The following Fedora 25 Security updates need testing: Age URL 99 https://bodhi.fedoraproject.org/updates/FEDORA-2016-9b3ed5f170 chicken-4.11.0-3.fc25 50 https://bodhi.fedoraproject.org/updates/FEDORA-2016-6dd3bc37c3 compat-guile18-1.8.8-14.fc25 30 https://bodhi.fedoraproject.org/updates/FEDORA-2016-0c4e822340 memcached-1.4.33-1.fc25 8 https://bodhi.fedoraproject.org/updates/FEDORA-2016-7209ab4e02 ntp-4.2.6p5-43.fc25 6 https://bodhi.fedoraproject.org/updates/FEDORA-2016-999e1a6927 xen-4.7.1-3.fc25 4 https://bodhi.fedoraproject.org/updates/FEDORA-2016-0918477a60 dpkg-1.17.27-1.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-c883d07fba gstreamer1-plugins-good-1.10.1-2.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-a82e35272c gstreamer1-plugins-bad-free-1.10.1-1.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-6576a8536b phpMyAdmin-4.6.5.1-2.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-077d0ed22e php-php-gettext-1.0.12-1.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-d361d188d9 roundcubemail-1.2.3-1.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-673cbb6bb4 perl-DBD-MySQL-4.041-1.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-6afdd2b61d kernel-4.8.11-300.fc25 The following Fedora 25 Critical Path updates have yet to be approved: Age URL 54 https://bodhi.fedoraproject.org/updates/FEDORA-2016-6cb65ea55b pungi-4.1.10-1.fc25 16 https://bodhi.fedoraproject.org/updates/FEDORA-2016-56cfdb6815 nss-3.27.0-1.3.fc25 6 https://bodhi.fedoraproject.org/updates/FEDORA-2016-a1231ada78 python-productmd-1.3-1.fc25 6 https://bodhi.fedoraproject.org/updates/FEDORA-2016-940ecb5c59 wpa_supplicant-2.6-1.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-6afdd2b61d kernel-4.8.11-300.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-9359679d9e gettext-0.19.8.1-3.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-0b8cbb7e4a vim-8.0.104-2.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-c883d07fba gstreamer1-plugins-good-1.10.1-2.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-d1da2ccf5c gstreamer1-plugins-base-1.10.1-1.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-574a5c7dc7 gstreamer1-1.10.1-1.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-624d5baf03 tar-1.29-3.fc25 The following builds have been pushed to Fedora 25 updates-testing LinLog-0.5-2.fc25 RBTools-0.7.7-1.fc25 antimony-0.9.3-0.1.20161128git41a770.fc25 atomic-1.13.8-1.git8046db2.fc25 brightnessctl-0.1.1_p2-2.fc25 cabal-rpm-0.10.1-1.fc25 caffeine-2.3.5-1.fc25 cbmc-5.6-1.fc25 cinnamon-translations-3.2.1-1.fc25 dnf-plugin-system-upgrade-0.7.1-4.fc25 efl-1.18.3-1.fc25 enlightenment-0.21.3-1.fc25 fonttools-3.2.2-2.fc25 gettext-0.19.8.1-3.fc25 gnome-builder-3.22.3-1.fc25 gnote-3.22.1-1.fc25 golang-github-knieriem-markdown-0-1.git325ec6c.fc25 gphoto2-2.5.11-1.fc25 gretl-2016d-1.fc25 gst-editing-services-1.10.1-1.fc25 gstreamer1-1.10.1-1.fc25 gstreamer1-plugin-mpg123-1.10.1-3.fc25 gstreamer1-plugins-bad-free-1.10.1-1.fc25 gstreamer1-plugins-base-1.10.1-1.fc25 gstreamer1-plugins-good-1.10.1-2.fc25 gstreamer1-rtsp-server-1.10.1-1.fc25 gstreamer1-vaapi-1.10.1-1.fc25 haproxy-1.6.10-1.fc25 hplip-3.16.11-3.fc25 inkscape-0.92-7.pre3.fc25 keepalived-1.3.2-1.fc25 kernel-4.8.11-300.fc25 kompose-0.1.2-0.1.git92ea047.fc25 lftp-4.7.4-1.fc25 libqalculate-0.9.10-1.fc25 lout-3.40-5.fc25 lua-mpack-1.0.3-5.fc25 man-pages-cs-0.18.20090209-22.fc25 mediawiki-1.27.1-2.fc25 mimedefang-2.79-1.fc25 nemo-extensions-3.2.0-2.fc25 ninja-build-1.7.2-1.fc25 openqa-4.4-29.20161128git663c025.fc25 os-autoinst-4.4-7.20161123gitdb6d2ef.fc25 pcsxr-1.9.94-6.fc25 perl-DBD-MySQL-4.041-1.fc25 perl-Image-ExifTool-10.36-1.fc25 perl-Module-Extract-Use-1.04-2.fc25 perl-Mojolicious-Plugin-AssetPack-1.28-1.fc25 perl-Razor-Agent-2.85-24.fc25 php-ast-0.1.2-2.fc25 php-cs-fixer-1.13.0-1.fc25 php-deepend-Mockery-0.9.6-1.fc25 php-http-interop-http-middleware-0.2.0-1.fc25 php-pear-Net-DNS2-1.4.2-2.fc25 php-php-gettext-1.0.12-1.fc25 php-phpiredis-1.0.0-2.fc25 php-zendframework-zend-stratigility-1.3.1-1.fc25 phpMyAdmin-4.6.5.1-2.fc25 playitagainsam-0.5.0-1.fc25 python-astral-1.3.2-2.fc25 python-batinfo-0.4.2-2.fc25 python-django-notifications-hq-1.2-1.fc25 python-docker-py-1.10.6-1.fc25 python-gstreamer1-1.10.1-1.fc25 python-influxdb-3.0.0-1.fc25 qalculate-gtk-0.9.9-1.fc25 quilt-0.65-1.fc25 roundcubemail-1.2.3-1.fc25 scap-security-guide-0.1.31-1.fc25 screengrab-1.2.1-1.fc25 spandsp-0.0.6-1.fc25 sysprof-3.22.3-1.fc25 tar-1.29-3.fc25 telepathy-gabble-0.18.4-1.fc25 telepathy-mission-control-5.16.4-1.fc25 terminator-1.90-3.fc25 vdr-epg-daemon-1.1.54-1.fc25 vim-8.0.104-2.fc25 xcb-util-xrm-1.2-1.fc25 xfce4-clipman-plugin-1.4.1-1.fc25 yp-tools-2.14-7.fc25 Details about builds: ================================================================================ LinLog-0.5-2.fc25 (FEDORA-2016-ef71c9e29f) A ham radio logbook for Linux -------------------------------------------------------------------------------- Update Information: Update desktop file to correct for upstream rename of binary. ---- Regexp for time value changed, leading zero now required, corresponding to adif spezification Printing of qsl cards now respects printer resolution. Time of qso was not printed any longer on qsl card. ( Due to changes in qt ? ). Now fixed. You can store now eQsl cards in your database. Fixed two format bugs in date and time format. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1397763 - update 0.5 https://bugzilla.redhat.com/show_bug.cgi?id=1397763 -------------------------------------------------------------------------------- ================================================================================ RBTools-0.7.7-1.fc25 (FEDORA-2016-8f8414d651) Tools for use with ReviewBoard -------------------------------------------------------------------------------- Update Information: https://www.reviewboard.org/docs/releasenotes/rbtools/0.7.7/ -------------------------------------------------------------------------------- ================================================================================ antimony-0.9.3-0.1.20161128git41a770.fc25 (FEDORA-2016-5adcdd55b8) Computer-aided design CAD tool -------------------------------------------------------------------------------- Update Information: - Update to 0.9.3b (commit b9f01e) -------------------------------------------------------------------------------- ================================================================================ atomic-1.13.8-1.git8046db2.fc25 (FEDORA-2016-4a96813c06) Tool for managing ProjectAtomic systems and containers -------------------------------------------------------------------------------- Update Information: Resolves: #1398448 - add python-slip-dbus as a runtime dep -------------------------------------------------------------------------------- References: [ 1 ] Bug #1398448 - Spec file missing slip dependency https://bugzilla.redhat.com/show_bug.cgi?id=1398448 -------------------------------------------------------------------------------- ================================================================================ brightnessctl-0.1.1_p2-2.fc25 (FEDORA-2016-064940f7b8) Read and control device brightness -------------------------------------------------------------------------------- Update Information: new software :) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1398929 - Review Request: brightnessctl - Read and control device brightness https://bugzilla.redhat.com/show_bug.cgi?id=1398929 -------------------------------------------------------------------------------- ================================================================================ cabal-rpm-0.10.1-1.fc25 (FEDORA-2016-bc51bdc449) RPM packaging tool for Haskell Cabal-based packages -------------------------------------------------------------------------------- Update Information: Update to 0.10.1: updates for latest ghc-rpm-macros * no longer need to remove License files from docdir * use new ghc_fix_rpath macro -------------------------------------------------------------------------------- ================================================================================ caffeine-2.3.5-1.fc25 (FEDORA-2016-7095ba897b) High performance, near optimal caching library based on Java 8 -------------------------------------------------------------------------------- Update Information: initial package -------------------------------------------------------------------------------- References: [ 1 ] Bug #1397051 - Review Request: caffeine - High performance java 8 caching library https://bugzilla.redhat.com/show_bug.cgi?id=1397051 -------------------------------------------------------------------------------- ================================================================================ cbmc-5.6-1.fc25 (FEDORA-2016-589147d06c) Bounded Model Checker for ANSI-C and C++ programs -------------------------------------------------------------------------------- Update Information: Upstream notes on version 5.6: - This is a minor release, focused primarily on maintenance. The primary area of attention was the C, C++ and Java frontends. -------------------------------------------------------------------------------- ================================================================================ cinnamon-translations-3.2.1-1.fc25 (FEDORA-2016-ee59c4eb03) Translations for Cinnamon and Nemo -------------------------------------------------------------------------------- Update Information: - update -------------------------------------------------------------------------------- ================================================================================ dnf-plugin-system-upgrade-0.7.1-4.fc25 (FEDORA-2016-33e5e3e776) System Upgrade plugin for DNF -------------------------------------------------------------------------------- Update Information: Make sure that the main package with the systemd service is always installed if the dnf plugin is. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1395686 - missing dependency on dnf-plugin-system-upgrade prevents dnf system-upgrade reboot from working https://bugzilla.redhat.com/show_bug.cgi?id=1395686 -------------------------------------------------------------------------------- ================================================================================ efl-1.18.3-1.fc25 (FEDORA-2016-aac5b88ae2) Collection of Enlightenment libraries -------------------------------------------------------------------------------- Update Information: Update to 0.21.3, add support for Pulseaudio -------------------------------------------------------------------------------- References: [ 1 ] Bug #1398766 - Enlightenment mixer is missing Pulseaudio support https://bugzilla.redhat.com/show_bug.cgi?id=1398766 [ 2 ] Bug #1384037 - enlightenment-0.21.3 is available https://bugzilla.redhat.com/show_bug.cgi?id=1384037 -------------------------------------------------------------------------------- ================================================================================ enlightenment-0.21.3-1.fc25 (FEDORA-2016-aac5b88ae2) Enlightenment window manager -------------------------------------------------------------------------------- Update Information: Update to 0.21.3, add support for Pulseaudio -------------------------------------------------------------------------------- References: [ 1 ] Bug #1398766 - Enlightenment mixer is missing Pulseaudio support https://bugzilla.redhat.com/show_bug.cgi?id=1398766 [ 2 ] Bug #1384037 - enlightenment-0.21.3 is available https://bugzilla.redhat.com/show_bug.cgi?id=1384037 -------------------------------------------------------------------------------- ================================================================================ fonttools-3.2.2-2.fc25 (FEDORA-2016-077e60d637) Tools to manipulate font files -------------------------------------------------------------------------------- Update Information: Resolves: rh#1278201 - ImportError: No module named 'pygtk' -------------------------------------------------------------------------------- ================================================================================ gettext-0.19.8.1-3.fc25 (FEDORA-2016-9359679d9e) GNU libraries and utilities for producing multi-lingual messages -------------------------------------------------------------------------------- Update Information: devel subpackage to Require 'xz' (rhbz#1399270) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1399270 - autopoint does not work if xz is missing (missing depedency?) https://bugzilla.redhat.com/show_bug.cgi?id=1399270 -------------------------------------------------------------------------------- ================================================================================ gnome-builder-3.22.3-1.fc25 (FEDORA-2016-09e3f043a4) IDE for writing GNOME-based software -------------------------------------------------------------------------------- Update Information: Update to 3.22.3 -------------------------------------------------------------------------------- ================================================================================ gnote-3.22.1-1.fc25 (FEDORA-2016-434667b63a) Note-taking application -------------------------------------------------------------------------------- Update Information: gnote 3.22.1 release. * Fix possible loss of bullet when using formatting (#773630) * Translation updates -------------------------------------------------------------------------------- ================================================================================ golang-github-knieriem-markdown-0-1.git325ec6c.fc25 (FEDORA-2016-aca5a759b9) A translation of peg-markdown into Go -------------------------------------------------------------------------------- Update Information: A translation of peg-markdown into Go -------------------------------------------------------------------------------- References: [ 1 ] Bug #1396636 - Review Request: golang-github-knieriem-markdown - A translation of peg-markdown into Go https://bugzilla.redhat.com/show_bug.cgi?id=1396636 -------------------------------------------------------------------------------- ================================================================================ gphoto2-2.5.11-1.fc25 (FEDORA-2016-b9cfdddb84) Software for accessing digital cameras -------------------------------------------------------------------------------- Update Information: Update to 2.5.11 -------------------------------------------------------------------------------- ================================================================================ gretl-2016d-1.fc25 (FEDORA-2016-1961849303) A tool for econometric analysis -------------------------------------------------------------------------------- Update Information: - update to 2016d -------------------------------------------------------------------------------- ================================================================================ gst-editing-services-1.10.1-1.fc25 (FEDORA-2016-fd73900268) Gstreamer editing services -------------------------------------------------------------------------------- Update Information: update to 1.10.1 -------------------------------------------------------------------------------- ================================================================================ gstreamer1-1.10.1-1.fc25 (FEDORA-2016-574a5c7dc7) GStreamer streaming media framework runtime -------------------------------------------------------------------------------- Update Information: Update to 1.10.1 -------------------------------------------------------------------------------- ================================================================================ gstreamer1-plugin-mpg123-1.10.1-3.fc25 (FEDORA-2016-0ad1988082) GStreamer plug-in for mp3 support through mpg123 -------------------------------------------------------------------------------- Update Information: Update to 1.10.1 -------------------------------------------------------------------------------- ================================================================================ gstreamer1-plugins-bad-free-1.10.1-1.fc25 (FEDORA-2016-a82e35272c) GStreamer streaming media framework "bad" plugins -------------------------------------------------------------------------------- Update Information: Update to 1.10.1 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1395767 - CVE-2016-9445 gstreamer-plugins-bad-free: Integer overflow when allocating render buffer in vmnc decoder https://bugzilla.redhat.com/show_bug.cgi?id=1395767 -------------------------------------------------------------------------------- ================================================================================ gstreamer1-plugins-base-1.10.1-1.fc25 (FEDORA-2016-d1da2ccf5c) GStreamer streaming media framework base plugins -------------------------------------------------------------------------------- Update Information: Update to 1.10.1 -------------------------------------------------------------------------------- ================================================================================ gstreamer1-plugins-good-1.10.1-2.fc25 (FEDORA-2016-c883d07fba) GStreamer plugins with good code and licensing -------------------------------------------------------------------------------- Update Information: Add fix for gstreamer FLIC decoder vulnerability -------------------------------------------------------------------------------- References: [ 1 ] Bug #1397441 - CVE-2016-9634 CVE-2016-9635 CVE-2016-9636 gstreamer-plugins-good: Heap buffer overflow in FLIC decoder https://bugzilla.redhat.com/show_bug.cgi?id=1397441 -------------------------------------------------------------------------------- ================================================================================ gstreamer1-rtsp-server-1.10.1-1.fc25 (FEDORA-2016-debe3621d2) GStreamer RTSP server library -------------------------------------------------------------------------------- Update Information: update to 1.10.1 -------------------------------------------------------------------------------- ================================================================================ gstreamer1-vaapi-1.10.1-1.fc25 (FEDORA-2016-344df1623c) GStreamer plugins to use VA API video acceleration -------------------------------------------------------------------------------- Update Information: Update to 1.10.1 -------------------------------------------------------------------------------- ================================================================================ haproxy-1.6.10-1.fc25 (FEDORA-2016-d0ef3503b4) HAProxy reverse proxy for high availability environments -------------------------------------------------------------------------------- Update Information: Update to 1.6.10 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1397013 - haproxy-1.6.10 is available https://bugzilla.redhat.com/show_bug.cgi?id=1397013 -------------------------------------------------------------------------------- ================================================================================ hplip-3.16.11-3.fc25 (FEDORA-2016-f602865d0f) HP Linux Imaging and Printing Project -------------------------------------------------------------------------------- Update Information: Adding check for hpplugin ---- Rebase to 3.16.11 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1398615 - hplip-3.16.11 is available https://bugzilla.redhat.com/show_bug.cgi?id=1398615 -------------------------------------------------------------------------------- ================================================================================ inkscape-0.92-7.pre3.fc25 (FEDORA-2016-8c87f5d534) Vector-based drawing program using SVG -------------------------------------------------------------------------------- Update Information: 0.92pre3 Include Fedora Color Palette -------------------------------------------------------------------------------- References: [ 1 ] Bug #981748 - Include the Fedora color palette file https://bugzilla.redhat.com/show_bug.cgi?id=981748 -------------------------------------------------------------------------------- ================================================================================ keepalived-1.3.2-1.fc25 (FEDORA-2016-6999919508) High Availability monitor built upon LVS, VRRP and service pollers -------------------------------------------------------------------------------- Update Information: Update to 1.3.2 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1396857 - keepalived-1.3.