The following Fedora 23 Security updates need testing: Age URL 406 https://bodhi.fedoraproject.org/updates/FEDORA-2015-16240 nagios-4.0.8-1.fc23 364 https://bodhi.fedoraproject.org/updates/FEDORA-2015-81ded368fe miniupnpc-1.9-6.fc23 337 https://bodhi.fedoraproject.org/updates/FEDORA-2015-27392b3324 jbig2dec-0.12-2.fc23 287 https://bodhi.fedoraproject.org/updates/FEDORA-2015-dd52a54fa1 python-pymongo-3.0.3-1.fc23 287 https://bodhi.fedoraproject.org/updates/FEDORA-2015-06a7c972e8 thttpd-2.25b-37.fc23 252 https://bodhi.fedoraproject.org/updates/FEDORA-2016-637618fcd4 mingw-nsis-2.50-1.fc23 106 https://bodhi.fedoraproject.org/updates/FEDORA-2016-70b5173c05 ecryptfs-utils-111-1.fc23 94 https://bodhi.fedoraproject.org/updates/FEDORA-2016-8d79ade826 flex-2.6.0-2.fc23 83 https://bodhi.fedoraproject.org/updates/FEDORA-2016-c2ec9c716e redis-3.2.3-1.fc23 76 https://bodhi.fedoraproject.org/updates/FEDORA-2016-d6288f555c libarchive-3.2.1-3.fc23 python-libarchive-c-2.5-1.fc23 74 https://bodhi.fedoraproject.org/updates/FEDORA-2016-47dc2b203f firewalld-0.4.3.3-1.fc23 60 https://bodhi.fedoraproject.org/updates/FEDORA-2016-b3a6435b14 dhcpcd-6.11.3-1.fc23 28 https://bodhi.fedoraproject.org/updates/FEDORA-2016-8e4e733bef systemd-222-17.fc23 25 https://bodhi.fedoraproject.org/updates/FEDORA-2016-1649cc31e0 ca-certificates-2016.2.10-1.0.fc23 21 https://bodhi.fedoraproject.org/updates/FEDORA-2016-95407a836f libass-0.13.4-1.fc23 18 https://bodhi.fedoraproject.org/updates/FEDORA-2016-17ea599651 compat-guile18-1.8.8-14.fc23 17 https://bodhi.fedoraproject.org/updates/FEDORA-2016-ee56c530fa epiphany-3.18.8-1.fc23 webkitgtk4-2.14.1-1.fc23 17 https://bodhi.fedoraproject.org/updates/FEDORA-2016-c1bb366e5b dbus-1.10.12-1.fc23 8 https://bodhi.fedoraproject.org/updates/FEDORA-2016-3b6393acdd tor-0.2.8.9-1.fc23 6 https://bodhi.fedoraproject.org/updates/FEDORA-2016-6c789ba91d jasper-1.900.13-1.fc23 5 https://bodhi.fedoraproject.org/updates/FEDORA-2016-21f0de504c libXi-1.7.8-2.fc23 4 https://bodhi.fedoraproject.org/updates/FEDORA-2016-4094bd4ad6 tomcat-8.0.38-1.fc23 4 https://bodhi.fedoraproject.org/updates/FEDORA-2016-f7a079f775 kdepimlibs-4.14.10-15.fc23 4 https://bodhi.fedoraproject.org/updates/FEDORA-2016-568c7ff4f6 quagga-0.99.24.1-3.fc23 2 https://bodhi.fedoraproject.org/updates/FEDORA-2016-b89e991e63 nodejs-0.10.48-1.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-012de4c97e chromium-54.0.2840.71-1.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-da6b1d277b xen-4.5.5-3.fc23 The following Fedora 23 Critical Path updates have yet to be approved: Age URL 103 https://bodhi.fedoraproject.org/updates/FEDORA-2016-98a7a1b6e0 abrt-2.8.0-6.fc23 libreport-2.6.4-3.fc23 76 https://bodhi.fedoraproject.org/updates/FEDORA-2016-d6288f555c libarchive-3.2.1-3.fc23 python-libarchive-c-2.5-1.fc23 37 https://bodhi.fedoraproject.org/updates/FEDORA-2016-79072fd70e python-virtkey-0.63.0-1.fc23 30 https://bodhi.fedoraproject.org/updates/FEDORA-2016-d26923757a koji-1.10.1-13.fc23 28 https://bodhi.fedoraproject.org/updates/FEDORA-2016-8e4e733bef systemd-222-17.fc23 25 https://bodhi.fedoraproject.org/updates/FEDORA-2016-3646279587 libgdata-0.17.5-2.fc23 25 https://bodhi.fedoraproject.org/updates/FEDORA-2016-1649cc31e0 ca-certificates-2016.2.10-1.0.fc23 21 https://bodhi.fedoraproject.org/updates/FEDORA-2016-95407a836f libass-0.13.4-1.fc23 17 https://bodhi.fedoraproject.org/updates/FEDORA-2016-c1bb366e5b dbus-1.10.12-1.fc23 14 https://bodhi.fedoraproject.org/updates/FEDORA-2016-6e25f5418b