The following Fedora 23 Security updates need testing: Age URL 357 https://bodhi.fedoraproject.org/updates/FEDORA-2015-16240 nagios-4.0.8-1.fc23 315 https://bodhi.fedoraproject.org/updates/FEDORA-2015-81ded368fe miniupnpc-1.9-6.fc23 288 https://bodhi.fedoraproject.org/updates/FEDORA-2015-27392b3324 jbig2dec-0.12-2.fc23 238 https://bodhi.fedoraproject.org/updates/FEDORA-2015-dd52a54fa1 python-pymongo-3.0.3-1.fc23 238 https://bodhi.fedoraproject.org/updates/FEDORA-2015-06a7c972e8 thttpd-2.25b-37.fc23 203 https://bodhi.fedoraproject.org/updates/FEDORA-2016-637618fcd4 mingw-nsis-2.50-1.fc23 79 https://bodhi.fedoraproject.org/updates/FEDORA-2016-fcccb0a547 nodejs-0.10.46-1.fc23 57 https://bodhi.fedoraproject.org/updates/FEDORA-2016-70b5173c05 ecryptfs-utils-111-1.fc23 46 https://bodhi.fedoraproject.org/updates/FEDORA-2016-9402100276 openssh-7.2p2-5.fc23 selinux-policy-3.13.1-158.22.fc23 45 https://bodhi.fedoraproject.org/updates/FEDORA-2016-8d79ade826 flex-2.6.0-2.fc23 45 https://bodhi.fedoraproject.org/updates/FEDORA-2016-aa394a130e nodejs-string-dot-prototype-dot-repeat-0.2.0-2.fc23 34 https://bodhi.fedoraproject.org/updates/FEDORA-2016-c2ec9c716e redis-3.2.3-1.fc23 30 https://bodhi.fedoraproject.org/updates/FEDORA-2016-5aa6973100 jasper-1.900.1-33.fc23 27 https://bodhi.fedoraproject.org/updates/FEDORA-2016-d6288f555c libarchive-3.2.1-3.fc23 python-libarchive-c-2.5-1.fc23 25 https://bodhi.fedoraproject.org/updates/FEDORA-2016-47dc2b203f firewalld-0.4.3.3-1.fc23 19 https://bodhi.fedoraproject.org/updates/FEDORA-2016-3a0195918f gnupg-1.4.21-1.fc23 11 https://bodhi.fedoraproject.org/updates/FEDORA-2016-b3a6435b14 dhcpcd-6.11.3-1.fc23 5 https://bodhi.fedoraproject.org/updates/FEDORA-2016-63633ea21c openvas-gsa-6.0.11-3.fc23 openvas-libraries-8.0.8-2.fc23 openvas-manager-6.0.9-1.fc23 openvas-scanner-5.0.6-1.fc23 5 https://bodhi.fedoraproject.org/updates/FEDORA-2016-7d6ca385a4 php-adodb-5.15-10.fc23 2 https://bodhi.fedoraproject.org/updates/FEDORA-2016-91bfe9ddb8 wordpress-4.6.1-1.fc23 2 https://bodhi.fedoraproject.org/updates/FEDORA-2016-2b3f060d19 php-horde-Horde-Core-2.26.1-1.fc23 2 https://bodhi.fedoraproject.org/updates/FEDORA-2016-a506d298bf php-horde-Horde-Mime-Viewer-2.2.1-1.fc23 2 https://bodhi.fedoraproject.org/updates/FEDORA-2016-084620f386 php-horde-Horde-Text-Filter-2.3.5-1.fc23 2 https://bodhi.fedoraproject.org/updates/FEDORA-2016-5763cacac0 php-horde-horde-5.2.12-1.fc23 2 https://bodhi.fedoraproject.org/updates/FEDORA-2016-ed1c402851 thunderbird-45.3.0-1.fc23 2 https://bodhi.fedoraproject.org/updates/FEDORA-2016-2edb9adec8 gnutls-3.4.15-1.fc23 2 https://bodhi.fedoraproject.org/updates/FEDORA-2016-390ec4a8f3 GraphicsMagick-1.3.25-1.fc23 2 https://bodhi.fedoraproject.org/updates/FEDORA-2016-1c3374bcb9 xen-4.5.3-10.fc23 2 https://bodhi.fedoraproject.org/updates/FEDORA-2016-231f53426b openjpeg2-2.1.1-3.fc23 2 https://bodhi.fedoraproject.org/updates/FEDORA-2016-adb346980c mingw-openjpeg2-2.1.1-3.fc23 2 https://bodhi.fedoraproject.org/updates/FEDORA-2016-9528bc8c0d chromium-53.0.2785.101-1.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-a3cc693fba drupal7-google_analytics-2.3-1.fc23 The following Fedora 23 Critical Path updates have yet to be approved: Age URL 54 https://bodhi.fedoraproject.org/updates/FEDORA-2016-98a7a1b6e0 abrt-2.8.0-6.fc23 libreport-2.6.4-3.fc23 46 https://bodhi.fedoraproject.org/updates/FEDORA-2016-9402100276 openssh-7.2p2-5.fc23 selinux-policy-3.13.1-158.22.fc23 30 https://bodhi.fedoraproject.org/updates/FEDORA-2016-5aa6973100 jasper-1.900.1-33.fc23 27 https://bodhi.fedoraproject.org/updates/FEDORA-2016-d6288f555c libarchive-3.2.1-3.fc23 python-libarchive-c-2.5-1.fc23 26 https://bodhi.fedoraproject.org/updates/FEDORA-2016-343c55ea44 linux-firmware-20160816-67.git7c3dfc0b.fc23 19 https://bodhi.fedoraproject.org/updates/FEDORA-2016-3a0195918f gnupg-1.4.21-1.fc23 16 https://bodhi.fedoraproject.org/updates/FEDORA-2016-221e4b44b9 gnome-online-accounts-3.18.6-1.fc23 15 https://bodhi.fedoraproject.org/updates/FEDORA-2016-22e1403506 livecd-tools-23.4-1.fc23 15 https://bodhi.fedoraproject.org/updates/FEDORA-2016-dee73b9cb5 selinux-policy-3.13.1-158.23.fc23 13 https://bodhi.fedoraproject.org/updates/FEDORA-2016-6b2a994a0a hwdata-0.292-1.fc23 13 https://bodhi.fedoraproject.org/updates/FEDORA-2016-1a0c6260d0 libgweather-3.18.2-1.fc23 13 https://bodhi.fedoraproject.org/updates/FEDORA-2016-1a5504f544 pcmanfm-1.2.4-3.fc23 13 