The following Fedora 23 Security updates need testing: Age URL 258 https://bodhi.fedoraproject.org/updates/FEDORA-2015-16240 nagios-4.0.8-1.fc23 216 https://bodhi.fedoraproject.org/updates/FEDORA-2015-81ded368fe miniupnpc-1.9-6.fc23 189 https://bodhi.fedoraproject.org/updates/FEDORA-2015-27392b3324 jbig2dec-0.12-2.fc23 139 https://bodhi.fedoraproject.org/updates/FEDORA-2015-dd52a54fa1 python-pymongo-3.0.3-1.fc23 139 https://bodhi.fedoraproject.org/updates/FEDORA-2015-06a7c972e8 thttpd-2.25b-37.fc23 104 https://bodhi.fedoraproject.org/updates/FEDORA-2016-637618fcd4 mingw-nsis-2.50-1.fc23 59 https://bodhi.fedoraproject.org/updates/FEDORA-2016-b8f91621c7 optipng-0.7.6-1.fc23 23 https://bodhi.fedoraproject.org/updates/FEDORA-2016-b3b9407940 squid-3.5.10-4.fc23 12 https://bodhi.fedoraproject.org/updates/FEDORA-2016-d9dbd6d339 openslp-2.0.0-8.fc23 3 https://bodhi.fedoraproject.org/updates/FEDORA-2016-7a878ed298 GraphicsMagick-1.3.24-1.fc23 2 https://bodhi.fedoraproject.org/updates/FEDORA-2016-6a0d540088 docker-1.10.3-24.gitf476348.fc23 1 https://bodhi.fedoraproject.org/updates/FEDORA-2016-c1faf6005c kernel-4.5.6-200.fc23 1 https://bodhi.fedoraproject.org/updates/FEDORA-2016-89e0874533 ntp-4.2.6p5-41.fc23 1 https://bodhi.fedoraproject.org/updates/FEDORA-2016-b2dfb591cd glibc-2.22-17.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-0f550603a5 xen-4.5.3-7.fc23 The following Fedora 23 Critical Path updates have yet to be approved: Age URL 18 https://bodhi.fedoraproject.org/updates/FEDORA-2016-728a7def67 pungi-4.0.15-2.fc23 12 https://bodhi.fedoraproject.org/updates/FEDORA-2016-d9dbd6d339 openslp-2.0.0-8.fc23 1 https://bodhi.fedoraproject.org/updates/FEDORA-2016-b2dfb591cd glibc-2.22-17.fc23 1 https://bodhi.fedoraproject.org/updates/FEDORA-2016-e0d521a0da glib2-2.46.2-2.fc23 1 https://bodhi.fedoraproject.org/updates/FEDORA-2016-c1faf6005c kernel-4.5.6-200.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-9a4c2c579d cryptsetup-1.7.2-1.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-828d573a0f curl-7.43.0-7.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-28873e4832 vim-7.4.1868-1.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-fad11727bf PackageKit-1.1.1-2.fc23 appstream-data-23-11.fc23 fwupd-0.7.1-1.fc23 gnome-software-3.20.3-1.fc23.1 json-glib-1.2.0-1.fc23 libappstream-glib-0.5.14-1.fc23 libgusb-0.2.9-1.fc23 The following builds have been pushed to Fedora 23 updates-testing PackageKit-1.1.1-2.fc23 appstream-data-23-11.fc23 asm6809-2.6-1.fc23 bacula-7.4.1-1.fc23 bacula-docs-7.4.1-1.fc23 certbot-0.8.0-1.fc23 cloud-utils-0.27-16.fc23 cryptsetup-1.7.2-1.fc23 curl-7.43.0-7.fc23 docker-compose-1.7.1-1.fc23 flatpak-0.6.4-1.fc23 fwupd-0.7.1-1.fc23 globus-xio-udt-driver-1.23-1.fc23 gmic-1.7.2-1.fc23 gnome-software-3.20.3-1.fc23.1 gssntlmssp-0.7.0-1.fc23 haproxy-1.5.18-1.fc23 httpie-0.9.3-4.fc23 json-glib-1.2.0-1.fc23 keepalived-1.2.21-2.fc23 krop-0.4.10-1.fc23 libappstream-glib-0.5.14-1.fc23 libgusb-0.2.9-1.fc23 lua-lgi-0.9.1-1.fc23 mlpack-2.0.1-1.fc23 mtn-browse-1.20-1.fc23 nvme-cli-0.7-1.fc23 obnam-1.19.1-2.fc23 owncloud-9.0.2-3.fc23 pag-0.6-1.fc23 pcre2-10.21-4.fc23 perl-Cookie-Baker-0.06-1.fc23 perl-System-Command-1.118-1.fc23 php-league-flysystem-1.0.24-1.fc23 php-lukasreschke-id3parser-0.0.1-1.fc23 php-mcnetic-zipstreamer-1.0-1.fc23 php-phpunit-PHPUnit-4.8.26-1.fc23 php-sabre-dav-3.0.9-1.fc23 php-sabre-http-4.2.1-1.fc23 php-symfony-2.8.6-2.fc23 php-symfony-security-acl-2.8.0-1.fc23 python-acme-0.8.0-1.fc23 python-regex-2016.06.02-1.fc23 python-ripe-atlas-sagan-1.1.11-2.fc23 python-testtools-1.8.0-3.fc23 retrace-server-1.16-1.fc23 ripe-atlas-tools-2.0.1-1.fc23 seafile-5.1.2-3.fc23 seafile-client-5.1.1-3.fc23 torrent-file-editor-0.2.2-1.fc23 vim-7.4.1868-1.fc23 xemacs-21.5.34-14.20160603hga561e02bb626.fc23 xen-4.5.3-7.fc23 xpenguins-2.2-14.fc23 Details about builds: ================================================================================ PackageKit-1.1.1-2.fc23 (FEDORA-2016-fad11727bf) Package management service -------------------------------------------------------------------------------- Update Information: gnome-software 3.20.3 release plus its dependencies. Notably, this release adds support for graphical system upgrades from Fedora 23 to 24. For details on how to test this, please see https://blogs.gnome.org/hughsie/2016/04/20/upgrading- fedora-23-to-24-using-gnome-software/ -------------------------------------------------------------------------------- References: [ 1 ] Bug #1336482 - Change label "Installing" to "Downloading" https://bugzilla.redhat.com/show_bug.cgi?id=1336482 [ 2 ] Bug #1336477 - License link is not valid https://bugzilla.redhat.com/show_bug.cgi?id=1336477 [ 3 ] Bug #1335414 - Graphical upgrade failed with error with no details https://bugzilla.redhat.com/show_bug.cgi?id=1335414 [ 4 ] Bug #1335458 - system upgrade can be triggered without admin password https://bugzilla.redhat.com/show_bug.cgi?id=1335458 -------------------------------------------------------------------------------- ================================================================================ appstream-data-23-11.fc23 (FEDORA-2016-fad11727bf) Fedora AppStream metadata -------------------------------------------------------------------------------- Update Information: gnome-software 3.20.3 release plus its dependencies. Notably, this release adds support for graphical system upgrades from Fedora 23 to 24. For details on how to test this, please see https://blogs.gnome.org/hughsie/2016/04/20/upgrading- fedora-23-to-24-using-gnome-software/ -------------------------------------------------------------------------------- References: [ 1 ] Bug #1336482 - Change label "Installing" to "Downloading" https://bugzilla.redhat.com/show_bug.cgi?id=1336482 [ 2 ] Bug #1336477 - License link is not valid https://bugzilla.redhat.com/show_bug.cgi?id=1336477 [ 3 ] Bug #1335414 - Graphical upgrade failed with error with no details https://bugzilla.redhat.com/show_bug.cgi?id=1335414 [ 4 ] Bug #1335458 - system upgrade can be triggered without admin password https://bugzilla.redhat.com/show_bug.cgi?id=1335458 -------------------------------------------------------------------------------- ================================================================================ asm6809-2.6-1.fc23 (FEDORA-2016-0037498f8a) Multiple pass 6809 & 6309 cross assembler -------------------------------------------------------------------------------- Update Information: Update for version 2.6 from upstream -------------------------------------------------------------------------------- References: [ 1 ] Bug #1342517 - asm6809-2.6 is available https://bugzilla.redhat.com/show_bug.cgi?id=1342517 -------------------------------------------------------------------------------- ================================================================================ bacula-7.4.1-1.fc23 (FEDORA-2016-c4e6d22f7a) Cross platform network backup for Linux, Unix, Mac and Windows -------------------------------------------------------------------------------- Update Information: - Fix bug #1849 MySQL does not accept 0 for DATETIME default - Modify the alist object to be reused after a destroy() - Fix the restore termination string in the job report to take in account JobErrors and SDErrors - Fix bconsole "llist job=<xxxx>" output - Fix #146 about update volume command line usage - bat: Fix #1066 about bad update pool command - Fix #1653 about make_catalog_backup default user name - Fix update Volume=x Slot=nn when Slot > MaxVols - Set exit code for create_postgresql_database.in - Fix bug #2197 -- build failure with --disable-libtool - Fix bug #2204 -- superfluous END-OF-DATA in update_mysql_tables.in - Convert a Migration job with errors into a Copy job - Remove exporting add_mtab_item -- fixes bug #2198 - Fix possible problem of show multiple resources - Comment out tools/smtp-orig.c as it is for reference only -------------------------------------------------------------------------------- ================================================================================ bacula-docs-7.4.1-1.fc23 (FEDORA-2016-c4e6d22f7a) Bacula documentation -------------------------------------------------------------------------------- Update Information: - Fix bug #1849 MySQL does not accept 0 for DATETIME default - Modify the alist object to be reused after a destroy() - Fix the restore termination string in the job report to take in account JobErrors and SDErrors - Fix bconsole "llist job=<xxxx>" output - Fix #146 about update volume command line usage - bat: Fix #1066 about bad update pool command - Fix #1653 about make_catalog_backup default user name - Fix update Volume=x Slot=nn when Slot > MaxVols - Set exit code for create_postgresql_database.in - Fix bug #2197 -- build failure with --disable-libtool - Fix bug #2204 -- superfluous END-OF-DATA in update_mysql_tables.in - Convert a Migration job with errors into a Copy job - Remove exporting add_mtab_item -- fixes bug #2198 - Fix possible problem of show multiple resources - Comment out tools/smtp-orig.c as it is for reference only -------------------------------------------------------------------------------- ================================================================================ certbot-0.8.0-1.fc23 (FEDORA-2016-a44087b6ce) A free, automated certificate authority client -------------------------------------------------------------------------------- Update Information: Update to new upstream 0.8.0 release -------------------------------------------------------------------------------- References: [ 1 ] Bug #1340574 - certbot-0.8.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1340574 -------------------------------------------------------------------------------- ================================================================================ cloud-utils-0.27-16.fc23 (FEDORA-2016-34ec440575) Cloud image management utilities -------------------------------------------------------------------------------- Update Information: This update backports an upstream fix for [RHBZ #1327337](https://bugzilla.redhat.com/show_bug.cgi?id=1327337) - a failure in resize of the system partition on first boot of cloud images when a newer util- linux is used. -------------------------------------------------------------------------------- ================================================================================ cryptsetup-1.7.2-1.fc23 (FEDORA-2016-9a4c2c579d) A utility for setting up encrypted disks -------------------------------------------------------------------------------- Update Information: Update to upstream cryptsetup 1.7.2. -------------------------------------------------------------------------------- ================================================================================ curl-7.43.0-7.fc23 (FEDORA-2016-828d573a0f) A utility for getting files from remote servers (FTP, HTTP, and others) -------------------------------------------------------------------------------- Update Information: - fix SIGSEGV of the curl tool while parsing URL with too many globs (#1340757) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1340757 - [abrt] off-by-one error in curl's URL globbing causes SIGSEGV