The following Fedora 22 Security updates need testing: Age URL 300 https://bodhi.fedoraproject.org/updates/FEDORA-2015-5878 echoping-6.1-0.beta.r434svn.1.fc22 249 https://bodhi.fedoraproject.org/updates/FEDORA-2015-9185 ceph-deploy-1.5.25-1.fc22 182 https://bodhi.fedoraproject.org/updates/FEDORA-2015-12781 python-kdcproxy-0.3.2-1.fc22 136 https://bodhi.fedoraproject.org/updates/FEDORA-2015-16239 nagios-4.0.8-1.fc22 130 https://bodhi.fedoraproject.org/updates/FEDORA-2015-05490fc42d squid-3.4.13-3.fc22 124 https://bodhi.fedoraproject.org/updates/FEDORA-2015-2d37e7dacf openstack-swift-2.2.0-6.fc22 94 https://bodhi.fedoraproject.org/updates/FEDORA-2015-0552500cd7 python-pygments-2.0.2-3.fc22 94 https://bodhi.fedoraproject.org/updates/FEDORA-2015-9039c25f1d miniupnpc-1.9-6.fc22 76 https://bodhi.fedoraproject.org/updates/FEDORA-2015-7dfbe09bb4 libpng-1.6.16-4.fc22 76 https://bodhi.fedoraproject.org/updates/FEDORA-2015-6c07ab1fa6 libpng-1.6.16-5.fc22 58 https://bodhi.fedoraproject.org/updates/FEDORA-2015-3a5cebb105 ImageMagick-6.9.2.7-1.fc22 58 https://bodhi.fedoraproject.org/updates/FEDORA-2015-39522bb8c9 php-PHPMailer-5.2.14-1.fc22 48 https://bodhi.fedoraproject.org/updates/FEDORA-2015-6efa349a85 subversion-1.8.15-1.fc22 43 https://bodhi.fedoraproject.org/updates/FEDORA-2015-b9e4c97ff1 sos-3.2-2.fc22 17 https://bodhi.fedoraproject.org/updates/FEDORA-2015-f683150aa0 thttpd-2.25b-37.fc22 11 https://bodhi.fedoraproject.org/updates/FEDORA-2016-1323b9078a bind99-9.9.8-2.P3.fc22 11 https://bodhi.fedoraproject.org/updates/FEDORA-2016-34bc10a2c8 ntp-4.2.6p5-36.fc22 8 https://bodhi.fedoraproject.org/updates/FEDORA-2016-3c0b37e056 imlib2-1.4.7-1.fc22 8 https://bodhi.fedoraproject.org/updates/FEDORA-2016-54dcc5d1bf 389-ds-base-1.3.4.7-1.fc22 5 https://bodhi.fedoraproject.org/updates/FEDORA-2016-bf03932bb3 nginx-1.8.1-1.fc22 5 https://bodhi.fedoraproject.org/updates/FEDORA-2016-7b9a2fe987 ecryptfs-utils-109-1.fc22 5 https://bodhi.fedoraproject.org/updates/FEDORA-2016-4c57c232c0 xulrunner-44.0-1.fc22 5 https://bodhi.fedoraproject.org/updates/FEDORA-2016-35492207cb krb5-1.13.2-13.fc22 4 https://bodhi.fedoraproject.org/updates/FEDORA-2016-b211281b8e claws-mail-3.13.2-1.fc22 1 https://bodhi.fedoraproject.org/updates/FEDORA-2016-143a48536c webkitgtk4-2.10.7-1.fc22 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-3441e9da2f nodejs-is-my-json-valid-2.12.4-1.fc22 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-52b294538d python-pymongo-2.5.2-8.fc22 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-9d0a25ea07 wordpress-4.4.2-1.fc22 The following Fedora 22 Critical Path updates have yet to be approved: Age URL 175 https://bodhi.fedoraproject.org/updates/FEDORA-2015-13210 yum-3.4.3-508.fc22 94 https://bodhi.fedoraproject.org/updates/FEDORA-2015-2123de044f libgphoto2-2.5.8-1.fc22 90 https://bodhi.fedoraproject.org/updates/FEDORA-2015-48f718ed1b vim-7.4.909-1.fc22 87 https://bodhi.fedoraproject.org/updates/FEDORA-2015-069fea7e6b livecd-tools-22.3-1.fc22 76 https://bodhi.fedoraproject.org/updates/FEDORA-2015-6c07ab1fa6 libpng-1.6.16-5.fc22 76 https://bodhi.fedoraproject.org/updates/FEDORA-2015-7dfbe09bb4 libpng-1.6.16-4.fc22 30 https://bodhi.fedoraproject.org/updates/FEDORA-2016-46b611abb8 httpd-2.4.18-1.fc22 14 https://bodhi.fedoraproject.org/updates/FEDORA-2016-825869e1a4 selinux-policy-3.13.1-128.25.fc22 10 https://bodhi.fedoraproject.org/updates/FEDORA-2016-196966efc2 spatialite-tools-4.2.0-19.fc22 sqlite-3.10.2-1.fc22 8 https://bodhi.fedoraproject.org/updates/FEDORA-2016-3c0b37e056 imlib2-1.4.7-1.fc22 8 https://bodhi.fedoraproject.org/updates/FEDORA-2016-35e3877a89 elfutils-0.165-2.fc22 8 https://bodhi.fedoraproject.org/updates/FEDORA-2016-3b8e5e8781 dnsmasq-2.75-3.fc22 6 https://bodhi.fedoraproject.org/updates/FEDORA-2016-6427e041df libgdata-0.17.4-2.fc22 5 https://bodhi.fedoraproject.org/updates/FEDORA-2016-35492207cb krb5-1.13.2-13.fc22 5 https://bodhi.fedoraproject.org/updates/FEDORA-2016-4c57c232c0 xulrunner-44.0-1.fc22 1 https://bodhi.fedoraproject.org/updates/FEDORA-2016-21424484be pixman-0.34.0-1.fc22 1 https://bodhi.fedoraproject.org/updates/FEDORA-2016-16a5625f33 kernel-4.3.5-200.fc22 1 https://bodhi.fedoraproject.org/updates/FEDORA-2016-9e8671afca gammaray-2.4.0-1.fc22 qt-4.8.7-4.fc22 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-d5fbc3b7eb gnutls-3.3.21-1.fc22 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-d73684df54 firefox-44.0-5.fc22 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-d3fce30d64 mobile-broadband-provider-info-1.20151214-1.fc22 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-de4d7b3b1f abrt-2.6.1-8.fc22 libreport-2.6.4-1.fc22 The following builds have been pushed to Fedora 22 updates-testing abrt-2.6.1-8.fc22 clufter-0.56.0-1.fc22 copr-cli-1.47-1.fc22 csmock-1.9.0-1.fc22 cswrap-1.3.1-1.fc22 distribution-gpg-keys-1.3-1.fc22 dnf-1.1.6-2.fc22 dnf-plugins-core-0.1.16-1.fc22 firefox-44.0-5.fc22 frescobaldi-2.18.2-1.fc22 gnutls-3.3.21-1.fc22 hamster-time-tracker-2.0-0.2.rc1.fc22 libreport-2.6.4-1.fc22 lxqt-common-0.10.0-8.fc22 megatools-1.9.97-1.fc22 mobile-broadband-provider-info-1.20151214-1.fc22 msgpuck-1.0.2-1.fc22 nodejs-is-my-json-valid-2.12.4-1.fc22 openstack-ceilometer-2014.2.4-1.fc22 openstack-cinder-2014.2.4-1.fc22 openstack-glance-2014.2.4-1.fc22 openstack-heat-2014.2.4-1.fc22 openstack-neutron-2014.2.4-2.fc22 