The following Fedora 24 Security updates need testing: Age URL 133 https://bodhi.fedoraproject.org/updates/FEDORA-2016-32eaf0c41e redis-3.2.3-1.fc24 117 https://bodhi.fedoraproject.org/updates/FEDORA-2016-0ef628998f chicken-4.11.0-3.fc24 68 https://bodhi.fedoraproject.org/updates/FEDORA-2016-990e2012ea compat-guile18-1.8.8-14.fc24 31 https://bodhi.fedoraproject.org/updates/FEDORA-2016-93679a91df jenkins-1.651.3-2.fc24 jenkins-remoting-2.62.3-1.fc24 14 https://bodhi.fedoraproject.org/updates/FEDORA-2016-b465090499 ipsilon-2.0.2-2.fc24 10 https://bodhi.fedoraproject.org/updates/FEDORA-2016-bb22a24d3d dovecot-2.2.27-1.fc24 6 https://bodhi.fedoraproject.org/updates/FEDORA-2016-7de64a450f botan-1.10.14-3.fc24 5 https://bodhi.fedoraproject.org/updates/FEDORA-2016-bcbae0781f xen-4.6.4-4.fc24 4 https://bodhi.fedoraproject.org/updates/FEDORA-2016-a1f774c3d7 FlightGear-2016.1.2-5.fc24 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-04383482b4 game-music-emu-0.6.1-1.fc24 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-2b1f91e9bd kernel-4.8.15-200.fc24 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-608be17784 python-wikitcms-2.1.10-1.fc24 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-631737a49a tracker-1.8.2-1.fc24 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-d337166907 freeipa-4.3.2-4.fc24 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-8586235698 nagios-plugins-2.1.4-2.fc24 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-c7e60a9fd4 community-mysql-5.7.17-1.fc24 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-badd014afe tarantool-1.6.9.52-1.fc24 msgpuck-1.1.3-1.fc24 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-3b7f39a8c1 openjpeg2-2.1.2-3.fc24 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-52a1b18397 mingw-openjpeg2-2.1.2-3.fc24 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-09dc3efcd2 samba-4.4.8-0.fc24 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-26f9817b08 squid-3.5.23-1.fc24 The following Fedora 24 Critical Path updates have yet to be approved: Age URL 33 https://bodhi.fedoraproject.org/updates/FEDORA-2016-cddf0ec383 nss-3.27.0-1.3.fc24 13 https://bodhi.fedoraproject.org/updates/FEDORA-2016-90bd4d7d33 selinux-policy-3.13.1-191.23.fc24 8 https://bodhi.fedoraproject.org/updates/FEDORA-2016-d4be615424 libfm-1.2.5-1.fc24 lxsession-0.5.3-2.fc24 pcmanfm-1.2.5-1.fc24 4 https://bodhi.fedoraproject.org/updates/FEDORA-2016-d2820fc67d libvorbis-1.3.5-1.fc24 4 https://bodhi.fedoraproject.org/updates/FEDORA-2016-700f16d3f3 gnome-online-accounts-3.20.5-1.fc24 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-09dc3efcd2 samba-4.4.8-0.fc24 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-85dffa754f perl-5.22.2-365.fc24 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-0281ab71ff vim-8.0.134-2.fc24 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-2b1f91e9bd kernel-4.8.15-200.fc24 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-ab5b9ae96b audit-2.7-1.fc24 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-8b3063d71c meson-0.36.0-4.fc24 redhat-rpm-config-42-2.fc24 The following builds have been pushed to Fedora 24 updates-testing CuraEngine-lulzbot-15.04-5.fc24 bonnie++-1.97.3-1.fc24 cura-lulzbot-21.02-2.fc24 deluge-1.3.13-2.fc24 drush-8.1.8-3.fc24 hatari-2.0.0-3.fc24 maradns-2.0.13-3.fc24 nordugrid-arc-5.2.1-1.fc24 nordugrid-arc-doc-2.0.12-1.fc24 opendmarc-1.3.2-0.12.fc24 perl-5.22.2-365.fc24 perl-Storable-2.53-349.fc24 php-alcaeus-mongo-php-adapter-1.0.7-1.fc24 php-horde-Horde-Browser-2.0.13-1.fc24 php-horde-Horde-Compress-2.1.6-1.fc24 php-horde-Horde-Core-2.27.6-1.fc24 php-horde-Horde-Crypt-2.7.5-1.fc24 php-horde-Horde-CssMinify-1.0.3-1.fc24 php-horde-Horde-Date-2.3.2-1.fc24 php-horde-Horde-Imap-Client-2.29.12-1.fc24 php-horde-Horde-Kolab-Storage-2.2.3-1.fc24 php-horde-Horde-Pack-1.0.7-1.fc24 php-horde-horde-5.2.13-2.fc24 php-horde-imp-6.2.17-2.fc24 php-horde-ingo-3.2.13-2.fc24 php-horde-kronolith-4.2.19-2.fc24 php-horde-mnemo-4.2.12-2.fc24 php-horde-nag-4.2.13-2.fc24 php-horde-passwd-5.0.6-2.fc24 php-horde-turba-4.2.18-2.fc24 php-horde-wicked-2.0.7-2.fc24 php-zendframework-zend-cache-2.7.2-1.fc24 rsnapshot-1.4.2-2.fc24 samba-4.4.8-0.fc24 scanmem-0.16-1.fc24 squid-3.5.23-1.fc24 Details about builds: ================================================================================ CuraEngine-lulzbot-15.04-5.fc24 (FEDORA-2016-458edd9f9a) Engine for processing 3D models into G-code instructions for 3D printers -------------------------------------------------------------------------------- Update Information: *cura-lulzbot* now depends on *CuraEngine-lulzbot* - a dedicated version of *CuraEngine*. This allows us to update the *CuraEngine* package to a newer version needed for newer (Ultimaker) *cura*. When updating *cura-lulzbot* to this version, *CuraEngine-lulzbot* should be dragged in as a dependency and the user should be able to remove *CuraEngine* safely. ### How to test Update *cura-lulzbot* to at least 21.02-2 and remove *CuraEngine* (if not removed automatically) - this **should not** remove *cura-lulzbot*. Check if *cura- lulzbot* **still can slice 3D models**. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1401344 - Review Request: CuraEngine-lulzbot - Engine for processing 3D models into G-code instructions for 3D printers https://bugzilla.redhat.com/show_bug.cgi?id=1401344 -------------------------------------------------------------------------------- ================================================================================ bonnie++-1.97.3-1.fc24 (FEDORA-2016-332fc1bcbd) Filesystem and disk benchmark & burn-in suite -------------------------------------------------------------------------------- Update Information: - Rebuilt for new upstream release 1.97.3, fixes rhbz #1114277 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1145291 - Please build an EPEL7 build of bonnie++ https://bugzilla.redhat.com/show_bug.cgi?id=1145291 [ 2 ] Bug #928385 - bonnie++ produces +++++ instead of actual values for file create timings https://bugzilla.redhat.com/show_bug.cgi?id=928385 [ 3 ] Bug #1114277 - bonnie++-1.97.3 is available https://bugzilla.redhat.com/show_bug.cgi?id=1114277 -------------------------------------------------------------------------------- ================================================================================ cura-lulzbot-21.02-2.fc24 (FEDORA-2016-458edd9f9a) Cura LulzBot Edition, 3D printer control software -------------------------------------------------------------------------------- Update Information: *cura-lulzbot* now depends on *CuraEngine-lulzbot* - a dedicated version of *CuraEngine*. This allows us to update the *CuraEngine* package to a newer version needed for newer (Ultimaker) *cura*. When updating *cura-lulzbot* to this version, *CuraEngine-lulzbot* should be dragged in as a dependency and the user should be able to remove *CuraEngine* safely. ### How to test Update *cura-lulzbot* to at least 21.02-2 and remove *CuraEngine* (if not removed automatically) - this **should not** remove *cura-lulzbot*. Check if *cura- lulzbot* **still can slice 3D models**. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1401344 - Review Request: CuraEngine-lulzbot - Engine for processing 3D models into G-code instructions for 3D printers https://bugzilla.redhat.com/show_bug.cgi?id=1401344 -------------------------------------------------------------------------------- ================================================================================ deluge-1.3.13-2.fc24 (FEDORA-2016-fbfb969761) A GTK+ BitTorrent client with support for DHT, UPnP, and PEX -------------------------------------------------------------------------------- Update Information: Remove dependency on gtk for web subpackage -------------------------------------------------------------------------------- References: [ 1 ] Bug #1365920 - deluge-web depends on deluge-gtk https://bugzilla.redhat.com/show_bug.cgi?id=1365920 -------------------------------------------------------------------------------- ================================================================================ drush-8.1.8-3.fc24 (FEDORA-2016-ce98fb44d4) Command line shell and scripting interface for Drupal -------------------------------------------------------------------------------- Update Information: **RPM fix:** Add missing `php-composer(fedora/autoloader)` dependency -------------------------------------------------------------------------------- References: [ 1 ] Bug #1406416 - EL7 autoload.php requires Fedora Autoloader https://bugzilla.redhat.com/show_bug.cgi?id=1406416 -------------------------------------------------------------------------------- ================================================================================ hatari-2.0.0-3.fc24 (FEDORA-2016-b2577479af) An Atari ST/STE/TT/Falcon emulator suitable for playing games -------------------------------------------------------------------------------- Update Information: fix build on s390(x) ---- * Hatari can use SDL2, this will take advantage of HW acceleration on the host PC and greatly enhance perfomance on OSX for example * Hatari now uses one single CPU core for all machines (ST, STE, TT, Falcon). No more need for 2 different binaries * Video emulation now supports the 4 STF wakeup states for MMU/GLUE and a much more accurate state machine for border removal * CPU emulation was improved a lot by using WinUAE's CPU and fixing some low level behaviour : IACK