https://bodhi.fedoraproject.org/updates/FEDORA-2016-e71eb7777e lxsession-0.5.2-11.D20160817git699c1695c2.fc23 11 https://bodhi.fedoraproject.org/updates/FEDORA-2016-eb1654ad5f pcre-8.39-3.fc23 9 https://bodhi.fedoraproject.org/updates/FEDORA-2016-c9d509853e libfm-1.2.4-7.D20160627git2a537414de.fc23 2 https://bodhi.fedoraproject.org/updates/FEDORA-2016-9b2440c972 dbus-glib-0.108-1.fc23 2 https://bodhi.fedoraproject.org/updates/FEDORA-2016-91fb402c7f kernel-4.7.3-100.fc23 2 https://bodhi.fedoraproject.org/updates/FEDORA-2016-0ab60daf6d systemtap-3.0-4.fc23 2 https://bodhi.fedoraproject.org/updates/FEDORA-2016-2edb9adec8 gnutls-3.4.15-1.fc23 2 https://bodhi.fedoraproject.org/updates/FEDORA-2016-ed1c402851 thunderbird-45.3.0-1.fc23 2 https://bodhi.fedoraproject.org/updates/FEDORA-2016-1d3fc3e3aa xfsprogs-4.5.0-2.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-dd6dc98c23 audit-2.6.7-1.fc23 The following builds have been pushed to Fedora 23 updates-testing audit-2.6.7-1.fc23 carbon-c-relay-2.2-1.fc23 docker-1.10.3-44.git8b7fa4a.fc23 drupal7-ctools-1.10-1.fc23 drupal7-google_analytics-2.3-1.fc23 dtc-1.4.2-1.fc23 ibus-typing-booster-1.5.5-1.fc23 php-akamai-open-edgegrid-client-0.4.6-1.fc23 php-aws-sdk3-3.19.6-1.fc23 php-composer-installers-1.2.0-1.fc23 php-robrichards-xmlseclibs-2.0.1-1.fc23 php-robrichards-xmlseclibs1-1.4.2-1.fc23 php-twig-1.24.2-1.fc23 pymol-1.8.2.2-5.20160625svn4159.fc23 sshuttle-0.78.1-2.fc23 tcalc-2.1-1.fc23 voms-2.0.14-1.fc23 voms-clients-java-3.0.7-1.fc23 voms-mysql-plugin-3.1.7-1.fc23 xpra-0.17.5-1.fc23 Details about builds: ================================================================================ audit-2.6.7-1.fc23 (FEDORA-2016-dd6dc98c23) User space tools for 2.6 kernel auditing -------------------------------------------------------------------------------- Update Information: New upstream bug fix release. Corrects file permissions on non-active logs and corrects keys loaded on syscall rules. -------------------------------------------------------------------------------- ================================================================================ carbon-c-relay-2.2-1.fc23 (FEDORA-2016-c587b2159d) Enhanced C implementation of Carbon relay, aggregator and rewriter -------------------------------------------------------------------------------- Update Information: Update to 2.2 -------------------------------------------------------------------------------- ================================================================================ docker-1.10.3-44.git8b7fa4a.fc23 (FEDORA-2016-ea71cc4f34) Automates deployment of containerized applications -------------------------------------------------------------------------------- Update Information: built docker @projectatomic/fedora-1.10.3 commit 8b7fa4a -------------------------------------------------------------------------------- ================================================================================ drupal7-ctools-1.10-1.fc23 (FEDORA-2016-6d5ecaa3dc) Primarily a set of APIs and tools to improve the developer experience -------------------------------------------------------------------------------- Update Information: - [7.x-1.10](https://www.drupal.org/project/ctools/releases/7.x-1.10) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1370660 - drupal7-ctools-1.10 is available https://bugzilla.redhat.com/show_bug.cgi?id=1370660 -------------------------------------------------------------------------------- ================================================================================ drupal7-google_analytics-2.3-1.fc23 (FEDORA-2016-a3cc693fba) Adds the Google Analytics web statistics tracking system to your website -------------------------------------------------------------------------------- Update Information: * [7.x-2.3](https://www.drupal.org/project/google_analytics/releases/7.x-2.3) * [Google Analytics - Moderately Critical - Cross Site Scripting - SA- CONTRIB-2016-042](https://www.drupal.org/node/2782023) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1366068 - drupal7-google_analytics-2.3 is available https://bugzilla.redhat.com/show_bug.cgi?id=1366068 -------------------------------------------------------------------------------- ================================================================================ dtc-1.4.2-1.fc23 (FEDORA-2016-1bbe637fd2) Device Tree Compiler -------------------------------------------------------------------------------- Update