The following Fedora 24 Security updates need testing: Age URL 49 https://bodhi.fedoraproject.org/updates/FEDORA-2016-b3f93ead5b moin-1.9.8-1.fc24 31 https://bodhi.fedoraproject.org/updates/FEDORA-2016-32eaf0c41e redis-3.2.3-1.fc24 15 https://bodhi.fedoraproject.org/updates/FEDORA-2016-0ef628998f chicken-4.11.0-3.fc24 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-b9ab1def88 openvas-gsa-6.0.11-3.fc24 openvas-libraries-8.0.8-2.fc24 openvas-manager-6.0.9-1.fc24 openvas-scanner-5.0.6-1.fc24 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-fed6f8c57d php-adodb-5.15-10.fc24 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-249e92f700 mod_cluster-1.3.3-8.fc24 The following Fedora 24 Critical Path updates have yet to be approved: Age URL 29 https://bodhi.fedoraproject.org/updates/FEDORA-2016-ddadfe403c pungi-4.1.8-1.fc24 python-productmd-1.2-2.fc24 12 https://bodhi.fedoraproject.org/updates/FEDORA-2016-0edc0e1794 livecd-tools-23.4-1.fc24 10 https://bodhi.fedoraproject.org/updates/FEDORA-2016-88d8834106 pcmanfm-1.2.4-3.fc24 6 https://bodhi.fedoraproject.org/updates/FEDORA-2016-fbc8df5bf6 libfm-1.2.4-7.D20160627git2a537414de.fc24 The following builds have been pushed to Fedora 24 updates-testing Mayavi-4.5.0-1.fc24 R-Rcpp-0.12.7-1.fc24 bats-0.4.0-4.20160219git0360811.fc24 cinnamon-desktop-3.0.2-2.fc24 flatpak-0.6.9-2.fc24 foo2zjs-0.20160904-1.fc24 kBuild-0.1.9998-10.r2814.fc24 kf5-kwallet-5.25.0-2.fc24 libntirpc-1.4.0-0.4pre3.fc24 libsolv-0.6.23-4.fc24 libva-1.7.2-1.fc24 lis-1.6.2-1.fc24 mod_cluster-1.3.3-8.fc24 nordugrid-arc-5.1.3-1.fc24 nordugrid-arc-doc-2.0.9-1.fc24 nordugrid-arc-gangliarc-1.0.1-1.fc24 nwipe-0.21-3.fc24 openscap-daemon-0.1.6-1.fc24 opensips-1.11.8-1.fc24 openvas-gsa-6.0.11-3.fc24 openvas-libraries-8.0.8-2.fc24 openvas-manager-6.0.9-1.fc24 openvas-scanner-5.0.6-1.fc24 ostree-2016.9-1.fc24 pbuilder-0.226-1.fc24 perl-Fsdb-2.61-1.fc24 pgp-tools-2.4-1.fc24 php-adodb-5.15-10.fc24 php-horde-Horde-Mime-2.10.1-1.fc24 python-envisage-4.5.0-2.fc24 python-marshmallow-2.10.0-2.fc24 python-portalocker-0.6.1-1.fc24 python-pytest-watch-4.1.0-3.fc24 qt5ct-0.26-1.fc24 rpm-ostree-2016.7-4.fc24 rubygem-http_parser.rb-0.6.0-2.fc24 trac-1.0.12-1.fc24 webkitgtk4-2.12.5-1.fc24 xfce4-terminal-0.6.92-1.fc24 yoshimi-1.4.1-1.fc24 zzuf-0.15-1.fc24 Details about builds: ================================================================================ Mayavi-4.5.0-1.fc24 (FEDORA-2016-c6f59c426a) Scientific data 3-dimensional visualizer -------------------------------------------------------------------------------- Update Information: Update to 4.5.0 ---- Update to 4.4.4 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1372451 - mayavi/python crashes https://bugzilla.redhat.com/show_bug.cgi?id=1372451 [ 2 ] Bug #1362321 - Mayavi-4.5.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1362321 [ 3 ] Bug #1318347 - Mayavi-4.4.4 is available https://bugzilla.redhat.com/show_bug.cgi?id=1318347 -------------------------------------------------------------------------------- ================================================================================ R-Rcpp-0.12.7-1.fc24 (FEDORA-2016-685cb20d97) Seamless R and C++ Integration -------------------------------------------------------------------------------- Update Information: https://cran.r-project.org/web/packages/Rcpp/ChangeLog -------------------------------------------------------------------------------- References: [ 1 ] Bug #1373471 - Version 0.12.7 is available, please update https://bugzilla.redhat.com/show_bug.cgi?id=1373471 -------------------------------------------------------------------------------- ================================================================================ bats-0.4.0-4.20160219git0360811.fc24 (FEDORA-2016-59c2700464) Bash Automated Testing System -------------------------------------------------------------------------------- Update Information: Update to latest git snapshot -------------------------------------------------------------------------------- ================================================================================ cinnamon-desktop-3.0.2-2.fc24 (FEDORA-2016-177605da98) Shared code among cinnamon-session, nemo, etc -------------------------------------------------------------------------------- Update Information: Move the synaptics override to /etc/ (related #1338585) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1338585 - installing mate-desktop breaks gnome3 for touchpads https://bugzilla.redhat.com/show_bug.cgi?id=1338585 -------------------------------------------------------------------------------- ================================================================================ flatpak-0.6.9-2.fc24 (FEDORA-2016-e2a38a3672) Application deployment framework for desktop apps -------------------------------------------------------------------------------- Update Information: Look for bwrap in PATH -------------------------------------------------------------------------------- ================================================================================ foo2zjs-0.20160904-1.fc24 (FEDORA-2016-37e1aa1d2a) Linux printer driver for ZjStream protocol -------------------------------------------------------------------------------- Update Information: New Printer: Xerox Phaser 3010 & 3040 -------------------------------------------------------------------------------- ================================================================================ kBuild-0.1.9998-10.r2814.fc24 (FEDORA-2016-c516ed6023) A cross-platform build environment -------------------------------------------------------------------------------- Update Information: Fix el6 build and include unit 'qt5' -------------------------------------------------------------------------------- ================================================================================ kf5-kwallet-5.25.0-2.fc24 (FEDORA-2016-73e6b13d1c) KDE Frameworks 5 Tier 3 solution for password management -------------------------------------------------------------------------------- Update Information: pull in candidate fix drkonqi crashes if kwallet is disabled -------------------------------------------------------------------------------- References: [ 1 ] Bug #1301092 - Drkonqi crashes during bugreport filling process https://bugzilla.redhat.com/show_bug.cgi?id=1301092 -------------------------------------------------------------------------------- ================================================================================ libntirpc-1.4.0-0.4pre3.fc24 (FEDORA-2016-5f6be169a1) New Transport Independent RPC Library -------------------------------------------------------------------------------- Update Information: libntirpc 1.4.0-pre3, without jemalloc -------------------------------------------------------------------------------- ================================================================================ libsolv-0.6.23-4.fc24 (FEDORA-2016-7aade6dc9a) Package dependency solver -------------------------------------------------------------------------------- Update Information: Enable suse and helix repos support. -------------------------------------------------------------------------------- ================================================================================ libva-1.7.2-1.fc24 (FEDORA-2016-a25a51bc2f) Video Acceleration (VA) API for Linux -------------------------------------------------------------------------------- Update Information: ### Version 1.7.2 - 05.Sep.2016 * Bump VA API version to 0.39.3 * API: add support for ROI * Add support for VP9 encoder in VA tracer * Refine test cases * Fix the issue of not properly terminating the parsed environment values with '\0' https://bugs.freedesktop.org/show_bug.cgi?id=96677 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1373173 - libva-1.7.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=1373173 -------------------------------------------------------------------------------- ================================================================================ lis-1.6.2-1.fc24 (FEDORA-2016-69b6b91d91) A library for solving linear equations and eigenvalue problems -------------------------------------------------------------------------------- Update Information: Update to 1.6.2 ---- Update to 1.5.76 -------------------------------------------------------------------------------- ================================================================================ mod_cluster-1.3.3-8.fc24 (FEDORA-2016-249e92f700) Apache HTTP Server dynamic load balancer with Wildfly and Tomcat libraries -------------------------------------------------------------------------------- Update Information: Fixed remote exploits in Apache HTTP Server mod_manager and mod_proxy_cluster modules, fixed performance problems with shared memory, fixed thread pool off- by-one errors, enhanced Tomcat 8 interoperability, fixed mod_proxy integration, added WebSockets proxy layer for mod_cluster. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1368613 - mod_cluster: Update to 1.3.3.Final https://bugzilla.redhat.com/show_bug.cgi?id=1368613 -------------------------------------------------------------------------------- ================================================================================ nordugrid-arc-5.1.3-1.fc24 (FEDORA-2016-d1630c311f) Advanced Resource Connector Grid Middleware -------------------------------------------------------------------------------- Update Information: http://www.nordugrid.org/arc/releases/15.03u9/release_notes_15.03u9.html -------------------------------------------------------------------------------- ================================================================================ nordugrid-arc-doc-2.0.9-1.fc24 (FEDORA-2016-d1630c311f) Advanced Resource Connector Documentation -------------------------------------------------------------------------------- Update Information: http://www.nordugrid.org/arc/releases/15.03u9/release_notes_15.03u9.html -------------------------------------------------------------------------------- ================================================================================ nordugrid-arc-gangliarc-1.0.1-1.fc24 (FEDORA-2016-d1630c311f) Ganglia monitoring for ARC services -------------------------------------------------------------------------------- Update Information: http://www.nordugrid.org/arc/releases/15.03u9/release_notes_15.03u9.html -------------------------------------------------------------------------------- ================================================================================ nwipe-0.21-3.fc24 (FEDORA-2016-ff96996eea) Securely erase disks using a variety of recognized methods -------------------------------------------------------------------------------- Update Information: bugfix release -------------------------------------------------------------------------------- References: [ 1 ] Bug #1370752 - nwipe-0.21 is available https://bugzilla.redhat.com/show_bug.cgi?id=1370752 -------------------------------------------------------------------------------- ================================================================================ openscap-daemon-0.1.6-1.fc24 (FEDORA-2016-02b26031f7) Manages continuous SCAP scans of your infrastructure -------------------------------------------------------------------------------- Update Information: upgrade to the latest upstream release -------------------------------------------------------------------------------- ================================================================================ opensips-1.11.8-1.fc24 (FEDORA-2016-eb3dc7dd53) Open Source SIP Server -------------------------------------------------------------------------------- Update Information: * Ver. 1.11.8 -------------------------------------------------------------------------------- ================================================================================ openvas-gsa-6.0.11-3.fc24 (FEDORA-2016-b9ab1def88) Greenbone Security Assistant (GSA) is GUI to the OpenVAS -------------------------------------------------------------------------------- Update Information: Bump to the latest patch release of the openvas 8.0 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1371726 - openvas-gsa-6.0.11 is available https://bugzilla.redhat.com/show_bug.cgi?id=1371726 [ 2 ] Bug #1371732 - openvas-manager-6.0.9 is available https://bugzilla.redhat.com/show_bug.cgi?id=1371732 [ 3 ] Bug #1371731 - openvas-libraries-8.0.8 is available https://bugzilla.redhat.com/show_bug.cgi?id=1371731 -------------------------------------------------------------------------------- ================================================================================ openvas-libraries-8.0.8-2.fc24 (FEDORA-2016-b9ab1def88) Support libraries for Open Vulnerability Assessment (OpenVAS) Scanner -------------------------------------------------------------------------------- Update Information: Bump to the latest patch release of the openvas 8.0 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1371726 - openvas-gsa-6.0.11 is available https://bugzilla.redhat.com/show_bug.cgi?id=1371726 [ 2 ] Bug #1371732 - openvas-manager-6.0.9 is available https://bugzilla.redhat.com/show_bug.cgi?id=1371732 [ 3 ] Bug #1371731 - openvas-libraries-8.0.8 is available https://bugzilla.redhat.com/show_bug.cgi?id=1371731 -------------------------------------------------------------------------------- ================================================================================ openvas-manager-6.0.9-1.fc24 (FEDORA-2016-b9ab1def88) Manager Module for the Open Vulnerability Assessment System (OpenVAS) -------------------------------------------------------------------------------- Update Information: Bump to the latest patch release of the openvas 8.0 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1371726 - openvas-gsa-6.0.11 is available https://bugzilla.redhat.com/show_bug.cgi?id=1371726 [ 2 ] Bug #1371732 - openvas-manager-6.0.9 is available https://bugzilla.redhat.com/show_bug.cgi?id=1371732 [ 3 ] Bug #1371731 - openvas-libraries-8.0.8 is available https://bugzilla.redhat.com/show_bug.cgi?id=1371731 -------------------------------------------------------------------------------- ================================================================================ openvas-scanner-5.0.6-1.fc24 (FEDORA-2016-b9ab1def88) Open Vulnerability Assessment (OpenVAS) Scanner -------------------------------------------------------------------------------- Update Information: Bump to the latest patch release of the openvas 8.0 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1371726 - openvas-gsa-6.0.11 is available https://bugzilla.redhat.com/show_bug.cgi?id=1371726 [ 2 ] Bug #1371732 - openvas-manager-6.0.9 is available https://bugzilla.redhat.com/show_bug.cgi?id=1371732 [ 3 ] Bug #1371731 - openvas-libraries-8.0.8 is available https://bugzilla.redhat.com/show_bug.cgi?id=1371731 -------------------------------------------------------------------------------- ================================================================================ ostree-2016.9-1.fc24 (FEDORA-2016-d5aa429d63) Tool for managing bootable, immutable filesystem trees -------------------------------------------------------------------------------- Update Information: New version of rpm-ostree -------------------------------------------------------------------------------- ================================================================================ pbuilder-0.226-1.fc24 (FEDORA-2016-ae5ccd6ed4) Personal package builder for Debian packages -------------------------------------------------------------------------------- Update Information: Update to version 0.226, see http://metadata.ftp- master.debian.org/changelogs//main/p/pbuilder/pbuilder_0.226_changelog for details. -------------------------------------------------------------------------------- ================================================================================ perl-Fsdb-2.61-1.fc24 (FEDORA-2016-c2f79462fe) A set of commands for manipulating flat-text databases from the shell -------------------------------------------------------------------------------- Update Information: update to 2.61 ---- update to 2.59 release -------------------------------------------------------------------------------- ================================================================================ pgp-tools-2.4-1.fc24 (FEDORA-2016-9b8523e39f) Collection of several utilities related to OpenPGP -------------------------------------------------------------------------------- Update Information: Update -------------------------------------------------------------------------------- References: [ 1 ] Bug #1295042 - Version 2.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=1295042 -------------------------------------------------------------------------------- ================================================================================ php-adodb-5.15-10.fc24 (FEDORA-2016-fed6f8c57d) Database abstraction layer for PHP -------------------------------------------------------------------------------- Update Information: Security fix for CVE-2016-4855 (#1373374) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1373374 - CVE-2016-4855 adodb: cross-site scripting in test script https://bugzilla.redhat.com/show_bug.cgi?id=1373374 -------------------------------------------------------------------------------- ================================================================================ php-horde-Horde-Mime-2.10.1-1.fc24 (FEDORA-2016-cb62950035) Horde MIME Library -------------------------------------------------------------------------------- Update Information: **Horde_MimeHorde_Mime 2.10.1** * [mjr] Fix parsing headers containing MIME encoded email addresses (Bug #14456). -------------------------------------------------------------------------------- ================================================================================ python-envisage-4.5.0-2.fc24 (FEDORA-2016-c6f59c426a) Extensible application framework -------------------------------------------------------------------------------- Update Information: Update to 4.5.0 ---- Update to 4.4.4 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1372451 - mayavi/python crashes https://bugzilla.redhat.com/show_bug.cgi?id=1372451 [ 2 ] Bug #1362321 - Mayavi-4.5.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1362321 [ 3 ] Bug #1318347 - Mayavi-4.4.4 is available https://bugzilla.redhat.com/show_bug.cgi?id=1318347 -------------------------------------------------------------------------------- ================================================================================ python-marshmallow-2.10.0-2.fc24 (FEDORA-2016-387f2839f1) Python library for converting complex datatypes to and from primitive types -------------------------------------------------------------------------------- Update Information: Update to 2.10.0 -------------------------------------------------------------------------------- ================================================================================ python-portalocker-0.6.1-1.fc24 (FEDORA-2016-d6fc98cb23) Library to provide an easy API to file locking -------------------------------------------------------------------------------- Update Information: Update to 0.6.1 -------------------------------------------------------------------------------- ================================================================================ python-pytest-watch-4.1.0-3.fc24 (FEDORA-2016-6a4afa26d3) Local continuous test runner with pytest and watchdog -------------------------------------------------------------------------------- Update Information: Choose default py.test command based on Python version -------------------------------------------------------------------------------- References: [ 1 ] Bug #1373422 - ptw-3 runs py.test-2 https://bugzilla.redhat.com/show_bug.cgi?id=1373422 -------------------------------------------------------------------------------- ================================================================================ qt5ct-0.26-1.fc24 (FEDORA-2016-2d1673700e) Qt5 Configuration Tool -------------------------------------------------------------------------------- Update Information: new version -------------------------------------------------------------------------------- References: [ 1 ] Bug #1373174 - qt5ct-0.26 is available https://bugzilla.redhat.com/show_bug.cgi?id=1373174 -------------------------------------------------------------------------------- ================================================================================ rpm-ostree-2016.7-4.fc24 (FEDORA-2016-d5aa429d63) Client side upgrade program and server side compose tool -------------------------------------------------------------------------------- Update Information: New version of rpm-ostree -------------------------------------------------------------------------------- ================================================================================ rubygem-http_parser.rb-0.6.0-2.fc24 (FEDORA-2016-edf0299d92) Simple callback-based HTTP request/response parser -------------------------------------------------------------------------------- Update Information: Patch the spec file to match key words in RSpec 3 -------------------------------------------------------------------------------- ================================================================================ trac-1.0.12-1.fc24 (FEDORA-2016-3a01362cb3) Enhanced wiki and issue tracking system -------------------------------------------------------------------------------- Update Information: https://trac.edgewall.org/wiki/TracDev/ReleaseNotes/1.0#MaintenanceRelease 1.0.12 -------------------------------------------------------------------------------- ================================================================================ webkitgtk4-2.12.5-1.fc24 (FEDORA-2016-b6680554c7) GTK+ Web content engine library -------------------------------------------------------------------------------- Update Information: This update brings the following changes: * Fix a regression introduced in 2.12.4 that caused a hang in the network process after a load failure. * Fix several crashes and rendering issues. -------------------------------------------------------------------------------- ================================================================================ xfce4-terminal-0.6.92-1.fc24 (FEDORA-2016-5afa98f345) X Terminal Emulator for the Xfce Desktop environment -------------------------------------------------------------------------------- Update Information: Update to 0.6.92. Fixes various bugs. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1371163 - double click stops on ":" char with 0.6.90-1.fc24 https://bugzilla.redhat.com/show_bug.cgi?id=1371163 [ 2 ] Bug #1369939 - Positioning aspect of --geometry argument ignored https://bugzilla.redhat.com/show_bug.cgi?id=1369939 -------------------------------------------------------------------------------- ================================================================================ yoshimi-1.4.1-1.fc24 (FEDORA-2016-bd5050f85f) Rewrite of ZynAddSubFx aiming for better JACK support -------------------------------------------------------------------------------- Update Information: Update to upstream release 1.4.1 (last update was to 1.4.0.1) -------------------------------------------------------------------------------- ================================================================================ zzuf-0.15-1.fc24 (FEDORA-2016-f499e0a437) Transparent application input fuzzer -------------------------------------------------------------------------------- Update Information: https://github.com/samhocevar/zzuf/releases 0.15 -------------------------------------------------------------------------------- -- test mailing list test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe: https://lists.fedoraproject.org/admin/lists/test@xxxxxxxxxxxxxxxxxxxxxxx
