The following Fedora 23 Security updates need testing: Age URL 355 https://bodhi.fedoraproject.org/updates/FEDORA-2015-16240 nagios-4.0.8-1.fc23 313 https://bodhi.fedoraproject.org/updates/FEDORA-2015-81ded368fe miniupnpc-1.9-6.fc23 286 https://bodhi.fedoraproject.org/updates/FEDORA-2015-27392b3324 jbig2dec-0.12-2.fc23 236 https://bodhi.fedoraproject.org/updates/FEDORA-2015-dd52a54fa1 python-pymongo-3.0.3-1.fc23 236 https://bodhi.fedoraproject.org/updates/FEDORA-2015-06a7c972e8 thttpd-2.25b-37.fc23 201 https://bodhi.fedoraproject.org/updates/FEDORA-2016-637618fcd4 mingw-nsis-2.50-1.fc23 77 https://bodhi.fedoraproject.org/updates/FEDORA-2016-fcccb0a547 nodejs-0.10.46-1.fc23 55 https://bodhi.fedoraproject.org/updates/FEDORA-2016-70b5173c05 ecryptfs-utils-111-1.fc23 44 https://bodhi.fedoraproject.org/updates/FEDORA-2016-9402100276 openssh-7.2p2-5.fc23 selinux-policy-3.13.1-158.22.fc23 43 https://bodhi.fedoraproject.org/updates/FEDORA-2016-8d79ade826 flex-2.6.0-2.fc23 43 https://bodhi.fedoraproject.org/updates/FEDORA-2016-aa394a130e nodejs-string-dot-prototype-dot-repeat-0.2.0-2.fc23 32 https://bodhi.fedoraproject.org/updates/FEDORA-2016-c2ec9c716e redis-3.2.3-1.fc23 28 https://bodhi.fedoraproject.org/updates/FEDORA-2016-5aa6973100 jasper-1.900.1-33.fc23 25 https://bodhi.fedoraproject.org/updates/FEDORA-2016-d6288f555c libarchive-3.2.1-3.fc23 python-libarchive-c-2.5-1.fc23 23 https://bodhi.fedoraproject.org/updates/FEDORA-2016-47dc2b203f firewalld-0.4.3.3-1.fc23 17 https://bodhi.fedoraproject.org/updates/FEDORA-2016-3a0195918f gnupg-1.4.21-1.fc23 11 https://bodhi.fedoraproject.org/updates/FEDORA-2016-06e4de8210 phpMyAdmin-4.6.4-2.fc23 9 https://bodhi.fedoraproject.org/updates/FEDORA-2016-b3a6435b14 dhcpcd-6.11.3-1.fc23 3 https://bodhi.fedoraproject.org/updates/FEDORA-2016-63633ea21c openvas-gsa-6.0.11-3.fc23 openvas-libraries-8.0.8-2.fc23 openvas-manager-6.0.9-1.fc23 openvas-scanner-5.0.6-1.fc23 3 https://bodhi.fedoraproject.org/updates/FEDORA-2016-7d6ca385a4 php-adodb-5.15-10.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-91bfe9ddb8 wordpress-4.6.1-1.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-2b3f060d19 php-horde-Horde-Core-2.26.1-1.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-a506d298bf php-horde-Horde-Mime-Viewer-2.2.1-1.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-084620f386 php-horde-Horde-Text-Filter-2.3.5-1.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-5763cacac0 php-horde-horde-5.2.12-1.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-ed1c402851 thunderbird-45.3.0-1.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-2edb9adec8 gnutls-3.4.15-1.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-390ec4a8f3 GraphicsMagick-1.3.25-1.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-1c3374bcb9 xen-4.5.3-10.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-231f53426b openjpeg2-2.1.1-3.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-adb346980c mingw-openjpeg2-2.1.1-3.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-9528bc8c0d chromium-53.0.2785.101-1.fc23 The following Fedora 23 Critical Path updates have yet to be approved: Age URL 52 https://bodhi.fedoraproject.org/updates/FEDORA-2016-98a7a1b6e0 abrt-2.8.0-6.fc23 libreport-2.6.4-3.fc23 44 https://bodhi.fedoraproject.org/updates/FEDORA-2016-9402100276 openssh-7.2p2-5.fc23 selinux-policy-3.13.1-158.22.fc23 28 https://bodhi.fedoraproject.org/updates/FEDORA-2016-5aa6973100 jasper-1.900.1-33.fc23 25 https://bodhi.fedoraproject.org/updates/FEDORA-2016-d6288f555c libarchive-3.2.1-3.fc23 python-libarchive-c-2.5-1.fc23 24 https://bodhi.fedoraproject.org/updates/FEDORA-2016-343c55ea44 linux-firmware-20160816-67.git7c3dfc0b.fc23 17 https://bodhi.fedoraproject.org/updates/FEDORA-2016-3a0195918f gnupg-1.4.21-1.fc23 14 https://bodhi.fedoraproject.org/updates/FEDORA-2016-221e4b44b9 gnome-online-accounts-3.18.6-1.fc23 13 https://bodhi.fedoraproject.org/updates/FEDORA-2016-22e1403506 livecd-tools-23.4-1.fc23 13 https://bodhi.fedoraproject.org/updates/FEDORA-2016-dee73b9cb5 selinux-policy-3.13.1-158.23.fc23 11 https://bodhi.fedoraproject.org/updates/FEDORA-2016-6b2a994a0a hwdata-0.292-1.fc23 11 https://bodhi.fedoraproject.org/updates/FEDORA-2016-1a0c6260d0 libgweather-3.18.2-1.fc23 11 https://bodhi.fedoraproject.org/updates/FEDORA-2016-1a5504f544 pcmanfm-1.2.4-3.fc23 11 https://bodhi.fedoraproject.org/updates/FEDORA-2016-e71eb7777e lxsession-0.5.2-11.D20160817git699c1695c2.fc23 9 https://bodhi.fedoraproject.org/updates/FEDORA-2016-eb1654ad5f pcre-8.39-3.fc23 7 https://bodhi.fedoraproject.org/updates/FEDORA-2016-c9d509853e libfm-1.2.4-7.D20160627git2a537414de.