Information: New dtc 1.4.2 release -------------------------------------------------------------------------------- ================================================================================ ibus-typing-booster-1.5.5-1.fc23 (FEDORA-2016-acc6024055) A typing booster engine for the IBus platform -------------------------------------------------------------------------------- Update Information: update to 1.5.5 ---- update to 1.5.4; Accent insensitive matching implemented ---- update to 1.5.3 ---- update to 1.5.2 ---- update to 1.5.1; Show similar emoji when backspacing to a previously input emoji; French translations added; Polish translations added; -------------------------------------------------------------------------------- References: [ 1 ] Bug #1372660 - [abrt] ibus-typing-booster: hunspell_table.py:248:update_transliterated_strings:KeyError: 'NoIme' https://bugzilla.redhat.com/show_bug.cgi?id=1372660 -------------------------------------------------------------------------------- ================================================================================ php-akamai-open-edgegrid-client-0.4.6-1.fc23 (FEDORA-2016-762274942d) Implements the Akamai {OPEN} EdgeGrid Authentication -------------------------------------------------------------------------------- Update Information: https://github.com/akamai-open/AkamaiOPEN-edgegrid-php/compare/0.4.5...0.4.6 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1371149 - php-akamai-open-edgegrid-client-0.4.6 is available https://bugzilla.redhat.com/show_bug.cgi?id=1371149 -------------------------------------------------------------------------------- ================================================================================ php-aws-sdk3-3.19.6-1.fc23 (FEDORA-2016-eff7cef0ad) Amazon Web Services framework for PHP -------------------------------------------------------------------------------- Update Information: ## 3.19.6 - 2016-09-08 * `Aws\CloudFront` - Added support for HTTP2 ## 3.19.5 - 2016-09-06 * `Aws\Codepipeline` - Added support for pipeline execution details * `Aws\Rds` - Added support for `DescribeSourceRegions` API * `Aws\Sns` - Added new exceptions ## 3.19.4 - 2016-09-01 * `Aws\ApplicationAutoScaling` - Added support for automatically scaling an Amazon EC2 Spot fleet in order to manage application availability and costs during changes in demand based on conditions you define * `Aws\CognitoIdentity` - Added support for bulk import of users * `Aws\Rds` - Added support for the information about option conflicts to the describe-option-group-options api response * `Aws\ConfigService` - Added support for a application loadbalancer type * `Aws\GameLift` - Added support for Linux instance ## 3.19.3 - 2016-08-30 * `Aws\CloudFront` - Added support for QueryString Whitelisting * `Aws\CodePipeline` - Added support for return pipeline execution details * `Aws\Ecs` - Added support for simplified waiter * `Aws\Route53` - Added support for `NAPTR` and new operation `TestDNSAnswer` ## 3.19.2 - 2016-08-23 * `Aws\Rds` - Added support for addition of resource ARNs to `Describe` APIs ## 3.19.1 - 2016-08-18 * `Aws\Ec2` - Added support for for Dedicated Host Reservations and API Update for `EC2-SpotFleet` * `Aws\ElasticLoadBalancingV2` - Fix `ElasticLoadBalancingV2` endpoints * `Aws\WorkSpaces` - Added support for Hourly WorkSpaces APIs ## 3.19.0 - 2016-08-16 * `Aws\Acm` - Added support for increased tagging limit * `Aws\ApiGateway` - Added support for API usage plans * `Aws\Ecs` - Added support for memory reservation and `networkMode` on task definitions ## 3.18.39 - 2016-08-11 * `Aws\AutoScaling` - Added support for `ELB` L7 integration * `Aws\ElasticLoadBalancing` - Added support for `ELBv2` support * `Aws\KinesisAnalytics` - Added support for new service that 9allows customers to perform SQL queries against streaming data * `Aws\Kms` - Added support for importing customer-supplied cryptographic keys * `Aws\S3` - Added support for IPv6 * `Aws\SnowBall` - Added support for new service `SnowBall`: snowball job management ## 3.18.38 - 2016-08-09 * `Aws\CloudFront` - Added support for tagging API * `Aws\Ecr` - Added support for `ListImages` filtering * `Aws\MarketplaceCommerceAnalytics` - Added support for `StartSupportDataExport` * `Aws\Rds` - Fixing duplicate acceptors in waiters ## 3.18.37 - 2016-08-04 * `Aws\GameLift` - Added support for `GameSession` Search * `Aws\Lambda` - Added support for throttling