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1396857 -------------------------------------------------------------------------------- ================================================================================ kernel-4.8.11-300.fc25 (FEDORA-2016-6afdd2b61d) The Linux kernel -------------------------------------------------------------------------------- Update Information: The 4.8.11 stable kernel update contains a number of important fixes across the tree. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1395187 - CVE-2016-8650 kernel: Null pointer dereference via keyctl https://bugzilla.redhat.com/show_bug.cgi?id=1395187 -------------------------------------------------------------------------------- ================================================================================ kompose-0.1.2-0.1.git92ea047.fc25 (FEDORA-2016-244476cf81) Tool to move from `docker-compose` to Kubernetes -------------------------------------------------------------------------------- Update Information: Update to kompose version 0.1.2 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1390401 - kompose-v0.1.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=1390401 -------------------------------------------------------------------------------- ================================================================================ lftp-4.7.4-1.fc25 (FEDORA-2016-68142bf56c) A sophisticated file transfer program -------------------------------------------------------------------------------- Update Information: Update to new version 4.7.4 -------------------------------------------------------------------------------- ================================================================================ libqalculate-0.9.10-1.fc25 (FEDORA-2016-6fd3548c0c) Multi-purpose calculator library -------------------------------------------------------------------------------- Update Information: Update to latest upstream version -------------------------------------------------------------------------------- References: [ 1 ] Bug #1397884 - update 0.9.9 https://bugzilla.redhat.com/show_bug.cgi?id=1397884 -------------------------------------------------------------------------------- ================================================================================ lout-3.40-5.fc25 (FEDORA-2016-d7d928f580) A document formatting system -------------------------------------------------------------------------------- Update Information: Unification of SPEC file and rebuild in all supported branches. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1201246 - Upgrade to 3.40 https://bugzilla.redhat.com/show_bug.cgi?id=1201246 -------------------------------------------------------------------------------- ================================================================================ lua-mpack-1.0.3-5.fc25 (FEDORA-2016-f5739610b8) Implementation of MessagePack for Lua -------------------------------------------------------------------------------- Update Information: New package required by neovim -------------------------------------------------------------------------------- References: [ 1 ] Bug #1394788 - Review Request: lua-mpack - Implementation of MessagePack for Lua https://bugzilla.redhat.com/show_bug.cgi?id=1394788 -------------------------------------------------------------------------------- ================================================================================ man-pages-cs-0.18.20090209-22.fc25 (FEDORA-2016-730598281a) Czech man pages from the Linux Documentation Project -------------------------------------------------------------------------------- Update Information: Add deprecation warning to all man pages -------------------------------------------------------------------------------- References: [ 1 ] Bug #1324481 - The Czech manpages are outdated https://bugzilla.redhat.com/show_bug.cgi?id=1324481 -------------------------------------------------------------------------------- ================================================================================ mediawiki-1.27.1-2.fc25 (FEDORA-2016-fe1878a39f) A wiki engine -------------------------------------------------------------------------------- Update Information: Add relpath extension to PHP autoloader. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1398171 - Stylesheet not loading after Fedora 25 upgrade https://bugzilla.redhat.com/show_bug.cgi?id=1398171 -------------------------------------------------------------------------------- ================================================================================ mimedefang-2.79-1.fc25 (FEDORA-2016-ce4fd91638) E-Mail filtering framework using Sendmail's Milter interface -------------------------------------------------------------------------------- Update Information: MIMEDefang 2.79 =============== * Add the --data-dump option to scripts /mimedefang-util * Improve Postfix compatibility by trying to get QueueID after first RCPT command, and if not found, at the EOH milter phase * Make mimedefang-multiplexor exit with a successful return code upon receipt of SIGTERM * Use 64-bit variables where supported for some statstics counters that could overflow with only 32-bit variables, yielding incorrect statistics * Fix configure.in to correctly detect that an embedded Perl interpreter can be destroyed/recreated on systems that need the -pthread GCC flag -------------------------------------------------------------------------------- References: [ 1 ] Bug #1380052 - mimedefang-2.79 is available https://bugzilla.redhat.com/show_bug.cgi?id=1380052 -------------------------------------------------------------------------------- ================================================================================ nemo-extensions-3.2.0-2.fc25 (FEDORA-2016-54ebc28826) Extensions for Nemo -------------------------------------------------------------------------------- Update Information: - fix error on nemo-compare plugin name -------------------------------------------------------------------------------- ================================================================================ ninja-build-1.7.2-1.fc25 (FEDORA-2016-e0a27ab489) A small build system with a focus on speed -------------------------------------------------------------------------------- Update Information: Update to 1.7.2 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1392690 - ninja-build-v1.7.