gnome-settings-daemon-3.18.4-1.fc23 11 https://bodhi.fedoraproject.org/updates/FEDORA-2016-79669f13cf dmidecode-3.0-6.fc23 10 https://bodhi.fedoraproject.org/updates/FEDORA-2016-3da7667d60 sane-backends-1.0.25-4.fc23 9 https://bodhi.fedoraproject.org/updates/FEDORA-2016-86a2119f42 nspr-4.13.1-1.fc23 8 https://bodhi.fedoraproject.org/updates/FEDORA-2016-4379c6e6d6 libfm-1.2.4-8.D20161017git82b3a1a201.fc23 7 https://bodhi.fedoraproject.org/updates/FEDORA-2016-4a8ab1b8bc menu-cache-1.0.1-3.D20161021git441f0ca9a1.fc23 6 https://bodhi.fedoraproject.org/updates/FEDORA-2016-b06386d473 pcre-8.39-6.fc23 6 https://bodhi.fedoraproject.org/updates/FEDORA-2016-6c789ba91d jasper-1.900.13-1.fc23 5 https://bodhi.fedoraproject.org/updates/FEDORA-2016-21f0de504c libXi-1.7.8-2.fc23 4 https://bodhi.fedoraproject.org/updates/FEDORA-2016-f7a079f775 kdepimlibs-4.14.10-15.fc23 2 https://bodhi.fedoraproject.org/updates/FEDORA-2016-68a38b6693 kernel-4.7.10-100.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-a0a575d718 libraw1394-2.1.2-1.fc23 The following builds have been pushed to Fedora 23 updates-testing php-markdown-1.7.0-1.fc23 php-ocramius-code-generator-utils-0.3.2-4.fc23 php-ocramius-generated-hydrator-1.2.0-1.fc23 php-ocramius-proxy-manager-1.0.2-2.fc23 psad-2.4.3-3.fc23 python-wand-0.4.4-1.fc23 xen-4.5.5-3.fc23 Details about builds: ================================================================================ php-markdown-1.7.0-1.fc23 (FEDORA-2016-1499d33c68) Markdown implementation in PHP -------------------------------------------------------------------------------- Update Information: **PHP Markdown Lib 1.7.0** (29 Oct 2016) * Added a `hard_wrap` configuration variable to make all newline characters in the text become `<br>` tags in the HTML output. By default, according to the standard Markdown syntax these newlines are ignored unless they a preceded by two spaces. Thanks to Jonathan Cohlmeyer for the implementation. * Improved the parsing of list items to fix problematic cases that came to light with the addition of `hard_wrap`. This should have no effect on the output except span-level list items that ended with two spaces (and thus ended with a line break). * Added a `code_span_content_func` configuration variable which takes a function that will convert the content of the code span to HTML. This can be useful to implement syntax highlighting. Although contrary to its code block equivalent, there is no syntax for specifying a language. Credits to styxit for the implementation. * Fixed a Markdwon Extra issue where two-space-at-end-of- line hard breaks wouldn't work inside of HTML block elements such as `<p markdown="1">` where the element expects only span-level content. * In the parser code, switched to PHPDoc comment format. Thanks to Robbie Averill for the help. Packaging change: * switch to fedora/autoloader -------------------------------------------------------------------------------- ================================================================================ php-ocramius-code-generator-utils-0.3.2-4.fc23 (FEDORA-2016-0b82fd1cbe) A set of code generator utilities built on top of PHP-Parsers -------------------------------------------------------------------------------- Update Information: ## php-ocramius-proxy-manager ### 1.0.2 * 249: Weird problem with FileWriterGeneratorStrategy * 250: Hotfix - #249 file writer generator strategy rename failures * 254: Please check 1.0.1 tag ### 1.0.1 * 249: Weird problem with