openstack-nova-2014.2.4-1.fc22 openstack-sahara-2014.2.4-1.fc22 pagure-1.0.1-1.fc22 pcp-3.11.0-1.fc22 perl-Lingua-Stem-Ru-0.02-1.fc22 python-audioread-2.1.2-2.fc22 python-boto-2.39.0-1.fc22 python-copr-1.65-1.fc22 python-hglib-2.0-1.fc22 python-mwclient-0.8.0-2.fc22 python-pymongo-2.5.2-8.fc22 rabbitmq-server-3.5.7-4.fc22 rabbitvcs-0.16.1-0.3.20160108gite8214e6.fc22 ranger-1.6.1-7.fc22 rocksndiamonds-3.3.1.2-1.fc22 rubygem-domain_name-0.5.20160128-1.fc22 skf-2.00.3-1.fc22 udiskie-1.4.7-1.fc22 wordpress-4.4.2-1.fc22 xlogin-0-0.1.20160114git97667d7.fc22 Details about builds: ================================================================================ abrt-2.6.1-8.fc22 (FEDORA-2016-de4d7b3b1f) Automatic bug detection and reporting tool -------------------------------------------------------------------------------- Update Information: ABRT ===== - do not blacklist firefox libreport ======= - doc: add option -o and -O into reporter-ureport man page - rhtsupport: use problme report API to create description - bugzilla: make the event configurable - report-gtk: offer users to create private ticket - bugzilla|centos: declare 'restricted access' support - dd: allow 1 and 2 letter long element names - formatdup: more universal comment - Refactoring conditional directives that break parts of statements. - bugzilla: actualize man pages - bugzilla: don't report private problem as comment - uploader: move username and password to the advanced options - uploader: allow empty username and password - uploader: add possibility to set SSH keyfiles - desktop-utils: deal with Destkop files without command line - ureport: enable attaching of arbitrary values - uploader: save remote name in reported_to - curl: return URLs without userinfo - Resolves #1275824 ---- - CVE-2015-5287: ignore crashes of abrt tools if DebugLevel = 0 - CVE-2015-5273: create own random temporary directory - make crashes of processes with locked memory not-reportable - detect xorg backtraces from journald - fix the coredumpctl integration tool -------------------------------------------------------------------------------- References: [ 1 ] Bug #1275824 - [abrt] gnome-abrt: remove_quotes(): python3.4 killed by SIGSEGV https://bugzilla.redhat.com/show_bug.cgi?id=1275824 [ 2 ] Bug #1284557 - CVE-2015-5273 abrt: Insecure temporary directory usage in abrt-action-install-debuginfo-to-abrt-cache [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1284557 [ 3 ] Bug #1262252 - CVE-2015-5273 abrt: Insecure temporary directory usage in abrt-action-install-debuginfo-to-abrt-cache https://bugzilla.redhat.com/show_bug.cgi?id=1262252 -------------------------------------------------------------------------------- ================================================================================ clufter-0.56.0-1.fc22 (FEDORA-2016-5e1249e461) Tool/library for transforming/analyzing cluster configuration formats -------------------------------------------------------------------------------- Update Information: - move `entry_points.txt` to `clufter-cli` sub-package - general spec file refresh (`pagure.io` as a default project base, etc.) - bump upstream package, see https://github.com/jnpkrn/clufter/releases/tag/v0.56.0 -------------------------------------------------------------------------------- ================================================================================ copr-cli-1.47-1.fc22 (FEDORA-2016-1fc476e069) Command line interface for COPR -------------------------------------------------------------------------------- Update Information: Bug fixes. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1261125 - Use requests-toolbelt to upload srpms https://bugzilla.redhat.com/show_bug.cgi?id=1261125 [ 2 ] Bug #1292033 - copr-cli ignores multiple package arguments if the first is a local file https://bugzilla.redhat.com/show_bug.cgi?id=1292033 [ 3 ] Bug #1298672 - copr-cli create raises TypeError https://bugzilla.redhat.com/show_bug.cgi?id=1298672 [ 4 ] Bug #1298674 - copr-cli build hangs during upload https://bugzilla.redhat.com/show_bug.cgi?id=1298674 [ 5 ] Bug #1302615 - UnboundLocalError: local variable 'bar' referenced before assignment when building from URLs https://bugzilla.redhat.com/show_bug.cgi?id=1302615 [ 6 ] Bug #1276105 - copr-cli 1.45 errors on el6 https://bugzilla.redhat.com/show_bug.cgi?id=1276105 [ 7 ] Bug #1299243 - RFE: New version of copr-cli (requires rebase of python-copr too) https://bugzilla.redhat.com/show_bug.cgi?id=1299243 -------------------------------------------------------------------------------- ================================================================================ csmock-1.9.0-1.fc22 (FEDORA-2016-119c2ee766) A mock wrapper for Static Analysis tools -------------------------------------------------------------------------------- Update Information: update to latest upstream -------------------------------------------------------------------------------- ================================================================================ cswrap-1.3.1-1.fc22 (FEDORA-2016-119c2ee766) Generic compiler wrapper -------------------------------------------------------------------------------- Update Information: update to latest upstream -------------------------------------------------------------------------------- ================================================================================ distribution-gpg-keys-1.3-1.fc22 (FEDORA-2016-94be7b241c) Keys of various Linux distributions -------------------------------------------------------------------------------- Update Information: Added obsolete keys and Copr keys. -------------------------------------------------------------------------------- ================================================================================ dnf-1.1.6-2.fc22 (FEDORA-2016-573eba7b37) Package manager forked from Yum, using libsolv as a dependency resolver -------------------------------------------------------------------------------- Update Information: Regular DNF bugfix release. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1303149 - dnf history info failing https://bugzilla.redhat.com/show_bug.cgi?id=1303149 [ 2 ] Bug #1302934 - Malformed translations in 1.1.6 https://bugzilla.redhat.com/show_bug.cgi?id=1302934 [ 3 ] Bug #1292475 - RFE: dnf repoquery options "--queryformat" and "--latest-limit" should be usable together https://bugzilla.redhat.com/show_bug.cgi?id=1292475 [ 4 ] Bug #1297511 - noroot configure causes a traceback when plugins are loaded without a cli https://bugzilla.redhat.com/show_bug.cgi?id=1297511 [ 5 ] Bug #1239274 - dnf history does not show command line https://bugzilla.redhat.com/show_bug.cgi?id=1239274 [ 6 ] Bug #1275878 - [abrt] dnf: rpmsack.py:288:_delete:AttributeError: Cannot delete attribute installed_by on <dnf.yum.rpmsack.RPMDBAdditionalDataPackage object at 0x7f10c32f15d0> https://bugzilla.redhat.com/show_bug.cgi?id=1275878 [ 7 ] Bug #1226322 - dnf clean all does not clean package metadata for local repos https://bugzilla.redhat.com/show_bug.cgi?id=1226322 [ 8 ] Bug #1294355 - German translation incomplete on delta RPMS https://bugzilla.redhat.com/show_bug.cgi?id=1294355 [ 9 ] Bug #1289166 - dnf makecache triggers a python exception https://bugzilla.redhat.com/show_bug.cgi?id=1289166 [ 10 ] Bug #1294241 - file /var/lib/dnf/* is not owned by any package https://bugzilla.redhat.com/show_bug.cgi?id=1294241 [ 11 ] Bug #1277360 - doc: update specifying the packages in commands https://bugzilla.redhat.com/show_bug.cgi?id=1277360 [ 12 ] Bug #1287221 - dnf stutters when writing in /var/log/dnf.rpm.log https://bugzilla.redhat.com/show_bug.cgi?id=1287221 [ 13 ] Bug #1256587 - The proxy option in dnf.conf doesn't support socks5 https://bugzilla.redhat.com/show_bug.cgi?id=1256587 [ 14 ] Bug #1291895 - DNF history failure if no history https://bugzilla.redhat.com/show_bug.cgi?id=1291895 -------------------------------------------------------------------------------- ================================================================================ dnf-plugins-core-0.1.16-1.fc22 (FEDORA-2016-573eba7b37) Core Plugins for DNF -------------------------------------------------------------------------------- Update Information: Regular DNF bugfix release. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1303149 - dnf history info failing https://bugzilla.redhat.com/show_bug.cgi?id=1303149 [ 2 ] Bug #1302934 - Malformed translations in 1.1.6 https://bugzilla.redhat.com/show_bug.cgi?id=1302934 [ 3 ] Bug #1292475 - RFE: dnf repoquery options "--queryformat" and "--latest-limit" should be usable together https://bugzilla.redhat.com/show_bug.cgi?id=1292475 [ 4 ] Bug #1297511 - noroot configure causes a traceback when plugins are loaded without a cli https://bugzilla.redhat.com/show_bug.cgi?id=1297511 [ 5 ] Bug #1239274 - dnf history does not show command line https://bugzilla.redhat.com/show_bug.cgi?id=1239274 [ 6 ] Bug #1275878 - [abrt] dnf: rpmsack.py:288:_delete:AttributeError: Cannot delete attribute installed_by on <dnf.yum.rpmsack.RPMDBAdditionalDataPackage object at 0x7f10c32f15d0> https://bugzilla.redhat.com/show_bug.cgi?id=1275878 [ 7 ] Bug #1226322 - dnf clean all does not clean package metadata for local repos https://bugzilla.redhat.com/show_bug.cgi?id=1226322 [ 8 ] Bug #1294355 - German translation incomplete on delta RPMS https://bugzilla.redhat.com/show_bug.cgi?id=1294355 [ 9 ] Bug #1289166 - dnf makecache triggers a python exception https://bugzilla.redhat.com/show_bug.cgi?id=1289166 [ 10 ] Bug #1294241 - file /var/lib/dnf/* is not owned by any package https://bugzilla.redhat.com/show_bug.cgi?id=1294241 [ 11 ] Bug #1277360 - doc: update specifying the packages in commands https://bugzilla.redhat.com/show_bug.cgi?id=1277360 [ 12 ] Bug #1287221 - dnf stutters when writing in /var/log/dnf.rpm.log https://bugzilla.redhat.com/show_bug.cgi?id=1287221 [ 13 ] Bug #1256587 - The proxy option in dnf.conf doesn't support socks5 https://bugzilla.redhat.com/show_bug.cgi?id=1256587 [ 14 ] Bug #1291895 - DNF history failure if no history https://bugzilla.redhat.com/show_bug.cgi?id=1291895 -------------------------------------------------------------------------------- ================================================================================ firefox-44.0-5.fc22 (FEDORA-2016-d73684df54) Mozilla Firefox Web browser -------------------------------------------------------------------------------- Update Information: We see many Gtk3 crashes in recent Firefox but it can't be analyzed by Mozilla crash tool. So this release disables Mozilla crash reporter and sends crash stats directly at ABRT retrace server which is able to get backtraces of Gtk3 and other system libraries. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1303621 - [GCC 6.0] Firefox fails to build https://bugzilla.redhat.com/show_bug.cgi?id=1303621 -------------------------------------------------------------------------------- ================================================================================ frescobaldi-2.18.2-1.fc22 (FEDORA-2016-e69fa10555) Edit LilyPond sheet music with ease! -------------------------------------------------------------------------------- Update Information: Latest upstream. -------------------------------------------------------------------------------- ================================================================================ gnutls-3.3.21-1.fc22 (FEDORA-2016-d5fbc3b7eb) A TLS protocol implementation -------------------------------------------------------------------------------- Update Information: updated to 3.3.21 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1303355 - gnutls: Broken Key Usage flags in certificates created with certtool https://bugzilla.redhat.com/show_bug.cgi?id=1303355 -------------------------------------------------------------------------------- ================================================================================ hamster-time-tracker-2.0-0.2.rc1.fc22 (FEDORA-2016-01bd33e7e6) The Linux time tracker -------------------------------------------------------------------------------- Update Information: version 2.0 rc1 - - This release candidate marks the transition to Gtk3, and includes all the other feature additions and bugfixes that have been submitted since then and are too countless to list here. - Fix dependency to python-dbus, rhbz#1285405 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1285405 - hamster requires python dbus module which is not installed https://bugzilla.redhat.com/show_bug.cgi?id=1285405 [ 2 ] Bug #1281826 - [abrt] hamster-time-tracker: invalid syntax (hamster, line 165) https://bugzilla.redhat.com/show_bug.cgi?id=1281826 [ 3 ] Bug #1271526 - [abrt] hamster-time-tracker: connection.py:651:call_blocking:DBusException: org.freedesktop.DBus.Python.TypeError: Traceback (most recent call last): https://bugzilla.redhat.com/show_bug.cgi?id=1271526 [ 4 ] Bug #1269568 - [abrt] hamster-time-tracker: configuration.py:188:__init__:GError: Configuration server couldn't be contacted: D-BUS error: The GConf daemon is currently shutting down. https://bugzilla.redhat.com/show_bug.cgi?id=1269568 [ 5 ] Bug #1262661 - [abrt] hamster-time-tracker: today.py:429:on_toggle_called:AttributeError: 'NoneType' object has no attribute 'present' https://bugzilla.redhat.com/show_bug.cgi?id=1262661 [ 6 ] Bug #1235881 - [abrt] hamster-time-tracker: stats.py:300:stats:ZeroDivisionError: integer division or modulo by zero https://bugzilla.redhat.com/show_bug.cgi?id=1235881 [ 7 ] Bug #1231989 - [abrt] hamster-time-tracker: activityentry.py:340:_on_tree_button_press_event:TypeError: iter must be a GtkTreeIter https://bugzilla.redhat.com/show_bug.cgi?id=1231989 [ 8 ] Bug #1293039 - hamster version 2.0-rc1 https://bugzilla.redhat.com/show_bug.cgi?id=1293039 [ 9 ] Bug #1231392 - [abrt] hamster-time-tracker: configuration.py:111:show:AttributeError: 'About' object has no attribute 'connect' https://bugzilla.redhat.com/show_bug.cgi?id=1231392 [ 10 ] Bug #1293000 - [abrt] hamster-time-tracker: activityentry.py:214:complete_inline:UnicodeDecodeError: 'utf8' codec can't decode byte 0xd1 in position 0: unexpected end of data https://bugzilla.redhat.com/show_bug.cgi?id=1293000 -------------------------------------------------------------------------------- ================================================================================ libreport-2.6.4-1.fc22 (FEDORA-2016-de4d7b3b1f) Generic library for reporting various problems -------------------------------------------------------------------------------- Update Information: ABRT ===== - do not blacklist firefox libreport ======= - doc: add option -o and -O into reporter-ureport man page - rhtsupport: use problme report API to create description - bugzilla: make the event configurable - report-gtk: offer users to create private ticket - bugzilla|centos: declare 'restricted access' support - dd: allow 1 and 2 letter long element names - formatdup: more universal comment - Refactoring conditional directives that break parts of statements. - bugzilla: actualize man pages - bugzilla: don't report private problem as comment - uploader: move username and password to the advanced options - uploader: allow empty username and password - uploader: add possibility to set SSH keyfiles - desktop-utils: deal with Destkop files without command line - ureport: enable attaching of arbitrary values - uploader: save remote name in reported_to - curl: return URLs without userinfo - Resolves #1275824 ---- - CVE-2015-5287: ignore crashes of abrt tools if DebugLevel = 0 - CVE-2015-5273: create own random temporary directory - make crashes of processes with locked memory not-reportable - detect xorg backtraces from journald - fix the coredumpctl integration tool -------------------------------------------------------------------------------- References: [ 1 ] Bug #1275824 - [abrt] gnome-abrt: remove_quotes(): python3.4 killed by SIGSEGV https://bugzilla.redhat.com/show_bug.cgi?id=1275824 [ 2 ] Bug #1284557 - CVE-2015-5273 abrt: Insecure temporary directory