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-9b2440c972 dbus-glib-0.108-1.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-91fb402c7f kernel-4.7.3-100.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-0ab60daf6d systemtap-3.0-4.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-2edb9adec8 gnutls-3.4.15-1.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-ed1c402851 thunderbird-45.3.0-1.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-1d3fc3e3aa xfsprogs-4.5.0-2.fc23 The following builds have been pushed to Fedora 23 updates-testing bluedevil-5.7.4-1.fc23 breeze-gtk-5.7.4-1.fc23 chromium-53.0.2785.101-1.fc23 dbus-glib-0.108-1.fc23 edk2-20160418gita8c39ba-5.fc23 gitolite3-3.6.6-1.fc23 grub2-breeze-theme-5.7.4-1.fc23 kactivitymanagerd-5.7.4-1.fc23 kde-cli-tools-5.7.4-1.fc23 kde-gtk-config-5.7.4-1.fc23 kdecoration-5.7.4-1.fc23 kdeplasma-addons-5.7.4-1.fc23 kgamma-5.7.4-1.fc23 khotkeys-5.7.4-1.fc23 kinfocenter-5.7.4-1.fc23 kmenuedit-5.7.4-1.fc23 kscreen-5.7.4-1.fc23 kscreenlocker-5.7.4-1.fc23 ksensors-0.7.3-33.fc23 ksshaskpass-5.7.4-1.fc23 ksysguard-5.7.4-1.fc23 kwayland-integration-5.7.4-1.fc23 kwin-5.7.4-1.fc23 kwrited-5.7.4-1.fc23 libkscreen-qt5-5.7.4-1.fc23 libksysguard-5.7.4-1.fc23 mingw-openjpeg2-2.1.1-3.fc23 mingw-qtspell-0.8.2-1.fc23 openjpeg2-2.1.1-3.fc23 pam-kwallet-5.7.4-1.fc23 php-ircmaxell-random-lib-1.2.0-1.fc23 plasma-breeze-5.7.4-1.fc23 plasma-desktop-5.7.4-1.fc23 plasma-integration-5.7.4-1.fc23 plasma-milou-5.7.4-1.fc23 plasma-nm-5.7.4-1.fc23 plasma-oxygen-5.7.4-1.fc23 plasma-pa-5.7.4-1.fc23 plasma-sdk-5.7.4-1.fc23 plasma-systemsettings-5.7.4-1.fc23 plasma-user-manager-5.7.4-1.fc23 plasma-workspace-5.7.4-2.fc23 plasma-workspace-wallpapers-5.7.4-1.fc23 plymouth-theme-breeze-5.7.4-1.fc23 polkit-kde-5.7.4-1.fc23 powerdevil-5.7.4-1.fc23 python-fmn-rules-0.9.1-1.fc23 qtspell-0.8.2-1.fc23 sddm-kcm-5.7.4-1.fc23 xen-4.5.3-10.fc23 Details about builds: ================================================================================ bluedevil-5.7.4-1.fc23 (FEDORA-2016-66e0708ef3) Bluetooth stack for KDE -------------------------------------------------------------------------------- Update Information: Plasma 5.7.4 bugfix release, see also h^Cps://www.kde.org/announcements/plasma-5.7.4.php -------------------------------------------------------------------------------- ================================================================================ breeze-gtk-5.7.4-1.fc23 (FEDORA-2016-66e0708ef3) Breeze widget theme for Gtk2 and Gtk3 -------------------------------------------------------------------------------- Update Information: Plasma 5.7.4 bugfix release, see also h^Cps://www.kde.org/announcements/plasma-5.7.4.php -------------------------------------------------------------------------------- ================================================================================ chromium-53.0.2785.101-1.fc23 (FEDORA-2016-9528bc8c0d) A WebKit (Blink) powered web browser -------------------------------------------------------------------------------- Update Information: Stable update to 53.0.2785.101. Security fix for CVE-2016-5147, CVE-2016-5148, CVE-2016-5149, CVE-2016-5150, CVE-2016-5151, CVE-2016-5152, CVE-2016-5153, CVE-2016-5154, CVE-2016-5155, CVE-2016-5156, CVE-2016-5157, CVE-2016-5158, CVE-2016-5159, CVE-2016-5161, CVE-2016-5162, CVE-2016-5163, CVE-2016-5164, CVE-2016-5165, CVE-2016-5166, CVE-2016-5160, CVE-2016-5167 Also applies fix for chrome-remote-desktop where HOME env variable was not properly set via systemd service. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1372229 - CVE-2016-5167 chromium-browser: various fixes from internal audits https://bugzilla.redhat.com/show_bug.cgi?id=1372229 [ 2 ] Bug #1372228 - CVE-2016-5160 chromium-browser: extensions web accessible resources bypass https://bugzilla.redhat.com/show_bug.cgi?id=1372228 [ 3 ] Bug #1372227 - CVE-2016-5166 chromium-browser: smb relay attack via save page as https://bugzilla.redhat.com/show_bug.cgi?id=1372227 [ 4 ] Bug #1372225 - CVE-2016-5165 chromium-browser: script injection in devtools https://bugzilla.redhat.com/show_bug.cgi?id=1372225 [ 5 ] Bug #1372224 - CVE-2016-5164 chromium-browser: universal xss using devtools https://bugzilla.redhat.com/show_bug.cgi?id=1372224 [ 6 ] Bug #1372223 - CVE-2016-5163 chromium-browser: address bar spoofing https://bugzilla.redhat.com/show_bug.cgi?id=1372223 [ 7 ] Bug #1372222 - CVE-2016-5162 chromium-browser: extensions web accessible resources bypass https://bugzilla.redhat.com/show_bug.cgi?id=1372222 [ 8 ] Bug #1372221 - CVE-2016-5161 chromium-browser: type confusion in blink https://bugzilla.redhat.com/show_bug.cgi?id=1372221 [ 9 ] Bug #1372220 - CVE-2016-5159 chromium-browser: heap overflow in pdfium https://bugzilla.redhat.com/show_bug.cgi?id=1372220 [ 10 ] Bug #1372219 - CVE-2016-5158 chromium-browser: heap overflow in pdfium https://bugzilla.redhat.com/show_bug.cgi?id=1372219 [ 11 ] Bug #1372218 - CVE-2016-5157 chromium-browser: heap overflow in pdfium https://bugzilla.redhat.com/show_bug.cgi?id=1372218 [ 12 ] Bug #1372217 - CVE-2016-5156 chromium-browser: use after free in event bindings https://bugzilla.redhat.com/show_bug.cgi?id=1372217 [ 13 ] Bug #1372216 - CVE-2016-5155 chromium-browser: address bar spoofing https://bugzilla.redhat.com/show_bug.cgi?id=1372216 [ 14 ] Bug #1372215 - CVE-2016-5154 chromium-browser: heap overflow in pdfium https://bugzilla.redhat.com/show_bug.cgi?id=1372215 [ 15 ] Bug #1372214 - CVE-2016-5153 chromium-browser: use after destruction in blink https://bugzilla.redhat.com/show_bug.cgi?id=1372214 [ 16 ] Bug #1372213 - CVE-2016-5152 chromium-browser: heap overflow in pdfium https://bugzilla.redhat.com/show_bug.cgi?id=1372213 [ 17 ] Bug #1372212 - CVE-2016-5151 chromium-browser: use after free in pdfium https://bugzilla.redhat.com/show_bug.cgi?id=1372212 [ 18 ] Bug #1372210 - CVE-2016-5150 chromium-browser: use after free in blink https://bugzilla.redhat.com/show_bug.cgi?id=1372210 [ 19 ] Bug #1372209 - CVE-2016-5149 chromium-browser: script injection in extensions https://bugzilla.redhat.com/show_bug.cgi?id=1372209 [ 20 ] Bug #1372208 - CVE-2016-5148 chromium-browser: universal xss in blink https://bugzilla.redhat.com/show_bug.cgi?id=1372208 [ 21 ] Bug #1372207 - CVE-2016-5147 chromium-browser: universal xss in blink https://bugzilla.redhat.com/show_bug.cgi?id=1372207 -------------------------------------------------------------------------------- ================================================================================ dbus-glib-0.108-1.fc23 (FEDORA-2016-9b2440c972) GLib bindings for D-Bus -------------------------------------------------------------------------------- Update Information: Update to 0.108 -------------------------------------------------------------------------------- ================================================================================ edk2-20160418gita8c39ba-5.fc23 (FEDORA-2016-1cc8329cd4) EFI Development Kit II -------------------------------------------------------------------------------- Update Information: Switch openssl to "hobbled" tarball. Remove references to srp files from applied patch. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1374691 - edk2 package uses and bundles non-hobbled openssl tarball https://bugzilla.redhat.com/show_bug.cgi?id=1374691 -------------------------------------------------------------------------------- ================================================================================ gitolite3-3.6.6-1.fc23 (FEDORA-2016-bd6af0f4bc) Highly flexible server for git directory version tracker -------------------------------------------------------------------------------- Update Information: 3.6.6 -------------------------------------------------------------------------------- ================================================================================ grub2-breeze-theme-5.7.4-1.fc23 (FEDORA-2016-66e0708ef3) Breeze