The following Fedora 22 Security updates need testing: Age URL 261 https://bodhi.fedoraproject.org/updates/FEDORA-2015-5878 echoping-6.1-0.beta.r434svn.1.fc22 210 https://bodhi.fedoraproject.org/updates/FEDORA-2015-9185 ceph-deploy-1.5.25-1.fc22 143 https://bodhi.fedoraproject.org/updates/FEDORA-2015-12781 python-kdcproxy-0.3.2-1.fc22 127 https://bodhi.fedoraproject.org/updates/FEDORA-2015-1aee5e6f0b conntrack-tools-1.4.2-9.fc22 97 https://bodhi.fedoraproject.org/updates/FEDORA-2015-16239 nagios-4.0.8-1.fc22 91 https://bodhi.fedoraproject.org/updates/FEDORA-2015-05490fc42d squid-3.4.13-3.fc22 85 https://bodhi.fedoraproject.org/updates/FEDORA-2015-2d37e7dacf openstack-swift-2.2.0-6.fc22 84 https://bodhi.fedoraproject.org/updates/FEDORA-2015-3e4043f088 python-pymongo-3.0.3-1.fc22 61 https://bodhi.fedoraproject.org/updates/FEDORA-2015-de44abca87 ntp-4.2.6p5-34.fc22 55 https://bodhi.fedoraproject.org/updates/FEDORA-2015-0552500cd7 python-pygments-2.0.2-3.fc22 55 https://bodhi.fedoraproject.org/updates/FEDORA-2015-9039c25f1d miniupnpc-1.9-6.fc22 37 https://bodhi.fedoraproject.org/updates/FEDORA-2015-7dfbe09bb4 libpng-1.6.16-4.fc22 37 https://bodhi.fedoraproject.org/updates/FEDORA-2015-6c07ab1fa6 libpng-1.6.16-5.fc22 30 https://bodhi.fedoraproject.org/updates/FEDORA-2015-8413bdd343 abrt-2.6.1-7.fc22 27 https://bodhi.fedoraproject.org/updates/FEDORA-2015-f683150aa0 thttpd-2.25b-36.fc22 23 https://bodhi.fedoraproject.org/updates/FEDORA-2015-6d64c257cf thunderbird-38.4.0-1.fc22 19 https://bodhi.fedoraproject.org/updates/FEDORA-2015-3a5cebb105 ImageMagick-6.9.2.7-1.fc22 19 https://bodhi.fedoraproject.org/updates/FEDORA-2015-39522bb8c9 php-PHPMailer-5.2.14-1.fc22 18 https://bodhi.fedoraproject.org/updates/FEDORA-2015-686f289aa5 qemu-2.3.1-8.fc22 18 https://bodhi.fedoraproject.org/updates/FEDORA-2015-233750b6ab libpng15-1.5.25-1.fc22 15 https://bodhi.fedoraproject.org/updates/FEDORA-2015-8dd01b09a9 arts-1.5.10-30.fc22 15 https://bodhi.fedoraproject.org/updates/FEDORA-2015-2f4b92ed2e kdelibs3-3.5.10-71.fc22 14 https://bodhi.fedoraproject.org/updates/FEDORA-2015-463143720f shellinabox-2.19-1.fc22 13 https://bodhi.fedoraproject.org/updates/FEDORA-2015-20df66892b gwenhywfar-4.13.1-5.fc22 10 https://bodhi.fedoraproject.org/updates/FEDORA-2015-998911cf3f cups-filters-1.4.0-1.fc22 9 https://bodhi.fedoraproject.org/updates/FEDORA-2015-6efa349a85 subversion-1.8.15-1.fc22 9 https://bodhi.fedoraproject.org/updates/FEDORA-2015-e278e12ebc dhcp-4.3.2-6.fc22 bind99-9.9.8-1.P2.fc22 8 https://bodhi.fedoraproject.org/updates/FEDORA-2015-0be7a2e1b8 libsndfile-1.0.25-18.fc22 4 https://bodhi.fedoraproject.org/updates/FEDORA-2015-d799a5e72b php-horde-Horde-Core-2.22.4-1.fc22 php-horde-Horde-Perms-2.1.6-1.fc22 php-horde-Horde-Service-Weather-2.3.1-1.fc22 4 https://bodhi.fedoraproject.org/updates/FEDORA-2015-323274d412 python-django-1.8.7-1.fc22 4 https://bodhi.fedoraproject.org/updates/FEDORA-2015-eb896290d3 pcre-8.38-1.fc22 4 https://bodhi.fedoraproject.org/updates/FEDORA-2015-0a543024bf libpng10-1.0.66-1.fc22 4 https://bodhi.fedoraproject.org/updates/FEDORA-2015-b9e4c97ff1 sos-3.2-2.fc22 4 https://bodhi.fedoraproject.org/updates/FEDORA-2015-c44bd3e0fa xen-4.5.2-6.fc22 4 https://bodhi.fedoraproject.org/updates/FEDORA-2015-ac8100927a libpng12-1.2.56-1.fc22 4 