The following Fedora 23 Security updates need testing: Age URL 447 https://bodhi.fedoraproject.org/updates/FEDORA-2015-16240 nagios-4.0.8-1.fc23 405 https://bodhi.fedoraproject.org/updates/FEDORA-2015-81ded368fe miniupnpc-1.9-6.fc23 378 https://bodhi.fedoraproject.org/updates/FEDORA-2015-27392b3324 jbig2dec-0.12-2.fc23 328 https://bodhi.fedoraproject.org/updates/FEDORA-2015-dd52a54fa1 python-pymongo-3.0.3-1.fc23 328 https://bodhi.fedoraproject.org/updates/FEDORA-2015-06a7c972e8 thttpd-2.25b-37.fc23 124 https://bodhi.fedoraproject.org/updates/FEDORA-2016-c2ec9c716e redis-3.2.3-1.fc23 117 https://bodhi.fedoraproject.org/updates/FEDORA-2016-d6288f555c libarchive-3.2.1-3.fc23 python-libarchive-c-2.5-1.fc23 101 https://bodhi.fedoraproject.org/updates/FEDORA-2016-b3a6435b14 dhcpcd-6.11.3-1.fc23 66 https://bodhi.fedoraproject.org/updates/FEDORA-2016-1649cc31e0 ca-certificates-2016.2.10-1.0.fc23 59 https://bodhi.fedoraproject.org/updates/FEDORA-2016-17ea599651 compat-guile18-1.8.8-14.fc23 43 https://bodhi.fedoraproject.org/updates/FEDORA-2016-b89e991e63 nodejs-0.10.48-1.fc23 33 https://bodhi.fedoraproject.org/updates/FEDORA-2016-272fa6b96e dracut-043-67.fc23 21 https://bodhi.fedoraproject.org/updates/FEDORA-2016-5afe06026b jenkins-1.625.3-5.fc23 jenkins-remoting-2.62.3-1.fc23 10 https://bodhi.fedoraproject.org/updates/FEDORA-2016-b4896f20b3 roundcubemail-1.2.3-1.fc23 9 https://bodhi.fedoraproject.org/updates/FEDORA-2016-bf6c3ea62c perl-DBD-MySQL-4.033-4.fc23 9 https://bodhi.fedoraproject.org/updates/FEDORA-2016-7da97a3914 mcabber-1.0.4-1.fc23 9 https://bodhi.fedoraproject.org/updates/FEDORA-2016-9c33466fbb tomcat-8.0.39-1.fc23 8 https://bodhi.fedoraproject.org/updates/FEDORA-2016-a400e4cd90 thunderbird-45.5.1-1.fc23 6 https://bodhi.fedoraproject.org/updates/FEDORA-2016-5c32bae671 php-simplesamlphp-saml2-2.3.3-1.fc23 php-simplesamlphp-saml2_1-1.10.3-1.fc23 5 https://bodhi.fedoraproject.org/updates/FEDORA-2016-30077d1b37 ipsilon-2.0.2-2.fc23 5 https://bodhi.fedoraproject.org/updates/FEDORA-2016-e5ff0ed40c lxc-2.0.6-2.fc23 4 https://bodhi.fedoraproject.org/updates/FEDORA-2016-3c01772ff6 httpd-2.4.23-5.fc23 4 https://bodhi.fedoraproject.org/updates/FEDORA-2016-cad9307ce0 gd-2.1.1-11.fc23 4 https://bodhi.fedoraproject.org/updates/FEDORA-2016-7eea952041 golang-1.5.4-5.fc23 2 https://bodhi.fedoraproject.org/updates/FEDORA-2016-570c603276 openjpeg2-2.1.2-2.fc23 2 https://bodhi.fedoraproject.org/updates/FEDORA-2016-5f5d42d2d8 mingw-openjpeg2-2.1.2-2.fc23 1 https://bodhi.fedoraproject.org/updates/FEDORA-2016-ad82c71a1b dovecot-2.2.27-1.fc23 1 https://bodhi.fedoraproject.org/updates/FEDORA-2016-98aed7ae50 libgsf-1.14.33-3.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-cc2916dcf4 xen-4.5.5-5.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-5aff4a6bbc kernel-4.8.13-100.fc23 The following Fedora 23 Critical Path updates have yet to be approved: Age URL 144 https://bodhi.fedoraproject.org/updates/FEDORA-2016-98a7a1b6e0 abrt-2.8.0-6.fc23 libreport-2.6.4-3.fc23 117 https://bodhi.fedoraproject.org/updates/FEDORA-2016-d6288f555c libarchive-3.2.1-3.fc23 python-libarchive-c-2.5-1.fc23 78 https://bodhi.fedoraproject.org/updates/FEDORA-2016-79072fd70e python-virtkey-0.63.0-1.fc23 71 https://bodhi.fedoraproject.org/updates/FEDORA-2016-d26923757a koji-1.10.1-13.fc23 66 https://bodhi.fedoraproject.org/updates/FEDORA-2016-1649cc31e0 ca-certificates-2016.2.10-1.0.fc23 50 https://bodhi.fedoraproject.org/updates/FEDORA-2016-86a2119f42 nspr-4.13.1-1.fc23 35 https://bodhi.fedoraproject.org/updates/FEDORA-2016-0906f64ec8 rpm-4.13.0-1.fc23 33 