The following Fedora 22 Security updates need testing: Age URL 214 https://bodhi.fedoraproject.org/updates/FEDORA-2015-5878 echoping-6.1-0.beta.r434svn.1.fc22 163 https://bodhi.fedoraproject.org/updates/FEDORA-2015-9185 ceph-deploy-1.5.25-1.fc22 96 https://bodhi.fedoraproject.org/updates/FEDORA-2015-12781 python-kdcproxy-0.3.2-1.fc22 81 https://bodhi.fedoraproject.org/updates/FEDORA-2015-13823 python-django-1.8.4-1.fc22 80 https://bodhi.fedoraproject.org/updates/FEDORA-2015-1aee5e6f0b conntrack-tools-1.4.2-9.fc22 75 https://bodhi.fedoraproject.org/updates/FEDORA-2015-14199 sblim-sfcb-1.4.9-2.fc22 50 https://bodhi.fedoraproject.org/updates/FEDORA-2015-16239 nagios-4.0.8-1.fc22 44 https://bodhi.fedoraproject.org/updates/FEDORA-2015-05490fc42d squid-3.4.13-3.fc22 44 https://bodhi.fedoraproject.org/updates/FEDORA-2015-be2c11d456 subversion-1.8.14-1.fc22 39 https://bodhi.fedoraproject.org/updates/FEDORA-2015-2d37e7dacf openstack-swift-2.2.0-6.fc22 37 https://bodhi.fedoraproject.org/updates/FEDORA-2015-3e4043f088 python-pymongo-3.0.3-1.fc22 37 https://bodhi.fedoraproject.org/updates/FEDORA-2015-8d4b507cb0 cyrus-imapd-2.4.18-1.fc22 31 https://bodhi.fedoraproject.org/updates/FEDORA-2015-6d2a957a87 postgresql-9.4.5-1.fc22 29 https://bodhi.fedoraproject.org/updates/FEDORA-2015-4bc7688b3e audiofile-0.3.6-9.fc22 24 https://bodhi.fedoraproject.org/updates/FEDORA-2015-9f996ea146 sddm-0.12.0-5.fc22 14 https://bodhi.fedoraproject.org/updates/FEDORA-2015-5062ef3dbe openstack-ironic-discoverd-1.1.1-1.fc22 14 https://bodhi.fedoraproject.org/updates/FEDORA-2015-211974138f lxc-1.1.4-2.fc22 14 https://bodhi.fedoraproject.org/updates/FEDORA-2015-de44abca87 ntp-4.2.6p5-34.fc22 8 https://bodhi.fedoraproject.org/updates/FEDORA-2015-0552500cd7 python-pygments-2.0.2-3.fc22 8 https://bodhi.fedoraproject.org/updates/FEDORA-2015-48003c2343 dovecot-2.2.19-1.fc22 8 https://bodhi.fedoraproject.org/updates/FEDORA-2015-95f5ff8d44 perl-HTML-Scrubber-0.15-1.fc22 8 https://bodhi.fedoraproject.org/updates/FEDORA-2015-9039c25f1d miniupnpc-1.9-6.fc22 7 https://bodhi.fedoraproject.org/updates/FEDORA-2015-9eee2fbc78 rpcbind-0.2.3-0.3.fc22 6 https://bodhi.fedoraproject.org/updates/FEDORA-2015-1521e91178 wpa_supplicant-2.4-6.fc22 6 https://bodhi.fedoraproject.org/updates/FEDORA-2015-30f080e459 perl-IPTables-Parse-1.5-2.fc22 6 https://bodhi.fedoraproject.org/updates/FEDORA-2015-0de8163795 python-pycurl-7.19.5.1-3.fc22 4 https://bodhi.fedoraproject.org/updates/FEDORA-2015-34cbb284c4 metis-5.1.0-7.fc22 4 https://bodhi.fedoraproject.org/updates/FEDORA-2015-0ac1f25444 drupal7-jquery_update-2.7-1.fc22 4 https://bodhi.fedoraproject.org/updates/FEDORA-2015-e32ef62cea wildmagic5-5.13-12.fc22 4 https://bodhi.fedoraproject.org/updates/FEDORA-2015-01162d79b5 MUMPS-5.0.1-4.fc22 4 https://bodhi.fedoraproject.org/updates/FEDORA-2015-fd78327d35 snappy-player-1.0-7.20151010git166a98.fc22 4 https://bodhi.fedoraproject.org/updates/FEDORA-2015-6a6076de9d libsedml-0.3.1-4.fc22 4 https://bodhi.fedoraproject.org/updates/FEDORA-2015-85760004ca owncloud-8.0.9-1.fc22 4 https://bodhi.fedoraproject.org/updates/FEDORA-2015-321ae39ee6 m2crypto-0.22.5-2.fc22 1 https://bodhi.fedoraproject.org/updates/FEDORA-2015-1b9c33d713 krb5-1.13.2-10.fc22 1 https://bodhi.fedoraproject.org/updates/FEDORA-2015-69133edcb2 telegram-cli-1.3.1-7.20150730git2052f4.fc22 1 https://bodhi.fedoraproject.org/updates/FEDORA-2015-2a3726da40 openms-2.0.0-21.20150529git88dc25.fc22 1 https://bodhi.fedoraproject.org/updates/FEDORA-2015-56be43eae6 libsndfile-1.0.25-17.fc22 1 https://bodhi.fedoraproject.org/updates/FEDORA-2015-4329bbe285 tubo-5.0.15-3.fc22 1 https://bodhi.fedoraproject.org/updates/FEDORA-2015-db5973c72c librfm-5.3.16-8.fc22 1 https://bodhi.fedoraproject.org/updates/FEDORA-2015-1d49176aa1 pdns-3.4.7-1.fc22 0 https://bodhi.fedoraproject.org/updates/FEDORA-2015-e2c135b070 putty-0.65-2.fc22 The following Fedora 22 Critical Path updates have yet to be approved: Age URL 89 https://bodhi.fedoraproject.org/updates/FEDORA-2015-13210 yum-3.4.3-508.fc22 75 https://bodhi.fedoraproject.org/updates/FEDORA-2015-14218 xulrunner-40.0-1.fc22 14 https://bodhi.fedoraproject.org/updates/FEDORA-2015-2c10b28c51 perl-BSD-Resource-1.290.800-1.fc22 12 https://bodhi.fedoraproject.org/updates/FEDORA-2015-7517bd0bc5 libtiff-4.0.3-21.fc22 8 