https://bugzilla.redhat.com/show_bug.cgi?id=1340757 -------------------------------------------------------------------------------- ================================================================================ docker-compose-1.7.1-1.fc23 (FEDORA-2016-36a2d74064) Multi-container orchestration for Docker -------------------------------------------------------------------------------- Update Information: Update to upstream 1.7.1 -------------------------------------------------------------------------------- ================================================================================ flatpak-0.6.4-1.fc23 (FEDORA-2016-207abbcb5d) Application deployment framework for desktop apps -------------------------------------------------------------------------------- Update Information: Update to 0.6.4 Move bwrap binary to main package -------------------------------------------------------------------------------- References: [ 1 ] Bug #1342369 - bwrap binary exists only in flatpak-libs subpackage https://bugzilla.redhat.com/show_bug.cgi?id=1342369 -------------------------------------------------------------------------------- ================================================================================ fwupd-0.7.1-1.fc23 (FEDORA-2016-fad11727bf) Firmware update daemon -------------------------------------------------------------------------------- Update Information: gnome-software 3.20.3 release plus its dependencies. Notably, this release adds support for graphical system upgrades from Fedora 23 to 24. For details on how to test this, please see https://blogs.gnome.org/hughsie/2016/04/20/upgrading- fedora-23-to-24-using-gnome-software/ -------------------------------------------------------------------------------- References: [ 1 ] Bug #1336482 - Change label "Installing" to "Downloading" https://bugzilla.redhat.com/show_bug.cgi?id=1336482 [ 2 ] Bug #1336477 - License link is not valid https://bugzilla.redhat.com/show_bug.cgi?id=1336477 [ 3 ] Bug #1335414 - Graphical upgrade failed with error with no details https://bugzilla.redhat.com/show_bug.cgi?id=1335414 [ 4 ] Bug #1335458 - system upgrade can be triggered without admin password https://bugzilla.redhat.com/show_bug.cgi?id=1335458 -------------------------------------------------------------------------------- ================================================================================ globus-xio-udt-driver-1.23-1.fc23 (FEDORA-2016-dc013503ed) Globus Toolkit - Globus XIO UDT Driver -------------------------------------------------------------------------------- Update Information: Old nice patch accepted upstream. -------------------------------------------------------------------------------- ================================================================================ gmic-1.7.2-1.fc23 (FEDORA-2016-47a976337e) GREYC's Magic for Image Computing -------------------------------------------------------------------------------- Update Information: bump version -------------------------------------------------------------------------------- ================================================================================ gnome-software-3.20.3-1.fc23.1 (FEDORA-2016-fad11727bf) A software center for GNOME -------------------------------------------------------------------------------- Update Information: gnome-software 3.20.3 release plus its dependencies. Notably, this release adds support for graphical system upgrades from Fedora 23 to 24. For details on how to test this, please see https://blogs.gnome.org/hughsie/2016/04/20/upgrading- fedora-23-to-24-using-gnome-software/ -------------------------------------------------------------------------------- References: [ 1 ] Bug #1336482 - Change label "Installing" to "Downloading" https://bugzilla.redhat.com/show_bug.cgi?id=1336482 [ 2 ] Bug #1336477 - License link is not valid https://bugzilla.redhat.com/show_bug.cgi?id=1336477 [ 3 ] Bug #1335414 - Graphical upgrade failed with error with no details https://bugzilla.redhat.com/show_bug.cgi?id=1335414 [ 4 ] Bug #1335458 - system upgrade can be triggered without admin password https://bugzilla.redhat.com/show_bug.cgi?id=1335458 -------------------------------------------------------------------------------- ================================================================================ gssntlmssp-0.7.0-1.fc23 (FEDORA-2016-b2c360ff35) GSSAPI NTLMSSP Mechanism -------------------------------------------------------------------------------- Update Information: New release that add various compatibility and regression fixes ---- Fix a regression that causes issues with Firefox when gssntlmssp is installed -------------------------------------------------------------------------------- References: [ 1 ] Bug #1290831 - gssntlmssp breaks firefox access to some web sites https://bugzilla.redhat.com/show_bug.cgi?id=1290831 -------------------------------------------------------------------------------- ================================================================================ haproxy-1.5.18-1.fc23 (FEDORA-2016-f35d7f1e3f) HAProxy reverse proxy for high availability environments -------------------------------------------------------------------------------- Update Information: Update to 1.5.18 -------------------------------------------------------------------------------- ================================================================================ httpie-0.9.3-4.fc23 (FEDORA-2016-f2060876d6) A Curl-like tool for humans -------------------------------------------------------------------------------- Update Information: Add proper Obsoletes for rhbz#1329226. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1329226 - obsolete httpie from F23 https://bugzilla.redhat.com/show_bug.cgi?id=1329226 -------------------------------------------------------------------------------- ================================================================================ json-glib-1.2.0-1.fc23 (FEDORA-2016-fad11727bf) Library for JavaScript Object Notation format -------------------------------------------------------------------------------- Update Information: gnome-software 3.20.3 release plus its dependencies. Notably, this release adds support for graphical system upgrades from Fedora 23 to 24. For details on how to test this, please see https://blogs.gnome.org/hughsie/2016/04/20/upgrading- fedora-23-to-24-using-gnome-software/ -------------------------------------------------------------------------------- References: [ 1 ] Bug #1336482 - Change label "Installing" to "Downloading" https://bugzilla.redhat.com/show_bug.cgi?id=1336482 [ 2 ] Bug #1336477 - License link is not valid https://bugzilla.redhat.com/show_bug.cgi?id=1336477 [ 3 ] Bug #1335414 - Graphical upgrade failed with error with no details https://bugzilla.redhat.com/show_bug.cgi?id=1335414 [ 4 ] Bug #1335458 - system upgrade can be triggered without admin password https://bugzilla.redhat.com/show_bug.cgi?id=1335458 -------------------------------------------------------------------------------- ================================================================================ keepalived-1.2.21-2.fc23 (FEDORA-2016-2bc8a8756d) High Availability monitor built upon LVS, VRRP and service pollers -------------------------------------------------------------------------------- Update Information: Update to 1.2.21 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1341372 - keepalived-1.2.21 is available https://bugzilla.redhat.com/show_bug.cgi?id=1341372 [ 2 ] Bug #1327873 - keepalived: remove unneeded BuildRequires https://bugzilla.redhat.com/show_bug.cgi?id=1327873 -------------------------------------------------------------------------------- ================================================================================ krop-0.4.10-1.fc23 (FEDORA-2016-0b5f2e2658) Tool to crop PDF files with an eye towards eReaders -------------------------------------------------------------------------------- Update Information: krop 0.4.10 - - When cropping, all PDF page boxes (ArtBox, BleedBox, CropBox, MediaBox, TrimBox) are now adjusted. - Reading PDF files is less strict now. As a consequence, krop doesn't give up cropping some files which resulted in an error before. - Fix a possible crash when starting krop. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1341938 - [abrt] krop: krop.py:63:main:TypeError: decode() argument 1 must be string, not None https://bugzilla.redhat.com/show_bug.cgi?id=1341938 -------------------------------------------------------------------------------- ================================================================================ libappstream-glib-0.5.14-1.fc23 (FEDORA-2016-fad11727bf) Library for AppStream metadata -------------------------------------------------------------------------------- Update Information: gnome-software 3.20.3 release plus its dependencies. Notably, this release adds support for graphical system upgrades from Fedora 23 to 24. For details on how to test this, please see https://blogs.gnome.org/hughsie/2016/04/20/upgrading- fedora-23-to-24-using-gnome-software/ -------------------------------------------------------------------------------- References: [ 1 ] Bug #1336482 - Change label "Installing" to "Downloading" https://bugzilla.redhat.com/show_bug.cgi?id=1336482 [ 2 ] Bug #1336477 - License link is not valid https://bugzilla.redhat.com/show_bug.cgi?id=1336477 [ 3 ] Bug #1335414 - Graphical upgrade failed with error with no details https://bugzilla.redhat.com/show_bug.cgi?id=1335414 [ 4 ] Bug #1335458 - system upgrade can be triggered without admin password https://bugzilla.redhat.com/show_bug.cgi?id=1335458 -------------------------------------------------------------------------------- ================================================================================ libgusb-0.2.9-1.fc23 (FEDORA-2016-fad11727bf) GLib wrapper around libusb1 -------------------------------------------------------------------------------- Update Information: gnome-software 3.20.3 release plus its dependencies. Notably, this release adds support for graphical system upgrades from Fedora 23 to 24. For details on how to test this, please see https://blogs.gnome.org/hughsie/2016/04/20/upgrading- fedora-23-to-24-using-gnome-software/ -------------------------------------------------------------------------------- References: [ 1 ] Bug #1336482 - Change label "Installing" to "Downloading" https://bugzilla.redhat.com/show_bug.cgi?id=1336482 [ 2 ] Bug #1336477 - License link is not valid https://bugzilla.redhat.com/show_bug.cgi?id=1336477 [ 3 ] Bug #1335414 - Graphical upgrade failed with error with no details https://bugzilla.redhat.com/show_bug.cgi?id=1335414 [ 4 ] Bug #1335458 - system upgrade can be triggered without admin password https://bugzilla.redhat.com/show_bug.cgi?id=1335458 -------------------------------------------------------------------------------- ================================================================================ lua-lgi-0.9.1-1.fc23 (FEDORA-2016-f15cc52a6a) Lua bindings to GObject libraries -------------------------------------------------------------------------------- Update Information: Update to version 0.9.1. Changes: * marshal NULL strings as nil