usage in abrt-action-install-debuginfo-to-abrt-cache [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1284557 [ 3 ] Bug #1262252 - CVE-2015-5273 abrt: Insecure temporary directory usage in abrt-action-install-debuginfo-to-abrt-cache https://bugzilla.redhat.com/show_bug.cgi?id=1262252 -------------------------------------------------------------------------------- ================================================================================ lxqt-common-0.10.0-8.fc22 (FEDORA-2016-1e516ca440) Common resources for LXQt desktop suite -------------------------------------------------------------------------------- Update Information: Panel does not show main menu entries, rhbz#1252581 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1252581 - Panel does not show main menu entries https://bugzilla.redhat.com/show_bug.cgi?id=1252581 -------------------------------------------------------------------------------- ================================================================================ megatools-1.9.97-1.fc22 (FEDORA-2016-7e63a2a95e) Command line client for MEGA -------------------------------------------------------------------------------- Update Information: Upstream release rhbz#1304133 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1304133 - megatools-1.9.97 is available https://bugzilla.redhat.com/show_bug.cgi?id=1304133 -------------------------------------------------------------------------------- ================================================================================ mobile-broadband-provider-info-1.20151214-1.fc22 (FEDORA-2016-d3fce30d64) Mobile broadband provider database -------------------------------------------------------------------------------- Update Information: Update to latest upstream release 20151214 -------------------------------------------------------------------------------- ================================================================================ msgpuck-1.0.2-1.fc22 (FEDORA-2016-6a17cb3306) MsgPack binary serialization library in a self-contained header -------------------------------------------------------------------------------- Update Information: Review fixes -------------------------------------------------------------------------------- References: [ 1 ] Bug #1295217 - Review Request: msgpuck - a MsgPack serialization library in a self-contained header file https://bugzilla.redhat.com/show_bug.cgi?id=1295217 -------------------------------------------------------------------------------- ================================================================================ nodejs-is-my-json-valid-2.12.4-1.fc22 (FEDORA-2016-3441e9da2f) A JSONSchema validator that uses code generation to be extremely fast -------------------------------------------------------------------------------- Update Information: Security fix for Regular expression DoS using utc-millisec format -------------------------------------------------------------------------------- References: [ 1 ] Bug #1299498 - nodejs-is-my-json-valid: Regular expression DoS using utc-millisec format https://bugzilla.redhat.com/show_bug.cgi?id=1299498 -------------------------------------------------------------------------------- ================================================================================ openstack-ceilometer-2014.2.4-1.fc22 (FEDORA-2016-fbeb475153) OpenStack measurement collection service -------------------------------------------------------------------------------- Update Information: Rebase to 2014.2.4 and 2015.1.3 -------------------------------------------------------------------------------- ================================================================================ openstack-cinder-2014.2.4-1.fc22 (FEDORA-2016-fbeb475153) OpenStack Volume service -------------------------------------------------------------------------------- Update Information: Rebase to 2014.2.4 and 2015.1.3 -------------------------------------------------------------------------------- ================================================================================ openstack-glance-2014.2.4-1.fc22 (FEDORA-2016-fbeb475153) OpenStack Image Service -------------------------------------------------------------------------------- Update Information: Rebase to 2014.2.4 and 2015.1.3 -------------------------------------------------------------------------------- ================================================================================ openstack-heat-2014.2.4-1.fc22 (FEDORA-2016-fbeb475153) OpenStack Orchestration (heat) -------------------------------------------------------------------------------- Update Information: Rebase to 2014.2.4 and 2015.1.3 -------------------------------------------------------------------------------- ================================================================================ openstack-neutron-2014.2.4-2.fc22 (FEDORA-2016-fbeb475153) OpenStack Networking Service -------------------------------------------------------------------------------- Update Information: Rebase to 2014.2.4 and 2015.1.3 -------------------------------------------------------------------------------- ================================================================================ openstack-nova-2014.2.4-1.fc22 (FEDORA-2016-fbeb475153) OpenStack Compute (nova) -------------------------------------------------------------------------------- Update