The following Fedora 23 Security updates need testing: Age URL 164 https://bodhi.fedoraproject.org/updates/FEDORA-2015-16240 nagios-4.0.8-1.fc23 122 https://bodhi.fedoraproject.org/updates/FEDORA-2015-81ded368fe miniupnpc-1.9-6.fc23 94 https://bodhi.fedoraproject.org/updates/FEDORA-2015-27392b3324 jbig2dec-0.12-2.fc23 45 https://bodhi.fedoraproject.org/updates/FEDORA-2015-dd52a54fa1 python-pymongo-3.0.3-1.fc23 45 https://bodhi.fedoraproject.org/updates/FEDORA-2015-06a7c972e8 thttpd-2.25b-37.fc23 34 https://bodhi.fedoraproject.org/updates/FEDORA-2016-a69ee02554 xulrunner-44.0-1.fc23 16 https://bodhi.fedoraproject.org/updates/FEDORA-2016-40401300ed 389-ds-base-1.3.4.8-1.fc23 16 https://bodhi.fedoraproject.org/updates/FEDORA-2016-65a1f22818 community-mysql-5.6.29-1.fc23 16 https://bodhi.fedoraproject.org/updates/FEDORA-2016-94b0b50351 gummi-0.6.6-1.fc23 10 https://bodhi.fedoraproject.org/updates/FEDORA-2016-637618fcd4 mingw-nsis-2.50-1.fc23 7 https://bodhi.fedoraproject.org/updates/FEDORA-2016-cdd4228cc7 pcs-0.9.149-2.fc23 5 https://bodhi.fedoraproject.org/updates/FEDORA-2016-f12be382f4 mote-0.5.1-3.fc23 5 https://bodhi.fedoraproject.org/updates/FEDORA-2016-8411497132 drupal6-6.38-1.fc23 3 https://bodhi.fedoraproject.org/updates/FEDORA-2016-eeb0f0c94f drupal7-7.43-1.fc23 3 https://bodhi.fedoraproject.org/updates/FEDORA-2016-ae14784e4e libmodbus-3.0.6-1.fc23 3 https://bodhi.fedoraproject.org/updates/FEDORA-2016-120b194a75 qpid-cpp-0.34-6.fc23 2 https://bodhi.fedoraproject.org/updates/FEDORA-2016-f802cade15 exiv2-0.25-3.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-6b977c4737 php-htmLawed-1.1.21-1.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-2802690366 openssl-1.0.2g-2.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-040577033c python-django-1.8.10-1.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-5d4fc5ecc9 perl-5.22.1-351.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-3e4408f350 squid-3.5.9-8.fc23 The following Fedora 23 Critical Path updates have yet to be approved: Age URL 34 https://bodhi.fedoraproject.org/updates/FEDORA-2016-a69ee02554 xulrunner-44.0-1.fc23 14 https://bodhi.fedoraproject.org/updates/FEDORA-2016-054e18a33d htdig-3.2.0-0.23.b6.fc23 10 https://bodhi.fedoraproject.org/updates/FEDORA-2016-8dde5e377c lxsession-0.5.2-8.fc23 10 https://bodhi.fedoraproject.org/updates/FEDORA-2016-2400dcd3d1 virtuoso-opensource-6.1.6-10.fc23 3 https://bodhi.fedoraproject.org/updates/FEDORA-2016-ffbae3a870 selinux-policy-3.13.1-158.9.fc23 3 https://bodhi.fedoraproject.org/updates/FEDORA-2016-e10d786768 pungi-4.0.6-1.fc23 2 https://bodhi.fedoraproject.org/updates/FEDORA-2016-f802cade15 exiv2-0.25-3.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-7fc7d51465 openssh-7.2p1-1.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-7715236b1c NetworkManager-1.0.10-3.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-5d4fc5ecc9 perl-5.22.1-351.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-9850932586 sqlite-3.11.0-3.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-2802690366 openssl-1.0.2g-2.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-8c3f65efd8 pcre-8.38-7.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-186af2afdd koji-1.10.1-3.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-5fb0d8ce68 sendmail-8.15.2-3.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-47408e3719 polkit-qt-0.112.0-7.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-553640374c lxmenu-data-0.1.5-1.fc23 lxpanel-0.8.2-1.fc23 lxde-common-0.99.1-1.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-68253fbd78 v4l-utils-1.10.0-2.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-dd7900694e libfm-1.2.4-1.fc23 pcmanfm-1.2.4-1.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-ae562ee2af krb5-1.14.1-1.fc23 The following builds have been pushed to Fedora 23 updates-testing 2ping-3.2.0-1.fc23 NetworkManager-1.0.10-3.fc23 R-RInside-0.2.13-2.fc23 bcm283x-firmware-20160229-1.9cd1c6c.fc23 enki-15.11.2-0.1.20160227git8e374ef.fc23 erlang-egeoip-1.1-2.fc23 erlang-meck-0.8.4-2.fc23 erlang-rebar-2.6.1-6.fc23 fedora-packager-0.5.10.7-1.fc23 golang-github-bugsnag-panicwrap-1.1.0-0.1.gitaceac81.fc23 greenisland-0.7.90-0.2.20160227git.fc23 hawaii-icon-theme-0.6.90-0.1.20160229git.fc23 hawaii-shell-0.6.90-0.1.20160228git.fc23 hawaii-system-preferences-0.6.90-0.1.20160301git.fc23 hawaii-widget-styles-0.6.90-0.1.20160229git.fc23 