https://bodhi.fedoraproject.org/updates/FEDORA-2016-272fa6b96e dracut-043-67.fc23 24 https://bodhi.fedoraproject.org/updates/FEDORA-2016-03d76071b6 nss-3.27.0-1.3.fc23 10 https://bodhi.fedoraproject.org/updates/FEDORA-2016-8ec81aeba6 dbus-1.10.14-1.fc23 9 https://bodhi.fedoraproject.org/updates/FEDORA-2016-bf6c3ea62c perl-DBD-MySQL-4.033-4.fc23 8 https://bodhi.fedoraproject.org/updates/FEDORA-2016-6064f86234 vim-8.0.118-1.fc23 8 https://bodhi.fedoraproject.org/updates/FEDORA-2016-a400e4cd90 thunderbird-45.5.1-1.fc23 6 https://bodhi.fedoraproject.org/updates/FEDORA-2016-ac1042dfcc libbluray-0.9.3-3.fc23 4 https://bodhi.fedoraproject.org/updates/FEDORA-2016-cad9307ce0 gd-2.1.1-11.fc23 4 https://bodhi.fedoraproject.org/updates/FEDORA-2016-3c01772ff6 httpd-2.4.23-5.fc23 1 https://bodhi.fedoraproject.org/updates/FEDORA-2016-09abe47360 boost-1.58.0-12.fc23 1 https://bodhi.fedoraproject.org/updates/FEDORA-2016-6ecaf251f6 poppler-data-0.4.7-5.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-5aff4a6bbc kernel-4.8.13-100.fc23 The following builds have been pushed to Fedora 23 updates-testing byobu-5.113-1.fc23 flex-2.6.0-3.fc23 kernel-4.8.13-100.fc23 nitroshare-0.3.3-2.fc23 rawstudio-2.1-0.13.20160223git6643b14_rawspeed_5f78369.fc23.1 xcompmgr-1.1.7-1.fc23 xen-4.5.5-5.fc23 xfce4-whiskermenu-plugin-1.6.2-1.fc23 Details about builds: ================================================================================ byobu-5.113-1.fc23 (FEDORA-2016-76dbc2348d) Light-weight, configurable window manager built upon GNU screen -------------------------------------------------------------------------------- Update Information: Rebuilt for new upstream release 5.113, fixes rhbz #1276014 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1276014 - byobu-5.113 is available https://bugzilla.redhat.com/show_bug.cgi?id=1276014 -------------------------------------------------------------------------------- ================================================================================ flex-2.6.0-3.fc23 (FEDORA-2016-173dec4c67) A tool for creating scanners (text pattern recognizers) -------------------------------------------------------------------------------- Update Information: Replace C++ style comment with C style comment to prevent C90 mode builds from failing. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1364943 - Flex 2.6.0 generates C90-incompatible code https://bugzilla.redhat.com/show_bug.cgi?id=1364943 -------------------------------------------------------------------------------- ================================================================================ kernel-4.8.13-100.fc23 (FEDORA-2016-5aff4a6bbc) The Linux kernel -------------------------------------------------------------------------------- Update Information: The 4.8.13 stable kernel update contains a number of important fixes across the tree. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1400019 - CVE-2016-8655 kernel: Race condition in packet_set_ring leads to use after free https://bugzilla.redhat.com/show_bug.cgi?id=1400019 [ 2 ] Bug #1402013 - CVE-2016-9793 kernel: Signed overflow for SO_{SND|RCV}BUFFORCE https://bugzilla.redhat.com/show_bug.cgi?id=1402013 [ 3 ] Bug #1403145 - CVE-2016-9576 kernel: Use after free in SCSI generic device interface https://bugzilla.redhat.com/show_bug.cgi?id=1403145 -------------------------------------------------------------------------------- ================================================================================ nitroshare-0.3.3-2.fc23 (FEDORA-2016-122a853608) Transfer files from one device to another made extremely simple -------------------------------------------------------------------------------- Update Information: NitroShare v0.3.3 Features included in this release: - Extension for Caja & Nemo - French, Korean, & Spanish translations added - Fixed bug that broke progress and status display - Fixed a number of DPI issues -------------------------------------------------------------------------------- References: [ 1 ] Bug #1356332 - nitroshare-0.3.3 is available https://bugzilla.redhat.com/show_bug.cgi?id=1356332 -------------------------------------------------------------------------------- ================================================================================ rawstudio-2.1-0.13.20160223git6643b14_rawspeed_5f78369.fc23.1 (FEDORA-2016-8dfb0ad88d) Read, manipulate and convert digital camera raw images -------------------------------------------------------------------------------- Update Information: rebuild for lensfun (#1400242) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1400242 - lensfun update fails over broken dependencies https://bugzilla.redhat.com/show_bug.cgi?id=1400242 -------------------------------------------------------------------------------- ================================================================================ xcompmgr-1.1.7-1.fc23 (FEDORA-2016-fbcf07a962) X11 composite manager -------------------------------------------------------------------------------- Update Information: - Rebuilt for new upstream release 1.1.7, fixes rhbz #1213038 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1213038 - xcompmgr-1.1.7 is available https://bugzilla.redhat.com/show_bug.cgi?id=1213038 -------------------------------------------------------------------------------- ================================================================================ xen-4.5.5-5.fc23 (FEDORA-2016-cc2916dcf4) Xen is a virtual machine monitor -------------------------------------------------------------------------------- Update Information: ARM guests may induce host asynchronous abort [XSA-201, CVE-2016-9815, CVE-2016-9816, CVE-2016-9817, CVE-2016-9818] (#1399747) qemu: Divide by zero vulnerability in cirrus_do_copy (#1399055) [CVE-2016-9921, CVE-2016-9922] Qemu: 9pfs: memory leakage via proxy/handle callbacks (#1402278) qemu ioport array overflow [XSA-199, CVE-2016-9637] -------------------------------------------------------------------------------- References: [ 1 ] Bug #1399746 - CVE-2016-9815 CVE-2016-9816 CVE-2016-9817 CVE-2016-9818 xsa201 xen: ARM guests may induce host asynchronous abort (XSA-201) https://bugzilla.redhat.com/show_bug.cgi?id=1399746 [ 2 ] Bug #1334398 - CVE-2016-9921 CVE-2016-9922 Qemu: display: cirrus_vga: a divide by zero in cirrus_do_copy https://bugzilla.redhat.com/show_bug.cgi?id=1334398 [ 3 ] Bug #1402276 - CVE-2016-9913 CVE-2016-9914 CVE-2016-9915 CVE-2016-9916 Qemu: 9pfs: memory leakage via proxy/handle callbacks https://bugzilla.redhat.com/show_bug.cgi?id=1402276 -------------------------------------------------------------------------------- ================================================================================ xfce4-whiskermenu-plugin-1.6.2-1.fc23 (FEDORA-2016-9111b6896b) An alternate application launcher for Xfce -------------------------------------------------------------------------------- Update Information: - Rebuilt for new upstream release 1.6.2 -------------------------------------------------------------------------------- _______________________________________________ test mailing list -- test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to test-leave@xxxxxxxxxxxxxxxxxxxxxxx