Information: Rebase to 2014.2.4 and 2015.1.3 -------------------------------------------------------------------------------- ================================================================================ openstack-sahara-2014.2.4-1.fc22 (FEDORA-2016-fbeb475153) Apache Hadoop cluster management on OpenStack -------------------------------------------------------------------------------- Update Information: Rebase to 2014.2.4 and 2015.1.3 -------------------------------------------------------------------------------- ================================================================================ pagure-1.0.1-1.fc22 (FEDORA-2016-6876920801) A git-centered forge -------------------------------------------------------------------------------- Update Information: Updates to the latest version of pagure: 1.0.1 beware this is a very large update! -------------------------------------------------------------------------------- ================================================================================ pcp-3.11.0-1.fc22 (FEDORA-2016-f20d80b6af) System-level performance monitoring and performance management -------------------------------------------------------------------------------- Update Information: * containers: add a pcp-pmwebd container image * pmcd: start PMDAs via pmdaroot, allowing restart on PMDA failure without restarting pmcd itself * pmcd: tenfold speed up of the shutdown process * pmcd: ensure startup before zabbix-agent, with systemd * pmdafreebsd: use getifaddrs() for network interface * pmdalinux: fix /proc/interrupts parsing on s390x platforms * pmdalinux: fix i386 buffer overflow in softnet stats * pmdalinux: support additional vmstat kernel metrics (virt balloon, transparent-huge-page zero page alloc counters) * pmdaxfs: support the per-device XFS metrics * pmdanamed: fix SELinux AVC denials during Install * pmdavmware: updates to work with current VMWare perl API * libpcp: improvements to derived metrics error handling * libpcp: rework interp logic arond <mark> records * libpcp: fix bug in interp mode record caching * libpcp: pthread_mutexattr_destroy, pthread_mutex_destroy calls * libpcp: added a new fetchgroup API * libpcp: fix dup-context-with-attrs memory corruption bug * libpcp: fix derived metric PMNS navigation mem leak * libpcp: unconditional registration of anon (event.*) metrics * pcp-iostat: use py3 and py3 compatible pipe exception handlers * pcp-iostat: improve incorrect counter rate conversion * pcp-iostat: improve BrokenPipeError exception handling * pmmgr: add general monitor-program launching option * pmmgr: resolved a couple of small memory leaks * pmrep: fix first sample reporting, instant/discrete metrics * pmrep: fix string valued metric reporting, with python3 * pmval: improve reporting in the region of <mark> records * pmwebd: add an option to disable service advertising * pmwebd: support for http compression * pmwebd: add units/sem to legend in graphite/png mode * pmwebd: enable graphite image-mode caching via redirection * pmwebd: add an option for alternative name encodings * sar2pcp: support additional mem.util metrics * docs: updates to the system CPU performance tutorial * packaging: add missing dependencies on some perl modules * packaging: drop the pcp-compat subpackage -------------------------------------------------------------------------------- ================================================================================ perl-Lingua-Stem-Ru-0.02-1.fc22 (FEDORA-2016-89fd8382bc) Porter's stemming algorithm for Russian (KOI8-R only) -------------------------------------------------------------------------------- Update Information: This release adds enables warnings, rephrases license declaration and modernizes build script. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1304359 - perl-Lingua-Stem-Ru-0.02 is available https://bugzilla.redhat.com/show_bug.cgi?id=1304359 -------------------------------------------------------------------------------- ================================================================================ python-audioread-2.1.2-2.fc22 (FEDORA-2016-5b76f1c8c7) Multi-library, cross-platform audio decoding in Python -------------------------------------------------------------------------------- Update Information: Update to latest upstream release audioread 2.1.2. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1303724 - python-audioread-2.1.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=1303724 -------------------------------------------------------------------------------- ================================================================================ python-boto-2.39.0-1.fc22 (FEDORA-2016-6f5877d041) A simple, lightweight interface to Amazon Web Services -------------------------------------------------------------------------------- Update Information: This update fixes several bugs and adds support for the new ap-northeast-2 AWS region. For more details, see the [full changelog](http://boto.cloudhackers.com/en/latest/releasenotes/v2.39.0.html) from upstream. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1300424 - Update python-boto to 2.39 https://bugzilla.redhat.com/show_bug.cgi?id=1300424 -------------------------------------------------------------------------------- ================================================================================ python-copr-1.65-1.fc22 (FEDORA-2016-1fc476e069) Python interface for Copr -------------------------------------------------------------------------------- Update Information: Bug fixes. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1261125 - Use requests-toolbelt to upload srpms https://bugzilla.redhat.com/show_bug.cgi?id=1261125 [ 2 ] Bug #1292033 - copr-cli ignores multiple package arguments if the first is a local file https://bugzilla.redhat.com/show_bug.cgi?id=1292033 [ 3 ] Bug #1298672 - copr-cli create raises TypeError https://bugzilla.redhat.com/show_bug.cgi?id=1298672 [ 4 ] Bug #1298674 - copr-cli build hangs during upload https://bugzilla.redhat.com/show_bug.cgi?id=1298674 [ 5 ] Bug #1302615 - UnboundLocalError: local variable 'bar' referenced before assignment when building from URLs https://bugzilla.redhat.com/show_bug.cgi?id=1302615 [ 6 ] Bug #1276105 - copr-cli 1.45 errors on el6 https://bugzilla.redhat.com/show_bug.cgi?id=1276105 [ 7 ] Bug #1299243 - RFE: New version of copr-cli (requires rebase of python-copr too) https://bugzilla.redhat.com/show_bug.cgi?id=1299243 -------------------------------------------------------------------------------- ================================================================================ python-hglib-2.0-1.fc22 (FEDORA-2016-d8f564f509) Mercurial Python library -------------------------------------------------------------------------------- Update Information: Update to latest upstream release python-hglib 2.0 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1303920 - python-hglib-2.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1303920 -------------------------------------------------------------------------------- ================================================================================ python-mwclient-0.8.0-2.fc22 (FEDORA-2016-a98dc2db50) Mwclient is a client to the MediaWiki API -------------------------------------------------------------------------------- Update Information: This update provides the new release of python-mwclient. The major new feature in this release is Python 3 compatibility, so a python3-mwclient subpackage is added for Fedora releases (not yet for EPEL, as I'm waiting for the whole question of how we're going to do Python 3 on EPEL to be nailed down). python- mwclient is renamed to python2-mwclient, with appropriate Provides and Obsoletes. There is one minor backwards compatibility break; `Page.save()`'s behaviour has changed slightly, in that if you previously passed a section number to `Page.text()`, it will not be used for a subsequent `Page.save()` call. This change should not affect either of Fedora's packaged consumers (parley and python-wikitcms). More details on this and the other changes in the new release can be found in `RELEASE-NOTES.md`. -------------------------------------------------------------------------------- ================================================================================ python-pymongo-2.5.2-8.fc22 (FEDORA-2016-52b294538d) Python driver for MongoDB -------------------------------------------------------------------------------- Update Information: Security fix for CVE-2013-2099, CVE-2013-7440 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1224999 - CVE-2013-7440 python: wildcard matching rules do not follow RFC 6125 https://bugzilla.redhat.com/show_bug.cgi?id=1224999 [ 2 ] Bug #963260 - CVE-2013-2099 python: ssl.match_hostname() DoS via certificates with specially crafted hostname wildcard patterns https://bugzilla.redhat.com/show_bug.cgi?id=963260 -------------------------------------------------------------------------------- ================================================================================ rabbitmq-server-3.5.7-4.fc22 (FEDORA-2016-2b98158285) The RabbitMQ server -------------------------------------------------------------------------------- Update Information: - Fix stop / restart - Don't wait for slave stop messages forever (patches #2, #3) - Drop dependency on syslog.target - this seems to be a leftover - Require epmd@0.0.0.0 to run. This is a default value. User should override it if necessary. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1302368 - rabbitmq-server service timeout on stop https://bugzilla.redhat.com/show_bug.cgi?id=1302368 -------------------------------------------------------------------------------- ================================================================================ rabbitvcs-0.16.1-0.3.20160108gite8214e6.fc22 (FEDORA-2016-586e9f19f4) Graphical user interface to version control systems -------------------------------------------------------------------------------- Update Information: - fix nautilus plugin - disable b0rken gedit plugin ---- reanimate package - - new upstream snapshot as pre-release - port to python3 - mark all as noarch and adjust plugins pathes - enable debuginfo - add git and mercurial as dependencies - fix some crashes with log command, rhbz#1141530 - fix vcs status features, rhbz#1083043 - enable caja plugin, rhbz#1096162 - make gedit plugin work, rhbz#1226816 - add nemo plugin -------------------------------------------------------------------------------- References: [ 1 ] Bug #1304050 - python-dulwich version 0.12.0 https://bugzilla.redhat.com/show_bug.cgi?id=1304050 [ 2 ] Bug #1303457 - thunarx-python version 