7.fc21 0 https://bodhi.fedoraproject.org/updates/FEDORA-2015-bf4adb12aa drupal7-jquery_update-2.7-1.fc21 0 https://bodhi.fedoraproject.org/updates/FEDORA-2015-bd6d51590e wildmagic5-5.13-12.fc21 0 https://bodhi.fedoraproject.org/updates/FEDORA-2015-136a34204f MUMPS-5.0.1-4.fc21 0 https://bodhi.fedoraproject.org/updates/FEDORA-2015-3471dfb5b4 snappy-player-1.0-7.20151010git166a98.fc21 0 https://bodhi.fedoraproject.org/updates/FEDORA-2015-a117082cd2 owncloud-8.0.9-1.fc21 0 https://bodhi.fedoraproject.org/updates/FEDORA-2015-0080239274 sudo-1.8.15-1.fc21 0 https://bodhi.fedoraproject.org/updates/FEDORA-2015-446074b60f m2crypto-0.22.5-2.fc21 The following Fedora 21 Critical Path updates have yet to be approved: Age URL 97 https://bodhi.fedoraproject.org/updates/FEDORA-2015-12402 gstreamer1-plugins-good-1.4.5-3.fc21 85 https://bodhi.fedoraproject.org/updates/FEDORA-2015-13239 yum-3.4.3-154.fc21 75 https://bodhi.fedoraproject.org/updates/FEDORA-2015-13877 libteam-1.18-1.fc21 75 https://bodhi.fedoraproject.org/updates/FEDORA-2015-13805 tigervnc-1.5.0-2.fc21 75 https://bodhi.fedoraproject.org/updates/FEDORA-2015-90d3a9ce48 dracut-038-40.git20150819.fc21 75 https://bodhi.fedoraproject.org/updates/FEDORA-2015-37e78bb9af btrfs-progs-4.1.2-1.fc21 32 https://bodhi.fedoraproject.org/updates/FEDORA-2015-048e95ac1d thunderbird-38.3.0-1.fc21 32 https://bodhi.fedoraproject.org/updates/FEDORA-2015-ff9eaa3e01 device-mapper-multipath-0.4.9-68.fc21.6 29 https://bodhi.fedoraproject.org/updates/FEDORA-2015-9e6a99b895 gnome-terminal-3.14.3-2.fc21 20 https://bodhi.fedoraproject.org/updates/FEDORA-2015-f01da0e4b8 spatialite-tools-4.2.0-15.fc21 sqlite-3.9.0-1.fc21 19 https://bodhi.fedoraproject.org/updates/FEDORA-2015-6542ab6d3a libreport-2.3.0-10.fc21 abrt-2.3.0-12.fc21 10 https://bodhi.fedoraproject.org/updates/FEDORA-2015-311e897518 dnsmasq-2.75-2.fc21 10 https://bodhi.fedoraproject.org/updates/FEDORA-2015-830a68baaa createrepo_c-0.9.1-1.fc21 8 https://bodhi.fedoraproject.org/updates/FEDORA-2015-272674923f perl-Thread-Queue-3.07-1.fc21 8 https://bodhi.fedoraproject.org/updates/FEDORA-2015-06f119f03c hwdata-0.283-1.fc21 3 https://bodhi.fedoraproject.org/updates/FEDORA-2015-2a2f9442ac mingw-libwebp-0.4.4-1.fc21 libwebp-0.4.4-1.fc21 3 https://bodhi.fedoraproject.org/updates/FEDORA-2015-38c68e7875 linux-firmware-20151030-58.git66d3d8d7.fc21 3 https://bodhi.fedoraproject.org/updates/FEDORA-2015-607cc1b079 gdisk-1.0.1-1.fc21 3 https://bodhi.fedoraproject.org/updates/FEDORA-2015-0253d1f070 kernel-4.1.12-101.fc21 2 https://bodhi.fedoraproject.org/updates/FEDORA-2015-fb3360fc0a firefox-42.0-2.fc21 nspr-4.10.10-1.fc21 nss-3.20.1-1.0.fc21 nss-softokn-3.20.1-1.0.fc21 nss-util-3.20.1-1.0.fc21 2 https://bodhi.fedoraproject.org/updates/FEDORA-2015-cfea96144a wpa_supplicant-2.0-16.fc21 2 https://bodhi.fedoraproject.org/updates/FEDORA-2015-cd8384936c perl-Getopt-Long-2.48-1.fc21 1 https://bodhi.fedoraproject.org/updates/FEDORA-2015-315b5f87f0 vim-7.4.909-1.fc21 1 https://bodhi.fedoraproject.org/updates/FEDORA-2015-64068a1f08 crda-3.18_2015.10.22-1.fc21 0 https://bodhi.fedoraproject.org/updates/FEDORA-2015-0080239274 sudo-1.8.15-1.fc21 The following builds have been pushed to Fedora 21 updates-testing MUMPS-5.0.1-4.fc21 abi-dumper-0.99.12-1.fc21.1 drupal7-jquery_update-2.7-1.fc21 gajim-0.16.4-3.fc21 layla-fonts-1.6-2.fc21 m2crypto-0.22.5-2.fc21 owncloud-8.0.9-1.fc21 php-composer-installers-1.0.22-1.fc21 php-guzzlehttp-psr7-1.2.1-1.fc21 python-nbxmpp-0.5.3-1.fc21 rubygem-sequel-4.27.0-1.fc21 snappy-player-1.0-7.20151010git166a98.fc21 sudo-1.8.15-1.fc21 wildmagic5-5.13-12.fc21 Details about builds: ================================================================================ MUMPS-5.0.1-4.fc21 (FEDORA-2015-136a34204f) A MUltifrontal Massively Parallel sparse direct Solver -------------------------------------------------------------------------------- Update Information: MUMPS-5.0.1-4.fc23 - Hardened builds on <F23 MUMPS-5.0.1-4.fc21 - Hardened builds on <F23 MUMPS-5.0.1-4.fc22 - Hardened builds on <F23 MUMPS-5.0.1-4.el6 - Hardened builds on <F23 MUMPS-5.0.1-4.el7 - Hardened builds on <F23 -------------------------------------------------------------------------------- ================================================================================ abi-dumper-0.99.12-1.fc21.1 (FEDORA-2015-33c56a8825) Tool to dump ABI of an ELF object containing DWARF debug info -------------------------------------------------------------------------------- Update Information: abi-dumper-0.99.12-1.fc21.1 - Update to latest upstream release. ---- - Fixed reading of GNU_IFUNC and TLS symbols. Fixed detection of symbol versions. - Fixed detection of symbol headers. Fixed reading of debug_loc section. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1272801 - abi-dumper-0.99.11 is available https://bugzilla.redhat.com/show_bug.cgi?id=1272801 -------------------------------------------------------------------------------- ================================================================================ drupal7-jquery_update-2.7-1.fc21 (FEDORA-2015-bf4adb12aa) Upgrades the version of jQuery in Drupal core to a newer version of jQuery -------------------------------------------------------------------------------- Update Information: See [jQuery Update - Less Critical - Open Redirect - SA- CONTRIB-2015-158](https://www.drupal.org/node/2598426) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1273670 - drupal7-jquery_update-2.7 is available https://bugzilla.redhat.com/show_bug.cgi?id=1273670 -------------------------------------------------------------------------------- ================================================================================ gajim-0.16.4-3.fc21 (FEDORA-2015-699b50f601) Jabber client written in PyGTK -------------------------------------------------------------------------------- Update Information: Gajim 0.16.4 is an upstream bugfix release. To see the changelog and the list of fixed bugs, visit http://gajim.org/. -------------------------------------------------------------------------------- ================================================================================ layla-fonts-1.6-2.fc21 (FEDORA-2015-148484b583) A collection of traditional Arabic fonts -------------------------------------------------------------------------------- Update Information: Added Digital font -------------------------------------------------------------------------------- ================================================================================ m2crypto-0.22.5-2.fc21 (FEDORA-2015-446074b60f) Support for using OpenSSL in python scripts -------------------------------------------------------------------------------- Update Information: Fixes a buffer overflow in EVP.pbkdf2. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1271165 - m2crypto: pbkdf2 function crashes when given 74 byte result as argument https://bugzilla.redhat.com/show_bug.cgi?id=1271165 -------------------------------------------------------------------------------- ================================================================================ owncloud-8.0.9-1.fc21 (FEDORA-2015-a117082cd2) Private file sync and share server -------------------------------------------------------------------------------- Update Information: This update provides the latest upstream release of ownCloud in the current minor series - 8.0.9 for all releases but EPEL 6, 7.0.11 for EPEL 6. These releases come with unspecified "security improvements", so updating quickly is recommended. As usual, a minor update should apply smoothly, but we advise you back up user data, configuration, and database contents before applying the update. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1278121 - owncloud: Unspecified security issues fixed in owncloud 7.0.11, 8.0.9 and 8.1.4 https://bugzilla.redhat.com/show_bug.cgi?id=1278121 -------------------------------------------------------------------------------- ================================================================================ php-composer-installers-1.0.22-1.fc21 (FEDORA-2015-af2c5ec5ea) A multi-framework Composer library installer -------------------------------------------------------------------------------- Update Information: 1.0.21 to 1.0.22 diff: https://github.com/composer/installers/compare/v1.0.21...v1.0.22 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1276816 - php-composer-installers-v1.0.22 is available https://bugzilla.redhat.com/show_bug.cgi?id=1276816 -------------------------------------------------------------------------------- ================================================================================ php-guzzlehttp-psr7-1.2.1-1.fc21 (FEDORA-2015-1046883fcf) PSR-7 message implementation -------------------------------------------------------------------------------- Update Information: ### 1.2.1 - 2015-11-02 * Now supporting negative offsets when seeking to SEEK_END. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1277467 - php-guzzlehttp-psr7-1.2.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1277467 -------------------------------------------------------------------------------- ================================================================================ python-nbxmpp-0.5.3-1.fc21 (FEDORA-2015-699b50f601) Python library for non-blocking use of Jabber/XMPP -------------------------------------------------------------------------------- Update Information: Gajim 0.16.4 is an upstream bugfix release. To see the changelog and the list of fixed bugs, visit http://gajim.org/. -------------------------------------------------------------------------------- ================================================================================ rubygem-sequel-4.27.0-1.fc21 (FEDORA-2015-6783f0076b) The Database Toolkit for Ruby -------------------------------------------------------------------------------- Update Information: Update to sequel 4.27.0 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1238506 - rubygem-sequel-4.28.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1238506 -------------------------------------------------------------------------------- ================================================================================ snappy-player-1.0-7.20151010git166a98.fc21 (FEDORA-2015-3471dfb5b4) A Gnome media player -------------------------------------------------------------------------------- Update Information: snappy-player-1.0-7.20151010git166a98.fc23 - Update to commit #166a98 - Hardened build activated on <F23 snappy-player-1.0-7.20151010git166a98.fc21 - Update to commit #166a98 - Hardened build activated on <F23 snappy- player-1.0-7.20151010git166a98.fc22 - Update to commit #166a98 - Hardened build activated on <F23 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1242179 - [abrt] snappy-player: __pthread_mutex_lock(): snappy killed by SIGSEGV https://bugzilla.redhat.com/show_bug.cgi?id=1242179 -------------------------------------------------------------------------------- ================================================================================ sudo-1.8.15-1.fc21 (FEDORA-2015-0080239274) Allows restricted root access for specified users -------------------------------------------------------------------------------- Update Information: sudo-1.8.15-1.fc21 - update to 1.8.15 - fixes CVE-2015-5602 sudo-1.8.15-1.fc22 - update to 1.8.15 - fixes CVE-2015-5602 sudo-1.8.15-1.fc23 - update to 1.8.15 - fixes CVE-2015-5602 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1277426 - CVE-2015-5602 sudo: Unauthorized privilege escalation in sudoedit https://bugzilla.redhat.com/show_bug.cgi?id=1277426 -------------------------------------------------------------------------------- ================================================================================ wildmagic5-5.13-12.fc21 (FEDORA-2015-bd6d51590e) Wild Magic libraries -------------------------------------------------------------------------------- Update Information: wildmagic5-5.13-12.fc23 - Rebuild with -fPIC - Hardened builds on <F23 wildmagic5-5.13-12.fc21 - Rebuild with -fPIC - Hardened builds on <F23 wildmagic5-5.13-12.fc22 - Rebuild with -fPIC - Hardened builds on <F23 wildmagic5-5.13-12.el6 - Rebuild with -fPIC - Hardened builds on <F23 wildmagic5-5.13-12.el7 - Rebuild with -fPIC - Hardened builds on <F23 -------------------------------------------------------------------------------- -- test mailing list test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe: https://admin.fedoraproject.org/mailman/listinfo/test