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=1392690 -------------------------------------------------------------------------------- ================================================================================ openqa-4.4-29.20161128git663c025.fc25 (FEDORA-2016-15a75fba1f) OS-level automated testing framework -------------------------------------------------------------------------------- Update Information: This update provides new git snapshots of openQA and os-autoinst, with various enhancements and bug fixes from upstream. It also provides an updated version of the Mojolicious AssetPack plugin, as the code for generating the asset cache seems to have changed slightly between 1.17 and 1.28 so a cache pre-built with 1.28 will not work for a package build done with 1.17, and vice versa. To keep this simple and avoid needing different versions of the pre-built cache tarball for different Fedora releases, we'll just keep the AssetPack version the same across F24, F25 and F26. openQA is the only package that uses the AssetPack plugin. -------------------------------------------------------------------------------- ================================================================================ os-autoinst-4.4-7.20161123gitdb6d2ef.fc25 (FEDORA-2016-15a75fba1f) OS-level test automation -------------------------------------------------------------------------------- Update Information: This update provides new git snapshots of openQA and os-autoinst, with various enhancements and bug fixes from upstream. It also provides an updated version of the Mojolicious AssetPack plugin, as the code for generating the asset cache seems to have changed slightly between 1.17 and 1.28 so a cache pre-built with 1.28 will not work for a package build done with 1.17, and vice versa. To keep this simple and avoid needing different versions of the pre-built cache tarball for different Fedora releases, we'll just keep the AssetPack version the same across F24, F25 and F26. openQA is the only package that uses the AssetPack plugin. -------------------------------------------------------------------------------- ================================================================================ pcsxr-1.9.94-6.fc25 (FEDORA-2016-2b999e631a) A plugin based PlayStation (PSX) emulator with high compatibility -------------------------------------------------------------------------------- Update Information: New package, imported from RPMFusion. Updates from RPMFusion to Fedora: - Relocate COPYING license file - Remove assert patch (issue was fixed in 1.9.93) - Added appdata - Remove static libraries -------------------------------------------------------------------------------- References: [ 1 ] Bug #1379798 - Review Request: pcsxr - A plugin based PlayStation (PSX) emulator with high compatibility https://bugzilla.redhat.com/show_bug.cgi?id=1379798 -------------------------------------------------------------------------------- ================================================================================ perl-DBD-MySQL-4.041-1.fc25 (FEDORA-2016-673cbb6bb4) A MySQL interface for Perl -------------------------------------------------------------------------------- Update Information: This release fixes CVE-2016-1251 vulnerability, a use after free when using prepared statements. ---- Updated to the latest version ---- Security fix for CVE-2016-1249 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1399580 - CVE-2016-1251 perl-DBD-MySQL: Use after free when using prepared statements https://bugzilla.redhat.com/show_bug.cgi?id=1399580 [ 2 ] Bug #1395591 - CVE-2016-1249 perl-DBD-MySQL: Out-of-bounds read when using server-side prepared statement support https://bugzilla.redhat.com/show_bug.cgi?id=1395591 -------------------------------------------------------------------------------- ================================================================================ perl-Image-ExifTool-10.36-1.fc25 (FEDORA-2016-c82a8b4bb6) Utility for reading and writing image meta info -------------------------------------------------------------------------------- Update Information: Update to 10.36, latest stable release. -------------------------------------------------------------------------------- ================================================================================ perl-Module-Extract-Use-1.04-2.fc25 (FEDORA-2016-e0885fdb1f) Pull out the modules a module explicitly uses -------------------------------------------------------------------------------- Update Information: This is the first Fedora/EPEL release of perl-Module-Extract-Use. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1398690 - Review Request: perl-Module-Extract-Use - Pull out the modules a module explicitly uses https://bugzilla.redhat.com/show_bug.cgi?id=1398690 -------------------------------------------------------------------------------- ================================================================================ perl-Mojolicious-Plugin-AssetPack-1.28-1.fc25 (FEDORA-2016-15a75fba1f) Compress and convert CSS, Less, Sass, JavaScript and CoffeeScript files -------------------------------------------------------------------------------- Update Information: This update provides new git snapshots of openQA and os-autoinst, with various enhancements and bug fixes from upstream. It also provides an updated version of the Mojolicious AssetPack plugin, as the code for generating the asset cache seems to have changed slightly between 1.17 and 1.28 so a cache pre-built with 1.28 will not work for a package build done with 1.17, and vice versa. To keep this simple and avoid needing different versions of the pre-built cache tarball for different Fedora releases, we'll just keep the AssetPack version the same across F24, F25 and F26. openQA is the only package that uses the AssetPack plugin. -------------------------------------------------------------------------------- ================================================================================ perl-Razor-Agent-2.85-24.fc25 (FEDORA-2016-be11c6d18c) Use a Razor catalogue server to filter spam messages -------------------------------------------------------------------------------- Update Information: - Added patch to unbreak parallel make (#1379566) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1379566 - perl-Razor-Agent-2.85-23.fc26 FTBFS randomly: Can't write-open blib/man5/razor-agent.conf.5: No such file or directory https://bugzilla.redhat.com/show_bug.cgi?id=1379566 -------------------------------------------------------------------------------- ================================================================================ php-ast-0.1.2-2.fc25 (FEDORA-2016-48d3002507) Abstract Syntax Tree -------------------------------------------------------------------------------- Update Information: This extension exposes the abstract syntax tree generated by PHP 7. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1398355 - Review Request: php-ast - Abstract Syntax Tree https://bugzilla.redhat.com/show_bug.cgi?id=1398355 -------------------------------------------------------------------------------- ================================================================================ php-cs-fixer-1.13.0-1.fc25 (FEDORA-2016-b4836e981b) A tool to automatically fix PHP code style -------------------------------------------------------------------------------- Update Information: The PHP Coding Standards Fixer tool fixes most issues in your code when you want to follow the PHP coding standards as defined in the PSR-1 and PSR-2 documents and many more. If you are already using a linter to identify coding standards problems in your code, you know that fixing them by hand is tedious, especially on large projects. This tool does not only detect them, but also fixes them for you. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1391951 - Review Request: php-cs-fixer - A tool to automatically fix PHP code style https://bugzilla.redhat.com/show_bug.cgi?id=1391951 -------------------------------------------------------------------------------- ================================================================================ php-deepend-Mockery-0.9.6-1.fc25 (FEDORA-2016-8b7281318d) Mockery is a simple but flexible PHP mock object framework -------------------------------------------------------------------------------- Update Information: Last upstream version. Sadly, upstream project does not provide a useful [changelog](https://github.com/padraic/mockery/issues/644). -------------------------------------------------------------------------------- ================================================================================ php-http-interop-http-middleware-0.2.0-1.fc25 (FEDORA-2016-6da16334da) Common interface for HTTP middleware -------------------------------------------------------------------------------- Update Information: PSR-15 interfaces for HTTP middleware. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1393934 - Review Request: php-http-interop-http-middleware - Common interface for HTTP middleware https://bugzilla.redhat.com/show_bug.cgi?id=1393934 -------------------------------------------------------------------------------- ================================================================================ php-pear-Net-DNS2-1.4.2-2.fc25 (FEDORA-2016-13e9465e8d) PHP Resolver library used to communicate with a DNS server -------------------------------------------------------------------------------- Update Information: ** Version 1.4.2** - changed the role for the README.md file to doc - parse the resolv.conf options line; right now I just support the timeout and rotate options. - the options values only work if you set the new option use_resolv_options to true; this is to keep backwards compatibility. - added support for RFC 6594; support for SHA-256 and ECDSA in the SSHFP resource record. - added the SMIMEA resource record; this just extends the TLSA record. - added the AVC resource records; this just extends the TXT record. - added error and EDNS0 defines for DNS Cookies (RFC7873) - added EDNS0 defines to the lookup class - dropped the Net_DNS2_Packet::formatIPv6() function; this was deprecated in v1.1.3 - re-wrote the Net_DNS2::expandIPv6() function. Based on testing, the new version is about twice as fast. Add upstream patch for PHP 7. -------------------------------------------------------------------------------- ================================================================================ php-php-gettext-1.0.12-1.fc25 (FEDORA-2016-077d0ed22e) Gettext emulation in PHP -------------------------------------------------------------------------------- Update Information: php-gettext 1.0.12 ================== * Security fix for potential code injection bug (LP#1515334) * Do not assume mbstring functions are always there, pass text through if they aren't (LP#734494) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1367462 - php-php-gettext: Arbitrary code execution in select_string, ngettext and npgettext count parameter https://bugzilla.redhat.com/show_bug.cgi?id=1367462 -------------------------------------------------------------------------------- ================================================================================ php-phpiredis-1.0.0-2.fc25 (FEDORA-2016-b95b487a46) Client extension for Redis -------------------------------------------------------------------------------- Update Information: Phpiredis is an extension for PHP 5.x and 7.x based on hiredis that provides a simple and efficient client for Redis and a fast incremental parser / serializer for the RESP protocol. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1398799 - Review Request: php-phpiredis - Client extension for Redis https://bugzilla.redhat.com/show_bug.cgi?id=1398799 -------------------------------------------------------------------------------- ================================================================================ php-zendframework-zend-stratigility-1.3.1-1.fc25 (FEDORA-2016-56b1b84735) Middleware for PHP -------------------------------------------------------------------------------- Update Information: See: upstream [CHANGELOG](https://raw.githubusercontent.com/zendframework/zend- stratigility/1.3.1/CHANGELOG.md) -------------------------------------------------------------------------------- ================================================================================ phpMyAdmin-4.6.5.1-2.fc25 (FEDORA-2016-6576a8536b) Handle the administration of MySQL over the World Wide Web -------------------------------------------------------------------------------- Update Information: phpMyAdmin 4.6.5.1 (2016-11-26) =============================== A patch-level release fixing two small issues: * an issue affecting a small number of users using $cfg['Servers'][$i]['hide_db'] or $cfg['Servers'][$i]['only_db']. * an issue affecting the create table dialog where the partition selection tool was overzealous and made it difficult to create a new table. There are also minor improvements to the Czech language file. phpMyAdmin 4.6.5 (2016-11-25) ============================= A release containing security fixes and bug fixes. Aside from the security improvements, many bugs have been fixed including: * Fix for expanding in navigation pane * Reintroduced a simplified version of PmaAbsoluteUri directive (needed with reverse proxies) * Fix editing of ENUM/SET/DECIMAL field structures * Improvements to the parser And many, many more. Please see the ChangeLog for full details of bugs fixes. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1399197 - CVE-2016-4412 phpMyAdmin: Multiple vulnerabilities fixed in 4.0.10.18, 4.4.15.9 and 4.6.5 versions https://bugzilla.redhat.com/show_bug.cgi?id=1399197 -------------------------------------------------------------------------------- ================================================================================ playitagainsam-0.5.0-1.fc25 (FEDORA-2016-c1aa611d88) Record and replay interactive terminal sessions -------------------------------------------------------------------------------- Update Information: Record and replay interactive terminal sessions -------------------------------------------------------------------------------- References: [ 1 ] Bug #1398432 - Review Request: playitagainsam - Record and replay interactive terminal sessions https://bugzilla.redhat.com/show_bug.cgi?id=1398432 -------------------------------------------------------------------------------- ================================================================================ python-astral-1.3.2-2.fc25 (FEDORA-2016-72d3dc1dd2) Calculations for the position of the sun and moon -------------------------------------------------------------------------------- Update Information: Add license to py2 as well -------------------------------------------------------------------------------- References: [ 1 ] Bug #1395554 - Review Request: python-astral - Calculations for the position of the sun and moon https://bugzilla.redhat.com/show_bug.cgi?id=1395554 -------------------------------------------------------------------------------- ================================================================================ python-batinfo-0.4.2-2.fc25 (FEDORA-2016-6374c6c6ce) Python module to retrieve battery information -------------------------------------------------------------------------------- Update Information: Update description -------------------------------------------------------------------------------- References: [ 1 ] Bug #1395804 - Review Request: python-batinfo - A Python module to retrieve battery information https://bugzilla.redhat.com/show_bug.cgi?id=1395804 -------------------------------------------------------------------------------- ================================================================================ python-django-notifications-hq-1.2-1.fc25 (FEDORA-2016-cbdd135f0a) GitHub notifications alike app for Django -------------------------------------------------------------------------------- Update Information: New release, version bump up. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1365839 - Review Request: python-django-notifications-hq - GitHub notifications alike app for Django https://bugzilla.redhat.com/show_bug.cgi?id=1365839 -------------------------------------------------------------------------------- ================================================================================ python-docker-py-1.10.6-1.fc25 (FEDORA-2016-78a41c958c) An API client for docker written in Python -------------------------------------------------------------------------------- Update Information: new upstream release: 1.10.6 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1389630 - python-docker-py-1.10.6 is available https://bugzilla.redhat.com/show_bug.cgi?id=1389630 -------------------------------------------------------------------------------- ================================================================================ python-gstreamer1-1.10.1-1.fc25 (FEDORA-2016-42468a8044) Python bindings for GStreamer -------------------------------------------------------------------------------- Update Information: Update to 1.10.1 -------------------------------------------------------------------------------- ================================================================================ python-influxdb-3.0.0-1.fc25 (FEDORA-2016-603e246239) InfluxDB client -------------------------------------------------------------------------------- Update Information: Initial package. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1383416 - Review Request: python-influxdb - InfluxDB Python client https://bugzilla.redhat.com/show_bug.cgi?id=1383416 -------------------------------------------------------------------------------- ================================================================================ qalculate-gtk-0.9.9-1.fc25 (FEDORA-2016-6fd3548c0c) A multi-purpose desktop calculator for GNU/Linux -------------------------------------------------------------------------------- Update Information: Update to latest upstream version -------------------------------------------------------------------------------- References: [ 1 ] Bug #1397884 - update 0.9.9 https://bugzilla.redhat.com/show_bug.cgi?id=1397884 -------------------------------------------------------------------------------- ================================================================================ quilt-0.65-1.fc25 (FEDORA-2016-ad2fa96339) Scripts for working with series of patches -------------------------------------------------------------------------------- Update Information: New upstream release -------------------------------------------------------------------------------- ================================================================================ roundcubemail-1.2.3-1.fc25 (FEDORA-2016-d361d188d9) Round Cube Webmail is a browser-based multilingual IMAP client -------------------------------------------------------------------------------- Update Information: **Version 1.2.3** - Searching in both contacts and groups when LDAP addressbook with group_filters option is used - Fix vulnerability in handling of mail()'s 5th argument - Fix To: header encoding in mail sent with mail() method (#5475) - Fix flickering of header topline in min-mode (#5426) - Fix bug where folders list would scroll to top when clicking on subscription checkbox (#5447) - Fix decoding of GB2312/GBK text when iconv is not installed (#5448) - Fix regression where creation of default folders wasn't functioning without prefix (#5460) - Enigma: Fix bug where last records on keys list were hidden (#5461) - Enigma: Fix key search with keyword containing non-ascii characters (#5459) - Fix bug where deleting folders with subfolders could fail in some cases (#5466) - Fix bug where IMAP password could be exposed via error message (#5472) - Fix bug where it wasn't possible to store more that 2MB objects in memcache/apc, Added memcache_max_allowed_packet and apc_max_allowed_packet settings (#5452) - Fix "Illegal string offset" warning in rcube::log_bug() on PHP 7.1 (#5508) - Fix storing "empty" values in rcube_cache/rcube_cache_shared (#5519) - Fix missing content check when image resize fails on attachment thumbnail generation (#5485) - Fix displaying attached images with wrong Content-Type specified (#5527) -------------------------------------------------------------------------------- ================================================================================ scap-security-guide-0.1.31-1.fc25 (FEDORA-2016-a24b84ee01) Security guidance and baselines in SCAP formats -------------------------------------------------------------------------------- Update Information: update to the latest upstream release -------------------------------------------------------------------------------- ================================================================================ screengrab-1.2.1-1.fc25 (FEDORA-2016-bb57fb56a6) Screen grabber -------------------------------------------------------------------------------- Update Information: Version bump -------------------------------------------------------------------------------- References: [ 1 ] Bug #1397892 - update 1.2.1 https://bugzilla.redhat.com/show_bug.cgi?id=1397892 -------------------------------------------------------------------------------- ================================================================================ spandsp-0.0.6-1.fc25 (FEDORA-2016-d4f8e155e1) A DSP library for telephony -------------------------------------------------------------------------------- Update Information: Update to 0.0.6 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1325472 - pkg-config file has a typo https://bugzilla.redhat.com/show_bug.cgi?id=1325472 -------------------------------------------------------------------------------- ================================================================================ sysprof-3.22.3-1.fc25 (FEDORA-2016-6e20ef9dca) A system-wide Linux profiler -------------------------------------------------------------------------------- Update Information: sysprof 3.22.3 release. * Fix expansion of function text in callgraph. * Fix jump-to-function in callees list. * Disable record button while generating callgraph profile. * Ensure sysprof icons are available form libsysprof-ui-2. * sysprof-cli requires --force to overwrite previous capture. * Reduce code duplication in capture frame initialization. -------------------------------------------------------------------------------- ================================================================================ tar-1.29-3.fc25 (FEDORA-2016-624d5baf03) A GNU file archiving program -------------------------------------------------------------------------------- Update Information: - fix --create to use --xattrs-include/exclude (rhbz#1341787) - don't hang with '-x --skip-old-files --xattrs' (rhbz#1399036) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1341787 - tar silently ignores --xattrs-exclude during archive creation https://bugzilla.redhat.com/show_bug.cgi?id=1341787 [ 2 ] Bug #1399036 - tar hangs with --extract --xattrs --skip-old-files https://bugzilla.redhat.com/show_bug.cgi?id=1399036 -------------------------------------------------------------------------------- ================================================================================ telepathy-gabble-0.18.4-1.fc25 (FEDORA-2016-59450b93f7) A Jabber/XMPP connection manager -------------------------------------------------------------------------------- Update Information: Update to 0.18.4 and 5.16.4-1 -------------------------------------------------------------------------------- ================================================================================ telepathy-mission-control-5.16.4-1.fc25 (FEDORA-2016-59450b93f7) Central control for Telepathy connection manager -------------------------------------------------------------------------------- Update Information: Update to 0.18.4 and 5.16.4-1 -------------------------------------------------------------------------------- ================================================================================ terminator-1.90-3.fc25 (FEDORA-2016-1b313c953d) Store and run multiple GNOME terminals in one window -------------------------------------------------------------------------------- Update Information: fix requirement for vte291, which is newer than vte3 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1399136 - Terminator: Namespace Vte not available for version 2.91 https://bugzilla.redhat.com/show_bug.cgi?id=1399136 -------------------------------------------------------------------------------- ================================================================================ vdr-epg-daemon-1.1.54-1.fc25 (FEDORA-2016-4116a7d9ba) A daemon to download EPG data from internet and manage it in a mysql database -------------------------------------------------------------------------------- Update Information: Update to 1.1.54 ---- Update to 1.1.53 ---- Update to 1.1.52 ---- Update to 1.1.48 ---- Update to 1.1.47 ---- Update to 1.1.46 ---- Update to 1.1.44 -------------------------------------------------------------------------------- ================================================================================ vim-8.0.104-2.fc25 (FEDORA-2016-0b8cbb7e4a) The VIM editor -------------------------------------------------------------------------------- Update Information: do not ship vim.desktop -------------------------------------------------------------------------------- References: [ 1 ] Bug #1398212 - Don't install vim.desktop file https://bugzilla.redhat.com/show_bug.cgi?id=1398212 -------------------------------------------------------------------------------- ================================================================================ xcb-util-xrm-1.2-1.fc25 (FEDORA-2016-cb87f3b827) XCB utility functions for the X resource manager -------------------------------------------------------------------------------- Update Information: Update to 1.2 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1398312 - xcb-util-xrm-v1.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=1398312 -------------------------------------------------------------------------------- ================================================================================ xfce4-clipman-plugin-1.4.1-1.fc25 (FEDORA-2016-0ba46b38c1) Clipboard manager plugin for the Xfce panel -------------------------------------------------------------------------------- Update Information: - Update to 1.4.1 - better icon resizing - this update adds a symbolic icon as fallback -------------------------------------------------------------------------------- References: [ 1 ] Bug #1316834 - xfce4-clipman-plugin has no icon in the system tray https://bugzilla.redhat.com/show_bug.cgi?id=1316834 -------------------------------------------------------------------------------- ================================================================================ yp-tools-2.14-7.fc25 (FEDORA-2016-95199a6ea4) NIS (or YP) client programs -------------------------------------------------------------------------------- Update Information: Fix yppasswd password check when using passwd.adjunct -------------------------------------------------------------------------------- References: [ 1 ] Bug #1297955 - yppasswd crypt() failed errors when using passwd.adjunct https://bugzilla.redhat.com/show_bug.cgi?id=1297955 -------------------------------------------------------------------------------- _______________________________________________ test mailing list -- test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to test-leave@xxxxxxxxxxxxxxxxxxxxxxx