https://bodhi.fedoraproject.org/updates/FEDORA-2015-ceb53e8625 phonon-4.8.3-7.fc22 8 https://bodhi.fedoraproject.org/updates/FEDORA-2015-8041d50c4b linux-firmware-20151030-58.git66d3d8d7.fc22 8 https://bodhi.fedoraproject.org/updates/FEDORA-2015-2123de044f libgphoto2-2.5.8-1.fc22 6 https://bodhi.fedoraproject.org/updates/FEDORA-2015-0de8163795 python-pycurl-7.19.5.1-3.fc22 6 https://bodhi.fedoraproject.org/updates/FEDORA-2015-1521e91178 wpa_supplicant-2.4-6.fc22 4 https://bodhi.fedoraproject.org/updates/FEDORA-2015-38fc6652a8 NetworkManager-1.0.6-8.fc22 4 https://bodhi.fedoraproject.org/updates/FEDORA-2015-2bac384722 kde-runtime-15.08.2-1.fc22 kdelibs-4.14.13-1.fc22 4 https://bodhi.fedoraproject.org/updates/FEDORA-2015-6982da5fe4 prison-1.1.1-3.fc22 4 https://bodhi.fedoraproject.org/updates/FEDORA-2015-48f718ed1b vim-7.4.909-1.fc22 4 https://bodhi.fedoraproject.org/updates/FEDORA-2015-8da7317e5a lldpad-1.0.1-2.git986eb2e.fc22 1 https://bodhi.fedoraproject.org/updates/FEDORA-2015-56be43eae6 libsndfile-1.0.25-17.fc22 1 https://bodhi.fedoraproject.org/updates/FEDORA-2015-5cb48e152b bluez-5.35-1.fc22 1 https://bodhi.fedoraproject.org/updates/FEDORA-2015-069fea7e6b livecd-tools-22.3-1.fc22 1 https://bodhi.fedoraproject.org/updates/FEDORA-2015-1b9c33d713 krb5-1.13.2-10.fc22 1 https://bodhi.fedoraproject.org/updates/FEDORA-2015-a84e080ad0 kdepim-4.14.10-7.fc22 kdepim-runtime-4.14.10-5.fc22 0 https://bodhi.fedoraproject.org/updates/FEDORA-2015-f396e330d9 selinux-policy-3.13.1-128.20.fc22 The following builds have been pushed to Fedora 22 updates-testing dl-0.17-2.fc22 gfal2-python-1.8.4-1.fc22 gfal2-util-1.3.1-1.fc22 godep-27-1.fc22 golang-github-smartystreets-assertions-0-0.5.git4727d76.fc22 golang-github-smartystreets-goconvey-0-0.3.git43652d6.fc22 golang-googlecode-tools-0-5.0.git997b354.fc22 php-latte-2.3.7-1.fc22 php-nette-safe-stream-2.3.1-2.fc22 php-nette-tokenizer-2.2.1-1.fc22 php-nette-utils-2.3.6-1.fc22 putty-0.65-2.fc22 python-journal-brief-1.1.3-1.fc22 python-qutepart-2.2.2-3.fc22 selinux-policy-3.13.1-128.20.fc22 srm-ifce-1.23.3-1.fc22 tor-0.2.6.10-5.fc22 tor-0.2.6.10-6.fc22 ugene-1.19.0-1.fc22 xen-4.5.2-1.fc22 yubico-piv-tool-1.1.0-1.fc22 Details about builds: ================================================================================ dl-0.17-2.fc22 (FEDORA-2015-651e9b2ee3) Download Ticket Service -------------------------------------------------------------------------------- Update Information: Use conditional macros for proper policycoreutils-python dependency -------------------------------------------------------------------------------- ================================================================================ gfal2-python-1.8.4-1.fc22 (FEDORA-2015-586675fd86) Python bindings for gfal 2 -------------------------------------------------------------------------------- Update Information: Upstream release 1.8.4 -------------------------------------------------------------------------------- ================================================================================ gfal2-util-1.3.1-1.fc22 (FEDORA-2015-7a580f0dcc) GFAL2 utility tools -------------------------------------------------------------------------------- Update Information: Upstream release 1.3.1 -------------------------------------------------------------------------------- ================================================================================ godep-27-1.fc22 (FEDORA-2015-61aa678b2b) Dependency tool for go -------------------------------------------------------------------------------- Update Information: New package -------------------------------------------------------------------------------- References: [ 1 ] Bug #1278803 - Review Request: godep - Dependency tool for go https://bugzilla.redhat.com/show_bug.cgi?id=1278803 -------------------------------------------------------------------------------- ================================================================================ golang-github-smartystreets-assertions-0-0.5.git4727d76.fc22 (FEDORA-2015-7f60047bca) Fluent assertion-style functions -------------------------------------------------------------------------------- Update Information: Update for mongo-tools ---- internal packages can not be provided since go-1.5 Update spec file to spec-2.0 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1250509 - Tracker for