theme for GRUB -------------------------------------------------------------------------------- Update Information: Plasma 5.7.4 bugfix release, see also h^Cps://www.kde.org/announcements/plasma-5.7.4.php -------------------------------------------------------------------------------- ================================================================================ kactivitymanagerd-5.7.4-1.fc23 (FEDORA-2016-66e0708ef3) Plasma service to manage user's activities -------------------------------------------------------------------------------- Update Information: Plasma 5.7.4 bugfix release, see also h^Cps://www.kde.org/announcements/plasma-5.7.4.php -------------------------------------------------------------------------------- ================================================================================ kde-cli-tools-5.7.4-1.fc23 (FEDORA-2016-66e0708ef3) Tools based on KDE Frameworks 5 to better interact with the system -------------------------------------------------------------------------------- Update Information: Plasma 5.7.4 bugfix release, see also h^Cps://www.kde.org/announcements/plasma-5.7.4.php -------------------------------------------------------------------------------- ================================================================================ kde-gtk-config-5.7.4-1.fc23 (FEDORA-2016-66e0708ef3) Configure the appearance of GTK apps in KDE -------------------------------------------------------------------------------- Update Information: Plasma 5.7.4 bugfix release, see also h^Cps://www.kde.org/announcements/plasma-5.7.4.php -------------------------------------------------------------------------------- ================================================================================ kdecoration-5.7.4-1.fc23 (FEDORA-2016-66e0708ef3) A plugin-based library to create window decorations -------------------------------------------------------------------------------- Update Information: Plasma 5.7.4 bugfix release, see also h^Cps://www.kde.org/announcements/plasma-5.7.4.php -------------------------------------------------------------------------------- ================================================================================ kdeplasma-addons-5.7.4-1.fc23 (FEDORA-2016-66e0708ef3) Additional Plasmoids for Plasma 5 -------------------------------------------------------------------------------- Update Information: Plasma 5.7.4 bugfix release, see also h^Cps://www.kde.org/announcements/plasma-5.7.4.php -------------------------------------------------------------------------------- ================================================================================ kgamma-5.7.4-1.fc23 (FEDORA-2016-66e0708ef3) A monitor calibration tool -------------------------------------------------------------------------------- Update Information: Plasma 5.7.4 bugfix release, see also h^Cps://www.kde.org/announcements/plasma-5.7.4.php -------------------------------------------------------------------------------- ================================================================================ khotkeys-5.7.4-1.fc23 (FEDORA-2016-66e0708ef3) Application to configure hotkeys in KDE -------------------------------------------------------------------------------- Update Information: Plasma 5.7.4 bugfix release, see also h^Cps://www.kde.org/announcements/plasma-5.7.4.php -------------------------------------------------------------------------------- ================================================================================ kinfocenter-5.7.4-1.fc23 (FEDORA-2016-66e0708ef3) KDE Info Center -------------------------------------------------------------------------------- Update Information: Plasma 5.7.4 bugfix release, see also h^Cps://www.kde.org/announcements/plasma-5.7.4.php -------------------------------------------------------------------------------- ================================================================================ kmenuedit-5.7.4-1.fc23 (FEDORA-2016-66e0708ef3) KDE menu editor -------------------------------------------------------------------------------- Update Information: Plasma 5.7.4 bugfix release, see also h^Cps://www.kde.org/announcements/plasma-5.7.4.php -------------------------------------------------------------------------------- ================================================================================ kscreen-5.7.4-1.fc23 (FEDORA-2016-66e0708ef3) KDE Display Management software -------------------------------------------------------------------------------- Update Information: Plasma 5.7.4 bugfix release, see also h^Cps://www.kde.org/announcements/plasma-5.7.4.php -------------------------------------------------------------------------------- ================================================================================ kscreenlocker-5.7.4-1.fc23 (FEDORA-2016-66e0708ef3) Library and components for secure lock screen architecture -------------------------------------------------------------------------------- Update Information: Plasma 5.7.4 bugfix release, see also h^Cps://www.kde.org/announcements/plasma-5.7.4.php -------------------------------------------------------------------------------- ================================================================================ ksensors-0.7.3-33.fc23 (FEDORA-2016-0c9e804bae) KDE frontend to lm_sensors -------------------------------------------------------------------------------- Update Information: This KSensors update fixes autostart, which was relying on the KDE 3-4 autostart directory (`/usr/share/autostart`), which is not honored by Plasma 5. The autostart file is now installed to the standard `/etc/xdg/autostart` instead. -------------------------------------------------------------------------------- ================================================================================ ksshaskpass-5.7.4-1.fc23 (FEDORA-2016-66e0708ef3) A ssh-add helper that uses kwallet and kpassworddialog -------------------------------------------------------------------------------- Update Information: Plasma 5.7.4 bugfix release, see also h^Cps://www.kde.org/announcements/plasma-5.7.4.php -------------------------------------------------------------------------------- ================================================================================ ksysguard-5.7.4-1.fc23 (FEDORA-2016-66e0708ef3) KDE Process Management application -------------------------------------------------------------------------------- Update Information: Plasma 5.7.4 bugfix release, see also h^Cps://www.kde.org/announcements/plasma-5.7.4.php -------------------------------------------------------------------------------- ================================================================================ kwayland-integration-5.7.4-1.fc23 (FEDORA-2016-66e0708ef3) Provides integration plugins for various KDE Frameworks for Wayland -------------------------------------------------------------------------------- Update Information: Plasma 5.7.4 bugfix release, see also h^Cps://www.kde.org/announcements/plasma-5.7.4.php -------------------------------------------------------------------------------- ================================================================================ kwin-5.7.4-1.fc23 (FEDORA-2016-66e0708ef3) KDE Window manager -------------------------------------------------------------------------------- Update Information: Plasma 5.7.4 bugfix release, see also h^Cps://www.kde.org/announcements/plasma-5.7.4.php -------------------------------------------------------------------------------- ================================================================================ kwrited-5.7.4-1.fc23 (FEDORA-2016-66e0708ef3) KDE Write Daemon -------------------------------------------------------------------------------- Update Information: Plasma 5.7.4 bugfix release, see also h^Cps://www.kde.org/announcements/plasma-5.7.4.php -------------------------------------------------------------------------------- ================================================================================ libkscreen-qt5-5.7.4-1.fc23 (FEDORA-2016-66e0708ef3) KDE display configuration library -------------------------------------------------------------------------------- Update Information: Plasma 5.7.4 bugfix release, see also h^Cps://www.kde.org/announcements/plasma-5.7.4.php -------------------------------------------------------------------------------- ================================================================================ libksysguard-5.7.4-1.fc23 (FEDORA-2016-66e0708ef3) Library for managing processes running on the system -------------------------------------------------------------------------------- Update Information: Plasma 5.7.4 bugfix release, see also h^Cps://www.kde.org/announcements/plasma-5.7.4.php -------------------------------------------------------------------------------- ================================================================================ mingw-openjpeg2-2.1.1-3.fc23 (FEDORA-2016-adb346980c) MinGW Windows openjpeg2 library -------------------------------------------------------------------------------- Update Information: Backport fix for an out-of-bounds write. ---- Security fix for CVE-2016-7163 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1374337 - openjpeg: Heap buffer overflow in opj_dwt_interleave_v in dwt.c https://bugzilla.redhat.com/show_bug.cgi?id=1374337 [ 2 ] Bug #1374329 - CVE-2016-7163 openjpeg: Integer overflow in opj_pi_create_decode https://bugzilla.redhat.com/show_bug.cgi?id=1374329 -------------------------------------------------------------------------------- ================================================================================ mingw-qtspell-0.8.2-1.fc23 (FEDORA-2016-ec3c9d8dda) Spell checking for Qt text widgets -------------------------------------------------------------------------------- Update Information: Update to version 0.8.2, see https://github.com/manisandro/qtspell/releases/tag/0.8.2 for details. -------------------------------------------------------------------------------- ================================================================================ openjpeg2-2.1.1-3.fc23 (FEDORA-2016-231f53426b) C-Library for JPEG 2000 -------------------------------------------------------------------------------- Update Information: Backport fix for an out-of-bounds write. ---- Security fix for CVE-2016-7163 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1374337 - openjpeg: Heap buffer overflow in opj_dwt_interleave_v in dwt.c https://bugzilla.redhat.com/show_bug.cgi?id=1374337 [ 2 ] Bug #1374329 - CVE-2016-7163 openjpeg: Integer overflow in opj_pi_create_decode https://bugzilla.redhat.com/show_bug.cgi?id=1374329 -------------------------------------------------------------------------------- ================================================================================ pam-kwallet-5.7.4-1.fc23 (FEDORA-2016-66e0708ef3) PAM module for KWallet -------------------------------------------------------------------------------- Update Information: Plasma 5.7.4 bugfix release, see also h^Cps://www.kde.org/announcements/plasma-5.7.4.php -------------------------------------------------------------------------------- ================================================================================ php-ircmaxell-random-lib-1.2.0-1.fc23 (FEDORA-2016-0d8c55b3b3) A Library For Generating Secure Random Numbers -------------------------------------------------------------------------------- Update Information: Bugfix release. -------------------------------------------------------------------------------- ================================================================================ plasma-breeze-5.7.4-1.fc23 (FEDORA-2016-66e0708ef3) Artwork, styles and assets for the Breeze visual style for the Plasma Desktop -------------------------------------------------------------------------------- Update Information: Plasma 5.7.4 bugfix release, see also h^Cps://www.kde.org/announcements/plasma-5.7.4.php -------------------------------------------------------------------------------- ================================================================================ plasma-desktop-5.7.4-1.fc23 (FEDORA-2016-66e0708ef3) Plasma Desktop shell -------------------------------------------------------------------------------- Update Information: Plasma 5.7.4 bugfix release, see also h^Cps://www.kde.org/announcements/plasma-5.7.4.php -------------------------------------------------------------------------------- ================================================================================ plasma-integration-5.7.4-1.fc23 (FEDORA-2016-66e0708ef3) Qt Platform Theme integration plugin for Plasma -------------------------------------------------------------------------------- Update Information: Plasma 5.7.4 bugfix release, see also h^Cps://www.kde.org/announcements/plasma-5.7.4.php -------------------------------------------------------------------------------- ================================================================================ plasma-milou-5.7.4-1.fc23 (FEDORA-2016-66e0708ef3) A dedicated KDE search application built on top of Baloo -------------------------------------------------------------------------------- Update Information: Plasma 5.7.4 bugfix release, see also h^Cps://www.kde.org/announcements/plasma-5.7.4.php -------------------------------------------------------------------------------- ================================================================================ plasma-nm-5.7.4-1.fc23 (FEDORA-2016-66e0708ef3) Plasma for managing network connections -------------------------------------------------------------------------------- Update Information: Plasma 5.7.4 bugfix release, see also h^Cps://www.kde.org/announcements/plasma-5.7.4.php -------------------------------------------------------------------------------- ================================================================================ plasma-oxygen-5.7.4-1.fc23 (FEDORA-2016-66e0708ef3) Plasma and Qt widget style and window decorations for Plasma 5 and KDE 4 -------------------------------------------------------------------------------- Update Information: Plasma 5.7.4 bugfix release, see also h^Cps://www.kde.org/announcements/plasma-5.7.4.php -------------------------------------------------------------------------------- ================================================================================ plasma-pa-5.7.4-1.fc23 (FEDORA-2016-66e0708ef3) Plasma applet for audio volume management using PulseAudio -------------------------------------------------------------------------------- Update Information: Plasma 5.7.4 bugfix release, see also h^Cps://www.kde.org/announcements/plasma-5.7.4.php -------------------------------------------------------------------------------- ================================================================================ plasma-sdk-5.7.4-1.fc23 (FEDORA-2016-66e0708ef3) Development tools for Plasma 5 -------------------------------------------------------------------------------- Update Information: Plasma 5.7.4 bugfix release, see also h^Cps://www.kde.org/announcements/plasma-5.7.4.php -------------------------------------------------------------------------------- ================================================================================ plasma-systemsettings-5.7.4-1.fc23 (FEDORA-2016-66e0708ef3) KDE System Settings application -------------------------------------------------------------------------------- Update Information: Plasma 5.7.4 bugfix release, see also h^Cps://www.kde.org/announcements/plasma-5.7.4.php -------------------------------------------------------------------------------- ================================================================================ plasma-user-manager-5.7.4-1.fc23 (FEDORA-2016-66e0708ef3) Manage the users of your system -------------------------------------------------------------------------------- Update Information: Plasma 5.7.4 bugfix release, see also h^Cps://www.kde.org/announcements/plasma-5.7.4.php -------------------------------------------------------------------------------- ================================================================================ plasma-workspace-5.7.4-2.fc23 (FEDORA-2016-66e0708ef3) Plasma workspace, applications and applets -------------------------------------------------------------------------------- Update Information: Plasma 5.7.4 bugfix release, see also h^Cps://www.kde.org/announcements/plasma-5.7.4.php -------------------------------------------------------------------------------- ================================================================================ plasma-workspace-wallpapers-5.7.4-1.fc23 (FEDORA-2016-66e0708ef3) Additional wallpapers for Plasma workspace -------------------------------------------------------------------------------- Update