instead of empty strings. This allows use of e.g. DataInputStream:read_line() APIs. * fix and improve build for OSX and Win-based configurations * add support for arrays with lengths as struct fields * allow GLib.Variant construction for lightuserdata * fix gtop binding (certain structs could not be imported) * adapt to new set of annotations in newer glib * assorted Lua5.3 fixes, lgi is now fully Lua5.3 compatible * fix binding of Gdk.Rectangle from newer GDK -------------------------------------------------------------------------------- ================================================================================ mlpack-2.0.1-1.fc23 (FEDORA-2016-2e2423cbe2) Scalable, fast C++ machine learning library -------------------------------------------------------------------------------- Update Information: Update to latest stable version. -------------------------------------------------------------------------------- ================================================================================ mtn-browse-1.20-1.fc23 (FEDORA-2016-231d223098) Application for browsing Monotone VCS databases -------------------------------------------------------------------------------- Update Information: Update to the latest stable release, which contains support for the latest monotone features as well as as fixes for running on later Linuxs and KDE 4.x. -------------------------------------------------------------------------------- ================================================================================ nvme-cli-0.7-1.fc23 (FEDORA-2016-3d4c964f65) NVMe management command line interface -------------------------------------------------------------------------------- Update Information: Minor nvme-cli update -------------------------------------------------------------------------------- ================================================================================ obnam-1.19.1-2.fc23 (FEDORA-2016-ce1438e632) An easy, secure backup program -------------------------------------------------------------------------------- Update Information: Various bugfixes, minor changes and manpage improvements, see `NEWS` file -------------------------------------------------------------------------------- References: [ 1 ] Bug #1340138 - [abrt] obnam: fuse_plugin.py:391:statfs:AttributeError: 'RepositoryFormat6' object has no attribute 'get_clientgeneration_ids' https://bugzilla.redhat.com/show_bug.cgi?id=1340138 [ 2 ] Bug #1279916 - obnam-1.19.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1279916 -------------------------------------------------------------------------------- ================================================================================ owncloud-9.0.2-3.fc23 (FEDORA-2016-e7f81d901f) Private file sync and share server -------------------------------------------------------------------------------- Update Information: Owncloud 9.0.2 update Please note this fixes the shipped nginx configuration so that it works out the box with an install of owncloud-nginx ... if you have an existing nginx based oC install please review your configuration after installing the update. This also moves oC to its own php-fpm pool rather than the default www one so that better segregation of configuration is possible without impacting other PHP services. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1275826 - php-symfony-2.8.6 is available https://bugzilla.redhat.com/show_bug.cgi?id=1275826 [ 2 ] Bug #1332900 - owncloud-nginx ships a config that does not work https://bugzilla.redhat.com/show_bug.cgi?id=1332900 [ 3 ] Bug #1261011 - owncloud-9.0.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1261011 -------------------------------------------------------------------------------- ================================================================================ pag-0.6-1.fc23 (FEDORA-2016-8d400d9d2f) Commandline interaction with pagure.io -------------------------------------------------------------------------------- Update Information: Fix raw_input py3 usage. Thanks @lsedlar! -------------------------------------------------------------------------------- ================================================================================ pcre2-10.21-4.fc23 (FEDORA-2016-94712b35a6) Perl-compatible regular expression library -------------------------------------------------------------------------------- Update Information: This release fixes a race in locking JIT compiler and an ovector check in JIT test. It also enables JIT in pcre2grep tool so that it respects user's options regarding JIT usage. -------------------------------------------------------------------------------- ================================================================================ perl-Cookie-Baker-0.06-1.fc23 (FEDORA-2016-0578df5386) Cookie string generator / parser -------------------------------------------------------------------------------- Update Information: -------------------------------------------------------------------------------- References: [ 1 ] Bug #1230213 - Review Request: perl-Cookie-Baker - Cookie string generator / parser https://bugzilla.redhat.com/show_bug.cgi?id=1230213 -------------------------------------------------------------------------------- ================================================================================ perl-System-Command-1.118-1.fc23 (FEDORA-2016-9f33f2f388) Object for running system commands -------------------------------------------------------------------------------- Update Information: Updated to the latest version -------------------------------------------------------------------------------- References: [ 1 ] Bug #1342314 - perl-System-Command-1.118 is available https://bugzilla.redhat.com/show_bug.cgi?id=1342314 -------------------------------------------------------------------------------- ================================================================================ php-league-flysystem-1.0.24-1.fc23 (FEDORA-2016-c7abf777f2) Filesystem abstraction: Many filesystems, one API -------------------------------------------------------------------------------- Update Information: **Version 1.0.24** - 2016-06-03 * [Local] Creating the root directory could lead to raceconditions, which are now handled a lot nicer. Initially only for the constructor but now also fixed the same thing for all the write operations. **Version 1.0.23** - 2016-06-03 * Default file/directory permissions are non executable. -------------------------------------------------------------------------------- ================================================================================ php-lukasreschke-id3parser-0.0.1-1.fc23 (FEDORA-2016-90321c0ca4) ID3 parser library -------------------------------------------------------------------------------- Update Information: This is a pure ID3 parser based upon getID3. It supports the following ID3 versions inside MP3 files: * ID3v1 (v1.0 & v1.1) * ID3v2 (v2.2, v2.3 & v2.4) Autoloader: /usr/share/php/ID3Parser/autoload.php -------------------------------------------------------------------------------- References: [ 1 ] Bug #1341283 - Review Request: php-lukasreschke-id3parser - ID3 parser library https://bugzilla.redhat.com/show_bug.cgi?id=1341283 -------------------------------------------------------------------------------- ================================================================================ php-mcnetic-zipstreamer-1.0-1.fc23 (FEDORA-2016-e7f81d901f) Stream zip files without i/o overhead -------------------------------------------------------------------------------- Update Information: Owncloud 9.0.2 update Please note this fixes the shipped nginx configuration so that it works out the box with an install of owncloud-nginx ... if you have an existing nginx based oC install please review your configuration after installing the update. This also moves oC to its own php-fpm pool rather than the default www one so that better segregation of configuration is possible without impacting other PHP services. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1275826 - php-symfony-2.8.6 is available https://bugzilla.redhat.com/show_bug.cgi?id=1275826 [ 2 ] Bug #1332900 - owncloud-nginx ships a config that does not work https://bugzilla.redhat.com/show_bug.cgi?id=1332900 [ 3 ] Bug #1261011 - owncloud-9.0.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1261011 -------------------------------------------------------------------------------- ================================================================================ php-phpunit-PHPUnit-4.8.26-1.fc23 (FEDORA-2016-edccd178b0) The PHP Unit Testing framework -------------------------------------------------------------------------------- Update Information: **Version 4.8.26** - 2016-05-17 * Fixed [phpunit-mock- objects/#301](https://github.com/sebastianbergmann/phpunit-mock- objects/issues/301): `PHPUnit_Framework_MockObject_MockBuilder::getMock()` calls `PHPUnit_Framework_TestCase::getMock()` with more arguments than accepted **Version 4.8.25** - 2016-05-10 * Fixed [#2112](https://github.com/sebastianbergmann/phpunit/issues/2112): Output is html entity encoded when ran through `phpdbg` * Fixed [#2158](https://github.com/sebastianbergmann/phpunit/issues/2158): Failure to run tests in separate processes if a file included into main process contains constant definition -------------------------------------------------------------------------------- ================================================================================ php-sabre-dav-3.0.9-1.fc23 (FEDORA-2016-e7f81d901f) WebDAV Framework for PHP -------------------------------------------------------------------------------- Update Information: Owncloud 9.0.2 update Please note this fixes the shipped nginx configuration so that it works out the box with an install of owncloud-nginx ... if you have an existing nginx based oC install please review your configuration after installing the update. This also moves oC to its own php-fpm pool rather than the default www one so that better segregation of configuration is possible without impacting other PHP services. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1275826 - php-symfony-2.8.6 is available https://bugzilla.redhat.com/show_bug.cgi?id=1275826 [ 2 ] Bug #1332900 - owncloud-nginx ships a config that does not work https://bugzilla.redhat.com/show_bug.cgi?id=1332900 [ 3 ] Bug #1261011 - owncloud-9.0.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1261011 -------------------------------------------------------------------------------- ================================================================================ php-sabre-http-4.2.1-1.fc23 (FEDORA-2016-e7f81d901f) Library for dealing with http requests and responses -------------------------------------------------------------------------------- Update Information: Owncloud 9.0.2 update Please note this fixes the shipped nginx configuration so that it works out the box with an install of owncloud-nginx ... if you have an existing nginx based oC install please review your configuration after installing the update. This also moves oC to its own php-fpm pool rather than the default www one so that better segregation of configuration is possible without impacting other PHP services. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1275826 - php-symfony-2.8.6 is available https://bugzilla.redhat.com/show_bug.cgi?id=1275826 [ 2 ] Bug #1332900 - owncloud-nginx ships a config that does not work https://bugzilla.redhat.com/show_bug.cgi?id=1332900 [ 3 ] Bug #1261011 - owncloud-9.0.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1261011 -------------------------------------------------------------------------------- ================================================================================ php-symfony-2.8.6-2.fc23 (FEDORA-2016-e7f81d901f) PHP framework for web projects -------------------------------------------------------------------------------- Update Information: Owncloud 9.0.2 update Please note this fixes the shipped nginx configuration so that it works out the box with an install of owncloud-nginx ... if you have an existing nginx based oC install please review your configuration after installing the update. This also moves oC to its own php-fpm pool rather than the default www one so that better segregation of configuration is possible without impacting other PHP services. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1275826 - php-symfony-2.8.6 is available https://bugzilla.redhat.com/show_bug.cgi?id=1275826 [ 2 ] Bug #1332900 - owncloud-nginx ships a config that does not work https://bugzilla.redhat.com/show_bug.cgi?id=1332900 [ 3 ] Bug #1261011 - owncloud-9.0.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1261011 -------------------------------------------------------------------------------- ================================================================================ php-symfony-security-acl-2.8.0-1.fc23 (FEDORA-2016-e7f81d901f) Symfony Security Component - ACL (Access Control List) -------------------------------------------------------------------------------- Update Information: Owncloud 9.0.2 update Please note this fixes the shipped nginx configuration so that it works out the box with an install of owncloud-nginx ... if you have an existing nginx based oC install please review your configuration after installing the update. This also moves oC to its own php-fpm pool rather than the default www one so that better segregation of configuration is possible without impacting other PHP services. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1275826 - php-symfony-2.8.6 is available https://bugzilla.redhat.com/show_bug.cgi?id=1275826 [ 2 ] Bug #1332900 - owncloud-nginx ships a config that does not work https://bugzilla.redhat.com/show_bug.cgi?id=1332900 [ 3 ] Bug #1261011 - owncloud-9.0.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1261011 -------------------------------------------------------------------------------- ================================================================================ python-acme-0.8.0-1.fc23 (FEDORA-2016-a44087b6ce) Python library for the ACME protocol -------------------------------------------------------------------------------- Update Information: Update to new upstream 0.8.0 release -------------------------------------------------------------------------------- References: [ 1 ] Bug #1340574 - certbot-0.8.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1340574 -------------------------------------------------------------------------------- ================================================================================ python-regex-2016.06.02-1.fc23 (FEDORA-2016-0d85531056) Alternative regular expression module, to replace re -------------------------------------------------------------------------------- Update Information: Update to the latest stable version. -------------------------------------------------------------------------------- ================================================================================ python-ripe-atlas-sagan-1.1.11-2.fc23 (FEDORA-2016-09d4114d67) A parsing library for RIPE Atlas measurement results -------------------------------------------------------------------------------- Update Information: new package -------------------------------------------------------------------------------- ================================================================================ python-testtools-1.8.0-3.fc23 (FEDORA-2016-0c0df7966d) Extensions to the Python unit testing framework -------------------------------------------------------------------------------- Update Information: Fixes packaging issues -------------------------------------------------------------------------------- References: [ 1 ] Bug #1304326 - python-testtools should require python-unittest2 >= 1.0.0 https://bugzilla.redhat.com/show_bug.cgi?id=1304326 [ 2 ] Bug #1251568 - python-testtools should Requires: python-traceback2 https://bugzilla.redhat.com/show_bug.cgi?id=1251568 -------------------------------------------------------------------------------- ================================================================================ retrace-server-1.16-1.fc23 (FEDORA-2016-d84c5abe3f) Application for remote coredump analysis -------------------------------------------------------------------------------- Update Information: New upstream release 1.16 which fixes bugs listed and adds: - Logging of tasks failed to start - Graceful handling of the worker errors - Correction to eu- unstrip parser if FILE is '-' -------------------------------------------------------------------------------- References: [ 1 ] Bug #1124462 - do not display all ftp files on web UI by default - manager page is slow and/or may hang or crash browser if there's a lot of ftp files