golang-github-smartystreets-assertions https://bugzilla.redhat.com/show_bug.cgi?id=1250509 -------------------------------------------------------------------------------- ================================================================================ golang-github-smartystreets-goconvey-0-0.3.git43652d6.fc22 (FEDORA-2015-4e976f7b79) Behavioral testing in the browser, integrates with go test -------------------------------------------------------------------------------- Update Information: Update for mongo-tools ---- Update spec file to spec-2.0 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1250511 - Tracker for golang-github-smartystreets-goconvey https://bugzilla.redhat.com/show_bug.cgi?id=1250511 -------------------------------------------------------------------------------- ================================================================================ golang-googlecode-tools-0-5.0.git997b354.fc22 (FEDORA-2015-9e3ab2d375) Supplementary tools and packages for Go -------------------------------------------------------------------------------- Update Information: Update to newer version -------------------------------------------------------------------------------- References: [ 1 ] Bug #1279381 - Tracker for golang-googlecode-tools https://bugzilla.redhat.com/show_bug.cgi?id=1279381 -------------------------------------------------------------------------------- ================================================================================ php-latte-2.3.7-1.fc22 (FEDORA-2015-d008b19b4a) Latte: the amazing template engine for PHP -------------------------------------------------------------------------------- Update Information: Latte is a template engine for PHP which eases your work and ensures the output is protected against vulnerabilities, such as XSS. Latte is fast: it compiles templates to plain optimized PHP code. Latte is secure: it is the first PHP engine introducing content-aware escaping. Latte speaks your language: it has intuitive syntax and helps you to build better websites easily. To use this library, you just have to add, in your project: require_once '/usr/share/php/Latte/autoload.php'; -------------------------------------------------------------------------------- References: [ 1 ] Bug #1277407 - Review Request: php-latte - Latte: the amazing template engine for PHP https://bugzilla.redhat.com/show_bug.cgi?id=1277407 -------------------------------------------------------------------------------- ================================================================================ php-nette-safe-stream-2.3.1-2.fc22 (FEDORA-2015-674a68bec7) Nette SafeStream: Atomic Operations -------------------------------------------------------------------------------- Update Information: The Nette\Utils\SafeStram protocol for file manipulation guarantees atomicity and isolation of every file operation. To use this library, you just have to add, in your project: require_once '/usr/share/php/Nette/SafeStream/autoload.php'; -------------------------------------------------------------------------------- References: [ 1 ] Bug #1277441 - Review Request: php-nette-safe-stream - Nette SafeStream: Atomic Operations https://bugzilla.redhat.com/show_bug.cgi?id=1277441 -------------------------------------------------------------------------------- ================================================================================ php-nette-tokenizer-2.2.1-1.fc22 (FEDORA-2015-6fb66ce85b) Nette Tokenizer -------------------------------------------------------------------------------- Update Information: Tokenizer is a tool that uses regular expressions to split given string into tokens. What the hell is that good for, you might ask? Well, you can create your own languages! Tokenizer is used in Latte for example. To use this library, you just have to add, in your project: require_once '/usr/share/php/Nette/Tokenizer/autoload.php'; -------------------------------------------------------------------------------- References: [ 1 ] Bug #1277379 - Review Request: php-nette-tokenizer - Nette Tokenizer https://bugzilla.redhat.com/show_bug.cgi?id=1277379 -------------------------------------------------------------------------------- ================================================================================ php-nette-utils-2.3.6-1.fc22 (FEDORA-2015-d1520530d8) Nette