hawaii-workspace-0.6.90-0.1.20160301git.fc23 holland-1.0.12-2.fc23 koji-1.10.1-3.fc23 libhawaii-0.6.90-0.1.20160222git.fc23 libinput-1.2.1-2.fc23 libmediainfo-0.7.83-1.fc23 libzen-0.4.33-1.fc23 mediainfo-0.7.83-1.fc23 odb-2.4.0-9.fc23 openssh-7.2p1-1.fc23 openssl-1.0.2g-2.fc23 pcre-8.38-7.fc23 perl-5.22.1-351.fc23 php-smbclient-0.8.0-1.fc23 python-django-1.8.10-1.fc23 python-fedmsg-meta-fedora-infrastructure-0.15.10-1.fc23 python-qutepart-2.2.3-1.20160229gitfdc29c7.fc23 rfcdiff-1.43-1.fc23 sqlite-3.11.0-3.fc23 squid-3.5.9-8.fc23 wireshark-1.12.10-1.fc23 Details about builds: ================================================================================ 2ping-3.2.0-1.fc23 (FEDORA-2016-0b2a971bf6) Bi-directional ping utility -------------------------------------------------------------------------------- Update Information: Big step forward -------------------------------------------------------------------------------- References: [ 1 ] Bug #1275261 - 2ping-3.2.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1275261 -------------------------------------------------------------------------------- ================================================================================ NetworkManager-1.0.10-3.fc23 (FEDORA-2016-7715236b1c) Network connection manager and user applications -------------------------------------------------------------------------------- Update Information: Workaround for crash related to renaming wifi device (rh#1298007, rh#1241198) -------------------------------------------------------------------------------- ================================================================================ R-RInside-0.2.13-2.fc23 (FEDORA-2016-81508d456b) C++ Classes to Embed R in C++ Applications -------------------------------------------------------------------------------- Update Information: Adapt RInsideLdFlags function to Fedora packaging. -------------------------------------------------------------------------------- ================================================================================ bcm283x-firmware-20160229-1.9cd1c6c.fc23 (FEDORA-2016-69c4168556) Broadcom bcm283x firmware for the Raspberry Pi -------------------------------------------------------------------------------- Update Information: Latest firmware update -------------------------------------------------------------------------------- ================================================================================ enki-15.11.2-0.1.20160227git8e374ef.fc23 (FEDORA-2016-b38ae34a10) Text editor for programmers -------------------------------------------------------------------------------- Update Information: recent upstream snapshots as of 20160229 - - qutepart version 2.2.3 with fixes for python3 and Qt5 as defaults - python2 component is now obsolete -------------------------------------------------------------------------------- References: [ 1 ] Bug #1313536 - qutepart-2.2.3 is available https://bugzilla.redhat.com/show_bug.cgi?id=1313536 -------------------------------------------------------------------------------- ================================================================================ erlang-egeoip-1.1-2.fc23 (FEDORA-2016-d1c290ac88) Erlang IP Geolocation module -------------------------------------------------------------------------------- Update Information: * Use system-wide GeoIP data (saves ~99% of the space) -------------------------------------------------------------------------------- ================================================================================ erlang-meck-0.8.4-2.fc23 (FEDORA-2016-5fd0433061) A mocking library for Erlang -------------------------------------------------------------------------------- Update Information: * Ver. 0.8.4 -------------------------------------------------------------------------------- ================================================================================ erlang-rebar-2.6.1-6.fc23 (FEDORA-2016-a445d4225f) Erlang Build Tools -------------------------------------------------------------------------------- Update Information: * Disable gpb properly ---- * Fixed warnings ---- * Added (Build)Dependency which cannot be picked up automatically ---- * Use erlang-rpm-macros -------------------------------------------------------------------------------- ================================================================================ fedora-packager-0.5.10.7-1.fc23 (FEDORA-2016-c997d815c5) Tools for setting up a fedora maintainer environment -------------------------------------------------------------------------------- Update Information: 0.5.10.7 release (dennis) -------------------------------------------------------------------------------- ================================================================================ golang-github-bugsnag-panicwrap-1.1.0-0.1.gitaceac81.fc23 (FEDORA-2016-c083a9f6ec) Go library for catching and handling panics in Go applications -------------------------------------------------------------------------------- Update Information: Rebase to 1.1.0 ---- First package for Fedora -------------------------------------------------------------------------------- References: [ 1 ] Bug #1313834 - Tracker for golang-github-bugsnag-panicwrap https://bugzilla.redhat.com/show_bug.cgi?id=1313834 [ 2 ] Bug #1270034 - Review Request: golang-github-bugsnag-panicwrap - Go library for catching and handling panics in Go applications https://bugzilla.redhat.com/show_bug.cgi?id=1270034 -------------------------------------------------------------------------------- ================================================================================ greenisland-0.7.90-0.2.20160227git.fc23 (FEDORA-2016-4bd44c2ec2) QtQuick-based Wayland compositor in library form -------------------------------------------------------------------------------- Update Information: First snapshot of Hawaii 0.7.0. This update fixes a few crashes in the compositor and adds a workaround for systems that report an invalid screen physical size that was causing sizing problems, font rendering issues and SVG icon loading failure. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1310408 - hawaii-workspace-0.6.90 is available https://bugzilla.redhat.com/show_bug.cgi?id=1310408 [ 2 ] Bug #1030868 - hawaii-widget-styles-v0.5.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1030868 [ 3 ] Bug #1301331 - [abrt] hawaii-shell: qt_message_fatal(): hawaii killed by SIGABRT https://bugzilla.redhat.com/show_bug.cgi?id=1301331 [ 4 ] Bug #1303287 - [abrt] hawaii-shell: wl_proxy_marshal_array_constructor(): hawaii killed by SIGABRT https://bugzilla.redhat.com/show_bug.cgi?id=1303287 [ 5 ] Bug #1303297 - panel https://bugzilla.redhat.com/show_bug.cgi?id=1303297 [ 6 ] Bug #1308762 - greenisland-0.7.90 is available https://bugzilla.redhat.com/show_bug.cgi?id=1308762 -------------------------------------------------------------------------------- ================================================================================ hawaii-icon-theme-0.6.90-0.1.20160229git.fc23 (FEDORA-2016-4bd44c2ec2) Icon themes for Hawaii desktop environment -------------------------------------------------------------------------------- Update Information: First snapshot of Hawaii 0.7.0. This update fixes a few crashes in the compositor and adds a workaround for systems that report an invalid screen physical size that was causing sizing problems, font rendering issues and SVG icon loading failure. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1310408 - hawaii-workspace-0.6.90 is available https://bugzilla.redhat.com/show_bug.cgi?id=1310408 [ 2 ] Bug #1030868 - hawaii-widget-styles-v0.5.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1030868 [ 3 ] Bug #1301331 - [abrt] hawaii-shell: qt_message_fatal(): hawaii killed by SIGABRT https://bugzilla.redhat.com/show_bug.cgi?id=1301331 [ 4 ] Bug #1303287 - [abrt] hawaii-shell: wl_proxy_marshal_array_constructor(): hawaii killed by SIGABRT https://bugzilla.redhat.com/show_bug.cgi?id=1303287 [ 5 ] Bug #1303297 - panel https://bugzilla.redhat.com/show_bug.cgi?id=1303297 [ 6 ] Bug #1308762 - greenisland-0.7.90 is available https://bugzilla.redhat.com/show_bug.cgi?id=1308762 -------------------------------------------------------------------------------- ================================================================================ hawaii-shell-0.6.90-0.1.20160228git.fc23 (FEDORA-2016-4bd44c2ec2) Hawaii shell for desktop, netbook and tablet -------------------------------------------------------------------------------- Update Information: First snapshot of Hawaii 0.7.0. This update fixes a few crashes in the compositor and adds a workaround for systems that report an invalid screen physical size that was causing sizing problems, font rendering issues and SVG icon loading failure. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1310408 - hawaii-workspace-0.6.90 is available https://bugzilla.redhat.com/show_bug.cgi?id=1310408 [ 2 ] Bug #1030868 - hawaii-widget-styles-v0.5.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1030868 [ 3 ] Bug #1301331 - [abrt] hawaii-shell: qt_message_fatal(): hawaii killed by SIGABRT https://bugzilla.redhat.com/show_bug.cgi?id=1301331 [ 4 ] Bug #1303287 - [abrt] hawaii-shell: wl_proxy_marshal_array_constructor(): hawaii killed by SIGABRT https://bugzilla.redhat.com/show_bug.cgi?id=1303287 [ 5 ] Bug #1303297 - panel https://bugzilla.redhat.com/show_bug.cgi?id=1303297 [ 6 ] Bug #1308762 - greenisland-0.7.90 is available https://bugzilla.redhat.com/show_bug.cgi?id=1308762 -------------------------------------------------------------------------------- ================================================================================ hawaii-system-preferences-0.6.90-0.1.20160301git.fc23 (FEDORA-2016-4bd44c2ec2) Utilities to configure the Hawaii desktop environment -------------------------------------------------------------------------------- Update Information: First snapshot of Hawaii 0.7.0. This update fixes a few crashes in the compositor and adds a workaround for systems that report an invalid screen physical size that was causing sizing problems, font rendering issues and SVG icon loading failure. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1310408 - hawaii-workspace-0.6.90 is available https://bugzilla.redhat.com/show_bug.cgi?id=1310408 [ 2 ] Bug #1030868 - hawaii-widget-styles-v0.5.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1030868 [ 3 ] Bug #1301331 - [abrt] hawaii-shell: qt_message_fatal(): hawaii killed by SIGABRT https://bugzilla.redhat.com/show_bug.cgi?id=1301331 [ 4 ] Bug #1303287 - [abrt] hawaii-shell: wl_proxy_marshal_array_constructor(): hawaii killed by SIGABRT https://bugzilla.redhat.com/show_bug.cgi?id=1303287 [ 5 ] Bug #1303297 - panel https://bugzilla.redhat.com/show_bug.cgi?id=1303297 [ 6 ] Bug #1308762 - greenisland-0.7.90 is available https://bugzilla.redhat.com/show_bug.cgi?id=1308762 -------------------------------------------------------------------------------- ================================================================================ hawaii-widget-styles-0.6.90-0.1.20160229git.fc23 (FEDORA-2016-4bd44c2ec2) Styles for applications using QtQuick Controls -------------------------------------------------------------------------------- Update Information: First snapshot of Hawaii 0.7.0. This update fixes a few crashes in the compositor and adds a workaround for systems that report an invalid screen physical size that was causing sizing problems, font rendering issues and SVG icon loading failure. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1310408 - hawaii-workspace-0.6.90 is available https://bugzilla.redhat.com/show_bug.cgi?id=1310408 [ 2 ] Bug #1030868 - hawaii-widget-styles-v0.5.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1030868 [ 3 ] Bug #1301331 - [abrt] hawaii-shell: qt_message_fatal(): hawaii killed by SIGABRT https://bugzilla.redhat.com/show_bug.cgi?id=1301331 [ 4 ] Bug #1303287 - [abrt] hawaii-shell: wl_proxy_marshal_array_constructor(): hawaii killed by SIGABRT https://bugzilla.redhat.com/show_bug.cgi?id=1303287 [ 5 ] Bug #1303297 - panel https://bugzilla.redhat.com/show_bug.cgi?id=1303297 [ 6 ] Bug #1308762 - greenisland-0.7.90 is available https://bugzilla.redhat.com/show_bug.cgi?id=1308762 -------------------------------------------------------------------------------- ================================================================================ hawaii-workspace-0.6.90-0.1.20160301git.fc23 (FEDORA-2016-4bd44c2ec2) Hawaii workspace, applications and plugins -------------------------------------------------------------------------------- Update Information: First snapshot of Hawaii 0.7.0. This update fixes a few crashes in the compositor and adds a workaround for systems that report an invalid screen physical size that was causing sizing problems, font rendering issues and SVG icon loading failure. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1310408 - hawaii-workspace-0.6.90 is available https://bugzilla.redhat.com/show_bug.cgi?id=1310408 [ 2 ] Bug #1030868 - hawaii-widget-styles-v0.5.