https://bugzilla.redhat.com/show_bug.cgi?id=1124462 [ 2 ] Bug #1340158 - email notifications no longer working https://bugzilla.redhat.com/show_bug.cgi?id=1340158 -------------------------------------------------------------------------------- ================================================================================ ripe-atlas-tools-2.0.1-1.fc23 (FEDORA-2016-09d4114d67) The official command line client for RIPE Atlas -------------------------------------------------------------------------------- Update Information: new package -------------------------------------------------------------------------------- ================================================================================ seafile-5.1.2-3.fc23 (FEDORA-2016-fe49e1df99) Cloud storage cli client -------------------------------------------------------------------------------- Update Information: Initial commit -------------------------------------------------------------------------------- ================================================================================ seafile-client-5.1.1-3.fc23 (FEDORA-2016-fe49e1df99) Seafile cloud storage desktop client -------------------------------------------------------------------------------- Update Information: Initial commit -------------------------------------------------------------------------------- ================================================================================ torrent-file-editor-0.2.2-1.fc23 (FEDORA-2016-5dda485f30) Qt based GUI tool designed to create and edit .torrent files -------------------------------------------------------------------------------- Update Information: Bump to v0.2.2 ---- Bump to v0.2.1 -------------------------------------------------------------------------------- ================================================================================ vim-7.4.1868-1.fc23 (FEDORA-2016-28873e4832) The VIM editor -------------------------------------------------------------------------------- Update Information: This updated vim packages use uncompressed help files. Help will be available in vi (from vim-minimal) again. Other fixes are listed in the README.patches file. This update is just for testing purposes and won't be pushed to -stable, spec.vim (bug 1332181, 1318991) is known to still be broken. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1262182 - The :help command is buggy when invoked from within vimtutor and gvimtutor https://bugzilla.redhat.com/show_bug.cgi?id=1262182 -------------------------------------------------------------------------------- ================================================================================ xemacs-21.5.34-14.20160603hga561e02bb626.fc23 (FEDORA-2016-4df5002763) Different version of Emacs -------------------------------------------------------------------------------- Update Information: This update fixes failure to start due to a change in the NSS library. -------------------------------------------------------------------------------- ================================================================================ xen-4.5.3-7.fc23 (FEDORA-2016-0f550603a5) Xen is a virtual machine monitor -------------------------------------------------------------------------------- Update Information: fix for CVE-2016-2858 doesn't build with qemu-xen enabled Unsanitised guest input in libxl device handling code [XSA-175, CVE-2016-4962] (#1342132) Unsanitised driver domain input in libxl device handling [XSA-178, CVE-2016-4963] (#1342131) arm: Host crash caused by VMID exhaust [XSA-181] (#1342530) Qemu: display: vmsvga: out-of-bounds read in vmsvga_fifo_read_raw() routine [CVE-2016-4454] (#1340741) Qemu: display: vmsvga: infinite loop in vmsvga_fifo_run() routine [CVE-2016-4453] (#1340746) Qemu: scsi: esp: OOB write when using non-DMA mode in get_cmd [CVE-2016-5238] (#1341931) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1341931 - CVE-2016-5238 Qemu: scsi: esp: OOB write when using non-DMA mode in get_cmd https://bugzilla.redhat.com/show_bug.cgi?id=1341931 [ 2 ] Bug #1335438 - CVE-2016-4962 xsa175 xen: Unsanitised guest input in libxl device handling code (XSA-175) https://bugzilla.redhat.com/show_bug.cgi?id=1335438 [ 3 ] Bug #1335442 - CVE-2016-4963 xsa178 xen: Unsanitised driver domain input in libxl device handling (XSA-178) https://bugzilla.redhat.com/show_bug.cgi?id=1335442 [ 4 ] Bug #1342529 - xsa181 xen: arm: Host crash caused by VMID exhaustion (XSA-181) https://bugzilla.redhat.com/show_bug.cgi?id=1342529 [ 5 ] Bug #1336429 - CVE-2016-4454 Qemu: display: vmsvga: out-of-bounds read in vmsvga_fifo_read_raw() routine https://bugzilla.redhat.com/show_bug.cgi?id=1336429 [ 6 ] Bug #1336650 - CVE-2016-4453 Qemu: display: vmsvga: infinite loop in vmsvga_fifo_run() routine https://bugzilla.redhat.com/show_bug.cgi?id=1336650 -------------------------------------------------------------------------------- ================================================================================ xpenguins-2.2-14.fc23 (FEDORA-2016-f7fac1c624) Cute little penguins that walk along the tops of your windows -------------------------------------------------------------------------------- Update Information: Disable in environments where XPengiuns is known not to work. Bz #1324881. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1324881 - Xpenguins does not do anything. https://bugzilla.redhat.com/show_bug.cgi?id=1324881 -------------------------------------------------------------------------------- -- test mailing list test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe: https://lists.fedoraproject.org/admin/lists/test@xxxxxxxxxxxxxxxxxxxxxxx
