The following Fedora 23 Security updates need testing: Age URL 230 https://bodhi.fedoraproject.org/updates/FEDORA-2015-16240 nagios-4.0.8-1.fc23 187 https://bodhi.fedoraproject.org/updates/FEDORA-2015-81ded368fe miniupnpc-1.9-6.fc23 160 https://bodhi.fedoraproject.org/updates/FEDORA-2015-27392b3324 jbig2dec-0.12-2.fc23 111 https://bodhi.fedoraproject.org/updates/FEDORA-2015-dd52a54fa1 python-pymongo-3.0.3-1.fc23 110 https://bodhi.fedoraproject.org/updates/FEDORA-2015-06a7c972e8 thttpd-2.25b-37.fc23 76 https://bodhi.fedoraproject.org/updates/FEDORA-2016-637618fcd4 mingw-nsis-2.50-1.fc23 30 https://bodhi.fedoraproject.org/updates/FEDORA-2016-b8f91621c7 optipng-0.7.6-1.fc23 13 https://bodhi.fedoraproject.org/updates/FEDORA-2016-7c48036d73 community-mysql-5.6.30-1.fc23 8 https://bodhi.fedoraproject.org/updates/FEDORA-2016-5733ad20f5 pgpdump-0.30-1.fc23 5 https://bodhi.fedoraproject.org/updates/FEDORA-2016-f2aae0dbc5 botan-1.10.13-1.fc23 4 https://bodhi.fedoraproject.org/updates/FEDORA-2016-5b2eb0bf9c ntp-4.2.6p5-40.fc23 2 https://bodhi.fedoraproject.org/updates/FEDORA-2016-78ad11154f ocaml-4.02.2-5.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-6f479decc6 owncloud-8.2.4-1.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-7edf033fd8 squid-3.5.10-3.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-7d900003e6 kernel-4.4.9-300.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-f2e2b178ea jackson-dataformat-xml-2.5.0-3.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-ff070e8faa imlib2-1.4.9-1.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-609627f8f5 ioprocess-0.15.1-1.fc23 The following Fedora 23 Critical Path updates have yet to be approved: Age URL 17 https://bodhi.fedoraproject.org/updates/FEDORA-2016-88778482ea lorax-23.21-1.fc23 7 https://bodhi.fedoraproject.org/updates/FEDORA-2016-0a2ca2016e xulrunner-44.0-6.fc23 6 https://bodhi.fedoraproject.org/updates/FEDORA-2016-afa56613ca lxsession-0.5.2-9.fc23 6 https://bodhi.fedoraproject.org/updates/FEDORA-2016-5587c0678e phonon-4.9.0-2.fc23 phonon-backend-gstreamer-4.9.0-1.fc23 2 https://bodhi.fedoraproject.org/updates/FEDORA-2016-035c5cc546 taglib-1.11-1.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-66b78d4812 pulseaudio-7.1-1.fc23.1 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-ff070e8faa imlib2-1.4.9-1.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-edcdaedcc0 livecd-tools-23.3-1.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-7d900003e6 kernel-4.4.9-300.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-b23268e0fc xdg-utils-1.1.1-4.fc23 The following builds have been pushed to Fedora 23 updates-testing booth-1.0-2.eb4256a.git.fc23 geomorph-0.60.1-9.fc23 git-cola-2.6-1.fc23 imlib2-1.4.9-1.fc23 ioprocess-0.15.1-1.fc23 krop-0.4.9-5.fc23 orocos-bfl-0.8.99-5.20160503gitc1b18e3.fc23 orocos-kdl-1.3.1-1.fc23 owncloud-8.2.4-1.fc23 perl-Sys-Syslog-0.34-1.fc23 perl-Tree-Simple-1.29-1.fc23 php-nikic-fast-route-1.0.0-2.fc23 postbooks-4.9.5-9.fc23 pulseaudio-7.1-1.fc23.1 python-prompt_toolkit-1.0.0-1.fc23 python-pyudev-0.20.0-2.fc23 qutebrowser-0.6.2-1.fc23 svrcore-4.1.2-1.fc23 thinkfan-0.9.3-1.fc23 Details about builds: ================================================================================ booth-1.0-2.eb4256a.git.fc23 (FEDORA-2016-8e16102ef8) Ticket Manager for Multi-site Clusters -------------------------------------------------------------------------------- Update Information: - update a subset of out-of-tree patches per https://github.com/ClusterLabs/booth/pull/22#issuecomment-216936987 - pre- inclusion cleanups in the spec (apply systemd scriptlet operations with `booth-arbitrator`, avoid overloading file implicitly considered `%doc` as `%license`) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1314865 - Review Request: booth - Ticket Manager for Multi-site Clusters https://bugzilla.redhat.com/show_bug.cgi?id=1314865 -------------------------------------------------------------------------------- ================================================================================ geomorph-0.60.1-9.fc23 (FEDORA-2016-cf87a742de) A height field editor for Linux -------------------------------------------------------------------------------- Update Information: Fix Gdk-ERROR: The program 'geomorph' received an X Window System error. -------------------------------------------------------------------------------- ================================================================================ git-cola-2.6-1.fc23 (FEDORA-2016-0eacd0647f) A sleek and powerful git GUI -------------------------------------------------------------------------------- Update Information: Update to 2.6 -------------------------------------------------------------------------------- ================================================================================ imlib2-1.4.9-1.fc23 (FEDORA-2016-ff070e8faa) Image loading, saving, rendering, and manipulation library -------------------------------------------------------------------------------- Update Information: A new upstream update fixing several vulnerabilities. See the bug list for more information. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1323616 - CVE-2016-3993 imlib2: off by one error in MergeUpdate https://bugzilla.redhat.com/show_bug.cgi?id=1323616 [ 2 ] Bug #1327477 - CVE-2016-4024 imlib2: integer overflow resulting in insufficient heap allocation https://bugzilla.redhat.com/show_bug.cgi?id=1327477 -------------------------------------------------------------------------------- ================================================================================ ioprocess-0.15.1-1.fc23 (FEDORA-2016-609627f8f5) Slave process to perform risky IO -------------------------------------------------------------------------------- Update Information: Resolves: BZ#1287946 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1287946 - ioprocess-0.15.0 tarball md5sum changed between -3 and -4 https://bugzilla.redhat.com/show_bug.cgi?id=1287946 -------------------------------------------------------------------------------- ================================================================================ krop-0.4.9-5.fc23 (FEDORA-2016-56449a7e56) Tool to crop PDF files with an eye towards eReaders -------------------------------------------------------------------------------- Update Information: + revert to python2 - - incompatible sources for python3, rhbz#1321376 + version 0.4.9 - - Reading PDF files is less strict now. As a consequence, krop doesn't give up cropping some files which resulted in an error before. - Fix a possible crash when starting krop. + port to PyPDF2 - - avoids a bug with Multiple DocumentInfo keys, see https://bugs.launchpad.net/pypdf/+bug/242755 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1321376 - [abrt] krop: krop.py:18:<module>:ImportError: No module named 'version' https://bugzilla.redhat.com/show_bug.cgi?id=1321376 [ 2 ] Bug #1276890 - krop-0.4.9 is available https://bugzilla.redhat.com/show_bug.cgi?id=1276890 -------------------------------------------------------------------------------- ================================================================================ orocos-bfl-0.8.99-5.20160503gitc1b18e3.fc23 (FEDORA-2016-bc71aae72b) A framework for inference in Dynamic Bayesian Networks -------------------------------------------------------------------------------- Update Information: new package -------------------------------------------------------------------------------- References: [ 1 ] Bug #1233240 - Review Request: orocos-bfl - A framework for inference in Dynamic Bayesian Networks https://bugzilla.redhat.com/show_bug.cgi?id=1233240 -------------------------------------------------------------------------------- ================================================================================ orocos-kdl-1.3.1-1.fc23 (FEDORA-2016-2e44706064) A framework for modeling and computation of kinematic chains -------------------------------------------------------------------------------- Update Information: Update to 1.3.1 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1324049 - orocos-kdl-1.3.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1324049 -------------------------------------------------------------------------------- ================================================================================ owncloud-8.2.4-1.fc23 (FEDORA-2016-6f479decc6) Private file sync and share server -------------------------------------------------------------------------------- Update Information: Owncloud now follows the PHP SIG direction of using a fedora autoloader to directly call the autoloaders of the PHP libraries used. In addition a %check has been added to ensure the autoloader works correctly and new dependency versions bumped to match more closely with upstream. This also updates to 8.2.4 fixing a number of issues identified upstream. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1333700 - owncloud: new security issues fixed upstream in 7.0.14, 8.0.12 and 8.1.7 [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1333700 -------------------------------------------------------------------------------- ================================================================================ perl-Sys-Syslog-0.34-1.fc23 (FEDORA-2016-b2f1079f21) Perl interface to the UNIX syslog(3) calls -------------------------------------------------------------------------------- Update Information: This relases fixes processing TIMESTAMP field, new lines in perror output, neol option, syslog facility. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1333789 - perl-Sys-Syslog-0.34 is available https://bugzilla.redhat.com/show_bug.cgi?id=1333789 -------------------------------------------------------------------------------- ================================================================================ perl-Tree-Simple-1.29-1.fc23 (FEDORA-2016-2cc9fef5ac) Tree::Simple Perl module -------------------------------------------------------------------------------- Update Information: ---- -------------------------------------------------------------------------------- ================================================================================ php-nikic-fast-route-1.0.0-2.fc23 (FEDORA-2016-4effa5019d) Fast implementation of a regular expression based router -------------------------------------------------------------------------------- Update Information: First build -------------------------------------------------------------------------------- References: [ 1 ] Bug #1333741 - Review Request: php-nikic-fast-route - Fast implementation of a regular expression based router https://bugzilla.redhat.com/show_bug.cgi?id=1333741 -------------------------------------------------------------------------------- ================================================================================ postbooks-4.9.5-9.fc23 (FEDORA-2016-3f3a320414) xTuple Accounting/ERP suite desktop client -------------------------------------------------------------------------------- Update Information: fix build issue in rawhide and bug when creating new accounting periods -------------------------------------------------------------------------------- References: [ 1 ] Bug #1307871 - postbooks: FTBFS in rawhide https://bugzilla.redhat.com/show_bug.cgi?id=1307871 -------------------------------------------------------------------------------- ================================================================================ pulseaudio-7.1-1.fc23.1 (FEDORA-2016-66b78d4812) Improved Linux Sound Server -------------------------------------------------------------------------------- Update Information: Backport fix for improved usb-audio device latency. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1304890 - usb-audio devices latency https://bugzilla.redhat.com/show_bug.cgi?id=1304890 [ 2 ] Bug #1163926 - severe underruns with usb audio, works with pa 3.0 - buffer setup seems wrong https://bugzilla.redhat.com/show_bug.cgi?id=1163926 -------------------------------------------------------------------------------- ================================================================================ python-prompt_toolkit-1.0.0-1.fc23 (FEDORA-2016-685786d62d) Library for building powerful interactive command lines in Python -------------------------------------------------------------------------------- Update Information: Update to 1.0.0 -------------------------------------------------------------------------------- ================================================================================ python-pyudev-0.20.0-2.fc23 (FEDORA-2016-b241020bc4) A libudev binding -------------------------------------------------------------------------------- Update Information: Fixing an f24 rpmlint error in f23 to avoid future conflicts with cherry-picks. No other changes. ---- Fixes to minor bugs that only those who noticed them should care about. No other changes. -------------------------------------------------------------------------------- ================================================================================ qutebrowser-0.6.2-1.fc23 (FEDORA-2016-3fe9036a5c) A keyboard-driven, vim-like browser based on PyQt5 and QtWebKit -------------------------------------------------------------------------------- Update Information: Removed patches that were only relevant to the previous version 0.6.1. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1331989 - qutebrowser-v0.6.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=1331989 -------------------------------------------------------------------------------- ================================================================================ svrcore-4.1.2-1.fc23 (FEDORA-2016-58f0458ecf) Secure PIN handling using NSS crypto -------------------------------------------------------------------------------- Update Information: release 4.1.2-1 -------------------------------------------------------------------------------- ================================================================================ thinkfan-0.9.3-1.fc23 (FEDORA-2016-a7e1b49c45) A simple fan control program -------------------------------------------------------------------------------- Update Information: Update to version 0.9.3, see https://github.com/vmatare/thinkfan/releases/tag/0.9.3 for details. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1311406 - [RFE] Thinkfan has a new upstream location https://bugzilla.redhat.com/show_bug.cgi?id=1311406 -------------------------------------------------------------------------------- -- test mailing list test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe: http://lists.fedoraproject.org/admin/lists/test@xxxxxxxxxxxxxxxxxxxxxxx