Utility Classes -------------------------------------------------------------------------------- Update Information: Nette Utility Classes. To use this library, you just have to add, in your project: require_once '/usr/share/php/Nette/Utils/autoload.php'; -------------------------------------------------------------------------------- References: [ 1 ] Bug #1277377 - Review Request: php-nette-utils - Nette Utility Classes https://bugzilla.redhat.com/show_bug.cgi?id=1277377 -------------------------------------------------------------------------------- ================================================================================ putty-0.65-2.fc22 (FEDORA-2015-e2c135b070) SSH, Telnet and Rlogin client -------------------------------------------------------------------------------- Update Information: This is an update fixing integer overflow and buffer underrun in erase characters (ECH) handling. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1279425 - CVE-2015-5309 putty: Integer overflow and buffer underrun in terminal emulator's ECH handling https://bugzilla.redhat.com/show_bug.cgi?id=1279425 -------------------------------------------------------------------------------- ================================================================================ python-journal-brief-1.1.3-1.fc22 (FEDORA-2015-14346c69b0) Find new systemd journal entries since last run -------------------------------------------------------------------------------- Update Information: Latest upstream release. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1277715 - Missing dependency to python3-PyYAML https://bugzilla.redhat.com/show_bug.cgi?id=1277715 [ 2 ] Bug #1279097 - [abrt] journal-brief: uuid.py:134:__init__:AttributeError: 'UUID' object has no attribute 'replace' https://bugzilla.redhat.com/show_bug.cgi?id=1279097 -------------------------------------------------------------------------------- ================================================================================ python-qutepart-2.2.2-3.fc22 (FEDORA-2015-85b822e636) Code editor widget -------------------------------------------------------------------------------- Update Information: initial package (rhbz#1273601) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1273601 - Review Request: python-qutepart - Code editor widget https://bugzilla.redhat.com/show_bug.cgi?id=1273601 -------------------------------------------------------------------------------- ================================================================================ selinux-policy-3.13.1-128.20.fc22 (FEDORA-2015-f396e330d9) SELinux policy configuration -------------------------------------------------------------------------------- Update Information: selinux-policy-3.13.1-128.17.fc22 - We need to require sandbox_web_type attribute in sandbox_x_domain_template(). - Dontaudit abrt_t to rw lvm_lock_t dir. - Allow abrt_t domain to write to kernel msg device. - Add interface lvm_dontaudit_rw_lock_dir() - ipsec: The NM helper needs to read the SAs - ipsec: Allow ipsec management to create ptys ---- More info: http://koji.fedoraproject.org/koji/buildinfo?buildID=691855 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1245477 - SELinux is preventing abrt-hook-ccpp from using the 'sigchld' accesses on a process. https://bugzilla.redhat.com/show_bug.cgi?id=1245477 [ 2 ] Bug #1233876 - SELinux is preventing systemd-hostnam from 'open' accesses on the file /proc/xen/capabilities. https://bugzilla.redhat.com/show_bug.cgi?id=1233876 [ 3 ] Bug #1233877 - SELinux is preventing systemd-hostnam from 'read' accesses on the file capabilities. https://bugzilla.redhat.com/show_bug.cgi?id=1233877 [ 4 ] Bug #1261856 - /usr/share/nginx/html should be httpd_sys_content_t https://bugzilla.redhat.com/show_bug.cgi?id=1261856 [ 5 ] Bug #1269193 - SELinux is preventing winbindd from using the 'signull' accesses on a process. https://bugzilla.redhat.com/show_bug.cgi?id=1269193 [ 6 ] Bug #1269916 - SELinux is preventing systemd-network from getattr access on the file /proc/xen/capabilities https://bugzilla.redhat.com/show_bug.cgi?id=1269916 -------------------------------------------------------------------------------- ================================================================================ srm-ifce-1.23.3-1.fc22 (FEDORA-2015-ca85587df1) SRM