The following Fedora 25 Security updates need testing: Age URL 7 https://bodhi.fedoraproject.org/updates/FEDORA-2016-c843c68c77 python3-3.5.1-15.fc25 7 https://bodhi.fedoraproject.org/updates/FEDORA-2016-663608c5bb python-2.7.12-3.fc25 6 https://bodhi.fedoraproject.org/updates/FEDORA-2016-7f0fb9b38d knot-2.3.0-2.fc25 5 https://bodhi.fedoraproject.org/updates/FEDORA-2016-f4a443888b tomcat-8.0.36-2.fc25 5 https://bodhi.fedoraproject.org/updates/FEDORA-2016-9b17661de5 jasper-1.900.1-33.fc25 2 https://bodhi.fedoraproject.org/updates/FEDORA-2016-417ceefc85 uClibc-0.9.33.2-11.fc25 1 https://bodhi.fedoraproject.org/updates/FEDORA-2016-0f8e794de0 mingw-lcms2-2.8-2.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-d1408c3ba3 ca-certificates-2016.2.9-1.0.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-4dedc6ec3d firewalld-0.4.3.3-1.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-5760339e76 rubygem-actioncable-5.0.0.1-1.fc25 rubygem-actionmailer-5.0.0.1-1.fc25 rubygem-actionpack-5.0.0.1-2.fc25 rubygem-actionview-5.0.0.1-2.fc25 rubygem-activejob-5.0.0.1-1.fc25 rubygem-activemodel-5.0.0.1-1.fc25 rubygem-activerecord-5.0.0.1-1.fc25 rubygem-activesupport-5.0.0.1-1.fc25 rubygem-rails-5.0.0.1-1.fc25 rubygem-railties-5.0.0.1-2.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-bc8647110a lcms2-2.8-2.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-0f013aee39 dbxtool-7-2.fc25 The following Fedora 25 Critical Path updates have yet to be approved: Age URL 7 https://bodhi.fedoraproject.org/updates/FEDORA-2016-9f2cc51db7 openssl-1.0.2h-3.fc25 7 https://bodhi.fedoraproject.org/updates/FEDORA-2016-663608c5bb python-2.7.12-3.fc25 7 https://bodhi.fedoraproject.org/updates/FEDORA-2016-49d241c630 ntfs-3g-2016.2.22-2.fc25 7 https://bodhi.fedoraproject.org/updates/FEDORA-2016-17b522dda8 initscripts-9.68-1.fc25 7 https://bodhi.fedoraproject.org/updates/FEDORA-2016-0221e7b4e4 gnutls-3.5.3-1.fc25 7 https://bodhi.fedoraproject.org/updates/FEDORA-2016-c490551e90 iso-codes-3.69-1.fc25 6 https://bodhi.fedoraproject.org/updates/FEDORA-2016-224d0ddc4c krb5-1.14.3-4.fc25 5 https://bodhi.fedoraproject.org/updates/FEDORA-2016-df6fa19878 perl-Socket-2.024-1.fc25 5 https://bodhi.fedoraproject.org/updates/FEDORA-2016-060003fc51 cups-2.2-0.3rc1.fc25 5 https://bodhi.fedoraproject.org/updates/FEDORA-2016-e3eafddaf2 rpm-4.13.0-0.rc1.41.fc25 5 https://bodhi.fedoraproject.org/updates/FEDORA-2016-d1392ad5ad nss-3.26.0-1.0.fc25 nss-softokn-3.26.0-1.0.fc25 nss-util-3.26.0-1.0.fc25 5 https://bodhi.fedoraproject.org/updates/FEDORA-2016-9b17661de5 jasper-1.900.1-33.fc25 4 https://bodhi.fedoraproject.org/updates/FEDORA-2016-2456c68e15 mdadm-3.4-2.fc25 4 https://bodhi.fedoraproject.org/updates/FEDORA-2016-a5df7660b5 menu-cache-1.0.1-2.D20160506git2932d67f30.fc25 2 https://bodhi.fedoraproject.org/updates/FEDORA-2016-0603e00102 binutils-2.26.1-1.fc25 2 https://bodhi.fedoraproject.org/updates/FEDORA-2016-f0c968d7a1 bluez-5.41-1.fc25 2 https://bodhi.fedoraproject.org/updates/FEDORA-2016-461201c663 libdrm-2.4.70-2.fc25 2 https://bodhi.fedoraproject.org/updates/FEDORA-2016-6ff35490f4 yum-utils-1.1.31-511.fc25 2 https://bodhi.fedoraproject.org/updates/FEDORA-2016-a556898d78 lorax-25.13-1.fc25 2 https://bodhi.fedoraproject.org/updates/FEDORA-2016-06a24ce0fb openssh-7.3p1-3.fc25 1 https://bodhi.fedoraproject.org/updates/FEDORA-2016-35dfe50489 glib2-2.49.4-3.fc25 1 https://bodhi.fedoraproject.org/updates/FEDORA-2016-6cdcc2ccee linux-firmware-20160816-67.git7c3dfc0b.fc25 1 https://bodhi.fedoraproject.org/updates/FEDORA-2016-7e1b44b227 dbus-1.11.4-1.fc25 1 https://bodhi.fedoraproject.org/updates/FEDORA-2016-d0ee44daa8 kdelibs-4.14.23-1.fc25 kde-baseapps-16.08.0-1.fc25 kde-runtime-16.08.0-1.fc25 kde-l10n-16.08.0-1.fc25 baloo-widgets-16.08.0-1.fc25 dolphin-16.08.0-1.fc25 dolphin-plugins-16.08.0-1.fc25 kate-16.08.0-1.fc25 konsole5-16.08.0-1.fc25 khelpcenter-16.08.0-1.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-bc8647110a lcms2-2.8-2.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-180a7eca23 file-5.28-4.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-d1408c3ba3 ca-certificates-2016.2.9-1.0.fc25 The following builds have been pushed to Fedora 25 updates-testing binclock-0.4.0-1.fc25 bind-dyndb-ldap-10.1-1.fc25 cAudio-2.3.1-2.fc25 ca-certificates-2016.2.9-1.0.fc25 catfish-1.4.2-2.fc25 ccdciel-0.6.2-1.187svn.fc25 chromium-52.0.2743.116-9.fc25 couchdb-1.6.1-18.fc25 cxf-3.1.4-1.fc25 dbxtool-7-2.fc25 dnsyo-2.0.7-1.fc25 efibootmgr-13-2.fc25 efivar-28-1.fc25 erlang-eleveldb-2.2.19-4.fc25 erlang-riak_ensemble-2.1.2-4.fc25 fedora-arm-installer-1.99.10-1.fc25 file-5.28-4.fc25 firewalld-0.4.3.3-1.fc25 gap-pkg-hap-1.11-2.fc25 gdb-heap-0.5-26.fc25 golang-gopkg-go-macaroon-macaroon-1-0.1.gitd8fd13e.fc25 ibus-table-others-1.3.8-1.fc25 indistarter-0.6.0-1.39svn.fc25 itext-2.1.7-33.fc25 jbossws-cxf-5.1.3-1.fc25 kubernetes-ansible-0.6.0-0.2.gitd65ebd5.fc25 lcms2-2.8-2.fc25 libevdev-1.5.2-2.fc25 libtaskotron-0.4.16-1.fc25 libtermkey-0.18-1.fc25 libtimezonemap-0.4.5-4.fc25 libvterm-0-0.1.bzr681.fc25 lorem-ipsum-generator-0.3.20160816git-14.fc25 mingw-binutils-2.27-1.fc25 mock-1.2.20-1.fc25 mokutil-0.3.0-3.fc25 nbd-3.14-2.fc25 nco-4.6.1-1.fc25 nodejs-6.3.1-101.fc25 perdition-2.1-7.fc25 perl-DBD-MySQL-4.035-2.fc25 perl-WWW-Search-2.516-1.fc25 pesign-0.112-4.fc25 protobuf-java-format-1.4-2.fc25 python-docker-squash-1.0.1-1.fc25 python-prov-1.4.0-1.fc25 python-tqdm-4.8.3-1.fc25 rebase-helper-0.8.0-2.fc25 remmina-1.2.0-0.21.git.679bb8e.fc25 rubygem-actioncable-5.0.0.1-1.fc25 rubygem-actionmailer-5.0.0.1-1.fc25 rubygem-actionpack-5.0.0.1-2.fc25 rubygem-actionview-5.0.0.1-2.fc25 rubygem-activejob-5.0.0.1-1.fc25 rubygem-activemodel-5.0.0.1-1.fc25 rubygem-activerecord-5.0.0.1-1.fc25 rubygem-activesupport-5.0.0.1-1.fc25 rubygem-kramdown-1.12.0-1.fc25 rubygem-rails-5.0.0.1-1.fc25 rubygem-railties-5.0.0.1-2.fc25 rubygem-rmagick-2.16.0-1.fc25 rubygem-spring-watcher-listen-2.0.0-1.fc25 rubygem-sprockets-rails-3.1.1-1.fc25 snap-confine-1.0.39-2.fc25 sqliteodbc-0.9994-1.fc25 testcloud-0.1.10-1.fc25 tipl-0-0.2.git6a59380.fc25 tomcat-native-1.2.8-1.fc25 uflash-1.0.3-1.fc25 vym-2.5.21-1.fc25 wayland-1.11.91-1.fc25 wayland-protocols-1.7-1.fc25 weston-1.11.91-2.fc25 Details about builds: ================================================================================ binclock-0.4.0-1.fc25 (FEDORA-2016-d02534a451) Fullscreen console binary clock -------------------------------------------------------------------------------- Update Information: Source point to new upstream fork, update, modernize, use Python 3 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1305872 - Port to python3 https://bugzilla.redhat.com/show_bug.cgi?id=1305872 -------------------------------------------------------------------------------- ================================================================================ bind-dyndb-ldap-10.1-1.fc25 (FEDORA-2016-e5a32e241e) LDAP back-end plug-in for BIND -------------------------------------------------------------------------------- Update Information: Update to 10.1. -------------------------------------------------------------------------------- ================================================================================ cAudio-2.3.1-2.fc25 (FEDORA-2016-a339c1b843) 3D Audio Engine Based on Openal -------------------------------------------------------------------------------- Update Information: 3D Audio Engine Based on Openal -------------------------------------------------------------------------------- References: [ 1 ] Bug #1361320 - Review Request: cAudio - 3D Audio Engine Based on Openal https://bugzilla.redhat.com/show_bug.cgi?id=1361320 -------------------------------------------------------------------------------- ================================================================================ ca-certificates-2016.2.9-1.0.fc25 (FEDORA-2016-d1408c3ba3) The Mozilla CA root certificate bundle -------------------------------------------------------------------------------- Update Information: This is an update to the Mozilla CA certificates list version 2.9, which has been published as part of Mozilla NSS 3.26. As in previous versions of the ca- certificates package, the CA list has been modified to keep several legacy CAs still trusted for compatibility reasons. Please refer to https://fedoraproject.org/wiki/CA-Certificates for details. If you prefer to use the unchanged list provided by Mozilla, and if you accept any compatibility issues it may cause, an administrator may configure the system by executing the "ca-legacy disable" command. Please refer to the manual page of the