https://bodhi.fedoraproject.org/updates/FEDORA-2015-938c70c840 jenkins-1.609.3-5.fc22 0 https://bodhi.fedoraproject.org/updates/FEDORA-2015-7d95466eda bouncycastle-1.50-8.fc22 0 https://bodhi.fedoraproject.org/updates/FEDORA-2015-3a073171c3 claws-mail-3.13.1-4.fc22 0 https://bodhi.fedoraproject.org/updates/FEDORA-2015-d423b3276f mingw-giflib-5.0.5-4.fc22 The following Fedora 22 Critical Path updates have yet to be approved: Age URL 136 https://bodhi.fedoraproject.org/updates/FEDORA-2015-13210 yum-3.4.3-508.fc22 122 https://bodhi.fedoraproject.org/updates/FEDORA-2015-14218 xulrunner-40.0-1.fc22 55 https://bodhi.fedoraproject.org/updates/FEDORA-2015-2123de044f libgphoto2-2.5.8-1.fc22 51 https://bodhi.fedoraproject.org/updates/FEDORA-2015-48f718ed1b vim-7.4.909-1.fc22 48 https://bodhi.fedoraproject.org/updates/FEDORA-2015-069fea7e6b livecd-tools-22.3-1.fc22 37 https://bodhi.fedoraproject.org/updates/FEDORA-2015-6c07ab1fa6 libpng-1.6.16-5.fc22 37 https://bodhi.fedoraproject.org/updates/FEDORA-2015-7dfbe09bb4 libpng-1.6.16-4.fc22 23 https://bodhi.fedoraproject.org/updates/FEDORA-2015-6d64c257cf thunderbird-38.4.0-1.fc22 17 https://bodhi.fedoraproject.org/updates/FEDORA-2015-3c934e07c3 kdelibs-4.14.14-4.fc22 17 https://bodhi.fedoraproject.org/updates/FEDORA-2015-8083abc683 selinux-policy-3.13.1-128.22.fc22 15 https://bodhi.fedoraproject.org/updates/FEDORA-2015-473007accf util-linux-2.26.2-4.fc22 14 https://bodhi.fedoraproject.org/updates/FEDORA-2015-d68f8a1cba lua-5.3.2-2.fc22 9 https://bodhi.fedoraproject.org/updates/FEDORA-2015-e278e12ebc dhcp-4.3.2-6.fc22 bind99-9.9.8-1.P2.fc22 8 https://bodhi.fedoraproject.org/updates/FEDORA-2015-0be7a2e1b8 libsndfile-1.0.25-18.fc22 8 https://bodhi.fedoraproject.org/updates/FEDORA-2015-70703562be libass-0.13.1-1.fc22 4 https://bodhi.fedoraproject.org/updates/FEDORA-2015-4f47edb066 gnupg-1.4.20-1.fc22 4 https://bodhi.fedoraproject.org/updates/FEDORA-2015-c48d0abc71 sqlite-3.9.2-1.fc22 4 https://bodhi.fedoraproject.org/updates/FEDORA-2015-ffde97af06 audit-2.4.5-1.fc22 4 https://bodhi.fedoraproject.org/updates/FEDORA-2015-f1e8f462c2 konsole-4.14.3-10.fc22 4 https://bodhi.fedoraproject.org/updates/FEDORA-2015-68f4868a14 kate-15.08.3-3.fc22 4 https://bodhi.fedoraproject.org/updates/FEDORA-2015-2e21b2b270 linux-firmware-20151214-60.gitbbe4917c.fc22 4 https://bodhi.fedoraproject.org/updates/FEDORA-2015-eb896290d3 pcre-8.38-1.fc22 4 https://bodhi.fedoraproject.org/updates/FEDORA-2015-9cf3a4375d breeze-icon-theme-5.17.0-1.fc22 extra-cmake-modules-5.17.0-1.fc22 kapptemplate-15.12.0-1.fc22 kdeplasma-addons-5.5.0-3.fc22 kf5-5.17.0-1.fc22 kf5-attica-5.17.0-1.fc22 kf5-baloo-5.17.0-1.fc22 kf5-bluez-qt-5.17.0-1.fc22 kf5-frameworkintegration-5.17.0-1.fc22 kf5-kactivities-5.17.0-1.fc22 kf5-kapidox-5.17.0-1.fc22 kf5-karchive-5.17.0-1.fc22 kf5-kauth-5.17.0-1.fc22 kf5-kbookmarks-5.17.0-1.fc22 kf5-kcmutils-5.17.0-1.fc22 kf5-kcodecs-5.17.0-1.fc22 kf5-kcompletion-5.17.0-1.fc22 kf5-kconfig-5.17.0-1.fc22 kf5-kconfigwidgets-5.17.0-1.fc22 kf5-kcoreaddons-5.17.0-1.fc22 kf5-kcrash-5.17.0-1.fc22 kf5-kdbusaddons-5.17.0-1.fc22 kf5-kdeclarative-5.17.0-1.fc22 kf5-kded-5.17.0-1.fc22 kf5-kdelibs4support-5.17.0-1.fc22 kf5-kdesignerplugin-5.17.0-1.fc22 kf5-kdesu-5.17.0-1.fc22 kf5-kdewebkit-5.17.0-1.fc22 kf5-kdnssd-5.17.0-1.fc22 kf5-kdoctools-5.17.0-1.fc22 kf5-kemoticons-5.17.0-1.fc22 kf5-kfilemetadata-5.17.0-1.fc22 kf5-kglobal accel-5. 