client side library -------------------------------------------------------------------------------- Update Information: Upstream release 1.23.3 -------------------------------------------------------------------------------- ================================================================================ tor-0.2.6.10-5.fc22 (FEDORA-2015-488e7e1ea3) Anonymizing overlay network for TCP (The onion router) -------------------------------------------------------------------------------- Update Information: allow group read of DataDirectory and change owner to root (#1279222), ---- better systemd integration and enable libseccomp support -------------------------------------------------------------------------------- References: [ 1 ] Bug #1279222 - Tor can't access /var/lib/tor/hidden_service/ even with setenforce 0 https://bugzilla.redhat.com/show_bug.cgi?id=1279222 [ 2 ] Bug #1243025 - systemd support not enabled https://bugzilla.redhat.com/show_bug.cgi?id=1243025 -------------------------------------------------------------------------------- ================================================================================ tor-0.2.6.10-6.fc22 (FEDORA-2015-0de4ecf833) Anonymizing overlay network for TCP (The onion router) -------------------------------------------------------------------------------- Update Information: amend patch so that the default of 0700 doesn't change, but allow 0750 -------------------------------------------------------------------------------- ================================================================================ ugene-1.19.0-1.fc22 (FEDORA-2015-05720c1aac) Integrated bioinformatics toolkit -------------------------------------------------------------------------------- Update Information: Major changes in this release include: 1. Usability: Pasting of data into UGENE was further improved. In particular, you can now paste file using its URL (see video below). 2. Sequence View: Visibility of the Sequence View subviews (Overview, Zoom View, Details View) can be configured using new buttons on the Sequence View toolbar. 3. Multiple Alignments: A region of an alignment can now be copied in the RichText (HTML) format. 4. NGS: The SPAdes de novo assembler was updated to 3.6.0 version. See also video about 1.18 and 1.19 versions of UGENE: https://youtu.be/Cx8bVy-Z5m0. The full list of changes in UGENE 1.19 can be found in our tracker: http://ugene.unipro.ru/tracker/secure/IssueNavigator.jspaâ?¦;. ---- Important changes in this major release include: Usability: Ctrl+V in the Project View was supported. In silico PCR: a possibility to include annotations to the extracted PCR product was added. Sequence View: exporting of a sequence image was improved. It is now possible to export the Details View and the Zoom View separately in different formats, including SVG. Optimizations of big data processing in UGENE. ---- Important changes in this major release include: Sequence View: recalculation of regions in qualifiers after sequence editing Alignment Editor: Aligning of sequences to an existent alignment Exporting of multiple alignments to SVG format Copying of an alignment region in a chosen format (Ctrl+Shift+C) New workflow: In silico PCR New workflow: Searching for annotations intersections Usability: options panel resizing -------------------------------------------------------------------------------- ================================================================================ xen-4.5.2-1.fc22 (FEDORA-2015-9fc6394989) Xen is a virtual machine monitor -------------------------------------------------------------------------------- Update Information: update to 4.5.2 -------------------------------------------------------------------------------- ================================================================================ yubico-piv-tool-1.1.0-1.fc22 (FEDORA-2015-4b2c613cea) Tool for interacting with the PIV applet on a YubiKey NEO -------------------------------------------------------------------------------- Update Information: This update brings latest upstream release with new features. --------------------------------------------------------------------------------
-- test mailing list test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe: https://admin.fedoraproject.org/mailman/listinfo/test
