The following Fedora 24 Security updates need testing: Age URL 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-4b55f00d00 samba-4.4.0-0.7.rc4.fc24 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-9d6b6d0689 php-pecl-http-2.5.6-1.fc24 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-cdb5052362 python-tgcaptcha2-0.3.1-1.fc24 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-2982f06845 libotr-4.1.1-1.fc24 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-f0bb0dad51 drupal6-emfield-2.7-1.fc24 The following Fedora 24 Critical Path updates have yet to be approved: Age URL 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-d85d9ad927 anaconda-24.13.1-1.fc24 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-4b55f00d00 samba-4.4.0-0.7.rc4.fc24 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-67f816ae6b iputils-20160308-2.fc24 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-71d6f90d9b nss-3.23.0-1.2.fc24 The following builds have been pushed to Fedora 24 updates-testing 3Depict-0.0.18-6.fc24 OSGi-bundle-ant-task-0.2.0-0.15.svn1242.fc24 anaconda-24.13.1-1.fc24 ardour2-2.8.16-21.fc24 ardour4-4.7.0-2.fc24 check-mk-1.2.6p16-3.fc24 cinnamon-2.8.7-1.fc24 cinnamon-desktop-2.8.1-1.fc24 cinnamon-settings-daemon-2.8.4-1.fc24 cmake-3.5.0-1.fc24 device-mapper-persistent-data-0.6.2-0.1.rc6.fc24 drupal6-ctools-1.15-1.fc24 drupal6-emfield-2.7-1.fc24 drupal6-login_destination-2.13-1.fc24 drupal6-pathauto-2.1-1.fc24 dynaplugz-0.0.0.0-0.4.git20160309.597ce9f.fc24 eclipse-epic-0.6.57-2.fc24 eclipse-mdt-ocl-6.0.2-1.fc24 eclipse-mdt-uml2-5.1.2-1.fc24 eclipse-mpc-1.4.2-1.fc24 eclipse-pdt-3.7.0-1.fc24 eclipse-subclipse-1.10.11-2.fc24 evince-3.18.2-5.fc24 fail2ban-0.9.4-2.fc24 fasd-1.0.1-2.fc24 firebird-2.5.5.26952.0-5.fc24 fleet-commander-admin-0.7.4-1.fc24 geoclue2-2.4.3-1.fc24 gperftools-2.4.91-1.fc24 httrack-3.48.20-5.fc24 i7z-0.27.2-13.20131012git5023138.fc24 ipe-7.2.2-1.fc24 iputils-20160308-2.fc24 libblockdev-1.4-4.fc24 libbytesize-0.4-1.fc24 libfabric-1.2.0-1.fc24 libotr-4.1.1-1.fc24 libvirt-1.3.2-2.fc24 mock-1.2.16-1.fc24 mosquitto-1.4.8-1.fc24 muffin-2.8.5-1.fc24 nemo-2.8.7-1.fc24 nss-3.23.0-1.2.fc24 oggvideotools-0.8-22.fc24 openqa-4.3-19.fc24 perl-Apache-Session-Browseable-1.2-1.fc24 perl-ExtUtils-HasCompiler-0.012-1.fc24 perl-XML-XPath-1.34-1.fc24 php-horde-Horde-Core-2.23.0-1.fc24 php-horde-Horde-Crypt-2.7.1-1.fc24 php-horde-Horde-Form-2.0.13-1.fc24 php-horde-Horde-JavascriptMinify-1.1.3-1.fc24 php-horde-Horde-Mail-Autoconfig-1.0.3-1.fc24 php-horde-Horde-Perms-2.1.7-1.fc24 php-horde-Horde-Prefs-2.7.6-1.fc24 php-horde-horde-lz4-1.0.10-1.fc24 php-pecl-http-2.5.6-1.fc24 php-pecl-yaml-1.2.0-1.fc24 pmix-1.1.3-1.fc24 python-etcd-0.4.3-1.fc24 python-lazyarray-0.2.8-3.fc24 python-netaddr-0.7.18-6.fc24 python-nmrglue-0.5-3.fc24 python-pykalman-0.9.5-9.20140827git2aeb4ad.fc24 python-social-auth-0.2.14-4.fc24 python-tgcaptcha2-0.3.1-1.fc24 python3-cherrypy-5.0.1-2.fc24 qemu-2.5.0-9.fc24 rubygem-benchmark-ips-2.5.0-1.fc24 samba-4.4.0-0.7.rc4.fc24 scl-utils-2.0.1-10.fc24 starplot-0.95.5-19.fc24 traceroute-2.1.0-1.fc24 wine-1.9.5-2.fc24 wine-mono-4.6.0-1.fc24 xfce4-power-manager-1.5.2-6.fc24 Details about builds: ================================================================================ 3Depict-0.0.18-6.fc24 (FEDORA-2016-0267f4bd6d) Valued 3D point cloud visualization and analysis -------------------------------------------------------------------------------- Update Information: Rebuild with gsl 2.1 -------------------------------------------------------------------------------- ================================================================================ OSGi-bundle-ant-task-0.2.0-0.15.svn1242.fc24 (FEDORA-2016-470a0cb3e8) A wrapper around Bnd to allow easy bundle creation from ant builds -------------------------------------------------------------------------------- Update Information: * Fix FTBFS -------------------------------------------------------------------------------- References: [ 1 ] Bug #1307287 - OSGi-bundle-ant-task: FTBFS in rawhide https://bugzilla.redhat.com/show_bug.cgi?id=1307287 -------------------------------------------------------------------------------- ================================================================================ anaconda-24.13.1-1.fc24 (FEDORA-2016-d85d9ad927) Graphical system installer -------------------------------------------------------------------------------- Update Information: Various bugfixes, some translation fixes, some s390x UI fixes, some locale fixes, some CSS fixes, and a few other misc. issues fixed. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1309396 - chrony is not installed during kickstart installation https://bugzilla.redhat.com/show_bug.cgi?id=1309396 [ 2 ] Bug #1271657 - Misleading error on empty repodata: "AttributeError: 'NoneType' object has no attribute 'mountpoints'" https://bugzilla.redhat.com/show_bug.cgi?id=1271657 [ 3 ] Bug #1313098 - liveinst does not work in Wayland (consolehelper) https://bugzilla.redhat.com/show_bug.cgi?id=1313098 [ 4 ] Bug #1313957 - anaconda prefers i686 PAE kernel to x86_64 for x86_64 install if it's available https://bugzilla.redhat.com/show_bug.cgi?id=1313957 -------------------------------------------------------------------------------- ================================================================================ ardour2-2.8.16-21.fc24 (FEDORA-2016-c39013eb70) Digital Audio Workstation -------------------------------------------------------------------------------- Update Information: Fix FTBFS, replace non-free source code with freely licensed code. -------------------------------------------------------------------------------- ================================================================================ ardour4-4.7.0-2.fc24 (FEDORA-2016-d571c1869c) Digital Audio Workstation -------------------------------------------------------------------------------- Update Information: Previously, the code used to identify the CPU contained bugs which among other things broke the detection of the instruction set which a CPU supported on x86 32bit processors. This could cause instructions to be used which weren't supported, which in turn made Ardour crash early during startup. This release contains fixes for identifying the CPU used and its instruction set. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1312551 - [abrt] ardour4: _xgetbv(): ardour-4.6.387 killed by SIGILL https://bugzilla.redhat.com/show_bug.cgi?id=1312551 -------------------------------------------------------------------------------- ================================================================================ check-mk-1.2.6p16-3.fc24 (FEDORA-2016-5b435be6f5) A new general purpose Nagios-plugin for retrieving data -------------------------------------------------------------------------------- Update Information: Make sure the /etc/nagios/auth.serials,htpasswd.users files are not overwritten at package update. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1316086 - check-mk: use %config(noreplace) for /etc/nagios/htpasswd.users https://bugzilla.redhat.com/show_bug.cgi?id=1316086 -------------------------------------------------------------------------------- ================================================================================ cinnamon-2.8.7-1.fc24 (FEDORA-2016-4c2ae51feb) Window management and application launching for GNOME -------------------------------------------------------------------------------- Update Information: release update -------------------------------------------------------------------------------- ================================================================================ cinnamon-desktop-2.8.1-1.fc24 (FEDORA-2016-4c2ae51feb) Shared code among cinnamon-session, nemo, etc -------------------------------------------------------------------------------- Update Information: release update -------------------------------------------------------------------------------- ================================================================================ cinnamon-settings-daemon-2.8.4-1.fc24 (FEDORA-2016-4c2ae51feb) The daemon sharing settings from CINNAMON to GTK+/KDE applications -------------------------------------------------------------------------------- Update Information: release update -------------------------------------------------------------------------------- ================================================================================ cmake-3.5.0-1.fc24 (FEDORA-2016-80e97f9e2e) Cross-platform make system -------------------------------------------------------------------------------- Update Information: Update to 3.5.0 final -------------------------------------------------------------------------------- ================================================================================ device-mapper-persistent-data-0.6.2-0.1.rc6.fc24 (FEDORA-2016-47c027f605) Device-mapper Persistent Data Tools -------------------------------------------------------------------------------- Update Information: New upstream release including new thin_ls command. -------------------------------------------------------------------------------- ================================================================================ drupal6-ctools-1.15-1.fc24 (FEDORA-2016-303efe27be) Primarily a set of APIs and tools to improve the developer experience -------------------------------------------------------------------------------- Update Information: ### 6.x-1.15 This is an incremental bugfix release for ctools, particularly for newer versions of php 5. (5.4+) ctools is now in bug and security only maintenance mode. Any future feature requests should be made in the 7.x or preferably, the 8.x branch. #### Changes since 6.x-1.14: * \#1334894 by mikeytown2: Warning: Invalid argument supplied for foreach() in views_content_views_content_type_render() * \#2599688 by jansete: Strict warning: Declaration of views_content_plugin_display_panel_pane::options_submit() should be compatible with views_plugin_display::options_submit(&$form, &$form_state) * Fix 'Only variables should be passed by reference' error -------------------------------------------------------------------------------- References: [ 1 ] Bug #1293745 - drupal6-ctools-1.15 is available https://bugzilla.redhat.com/show_bug.cgi?id=1293745 -------------------------------------------------------------------------------- ================================================================================ drupal6-emfield-2.7-1.fc24 (FEDORA-2016-f0bb0dad51) An engine for modules to integrate various 3rd party media content providers -------------------------------------------------------------------------------- Update Information: ### 6.x-2.7 Fixes [Embedded Media Field - Moderately Critical - Access Bypass - DRUPAL-SA-CONTRIB-2016-004](https://www.drupal.org/node/2666446) #### Changes since 6.x-2.6: * by dalin: Ensure that width and height are always numbers. * \#1868588 by tangent: URL detection regex does not match hyphens / breaks HTML markup -------------------------------------------------------------------------------- References: [ 1 ] Bug #1306475 - drupal6-emfield-2.7 is available https://bugzilla.redhat.com/show_bug.cgi?id=1306475 -------------------------------------------------------------------------------- ================================================================================ drupal6-login_destination-2.13-1.fc24 (FEDORA-2016-5394a4ba76) Control where users are directed to once they login -------------------------------------------------------------------------------- Update Information: ### 6.x-2.13 #### Changes since 6.x-2.12: NOTE: the upgrade will be seamless - no db schema changes made ( D6 module version does not have its own db tables ) See [#2611674: Number of fixed issues - 9, feeling - priceless! 6.x version issues screenshot](https://www.drupal.org/node/2611674) for a screenshot with all the bugs for D6 finally fixed! This release fixes all known bugs! NOTE2: Added a new setting on login_destination's settings page: "use_drupal_goto". Here is some explanation: - turn on/off the drupal_goto invocation - OFF by default - we need use_drupal_goto == ON, if we want to use absolute urls on login redirect, at least until some better way is found - if we have it ON, it will break modules like content_profile_registration from the content_profile package. It's ok for you to leave it ON if you don't use that module. As always test, and double test. We tried to make it as flexible as we can, giving you control over the drupal_goto usage + sane defaults (its OFF by default). Changes: * \#1508152 by rsvelko: add new setting: "use_drupal_goto" * \#1793540 by stewart.adam, rsvelko: Should check if force_password_change module is enabled when checking if redirection is valid * better function naming: login_destination_apply_redirect -> __login_destination_should_we_redirect * \#1577904 by rsvelko: Correct the onscreen PHP Snippet example rewrote login_destination_redirect_to_path_and_query to make it handle array/string queries and rawurlencode query/path only when needed settings page rearranged a bit: move the destination fieldgroup to become first, and the condtition fieldgroup -> second * better absolute url detection * \#1307478 by chriscohen, rsvelko: Notice: Undefined property: stdClass::$force_password_change in login_destination_apply_redirect() * minor edits like: better README language, stripping CVS keywords, remove trailing whitespace -------------------------------------------------------------------------------- References: [ 1 ] Bug #1289080 - drupal6-login_destination-2.13 is available https://bugzilla.redhat.com/show_bug.cgi?id=1289080 -------------------------------------------------------------------------------- ================================================================================ drupal6-pathauto-2.1-1.fc24 (FEDORA-2016-2c4a6adc8e) Provides a mechanism to automatically generate aliases -------------------------------------------------------------------------------- Update Information: ### 6.x-2.1 #### Changes since 6.x-2.0: * Fixed pathauto_alias_uniquify() did not use pathauto_truncate_utf8(). * \#2423077 by Dave Reid, TuWebO: Fixed wrong parameters passed to truncate_utf8() from pathauto_alias_uniquify(). * \#1899806: Fixed URL segments with empty tokens inbetween separator resulted in duplicated backslashes in Pathauto alias. * \#1565850: Added hook_pathauto_pattern_alter(). Simplify invocations of pathauto_cleanstring() by both accepting $options['langauge'] and $options['langcode']. * Bug #973908: Fix pathauto_cleanstring() lacks language context. * Updated PATHAUTO_PREG_CLASS_UNICODE_WORD_BOUNDARY to match the Drupal 7 value. * \#1003490: Renamed 'Bulk update' tab to 'Bulk generate' to better reflect actual functionality. * \#1574700 by jgSnell, fletchgqc: Clarified transliteration help text means US-ASCII instead of ASCII-96. * \#2174603: Added support for an $options['force'] parameter in pathauto_*_update_alias() callbacks that ignores the $object->path['pathauto'] value and will always perform aliasing. * \#1834666 by greggles: Update README.txt maintainers * \#1796920: Fixed pathauto_action_info() did not define the required 'hooks' property for each action. * \#1189844: Added hook_action_info() support for bulk updating nodes, terms, and users with Views Bulk Operations. * Prevent core bug #600836 (infinite batch errors) if new entities are added while the batch processes are running. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1300492 - drupal6-pathauto-2.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1300492 -------------------------------------------------------------------------------- ================================================================================ dynaplugz-0.0.0.0-0.4.git20160309.597ce9f.fc24 (FEDORA-2016-a2724a7eaa) Dynamic plugin-loading like a boss -------------------------------------------------------------------------------- Update Information: initial rpm-release -------------------------------------------------------------------------------- ================================================================================ eclipse-epic-0.6.57-2.fc24 (FEDORA-2016-a8d3588601) Perl Eclipse plug-in -------------------------------------------------------------------------------- Update Information: Update to latest stable point release. For more info see: http://www.epic- ide.org/updates/ChangeLog -------------------------------------------------------------------------------- ================================================================================ eclipse-mdt-ocl-6.0.2-1.fc24 (FEDORA-2016-8682c83d51) Implementation of the OCL OMG meta-model for Eclipse -------------------------------------------------------------------------------- Update Information: Update to Mars.2 releases of modeling frameworks. -------------------------------------------------------------------------------- ================================================================================ eclipse-mdt-uml2-5.1.2-1.fc24 (FEDORA-2016-8682c83d51) Implementation of the UML2 OMG meta-model for Eclipse -------------------------------------------------------------------------------- Update Information: Update to Mars.2 releases of modeling frameworks. -------------------------------------------------------------------------------- ================================================================================ eclipse-mpc-1.4.2-1.fc24 (FEDORA-2016-3745f13b9a) Eclipse Marketplace Client -------------------------------------------------------------------------------- Update Information: Update to Mars.2 release. -------------------------------------------------------------------------------- ================================================================================ eclipse-pdt-3.7.0-1.fc24 (FEDORA-2016-2d405eb9ad) PHP Development Tools (PDT) Eclipse plug-in -------------------------------------------------------------------------------- Update Information: Update to Mars.2 release. For more information, see: https://wiki.eclipse.org/PDT/NewIn37 -------------------------------------------------------------------------------- ================================================================================ eclipse-subclipse-1.10.11-2.fc24 (FEDORA-2016-c5bb1de657) Subversion Eclipse plugin -------------------------------------------------------------------------------- Update Information: Updates to latest upstream minor release. For details of changes, please see: http://subclipse.tigris.org/subclipse_1.10.x/changes.html -------------------------------------------------------------------------------- ================================================================================ evince-3.18.2-5.fc24 (FEDORA-2016-cf8c54609f) Document viewer -------------------------------------------------------------------------------- Update Information: This update fixes opening of multipage DjVu documents. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1308628 - djvu support doesn't work for names without extension https://bugzilla.redhat.com/show_bug.cgi?id=1308628 -------------------------------------------------------------------------------- ================================================================================ fail2ban-0.9.4-2.fc24 (FEDORA-2016-478f5063bc) Daemon to ban hosts that cause multiple authentication errors -------------------------------------------------------------------------------- Update Information: Update to 0.9.4: Fixes: roundcube-auth jail typo for logpath Fix dnsToIp resolver for fqdn with large list of IPs (gh-1164) filter.d /apache-badbots.conf Updated useragent string regex adding escape for + filter.d/mysqld-auth.conf Updated "Access denied ..." regex for MySQL 5.6 and later (gh-1211, gh-1332) filter.d/sshd.conf Updated "Auth fail" regex for OpenSSH 5.9 and later Treat failed and killed execution of commands identically (only different log messages), which addresses different behavior on different exit codes of dash and bash (gh-1155) Fix jail.conf.5 man's section (gh-1226) Fixed default banaction for allports jails like pam-generic, recidive, etc with new default variable banaction_allports (gh-1216) Fixed fail2ban-regex stops working on invalid (wrong encoded) character for python version < 3.x (gh-1248) Use postfix_log logpath for postfix-rbl jail filters.d/postfix.conf - add 'Sender address rejected: Domain not found' failregex use fail2ban_agent as user-agent in actions badips, blocklist_de, etc (gh-1271) Fix ignoring the sender option by action_mw, action_mwl and action_c_mwl Changed filter.d/asterisk regex for "Call from ..." (few vulnerable now) Removed compression and rotation count from logrotate (inherit them from the global logrotate config) New Features: New interpolation feature for definition config readers - <known/parameter> (means last known init definition of filters or actions with name parameter). This interpolation makes possible to extend a parameters of stock filter or action directly in jail inside jail.local file, without creating a separately filter.d/*.local file. As extension to interpolation %(known/parameter)s, that does not works for filter and action init parameters New actions: nftables-multiport and nftables-allports - filtering using nftables framework. Note: it requires a pre-existing chain for the filtering rule. New filters: openhab - domotic software authentication failure with the rest api and web interface (gh-1223) nginx-limit-req - ban hosts, that were failed through nginx by limit request processing rate (ngx_http_limit_req_module) murmur - ban hosts that repeatedly attempt to connect to murmur/mumble-server with an invalid server password or certificate. haproxy-http-auth - filter to match failed HTTP Authentications against a HAProxy server New jails: murmur - bans TCP and UDP from the bad host on the default murmur port. sshd filter got new failregex to match "maximum authentication attempts exceeded" (introduced in openssh 6.8) Added filter for Mac OS screen sharing (VNC) daemon Enhancements: Do not rotate empty log files Added new date pattern with year after day (e.g. Sun Jan 23 2005 21:59:59) http://bugs.debian.org/798923 Added openSUSE path configuration (Thanks Johannes Weberhofer) Allow to split ignoreip entries by ',' as well as by ' ' (gh-1197) Added a timeout (3 sec) to urlopen within badips.py action (Thanks M. Maraun) Added check against atacker's Googlebot PTR fake records (Thanks Pablo Rodriguez Fernandez) Enhance filter against atacker's Googlebot PTR fake records (gh-1226) Nginx log paths extended (prefixed with "*" wildcard) (gh-1237) Added filter for openhab domotic software authentication failure with the rest api and web interface (gh-1223) Add *_backend options for services to allow distros to set the default backend per service, set default to systemd for Fedora as appropriate Performance improvements while monitoring large number of files (gh-1265). Use associative array (dict) for monitored log files to speed up lookup operations. Thanks @kshetragia Specified that fail2ban is PartOf iptables.service firewalld.service in .service file -- would reload fail2ban if those services are restarted Provides new default fail2ban_version and interpolation variable fail2ban_agent in jail.conf Enhance filter 'postfix' to ban incoming SMTP client with no fqdn hostname, and to support multiple instances of postfix having varying suffix (gh-1331) (Thanks Tom Hendrikx) files/gentoo-initd to use start-stop-daemon to robustify restarting the service -------------------------------------------------------------------------------- References: [ 1 ] Bug #1266512 - Restarting firewalld.service should restart fail2ban.service https://bugzilla.redhat.com/show_bug.cgi?id=1266512 -------------------------------------------------------------------------------- ================================================================================ fasd-1.0.1-2.fc24 (FEDORA-2016-51695c64ac) A command-line productivity booster -------------------------------------------------------------------------------- Update Information: Fasd (pronounced similar to "fast") is a command-line productivity booster. Fasd offers quick access to files and directories for POSIX shells. It is inspired by tools like autojump, z and v. Fasd keeps track of files and directories you have accessed, so that you can quickly reference them in the command line. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1316175 - Review Request: fasd - A command-line productivity booster https://bugzilla.redhat.com/show_bug.cgi?id=1316175 -------------------------------------------------------------------------------- ================================================================================ firebird-2.5.5.26952.0-5.fc24 (FEDORA-2016-988a3db849) SQL relational database management system -------------------------------------------------------------------------------- Update Information: Resolves: rbhz#1307503 building with gcc6 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1307503 - firebird: FTBFS in rawhide https://bugzilla.redhat.com/show_bug.cgi?id=1307503 -------------------------------------------------------------------------------- ================================================================================ fleet-commander-admin-0.7.4-1.fc24 (FEDORA-2016-2b30c6018c) Fleet Commander -------------------------------------------------------------------------------- Update Information: Update package for 0.7.4 release -------------------------------------------------------------------------------- ================================================================================ geoclue2-2.4.3-1.fc24 (FEDORA-2016-7e5fb5ae8d) Geolocation service -------------------------------------------------------------------------------- Update Information: Update to 2.4.3. -------------------------------------------------------------------------------- ================================================================================ gperftools-2.4.91-1.fc24 (FEDORA-2016-d2dc9a4039) Very fast malloc and performance analysis tools -------------------------------------------------------------------------------- Update Information: Update to 2.4.91, which disables dynamic delete by default. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1312462 - tcmalloc does not follow ifunc constraints (leads to SIGSEGV on certain architectures) https://bugzilla.redhat.com/show_bug.cgi?id=1312462 -------------------------------------------------------------------------------- ================================================================================ httrack-3.48.20-5.fc24 (FEDORA-2016-57b3861626) Website copier and offline browser -------------------------------------------------------------------------------- Update Information: Fix FT24BFS -------------------------------------------------------------------------------- References: [ 1 ] Bug #1307626 - httrack: FTBFS in rawhide https://bugzilla.redhat.com/show_bug.cgi?id=1307626 -------------------------------------------------------------------------------- ================================================================================ i7z-0.27.2-13.20131012git5023138.fc24 (FEDORA-2016-fb51f84a82) CLI curses based monitoring tool for Intel Core i7 processors -------------------------------------------------------------------------------- Update Information: - upstream moved to GitHub - fix a segfault for unhandled options - add perfmon and GUI - fix FTBFS in rawhide -------------------------------------------------------------------------------- References: [ 1 ] Bug #1314919 - crash in Print_Information_Processor https://bugzilla.redhat.com/show_bug.cgi?id=1314919 [ 2 ] Bug #1263459 - FTBFS in rawhide - remove obsolete dependency qconf, fix segfaults https://bugzilla.redhat.com/show_bug.cgi?id=1263459 -------------------------------------------------------------------------------- ================================================================================ ipe-7.2.2-1.fc24 (FEDORA-2016-1ff93b96d3) Drawing editor for creating figures in PDF or PostScript formats -------------------------------------------------------------------------------- Update Information: Update to version 7.2.2 -------------------------------------------------------------------------------- ================================================================================ iputils-20160308-2.fc24 (FEDORA-2016-67f816ae6b) Network monitoring tools including ping -------------------------------------------------------------------------------- Update Information: * rhbz#1315975 update iputils to s20160308 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1315975 - update iputils to s20160308 https://bugzilla.redhat.com/show_bug.cgi?id=1315975 -------------------------------------------------------------------------------- ================================================================================ libblockdev-1.4-4.fc24 (FEDORA-2016-41b33e7b89) A library for low-level manipulation with block devices -------------------------------------------------------------------------------- Update Information: Do not try to get object path of NULL in vgreduce (vpodzime) -------------------------------------------------------------------------------- ================================================================================ libbytesize-0.4-1.fc24 (FEDORA-2016-374cc8ca7f) A library for working with sizes in bytes -------------------------------------------------------------------------------- Update Information: Make sure we pass a locale-agnostic string to Decimal() (vpodzime) Add the __init__.py file to python bindings -------------------------------------------------------------------------------- ================================================================================ libfabric-1.2.0-1.fc24 (FEDORA-2016-f2c68f2f97) Open Fabric Interfaces -------------------------------------------------------------------------------- Update Information: v1.2.0, TBD ======================= ## General notes - Added GNI provider - Added PSM2 provider ## GNI provider notes - Initial release ## PSM provider notes - General bug fixes - Support auto progress mode - Support more threading modes - Only set FI_CONTEXT mode if FI_TAGGED or FI_MSG is used - Support Intel Omni-Path Fabric via the psm2-compat library ## PSM2 provider notes - Initial addition ## Sockets provider notes - General bug fixes and code cleanup - Update memory registration to support 32-bit builds and fix build warnings - Initiate conn-msg on the same tx_ctx as the tx operation for scalable ep - Fix av mask calculation for scalable ep - Mask out context-id during connection lookup for scalable ep - Increase buffered receive limit - Ignore FI_INJECT flag for atomic read operation - Return -FI_EINVAL instead of -FI_ENODATA for fi_endpoint for invalid attributes - Set default tag format to FI_TAG_GENERIC - Set src/dest iov len correctly for readv operations - Fix random crashes while closing shared contexts - Fix an out of bound access when large multi-recv limit is specified by user - Reset tag field in CQ entry for send completion - Do not set prov_name in fabric_attr - Validate flags in CQ/Cntr bind operations - Scalability enhancements - Increase mr_key size to 64 bit - Use red-black tree for mr_key lookup ## usNIC provider notes - The usNIC provider does not yet support asynchronous memory registration. Return -FI_EOPNOTSUPP if an event queue is bound to a domain with FI_REG_MR. - Set fi_usnic_info::ui_version correctly in calls to fi_usnic_ops_fabric::getinfo(). - Improve fi_cq_sread performance. - Return -FI_EINVAL from av_open when given invalid paramters. - Fix bug in fi_av_remove that could lead to a seg fault. - Implement fi_av_insertsvc. - Report FI_PROTO_RUDP as protocol for EP_RDM. ## Verbs provider notes - Add support for RDM EPs. Currently only FI_TAGGED capability is supported. RDM and MSG EPs would be reported in seperate domains since they don't share CQs. The RDM enpoint feature is currently experimental and no guarantees are given with regard to its functionality. - Refactor the code into several files to enable adding RDM support. - Consolidate send code paths to improve maintainability. - Fix a bug in fi_getinfo where wild card address was not used when service argument is given. - Fix fi_getinfo to always return -FI_ENODATA in case of failure. - Add support for fi_eq_write. - Other misc bug fixes. v1.1.1, TBD ======================= ## General notes ## PSM provider notes - General bug fixes - Proper termination of the name server thread - Add UUID and PSM epid to debug output - Add environment variable to control psm_ep_close timeout - Code refactoring of AM-based messaging - Check more fields of the hints passed to fi_getinfo - Generate error CQ entries for empty result of recv with FI_SEEK flag - Correctly handle overlapped local buffers in atomics - Handle duplicated addresses in fi_av_insert - Fix the return value of fi_cq_readerr - Call AM progress function only when AM is used - Detect MPI runs and turns off name server thread automatically ## Sockets provider notes - General clean-up and restructuring - Add fallback mechanism for getting source address - Fix fi_getinfo to use user provided capabilities from hints - Fix hostname and port number and added checks in sock_av_insertsym - Add retry for connection timeout - Release av resources in the error path - Remove separate read/write CQ to be consistent with the man page - Increase default connection map size and added environment variable to specify AV, CQ, EQ and connection map size to run large scale tests - Fix FI_PEEK operation to be consistent with the man page - Fix remote write event not to generate CQ event - Fix CSWAP operation to return initial value - Use size_t for min_multi_recv and buffered_len - Set address size correctly in fi_getname/fi_getpeer ## usNIC provider notes - Fix EP_RDM reassembly issue for large messages - Return correct number of read completions on error - Fix EP_RDM and EP_MSG data corruption issue when packets are actually corrupted on the wire - Fix EP_RDM and EP_MSG fi_tx_size_left/fi_rx_size_left functions ## Verbs provider notes - Add more logging for errors - Bug fixes -------------------------------------------------------------------------------- ================================================================================ libotr-4.1.1-1.fc24 (FEDORA-2016-2982f06845) Off-The-Record Messaging library and toolkit -------------------------------------------------------------------------------- Update Information: Updated to 4.1.1 for CVE-2016-2851 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1315247 https://bugzilla.redhat.com/show_bug.cgi?id=1315247 -------------------------------------------------------------------------------- ================================================================================ libvirt-1.3.2-2.fc24 (FEDORA-2016-a8f520b3f6) Library providing a simple virtualization API -------------------------------------------------------------------------------- Update Information: Add fix for RHBZ#1315606. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1315606 - qemu:///session disconnects after 30 seconds https://bugzilla.redhat.com/show_bug.cgi?id=1315606 -------------------------------------------------------------------------------- ================================================================================ mock-1.2.16-1.fc24 (FEDORA-2016-bbb4bfc16f) Builds packages inside chroots -------------------------------------------------------------------------------- Update Information: * Bugfix release * removed the sparc config -------------------------------------------------------------------------------- References: [ 1 ] Bug #1301953 - mock builds fail with nspawn, buildroot missing /bin/su https://bugzilla.redhat.com/show_bug.cgi?id=1301953 [ 2 ] Bug #1311796 - --new-chroot causes incorrect $PATH https://bugzilla.redhat.com/show_bug.cgi?id=1311796 [ 3 ] Bug #1312820 - Lots of WARNING: unable to delete selinux filesystems https://bugzilla.redhat.com/show_bug.cgi?id=1312820 -------------------------------------------------------------------------------- ================================================================================ mosquitto-1.4.8-1.fc24 (FEDORA-2016-7c19d72b6a) An Open Source MQTT v3.1/v3.1.1 Broker -------------------------------------------------------------------------------- Update Information: Update to new upstream version 1.4.8 -------------------------------------------------------------------------------- ================================================================================ muffin-2.8.5-1.fc24 (FEDORA-2016-4c2ae51feb) Window and compositing manager based on Clutter -------------------------------------------------------------------------------- Update Information: release update -------------------------------------------------------------------------------- ================================================================================ nemo-2.8.7-1.fc24 (FEDORA-2016-4c2ae51feb) File manager for Cinnamon -------------------------------------------------------------------------------- Update Information: release update -------------------------------------------------------------------------------- ================================================================================ nss-3.23.0-1.2.fc24 (FEDORA-2016-71d6f90d9b) Network Security Services -------------------------------------------------------------------------------- Update Information: Update the PEM module sources to latest from nss-pem upstream. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1300652 - [PEM] insufficient input validity checking while loading a private key https://bugzilla.redhat.com/show_bug.cgi?id=1300652 -------------------------------------------------------------------------------- ================================================================================ oggvideotools-0.8-22.fc24 (FEDORA-2016-fcc5dc03c5) Toolbox for manipulating Ogg video files -------------------------------------------------------------------------------- Update Information: -------------------------------------------------------------------------------- References: [ 1 ] Bug #1307813 - oggvideotools: FTBFS in rawhide https://bugzilla.redhat.com/show_bug.cgi?id=1307813 -------------------------------------------------------------------------------- ================================================================================ openqa-4.3-19.fc24 (FEDORA-2016-a0be6c11b9) OS-level automated testing framework -------------------------------------------------------------------------------- Update Information: This is a small update which includes the openQA temporary directory in the package, as openQA does not have the rights to create it. -------------------------------------------------------------------------------- ================================================================================ perl-Apache-Session-Browseable-1.2-1.fc24 (FEDORA-2016-4365f725d9) Add index and search methods to Apache::Session -------------------------------------------------------------------------------- Update Information: Current upstream release. -------------------------------------------------------------------------------- ================================================================================ perl-ExtUtils-HasCompiler-0.012-1.fc24 (FEDORA-2016-a7ffad0e85) Check for the presence of a compiler -------------------------------------------------------------------------------- Update Information: New package -------------------------------------------------------------------------------- References: [ 1 ] Bug #1315319 - Review Request: perl-ExtUtils-HasCompiler - Check for the presence of a compiler https://bugzilla.redhat.com/show_bug.cgi?id=1315319 -------------------------------------------------------------------------------- ================================================================================ perl-XML-XPath-1.34-1.fc24 (FEDORA-2016-1ef19d0c9f) XPath parser and evaluator for Perl -------------------------------------------------------------------------------- Update Information: Updated to the latest version -------------------------------------------------------------------------------- References: [ 1 ] Bug #1315909 - perl-XML-XPath-1.34 is available https://bugzilla.redhat.com/show_bug.cgi?id=1315909 -------------------------------------------------------------------------------- ================================================================================ php-horde-Horde-Core-2.23.0-1.fc24 (FEDORA-2016-3ad1c4dce0) Horde Core Framework libraries -------------------------------------------------------------------------------- Update Information: **Horde_Core 2.23.0** * [jan] Add Horde_Core_Auth_Application#listNames(). * [jan] Don't call authusername() hook on administrator names when running CLI scripts. * [jan] Update Greek translation (Limperis Antonis). * [mjr] Fix fatal error with broken EAS clients searching the Outbox. -------------------------------------------------------------------------------- ================================================================================ php-horde-Horde-Crypt-2.7.1-1.fc24 (FEDORA-2016-70f4adf825) Horde Cryptography API -------------------------------------------------------------------------------- Update Information: **Horde_Crypt 2.7.1** * [jan] Update Greek translation (Limperis Antonis). * [jan] Try three times to retrieve public PGP if the keyserver pool contains broken servers. -------------------------------------------------------------------------------- ================================================================================ php-horde-Horde-Form-2.0.13-1.fc24 (FEDORA-2016-544aff73b4) Horde Form API -------------------------------------------------------------------------------- Update Information: **Horde_Form 2.0.13** * [jan] Update Greek translation (Limperis Antonis). * [mjr] Allow non-breaking space to match in a telephone field (Request #14235). -------------------------------------------------------------------------------- ================================================================================ php-horde-Horde-JavascriptMinify-1.1.3-1.fc24 (FEDORA-2016-517d45f21b) Javascript Minification -------------------------------------------------------------------------------- Update Information: **Horde_JavascriptMinify 1.1.3** * [jan] Fix compression with Closure. -------------------------------------------------------------------------------- ================================================================================ php-horde-Horde-Mail-Autoconfig-1.0.3-1.fc24 (FEDORA-2016-7c49204a97) Horde Mail Autoconfiguration -------------------------------------------------------------------------------- Update Information: **Horde_Mail_Autoconfig 1.0.3** * [jan] Mark PHP 7 as supported. -------------------------------------------------------------------------------- ================================================================================ php-horde-Horde-Perms-2.1.7-1.fc24 (FEDORA-2016-a51ad011ad) Horde Permissions System -------------------------------------------------------------------------------- Update Information: **Horde_Perms 2.1.7** * [jan] Mark PHP 7 as supported. -------------------------------------------------------------------------------- ================================================================================ php-horde-Horde-Prefs-2.7.6-1.fc24 (FEDORA-2016-e2d0121109) Horde Preferences API -------------------------------------------------------------------------------- Update Information: **Horde_Prefs 2.7.6** * [jan] Update Greek translation (Limperis Antonis). * [jan] Mark PHP 7 as supported. -------------------------------------------------------------------------------- ================================================================================ php-horde-horde-lz4-1.0.10-1.fc24 (FEDORA-2016-c1df3a526e) Horde LZ4 Compression Extension -------------------------------------------------------------------------------- Update Information: - Update to 1.0.10 (no change) - drop scriptlets (replaced by file triggers in php-pear) -------------------------------------------------------------------------------- ================================================================================ php-pecl-http-2.5.6-1.fc24 (FEDORA-2016-9d6b6d0689) Extended HTTP support -------------------------------------------------------------------------------- Update Information: **Version 2.5.6** * Fix php-bug php#71719: Buffer overflow in HTTP url parsing functions (Mike, rc0r) * Fix gh-issue #28: Possible null pointer dereference in php_http_url_mod() (rc0r) * Fix gh-issue #22: Fix PHP5 config.w32 (Jan Ehrhardt) * Fix gh-issue #20: setSslOptions notice with curl 7.43 (Mike, Vitaliy Demidov) -------------------------------------------------------------------------------- ================================================================================ php-pecl-yaml-1.2.0-1.fc24 (FEDORA-2016-0d601b97d0) Support for YAML 1.1 serialization using the LibYAML library -------------------------------------------------------------------------------- Update Information: This update brings a number of bug fixes, as well as adding an option to disable unsafe deserialisation of the !php/object YAML extension type. Full release notes: https://pecl.php.net/package-info.php?package=yaml&version=1.2.0 -------------------------------------------------------------------------------- ================================================================================ pmix-1.1.3-1.fc24 (FEDORA-2016-f3f274a278) Exascale version of PMI -------------------------------------------------------------------------------- Update Information: The Process Management Interface (PMI) has been used for quite some time as a means of exchanging wireup information needed for interprocess communication. Two versions (PMI-1 and PMI-2) have been released as part of the MPICH effort. While PMI-2 demonstrates better scaling properties than its PMI-1 predecessor, attaining rapid launch and wireup of the roughly 1M processes executing across 100k nodes expected for exascale operations remains challenging. PMI Exascale (PMIx) represents an attempt to resolve these questions by providing an extended version of the PMI standard specifically designed to support clusters up to and including exascale sizes. The overall objective of the project is not to branch the existing pseudo-standard definitions - in fact, PMIx fully supports both of the existing PMI-1 and PMI-2 APIs - but rather to (a) augment and extend those APIs to eliminate some current restrictions that impact scalability, and (b) provide a reference implementation of the PMI-server that demonstrates the desired level of scalability. -------------------------------------------------------------------------------- ================================================================================ python-etcd-0.4.3-1.fc24 (FEDORA-2016-5917b2c8ab) A python client library for etcd -------------------------------------------------------------------------------- Update Information: Initial packaging. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1310796 - Review Request: python-etcd - a python client for etcd https://bugzilla.redhat.com/show_bug.cgi?id=1310796 -------------------------------------------------------------------------------- ================================================================================ python-lazyarray-0.2.8-3.fc24 (FEDORA-2016-0d2e397973) A lazily-evaluated numerical array class -------------------------------------------------------------------------------- Update Information: * Fix build - disable tests - issue filed upstream * Should not affect end users -------------------------------------------------------------------------------- References: [ 1 ] Bug #1307922 - python-lazyarray: FTBFS in rawhide https://bugzilla.redhat.com/show_bug.cgi?id=1307922 -------------------------------------------------------------------------------- ================================================================================ python-netaddr-0.7.18-6.fc24 (FEDORA-2016-1ffba3f7d0) A pure Python network address representation and manipulation library -------------------------------------------------------------------------------- Update Information: Add provides for python2-netaddr (RHBZ#1282129) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1282129 - python-netaddr: nothing provides python2-netaddr https://bugzilla.redhat.com/show_bug.cgi?id=1282129 -------------------------------------------------------------------------------- ================================================================================ python-nmrglue-0.5-3.fc24 (FEDORA-2016-3de505403e) Python module for processing NMR data -------------------------------------------------------------------------------- Update Information: Python module for processing NMR data -------------------------------------------------------------------------------- References: [ 1 ] Bug #1315020 - Review Request: python-nmrglue - Python module for processing NMR data https://bugzilla.redhat.com/show_bug.cgi?id=1315020 -------------------------------------------------------------------------------- ================================================================================ python-pykalman-0.9.5-9.20140827git2aeb4ad.fc24 (FEDORA-2016-0282832886) Kalman Filter, Smoother, and EM algorithm -------------------------------------------------------------------------------- Update Information: * Provide python2 package * update to latest git release and disable tests to fix build (issue filed upstream) * should not affect end users -------------------------------------------------------------------------------- References: [ 1 ] Bug #1307936 - python-pykalman: FTBFS in rawhide https://bugzilla.redhat.com/show_bug.cgi?id=1307936 [ 2 ] Bug #1314539 - python-pykalman - provides python2 subpackage https://bugzilla.redhat.com/show_bug.cgi?id=1314539 -------------------------------------------------------------------------------- ================================================================================ python-social-auth-0.2.14-4.fc24 (FEDORA-2016-3833f88c12) Social auth made simple -------------------------------------------------------------------------------- Update Information: temporarily require some python-* packages instead of python2-* -------------------------------------------------------------------------------- ================================================================================ python-tgcaptcha2-0.3.1-1.fc24 (FEDORA-2016-cdb5052362) TurboGears captcha plugin -------------------------------------------------------------------------------- Update Information: Implemented nonces to prevent replay attack (DWF-2016-89000). -------------------------------------------------------------------------------- References: [ 1 ] Bug #1316083 - tgcaptcha does not have any prevention against replay attacks https://bugzilla.redhat.com/show_bug.cgi?id=1316083 -------------------------------------------------------------------------------- ================================================================================ python3-cherrypy-5.0.1-2.fc24 (FEDORA-2016-6fa3cda4e8) Pythonic, object-oriented web development framework -------------------------------------------------------------------------------- Update Information: Updated to a new upstream version 5.0.1, added 2 patches for CherryPy to build against python 3.5 (>=fedora24), which changed some APIs. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1307958 - python3-cherrypy: FTBFS in rawhide https://bugzilla.redhat.com/show_bug.cgi?id=1307958 [ 2 ] Bug #1292639 - python3-cherrypy-5.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1292639 -------------------------------------------------------------------------------- ================================================================================ qemu-2.5.0-9.fc24 (FEDORA-2016-78106b682d) QEMU is a FAST! processor emulator -------------------------------------------------------------------------------- Update Information: Rebuild for tcmalloc ifunc issues on non x86 arches (see rhbz 1312462) -------------------------------------------------------------------------------- ================================================================================ rubygem-benchmark-ips-2.5.0-1.fc24 (FEDORA-2016-fbb3d19a5c) An iterations per second enhancement to Benchmark -------------------------------------------------------------------------------- Update Information: Updated to upstream -------------------------------------------------------------------------------- References: [ 1 ] Bug #1305669 - Review Request: rubygem-benchmark-ips - An iterations per second enhancement to Benchmark https://bugzilla.redhat.com/show_bug.cgi?id=1305669 -------------------------------------------------------------------------------- ================================================================================ samba-4.4.0-0.7.rc4.fc24 (FEDORA-2016-4b55f00d00) Server and Client software to interoperate with Windows machines -------------------------------------------------------------------------------- Update Information: Update to Samba 4.4.0rc4, fixes CVE-2015-7560 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1315942 - CVE-2015-7560 samba: Incorrect ACL get/set allowed on symlink path [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1315942 -------------------------------------------------------------------------------- ================================================================================ scl-utils-2.0.1-10.fc24 (FEDORA-2016-ff75f9caf4) Utilities for alternative packaging -------------------------------------------------------------------------------- Update Information: * Fix: remove 'scls' from %{_sysconfdir} and %{_localstatedir} * Fix: Can't build metapackage on Fedora 24 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1315051 - Can't build metapackage on Fedora 24 https://bugzilla.redhat.com/show_bug.cgi?id=1315051 [ 2 ] Bug #1198693 - RFE: remove 'scls' from %{_sysconfdir} and %{_localstatedir} https://bugzilla.redhat.com/show_bug.cgi?id=1198693 -------------------------------------------------------------------------------- ================================================================================ starplot-0.95.5-19.fc24 (FEDORA-2016-d984c50264) 3-dimensional perspective star map viewer -------------------------------------------------------------------------------- Update Information: Make it build with GCC 6 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1308152 - starplot: FTBFS in rawhide https://bugzilla.redhat.com/show_bug.cgi?id=1308152 -------------------------------------------------------------------------------- ================================================================================ traceroute-2.1.0-1.fc24 (FEDORA-2016-956885c084) Traces the route taken by packets over an IPv4/IPv6 network -------------------------------------------------------------------------------- Update Information: Update to 2.1.0 -------------------------------------------------------------------------------- ================================================================================ wine-1.9.5-2.fc24 (FEDORA-2016-1e2a9ecba6) A compatibility layer for windows applications -------------------------------------------------------------------------------- Update Information: New version of the Mono engine, with 64-bit support. Beginnings of the WineD3D command stream. Support for effect states in Direct3DX. Drag & drop improvements. Various bug fixes. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1314952 - wine-1.9.5 is available https://bugzilla.redhat.com/show_bug.cgi?id=1314952 -------------------------------------------------------------------------------- ================================================================================ wine-mono-4.6.0-1.fc24 (FEDORA-2016-1e2a9ecba6) Mono library required for Wine -------------------------------------------------------------------------------- Update Information: New version of the Mono engine, with 64-bit support. Beginnings of the WineD3D command stream. Support for effect states in Direct3DX. Drag & drop improvements. Various bug fixes. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1314952 - wine-1.9.5 is available https://bugzilla.redhat.com/show_bug.cgi?id=1314952 -------------------------------------------------------------------------------- ================================================================================ xfce4-power-manager-1.5.2-6.fc24 (FEDORA-2016-712eb3050d) Power management for the Xfce desktop environment -------------------------------------------------------------------------------- Update Information: * Fix slow shutdown when using Xfpm * Adds default config (takes effect when creating new user) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1310871 - Very slow shutdown, it takes 1 minute 30 seconds https://bugzilla.redhat.com/show_bug.cgi?id=1310871 [ 2 ] Bug #1217256 - Shutdown by hardware button does not work in Xfce with default configuration https://bugzilla.redhat.com/show_bug.cgi?id=1217256 -------------------------------------------------------------------------------- -- test mailing list test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe: http://lists.fedoraproject.org/admin/lists/test@xxxxxxxxxxxxxxxxxxxxxxx
