The following Fedora 22 Security updates need testing: Age URL 418 https://bodhi.fedoraproject.org/updates/FEDORA-2015-5878 echoping-6.1-0.beta.r434svn.1.fc22 367 https://bodhi.fedoraproject.org/updates/FEDORA-2015-9185 ceph-deploy-1.5.25-1.fc22 300 https://bodhi.fedoraproject.org/updates/FEDORA-2015-12781 python-kdcproxy-0.3.2-1.fc22 254 https://bodhi.fedoraproject.org/updates/FEDORA-2015-16239 nagios-4.0.8-1.fc22 243 https://bodhi.fedoraproject.org/updates/FEDORA-2015-2d37e7dacf openstack-swift-2.2.0-6.fc22 212 https://bodhi.fedoraproject.org/updates/FEDORA-2015-9039c25f1d miniupnpc-1.9-6.fc22 195 https://bodhi.fedoraproject.org/updates/FEDORA-2015-7dfbe09bb4 libpng-1.6.16-4.fc22 195 https://bodhi.fedoraproject.org/updates/FEDORA-2015-6c07ab1fa6 libpng-1.6.16-5.fc22 162 https://bodhi.fedoraproject.org/updates/FEDORA-2015-b9e4c97ff1 sos-3.2-2.fc22 135 https://bodhi.fedoraproject.org/updates/FEDORA-2015-f683150aa0 thttpd-2.25b-37.fc22 112 https://bodhi.fedoraproject.org/updates/FEDORA-2016-560802e52b xdelta-3.0.7-7.fc22 100 https://bodhi.fedoraproject.org/updates/FEDORA-2016-24d134e494 mingw-nsis-2.50-1.fc22 88 https://bodhi.fedoraproject.org/updates/FEDORA-2016-3cbe9ad765 python-pygments-2.1.3-1.fc22 49 https://bodhi.fedoraproject.org/updates/FEDORA-2016-a028331ebc poppler-0.30.0-4.fc22 20 https://bodhi.fedoraproject.org/updates/FEDORA-2016-73a5867050 squid-3.5.10-4.fc22 11 https://bodhi.fedoraproject.org/updates/FEDORA-2016-a302f49f6d thunderbird-45.1.0-2.fc22 8 https://bodhi.fedoraproject.org/updates/FEDORA-2016-33ad3f97d4 openslp-2.0.0-6.fc22 6 https://bodhi.fedoraproject.org/updates/FEDORA-2016-f5107c318e webkitgtk4-2.12.3-1.fc22 5 https://bodhi.fedoraproject.org/updates/FEDORA-2016-65f1ffdc0c php-5.6.22-1.fc22 4 https://bodhi.fedoraproject.org/updates/FEDORA-2016-d3a56228f5 qemu-2.3.1-15.fc22 4 https://bodhi.fedoraproject.org/updates/FEDORA-2016-cd05bd994a phpMyAdmin-4.6.2-1.fc22 4 https://bodhi.fedoraproject.org/updates/FEDORA-2016-e4c559515c roundcubemail-1.2.0-1.fc22 2 https://bodhi.fedoraproject.org/updates/FEDORA-2016-4edd58a3b5 xen-4.5.3-6.fc22 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-363d307082 gd-2.1.1-4.fc22 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-40ccaff4d1 GraphicsMagick-1.3.24-1.fc22 The following Fedora 22 Critical Path updates have yet to be approved: Age URL 294 https://bodhi.fedoraproject.org/updates/FEDORA-2015-13210 yum-3.4.3-508.fc22 212 https://bodhi.fedoraproject.org/updates/FEDORA-2015-2123de044f libgphoto2-2.5.8-1.fc22 195 https://bodhi.fedoraproject.org/updates/FEDORA-2015-6c07ab1fa6 libpng-1.6.16-5.fc22 195 https://bodhi.fedoraproject.org/updates/FEDORA-2015-7dfbe09bb4 libpng-1.6.16-4.fc22 118 https://bodhi.fedoraproject.org/updates/FEDORA-2016-d3fce30d64 mobile-broadband-provider-info-1.20151214-1.fc22 89 https://bodhi.fedoraproject.org/updates/FEDORA-2016-4d5434d82f parted-3.2-16.fc22 77 https://bodhi.fedoraproject.org/updates/FEDORA-2016-d4e6e32c1c upower-0.99.3-2.fc22 49 https://bodhi.fedoraproject.org/updates/FEDORA-2016-a028331ebc poppler-0.30.0-4.fc22 45 https://bodhi.fedoraproject.org/updates/FEDORA-2016-027faabac4 libreport-2.6.4-2.fc22 abrt-2.6.1-11.fc22 44 https://bodhi.fedoraproject.org/updates/FEDORA-2016-af1f30412b pygtk2-2.24.0-14.fc22 40 https://bodhi.fedoraproject.org/updates/FEDORA-2016-41df7ccbc8 lldpad-1.0.1-4.git036e314.fc22 11 https://bodhi.fedoraproject.org/updates/FEDORA-2016-a302f49f6d thunderbird-45.1.0-2.fc22 11 https://bodhi.fedoraproject.org/updates/FEDORA-2016-8ec2270aae libbluray-0.9.3-1.fc22 11 https://bodhi.fedoraproject.org/updates/FEDORA-2016-494ae26ab2 hwdata-0.289-1.fc22 8 https://bodhi.fedoraproject.org/updates/FEDORA-2016-33ad3f97d4 openslp-2.0.0-6.fc22 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-26df5bf249 nss-util-3.24.0-1.0.fc22 nss-softokn-3.24.0-1.0.fc22 nss-3.24.0-1.0.fc22 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-363d307082 gd-2.1.1-4.fc22 The following builds have been pushed to Fedora 22 updates-testing GraphicsMagick-1.3.24-1.fc22 beep-1.3-16.fc22 composer-1.1.2-1.fc22 fldigi-3.23.10-1.fc22 gd-2.1.1-4.fc22 nss-3.24.0-1.0.fc22 nss-softokn-3.24.0-1.0.fc22 nss-util-3.24.0-1.0.fc22 php-nette-database-2.3.9-1.fc22 php-nette-forms-2.3.9-1.fc22 salt-2015.5.10-2.fc22 strace-4.12-1.fc22 Details about builds: ================================================================================ GraphicsMagick-1.3.24-1.fc22 (FEDORA-2016-40ccaff4d1) An ImageMagick fork, offering faster image generation and better quality -------------------------------------------------------------------------------- Update Information: New GraphicsMagick bugfix/security release, see also: http://www.graphicsmagick.org/NEWS.html#may-30-2016 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1333410 - GraphicsMagick: SVG converting issues https://bugzilla.redhat.com/show_bug.cgi?id=1333410 [ 2 ] Bug #1340814 - CVE-2016-5118 ImageMagick: Remote code execution via filename https://bugzilla.redhat.com/show_bug.cgi?id=1340814 [ 3 ] Bug #1306148 - CVE-2016-2317 CVE-2016-2318 GraphicsMagick: SVG parsing issues https://bugzilla.redhat.com/show_bug.cgi?id=1306148 -------------------------------------------------------------------------------- ================================================================================ beep-1.3-16.fc22 (FEDORA-2016-b7b558ac96) Beep the PC speaker any number of ways -------------------------------------------------------------------------------- Update Information: `beep-1.3-16.fc*` adds documentation and helping files for non-root users to run `beep` successfully. This includes: * Updated documentation in `/usr/share/doc/beep/README.fedora` which explains the `sudo` based setup. * Example _sudoers_ configuration file at `/etc/sudoers.d/beep` which the system admin must adapt for their local system's needs. * Shell aliases for `beep` to allow non-root users to run `beep` from the shell via `sudo -n`, for both _sh_ and _csh_ type shells. If you do not set up _sudoers_, the behaviour of `beep` is the same: As root, running `beep` beeps. As non-root user, running `beep` produces an error message. The error message is just a different one now, produced by `sudo`. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1133231 - beep only works for root https://bugzilla.redhat.com/show_bug.cgi?id=1133231 -------------------------------------------------------------------------------- ================================================================================ composer-1.1.2-1.fc22 (FEDORA-2016-a77fe7e94d) Dependency Manager for PHP -------------------------------------------------------------------------------- Update Information: **Version 1.1.2** - 2016-05-31 * Fixed degraded mode issue when accessing packagist.org * Fixed GitHub access_token being added on subsequent requests in case of redirections * Fixed exclude-from-classmap not working in some circumstances * Fixed openssl warning preventing the use of config command for disabling tls -------------------------------------------------------------------------------- ================================================================================ fldigi-3.23.10-1.fc22 (FEDORA-2016-311b9a1b8f) Digital modem program for Linux -------------------------------------------------------------------------------- Update Information: =Version 3.23.10= 2016-05-23 David Freese <iam_w1hkj@xxxxxxxxx> 33ad2e6: logger c184758: Restore focus af25ef7: RsID button ae93f9c: flmsg keepalive 5b367fb: 4bars b4b8df4: ASCII ctl chars 759e6cf: Suppress dockable macros 065ead7: Packet Prep 2016-04-13 Edouard Lafargue W6ELA <edouard@xxxxxxxxxxxxx> 505c8b3: Portaudio Mono 2016-04-13 David Freese <iam_w1hkj@xxxxxxxxx> 68d9b32: FSQ message files 2016-04-12 Robert Stiles <kk5vd@xxxxxxxxx> 4ab48d4: KISS, 8PSK, FLARQ icon Modifications 2016-04-12 David Freese <iam_w1hkj@xxxxxxxxx> 76ab77c: FLARQ 9c04f07: focus behavior 2a3f4d4: PTT delays -------------------------------------------------------------------------------- References: [ 1 ] Bug #1314945 - fldigi-3.23.10.11 is available https://bugzilla.redhat.com/show_bug.cgi?id=1314945 -------------------------------------------------------------------------------- ================================================================================ gd-2.1.1-4.fc22 (FEDORA-2016-363d307082) A graphics library for quick creation of PNG or JPEG images -------------------------------------------------------------------------------- Update Information: Security fix for CVE-2015-8877 --- Security fix for CVE-2016-5116 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1338907 - CVE-2015-8877 gd: gdImageScaleTwoPass function in gd_interpolation.c uses inconsistent allocate and free