17.0-1.fc22 kf5-kguiaddons-5.17.0-1.fc22 kf5-khtml-5.17.0-1.fc22 kf5-ki18n-5.17.0-1.fc22 kf5-kiconthemes-5.17.0-1.fc22 kf5-kidletime-5.17.0-1.fc22 kf5-kimageformats-5.17.0-1.fc22 kf5-kinit-5.17.0-1.fc22 kf5-kio-5.17.0-2.fc22 kf5-kitemmodels-5.17.0-1.fc22 kf5-kitemviews-5.17.0-1.fc22 kf5-kjobwidgets-5.17.0-1.fc22 kf5-kjs-5.17.0-1.fc22 kf5-kjsembed-5.17.0-1.fc22 kf5-kmediaplayer-5.17.0-1.fc22 kf5-knewstuff-5.17.0-1.fc22 kf5-knotifications-5.17.0-1.fc22 kf5-knotifyconfig-5.17.0-1.fc22 kf5-kpackage-5.17.0-1.fc22 kf5-kparts-5.17.0-1.fc22 kf5-kpeople-5.17.0-1.fc22 kf5-kplotting-5.17.0-1.fc22 kf5-kpty-5.17.0-1.fc22 kf5-kross-5.17.0-1.fc22 kf5-krunner-5.17.0-1.fc22 kf5-kservice-5.17.0-2.fc22 kf5-ktexteditor-5.17.0-1.fc22 kf5-ktextwidgets-5.17.0-1.fc22 kf5-kunitconversion-5.17.0-1.fc22 kf5-kwallet-5.17.0-1.fc22 kf5-kwidgetsaddons-5.17.0-1.fc22 kf5-kwindowsystem-5.17.0-1.fc22 kf5-kxmlgui-5.17.0-1.fc22 kf5-kxmlrpcclient-5.17.0-1.fc22 kf5-modemmanager-qt-5.17.0-1.fc22 kf5-networkmanager -qt-5.17 .0-1.fc22 kf5-plasma-5.17.0-2.fc22 kf5-solid-5.17.0-1.fc22 kf5-sonnet-5.17.0-1.fc22 kf5-threadweaver-5.17.0-1.fc22 oxygen-icon-theme-5.17.0-1.fc22 0 https://bodhi.fedoraproject.org/updates/FEDORA-2015-95d1b16c34 libassuan-2.4.2-1.fc22 0 https://bodhi.fedoraproject.org/updates/FEDORA-2015-9f3e0bc76d libgpg-error-1.21-1.fc22 The following builds have been pushed to Fedora 22 updates-testing anki-2.0.33-1.fc22 blt-2.4-47.z.fc22 bouncycastle-1.50-8.fc22 claws-mail-3.13.1-4.fc22 java-1.8.0-openjdk-1.8.0.65-14.b17.fc22 kopete-15.08.3-1.fc22 libassuan-2.4.2-1.fc22 libgpg-error-1.21-1.fc22 libinput-1.1.4-1.fc22 mingw-giflib-5.0.5-4.fc22 perl-Module-CoreList-5.20151220-1.fc22 python-pbr-0.10.8-2.fc22 qxmpp-0.9.3-1.fc22 tlsdate-0.0.13-1.fc22 Details about builds: ================================================================================ anki-2.0.33-1.fc22 (FEDORA-2015-944414fbba) Flashcard program for using space repetition learning -------------------------------------------------------------------------------- Update Information: Update to new bugfix upstream release 2.0.33. Please see http://www.ankisrs.net/docs/changes.html for details. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1270574 - anki-2.0.33 is available https://bugzilla.redhat.com/show_bug.cgi?id=1270574 -------------------------------------------------------------------------------- ================================================================================ blt-2.4-47.z.fc22 (FEDORA-2015-6ec19b0161) Widget extension to the Tcl/Tk scripting language -------------------------------------------------------------------------------- Update Information: - Make -doc noarch and not to require the main package. - Add Require to -devel: tcl-devel. - "define" -> "global". -------------------------------------------------------------------------------- ================================================================================ bouncycastle-1.50-8.fc22 (FEDORA-2015-7d95466eda) Bouncy Castle Crypto Package for Java -------------------------------------------------------------------------------- Update Information: Security fix for CVE-2015-7940 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1276272 - CVE-2015-7940 