The following Fedora 22 Security updates need testing: Age URL 374 https://bodhi.fedoraproject.org/updates/FEDORA-2015-5878 echoping-6.1-0.beta.r434svn.1.fc22 323 https://bodhi.fedoraproject.org/updates/FEDORA-2015-9185 ceph-deploy-1.5.25-1.fc22 256 https://bodhi.fedoraproject.org/updates/FEDORA-2015-12781 python-kdcproxy-0.3.2-1.fc22 210 https://bodhi.fedoraproject.org/updates/FEDORA-2015-16239 nagios-4.0.8-1.fc22 199 https://bodhi.fedoraproject.org/updates/FEDORA-2015-2d37e7dacf openstack-swift-2.2.0-6.fc22 168 https://bodhi.fedoraproject.org/updates/FEDORA-2015-9039c25f1d miniupnpc-1.9-6.fc22 150 https://bodhi.fedoraproject.org/updates/FEDORA-2015-7dfbe09bb4 libpng-1.6.16-4.fc22 150 https://bodhi.fedoraproject.org/updates/FEDORA-2015-6c07ab1fa6 libpng-1.6.16-5.fc22 132 https://bodhi.fedoraproject.org/updates/FEDORA-2015-3a5cebb105 ImageMagick-6.9.2.7-1.fc22 117 https://bodhi.fedoraproject.org/updates/FEDORA-2015-b9e4c97ff1 sos-3.2-2.fc22 91 https://bodhi.fedoraproject.org/updates/FEDORA-2015-f683150aa0 thttpd-2.25b-37.fc22 79 https://bodhi.fedoraproject.org/updates/FEDORA-2016-4c57c232c0 xulrunner-44.0-1.fc22 67 https://bodhi.fedoraproject.org/updates/FEDORA-2016-560802e52b xdelta-3.0.7-7.fc22 56 https://bodhi.fedoraproject.org/updates/FEDORA-2016-24d134e494 mingw-nsis-2.50-1.fc22 48 https://bodhi.fedoraproject.org/updates/FEDORA-2016-338a7e9925 graphite2-1.3.6-1.fc22 44 https://bodhi.fedoraproject.org/updates/FEDORA-2016-3cbe9ad765 python-pygments-2.1.3-1.fc22 39 https://bodhi.fedoraproject.org/updates/FEDORA-2016-7b40eb9e29 libecap-1.0.0-1.fc22 squid-3.5.10-1.fc22 38 https://bodhi.fedoraproject.org/updates/FEDORA-2016-5f44e89fe0 python-tgcaptcha2-0.3.1-1.fc22 18 https://bodhi.fedoraproject.org/updates/FEDORA-2016-250042b8a6 xstream-1.4.9-1.fc22 12 https://bodhi.fedoraproject.org/updates/FEDORA-2016-7eb5caa94d parallel-20160222-1.fc22 12 https://bodhi.fedoraproject.org/updates/FEDORA-2016-8d4b68e412 imlib2-1.4.8-1.fc22 10 https://bodhi.fedoraproject.org/updates/FEDORA-2016-d19ed2f80d squid-3.5.10-2.fc22 8 https://bodhi.fedoraproject.org/updates/FEDORA-2016-db13edba7c libreswan-3.17-1.fc22 4 https://bodhi.fedoraproject.org/updates/FEDORA-2016-96bfd9e873 libtasn1-4.8-1.fc22 4 https://bodhi.fedoraproject.org/updates/FEDORA-2016-657a4a658e glpi-0.90.3-1.fc22 4 https://bodhi.fedoraproject.org/updates/FEDORA-2016-a028331ebc poppler-0.30.0-4.fc22 4 https://bodhi.fedoraproject.org/updates/FEDORA-2016-6cf17ad0df springframework-amqp-1.3.9-4.fc22 4 https://bodhi.fedoraproject.org/updates/FEDORA-2016-8d983eeb13 drupal7-block_class-2.3-1.fc22 1 https://bodhi.fedoraproject.org/updates/FEDORA-2016-0517fab538 keepassx-0.4.4-1.fc22 1 https://bodhi.fedoraproject.org/updates/FEDORA-2016-3c4e438fc8 mingw-poppler-0.30.0-4.fc22 1 https://bodhi.fedoraproject.org/updates/FEDORA-2016-94582896cd firefox-45.0.2-1.fc22 1 https://bodhi.fedoraproject.org/updates/FEDORA-2016-56f5c3ea3a kernel-4.4.7-200.fc22 1 https://bodhi.fedoraproject.org/updates/FEDORA-2016-59c5e405e3 golang-1.5.4-1.fc22 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-28ff51a3f5 ansible1.9-1.9.6-1.fc22 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-85e9f2e3cd mod_nss-1.0.11-7.fc22 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-fc1cc33e05 gsi-openssh-6.9p1-8.fc22 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-ac1dff014c webkitgtk4-2.12.1-1.fc22 The following Fedora 22 Critical Path updates have yet to be approved: Age URL 249 https://bodhi.fedoraproject.org/updates/FEDORA-2015-13210 yum-3.4.3-508.fc22 168 https://bodhi.fedoraproject.org/updates/FEDORA-2015-2123de044f libgphoto2-2.5.8-1.fc22 150 https://bodhi.fedoraproject.org/updates/FEDORA-2015-6c07ab1fa6 libpng-1.6.16-5.fc22 150 