The following Fedora 23 Security updates need testing: Age URL 180 https://bodhi.fedoraproject.org/updates/FEDORA-2015-16240 nagios-4.0.8-1.fc23 138 https://bodhi.fedoraproject.org/updates/FEDORA-2015-81ded368fe miniupnpc-1.9-6.fc23 111 https://bodhi.fedoraproject.org/updates/FEDORA-2015-27392b3324 jbig2dec-0.12-2.fc23 61 https://bodhi.fedoraproject.org/updates/FEDORA-2015-dd52a54fa1 python-pymongo-3.0.3-1.fc23 61 https://bodhi.fedoraproject.org/updates/FEDORA-2015-06a7c972e8 thttpd-2.25b-37.fc23 50 https://bodhi.fedoraproject.org/updates/FEDORA-2016-a69ee02554 xulrunner-44.0-1.fc23 26 https://bodhi.fedoraproject.org/updates/FEDORA-2016-637618fcd4 mingw-nsis-2.50-1.fc23 15 https://bodhi.fedoraproject.org/updates/FEDORA-2016-3e4408f350 squid-3.5.10-1.fc23 15 https://bodhi.fedoraproject.org/updates/FEDORA-2016-657a1305aa websvn-2.3.3-12.fc23 9 https://bodhi.fedoraproject.org/updates/FEDORA-2016-96379cb8d1 putty-0.67-1.fc23 8 https://bodhi.fedoraproject.org/updates/FEDORA-2016-474c1d8264 php-pecl-http-2.5.6-1.fc23 8 https://bodhi.fedoraproject.org/updates/FEDORA-2016-d7dafbf27f python-tgcaptcha2-0.3.1-1.fc23 6 https://bodhi.fedoraproject.org/updates/FEDORA-2016-0c5838abc5 apache-commons-collections-3.2.2-1.fc23 6 https://bodhi.fedoraproject.org/updates/FEDORA-2016-977d57cf2d proftpd-1.3.5b-1.fc23 3 https://bodhi.fedoraproject.org/updates/FEDORA-2016-332491de28 dropbear-2016.72-1.fc23 2 https://bodhi.fedoraproject.org/updates/FEDORA-2016-b98995ae24 torbrowser-launcher-0.2.4-1.fc23 2 https://bodhi.fedoraproject.org/updates/FEDORA-2016-330bfc0338 gnome-photos-3.18.3-1.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-eacfc58fb9 seamonkey-2.40-1.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-1a7f7ffb58 webkitgtk3-2.4.10-1.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-5d6d75dbea webkitgtk-2.4.10-1.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-fae59061fe libvpx-1.4.0-6.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-7eb48a78dc webkitgtk4-2.10.9-1.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-02ed08bf15 kernel-4.4.6-300.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-372bb57df0 qemu-2.4.1-8.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-6554eff611 git-2.5.5-1.fc23 The following Fedora 23 Critical Path updates have yet to be approved: Age URL 50 https://bodhi.fedoraproject.org/updates/FEDORA-2016-a69ee02554 xulrunner-44.0-1.fc23 14 https://bodhi.fedoraproject.org/updates/FEDORA-2016-c0dd92d1ad pungi-4.0.7-1.fc23 6 https://bodhi.fedoraproject.org/updates/FEDORA-2016-910ddbf4c8 lorax-23.19-1.fc23 2 https://bodhi.fedoraproject.org/updates/FEDORA-2016-82e630d3da xfsprogs-4.5.0-1.fc23 2 https://bodhi.fedoraproject.org/updates/FEDORA-2016-9fdec63144 libimobiledevice-1.2.0-5.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-6f59f6ea1f gnome-settings-daemon-3.18.3-1.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-d4d2546f05 krb5-1.14.1-2.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-02ed08bf15 kernel-4.4.6-300.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-e06b8a4cec shadow-utils-4.2.1-8.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-ec12a9fe2f xorg-x11-server-1.18.2-2.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-2a23524826 dbus-1.10.8-1.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-b9df861e78 selinux-policy-3.13.1-158.11.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-690e884cd8 ca-certificates-2016.2.7-1.0.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-fae59061fe libvpx-1.4.0-6.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-1a7f7ffb58 webkitgtk3-2.4.10-1.fc23 The following builds have been pushed to Fedora 23 updates-testing acpid-2.0.27-1.fc23 ca-certificates-2016.2.7-1.0.fc23 carbon-c-relay-1.10-1.fc23 cifs-utils-6.5-1.fc23 coin-or-Ipopt-3.12.4-10.fc23 consul-0.6.0-0.5.git46499d6.fc23 dbus-1.10.8-1.fc23 docker-1.10.2-8.git0f5ac89.fc23 eclipse-dltk-5.4.0-2.fc23 eclipse-xsd-2.11.0-3.fc23 elementary-1.17.0-1.fc23 emerald-0.8.12.2-1.fc23 epiphany-3.18.5-1.fc23 erlang-rebar-2.6.1-10.fc23 erlang-triq-0-0.1.gitc7306b8.fc23 evas-generic-loaders-1.17.0-1.fc23 fedpkg-1.22-2.fc23 fleet-0.9.0-10.fc23 fusion-icon-0.2.2-1.fc23 ghdl-0.34dev-0.20160317gitf1ddf16.0.fc23 gimp-separate+-0.5.8-16.fc23 git-2.5.5-1.fc23 global-6.5.2-1.fc23 gnome-commander-1.4.8-1.fc23 gnome-settings-daemon-3.18.3-1.fc23 golang-github-codegangsta-cli-1.2.0-9.fc23 golang-github-docker-go-1.5.1-0.2.gitd30aec9.fc23 golang-github-docker-libcontainer-2.1.1-0.6.gitc964368.fc23 golang-github-go-fsnotify-fsnotify-1.2.0-0.4.git96c060f.fc23 golang-github-opencontainers-specs-0.4.0-0.1.git3ce138b.fc23 golang-github-tchap-go-patricia-1.0.1-8.fc23 gtick-0.5.4-1.fc23 ibus-table-1.9.12-1.fc23 imagefactory-1.1.8-1.fc23 imagefactory-plugins-1.1.8-2.fc23 inxi-2.2.35-1.fc23 kernel-4.4.6-300.fc23 krb5-1.14.1-2.fc23 libvirt-1.2.18.2-3.fc23 libvpx-1.4.0-6.fc23 memkind-1.0.0-1.fc23 mlocate-0.26-13.fc23 mozilla-noscript-2.9.0.5-1.fc23 munin-2.0.25-11.fc23 openblas-0.2.16-1.fc23 openvswitch-2.5.0-2.fc23 p7zip-15.14-1.fc23 p7zip-15.14-2.fc23 packagedb-cli-2.12-1.fc23 perl-DateTime-TimeZone-1.96-1.fc23 perl-Test-Time-0.04-2.fc23 php-horde-Horde-Crypt-2.7.2-1.fc23 php-horde-Horde-Service-Weather-2.3.3-1.fc23 php-icewind-smb-1.0.8-1.fc23 php-icewind-streams-0.4.0-1.fc23 php-league-flysystem-1.0.20-1.fc23 php-pecl-mongo-1.6.13-1.fc23 pidgin-2.10.11-17.fc23 pki-core-10.2.6-16.fc23 pngquant-2.6.0-2.fc23 projectM-libvisual-2.0.1-14.fc23 purple-telegram-1.2.6-1.fc23 python-MDAnalysis-0.14.0-2.fc23 python-coverage_pth-0.0.1-2.fc23 python-detox-0.10.0-1.fc23 python-justbases-0.6-1.fc23 python-rjsmin-1.0.12-2.fc23 qbittorrent-3.3.3-11.fc23 qemu-2.4.1-8.fc23 qgis-2.12.1-2.fc23 qtsingleapplication-2.6.1-28.fc23 rb_libtorrent-1.0.9-2.fc23 rear-1.18-1.fc23 rebase-helper-0.7.2-1.fc23 rpkg-1.42-1.fc23 seamonkey-2.40-1.fc23 selinux-policy-3.13.1-158.11.fc23 shadow-utils-4.2.1-8.fc23 tng-1.7.8-3.fc23 tzdata-2016b-1.fc23 virt-manager-1.3.2-2.fc23 webkitgtk-2.4.10-1.fc23 webkitgtk3-2.4.10-1.fc23 webkitgtk4-2.10.9-1.fc23 xboxdrv-0.8.8-2.fc23 xdg-app-0.5.0-1.fc23 xorg-x11-server-1.18.2-2.fc23 yumex-dnf-4.1.6-1.fc23 Details about builds: ================================================================================ acpid-2.0.27-1.fc23 (FEDORA-2016-775b16bc84) ACPI Event Daemon -------------------------------------------------------------------------------- Update Information: This is an minor bugfix update, for details see changelog. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1299109 - acpid-2.0.27 is available https://bugzilla.redhat.com/show_bug.cgi?id=1299109 -------------------------------------------------------------------------------- ================================================================================ ca-certificates-2016.2.7-1.0.fc23 (FEDORA-2016-690e884cd8) The Mozilla CA root certificate bundle -------------------------------------------------------------------------------- Update Information: This is an update to the Mozilla CA certificates list version 2.7, which has been published as part of Mozilla NSS 3.23. As in previous versions of the ca- certificates package, the CA list has been modified to keep several legacy CAs still trusted for compatibility reasons. Please refer to https://fedoraproject.org/wiki/CA-Certificates for details. If you prefer to use the unchanged list provided by Mozilla, and if you accept any compatibility issues it may cause, an administrator may configure the system by executing the "ca-legacy disable" command. Please refer to the manual page of the ca-legacy command for additional details. -------------------------------------------------------------------------------- ================================================================================ carbon-c-relay-1.10-1.fc23 (FEDORA-2016-0e7ade8a14) Enhanced C implementation of Carbon relay, aggregator and rewriter -------------------------------------------------------------------------------- Update Information: Update to upstream 1.10 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1315289 - carbon-c-relay-v1.10 is available https://bugzilla.redhat.com/show_bug.cgi?id=1315289 -------------------------------------------------------------------------------- ================================================================================ cifs-utils-6.5-1.fc23 (FEDORA-2016-ff22c176bb) Utilities for mounting and managing CIFS mounts -------------------------------------------------------------------------------- Update Information: Update to the latest upstream release. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1310911 - cifs-utils-6.5 is available https://bugzilla.redhat.com/show_bug.cgi?id=1310911 -------------------------------------------------------------------------------- ================================================================================ coin-or-Ipopt-3.12.4-10.fc23 (FEDORA-2016-098bfac75b) Interior Point OPTimizer -------------------------------------------------------------------------------- Update Information: Correct HAVE_CONFIG_H dependency due to manual install (#1295290) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1295290 - IpTypes.hpp seems to depend on HAVE_CONFIG_H https://bugzilla.redhat.com/show_bug.cgi?id=1295290 -------------------------------------------------------------------------------- ================================================================================ consul-0.6.0-0.5.git46499d6.fc23 (FEDORA-2016-68fb3f30e9) Tool for service discovery, monitoring and configuration http://www.consul.io -------------------------------------------------------------------------------- Update Information: Spec file polishing ---- Update to 0.6.0 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1318556 - Tracker for consul https://bugzilla.redhat.com/show_bug.cgi?id=1318556 [ 2 ] Bug #1290013 - update consul to 0.6.0 https://bugzilla.redhat.com/show_bug.cgi?id=1290013 -------------------------------------------------------------------------------- ================================================================================ dbus-1.10.8-1.fc23 (FEDORA-2016-2a23524826) D-BUS message bus -------------------------------------------------------------------------------- Update Information: Update to 1.10.8 -------------------------------------------------------------------------------- ================================================================================ docker-1.10.2-8.git0f5ac89.fc23 (FEDORA-2016-41a553b86c) Automates deployment of containerized applications -------------------------------------------------------------------------------- Update Information: docker package runtime depends on docker-forward-journald ---- rebuilt to remove dockerroot user creation ---- rebuilt to remove dockerroot user creation ---- rebuilt to include dss_libdir directory ---- built docker @projectatomic/fedora-1.10.2 commit#86e59a5 ---- rebuilt with seccomp enabled ---- built docker @projectatomic/fedora-1.10.1 commit#6c71d8f ---- built docker @projectatomic/fedora-1.10.1 commit#6c71d8f ---- rebuilt, no change ---- built docker @projectatomic/fedora-1.10.2 commit#0f5ac89 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1289851 - Docker.service does not require docker.socket which can lead to Docker crash when docker.sock is host mounted https://bugzilla.redhat.com/show_bug.cgi?id=1289851 [ 2 ] Bug #1254694 - "man docker-login" incorrectly claims that you can "docker login" to Docker Hub as non-root user https://bugzilla.redhat.com/show_bug.cgi?id=1254694 -------------------------------------------------------------------------------- ================================================================================ eclipse-dltk-5.4.0-2.fc23 (FEDORA-2016-a03331f1af) Dynamic Languages Toolkit (DLTK) Eclipse plug-in -------------------------------------------------------------------------------- Update Information: Update to Mars.2 release. -------------------------------------------------------------------------------- ================================================================================ eclipse-xsd-2.11.0-3.fc23 (FEDORA-2016-15e71fe9e4) XML Schema Definition (XSD) Eclipse plug-in -------------------------------------------------------------------------------- Update Information: Rebuilt for Mars.2 releases. -------------------------------------------------------------------------------- ================================================================================ elementary-1.17.0-1.fc23 (FEDORA-2016-5a87e0fac7) Basic widget set that is easy to use based on EFL -------------------------------------------------------------------------------- Update Information: Upstream update to 1.17.0 -------------------------------------------------------------------------------- ================================================================================ emerald-0.8.12.2-1.fc23 (FEDORA-2016-8925f2673f) Themeable window decorator and compositing manager for Compiz -------------------------------------------------------------------------------- Update Information: - emerald Fix having resize cursor activated for maximized windows. Fix right click near top edge of maximized windows. Add an option to emerald-theme-manager to disable shading when titlebar is scrolled. Add support for a Super Maximize button (toggles fullscreen). Fix some memory leaks. - fusion-icon Fix a crash in some cases caused by an error in DE detection (#1). Acknowledge fusion-icon- panel icon in Qt backend. Some minor fixes. -------------------------------------------------------------------------------- ================================================================================ epiphany-3.18.5-1.fc23 (FEDORA-2016-2fd9b13764) Web browser for GNOME -------------------------------------------------------------------------------- Update Information: Update to 3.18.5: - Maybe fix security popover being clickable when not visible ([#744307](https://bugzilla.gnome.org/show_bug.cgi?id=744307)) - Fix session state being deleted if UI process crashes very early ([#747860](https://bugzilla.gnome.org/show_bug.cgi?id=747860)) - Add workaround to avoid taking new white snapshots for the overview ([#761065](https://bugzilla.gnome.org/show_bug.cgi?id=761065)) - Switch to new tab when opening a page from history ([#762381](https://bugzilla.gnome.org/show_bug.cgi?id=762381)) - Update the label on tabs with the URL when the page has no title - Updated translations -------------------------------------------------------------------------------- ================================================================================ erlang-rebar-2.6.1-10.fc23 (FEDORA-2016-0f44daa849) Erlang Build Tools -------------------------------------------------------------------------------- Update Information: - Fixed tests - Fixed incompatibility with a newest erlang-mustache -------------------------------------------------------------------------------- ================================================================================ erlang-triq-0-0.1.gitc7306b8.fc23 (FEDORA-2016-5741411154) A property-based testing library for Erlang -------------------------------------------------------------------------------- Update Information: * Initial build -------------------------------------------------------------------------------- References: [ 1 ] Bug #1317621 - Review Request: erlang-triq - A property-based testing library for Erlang https://bugzilla.redhat.com/show_bug.cgi?id=1317621 -------------------------------------------------------------------------------- ================================================================================ evas-generic-loaders-1.17.0-1.fc23 (FEDORA-2016-4e71e6ed92) Set of generic loaders for Evas -------------------------------------------------------------------------------- Update Information: Upstream update to 1.17.0 -------------------------------------------------------------------------------- ================================================================================ fedpkg-1.22-2.fc23 (FEDORA-2016-2dd8b71a54) Fedora utility for working with dist-git -------------------------------------------------------------------------------- Update Information: * new support for dist git namespacing * adds `copr-build` command -------------------------------------------------------------------------------- ================================================================================ fleet-0.9.0-10.fc23 (FEDORA-2016-13461f0778) A distributed init system -------------------------------------------------------------------------------- Update Information: Build the fleet on all available archs -------------------------------------------------------------------------------- References: [ 1 ] Bug #1318576 - Tracker for fleet https://bugzilla.redhat.com/show_bug.cgi?id=1318576 -------------------------------------------------------------------------------- ================================================================================ fusion-icon-0.2.2-1.fc23 (FEDORA-2016-8925f2673f) Compiz Fusion panel applet -------------------------------------------------------------------------------- Update Information: - emerald Fix having resize cursor activated for maximized windows. Fix right click near top edge of maximized windows. Add an option to emerald-theme-manager to disable shading when titlebar is scrolled. Add support for a Super Maximize button (toggles fullscreen). Fix some memory leaks. - fusion-icon Fix a crash in some cases caused by an error in DE detection (#1). Acknowledge fusion-icon- panel icon in Qt backend. Some minor fixes. -------------------------------------------------------------------------------- ================================================================================ ghdl-0.34dev-0.20160317gitf1ddf16.0.fc23 (FEDORA-2016-e7adbccb01) A VHDL simulator, using the GCC technology -------------------------------------------------------------------------------- Update