bouncycastle: Invalid curve attack allowing to extract private keys https://bugzilla.redhat.com/show_bug.cgi?id=1276272 -------------------------------------------------------------------------------- ================================================================================ claws-mail-3.13.1-4.fc22 (FEDORA-2015-3a073171c3) Email client and news reader based on GTK+ -------------------------------------------------------------------------------- Update Information: Update from 3.12.0 to 3.13.1 for bug-fixes. Includes security fix for CVE-2015-8614. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1293579 - CVE-2015-8614 claws-mail: Stack overflow in conv_{jistoeuc,euctojis,sjistoeuc} https://bugzilla.redhat.com/show_bug.cgi?id=1293579 -------------------------------------------------------------------------------- ================================================================================ java-1.8.0-openjdk-1.8.0.65-14.b17.fc22 (FEDORA-2015-bde689eb98) OpenJDK Runtime Environment -------------------------------------------------------------------------------- Update Information: sync with f23 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1290936 - Zero JVM on arm fails to initialize after hardened-build https://bugzilla.redhat.com/show_bug.cgi?id=1290936 -------------------------------------------------------------------------------- ================================================================================ kopete-15.08.3-1.fc22 (FEDORA-2015-23d5ef1e24) Instant messenger -------------------------------------------------------------------------------- Update Information: Newer release, omit skype buttons plugin that can cause crashes. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1262715 - Kopete ships skypebuttons browser plugin that crashes Qt5WebKit - [abrt] qt5-qtwebkit: _GLOBAL__sub_I_qprinterinfo.cpp(): QtWebPluginProcess killed by SIGSEGV https://bugzilla.redhat.com/show_bug.cgi?id=1262715 -------------------------------------------------------------------------------- ================================================================================ libassuan-2.4.2-1.fc22 (FEDORA-2015-95d1b16c34) GnuPG IPC library -------------------------------------------------------------------------------- Update Information: Update from upstream adding new API needed for new GnuPG. -------------------------------------------------------------------------------- ================================================================================ libgpg-error-1.21-1.fc22 (FEDORA-2015-9f3e0bc76d) Library for error values used by GnuPG components -------------------------------------------------------------------------------- Update Information: Minor update from upstream -------------------------------------------------------------------------------- References: [ 1 ] Bug #1214910 - Multi-arch conflict for gpg-error.h in devel packages https://bugzilla.redhat.com/show_bug.cgi?id=1214910 -------------------------------------------------------------------------------- ================================================================================ libinput-1.1.4-1.fc22 (FEDORA-2015-b6079f1f7e) Input device library -------------------------------------------------------------------------------- Update Information: libinput 