FileWriterGeneratorStrategy * 250: Hotfix - #249 file writer generator strategy rename failures --- ## php-ocramius-generated-hydrator RPM: Added autoloader ### 1.2.0 * 31: travis add php 7 + hhvm-nightly * 34: update manual's url to "current" instead of specified version at README * 41: Tag release allowing PHP 7 in Composer dependencies list --- ## php-ocramius-code- generator-utils RPM: Added autoloader -------------------------------------------------------------------------------- References: [ 1 ] Bug #1350615 - php-ocramius-proxy-manager: FTBFS in rawhide https://bugzilla.redhat.com/show_bug.cgi?id=1350615 [ 2 ] Bug #1251784 - php-ocramius-proxy-manager-1.0.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=1251784 -------------------------------------------------------------------------------- ================================================================================ php-ocramius-generated-hydrator-1.2.0-1.fc23 (FEDORA-2016-0b82fd1cbe) An object hydrator -------------------------------------------------------------------------------- Update Information: ## php-ocramius-proxy-manager ### 1.0.2 * 249: Weird problem with FileWriterGeneratorStrategy * 250: Hotfix - #249 file writer generator strategy rename failures * 254: Please check 1.0.1 tag ### 1.0.1 * 249: Weird problem with FileWriterGeneratorStrategy * 250: Hotfix - #249 file writer generator strategy rename failures --- ## php-ocramius-generated-hydrator RPM: Added autoloader ### 1.2.0 * 31: travis add php 7 + hhvm-nightly * 34: update manual's url to "current" instead of specified version at README * 41: Tag release allowing PHP 7 in Composer dependencies list --- ## php-ocramius-code- generator-utils RPM: Added autoloader -------------------------------------------------------------------------------- References: [ 1 ] Bug #1350615 - php-ocramius-proxy-manager: FTBFS in rawhide https://bugzilla.redhat.com/show_bug.cgi?id=1350615 [ 2 ] Bug #1251784 - php-ocramius-proxy-manager-1.0.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=1251784 -------------------------------------------------------------------------------- ================================================================================ php-ocramius-proxy-manager-1.0.2-2.fc23 (FEDORA-2016-0b82fd1cbe) OOP proxy wrappers utilities -------------------------------------------------------------------------------- Update Information: ## php-ocramius-proxy-manager ### 1.0.2 * 249: Weird problem with FileWriterGeneratorStrategy * 250: Hotfix - #249 file writer generator strategy rename failures * 254: Please check 1.0.1 tag ### 1.0.1 * 249: Weird problem with FileWriterGeneratorStrategy * 250: Hotfix - #249 file writer generator strategy rename failures --- ## php-ocramius-generated-hydrator RPM: Added autoloader ### 1.2.0 * 31: travis add php 7 + hhvm-nightly * 34: update manual's url to "current" instead of specified version at README * 41: Tag release allowing PHP 7 in Composer dependencies list --- ## php-ocramius-code- generator-utils RPM: Added autoloader -------------------------------------------------------------------------------- References: [ 1 ] Bug #1350615 - php-ocramius-proxy-manager: FTBFS in rawhide https://bugzilla.redhat.com/show_bug.cgi?id=1350615 [ 2 ] Bug #1251784 - php-ocramius-proxy-manager-1.0.