Information: - update to 0.34 (git f1ddf16) -------------------------------------------------------------------------------- ================================================================================ gimp-separate+-0.5.8-16.fc23 (FEDORA-2016-840e53a32a) Rudimentary CMYK support for The GIMP -------------------------------------------------------------------------------- Update Information: Updated AppStream metadata file (rhbz#1316299): updated homepage URL and -------------------------------------------------------------------------------- References: [ 1 ] Bug #1316299 - Ship AppStream metadata file https://bugzilla.redhat.com/show_bug.cgi?id=1316299 -------------------------------------------------------------------------------- ================================================================================ git-2.5.5-1.fc23 (FEDORA-2016-6554eff611) Fast Version Control System -------------------------------------------------------------------------------- Update Information: Security fix for CVE-2016-2315, CVE-2016-2324 (by updating to 2.5.5). -------------------------------------------------------------------------------- References: [ 1 ] Bug #1317981 - CVE-2016-2315 CVE-2016-2324 git: path_name() integer truncation and overflow leading to buffer overflow https://bugzilla.redhat.com/show_bug.cgi?id=1317981 -------------------------------------------------------------------------------- ================================================================================ global-6.5.2-1.fc23 (FEDORA-2016-fc757b6ace) Source code tag system -------------------------------------------------------------------------------- Update Information: - Update to 6.5.2 http://lists.gnu.org/archive/html/info- global/2015-12/msg00000.html - global-ctags requires Python3 version of Pygments -------------------------------------------------------------------------------- ================================================================================ gnome-commander-1.4.8-1.fc23 (FEDORA-2016-afa079270b) A nice and fast file manager for the GNOME desktop -------------------------------------------------------------------------------- Update Information: New version 1.4.8 is released. -------------------------------------------------------------------------------- ================================================================================ gnome-settings-daemon-3.18.3-1.fc23 (FEDORA-2016-6f59f6ea1f) The daemon sharing settings from GNOME to GTK+/KDE applications -------------------------------------------------------------------------------- Update Information: This update fixes Wacom tablet buttons not working, as well as fixes to Bluetooth airplane mode handling, and many other crash fixes. -------------------------------------------------------------------------------- ================================================================================ golang-github-codegangsta-cli-1.2.0-9.fc23 (FEDORA-2016-b20ddc8f45) Package for building command line apps in Go -------------------------------------------------------------------------------- Update Information: Update -------------------------------------------------------------------------------- References: [ 1 ] Bug #1248680 - Tracker for golang-github-codegangsta-cli https://bugzilla.redhat.com/show_bug.cgi?id=1248680 -------------------------------------------------------------------------------- ================================================================================ golang-github-docker-go-1.5.1-0.2.gitd30aec9.fc23 (FEDORA-2016-24c77dc8fc) Go packages with small patches autogenerated -------------------------------------------------------------------------------- Update Information: Update ---- New package -------------------------------------------------------------------------------- References: [ 1 ] Bug #1313942 - Review Request: golang-github-docker-go - Go packages with small patches autogenerated https://bugzilla.redhat.com/show_bug.cgi?id=1313942 -------------------------------------------------------------------------------- ================================================================================ golang-github-docker-libcontainer-2.1.1-0.6.gitc964368.fc23 (FEDORA-2016-a8585e0291) Configuration options for containers -------------------------------------------------------------------------------- Update Information: Polish spec file, Patch systemd.Conn methods -------------------------------------------------------------------------------- References: [ 1 ] Bug #1307561 - golang-github-docker-libcontainer: FTBFS in rawhide https://bugzilla.redhat.com/show_bug.cgi?id=1307561 [ 2 ] Bug #1287202 - golang-github-docker-libcontainer FTBFS https://bugzilla.redhat.com/show_bug.cgi?id=1287202 -------------------------------------------------------------------------------- ================================================================================ golang-github-go-fsnotify-fsnotify-1.2.0-0.4.git96c060f.fc23 (FEDORA-2016-cba82d51ae) File system notifications for Go -------------------------------------------------------------------------------- Update Information: Update -------------------------------------------------------------------------------- References: [ 1 ] Bug #1318299 - Tracker for golang-github-go-fsnotify-fsnotify https://bugzilla.redhat.com/show_bug.cgi?id=1318299 -------------------------------------------------------------------------------- ================================================================================ golang-github-opencontainers-specs-0.4.0-0.1.git3ce138b.fc23 (FEDORA-2016-29e362fc67) Open Container Specification -------------------------------------------------------------------------------- Update Information: Update to 0.4.0 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1286185 - Tracker for golang-github-opencontainers-specs https://bugzilla.redhat.com/show_bug.cgi?id=1286185 -------------------------------------------------------------------------------- ================================================================================ golang-github-tchap-go-patricia-1.0.1-8.fc23 (FEDORA-2016-f4781a45aa) A generic patricia trie implemented in Go -------------------------------------------------------------------------------- Update Information: polish the spec file -------------------------------------------------------------------------------- References: [ 1 ] Bug #1318341 - Tracker for golang-github-tchap-go-patricia https://bugzilla.redhat.com/show_bug.cgi?id=1318341 [ 2 ] Bug #1307582 - golang-github-tchap-go-patricia: FTBFS in rawhide https://bugzilla.redhat.com/show_bug.cgi?id=1307582 -------------------------------------------------------------------------------- ================================================================================ gtick-0.5.4-1.fc23 (FEDORA-2016-0d1839f2c6) Metronome application -------------------------------------------------------------------------------- Update Information: Update to upstream version 0.5.4 with translations updates and bugfixes. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1317224 - update 0.5.4 https://bugzilla.redhat.com/show_bug.cgi?id=1317224 [ 2 ] Bug #1157536 - Application icon is too small to be used in the software center https://bugzilla.redhat.com/show_bug.cgi?id=1157536 -------------------------------------------------------------------------------- ================================================================================ ibus-table-1.9.12-1.fc23 (FEDORA-2016-92bc7d819a) The Table engine for IBus platform -------------------------------------------------------------------------------- Update Information: update to 1.9.12; Show the table code in the candidate list when pinyin mode is used -------------------------------------------------------------------------------- References: [ 1 ] Bug #1318109 - [RFE] Please show Wubi table code when in pinyin mode https://bugzilla.redhat.com/show_bug.cgi?id=1318109 -------------------------------------------------------------------------------- ================================================================================ imagefactory-1.1.8-1.fc23 (FEDORA-2016-cc885bb1ff) System image generation tool -------------------------------------------------------------------------------- Update Information: Significant Docker and EC2 updates and various bug fixes. -------------------------------------------------------------------------------- ================================================================================ imagefactory-plugins-1.1.8-2.fc23 (FEDORA-2016-ec36363099) Default plugins for the Image Factory system image generation tool -------------------------------------------------------------------------------- Update Information: Significant updates for Docker and EC2 as well as various bug fixes -------------------------------------------------------------------------------- ================================================================================ inxi-2.2.35-1.fc23 (FEDORA-2016-1994d8ebde) A full featured system information script -------------------------------------------------------------------------------- Update Information: Update to 2.2.35. -------------------------------------------------------------------------------- ================================================================================ kernel-4.4.6-300.fc23 (FEDORA-2016-02ed08bf15) The Linux kernel -------------------------------------------------------------------------------- Update Information: The 4.4.6 update contains a number of important fixes across the tree -------------------------------------------------------------------------------- References: [ 1 ] Bug #1318172 - CVE-2016-3156 kernel: ipv4: denial of service when destroying a network interface https://bugzilla.redhat.com/show_bug.cgi?id=1318172 [ 2 ] Bug #1317383 - CVE-2016-3134 kernel: netfilter: missing bounds check in ipt_entry structure https://bugzilla.redhat.com/show_bug.cgi?id=1317383 [ 3 ] Bug #1317386 - CVE-2016-3135 kernel: netfilter: size overflow in x_tables https://bugzilla.redhat.com/show_bug.cgi?id=1317386 -------------------------------------------------------------------------------- ================================================================================ krb5-1.14.1-2.fc23 (FEDORA-2016-d4d2546f05) The Kerberos network authentication system -------------------------------------------------------------------------------- Update Information: Fix an issue with return codes on `gss_inquire_attrs_for_mech`. This resolves an issue with gss-ntlmssp, and anything else that is interposing but not implementing the corresponding mechglue function. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1317609 - krb5 1.14.1 ate my gss-ntlmssp. https://bugzilla.redhat.com/show_bug.cgi?id=1317609 -------------------------------------------------------------------------------- ================================================================================ libvirt-1.2.18.2-3.fc23 (FEDORA-2016-399269e155) Library providing a simple virtualization API -------------------------------------------------------------------------------- Update Information: * Fix lxc /proc/meminfo virtualization (bz #1300781) * Fix 'permission denied' errors trying to unlink disk images (bz #1289327) * Fix qemu:///session connect race failures (bz #1271183) * driver: log missing modules as INFO, not WARN (bz #1274849) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1300781 - Incorrect memory virtualization in lxc driver https://bugzilla.redhat.com/show_bug.cgi?id=1300781 [ 2 ] Bug #1289327 - failure when deleting disk image: cannot unlink file 'XXX': Permission denied https://bugzilla.redhat.com/show_bug.cgi?id=1289327 [ 3 ] Bug #1271183 - XML-RPC error : Cannot write data: Transport endpoint is not connected https://bugzilla.redhat.com/show_bug.cgi?id=1271183 -------------------------------------------------------------------------------- ================================================================================ libvpx-1.4.0-6.fc23 (FEDORA-2016-fae59061fe) VP8 Video Codec SDK -------------------------------------------------------------------------------- Update Information: Fix CVE-2016-1621 in bundled libwebm code. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1318187 - CVE-2016-1621 libvpx: remote code execution via crafted media file [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1318187 -------------------------------------------------------------------------------- ================================================================================ memkind-1.0.0-1.fc23 (FEDORA-2016-c8af50c48f) User Extensible Heap Manager -------------------------------------------------------------------------------- Update Information: Update memkind source file to 1.0.0 upstream -------------------------------------------------------------------------------- ================================================================================ mlocate-0.26-13.fc23 (FEDORA-2016-dd988b6d40) An utility for finding files by name -------------------------------------------------------------------------------- Update Information: This update will fix some rough edges around systemd integration. mlocate- updatedb.timer unit is started after the package installation. Also, systemd unit wrapping updatedb doesn't declare explicitly Type= option, hence type simple is assumed and systemd will not wait for completion of the service. This should fix the issue when udpatedb was triggered by timer on system boot and updatedb was taking too long and blocking user login. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1282232 - mlocate-updatedb.service doubles time taken to boot https://bugzilla.redhat.com/show_bug.cgi?id=1282232 [ 2 ] Bug #1278587 - [regression] updatedb no longer runs daily, and mlocate-updatedb.service blocks systemctl https://bugzilla.redhat.com/show_bug.cgi?id=1278587 -------------------------------------------------------------------------------- ================================================================================ mozilla-noscript-2.9.0.5-1.fc23 (FEDORA-2016-5f9801eda9) JavaScript white list extension for Mozilla Firefox -------------------------------------------------------------------------------- Update Information: Changes since 2.9.0.4: * [XSS] Improved detection of computed property accessors (thanks Emanuel Bronshtein @e3amn2l for report) * [HTTPS] Fixed httpsDefWhitelist breaking OCSP (thanks al_9x for reporting) * [HTTPS] Fixed httpsDefWhitelist breaking yui.yahooapis.com (thanks Rob Greenberg for reporting * [XSS] Fixed OpenID-related false positive * Restored Nightly compatibility broken by bug 1253016 * Fixed regression in HTTPS enforcing exceptions * [Surrogate] Updated googletag replacement (thanks barbaz) * [Surrogate] Updated ga replacement (thanks barbaz) * [XSS] Improved replacement for dangerous keywords/built-in properties (thanks Emanuel Bronshtein @e3amn2l for report) * [HTTPS] noscript.httpsDefWhitelist option to automatically upgrade to HTTPS sites found in the default whitelist (enabled by default, thanks Mazin Ahmed for reporting) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1318460 - mozilla-noscript-2.9.0.5 is available https://bugzilla.redhat.com/show_bug.cgi?id=1318460 -------------------------------------------------------------------------------- ================================================================================ munin-2.0.25-11.fc23 (FEDORA-2016-b515c26e35) Network-wide graphing framework (grapher/gatherer) -------------------------------------------------------------------------------- Update Information: EL5/6 do not need to install firewalld files BZ# 1312121 - Munin dynamic graph zoom (dynazoom) failing due to Apache config. BZ# 1210767 - At least one file seems corrupt in version 2.0.25-2 and earlier BZ# 1269230 - hddtemp_smartctl fails to parse temperature from output ---- EL5/6 do not need to install firewalld files BZ# 1315810 - postgresql plugin default configuration (contrib) BZ# 1315990 - Please remove unnecessary requirements for munin-node BZ# 1315951 - move /etc/tmpfiles.d/munin.conf to /usr/lib/tmpfiles.d Remove firewalld Require and associated script. EPEL7 does not have them. BZ# 1300379 - Please include firewalld service file for munin-node in RPM package BZ# 1262751 - munin-common should be requires(pre) shadow-utils package Brought forward munin-2.0.26-406c67e ---- BZ# 1262751 - munin-common should be requires(pre) shadow-utils package -------------------------------------------------------------------------------- References: [ 1 ] Bug #1312121 - Munin dynamic graph zoom (dynazoom) failing due to Apache config. https://bugzilla.redhat.com/show_bug.cgi?id=1312121 [ 2 ] Bug #1210767 - At least one file seems corrupt in version 2.0.25-2 and earlier https://bugzilla.redhat.com/show_bug.cgi?id=1210767 [ 3 ] Bug #1269230 - hddtemp_smartctl fails to parse temperature from output https://bugzilla.redhat.com/show_bug.cgi?id=1269230 [ 4 ] Bug #1315810 - postgresql plugin default configuration https://bugzilla.redhat.com/show_bug.cgi?id=1315810 [ 5 ] Bug #1315990 - Please remove unnecessary requirements for munin-node https://bugzilla.redhat.com/show_bug.cgi?id=1315990 [ 6 ] Bug #1315951 - move /etc/tmpfiles.d/munin.conf to /usr/lib/tmpfiles.d https://bugzilla.redhat.com/show_bug.cgi?id=1315951 [ 7 ] Bug #1300379 - Please include firewalld service file for munin-node in RPM package https://bugzilla.redhat.com/show_bug.cgi?id=1300379 [ 8 ] Bug #1262751 - munin-common should be requires(pre) shadow-utils package https://bugzilla.redhat.com/show_bug.cgi?id=1262751 -------------------------------------------------------------------------------- ================================================================================ openblas-0.2.16-1.fc23 (FEDORA-2016-53853b61e3) An optimized BLAS library based on GotoBLAS2 -------------------------------------------------------------------------------- Update