0.3.0 https://bugzilla.redhat.com/show_bug.cgi?id=1303457 [ 3 ] Bug #1226816 - Gedit plugin not working with Gedit later than version 3.12 https://bugzilla.redhat.com/show_bug.cgi?id=1226816 [ 4 ] Bug #1141530 - [abrt] rabbitvcs-core: log.py:1598:log_factory:KeyError: 'unknown' https://bugzilla.redhat.com/show_bug.cgi?id=1141530 [ 5 ] Bug #1228896 - [abrt] rabbitvcs-core: subprocess.py:1335:_execute_child:OSError: [Errno 2] Datei oder Verzeichnis nicht gefunden https://bugzilla.redhat.com/show_bug.cgi?id=1228896 [ 6 ] Bug #1226603 - [abrt] rabbitvcs-core: add.py:105:load:AttributeError: GitStage instance has no attribute 'show_ignored' https://bugzilla.redhat.com/show_bug.cgi?id=1226603 [ 7 ] Bug #1096162 - No support in mate caja https://bugzilla.redhat.com/show_bug.cgi?id=1096162 [ 8 ] Bug #1083043 - Package should require python-simplejson https://bugzilla.redhat.com/show_bug.cgi?id=1083043 -------------------------------------------------------------------------------- ================================================================================ ranger-1.6.1-7.fc22 (FEDORA-2016-3b9d4bbf0d) A flexible console file manager -------------------------------------------------------------------------------- Update Information: This update backports a patch from the Rawhide build that corrects the location of `w3imgdisplay` in Fedora, thus fixing image preview. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1217910 - w3imgdisplay-based image preview not working https://bugzilla.redhat.com/show_bug.cgi?id=1217910 -------------------------------------------------------------------------------- ================================================================================ rocksndiamonds-3.3.1.2-1.fc22 (FEDORA-2016-c798b5d781) Underground digging game -------------------------------------------------------------------------------- Update Information: Update to 3.3.1.2 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1294861 - update 3.3.1.2 https://bugzilla.redhat.com/show_bug.cgi?id=1294861 -------------------------------------------------------------------------------- ================================================================================ rubygem-domain_name-0.5.20160128-1.fc22 (FEDORA-2016-4eef8a4ac5) Domain Name manipulation library for Ruby -------------------------------------------------------------------------------- Update Information: New version 0.5.20160128 is released. -------------------------------------------------------------------------------- ================================================================================ skf-2.00.3-1.fc22 (FEDORA-2016-a102e0c14a) Utility binary files in Simple Kanji Filter -------------------------------------------------------------------------------- Update Information: New version 2.00.3 is released. -------------------------------------------------------------------------------- ================================================================================ udiskie-1.4.7-1.fc22 (FEDORA-2016-eb14b5f892) Removable disk auto-mounter -------------------------------------------------------------------------------- Update Information: Update to latest upstream release, with associated fixes. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1264657 - Missing Requires: libnotify https://bugzilla.redhat.com/show_bug.cgi?id=1264657 [ 2 ] Bug #1265867 - udiskie-1.4.7 is available https://bugzilla.redhat.com/show_bug.cgi?id=1265867 -------------------------------------------------------------------------------- ================================================================================ wordpress-4.4.2-1.fc22 (FEDORA-2016-9d0a25ea07) Blog tool and publishing platform -------------------------------------------------------------------------------- Update Information: **WordPress 4.4.2 Security and Maintenance Release** WordPress 4.4.2 is now available. This is a security release for all previous versions and we strongly encourage you to update your sites immediately. WordPress versions 4.4.1 and earlier are affected by two security issues: a possible SSRF for certain local URIs, reported by Ronni Skansing; and an open redirection attack, reported by Shailesh Suthar. Thank you to both reporters for practicing responsible disclosure. In addition to the security issues above, WordPress 4.4.2 fixes 17 bugs from 4.4 and 4.4.1. For more information, see the [release notes](https://codex.wordpress.org/Version_4.4.2) or consult the [list of changes](https://core.trac.wordpress.org/query?milestone=4.4.2). -------------------------------------------------------------------------------- ================================================================================ xlogin-0-0.1.20160114git97667d7.fc22 (FEDORA-2016-48ec072ee2) Automatic X login service for systemd -------------------------------------------------------------------------------- Update Information: initial package, rhbz#1298715 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1298715 - Review Request: xlogin - Automatic X login service for systemd https://bugzilla.redhat.com/show_bug.cgi?id=1298715 -------------------------------------------------------------------------------- -- test mailing list test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe: http://lists.fedoraproject.org/admin/lists/test@xxxxxxxxxxxxxxxxxxxxxxx