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=1251784 -------------------------------------------------------------------------------- ================================================================================ psad-2.4.3-3.fc23 (FEDORA-2016-b612df79e6) Port Scan Attack Detector (psad) watches for suspect traffic -------------------------------------------------------------------------------- Update Information: Many changes since the last 2.2.1 release available in Fedora. The most important ones are: * Added support for reading syslog messages from journalctl * Added support for systems with 'firewalld' * Dropped the bundled whois client (system whois client will be used instead if available) * Added native systemd service unit * Added missing SELinux rules preventing psad from running Full upstream changelog: https://github.com/mrash/psad/blob/master/ChangeLog -------------------------------------------------------------------------------- References: [ 1 ] Bug #1040425 - None https://bugzilla.redhat.com/show_bug.cgi?id=1040425 [ 2 ] Bug #1354548 - None https://bugzilla.redhat.com/show_bug.cgi?id=1354548 -------------------------------------------------------------------------------- ================================================================================ python-wand-0.4.4-1.fc23 (FEDORA-2016-7e96825399) Ctypes-based simple MagickWand API binding for Python -------------------------------------------------------------------------------- Update Information: Updated to Wand Version 0.4.4. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1387848 - None https://bugzilla.redhat.com/show_bug.cgi?id=1387848 -------------------------------------------------------------------------------- ================================================================================ xen-4.5.5-3.fc23 (FEDORA-2016-da6b1d277b) Xen is a virtual machine monitor -------------------------------------------------------------------------------- Update Information: several qemu security fixes -------------------------------------------------------------------------------- References: [ 1 ] Bug #1333425 - CVE-2016-8576 Qemu: usb: xHCI: infinite loop vulnerability in xhci_ring_fetch https://bugzilla.redhat.com/show_bug.cgi?id=1333425 [ 2 ] Bug #1383291 - CVE-2016-8578 Qemu: 9pfs: potential NULL dereferencein 9pfs routines https://bugzilla.redhat.com/show_bug.cgi?id=1383291 [ 3 ] Bug #1384909 - CVE-2016-8669 Qemu: char: divide by zero error in serial_update_parameters https://bugzilla.redhat.com/show_bug.cgi?id=1384909 [ 4 ] Bug #1388046 - CVE-2016-8910 Qemu: net: rtl8139: infinite loop while transmit in C+ mode https://bugzilla.redhat.com/show_bug.cgi?id=1388046 [ 5 ] Bug #1327626 - Qemu: timer: a9gtimer: Infinite loop unfolds when updating a9gtimer https://bugzilla.redhat.com/show_bug.cgi?id=1327626 [ 6 ] Bug #1389642 - Qemu: 9pfs: information leakage via xattr https://bugzilla.redhat.com/show_bug.cgi?id=1389642 [ 7 ] Bug #1389550 - Qemu: 9pfs: memory leakage when creating extended attribute https://bugzilla.redhat.com/show_bug.cgi?id=1389550 [ 8 ] Bug #1389702 - Qemu: 9pfs: memory leakage in v9fs_link https://bugzilla.redhat.com/show_bug.cgi?id=1389702 [ 9 ] Bug #1389712 - Qemu: 9pfs: memory leakage in v9fs_write https://bugzilla.redhat.com/show_bug.cgi?id=1389712 [ 10 ] Bug #1389686 - Qemu: 9pfs: integer overflow leading to OOB access https://bugzilla.redhat.com/show_bug.cgi?id=1389686 -------------------------------------------------------------------------------- _______________________________________________ test mailing list -- test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to test-leave@xxxxxxxxxxxxxxxxxxxxxxx