https://bodhi.fedoraproject.org/updates/FEDORA-2015-7dfbe09bb4 libpng-1.6.16-4.fc22 79 https://bodhi.fedoraproject.org/updates/FEDORA-2016-4c57c232c0 xulrunner-44.0-1.fc22 74 https://bodhi.fedoraproject.org/updates/FEDORA-2016-d3fce30d64 mobile-broadband-provider-info-1.20151214-1.fc22 56 https://bodhi.fedoraproject.org/updates/FEDORA-2016-ce419c9cab selinux-policy-3.13.1-128.28.fc22 45 https://bodhi.fedoraproject.org/updates/FEDORA-2016-4d5434d82f parted-3.2-16.fc22 32 https://bodhi.fedoraproject.org/updates/FEDORA-2016-d4e6e32c1c upower-0.99.3-2.fc22 26 https://bodhi.fedoraproject.org/updates/FEDORA-2016-fe22f37fba hwdata-0.287-1.fc22 20 https://bodhi.fedoraproject.org/updates/FEDORA-2016-f5078f60f9 ntfs-3g-2016.2.22-1.fc22 testdisk-7.0-7.fc22 18 https://bodhi.fedoraproject.org/updates/FEDORA-2016-dedd49a5b7 lorax-22.14-1.fc22 12 https://bodhi.fedoraproject.org/updates/FEDORA-2016-8d4b68e412 imlib2-1.4.8-1.fc22 10 https://bodhi.fedoraproject.org/updates/FEDORA-2016-50cc0dbbde wavpack-4.75.2-1.fc22 10 https://bodhi.fedoraproject.org/updates/FEDORA-2016-6d6f111230 elfutils-0.166-1.fc22 8 https://bodhi.fedoraproject.org/updates/FEDORA-2016-1576899f4e gnome-settings-daemon-3.16.5-1.fc22 8 https://bodhi.fedoraproject.org/updates/FEDORA-2016-922ad45d24 gcc-python-plugin-0.14-4.3.fc22 gcc-5.3.1-6.fc22 8 https://bodhi.fedoraproject.org/updates/FEDORA-2016-9097b02af0 vim-7.4.1718-1.fc22 4 https://bodhi.fedoraproject.org/updates/FEDORA-2016-a028331ebc poppler-0.30.0-4.fc22 4 https://bodhi.fedoraproject.org/updates/FEDORA-2016-2cdfd91ad1 webkitgtk3-2.4.11-1.fc22 4 https://bodhi.fedoraproject.org/updates/FEDORA-2016-a18dc43d88 control-center-3.16.4-1.fc22 4 https://bodhi.fedoraproject.org/updates/FEDORA-2016-96bfd9e873 libtasn1-4.8-1.fc22 1 https://bodhi.fedoraproject.org/updates/FEDORA-2016-027faabac4 libreport-2.6.4-2.fc22 abrt-2.6.1-11.fc22 1 https://bodhi.fedoraproject.org/updates/FEDORA-2016-56f5c3ea3a kernel-4.4.7-200.fc22 1 https://bodhi.fedoraproject.org/updates/FEDORA-2016-94582896cd firefox-45.0.2-1.fc22 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-af1f30412b pygtk2-2.24.0-14.fc22 The following builds have been pushed to Fedora 22 updates-testing ansible1.9-1.9.6-1.fc22 gprbuild-2014-7.2.fc22 gsi-openssh-6.9p1-8.fc22 ignuit-2.24.2-1.fc22 libabigail-1.0-0.8.rc4.1.fc22 libwebsockets-1.7.5-1.fc22 mod_nss-1.0.11-7.fc22 php-composer-installers-1.0.25-1.fc22 pygtk2-2.24.0-14.fc22 qsstv-9.1.4-1.fc22 rednotebook-1.12-1.fc22 webkitgtk4-2.12.1-1.fc22 Details about builds: ================================================================================ ansible1.9-1.9.6-1.fc22 (FEDORA-2016-28ff51a3f5) SSH-based configuration management, deployment, and task execution system -------------------------------------------------------------------------------- Update Information: Update to 1.9.6. Fixes bug #1327744 as well as CVE-2016-3096 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1322925 - CVE-2016-3096 ansible: Code execution vulnerability in lxc_container https://bugzilla.redhat.com/show_bug.cgi?id=1322925 -------------------------------------------------------------------------------- ================================================================================ gprbuild-2014-7.2.fc22 (FEDORA-2016-ed05c02ea2) Ada project builder -------------------------------------------------------------------------------- Update Information: This update adds target patterns to make GPRconfig recognize the native GCC on Fedora's secondary architectures. It's not supposed to make any difference on the primary architectures. -------------------------------------------------------------------------------- ================================================================================ gsi-openssh-6.9p1-8.fc22 (FEDORA-2016-fc1cc33e05) An implementation of the SSH protocol with GSI authentication -------------------------------------------------------------------------------- Update Information: Sync with openssh package. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1318201 - CVE-2016-3115 gsi-openssh: openssh: missing sanitisation of input for X11 forwarding [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1318201 -------------------------------------------------------------------------------- ================================================================================ ignuit-2.24.2-1.fc22 (FEDORA-2016-26fea53be3) Memorization aid based on the Leitner flashcard system -------------------------------------------------------------------------------- Update Information: Update to new upstream version 2.24.2 (rhbz#1321385) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1321385 - ignuit-2.24.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=1321385 -------------------------------------------------------------------------------- ================================================================================ libabigail-1.0-0.8.rc4.1.fc22 (FEDORA-2016-b306839053) Set of ABI analysis tools -------------------------------------------------------------------------------- Update Information: Update to upstream 1.0.rc4 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1311105 - False negative when running abipkgdiff against ppc64 packages https://bugzilla.redhat.com/show_bug.cgi?id=1311105 -------------------------------------------------------------------------------- ================================================================================ libwebsockets-1.7.5-1.fc22 (FEDORA-2016-6021e571f5) A lightweight C library for Websockets -------------------------------------------------------------------------------- Update Information: Update licenses -------------------------------------------------------------------------------- ================================================================================ mod_nss-1.0.11-7.fc22 (FEDORA-2016-85e9f2e3cd) SSL/TLS module for the Apache HTTP server -------------------------------------------------------------------------------- Update Information: Security fix for CVE-2016-3099 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1323914 - CVE-2016-3099 mod_nss: Invalid handling of +CIPHER operator [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1323914 -------------------------------------------------------------------------------- ================================================================================ php-composer-installers-1.0.25-1.fc22 (FEDORA-2016-c415d6c762) A multi-framework Composer library installer -------------------------------------------------------------------------------- Update Information: ### v1.0.25 * Revert TYPO3 installer deletion ([#300](https://github.com/composer/installers/pull/300)). ### v1.0.24 * Added ImageCMS installer. * Update Bitrix installer: configuration for setting custom path to directory with kernel. * Remove TYPO3 Extension installers [#281](https://github.com/composer/installers/pull/281). * Added new types in the Kirby installer: kirby-plugin and kirby-field. * Added Mautic installer. * Added new types in the Drupal installer: custom-theme and custom-module. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1326974 - php-composer-installers-1.0.25 is available https://bugzilla.redhat.com/show_bug.cgi?id=1326974 [ 2 ] Bug #1325590 - php-composer-installers-1.0.24 is available https://bugzilla.redhat.com/show_bug.cgi?id=1325590 -------------------------------------------------------------------------------- ================================================================================ pygtk2-2.24.0-14.fc22 (FEDORA-2016-af1f30412b) Python bindings for GTK+ -------------------------------------------------------------------------------- Update Information: Fix Pango objects leaking -------------------------------------------------------------------------------- References: [ 1 ] Bug #1325709 - Old bug - Pango objects leaking https://bugzilla.redhat.com/show_bug.cgi?id=1325709 -------------------------------------------------------------------------------- ================================================================================ qsstv-9.1.4-1.fc22 (FEDORA-2016-36e35c4f49) Qt-based slow-scan TV and fax -------------------------------------------------------------------------------- Update Information: 20160415 QSSTV 9.1.4 * rx image save button was not working ---- 20160410 QSSTV 9.1.3 * fixing compiler error: missing function cleanupcache in release mode 20160409 QSSTV 9.1.2 * implementation of image cache for faster image display in the gallery bug fix ,race condition for RxNotification 20160408 QSSTV 9.1.1 * replaced jpeg2000 library Jasper with openjpeg because some distros won't support Jasper anymore. Jasper has not been maintained for more than 10 years. 20151130 QSSTV 9.0.9 * directories are auto-created if they don't exist * additional CAT command now also works with rigctld 20150930 QSSTV 9.0.8 * fix DRM status update 20150929 QSSTV 9.0.7 * fixed hang on exit -------------------------------------------------------------------------------- References: [ 1 ] Bug #1325618 - qsstv-9.1.3 is available https://bugzilla.redhat.com/show_bug.cgi?id=1325618 -------------------------------------------------------------------------------- ================================================================================ rednotebook-1.12-1.fc22 (FEDORA-2016-0f8753ff2f) Daily journal with calendar, templates and keyword searching -------------------------------------------------------------------------------- Update Information: Update to new upstream version 1.12 -------------------------------------------------------------------------------- ================================================================================ webkitgtk4-2.12.1-1.fc22 (FEDORA-2016-ac1dff014c) GTK+ Web content engine library -------------------------------------------------------------------------------- Update Information: Highlights in 2.12.0: * Enable FTL by default in JavaScriptCore for x86_64. * Network process is now used unconditionally. The shared secondary process model is now the same as using the multiple process model and setting a process limit of 1. * Switch to use overlay scrollbars like all other GTK+ widgets and ensure the behavior is consistent with GTK+ too. * Support for windowless NPAPI plugins with no UI in non X11 platforms. * Enable GSS-Negotiate support when available in libsoup. * Improved general performance by better handling glib main loop sources. * New API to save and restore a WebView session. Highlights in 2.12.1: * Fix spotify player. * Improve themed control elements rendering to better match GTK+ widgets. * Make remote web inspector work again. * Fix several crashes and rendering issues. * Fix several memory leaks. * Fix the build in Linux / PowerPC. * Fix detection of S390X and PPC64 architectures. * Fix the build in glibc-based BSD systems * Translation updates: Brazilian Portuguese. -------------------------------------------------------------------------------- -- test mailing list test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe: http://lists.fedoraproject.org/admin/lists/test@xxxxxxxxxxxxxxxxxxxxxxx