Information: Update to 0.2.16, bringing in LAPACK bugfixes and some more optimizations. Full changelog available at https://github.com/xianyi/OpenBLAS/blob/develop/Changelog.txt -------------------------------------------------------------------------------- ================================================================================ openvswitch-2.5.0-2.fc23 (FEDORA-2016-0e300923f9) Open vSwitch daemon/database/utilities -------------------------------------------------------------------------------- Update Information: This update brings openvswitch to the latest stable release 2.5.0, including numerous new features such as connection tracking. For further details see the upstream announcement: http://openvswitch.org/pipermail/announce/2016-February/000081.html -------------------------------------------------------------------------------- ================================================================================ p7zip-15.14-1.fc23 (FEDORA-2016-8ed26c7cd8) Very high compression ratio file archiver -------------------------------------------------------------------------------- Update Information: Update to 15.14 . -------------------------------------------------------------------------------- References: [ 1 ] Bug #1317883 - p7zip-15.14 is available https://bugzilla.redhat.com/show_bug.cgi?id=1317883 -------------------------------------------------------------------------------- ================================================================================ p7zip-15.14-2.fc23 (FEDORA-2016-ee9d844d73) Very high compression ratio file archiver -------------------------------------------------------------------------------- Update Information: Fix non-executable-in-bin for p7zipForFilemanager, also build 7zFM. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1317883 - p7zip-15.14 is available https://bugzilla.redhat.com/show_bug.cgi?id=1317883 -------------------------------------------------------------------------------- ================================================================================ packagedb-cli-2.12-1.fc23 (FEDORA-2016-969c47104d) A CLI for pkgdb -------------------------------------------------------------------------------- Update Information: Update to 2.12 - Improved README for running pkgdb-cli/admin from the sources - Ensure the fedora-review flag has been touched when processing a new package request - Fix creating new packages with monitoring and koschei statuses provided ---- - Update to 2.11 - Fix processing all the pending actions (Till Maas) - Improved py3 support - When processing a request, show the tests performed (Till Maas) - Fix encoding for package description or user that are not only ascii - Improve the checks performed when processing a new package request - Let the users control the limit argument when retrieving all the packages (Ralph Bean) - Add support for pkgdb2's namespacing - Port to openidbaseclient from python-fedora (Ralph Bean) - Show the FAS user's username from their bugzilla email when processing requests (Till Maas) - Include monitoring information if any are provided when creating a package - If there are co-maintainers specified in the new package request, grant them ACLs -------------------------------------------------------------------------------- ================================================================================ perl-DateTime-TimeZone-1.96-1.fc23 (FEDORA-2016-e008a41223) Time zone object base class and factory -------------------------------------------------------------------------------- Update Information: Updated to the latest version -------------------------------------------------------------------------------- References: [ 1 ] Bug #1318069 - perl-DateTime-TimeZone-1.96 is available https://bugzilla.redhat.com/show_bug.cgi?id=1318069 -------------------------------------------------------------------------------- ================================================================================ perl-Test-Time-0.04-2.fc23 (FEDORA-2016-873b289119) Overrides the time() and sleep() core functions for testing -------------------------------------------------------------------------------- Update Information: This package contains the perl module Test::Time . Test::Time can be used to test modules that deal with time. Once you use this module, all references to time and sleep will be internalized. You can set custom time by passing time => number after the use statement. -------------------------------------------------------------------------------- ================================================================================ php-horde-Horde-Crypt-2.7.2-1.fc23 (FEDORA-2016-64f0f111ad) Horde Cryptography API -------------------------------------------------------------------------------- Update Information: **Horde_Crypt 2.7.2** * [jan] Fix throwing exception if verifying a PGP signature failed. ---- **Horde_Crypt 2.7.1** * [jan] Update Greek translation (Limperis Antonis). * [jan] Try three times to retrieve public PGP if the keyserver pool contains broken servers. -------------------------------------------------------------------------------- ================================================================================ php-horde-Horde-Service-Weather-2.3.3-1.fc23 (FEDORA-2016-83da34f44e) Horde Weather Provider -------------------------------------------------------------------------------- Update Information: **Horde_Service_Weather 2.3.3** * [mjr] Fix fatal error related to setting timezone in WWO driver (Bug #14289). -------------------------------------------------------------------------------- ================================================================================ php-icewind-smb-1.0.8-1.fc23 (FEDORA-2016-fd30c9e06c) php wrapper for smbclient and libsmbclient-php -------------------------------------------------------------------------------- Update Information: ** icewind/smb 1.0.8** * Workaround for an upstream bug using fstat and dfs shares --- ** icewind/smb 1.0.7** * only set minumum required streams version --- ** icewind/smb 1.0.6** * Properly handle errors in stream_stat --- ** icewind/smb 1.0.5** * Improved detection and reporting of errors --- **icewin/streams 0.4.0** * Add RetryWrapper to work with remote streams that don't return all the requested data --- **icewin/streams 0.3.0** * Add Path object to wrap a stream in a string-like variable to pass to functions. * Add UrlCallBack wrapper that provides callbacks for fopen, unlink, etc * Add folder support to callback wrapper -------------------------------------------------------------------------------- ================================================================================ php-icewind-streams-0.4.0-1.fc23 (FEDORA-2016-fd30c9e06c) A set of generic stream wrappers -------------------------------------------------------------------------------- Update Information: ** icewind/smb 1.0.8** * Workaround for an upstream bug using fstat and dfs shares --- ** icewind/smb 1.0.7** * only set minumum required streams version --- ** icewind/smb 1.0.6** * Properly handle errors in stream_stat --- ** icewind/smb 1.0.5** * Improved detection and reporting of errors --- **icewin/streams 0.4.0** * Add RetryWrapper to work with remote streams that don't return all the requested data --- **icewin/streams 0.3.0** * Add Path object to wrap a stream in a string-like variable to pass to functions. * Add UrlCallBack wrapper that provides callbacks for fopen, unlink, etc * Add folder support to callback wrapper -------------------------------------------------------------------------------- ================================================================================ php-league-flysystem-1.0.20-1.fc23 (FEDORA-2016-c604b420f3) Filesystem abstraction: Many filesystems, one API -------------------------------------------------------------------------------- Update Information: **Version 1.0.20** * MimeType detection now falls back on extension guessing when the contents is a resource. --- **Version 1.0.19** * [Util::normalizeRelativePath] '.' didn't normalize to '', this is now fixed. ---- **Version 1.0.18** * Revert "Simplified Util::pathinfo, dirname key always exists." -------------------------------------------------------------------------------- ================================================================================ php-pecl-mongo-1.6.13-1.fc23 (FEDORA-2016-d843dc451e) PHP MongoDB database driver -------------------------------------------------------------------------------- Update Information: **Version 1.6.13** * [PHP-1483] - GridFS file storage fails on big endian platform * [PHP-1500] - Socket timeout not applied to initial command cursor query * [PHP-1501] - Rephrase unsupported/corrupt BSON messages * [PHP-1504] - Segfault connecting to authenticated RS after non-auth connections * [PHP-1505] - negative files.length when storing file with size > 2GB in gridfs -------------------------------------------------------------------------------- ================================================================================ pidgin-2.10.11-17.fc23 (FEDORA-2016-1dbc8c2808) A Gtk+ based multiprotocol instant messaging client -------------------------------------------------------------------------------- Update Information: * rhbz#1317905 Don't render smileys in timestamps -------------------------------------------------------------------------------- References: [ 1 ] Bug #1317905 - Smileys in pidgin time-stamps https://bugzilla.redhat.com/show_bug.cgi?id=1317905 -------------------------------------------------------------------------------- ================================================================================ pki-core-10.2.6-16.fc23 (FEDORA-2016-db3d7284a8) Certificate System - PKI Core Components -------------------------------------------------------------------------------- Update Information: PKI TRAC Ticket #2222 - Add missing tomcat-api.jar to javac classpath; modify DNS domainname ---- PKI TRAC Ticket #1714, 456, 1681, 1682, 2040 ---- PKI TRAC Ticket #1700,1702 -------------------------------------------------------------------------------- ================================================================================ pngquant-2.6.0-2.fc23 (FEDORA-2016-e092774ac3) PNG quantization tool for reducing image file size -------------------------------------------------------------------------------- Update Information: Compilation with OpenMP -------------------------------------------------------------------------------- ================================================================================ projectM-libvisual-2.0.1-14.fc23 (FEDORA-2016-0e6a5702da) The projectM visualization plugin for libvisual -------------------------------------------------------------------------------- Update Information: Fix FTBFS (#1239797) and (#1307877) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1239797 - projectM-libvisual: FTBFS in rawhide https://bugzilla.redhat.com/show_bug.cgi?id=1239797 [ 2 ] Bug #1307877 - projectM-libvisual: FTBFS in rawhide https://bugzilla.redhat.com/show_bug.cgi?id=1307877 -------------------------------------------------------------------------------- ================================================================================ purple-telegram-1.2.6-1.fc23 (FEDORA-2016-464a93dcfd) Libpurple protocol plugin for Telegram support -------------------------------------------------------------------------------- Update Information: Include libtgl bugfix "use-after-not-created for photos" -------------------------------------------------------------------------------- References: [ 1 ] Bug #1296158 - [abrt] pidgin: tree_insert_peer_by_name(): pidgin killed by SIGABRT https://bugzilla.redhat.com/show_bug.cgi?id=1296158 [ 2 ] Bug #1317105 - purple-telegram-v1.2.6 is available https://bugzilla.redhat.com/show_bug.cgi?id=1317105 -------------------------------------------------------------------------------- ================================================================================ python-MDAnalysis-0.14.0-2.fc23 (FEDORA-2016-208b886ecc) Analyze and manipulate molecular dynamics trajectories -------------------------------------------------------------------------------- Update Information: MDAnalysis is an object-oriented Python library to analyze trajectories from molecular dynamics (MD) simulations in many popular formats. It can write most of these formats, too, together with atom selections suitable for visualization or native analysis tools. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1189015 - Review Request: python-MDAnalysis - Analyze and manipulate molecular dynamics trajectories https://bugzilla.redhat.com/show_bug.cgi?id=1189015 -------------------------------------------------------------------------------- ================================================================================ python-coverage_pth-0.0.1-2.fc23 (FEDORA-2016-1ea4c96a56) Coverage PTH file to enable coverage at the virtualenv level -------------------------------------------------------------------------------- Update Information: Coverage PTH file to enable coverage at the virtualenv level -------------------------------------------------------------------------------- References: [ 1 ] Bug #1317131 - Review Request: python-coverage_pth - Coverage PTH file to enable coverage at the virtualenv level https://bugzilla.redhat.com/show_bug.cgi?id=1317131 -------------------------------------------------------------------------------- ================================================================================ python-detox-0.10.0-1.fc23 (FEDORA-2016-542479c59a) Distributing activities of the tox tool -------------------------------------------------------------------------------- Update Information: Initial packaging. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1318328 - Review Request: python-detox - Distributing activities of the tox tool https://bugzilla.redhat.com/show_bug.cgi?id=1318328 -------------------------------------------------------------------------------- ================================================================================ python-justbases-0.6-1.fc23 (FEDORA-2016-977faaef8b) A small library for precise conversion between arbitrary bases -------------------------------------------------------------------------------- Update Information: Initial Fedora package of reasonably mature upstream. -------------------------------------------------------------------------------- ================================================================================ python-rjsmin-1.0.12-2.fc23 (FEDORA-2016-1faa4ea804) Javascript Minifier -------------------------------------------------------------------------------- Update Information: initial package (rhbz#1312350) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1312350 - Review Request: python-rjsmin - Javascript Minifier https://bugzilla.redhat.com/show_bug.cgi?id=1312350 -------------------------------------------------------------------------------- ================================================================================ qbittorrent-3.3.3-11.fc23 (FEDORA-2016-98c3d37964) A Bittorrent Client -------------------------------------------------------------------------------- Update Information: Fix multiple bugs in those packages -------------------------------------------------------------------------------- References: [ 1 ] Bug #1294336 - Headless qbittorrent has gui as prerequisite https://bugzilla.redhat.com/show_bug.cgi?id=1294336 [ 2 ] Bug #1301942 - rb_libtorrent-1.0.9 is available https://bugzilla.redhat.com/show_bug.cgi?id=1301942 [ 3 ] Bug #1317676 - rb_libtorrent Python 3 binding is missing a library https://bugzilla.redhat.com/show_bug.cgi?id=1317676 -------------------------------------------------------------------------------- ================================================================================ qemu-2.4.1-8.fc23 (FEDORA-2016-372bb57df0) QEMU is a FAST! processor emulator -------------------------------------------------------------------------------- Update Information: * CVE-2016-2538: Integer overflow in usb module (bz #1305815) * CVE-2016-2841: ne2000: infinite loop (bz #1304047) * CVE-2016-2857: net: out of bounds read (bz #1309564) * CVE-2016-2392: usb: null pointer dereference (bz #1307115) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1303120 - CVE-2016-2538 Qemu: usb: integer overflow in remote NDIS control message handling https://bugzilla.redhat.com/show_bug.cgi?id=1303120 [ 2 ] Bug #1303106 - CVE-2016-2841 Qemu: net: ne2000: infinite loop in ne2000_receive https://bugzilla.redhat.com/show_bug.cgi?id=1303106 [ 3 ] Bug #1296567 - CVE-2016-2857 Qemu: net: out of bounds read in net_checksum_calculate() https://bugzilla.redhat.com/show_bug.cgi?id=1296567 [ 4 ] Bug #1302299 - CVE-2016-2392 Qemu: usb: null pointer dereference in remote NDIS control message handling https://bugzilla.redhat.com/show_bug.cgi?id=1302299 -------------------------------------------------------------------------------- ================================================================================ qgis-2.12.1-2.fc23 (FEDORA-2016-a70a0f18f2) A user friendly Open Source Geographic Information System -------------------------------------------------------------------------------- Update Information: Some libraries were not scanned for their dependencies, which could lead to situations where libgsl was not installed and the georeferencer plug-in would therefore refuse to work. -------------------------------------------------------------------------------- ================================================================================ qtsingleapplication-2.6.1-28.fc23 (FEDORA-2016-98c3d37964) Qt library to start applications only once per user -------------------------------------------------------------------------------- Update Information: Fix multiple bugs in those packages -------------------------------------------------------------------------------- References: [ 1 ] Bug #1294336 - Headless qbittorrent has gui as prerequisite https://bugzilla.redhat.com/show_bug.cgi?id=1294336 [ 2 ] Bug #1301942 - rb_libtorrent-1.0.9 is available https://bugzilla.redhat.com/show_bug.cgi?id=1301942 [ 3 ] Bug #1317676 - rb_libtorrent Python 3 binding is missing a library https://bugzilla.redhat.com/show_bug.cgi?id=1317676 -------------------------------------------------------------------------------- ================================================================================ rb_libtorrent-1.0.9-2.fc23 (FEDORA-2016-98c3d37964) A C++ BitTorrent library aiming to be the best alternative -------------------------------------------------------------------------------- Update Information: Fix multiple bugs in those packages -------------------------------------------------------------------------------- References: [ 1 ] Bug #1294336 - Headless qbittorrent has gui as prerequisite https://bugzilla.redhat.com/show_bug.cgi?id=1294336 [ 2 ] Bug #1301942 - rb_libtorrent-1.0.9 is available https://bugzilla.redhat.com/show_bug.cgi?id=1301942 [ 3 ] Bug #1317676 - rb_libtorrent Python 3 binding is missing a library https://bugzilla.redhat.com/show_bug.cgi?id=1317676 -------------------------------------------------------------------------------- ================================================================================ rear-1.18-1.fc23 (FEDORA-2016-f920cd74e2) Relax-and-Recover is a Linux disaster recovery and system migration tool -------------------------------------------------------------------------------- Update Information: For a changelog see the rear-release-notes.txt file. -------------------------------------------------------------------------------- ================================================================================ rebase-helper-0.7.2-1.fc23 (FEDORA-2016-68189aaafe) The tool which helps you with rebase package -------------------------------------------------------------------------------- Update Information: New upstream release 0.7.2 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1318134 - rebase-helper-0.7.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=1318134 -------------------------------------------------------------------------------- ================================================================================ rpkg-1.42-1.fc23 (FEDORA-2016-2dd8b71a54) Utility for interacting with rpm+git packaging systems -------------------------------------------------------------------------------- Update Information: * new support for dist git namespacing * adds `copr-build` command -------------------------------------------------------------------------------- ================================================================================ seamonkey-2.40-1.fc23 (FEDORA-2016-eacfc58fb9) Web browser, e-mail, news, IRC client, HTML editor -------------------------------------------------------------------------------- Update Information: Update to 2.40 Fixes various security issues, see http://www.mozilla.org/security/known-vulnerabilities/seamonkey.html for more info. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1318592 - seamonkey: 2.40 version release https://bugzilla.redhat.com/show_bug.cgi?id=1318592 -------------------------------------------------------------------------------- ================================================================================ selinux-policy-3.13.1-158.11.fc23 (FEDORA-2016-b9df861e78) SELinux policy configuration -------------------------------------------------------------------------------- Update Information: More info: http://koji.fedoraproject.org/koji/buildinfo?buildID=745724 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1309604 - SELinux is preventing systemctl from using the 'setrlimit' accesses on a process. https://bugzilla.redhat.com/show_bug.cgi?id=1309604 [ 2 ] Bug #1314972 - SELinux is preventing snapperd from 'mounton' accesses on the directory /.snapshots/1/snapshot. https://bugzilla.redhat.com/show_bug.cgi?id=1314972 -------------------------------------------------------------------------------- ================================================================================ shadow-utils-4.2.1-8.fc23 (FEDORA-2016-e06b8a4cec) Utilities for managing accounts and shadow password files -------------------------------------------------------------------------------- Update Information: Fix userdel regression when /etc/subuid was introduced. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1315864 - "userdel --force" does not delete user if he is logged in https://bugzilla.redhat.com/show_bug.cgi?id=1315864 -------------------------------------------------------------------------------- ================================================================================ tng-1.7.8-3.fc23 (FEDORA-2016-d5397411e9) Trajectory Next Generation binary format manipulation library -------------------------------------------------------------------------------- Update Information: TRAJNG (Trajectory next generation) is a program library for handling molecular dynamics (MD) trajectories. It can store coordinates, and optionally velocities and the H-matrix. Coordinates and velocities are stored with user-specified precision. In addition, program specific information (text strings) can optionally be stored in the beginning of each file. Atomic labels can also optionally be stored once in the beginning of the file. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1292040 - Review Request: tng - Trajectory Next Generation binary format manipulation library https://bugzilla.redhat.com/show_bug.cgi?id=1292040 -------------------------------------------------------------------------------- ================================================================================ tzdata-2016b-1.fc23 (FEDORA-2016-d146ad9214) Timezone data -------------------------------------------------------------------------------- Update Information: - Rebase to 2016b - New zones Europe/Astrakhan and Europe/Ulyanovsk for Astrakhan and Ulyanovsk Oblasts, Russia, both of which will switch from +03 to +04 on 2016-03-27 at 02:00 local time. They need distinct zones since their post-1970 histories disagree. New zone Asia/Barnaul for Altai Krai and Altai Republic, Russia, which will switch from +06 to +07 on the same date and local time. The Astrakhan change is already official; the others have passed the first reading in the State Duma and are extremely likely. Also, Asia/Sakhalin moves from +10 to +11 on 2016-03-27 at 02:00. - As a trial of a new system that needs less information to be made up, the new zones use numeric time zone abbreviations like "+04" instead of invented abbreviations like "ASTT". - Haiti will not observe DST in 2016. - Palestine's spring- forward transition on 2016-03-26 is at 01:00, not 00:00. Guess future transitions will be March's last Saturday at 01:00, not March's last Friday at 24:00. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1317720 - tzdata-2016b is available https://bugzilla.redhat.com/show_bug.cgi?id=1317720 -------------------------------------------------------------------------------- ================================================================================ virt-manager-1.3.2-2.fc23 (FEDORA-2016-edb0c8d5df) Desktop tool for managing virtual machines via libvirt -------------------------------------------------------------------------------- Update Information: * Fix screenshot on F24 rawhide (bz #1297988) * Fix URL installs when content- length header missing (bz #1297900) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1297988 - Taking screenshot in current Rawhide fails: "must be convertible to a buffer, not _ResultTuple" https://bugzilla.redhat.com/show_bug.cgi?id=1297988 [ 2 ] Bug #1297900 - virt-install python urlfetcher.py error: http://URL/images/pxeboot/vmlinuz: 'int' object has no attribute 'isdigit' https://bugzilla.redhat.com/show_bug.cgi?id=1297900 -------------------------------------------------------------------------------- ================================================================================ webkitgtk-2.4.10-1.fc23 (FEDORA-2016-5d6d75dbea) GTK+ Web content engine library -------------------------------------------------------------------------------- Update Information: This update addresses the following vulnerabilities: * [CVE-2015-1120](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1120) * [CVE-2015-1076](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1076) * [CVE-2015-1071](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1071) * [CVE-2015-1081](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1081) * [CVE-2015-1122](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1122) * [CVE-2015-1155](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1155) * [CVE-2014-1748](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1748) * [CVE-2015-3752](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3752) * [CVE-2015-5809](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5809) * [CVE-2015-5928](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5928) * [CVE-2015-3749](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3749) * [CVE-2015-3659](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3659) * [CVE-2015-3748](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3748) * [CVE-2015-3743](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3743) * [CVE-2015-3731](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3731) * [CVE-2015-3745](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3745) * [CVE-2015-5822](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5822) * [CVE-2015-3658](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3658) * [CVE-2015-3741](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3741) * [CVE-2015-3727](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3727) * [CVE-2015-5801](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5801) * [CVE-2015-5788](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5788) * [CVE-2015-3747](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3747) * [CVE-2015-5794](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5794) * [CVE-2015-1127](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1127) * [CVE-2015-1153](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1153) * [CVE-2015-1083](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1083) Additional fixes: * Fix crashes on PowerPC 64. * Fix the build on PowerPC 32. * Add ARM64 build support. Translation updates * German * Spanish * French * Italian * Korean * Brazilian Portuguese * Russian * Chinese. -------------------------------------------------------------------------------- ================================================================================ webkitgtk3-2.4.10-1.fc23 (FEDORA-2016-1a7f7ffb58) GTK+ Web content engine library -------------------------------------------------------------------------------- Update Information: This update addresses the following vulnerabilities: * [CVE-2015-1120](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1120) * [CVE-2015-1076](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1076) * [CVE-2015-1071](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1071) * [CVE-2015-1081](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1081) * [CVE-2015-1122](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1122) * [CVE-2015-1155](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1155) * [CVE-2014-1748](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1748) * [CVE-2015-3752](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3752) * [CVE-2015-5809](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5809) * [CVE-2015-5928](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5928) * [CVE-2015-3749](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3749) * [CVE-2015-3659](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3659) * [CVE-2015-3748](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3748) * [CVE-2015-3743](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3743) * [CVE-2015-3731](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3731) * [CVE-2015-3745](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3745) * [CVE-2015-5822](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5822) * [CVE-2015-3658](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3658) * [CVE-2015-3741](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3741) * [CVE-2015-3727](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3727) * [CVE-2015-5801](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5801) * [CVE-2015-5788](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5788) * [CVE-2015-3747](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3747) * [CVE-2015-5794](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5794) * [CVE-2015-1127](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1127) * [CVE-2015-1153](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1153) * [CVE-2015-1083](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1083) Additional fixes: * Fix rendering of form controls and scrollbars with GTK+ >= 3.19 * Fix crashes on PowerPC 64. * Fix the build on PowerPC 32. * Add ARM64 build support. Translation updates * German * Spanish * French * Italian * Korean * Brazilian Portuguese * Russian * Chinese. -------------------------------------------------------------------------------- ================================================================================ webkitgtk4-2.10.9-1.fc23 (FEDORA-2016-7eb48a78dc) GTK+ Web content engine library -------------------------------------------------------------------------------- Update Information: This update together with the previous release brings the following fixes * Security fixes: CVE-2016-1726 * Limit the number of tiles according to the visible area. This was causing a huge memory consumption with some websites. * Fix rendering of form controls and scrollbars with GTK+ >= 3.19. * Fix HTTP authentication dialog rendering when accelerated compositing mode is enabled. * Fix rendering artifacts when using a web view background color. * Fix a crash when creating a WebKitWebView without providing a WebKitWebContext. * Fix the build with musl libc library. * Fix the build with clang-3.8. * Fix several crashes and rendering issues. -------------------------------------------------------------------------------- ================================================================================ xboxdrv-0.8.8-2.fc23 (FEDORA-2016-72535e381c) Userspace Xbox/Xbox360 Gamepad Driver for Linux -------------------------------------------------------------------------------- Update Information: - Made xboxdrv.conf file and moved into /etc -------------------------------------------------------------------------------- References: [ 1 ] Bug #1247744 - xboxdrv systemd unit should include -c /etc/xboxdrv https://bugzilla.redhat.com/show_bug.cgi?id=1247744 -------------------------------------------------------------------------------- ================================================================================ xdg-app-0.5.0-1.fc23 (FEDORA-2016-c2100c56c9) Application deployment framework for desktop apps -------------------------------------------------------------------------------- Update Information: Update to 0.5.0 -------------------------------------------------------------------------------- ================================================================================ xorg-x11-server-1.18.2-2.fc23 (FEDORA-2016-ec12a9fe2f) X.Org X11 X server -------------------------------------------------------------------------------- Update Information: Fix red tint artifacts in glamor, performance problems in plasma, and some xf86vidmode log spam. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1318545 - xorg-x11-server-1.18.2 - GetModeLine log spam https://bugzilla.redhat.com/show_bug.cgi?id=1318545 [ 2 ] Bug #1317145 - xorg-x11-server 1.18.2 freezes machine https://bugzilla.redhat.com/show_bug.cgi?id=1317145 -------------------------------------------------------------------------------- ================================================================================ yumex-dnf-4.1.6-1.fc23 (FEDORA-2016-2e89a93119) Yum Extender graphical package management tool -------------------------------------------------------------------------------- Update Information: ###Update to 4.1.6 * always return 0 as 00 (hex) in color code * workaround for changes in Gtk 3.19.x * fix problem with color to hex convertion * Cleanup old instonly packages is enabled by default * fix possible traceback * don't use deprecated GObject.SIGNAL_RUN_FIRST -------------------------------------------------------------------------------- References: [ 1 ] Bug #1294377 - yumex-dnf doesn't open its main window (TypeError: %X format: an integer is required, not float) https://bugzilla.redhat.com/show_bug.cgi?id=1294377 [ 2 ] Bug #1316624 - [abrt] yumex-dnf: misc.py:114:rgb_to_hex:TypeError: %X format: an integer is required, not float https://bugzilla.redhat.com/show_bug.cgi?id=1316624 [ 3 ] Bug #1279992 - [abrt] yumex-dnf: dbus_status.py:197:error_notify:GLib.Error: g-dbus-error-quark: GDBus.Error:org.freedesktop.DBus.Error.ServiceUnknown: The name org.freedesktop.Notifications was not provided by any .service files (2) https://bugzilla.redhat.com/show_bug.cgi?id=1279992 [ 4 ] Bug #1289824 - yumex-dnf will not start https://bugzilla.redhat.com/show_bug.cgi?id=1289824 [ 5 ] Bug #1253630 - [abrt] yumex-dnf: widgets.py:307:_is_fedora_pkg:AttributeError: 'NoneType' object has no attribute 'repository' https://bugzilla.redhat.com/show_bug.cgi?id=1253630 -------------------------------------------------------------------------------- -- test mailing list test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe: http://lists.fedoraproject.org/admin/lists/test@xxxxxxxxxxxxxxxxxxxxxxx