The following Fedora 23 Security updates need testing: Age URL 281 https://bodhi.fedoraproject.org/updates/FEDORA-2015-16240 nagios-4.0.8-1.fc23 239 https://bodhi.fedoraproject.org/updates/FEDORA-2015-81ded368fe miniupnpc-1.9-6.fc23 212 https://bodhi.fedoraproject.org/updates/FEDORA-2015-27392b3324 jbig2dec-0.12-2.fc23 162 https://bodhi.fedoraproject.org/updates/FEDORA-2015-dd52a54fa1 python-pymongo-3.0.3-1.fc23 162 https://bodhi.fedoraproject.org/updates/FEDORA-2015-06a7c972e8 thttpd-2.25b-37.fc23 127 https://bodhi.fedoraproject.org/updates/FEDORA-2016-637618fcd4 mingw-nsis-2.50-1.fc23 46 https://bodhi.fedoraproject.org/updates/FEDORA-2016-b3b9407940 squid-3.5.10-4.fc23 24 https://bodhi.fedoraproject.org/updates/FEDORA-2016-89e0874533 ntp-4.2.6p5-41.fc23 7 https://bodhi.fedoraproject.org/updates/FEDORA-2016-2a66f41200 xguest-1.0.10-33.fc23 5 https://bodhi.fedoraproject.org/updates/FEDORA-2016-f8a01aa629 squidGuard-1.4-26.fc23 5 https://bodhi.fedoraproject.org/updates/FEDORA-2016-f2493c754a setroubleshoot-3.3.9.1-1.fc23 5 https://bodhi.fedoraproject.org/updates/FEDORA-2016-e538b11379 python-django-horizon-2015.1.4-1.fc23 5 https://bodhi.fedoraproject.org/updates/FEDORA-2016-a5e392ef01 wordpress-4.5.3-1.fc23 5 https://bodhi.fedoraproject.org/updates/FEDORA-2016-21bd6a33af struts-1.3.10-18.fc23 5 https://bodhi.fedoraproject.org/updates/FEDORA-2016-b68f69b086 setroubleshoot-plugins-3.3.5.1-1.fc23 5 https://bodhi.fedoraproject.org/updates/FEDORA-2016-73853a7a16 qemu-2.4.1-11.fc23 4 https://bodhi.fedoraproject.org/updates/FEDORA-2016-34a6b65583 php-5.6.23-1.fc23 4 https://bodhi.fedoraproject.org/updates/FEDORA-2016-4f3c77ef90 php-pecl-zip-1.13.3-1.fc23 3 https://bodhi.fedoraproject.org/updates/FEDORA-2016-9df3915036 phpMyAdmin-4.6.3-1.fc23 3 https://bodhi.fedoraproject.org/updates/FEDORA-2016-0b966047e1 krb5-1.14.1-7.fc23 3 https://bodhi.fedoraproject.org/updates/FEDORA-2016-d126bb1b74 gd-2.1.1-7.fc23 3 https://bodhi.fedoraproject.org/updates/FEDORA-2016-3093027736 mediawiki-1.26.3-1.fc23 3 https://bodhi.fedoraproject.org/updates/FEDORA-2016-fcccb0a547 nodejs-0.10.46-1.fc23 1 https://bodhi.fedoraproject.org/updates/FEDORA-2016-16e8d38f57 gsi-openssh-7.1p2-2.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-ef784cf9f7 python3-3.4.3-9.fc23 The following Fedora 23 Critical Path updates have yet to be approved: Age URL 22 https://bodhi.fedoraproject.org/updates/FEDORA-2016-28873e4832 vim-7.4.1868-1.fc23 22 https://bodhi.fedoraproject.org/updates/FEDORA-2016-fad11727bf PackageKit-1.1.1-2.fc23 appstream-data-23-11.fc23 fwupd-0.7.1-1.fc23 gnome-software-3.20.3-1.fc23.1 json-glib-1.2.0-1.fc23 libappstream-glib-0.5.14-1.fc23 libgusb-0.2.9-1.fc23 5 https://bodhi.fedoraproject.org/updates/FEDORA-2016-4c9c2badcb selinux-policy-3.13.1-158.20.fc23 5 https://bodhi.fedoraproject.org/updates/FEDORA-2016-e9bc854cca texinfo-6.0-3.fc23 5 https://bodhi.fedoraproject.org/updates/FEDORA-2016-001588074b libfm-1.2.4-4.D20160618gitb22c0995e7.fc23 5 https://bodhi.fedoraproject.org/updates/FEDORA-2016-06b36c0134 lxsession-0.5.2-10.D20160417git9f8d613332.fc23 4 https://bodhi.fedoraproject.org/updates/FEDORA-2016-f637b89dda samba-4.3.10-1.fc23 4 https://bodhi.fedoraproject.org/updates/FEDORA-2016-4f6589e252 audit-2.6-3.fc23 3 https://bodhi.fedoraproject.org/updates/FEDORA-2016-d126bb1b74 gd-2.1.1-7.fc23 3 https://bodhi.fedoraproject.org/updates/FEDORA-2016-0b966047e1 krb5-1.14.1-7.fc23 1 https://bodhi.fedoraproject.org/updates/FEDORA-2016-abff7c6423 kde-settings-23-12.fc23 1 https://bodhi.fedoraproject.org/updates/FEDORA-2016-b9de2605ba breeze-icon-theme-5.23.0-1.fc23 extra-cmake-modules-5.23.0-1.fc23 kf5-5.23.0-1.fc23 kf5-attica-5.23.0-1.fc23 kf5-baloo-5.23.0-1.fc23 kf5-bluez-qt-5.23.0-1.fc23 kf5-frameworkintegration-5.23.0-3.fc23 kf5-kactivities-5.23.0-1.fc23 kf5-kactivities-stats-5.23.0-1.fc23 kf5-kapidox-5.23.0-1.fc23 kf5-karchive-5.23.0-1.fc23 kf5-kauth-5.23.0-1.fc23 kf5-kbookmarks-5.23.0-1.fc23 kf5-kcmutils-5.23.0-1.fc23 