Information: Plasma 5.7.4 bugfix release, see also h^Cps://www.kde.org/announcements/plasma-5.7.4.php -------------------------------------------------------------------------------- ================================================================================ plymouth-theme-breeze-5.7.4-1.fc23 (FEDORA-2016-66e0708ef3) Breeze theme for Plymouth -------------------------------------------------------------------------------- Update Information: Plasma 5.7.4 bugfix release, see also h^Cps://www.kde.org/announcements/plasma-5.7.4.php -------------------------------------------------------------------------------- ================================================================================ polkit-kde-5.7.4-1.fc23 (FEDORA-2016-66e0708ef3) PolicyKit integration for KDE Desktop -------------------------------------------------------------------------------- Update Information: Plasma 5.7.4 bugfix release, see also h^Cps://www.kde.org/announcements/plasma-5.7.4.php -------------------------------------------------------------------------------- ================================================================================ powerdevil-5.7.4-1.fc23 (FEDORA-2016-66e0708ef3) Manages the power consumption settings of a Plasma Shell -------------------------------------------------------------------------------- Update Information: Plasma 5.7.4 bugfix release, see also h^Cps://www.kde.org/announcements/plasma-5.7.4.php -------------------------------------------------------------------------------- ================================================================================ python-fmn-rules-0.9.1-1.fc23 (FEDORA-2016-698aa1f28d) Message processing rules for Fedora Notifications -------------------------------------------------------------------------------- Update Information: Update to 0.9.1 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1374536 - python-fmn-rules-0.9.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1374536 -------------------------------------------------------------------------------- ================================================================================ qtspell-0.8.2-1.fc23 (FEDORA-2016-ec3c9d8dda) Spell checking for Qt text widgets -------------------------------------------------------------------------------- Update Information: Update to version 0.8.2, see https://github.com/manisandro/qtspell/releases/tag/0.8.2 for details. -------------------------------------------------------------------------------- ================================================================================ sddm-kcm-5.7.4-1.fc23 (FEDORA-2016-66e0708ef3) SDDM KDE configuration module -------------------------------------------------------------------------------- Update Information: Plasma 5.7.4 bugfix release, see also h^Cps://www.kde.org/announcements/plasma-5.7.4.php -------------------------------------------------------------------------------- ================================================================================ xen-4.5.3-10.fc23 (FEDORA-2016-1c3374bcb9) Xen is a virtual machine monitor -------------------------------------------------------------------------------- Update Information: x86: Disallow L3 recursive pagetable for 32-bit PV guests [XSA-185, CVE-2016-7092] (#1374470) x86: Mishandling of instruction pointer truncation during emulation [XSA-186, CVE-2016-7093] (#1374471) x86 HVM: Overflow of sh_ctxt->seg_reg[] [XSA-187, CVE-2016-7094] (#1374473) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1370319 - CVE-2016-7092 xen: x86: Disallow L3 recursive pagetable for 32-bit PV guests https://bugzilla.redhat.com/show_bug.cgi?id=1370319 [ 2 ] Bug #1370322 - CVE-2016-7093 xen: x86: Mishandling of instruction pointer truncation during emulation https://bugzilla.redhat.com/show_bug.cgi?id=1370322 [ 3 ] Bug #1370332 - CVE-2016-7094 xen: x86 HVM: Overflow of sh_ctxt->seg_reg[] https://bugzilla.redhat.com/show_bug.cgi?id=1370332 -------------------------------------------------------------------------------- -- test mailing list test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe: https://lists.fedoraproject.org/admin/lists/test@xxxxxxxxxxxxxxxxxxxxxxx