1.1.4, drain the device fd of events after opening the device ---- libinput 1.1.3 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1264453 - Thinkpad X220 touchpad movement is jumpy and extremely imprecise https://bugzilla.redhat.com/show_bug.cgi?id=1264453 -------------------------------------------------------------------------------- ================================================================================ mingw-giflib-5.0.5-4.fc22 (FEDORA-2015-d423b3276f) MinGW Windows giflib library -------------------------------------------------------------------------------- Update Information: Security fix for CVE-2015-7555. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1293372 - CVE-2015-7555 mingw-giflib: giflib: Heap-based buffer overflow in giffix utility [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1293372 -------------------------------------------------------------------------------- ================================================================================ perl-Module-CoreList-5.20151220-1.fc22 (FEDORA-2015-a7856de2d7) What modules are shipped with versions of perl -------------------------------------------------------------------------------- Update Information: Update to the latest version -------------------------------------------------------------------------------- References: [ 1 ] Bug #1293613 - perl-Module-CoreList-5.20151220 is available https://bugzilla.redhat.com/show_bug.cgi?id=1293613 -------------------------------------------------------------------------------- ================================================================================ python-pbr-0.10.8-2.fc22 (FEDORA-2015-6fd63a7773) Python Build Reasonableness -------------------------------------------------------------------------------- Update Information: add requirement to python-testrepository (rhbz#1293605) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1293605 - missing dependency on the python-testrepo https://bugzilla.redhat.com/show_bug.cgi?id=1293605 -------------------------------------------------------------------------------- ================================================================================ qxmpp-0.9.3-1.fc22 (FEDORA-2015-08d8162c4b) Qt XMPP Library -------------------------------------------------------------------------------- Update Information: v0.9.3 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1288271 - qxmpp-v0.9.3 is available https://bugzilla.redhat.com/show_bug.cgi?id=1288271 -------------------------------------------------------------------------------- ================================================================================ tlsdate-0.0.13-1.fc22 (FEDORA-2015-f9908796b8) Secure parasitic rdate replacement -------------------------------------------------------------------------------- Update Information: Initial release -------------------------------------------------------------------------------- References: [ 1 ] Bug #969723 - Review Request: tlsdate - Secure parasitic rdate replacement https://bugzilla.redhat.com/show_bug.cgi?id=969723 -------------------------------------------------------------------------------- -- test mailing list test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe: http://lists.fedoraproject.org/admin/lists/test@xxxxxxxxxxxxxxxxxxxxxxx