ca-legacy command for additional details. -------------------------------------------------------------------------------- ================================================================================ catfish-1.4.2-2.fc25 (FEDORA-2016-4ed694a907) A handy file search tool -------------------------------------------------------------------------------- Update Information: Support python3 version for catfish -------------------------------------------------------------------------------- ================================================================================ ccdciel-0.6.2-1.187svn.fc25 (FEDORA-2016-f3fcc04df8) CCD capture software -------------------------------------------------------------------------------- Update Information: Update to upstream 0.6.2 version. Now supports color CCDs and new macro scripts. -------------------------------------------------------------------------------- ================================================================================ chromium-52.0.2743.116-9.fc25 (FEDORA-2016-95d9b62ed3) A WebKit (Blink) powered web browser -------------------------------------------------------------------------------- Update Information: Disabled hidpi option in Chromium. Cleanup widevine handling so that third party addon package can exist. Add Requires(post) for selinux deps. Fix provides/requires to not include private libs. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1366858 - Latest Chromium update breaks HiDPI support https://bugzilla.redhat.com/show_bug.cgi?id=1366858 [ 2 ] Bug #1362382 - Missed capability, of widevine with Netflix https://bugzilla.redhat.com/show_bug.cgi?id=1362382 [ 3 ] Bug #1367198 - chromium should depend on semanage https://bugzilla.redhat.com/show_bug.cgi?id=1367198 [ 4 ] Bug #1367099 - Weird FG/BG colors make selected text vanish. https://bugzilla.redhat.com/show_bug.cgi?id=1367099 [ 5 ] Bug #1362513 - Chromium crashes on start https://bugzilla.redhat.com/show_bug.cgi?id=1362513 [ 6 ] Bug #1361157 - Chromium "Aw, Snap" pages https://bugzilla.redhat.com/show_bug.cgi?id=1361157 -------------------------------------------------------------------------------- ================================================================================ couchdb-1.6.1-18.fc25 (FEDORA-2016-6aa6716b4f) A document database server, accessible via a RESTful JSON API -------------------------------------------------------------------------------- Update Information: * Fix FTBFS with Erlang 19 -------------------------------------------------------------------------------- ================================================================================ cxf-3.1.4-1.fc25 (FEDORA-2016-e119fe151f) Apache CXF -------------------------------------------------------------------------------- Update Information: update to 3.1.4 -------------------------------------------------------------------------------- ChangeLog: * Fri Jun 17 2016 gil cattaneo <puntogil@xxxxxxxxx> 3.1.4-1 - update to 3.1.4 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1007206 - cxf: Enable module frontend/jaxrs https://bugzilla.redhat.com/show_bug.cgi?id=1007206 [ 2 ] Bug #1276555 - cxf-3.1.4 is available https://bugzilla.redhat.com/show_bug.cgi?id=1276555 -------------------------------------------------------------------------------- ================================================================================ dbxtool-7-2.fc25 (FEDORA-2016-0f013aee39) Secure Boot DBX updater -------------------------------------------------------------------------------- Update Information: This is the update to add blacklist items for CVE-2016-3320 (Microsoft bootloaders). See https://support.microsoft.com/en-us/kb/3179577 for more details. Before applying, "dbxtool -l" should show something around 14 entries in dbx on UEFI systems (though possibly several fewer). After updating the package and rebooting, it should list something around 77. -------------------------------------------------------------------------------- ================================================================================ dnsyo-2.0.7-1.fc25 (FEDORA-2016-1a4cb9c780) Check DNS against many global DNS servers -------------------------------------------------------------------------------- Update Information: Latest pypi release. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1366857 - current dnsyo program requires unavailable dnspython-1.11.1, but package doesn't https://bugzilla.redhat.com/show_bug.cgi?id=1366857 [ 2 ] Bug #1307428 - dnsyo: FTBFS in rawhide https://bugzilla.redhat.com/show_bug.cgi?id=1307428 -------------------------------------------------------------------------------- ================================================================================ efibootmgr-13-2.fc25 (FEDORA-2016-650675f139) EFI Boot Manager -------------------------------------------------------------------------------- Update Information: This updates efivar and efibootmgr to the current releases, as well as updating mokutil and pesign for those dependencies. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1307853 - pesign: FTBFS in rawhide https://bugzilla.redhat.com/show_bug.cgi?id=1307853 [ 2 ] Bug #1239786 - pesign: FTBFS in rawhide https://bugzilla.redhat.com/show_bug.cgi?id=1239786 [ 3 ] Bug #1276821 - pesign-0.112 is available https://bugzilla.redhat.com/show_bug.cgi?id=1276821 [ 4 ] Bug #1073209 - [RFE] Add --keep option when changing boot order in efibootmgr https://bugzilla.redhat.com/show_bug.cgi?id=1073209 [ 5 ] Bug #1012787 - BootLoaderError: failed to set new efi boot target https://bugzilla.redhat.com/show_bug.cgi?id=1012787 [ 6 ] Bug #1366826 - [abrt] efibootmgr: memset(): efibootmgr killed by SIGBUS https://bugzilla.redhat.com/show_bug.cgi?id=1366826 [ 7 ] Bug #1352680 - efibootmgr calls in anaconda crashing since efivar-0.24-1.fc25 landed https://bugzilla.redhat.com/show_bug.cgi?id=1352680 [ 8 ] Bug #1364823 - [abrt] efibootmgr: memset(): efibootmgr killed by SIGSEGV https://bugzilla.redhat.com/show_bug.cgi?id=1364823 [ 9 ] Bug #1146872 - efivar-0.21 is available https://bugzilla.redhat.com/show_bug.cgi?id=1146872 [ 10 ] Bug #1346030 - UEFI capsule firmware update fails on Dell XPS 13 (9350) https://bugzilla.redhat.com/show_bug.cgi?id=1346030 [ 11 ] Bug #1306479 - efivar-0.22 is available https://bugzilla.redhat.com/show_bug.cgi?id=1306479 -------------------------------------------------------------------------------- ================================================================================ efivar-28-1.fc25 (FEDORA-2016-650675f139) Tools to manage UEFI variables -------------------------------------------------------------------------------- Update Information: This updates efivar and efibootmgr to the current releases, as well as updating mokutil and pesign for those dependencies. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1307853 - pesign: FTBFS in rawhide https://bugzilla.redhat.com/show_bug.cgi?id=1307853 [ 2 ] Bug #1239786 - pesign: FTBFS in rawhide https://bugzilla.redhat.com/show_bug.cgi?id=1239786 [ 3 ] Bug #1276821 - pesign-0.112 is available https://bugzilla.redhat.com/show_bug.cgi?id=1276821 [ 4 ] Bug #1073209 - [RFE] Add --keep option when changing boot order in efibootmgr https://bugzilla.redhat.com/show_bug.cgi?id=1073209 [ 5 ] Bug #1012787 - BootLoaderError: failed to set new efi boot target https://bugzilla.redhat.com/show_bug.cgi?id=1012787 [ 6 ] Bug #1366826 - [abrt] efibootmgr: memset(): efibootmgr killed by SIGBUS https://bugzilla.redhat.com/show_bug.cgi?id=1366826 [ 7 ] Bug #1352680 - efibootmgr calls in anaconda crashing since efivar-0.24-1.fc25 landed https://bugzilla.redhat.com/show_bug.cgi?id=1352680 [ 8 ] Bug #1364823 - [abrt] efibootmgr: memset(): efibootmgr killed by SIGSEGV https://bugzilla.redhat.com/show_bug.cgi?id=1364823 [ 9 ] Bug #1146872 - efivar-0.21 is available https://bugzilla.redhat.com/show_bug.cgi?id=1146872 [ 10 ] Bug #1346030 - UEFI capsule firmware update fails on Dell XPS 13 (9350) https://bugzilla.redhat.com/show_bug.cgi?id=1346030 [ 11 ] Bug #1306479 - efivar-0.22 is available https://bugzilla.redhat.com/show_bug.cgi?id=1306479 -------------------------------------------------------------------------------- ================================================================================ erlang-eleveldb-2.2.19-4.fc25 (FEDORA-2016-c274e38e9f) Erlang LevelDB API -------------------------------------------------------------------------------- Update Information: * Fix FTBFS with Erlang 19 -------------------------------------------------------------------------------- ================================================================================ erlang-riak_ensemble-2.1.2-4.fc25 (FEDORA-2016-0a2012f410) Multi-Paxos framework in Erlang -------------------------------------------------------------------------------- Update Information: * Fixed FTBFS with Erlang 19 -------------------------------------------------------------------------------- ================================================================================ fedora-arm-installer-1.99.10-1.fc25 (FEDORA-2016-ade8f24b9b) Writes binary image files to any specified block device -------------------------------------------------------------------------------- Update Information: Update to 1.99.10, Added numerous boards -------------------------------------------------------------------------------- ================================================================================ file-5.28-4.fc25 (FEDORA-2016-180a7eca23) A utility for determining file types -------------------------------------------------------------------------------- Update Information: - avoid double encoding with Python 3 (#1367144) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1367144 - python3-magic file() returnes b"b'ASCII text'" https://bugzilla.redhat.com/show_bug.cgi?id=1367144 -------------------------------------------------------------------------------- ================================================================================ firewalld-0.4.3.3-1.fc25 (FEDORA-2016-4dedc6ec3d) A firewall daemon with D-Bus interface providing a dynamic firewall -------------------------------------------------------------------------------- Update Information: - Fix CVE-2016-5410: Firewall configuration can be modified by any logged in user - firewall/server/firewalld: Make getXSettings and getLogDenied CONFIG_INFO - Update AppData configuration file. - tests/firewalld_rich.py: Use new import structure and FirewallClient classes - tests/firewalld_direct.py: Use new import structure - tests: firewalld_direct: Fix assert to check for True instead of False - tests: firewalld_config: Fix expected value when querying the zone target - tests: firewalld_config: Use real nf_conntrack modules - firewalld.spec: Added comment about make call for %build - firewall-config: Use also width_request and height_request with default size - Updated firewall- config screenshot - firewall-cmd: Fixed typo in help output (RHBZ#1367171) - test-suite: Ignore stderr to get default zone also for missing firewalld.conf - firewall.core.logger: Warnings should be printed to stderr per default - firewall.core.fw_nm: Ignore NetworkManager if NM.Client connect fails - firewall-cmd, firewallctl: Gracefully fail if SystemBus can not be aquired - firewall.client: Generate new DBUS_ERROR if SystemBus can not be aquired - test- suite: Do not fail on ALREADY_ENABLED --add-destination tests - firewall.command: ALREADY_ENABLED, NOT_ENABLED, ZONE_ALREADY_SET are warnings - doc/xml/firewalld.dbus.xml: Removed undefined reference - doc/xml/transform- html.xsl.in: Fixed references in the document - doc/xml/firewalld.{dbus,zone}.xml: Embed programlisting in para - doc/xml /transform-html.xsl.in: Enhanced html formatting closer to the man page - firewall: core: fw_nm: Instantiate the NM client only once - firewall/core/io/*.py: Do not traceback on a general sax parsing issue - firewall-offline-cmd: Fix --{add,remove}-entries-from-file - firewall-cmd: Add missing action to fix --{add,remove}-entries-from-file - firewall.core.prog: Do not output stderr, but return it in the error case - firewall.core.io.ifcfg.py: Fix ifcfg file reader and writer (RHBZ#1362171) - config/firewall.service.in: use KillMode=mixed - config/firewalld.service.in: use network-pre.target - firewall-config: Add missing gettext.textdomain call to fix translations - Add UDP to transmission-client.xml service - tests/firewall-[offline-]cmd_test.sh: Hide errors and warnings - firewall.client: Fix ALREADY_ENABLED errors in icmptype destination calls - firewall.client: Fix NOT_ENABLED errors in icmptype destination calls - firewall.client: Use {ALREADY,NOT}_ENABLED errors in icmptype destination calls - firewall.command: Add the removed FirewallError handling to the action (a17ce50) - firewall.command: Do not use query methods for sequences and also single options - Add missing information about MAC and ipset sources to man pages and help output - firewalld.spec: Add BuildRequires for libxslt to enable rebuild of man pages - firewall[-offline]-cmd, firewallctl, firewall.command: Use sys.{stdout,stderr} - firewallctl: Fix traceback if not connected to firewalld - firewall-config: Initialize value in on_richRuleDialogElementChooser_clicked - firewall.command: Convert errors to string for Python3 - firewall.command: Get proper firewall error code from D-BusExceptions - firewall-cmd: Fixed traceback without args - Add missing service files to Makefile.am - shell-completion: Add shell completion support for --{get,set}--{description,short} -------------------------------------------------------------------------------- References: [ 1 ] Bug #1358380 - firewall-cmd crashes if /run/dbus/system_bus_socket does not exist https://bugzilla.redhat.com/show_bug.cgi?id=1358380 [ 2 ] Bug #1361589 - firewall-config error when using pt-BR language https://bugzilla.redhat.com/show_bug.cgi?id=1361589 [ 3 ] Bug #1367381 - CVE-2016-5410 firewalld: Firewall configuration can be modified by any logged in user [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1367381 [ 4 ] Bug #1363741 - firewall-cmd ipset --add-entries-from-file regression https://bugzilla.redhat.com/show_bug.cgi?id=1363741 -------------------------------------------------------------------------------- ================================================================================ gap-pkg-hap-1.11-2.fc25 (FEDORA-2016-7c5ea14c03) Homological Algebra Programming for GAP -------------------------------------------------------------------------------- Update Information: This new package contains a homological algebra library for use with the GAP computer algebra system, and is still under development. Its initial focus is on computations related to the cohomology of groups. Both finite and infinite groups are handled, with emphasis on integral coefficients. Recent additions include some functions for computing homology of crossed modules and simplicial groups, and also some functions for handling simplicial complexes, cubical complexes and regular CW-complexes in the context of topological data analysis. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1364605 - Review Request: gap-pkg-hap - Homological Algebra Programming for GAP https://bugzilla.redhat.com/show_bug.cgi?id=1364605 -------------------------------------------------------------------------------- ================================================================================ gdb-heap-0.5-26.fc25 (FEDORA-2016-4ed6043098) Extensions to gdb for debugging dynamic memory allocation -------------------------------------------------------------------------------- Update Information: Update to work with glibc-2.24. -------------------------------------------------------------------------------- ================================================================================ golang-gopkg-go-macaroon-macaroon-1-0.1.gitd8fd13e.fc25 (FEDORA-2016-b31332fa53) A native Go implementation of macaroons -------------------------------------------------------------------------------- Update Information: First package for Fedora -------------------------------------------------------------------------------- References: [ 1 ] Bug #1367407 - Review Request: golang-gopkg-go-macaroon-macaroon - A native Go implementation of macaroons https://bugzilla.redhat.com/show_bug.cgi?id=1367407 -------------------------------------------------------------------------------- ================================================================================ ibus-table-others-1.3.8-1.fc25 (FEDORA-2016-b946cea969) Various tables for IBus-Table -------------------------------------------------------------------------------- Update Information: update to latest upstream 1.3.8 -------------------------------------------------------------------------------- ================================================================================ indistarter-0.6.0-1.39svn.fc25 (FEDORA-2016-b9172bb736) GUI to start, stop and control an INDI server -------------------------------------------------------------------------------- Update Information: Update to 0.6.0 -------------------------------------------------------------------------------- ================================================================================ itext-2.1.7-33.fc25 (FEDORA-2016-46afa7128f) A Free Java-PDF library -------------------------------------------------------------------------------- Update Information: apply the modifications made by TIBCO Software for JasperReports >= 6.2 -------------------------------------------------------------------------------- ================================================================================ jbossws-cxf-5.1.3-1.fc25 (FEDORA-2016-65305e882d) JBoss Web Services CXF stack -------------------------------------------------------------------------------- Update Information: update to 5.1.3 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1205261 - jbossws-cxf: Upgrade to 5.1.3.Final https://bugzilla.redhat.com/show_bug.cgi?id=1205261 -------------------------------------------------------------------------------- ================================================================================ kubernetes-ansible-0.6.0-0.2.gitd65ebd5.fc25 (FEDORA-2016-981bbeb036) Playbook and set of roles for seting up a Kubernetes cluster onto machines -------------------------------------------------------------------------------- Update Information: python-netaddr is required by ipaddr filter -------------------------------------------------------------------------------- References: [ 1 ] Bug #1367778 - python-netaddr is required by ipaddr filter https://bugzilla.redhat.com/show_bug.cgi?id=1367778 -------------------------------------------------------------------------------- ================================================================================ lcms2-2.8-2.fc25 (FEDORA-2016-bc8647110a) Color Management Engine -------------------------------------------------------------------------------- Update Information: lcms2: Out-of-bounds read in Type_MLU_Read() -------------------------------------------------------------------------------- References: [ 1 ] Bug #1367357 - lcms2: Out-of-bounds read in Type_MLU_Read() https://bugzilla.redhat.com/show_bug.cgi?id=1367357 -------------------------------------------------------------------------------- ================================================================================ libevdev-1.5.2-2.fc25 (FEDORA-2016-20e4d6cb3d) Kernel Evdev Device Wrapper Library -------------------------------------------------------------------------------- Update Information: Fix complaints about double tracking IDs on the MagicMouse (#1361325) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1361325 - libevdev error in sanitize_event, BUG double tracking https://bugzilla.redhat.com/show_bug.cgi?id=1361325 -------------------------------------------------------------------------------- ================================================================================ libtaskotron-0.4.16-1.fc25 (FEDORA-2016-42a19eb8f4) Taskotron Support Library -------------------------------------------------------------------------------- Update Information: - update to 0.4.16 - symlink testcloud images instead of copying - copy dir to minion via tarball - yumrepoinfo.conf: Fedora 25 has been branched -------------------------------------------------------------------------------- ================================================================================ libtermkey-0.18-1.fc25 (FEDORA-2016-d0cd6b1c21) Library for easy processing of keyboard entry from terminal-based programs -------------------------------------------------------------------------------- Update Information: New package -------------------------------------------------------------------------------- References: [ 1 ] Bug #1327198 - Review Request: libtermkey - Library for easy processing of keyboard entry from terminal-based programs https://bugzilla.redhat.com/show_bug.cgi?id=1327198 -------------------------------------------------------------------------------- ================================================================================ libtimezonemap-0.4.5-4.fc25 (FEDORA-2016-8988869509) Time zone map widget for Gtk+ -------------------------------------------------------------------------------- Update Information: Bring back the setting of $TZ (#1367647) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1367647 - system clock set incorrectly after installation https://bugzilla.redhat.com/show_bug.cgi?id=1367647 -------------------------------------------------------------------------------- ================================================================================ libvterm-0-0.1.bzr681.fc25 (FEDORA-2016-df8e01600e) An abstract library implementation of a VT220/xterm/ECMA-48 terminal emulator -------------------------------------------------------------------------------- Update Information: New package -------------------------------------------------------------------------------- References: [ 1 ] Bug #1327218 - Review Request: libvterm - An abstract library implementation of a VT220/xterm/ECMA-48 terminal emulator https://bugzilla.redhat.com/show_bug.cgi?id=1327218 -------------------------------------------------------------------------------- ================================================================================ lorem-ipsum-generator-0.3.20160816git-14.fc25 (FEDORA-2016-d80a48ac28) Generates random lorem ipsum text -------------------------------------------------------------------------------- Update Information: Migrate to the github version and python 3 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1282272 - lorem-ipsum-generator Python 3 port https://bugzilla.redhat.com/show_bug.cgi?id=1282272 -------------------------------------------------------------------------------- ================================================================================ mingw-binutils-2.27-1.fc25 (FEDORA-2016-3a65fdb7f3) Cross-compiled version of binutils for Win32 and Win64 environments -------------------------------------------------------------------------------- Update Information: MinGW binutils 2.27 release. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1356531 - libstdc++-6.dll linked by binutils subtly broken https://bugzilla.redhat.com/show_bug.cgi?id=1356531 -------------------------------------------------------------------------------- ================================================================================ mock-1.2.20-1.fc25 (FEDORA-2016-7a569517fe) Builds packages inside chroots -------------------------------------------------------------------------------- Update Information: * plugin PackageState is now enabled by default and it has new options. By default this plugin now generate list of installed packages. List of available packages is disabled by default. * Fedora 25 configs has been added * GPG keys in configs are now used from package ``distribution-gpg-keys``. Keys in /etc/pki/mock will be still shipped for some time, so we do not break old user config. But new one will not be added and users are encouraged to migrate their paths to GPG keys. * you can include some other config using: include('/path/to/config/to/be/included/include.cfg') * there is new option available which will install those additional package to minimal chroot. This is extension of already existing option ``chroot_setup_cmd``. It was added to easy automated changed of minimal buildroot in Copr.: config_opts['chroot_additional_packages'] = 'some_package other_package' -------------------------------------------------------------------------------- References: [ 1 ] Bug #1272381 - RFE: implement "include" statement for mock config files https://bugzilla.redhat.com/show_bug.cgi?id=1272381 [ 2 ] Bug #1358397 - unable to update /etc/mock/default.cfg https://bugzilla.redhat.com/show_bug.cgi?id=1358397 [ 3 ] Bug #1362478 - package state plugin error: SubprocessError https://bugzilla.redhat.com/show_bug.cgi?id=1362478 [ 4 ] Bug #1277187 - Packages NVRs missing in the root.log if populated from the cache https://bugzilla.redhat.com/show_bug.cgi?id=1277187 [ 5 ] Bug #1298220 - --unpriv does not work together with --new-chroot https://bugzilla.redhat.com/show_bug.cgi?id=1298220 [ 6 ] Bug #1264508 - mock --new-chroot + --cwd + --chroot incorrect behavior https://bugzilla.redhat.com/show_bug.cgi?id=1264508 -------------------------------------------------------------------------------- ================================================================================ mokutil-0.3.0-3.fc25 (FEDORA-2016-650675f139) Tool to manage UEFI Secure Boot MoK Keys -------------------------------------------------------------------------------- Update Information: This updates efivar and efibootmgr to the current releases, as well as updating mokutil and pesign for those dependencies. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1307853 - pesign: FTBFS in rawhide https://bugzilla.redhat.com/show_bug.cgi?id=1307853 [ 2 ] Bug #1239786 - pesign: FTBFS in rawhide https://bugzilla.redhat.com/show_bug.cgi?id=1239786 [ 3 ] Bug #1276821 - pesign-0.112 is available https://bugzilla.redhat.com/show_bug.cgi?id=1276821 [ 4 ] Bug #1073209 - [RFE] Add --keep option when changing boot order in efibootmgr https://bugzilla.redhat.com/show_bug.cgi?id=1073209 [ 5 ] Bug #1012787 - BootLoaderError: failed to set new efi boot target https://bugzilla.redhat.com/show_bug.cgi?id=1012787 [ 6 ] Bug #1366826 - [abrt] efibootmgr: memset(): efibootmgr killed by SIGBUS https://bugzilla.redhat.com/show_bug.cgi?id=1366826 [ 7 ] Bug #1352680 - efibootmgr calls in anaconda crashing since efivar-0.24-1.fc25 landed https://bugzilla.redhat.com/show_bug.cgi?id=1352680 [ 8 ] Bug #1364823 - [abrt] efibootmgr: memset(): efibootmgr killed by SIGSEGV https://bugzilla.redhat.com/show_bug.cgi?id=1364823 [ 9 ] Bug #1146872 - efivar-0.21 is available https://bugzilla.redhat.com/show_bug.cgi?id=1146872 [ 10 ] Bug #1346030 - UEFI capsule firmware update fails on Dell XPS 13 (9350) https://bugzilla.redhat.com/show_bug.cgi?id=1346030 [ 11 ] Bug #1306479 - efivar-0.22 is available https://bugzilla.redhat.com/show_bug.cgi?id=1306479 -------------------------------------------------------------------------------- ================================================================================ nbd-3.14-2.fc25 (FEDORA-2016-0c4735b50d) Network Block Device user-space tools (TCP version) -------------------------------------------------------------------------------- Update Information: Update to 3.14. -------------------------------------------------------------------------------- ================================================================================ nco-4.6.1-1.fc25 (FEDORA-2016-b22aa18333) Suite of programs for manipulating NetCDF/HDF4 files -------------------------------------------------------------------------------- Update Information: Update to 4.6.1 -------------------------------------------------------------------------------- ================================================================================ nodejs-6.3.1-101.fc25 (FEDORA-2016-1dbf4ecb44) JavaScript runtime -------------------------------------------------------------------------------- Update Information: Enable internationalization support in Node.js ---- This update works around a bug in RPM Obsoletes processing that made it difficult to install `npm`. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1367538 - nodejs should build with ICU https://bugzilla.redhat.com/show_bug.cgi?id=1367538 [ 2 ] Bug #1351007 - nodejs should provides npm and obsolete npm-3.5.4-5.fc24.noarch https://bugzilla.redhat.com/show_bug.cgi?id=1351007 -------------------------------------------------------------------------------- ================================================================================ perdition-2.1-7.fc25 (FEDORA-2016-0a79fbf4ad) Mail Retrieval Proxy -------------------------------------------------------------------------------- Update Information: Fix pid-file naming - bz#1289325 (again). -------------------------------------------------------------------------------- References: [ 1 ] Bug #1289325 - systemd pidfile wrong https://bugzilla.redhat.com/show_bug.cgi?id=1289325 -------------------------------------------------------------------------------- ================================================================================ perl-DBD-MySQL-4.035-2.fc25 (FEDORA-2016-d0c16fc811) A MySQL interface for Perl -------------------------------------------------------------------------------- Update Information: Fix default value for nossl option -------------------------------------------------------------------------------- References: [ 1 ] Bug #1366773 - Connection to a remote server using SSL fails https://bugzilla.redhat.com/show_bug.cgi?id=1366773 -------------------------------------------------------------------------------- ================================================================================ perl-WWW-Search-2.516-1.fc25 (FEDORA-2016-99ea25a8c5) Virtual base class for WWW searches -------------------------------------------------------------------------------- Update Information: Updated to the latest version -------------------------------------------------------------------------------- References: [ 1 ] Bug #1347949 - perl-WWW-Search-2.516 is available https://bugzilla.redhat.com/show_bug.cgi?id=1347949 -------------------------------------------------------------------------------- ================================================================================ pesign-0.112-4.fc25 (FEDORA-2016-650675f139) Signing utility for UEFI binaries -------------------------------------------------------------------------------- Update Information: This updates efivar and efibootmgr to the current releases, as well as updating mokutil and pesign for those dependencies. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1307853 - pesign: FTBFS in rawhide https://bugzilla.redhat.com/show_bug.cgi?id=1307853 [ 2 ] Bug #1239786 - pesign: FTBFS in rawhide https://bugzilla.redhat.com/show_bug.cgi?id=1239786 [ 3 ] Bug #1276821 - pesign-0.112 is available https://bugzilla.redhat.com/show_bug.cgi?id=1276821 [ 4 ] Bug #1073209 - [RFE] Add --keep option when changing boot order in efibootmgr https://bugzilla.redhat.com/show_bug.cgi?id=1073209 [ 5 ] Bug #1012787 - BootLoaderError: failed to set new efi boot target https://bugzilla.redhat.com/show_bug.cgi?id=1012787 [ 6 ] Bug #1366826 - [abrt] efibootmgr: memset(): efibootmgr killed by SIGBUS https://bugzilla.redhat.com/show_bug.cgi?id=1366826 [ 7 ] Bug #1352680 - efibootmgr calls in anaconda crashing since efivar-0.24-1.fc25 landed https://bugzilla.redhat.com/show_bug.cgi?id=1352680 [ 8 ] Bug #1364823 - [abrt] efibootmgr: memset(): efibootmgr killed by SIGSEGV https://bugzilla.redhat.com/show_bug.cgi?id=1364823 [ 9 ] Bug #1146872 - efivar-0.21 is available https://bugzilla.redhat.com/show_bug.cgi?id=1146872 [ 10 ] Bug #1346030 - UEFI capsule firmware update fails on Dell XPS 13 (9350) https://bugzilla.redhat.com/show_bug.cgi?id=1346030 [ 11 ] Bug #1306479 - efivar-0.22 is available https://bugzilla.redhat.com/show_bug.cgi?id=1306479 -------------------------------------------------------------------------------- ================================================================================ protobuf-java-format-1.4-2.fc25 (FEDORA-2016-917fef992a) Serialization and de-serialization of different formats -------------------------------------------------------------------------------- Update Information: Initial import (#1363921). -------------------------------------------------------------------------------- References: [ 1 ] Bug #1363921 - Review Request: protobuf-java-format - Serialization and de-serialization of different formats https://bugzilla.redhat.com/show_bug.cgi?id=1363921 -------------------------------------------------------------------------------- ================================================================================ python-docker-squash-1.0.1-1.fc25 (FEDORA-2016-53b367d030) Docker layer squashing tool -------------------------------------------------------------------------------- Update Information: Upstream release 1.0.1 -------------------------------------------------------------------------------- ================================================================================ python-prov-1.4.0-1.fc25 (FEDORA-2016-ff5b4b7979) W3C Provenance Data Model supporting PROV-JSON and PROV-XML import/export -------------------------------------------------------------------------------- Update Information: New package -------------------------------------------------------------------------------- References: [ 1 ] Bug #1288882 - Review Request: python-prov - W3C Provenance Data Model supporting PROV-JSON and PROV-XML import/export https://bugzilla.redhat.com/show_bug.cgi?id=1288882 -------------------------------------------------------------------------------- ================================================================================ python-tqdm-4.8.3-1.fc25 (FEDORA-2016-f7a52b0e9e) A Fast, Extensible Progress Meter -------------------------------------------------------------------------------- Update Information: New package -------------------------------------------------------------------------------- References: [ 1 ] Bug #1349604 - Review Request: python-tqdm - A Fast, Extensible Progress Meter https://bugzilla.redhat.com/show_bug.cgi?id=1349604 -------------------------------------------------------------------------------- ================================================================================ rebase-helper-0.8.0-2.fc25 (FEDORA-2016-7feb50f38f) The tool which helps you with rebase package -------------------------------------------------------------------------------- Update Information: Fix bug caused by dependency to python-pyquery (#1363777) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1363777 - couldn't run rebase-helper: pyquery package wasn't available https://bugzilla.redhat.com/show_bug.cgi?id=1363777 -------------------------------------------------------------------------------- ================================================================================ remmina-1.2.0-0.21.git.679bb8e.fc25 (FEDORA-2016-4ad549a065) Remote Desktop Client -------------------------------------------------------------------------------- Update Information: Update to try solve issues with tray icons - https://github.com/FreeRDP/Remmina/issues/944#issuecomment-239913278 -------------------------------------------------------------------------------- ================================================================================ rubygem-actioncable-5.0.0.1-1.fc25 (FEDORA-2016-5760339e76) WebSocket framework for Rails -------------------------------------------------------------------------------- Update Information: Update to Rails 5.0.0.1. Enable whole test suite in Railties. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1366480 - CVE-2016-6316 rubygem-actionview: cross-site scripting flaw in Action View [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1366480 [ 2 ] Bug #1366419 - rubygem-actionpack-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366419 [ 3 ] Bug #1366418 - rubygem-actionmailer-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366418 [ 4 ] Bug #1366423 - rubygem-activerecord-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366423 [ 5 ] Bug #1366420 - rubygem-actionview-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366420 [ 6 ] Bug #1366424 - rubygem-activesupport-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366424 [ 7 ] Bug #1366421 - rubygem-activejob-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366421 [ 8 ] Bug #1352605 - rubygem-railties-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1352605 [ 9 ] Bug #1366422 - rubygem-activemodel-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366422 [ 10 ] Bug #1366417 - rubygem-actioncable-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366417 [ 11 ] Bug #1366479 - CVE-2016-6317 rubygem-activerecord: unsafe query generation in Active Record [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1366479 [ 12 ] Bug #1366428 - rubygem-rails-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366428 -------------------------------------------------------------------------------- ================================================================================ rubygem-actionmailer-5.0.0.1-1.fc25 (FEDORA-2016-5760339e76) Email composition, delivery, and receiving framework (part of Rails) -------------------------------------------------------------------------------- Update Information: Update to Rails 5.0.0.1. Enable whole test suite in Railties. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1366480 - CVE-2016-6316 rubygem-actionview: cross-site scripting flaw in Action View [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1366480 [ 2 ] Bug #1366419 - rubygem-actionpack-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366419 [ 3 ] Bug #1366418 - rubygem-actionmailer-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366418 [ 4 ] Bug #1366423 - rubygem-activerecord-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366423 [ 5 ] Bug #1366420 - rubygem-actionview-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366420 [ 6 ] Bug #1366424 - rubygem-activesupport-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366424 [ 7 ] Bug #1366421 - rubygem-activejob-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366421 [ 8 ] Bug #1352605 - rubygem-railties-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1352605 [ 9 ] Bug #1366422 - rubygem-activemodel-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366422 [ 10 ] Bug #1366417 - rubygem-actioncable-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366417 [ 11 ] Bug #1366479 - CVE-2016-6317 rubygem-activerecord: unsafe query generation in Active Record [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1366479 [ 12 ] Bug #1366428 - rubygem-rails-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366428 -------------------------------------------------------------------------------- ================================================================================ rubygem-actionpack-5.0.0.1-2.fc25 (FEDORA-2016-5760339e76) Web-flow and rendering framework putting the VC in MVC (part of Rails) -------------------------------------------------------------------------------- Update Information: Update to Rails 5.0.0.1. Enable whole test suite in Railties. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1366480 - CVE-2016-6316 rubygem-actionview: cross-site scripting flaw in Action View [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1366480 [ 2 ] Bug #1366419 - rubygem-actionpack-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366419 [ 3 ] Bug #1366418 - rubygem-actionmailer-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366418 [ 4 ] Bug #1366423 - rubygem-activerecord-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366423 [ 5 ] Bug #1366420 - rubygem-actionview-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366420 [ 6 ] Bug #1366424 - rubygem-activesupport-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366424 [ 7 ] Bug #1366421 - rubygem-activejob-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366421 [ 8 ] Bug #1352605 - rubygem-railties-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1352605 [ 9 ] Bug #1366422 - rubygem-activemodel-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366422 [ 10 ] Bug #1366417 - rubygem-actioncable-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366417 [ 11 ] Bug #1366479 - CVE-2016-6317 rubygem-activerecord: unsafe query generation in Active Record [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1366479 [ 12 ] Bug #1366428 - rubygem-rails-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366428 -------------------------------------------------------------------------------- ================================================================================ rubygem-actionview-5.0.0.1-2.fc25 (FEDORA-2016-5760339e76) Rendering framework putting the V in MVC (part of Rails) -------------------------------------------------------------------------------- Update Information: Update to Rails 5.0.0.1. Enable whole test suite in Railties. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1366480 - CVE-2016-6316 rubygem-actionview: cross-site scripting flaw in Action View [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1366480 [ 2 ] Bug #1366419 - rubygem-actionpack-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366419 [ 3 ] Bug #1366418 - rubygem-actionmailer-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366418 [ 4 ] Bug #1366423 - rubygem-activerecord-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366423 [ 5 ] Bug #1366420 - rubygem-actionview-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366420 [ 6 ] Bug #1366424 - rubygem-activesupport-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366424 [ 7 ] Bug #1366421 - rubygem-activejob-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366421 [ 8 ] Bug #1352605 - rubygem-railties-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1352605 [ 9 ] Bug #1366422 - rubygem-activemodel-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366422 [ 10 ] Bug #1366417 - rubygem-actioncable-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366417 [ 11 ] Bug #1366479 - CVE-2016-6317 rubygem-activerecord: unsafe query generation in Active Record [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1366479 [ 12 ] Bug #1366428 - rubygem-rails-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366428 -------------------------------------------------------------------------------- ================================================================================ rubygem-activejob-5.0.0.1-1.fc25 (FEDORA-2016-5760339e76) Job framework with pluggable queues -------------------------------------------------------------------------------- Update Information: Update to Rails 5.0.0.1. Enable whole test suite in Railties. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1366480 - CVE-2016-6316 rubygem-actionview: cross-site scripting flaw in Action View [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1366480 [ 2 ] Bug #1366419 - rubygem-actionpack-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366419 [ 3 ] Bug #1366418 - rubygem-actionmailer-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366418 [ 4 ] Bug #1366423 - rubygem-activerecord-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366423 [ 5 ] Bug #1366420 - rubygem-actionview-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366420 [ 6 ] Bug #1366424 - rubygem-activesupport-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366424 [ 7 ] Bug #1366421 - rubygem-activejob-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366421 [ 8 ] Bug #1352605 - rubygem-railties-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1352605 [ 9 ] Bug #1366422 - rubygem-activemodel-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366422 [ 10 ] Bug #1366417 - rubygem-actioncable-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366417 [ 11 ] Bug #1366479 - CVE-2016-6317 rubygem-activerecord: unsafe query generation in Active Record [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1366479 [ 12 ] Bug #1366428 - rubygem-rails-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366428 -------------------------------------------------------------------------------- ================================================================================ rubygem-activemodel-5.0.0.1-1.fc25 (FEDORA-2016-5760339e76) A toolkit for building modeling frameworks (part of Rails) -------------------------------------------------------------------------------- Update Information: Update to Rails 5.0.0.1. Enable whole test suite in Railties. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1366480 - CVE-2016-6316 rubygem-actionview: cross-site scripting flaw in Action View [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1366480 [ 2 ] Bug #1366419 - rubygem-actionpack-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366419 [ 3 ] Bug #1366418 - rubygem-actionmailer-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366418 [ 4 ] Bug #1366423 - rubygem-activerecord-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366423 [ 5 ] Bug #1366420 - rubygem-actionview-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366420 [ 6 ] Bug #1366424 - rubygem-activesupport-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366424 [ 7 ] Bug #1366421 - rubygem-activejob-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366421 [ 8 ] Bug #1352605 - rubygem-railties-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1352605 [ 9 ] Bug #1366422 - rubygem-activemodel-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366422 [ 10 ] Bug #1366417 - rubygem-actioncable-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366417 [ 11 ] Bug #1366479 - CVE-2016-6317 rubygem-activerecord: unsafe query generation in Active Record [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1366479 [ 12 ] Bug #1366428 - rubygem-rails-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366428 -------------------------------------------------------------------------------- ================================================================================ rubygem-activerecord-5.0.0.1-1.fc25 (FEDORA-2016-5760339e76) Object-relational mapper framework (part of Rails) -------------------------------------------------------------------------------- Update Information: Update to Rails 5.0.0.1. Enable whole test suite in Railties. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1366480 - CVE-2016-6316 rubygem-actionview: cross-site scripting flaw in Action View [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1366480 [ 2 ] Bug #1366419 - rubygem-actionpack-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366419 [ 3 ] Bug #1366418 - rubygem-actionmailer-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366418 [ 4 ] Bug #1366423 - rubygem-activerecord-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366423 [ 5 ] Bug #1366420 - rubygem-actionview-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366420 [ 6 ] Bug #1366424 - rubygem-activesupport-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366424 [ 7 ] Bug #1366421 - rubygem-activejob-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366421 [ 8 ] Bug #1352605 - rubygem-railties-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1352605 [ 9 ] Bug #1366422 - rubygem-activemodel-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366422 [ 10 ] Bug #1366417 - rubygem-actioncable-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366417 [ 11 ] Bug #1366479 - CVE-2016-6317 rubygem-activerecord: unsafe query generation in Active Record [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1366479 [ 12 ] Bug #1366428 - rubygem-rails-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366428 -------------------------------------------------------------------------------- ================================================================================ rubygem-activesupport-5.0.0.1-1.fc25 (FEDORA-2016-5760339e76) A support libraries and Ruby core extensions extracted from the Rails framework -------------------------------------------------------------------------------- Update Information: Update to Rails 5.0.0.1. Enable whole test suite in Railties. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1366480 - CVE-2016-6316 rubygem-actionview: cross-site scripting flaw in Action View [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1366480 [ 2 ] Bug #1366419 - rubygem-actionpack-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366419 [ 3 ] Bug #1366418 - rubygem-actionmailer-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366418 [ 4 ] Bug #1366423 - rubygem-activerecord-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366423 [ 5 ] Bug #1366420 - rubygem-actionview-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366420 [ 6 ] Bug #1366424 - rubygem-activesupport-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366424 [ 7 ] Bug #1366421 - rubygem-activejob-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366421 [ 8 ] Bug #1352605 - rubygem-railties-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1352605 [ 9 ] Bug #1366422 - rubygem-activemodel-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366422 [ 10 ] Bug #1366417 - rubygem-actioncable-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366417 [ 11 ] Bug #1366479 - CVE-2016-6317 rubygem-activerecord: unsafe query generation in Active Record [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1366479 [ 12 ] Bug #1366428 - rubygem-rails-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366428 -------------------------------------------------------------------------------- ================================================================================ rubygem-kramdown-1.12.0-1.fc25 (FEDORA-2016-73ec95f2f1) Fast, pure-Ruby Markdown-superset converter -------------------------------------------------------------------------------- Update Information: New version 1.12.0 is released. -------------------------------------------------------------------------------- ================================================================================ rubygem-rails-5.0.0.1-1.fc25 (FEDORA-2016-5760339e76) Full-stack web application framework -------------------------------------------------------------------------------- Update Information: Update to Rails 5.0.0.1. Enable whole test suite in Railties. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1366480 - CVE-2016-6316 rubygem-actionview: cross-site scripting flaw in Action View [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1366480 [ 2 ] Bug #1366419 - rubygem-actionpack-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366419 [ 3 ] Bug #1366418 - rubygem-actionmailer-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366418 [ 4 ] Bug #1366423 - rubygem-activerecord-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366423 [ 5 ] Bug #1366420 - rubygem-actionview-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366420 [ 6 ] Bug #1366424 - rubygem-activesupport-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366424 [ 7 ] Bug #1366421 - rubygem-activejob-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366421 [ 8 ] Bug #1352605 - rubygem-railties-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1352605 [ 9 ] Bug #1366422 - rubygem-activemodel-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366422 [ 10 ] Bug #1366417 - rubygem-actioncable-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366417 [ 11 ] Bug #1366479 - CVE-2016-6317 rubygem-activerecord: unsafe query generation in Active Record [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1366479 [ 12 ] Bug #1366428 - rubygem-rails-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366428 -------------------------------------------------------------------------------- ================================================================================ rubygem-railties-5.0.0.1-2.fc25 (FEDORA-2016-5760339e76) Tools for creating, working with, and running Rails applications -------------------------------------------------------------------------------- Update Information: Update to Rails 5.0.0.1. Enable whole test suite in Railties. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1366480 - CVE-2016-6316 rubygem-actionview: cross-site scripting flaw in Action View [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1366480 [ 2 ] Bug #1366419 - rubygem-actionpack-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366419 [ 3 ] Bug #1366418 - rubygem-actionmailer-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366418 [ 4 ] Bug #1366423 - rubygem-activerecord-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366423 [ 5 ] Bug #1366420 - rubygem-actionview-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366420 [ 6 ] Bug #1366424 - rubygem-activesupport-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366424 [ 7 ] Bug #1366421 - rubygem-activejob-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366421 [ 8 ] Bug #1352605 - rubygem-railties-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1352605 [ 9 ] Bug #1366422 - rubygem-activemodel-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366422 [ 10 ] Bug #1366417 - rubygem-actioncable-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366417 [ 11 ] Bug #1366479 - CVE-2016-6317 rubygem-activerecord: unsafe query generation in Active Record [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1366479 [ 12 ] Bug #1366428 - rubygem-rails-5.0.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366428 -------------------------------------------------------------------------------- ================================================================================ rubygem-rmagick-2.16.0-1.fc25 (FEDORA-2016-9162d816b1) Ruby binding to ImageMagick -------------------------------------------------------------------------------- Update Information: New version 2.16.0 is released. -------------------------------------------------------------------------------- ================================================================================ rubygem-spring-watcher-listen-2.0.0-1.fc25 (FEDORA-2016-263c19fb2e) Makes spring watch files using the listen gem -------------------------------------------------------------------------------- Update Information: - Initial import (rhbz#1361584). -------------------------------------------------------------------------------- ================================================================================ rubygem-sprockets-rails-3.1.1-1.fc25 (FEDORA-2016-7f887d46b7) Sprockets Rails integration -------------------------------------------------------------------------------- Update Information: Update to sprockets-rails 3.1.1. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1260895 - rubygem-sprockets-rails-3.1.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1260895 -------------------------------------------------------------------------------- ================================================================================ snap-confine-1.0.39-2.fc25 (FEDORA-2016-c5556c3bef) Confinement system for snap applications -------------------------------------------------------------------------------- Update Information: Add the patch locally, not via sources -------------------------------------------------------------------------------- References: [ 1 ] Bug #1360199 - Review Request: snap-confine - Confinement system for snap applications https://bugzilla.redhat.com/show_bug.cgi?id=1360199 -------------------------------------------------------------------------------- ================================================================================ sqliteodbc-0.9994-1.fc25 (FEDORA-2016-1a3d3d42db) SQLite ODBC Driver -------------------------------------------------------------------------------- Update Information: Initial package. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1146181 - Review Request: sqliteodbc - SQLite ODBC Driver https://bugzilla.redhat.com/show_bug.cgi?id=1146181 -------------------------------------------------------------------------------- ================================================================================ testcloud-0.1.10-1.fc25 (FEDORA-2016-42a19eb8f4) Tool for running cloud images locally -------------------------------------------------------------------------------- Update Information: - update to 0.4.16 - symlink testcloud images instead of copying - copy dir to minion via tarball - yumrepoinfo.conf: Fedora 25 has been branched -------------------------------------------------------------------------------- ================================================================================ tipl-0-0.2.git6a59380.fc25 (FEDORA-2016-8a9d641c47) Template image processing library -------------------------------------------------------------------------------- Update Information: New package -------------------------------------------------------------------------------- References: [ 1 ] Bug #1291008 - Review Request: tipl - Template image processing library https://bugzilla.redhat.com/show_bug.cgi?id=1291008 -------------------------------------------------------------------------------- ================================================================================ tomcat-native-1.2.8-1.fc25 (FEDORA-2016-134af5eb0f) Tomcat native library -------------------------------------------------------------------------------- Update Information: Update to 1.2.8 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1352593 - tomcat-native-1.2.8 is available https://bugzilla.redhat.com/show_bug.cgi?id=1352593 -------------------------------------------------------------------------------- ================================================================================ uflash-1.0.3-1.fc25 (FEDORA-2016-1216c2eb68) A module and utility to flash Python onto the BBC micro:bit -------------------------------------------------------------------------------- Update Information: Update to 1.0.3 -------------------------------------------------------------------------------- ================================================================================ vym-2.5.21-1.fc25 (FEDORA-2016-68c811814f) View your mind -------------------------------------------------------------------------------- Update Information: 2.5.21 -------------------------------------------------------------------------------- ================================================================================ wayland-1.11.91-1.fc25 (FEDORA-2016-eb778b5b42) Wayland Compositor Infrastructure -------------------------------------------------------------------------------- Update Information: Wayland / Weston 1.12 alpha releases. -------------------------------------------------------------------------------- ================================================================================ wayland-protocols-1.7-1.fc25 (FEDORA-2016-eb778b5b42) Wayland protocols that adds functionality not available in the core protocol -------------------------------------------------------------------------------- Update Information: Wayland / Weston 1.12 alpha releases. -------------------------------------------------------------------------------- ================================================================================ weston-1.11.91-2.fc25 (FEDORA-2016-eb778b5b42) Reference compositor for Wayland -------------------------------------------------------------------------------- Update Information: Wayland / Weston 1.12 alpha releases. -------------------------------------------------------------------------------- -- test mailing list test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe: https://lists.fedoraproject.org/admin/lists/test@xxxxxxxxxxxxxxxxxxxxxxx