approaches https://bugzilla.redhat.com/show_bug.cgi?id=1338907 [ 2 ] Bug #1340856 - CVE-2016-5116 gd: Information leak due to stack overflow in gdCtxPrintf https://bugzilla.redhat.com/show_bug.cgi?id=1340856 -------------------------------------------------------------------------------- ================================================================================ nss-3.24.0-1.0.fc22 (FEDORA-2016-26df5bf249) Network Security Services -------------------------------------------------------------------------------- Update Information: Updates the nss family of packages to upstream NSS 3.24. For details about new functionality and a list of bugs fixed in this release please see the upstream releases notes https://developer.mozilla.org/en- US/docs/Mozilla/Projects/NSS/NSS_3.24_release_notes -------------------------------------------------------------------------------- ================================================================================ nss-softokn-3.24.0-1.0.fc22 (FEDORA-2016-26df5bf249) Network Security Services Softoken Module -------------------------------------------------------------------------------- Update Information: Updates the nss family of packages to upstream NSS 3.24. For details about new functionality and a list of bugs fixed in this release please see the upstream releases notes https://developer.mozilla.org/en- US/docs/Mozilla/Projects/NSS/NSS_3.24_release_notes -------------------------------------------------------------------------------- ================================================================================ nss-util-3.24.0-1.0.fc22 (FEDORA-2016-26df5bf249) Network Security Services Utilities Library -------------------------------------------------------------------------------- Update Information: Updates the nss family of packages to upstream NSS 3.24. For details about new functionality and a list of bugs fixed in this release please see the upstream releases notes https://developer.mozilla.org/en- US/docs/Mozilla/Projects/NSS/NSS_3.24_release_notes -------------------------------------------------------------------------------- ================================================================================ php-nette-database-2.3.9-1.fc22 (FEDORA-2016-a60263045a) Nette Database Component -------------------------------------------------------------------------------- Update Information: **Released version 2.3.9** * Helpers::detectType() detects DATERANGE as text * Structure::analyzeForeignKeys() fixed lowercased name #122 -------------------------------------------------------------------------------- ================================================================================ php-nette-forms-2.3.9-1.fc22 (FEDORA-2016-d75c962454) Nette Forms: greatly facilitates web forms -------------------------------------------------------------------------------- Update Information: **Released version 2.3.9** * UploadControl: added isOK() * Helpers::exportRules() skips empty branches * netteForms.js: Nette.noInit = true disables auto initialization -------------------------------------------------------------------------------- ================================================================================ salt-2015.5.10-2.fc22 (FEDORA-2016-bab7abfb49) A parallel remote execution system -------------------------------------------------------------------------------- Update Information: Updated patch ---- Update to bugfix release 2015.5.10 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1314448 - Corrected format of arp_ip_target in network config files and modprobe files https://bugzilla.redhat.com/show_bug.cgi?id=1314448 [ 2 ] Bug #1156551 - [rfe] use dnf instead of yum https://bugzilla.redhat.com/show_bug.cgi?id=1156551 -------------------------------------------------------------------------------- ================================================================================ strace-4.12-1.fc22 (FEDORA-2016-500743e423) Tracks and displays system calls associated with a running process -------------------------------------------------------------------------------- Update Information: v4.11 -> v4.12. -------------------------------------------------------------------------------- -- test mailing list test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe: https://lists.fedoraproject.org/admin/lists/test@xxxxxxxxxxxxxxxxxxxxxxx