kf5-kcodecs-5.23.0-1.fc23 kf5-kcompletion-5.23.0-1.fc23 kf5-kconfig-5.23.0-1.fc23 kf5-kconfigwidgets-5.23.0-1.fc23 kf5-kcoreaddons-5.23.0-1.fc23 kf5-kcrash-5.23.0-1.fc23 kf5-kdbusaddons-5.23.0-1.fc23 kf5-kdeclarative-5.23.0-1.fc23 kf5-kded-5.23.0-1.fc23 kf5-kdelibs4support-5.23.0-1.fc23 kf5-kdesignerplugin-5.23.0-1.fc23 kf5-kdesu-5.23.0-1.fc23 kf5-kdewebkit-5.23.0-1.fc23 kf5-kdnssd-5.23.0-1.fc23 kf5-kdoctools-5.23.0-1.fc23 kf5-kemoticons-5.23.0-1.fc23 kf5-kfilemetadata-5.23.0-1.fc23 kf5-kglobalaccel-5.23.0-1.fc23 kf5-kguiad dons-5.23.0-1.fc23 kf5-khtml-5.23.0-1.fc23 kf5-ki18n-5.23.0-1.fc23 kf5-kiconthemes-5.23.0-1.fc23 kf5-kidletime-5.23.0-1.fc23 kf5-kimageformats-5.23.0-1.fc23 kf5-kinit-5.23.0-1.fc23 kf5-kio-5.23.0-2.fc23 kf5-kitemmodels-5.23.0-1.fc23 kf5-kitemviews-5.23.0-1.fc23 kf5-kjobwidgets-5.23.0-1.fc23 kf5-kjs-5.23.0-1.fc23 kf5-kjsembed-5.23.0-1.fc23 kf5-kmediaplayer-5.23.0-1.fc23 kf5-knewstuff-5.23.0-1.fc23 kf5-knotifications-5.23.0-1.fc23 kf5-knotifyconfig-5.23.0-1.fc23 kf5-kpackage-5.23.0-1.fc23 kf5-kparts-5.23.0-1.fc23 kf5-kpeople-5.23.0-1.fc23 kf5-kplotting-5.23.0-1.fc23 kf5-kpty-5.23.0-1.fc23 kf5-kross-5.23.0-1.fc23 kf5-krunner-5.23.0-1.fc23 kf5-kservice-5.23.0-1.fc23 kf5-ktexteditor-5.23.0-1.fc23 kf5-ktextwidgets-5.23.0-1.fc23 kf5-kunitconversion-5.23.0-1.fc23 kf5-kwallet-5.23.0-1.fc23 kf5-kwayland-5.23.0-1.fc23 kf5-kwidgetsaddons-5.23.0-1.fc23 kf5-kwindowsystem-5.23.0-1.fc23 kf5-kxmlgui-5.23.0-1.fc23 kf5-kxmlrpcclient-5.23.0-1.fc23 kf5-modemmanager-qt-5.23.0-1.fc23 kf5-networkmanager-qt -5.23.0-1.fc23 kf5-plasma-5.23.0-1.fc23 kf5-solid-5.23.0-1.fc23 kf5-sonnet-5.23.0-1.fc23 kf5-threadweaver-5.23.0-1.fc23 oxygen-icon-theme-5.23.0-1.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-99671098b1 qt-4.8.7-18.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-4b66e3011c lxpanel-0.8.2-2.fc23 The following builds have been pushed to Fedora 23 updates-testing aime-8.20160626-1.fc23 autojump-22.3.2-1.fc23 dialog-1.3-4.20160424.fc23 fish-2.3.0-2.fc23 flrig-1.3.26-1.fc23 glusterfs-3.7.12-1.fc23 gpaste-3.18.4-1.fc23 ipe-7.2.4-1.fc23 keycloak-httpd-client-install-0.4-1.fc23 lxpanel-0.8.2-2.fc23 mariadb-10.0.25-1.fc23 mom-0.5.5-1.fc23 privoxy-3.0.24-2.fc23 pyliblo-0.10.0-2.fc23 pysnmp-4.3.2-1.fc23 python-backports-shutil_get_terminal_size-1.0.0-1.fc23 python-twisted-16.2.0-2.fc23 python3-3.4.3-9.fc23 qt-4.8.7-18.fc23 rubygem-rake-compiler-1.0.1-1.fc23 scap-security-guide-0.1.30-2.fc23 scudcloud-1.25-1.fc23 tvtime-1.0.10-3.fc23 xsd-4.0.0-15.fc23 Details about builds: ================================================================================ aime-8.20160626-1.fc23 (FEDORA-2016-09948b869e) An application embeddable programming language interpreter -------------------------------------------------------------------------------- Update Information: - Updated to new 8.20160626 upstream version, fixes rhbz #1350199 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1350199 - aime-8.20160626 is available https://bugzilla.redhat.com/show_bug.cgi?id=1350199 -------------------------------------------------------------------------------- ================================================================================ autojump-22.3.2-1.fc23 (FEDORA-2016-23e3f714d5) A fast way to navigate your filesystem from the command line -------------------------------------------------------------------------------- Update Information: update to 22.3.2 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1344871 - [abrt] autojump: autojump_data.py:70:<lambda>:UnicodeEncodeError: 'decimal' codec can't encode characters in position 0-16332: invalid decimal Unicode string https://bugzilla.redhat.com/show_bug.cgi?id=1344871 -------------------------------------------------------------------------------- ================================================================================ dialog-1.3-4.20160424.fc23 (FEDORA-2016-611b673021) A utility for creating TTY dialog boxes -------------------------------------------------------------------------------- Update Information: Update to the latest upstream release, which fixes several bugs. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1349945 - Fedora 23 - dialog wrongly requires double backslashes (\\n, \\Z) for control codes in option file https://bugzilla.redhat.com/show_bug.cgi?id=1349945 -------------------------------------------------------------------------------- ================================================================================ fish-2.3.0-2.fc23 (FEDORA-2016-b93ad9b3f0) A friendly interactive shell -------------------------------------------------------------------------------- Update Information: Add missing runtime dependency and clean up the specfile. No functional change to the installed binaries. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1330499 - Missing dependency `bc` https://bugzilla.redhat.com/show_bug.cgi?id=1330499 -------------------------------------------------------------------------------- ================================================================================ flrig-1.3.26-1.fc23 (FEDORA-2016-f7056f0b3f) Transceiver control program -------------------------------------------------------------------------------- Update Information: Update to latest upstream release. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1336242 - flrig-1.3.26 is available https://bugzilla.redhat.com/show_bug.cgi?id=1336242 -------------------------------------------------------------------------------- ================================================================================ glusterfs-3.7.12-1.fc23 (FEDORA-2016-e476d71149) Distributed File System -------------------------------------------------------------------------------- Update Information: GlusterFS 3.7.12 GA -------------------------------------------------------------------------------- ================================================================================ gpaste-3.18.4-1.fc23 (FEDORA-2016-bdee22637d) Clipboard management system -------------------------------------------------------------------------------- Update Information: * fix crash when a search goes wrong * fix hanging issue due to gtk+ race (?) in gtk_clipboard_store * fix the gnome-shell menu sometimes displaying twice * add debug logs to the core library -------------------------------------------------------------------------------- ================================================================================ ipe-7.2.4-1.fc23 (FEDORA-2016-be25eb6463) Drawing editor for creating figures in PDF or PostScript formats -------------------------------------------------------------------------------- Update Information: Update to 7.2.4 ---- Update to 7.2.3 -------------------------------------------------------------------------------- ================================================================================ keycloak-httpd-client-install-0.4-1.fc23 (FEDORA-2016-78e5164c9a) Tools to configure Apache HTTPD as Keycloak client -------------------------------------------------------------------------------- Update Information: Update to new upstream * add methods to add/remove client redirect URI * add function to parse SP metadata to extract AssertionConsumerServiceURL's * Add all AssertionConsumerServiceURL's as redirect URI's during client registration. -------------------------------------------------------------------------------- ================================================================================ lxpanel-0.8.2-2.fc23 (FEDORA-2016-4b66e3011c) A lightweight X11 desktop panel -------------------------------------------------------------------------------- Update Information: Pull in the upstream patch to show multiple battery status -------------------------------------------------------------------------------- References: [ 1 ] Bug #1349563 - Battery plugin should support multiple batteries https://bugzilla.redhat.com/show_bug.cgi?id=1349563 -------------------------------------------------------------------------------- ================================================================================ mariadb-10.0.25-1.fc23 (FEDORA-2016-9a2889ebec) A community developed branch of MySQL -------------------------------------------------------------------------------- Update Information: Update to 10.0.25 upstream release. -------------------------------------------------------------------------------- ================================================================================ mom-0.5.5-1.fc23 (FEDORA-2016-38f3d59e8f) Dynamically manage system resources on virtualization hosts -------------------------------------------------------------------------------- Update Information: This update adds new collector (GuestIoTuneOptional) and improves one error message. Nothing important unless you run oVirt. -------------------------------------------------------------------------------- ================================================================================ privoxy-3.0.24-2.fc23 (FEDORA-2016-2b5bc49832) Privacy enhancing proxy -------------------------------------------------------------------------------- Update Information: Unit file fix. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1350097 - privoxy sometimes starts, and fails, before the network is ready https://bugzilla.redhat.com/show_bug.cgi?id=1350097 -------------------------------------------------------------------------------- ================================================================================ pyliblo-0.10.0-2.fc23 (FEDORA-2016-87d30cf035) Python bindings for the liblo OSC library -------------------------------------------------------------------------------- Update Information: Change shebang (rhbz#1348532) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1348532 - pyliblo: python2-pyliblo requires both Python 2 and Python 3 https://bugzilla.redhat.com/show_bug.cgi?id=1348532 -------------------------------------------------------------------------------- ================================================================================ pysnmp-4.3.2-1.fc23 (FEDORA-2016-73c5cc4469) An SNMP engine written in Python -------------------------------------------------------------------------------- Update Information: Move provides/obsoletes -------------------------------------------------------------------------------- ================================================================================ python-backports-shutil_get_terminal_size-1.0.0-1.fc23 (FEDORA-2016-10a3578e5a) A backport of the get_terminal_size function from Python 3.3's shutil -------------------------------------------------------------------------------- Update Information: A backport of the get_terminal_size function from Python 3.3's shutil. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1348997 - Review Request: backports.shutil_get_terminal_size - A backport of the get_terminal_size function https://bugzilla.redhat.com/show_bug.cgi?id=1348997 -------------------------------------------------------------------------------- ================================================================================ python-twisted-16.2.0-2.fc23 (FEDORA-2016-fd1d324745) Twisted is a networking engine written in Python -------------------------------------------------------------------------------- Update Information: * Update to 16.2.0 * Build for py2 and py3 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1297899 - RFE Please build twisted with python3 support https://bugzilla.redhat.com/show_bug.cgi?id=1297899 [ 2 ] Bug #1287381 - python-twisted-16.1.