reasons, new exception for bad zip file, and Event Source Token field for add permission request * `Aws\Rds` - Added support for `MoveToVpc` feature and S3 Snapshot Ingestion ## 3.18.36 - 2016-08-02 * `Aws\CloudWatchLogs` - Added support for Optional Parameter to PutMetricFilterRequest * `Aws\Emr` - Added support for Enhanced Debugging * `Aws\Iot` - Added support for `ListOutgoingCertificates` & `AutoRegistration` flag * `Aws\MachineLearning` - Added support for computing time and entity timestamp * `Aws\MarketplaceMetering` - API Constraint Update * `Aws\Rds` - Added support for license migration between BYOL and LI API Update for `AWS- RDS`, Enable `version` with RDS Options -------------------------------------------------------------------------------- References: [ 1 ] Bug #1365099 - php-aws-sdk3-3.19.6 is available https://bugzilla.redhat.com/show_bug.cgi?id=1365099 -------------------------------------------------------------------------------- ================================================================================ php-composer-installers-1.2.0-1.fc23 (FEDORA-2016-6bd38248d5) A multi-framework Composer library installer -------------------------------------------------------------------------------- Update Information: ## v1.2.0 * Added installer for Attogram #314. * Added installer for Cockpit #284. * Added installer for Plentymarkets #319. * Added installer for ReIndex #262. * Added missing environments for new Shopware (5.2) Plugin System #321. * Added installer for Vanilla #318. * Added installer for YAWIK #320. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1372115 - php-composer-installers-v1.2.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1372115 -------------------------------------------------------------------------------- ================================================================================ php-robrichards-xmlseclibs-2.0.1-1.fc23 (FEDORA-2016-963c0332ff) A PHP library for XML Security -------------------------------------------------------------------------------- Update Information: No library code changes. Previous commit released just tagged as version 2.0.1 upstream. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1374415 - php-robrichards-xmlseclibs-2.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1374415 -------------------------------------------------------------------------------- ================================================================================ php-robrichards-xmlseclibs1-1.4.2-1.fc23 (FEDORA-2016-1c4f92a47a) A PHP library for XML Security (version 1) -------------------------------------------------------------------------------- Update Information: No library code changes. Previous commit released just tagged as version 1.4.2 upstream. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1374416 - php-robrichards-xmlseclibs1-1.4.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=1374416 -------------------------------------------------------------------------------- ================================================================================ php-twig-1.24.2-1.fc23 (FEDORA-2016-b5f28ab3dc) The flexible, fast, and secure template engine for PHP -------------------------------------------------------------------------------- Update Information: ## 1.24.2 (2016-09-01) * fixed static callables * fixed a potential PHP warning when load the cache * fixed a case where the autoescaping does not work as expected -------------------------------------------------------------------------------- References: [ 1 ] Bug #1372507 - php-twig-1.24.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=1372507 -------------------------------------------------------------------------------- ================================================================================ pymol-1.8.2.2-5.20160625svn4159.fc23 (FEDORA-2016-37b3753c16) PyMOL Molecular Graphics System -------------------------------------------------------------------------------- Update Information: - fix for python3-tkinter dep (BZ 1368810) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1368810 - add python3-tkinter dependency https://bugzilla.redhat.com/show_bug.cgi?id=1368810 -------------------------------------------------------------------------------- ================================================================================ sshuttle-0.78.1-2.fc23 (FEDORA-2016-ca57664e97) Transparent Proxy VPN -------------------------------------------------------------------------------- Update Information: This is an upstream bugfix release that addresses minor bugs, and prevents a crash on ENETUNREACH. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1365235 - sshuttle-0.78.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1365235 -------------------------------------------------------------------------------- ================================================================================ tcalc-2.1-1.fc23 (FEDORA-2016-df56698f29) The terminal calculator -------------------------------------------------------------------------------- Update Information: Fixed a bug in number conversion function -------------------------------------------------------------------------------- ================================================================================ voms-2.0.14-1.fc23 (FEDORA-2016-c37a5f6642) Virtual Organization Membership Service -------------------------------------------------------------------------------- Update Information: http://italiangrid.github.io/voms/2016/09/09/voms-release-16-09.html -------------------------------------------------------------------------------- ================================================================================ voms-clients-java-3.0.7-1.fc23 (FEDORA-2016-c37a5f6642) Virtual Organization Membership Service Java clients -------------------------------------------------------------------------------- Update Information: http://italiangrid.github.io/voms/2016/09/09/voms-release-16-09.html -------------------------------------------------------------------------------- ================================================================================ voms-mysql-plugin-3.1.7-1.fc23 (FEDORA-2016-c37a5f6642) VOMS server plugin for MySQL -------------------------------------------------------------------------------- Update Information: http://italiangrid.github.io/voms/2016/09/09/voms-release-16-09.html -------------------------------------------------------------------------------- ================================================================================ xpra-0.17.5-1.fc23 (FEDORA-2016-0468100cf1) Remote display server for applications and desktops -------------------------------------------------------------------------------- Update Information: This upstream update fixes a number of minor bugs as follows: * fix sound codec order: prevent incompatibilities with gdp payloader * fix internal error with some values for the window title option * fix crash on FreeBSD caused by buggy netifaces package * fix strict build on FreeBSD, use correct Xvfb command * fix video region statistics not correctly reset * fix OSX PKG installation errors on El Capitan and later * fix OSX installation warnings * fix X11 keyboard layout setup code corner case handling * fix VP9 speed setting to prevent excruciatingly slow compression * fix honour socket-dirs value found in configuration files * fix Fedora 25+ builds hanging during printer probing * fix unnecessary delay in network layer of MS Windows clients * fix xvid encoder debug overlay (now only enabled with debugging) * fix x265 compilation with python3 * fix cursor errors with no data to send * fix v4l2 module build on older platforms, add missing build switch * fix CentOS 7.1 cryptography packaging dependency * fix misleading cryptography import error message * fix logging loops with 'network' and 'crypto' debug flags * fix spurious sound log messages on some platforms (ie: CentOS 6.x) * fix webcam spurious warnings when already disabled * fix webcam skewed picture * fix size calculations for the 1 pixel bottom edge of video areas * fix heavy import with side effects for shadow servers * fix MS Windows shadow servers picture corruption * fix jpeg wrongly included in auto-refresh encodings * fix compatibility with ffmpeg 3.1+, warn but don't fail * fix socket-dir option not being honoured * fix log dir in commented out Xvfb example * fix build on some non US locales -------------------------------------------------------------------------------- References: [ 1 ] Bug #1370840 - xpra-0.17.5 is available https://bugzilla.redhat.com/show_bug.cgi?id=1370840 -------------------------------------------------------------------------------- -- test mailing list test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe: https://lists.fedoraproject.org/admin/lists/test@xxxxxxxxxxxxxxxxxxxxxxx