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1030868 [ 3 ] Bug #1301331 - [abrt] hawaii-shell: qt_message_fatal(): hawaii killed by SIGABRT https://bugzilla.redhat.com/show_bug.cgi?id=1301331 [ 4 ] Bug #1303287 - [abrt] hawaii-shell: wl_proxy_marshal_array_constructor(): hawaii killed by SIGABRT https://bugzilla.redhat.com/show_bug.cgi?id=1303287 [ 5 ] Bug #1303297 - panel https://bugzilla.redhat.com/show_bug.cgi?id=1303297 [ 6 ] Bug #1308762 - greenisland-0.7.90 is available https://bugzilla.redhat.com/show_bug.cgi?id=1308762 -------------------------------------------------------------------------------- ================================================================================ holland-1.0.12-2.fc23 (FEDORA-2016-4419f11d15) Pluggable Backup Framework -------------------------------------------------------------------------------- Update Information: fix for https://github.com/holland-backup/holland/pull/145 -------------------------------------------------------------------------------- ================================================================================ koji-1.10.1-3.fc23 (FEDORA-2016-186af2afdd) Build system tools -------------------------------------------------------------------------------- Update Information: update to git e8201aac8294e6125a73504886b0800041b58868 -------------------------------------------------------------------------------- ================================================================================ libhawaii-0.6.90-0.1.20160222git.fc23 (FEDORA-2016-4bd44c2ec2) Core share library for Hawaii desktop suite -------------------------------------------------------------------------------- Update Information: First snapshot of Hawaii 0.7.0. This update fixes a few crashes in the compositor and adds a workaround for systems that report an invalid screen physical size that was causing sizing problems, font rendering issues and SVG icon loading failure. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1310408 - hawaii-workspace-0.6.90 is available https://bugzilla.redhat.com/show_bug.cgi?id=1310408 [ 2 ] Bug #1030868 - hawaii-widget-styles-v0.5.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1030868 [ 3 ] Bug #1301331 - [abrt] hawaii-shell: qt_message_fatal(): hawaii killed by SIGABRT https://bugzilla.redhat.com/show_bug.cgi?id=1301331 [ 4 ] Bug #1303287 - [abrt] hawaii-shell: wl_proxy_marshal_array_constructor(): hawaii killed by SIGABRT https://bugzilla.redhat.com/show_bug.cgi?id=1303287 [ 5 ] Bug #1303297 - panel https://bugzilla.redhat.com/show_bug.cgi?id=1303297 [ 6 ] Bug #1308762 - greenisland-0.7.90 is available https://bugzilla.redhat.com/show_bug.cgi?id=1308762 -------------------------------------------------------------------------------- ================================================================================ libinput-1.2.1-2.fc23 (FEDORA-2016-44f5a0e9dd) Input device library -------------------------------------------------------------------------------- Update Information: libinput 1.2.1 -------------------------------------------------------------------------------- ================================================================================ libmediainfo-0.7.83-1.fc23 (FEDORA-2016-1ec74022ec) Library for supplies technical and tag information about a video or audio file -------------------------------------------------------------------------------- Update Information: Update to last version. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1295708 - libzen (mediainfo) cannot deal with filenames containing questionmark (?) or asterisk (*) https://bugzilla.redhat.com/show_bug.cgi?id=1295708 -------------------------------------------------------------------------------- ================================================================================ libzen-0.4.33-1.fc23 (FEDORA-2016-1ec74022ec) Shared library for libmediainfo and medianfo* -------------------------------------------------------------------------------- Update Information: Update to last version. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1295708 - libzen (mediainfo) cannot deal with filenames containing questionmark (?) or asterisk (*) https://bugzilla.redhat.com/show_bug.cgi?id=1295708 -------------------------------------------------------------------------------- ================================================================================ mediainfo-0.7.83-1.fc23 (FEDORA-2016-1ec74022ec) Supplies technical and tag information about a video or audio file (CLI) -------------------------------------------------------------------------------- Update Information: Update to last version. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1295708 - libzen (mediainfo) cannot deal with filenames containing questionmark (?) or asterisk (*) https://bugzilla.redhat.com/show_bug.cgi?id=1295708 -------------------------------------------------------------------------------- ================================================================================ odb-2.4.0-9.fc23 (FEDORA-2016-7737a32986) Object-relational mapping (ORM) system for C++ -------------------------------------------------------------------------------- Update Information: Rebuild for gcc update -------------------------------------------------------------------------------- References: [ 1 ] Bug #1313344 - odb requires gcc 5.1.1, latest is gcc 5.3.1 https://bugzilla.redhat.com/show_bug.cgi?id=1313344 -------------------------------------------------------------------------------- ================================================================================ openssh-7.2p1-1.fc23 (FEDORA-2016-7fc7d51465) An open source implementation of SSH protocol versions 1 and 2 -------------------------------------------------------------------------------- Update Information: This update provides new upstream release of openssh-7.2p1. This is mostly bugfix release, but note that: * the minimum modulus size supported for diffie- hellman-group-exchange was increased to 2048 bits, * several legacy cryptographic algorithms and MD5-based and truncated HMAC algorithms were disabled on client side. More information about this release can be found in [upstream release notes](http://www.openssh.com/txt/release-7.2). Few more notes on the [mainling-list HEADS UP](https://lists.fedoraproject.org/archives/list/de vel@xxxxxxxxxxxxxxxxxxxxxxx/thread/WNYBILDLT3RN7XDNWFIAVSC5WMSZ6ERZ/). -------------------------------------------------------------------------------- References: [ 1 ] Bug #1312870 - openssh-7.2p1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1312870 -------------------------------------------------------------------------------- ================================================================================ openssl-1.0.2g-2.fc23 (FEDORA-2016-2802690366) Utilities from the general purpose cryptography library with TLS implementation -------------------------------------------------------------------------------- Update Information: New upstream release fixing security issues. Note that SSLv2 was already disabled by default in Fedora OpenSSL. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1312219 - CVE-2016-0799 OpenSSL: Fix memory issues in BIO_*printf functions https://bugzilla.redhat.com/show_bug.cgi?id=1312219 [ 2 ] Bug #1310599 - CVE-2016-0702 OpenSSL: Side channel attack on modular exponentiation https://bugzilla.redhat.com/show_bug.cgi?id=1310599 [ 3 ] Bug #1310596 - CVE-2016-0705 OpenSSL: Double-free in DSA code https://bugzilla.redhat.com/show_bug.cgi?id=1310596 -------------------------------------------------------------------------------- ================================================================================ pcre-8.38-7.fc23 (FEDORA-2016-8c3f65efd8) Perl-compatible regular expression library -------------------------------------------------------------------------------- Update Information: This release fixes a non-diagnosis of missing assertion after (?(?C) that could corrupt a process stack. It also corrects a typo in pcre_study() code that did not have any bad impact probably. -------------------------------------------------------------------------------- ================================================================================ perl-5.22.1-351.fc23 (FEDORA-2016-5d4fc5ecc9) Practical Extraction and Report Language -------------------------------------------------------------------------------- Update Information: Fix manipulating environment variables to align with how glibc handles duplicated environment variables. Perl now uses the first variable listed in the environment array and it removes any subsequent entries of the same-named variable from the array, so that child processes have only one variable instance in its environment. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1309214 - CVE-2016-2381 perl: ambiguous environment variables handling https://bugzilla.redhat.com/show_bug.cgi?id=1309214 -------------------------------------------------------------------------------- ================================================================================ php-smbclient-0.8.0-1.fc23 (FEDORA-2016-c235a571e5) PHP wrapper for libsmbclient -------------------------------------------------------------------------------- Update Information: * Update to 0.8.0 stable (no change since RC1) * Now available on PECL * Add virtual provides (php-pecl-smbclient) -------------------------------------------------------------------------------- ================================================================================ python-django-1.8.10-1.fc23 (FEDORA-2016-040577033c) A high-level Python Web framework -------------------------------------------------------------------------------- Update Information: update to 1.8.10, fixing CVE-2016-2512, CVE-2016-2513 -------------------------------------------------------------------------------- ================================================================================ python-fedmsg-meta-fedora-infrastructure-0.15.10-1.fc23 (FEDORA-2016-67a764d3de) Metadata providers for Fedora Infrastructure's fedmsg deployment -------------------------------------------------------------------------------- Update Information: Fix a bug in handling of pagure messages. ---- Handle new mdapi format. Also, a bugfix for handling copr messages. -------------------------------------------------------------------------------- ================================================================================ python-qutepart-2.2.3-1.20160229gitfdc29c7.fc23 (FEDORA-2016-b38ae34a10) Code editor widget -------------------------------------------------------------------------------- Update Information: recent upstream snapshots as of 20160229 - - qutepart version 2.2.3 with fixes for python3 and Qt5 as defaults - python2 component is now obsolete -------------------------------------------------------------------------------- References: [ 1 ] Bug #1313536 - qutepart-2.2.3 is available https://bugzilla.redhat.com/show_bug.cgi?id=1313536 -------------------------------------------------------------------------------- ================================================================================ rfcdiff-1.43-1.fc23 (FEDORA-2016-92b13f39d2) Compares two internet draft files and outputs the difference -------------------------------------------------------------------------------- Update Information: Changed the output charset from ISO-8859-1 to UTF-8 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1313830 - rfcdiff-1.43 is available https://bugzilla.redhat.com/show_bug.cgi?id=1313830 -------------------------------------------------------------------------------- ================================================================================ sqlite-3.11.0-3.fc23 (FEDORA-2016-9850932586) Library that implements an embeddable SQL database engine -------------------------------------------------------------------------------- Update Information: SQLite rebuilt with FTS3 tokenizer support reenabled. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1312506 - sqlite 3.11.0 upgrade breaks searching in GtkFileChooser https://bugzilla.redhat.com/show_bug.cgi?id=1312506 -------------------------------------------------------------------------------- ================================================================================ squid-3.5.9-8.fc23 (FEDORA-2016-3e4408f350) The Squid proxy caching server -------------------------------------------------------------------------------- Update Information: Security fix for Multiple Denial of Service issues in HTTP Response processing -------------------------------------------------------------------------------- References: [ 1 ] Bug #1311585 - squid: Multiple Denial of Service issues in HTTP Response processing [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1311585 -------------------------------------------------------------------------------- ================================================================================ wireshark-1.12.10-1.fc23 (FEDORA-2016-85424d778a) Network traffic analyzer -------------------------------------------------------------------------------- Update Information: Ver. 1.12.10 -------------------------------------------------------------------------------- -- test mailing list test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe: http://lists.fedoraproject.org/admin/lists/test@xxxxxxxxxxxxxxxxxxxxxxx