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1287381 -------------------------------------------------------------------------------- ================================================================================ python3-3.4.3-9.fc23 (FEDORA-2016-ef784cf9f7) Version 3 of the Python programming language aka Python 3000 -------------------------------------------------------------------------------- Update Information: Security fix for CVE-2016-5699 ---- Security fix for CVE-2016-0772 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1303699 - CVE-2016-5699 python: http protocol steam injection attack https://bugzilla.redhat.com/show_bug.cgi?id=1303699 [ 2 ] Bug #1303647 - CVE-2016-0772 python: smtplib StartTLS stripping attack https://bugzilla.redhat.com/show_bug.cgi?id=1303647 -------------------------------------------------------------------------------- ================================================================================ qt-4.8.7-18.fc23 (FEDORA-2016-99671098b1) Qt toolkit -------------------------------------------------------------------------------- Update Information: Do not propogate internal compiler flags to qmake too. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1349951 - qmake-qt4 adds '-std=gnu++98' flag to compiler flags, prevents building C++11 applications https://bugzilla.redhat.com/show_bug.cgi?id=1349951 -------------------------------------------------------------------------------- ================================================================================ rubygem-rake-compiler-1.0.1-1.fc23 (FEDORA-2016-97b7e7f300) Rake-based Ruby C Extension task generator -------------------------------------------------------------------------------- Update Information: New version 1.0.1 is released. -------------------------------------------------------------------------------- ================================================================================ scap-security-guide-0.1.30-2.fc23 (FEDORA-2016-1bb82119d2) Security guidance and baselines in SCAP formats -------------------------------------------------------------------------------- Update Information: - Update to latest upstream SCAP-Security-Guide-0.1.30 release: https://github.com/OpenSCAP/scap-security-guide/releases/tag/v0.1.30 - Drop shell library for remediation functions since it is not required starting from 0.1.30 release any more -------------------------------------------------------------------------------- References: [ 1 ] Bug #1147275 - The content is not applicable on Rawhide https://bugzilla.redhat.com/show_bug.cgi?id=1147275 -------------------------------------------------------------------------------- ================================================================================ scudcloud-1.25-1.fc23 (FEDORA-2016-4e8756ba2f) Non official desktop client for Slack -------------------------------------------------------------------------------- Update Information: Update to 1.25 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1350359 - scudcloud-1.25 is available https://bugzilla.redhat.com/show_bug.cgi?id=1350359 -------------------------------------------------------------------------------- ================================================================================ tvtime-1.0.10-3.fc23 (FEDORA-2016-3b5276d360) A high quality TV viewer -------------------------------------------------------------------------------- Update Information: - Fix crash when started on system with no v4ldevs -------------------------------------------------------------------------------- ================================================================================ xsd-4.0.0-15.fc23 (FEDORA-2016-9b57b87755) W3C XML schema to C++ data binding compiler -------------------------------------------------------------------------------- Update Information: - Remove conditional macro for the Patch1 (bz#1350231) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1350231 - xsd C++ parser expat support: fixed in EPEL, but not Fedora https://bugzilla.redhat.com/show_bug.cgi?id=1350231 -------------------------------------------------------------------------------- -- test mailing list test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe: https://lists.fedoraproject.org/admin/lists/test@xxxxxxxxxxxxxxxxxxxxxxx