sequence, exception/interrupt stacking, 2 cycle accesses, bus accesses timing depending on memory region, instruction pairing, ... * Falcon DMA sound was fixed * Support for MegaST and MegaSTE machine types * Improvements to Gemdos HD emulation * SDL UI reworked with more options * Resizable window when using SDL2 (using HW acceleration) -------------------------------------------------------------------------------- ================================================================================ maradns-2.0.13-3.fc24 (FEDORA-2016-d66557cbde) Authoritative and recursive DNS server made with security in mind -------------------------------------------------------------------------------- Update Information: This updates the root servers list - 'H' server changed address in 2015. Please review `/etc/dwoord3rc{,.rpmnew}*` files. -------------------------------------------------------------------------------- ================================================================================ nordugrid-arc-5.2.1-1.fc24 (FEDORA-2016-b5bd991261) Advanced Resource Connector Grid Middleware -------------------------------------------------------------------------------- Update Information: ARC 5.2.1 -------------------------------------------------------------------------------- ================================================================================ nordugrid-arc-doc-2.0.12-1.fc24 (FEDORA-2016-b5bd991261) Advanced Resource Connector Documentation -------------------------------------------------------------------------------- Update Information: ARC 5.2.1 -------------------------------------------------------------------------------- ================================================================================ opendmarc-1.3.2-0.12.fc24 (FEDORA-2016-dfebe30cda) A Domain-based Message Authentication, Reporting & Conformance (DMARC) milter and library -------------------------------------------------------------------------------- Update Information: This update providees version 1.3.2 Beta 1. See See: https://sourceforge.net/p/opendmarc/activity/ for details on changes in 1.3.2 Beta 0 and 1. It contains additional bug fixes from Juri Haberland's [tracking page](http://batleth.sapienti-sat.org/projects/opendmarc/). It fixes a bug that would cause opendmarc to crash soon after starting up. See [RHBZ #1398444](https://bugzilla.redhat.com/show_bug.cgi?id=1398444) and upstream [#185](https://sourceforge.net/p/opendmarc/tickets/185/). -------------------------------------------------------------------------------- References: [ 1 ] Bug #1398444 - [abrt] opendmarc: mlfi_connect(): opendmarc killed by SIGSEGV https://bugzilla.redhat.com/show_bug.cgi?id=1398444 [ 2 ] Bug #1293279 - opendkim miss LDAP support https://bugzilla.redhat.com/show_bug.cgi?id=1293279 [ 3 ] Bug #1287176 - OpenDMARC does not accept valid mail size limiting syntax in DMARC record https://bugzilla.redhat.com/show_bug.cgi?id=1287176 [ 4 ] Bug #1331971 - wrong result with self SPF check https://bugzilla.redhat.com/show_bug.cgi?id=1331971 [ 5 ] Bug #1332521 - opendmarc always adds spf=pass https://bugzilla.redhat.com/show_bug.cgi?id=1332521 -------------------------------------------------------------------------------- ================================================================================ perl-5.22.2-365.fc24 (FEDORA-2016-85dffa754f) Practical Extraction and Report Language -------------------------------------------------------------------------------- Update Information: This relase fixes a crash in Storable when deserializing a malformed code reference, assigning split() return values to an array, warnings about const correctness in hv_func.h, a crash in optimized evaluation of "or ((0) x 0))", a memory leak in IO::Poll, regular expression matching. This release also constrains dependencies between archictecture-specific sub-packages to one architecture. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1242980 - -Wcast-qual compiler warnings in hv_func.h https://bugzilla.redhat.com/show_bug.cgi?id=1242980 -------------------------------------------------------------------------------- ================================================================================ perl-Storable-2.53-349.fc24 (FEDORA-2016-e9a6c8d3ad) Persistence for Perl data structures -------------------------------------------------------------------------------- Update Information: This release fixes a crash when deserializing malformed code reference. -------------------------------------------------------------------------------- ================================================================================ php-alcaeus-mongo-php-adapter-1.0.7-1.fc24 (FEDORA-2016-9e497cc748) Mongo PHP Adapter -------------------------------------------------------------------------------- Update Information: **Version 1.0.7** (2016-12-18) All issues and pull requests under this release may be found under the [1.0.7](https://github.com/alcaeus/mongo-php- adapter/issues?q=milestone%3A1.0.7) milestone. * [#139](https://github.com/alcaeus/mongo-php-adapter/pull/139) fixes a wrong error code in calls to `trigger_error`. -------------------------------------------------------------------------------- ================================================================================ php-horde-Horde-Browser-2.0.13-1.fc24 (FEDORA-2016-00907d3550) Horde Browser API -------------------------------------------------------------------------------- Update Information: Horde_Browser 2.0.13 * [jan] Update German translation. -------------------------------------------------------------------------------- ================================================================================ php-horde-Horde-Compress-2.1.6-1.fc24 (FEDORA-2016-80c80402e8) Horde Compression API -------------------------------------------------------------------------------- Update Information: **Horde_Compress 2.1.6** * [jan] Update German translation. -------------------------------------------------------------------------------- ================================================================================ php-horde-Horde-Core-2.27.6-1.fc24 (FEDORA-2016-7a7c8197a6) Horde Core Framework libraries -------------------------------------------------------------------------------- Update Information: Horde_Core 2.27.6 * [jan] Don't show apps with 'admin' status in menu (Bug #14526). -------------------------------------------------------------------------------- ================================================================================ php-horde-Horde-Crypt-2.7.5-1.fc24 (FEDORA-2016-e0aca34908) Horde Cryptography API -------------------------------------------------------------------------------- Update Information: **Horde_Crypt 2.7.5** * [jan] Fix label for S/MIME Encrypted Key Usage attribute. -------------------------------------------------------------------------------- ================================================================================ php-horde-Horde-CssMinify-1.0.3-1.fc24 (FEDORA-2016-e49353fa44) CSS Minification -------------------------------------------------------------------------------- Update Information: **Horde_CssMinify 1.0.3 ** * [jan] Fix minifying font-face src attributes. -------------------------------------------------------------------------------- ================================================================================ php-horde-Horde-Date-2.3.2-1.fc24 (FEDORA-2016-97e759bf4d) Horde Date package -------------------------------------------------------------------------------- Update Information: **Horde_Date 2.3.2** * [jan] Update German translation. -------------------------------------------------------------------------------- ================================================================================ php-horde-Horde-Imap-Client-2.29.12-1.fc24 (FEDORA-2016-4eab03798a) Horde IMAP abstraction interface -------------------------------------------------------------------------------- Update Information: **Horde_Imap_Client 2.29.12** * [mjr] Fix command syntax for CREATE-SPECIAL-USE support. -------------------------------------------------------------------------------- ================================================================================ php-horde-Horde-Kolab-Storage-2.2.3-1.fc24 (FEDORA-2016-e1ca2547ac) A package for handling Kolab data stored on an IMAP server -------------------------------------------------------------------------------- Update Information: **Horde_Kolab_Storage 2.2.3** * [jan] Fix detecting large number of messages when logging. * [jan] Update German translation. * [jan] Update Portuguese translation. -------------------------------------------------------------------------------- ================================================================================ php-horde-Horde-Pack-1.0.7-1.fc24 (FEDORA-2016-1e7017ff24) Horde Pack Utility -------------------------------------------------------------------------------- Update Information: **Horde_Pack 1.0.7** * [jan] Avoid notice if packing an invalid UTF-8 string (Bug #14522). -------------------------------------------------------------------------------- ================================================================================ php-horde-horde-5.2.13-2.fc24 (FEDORA-2016-97dbb12633) Horde Application Framework -------------------------------------------------------------------------------- Update Information: **horde 5.2.13** * [jan] Disallow setting of creator permissions too if sharing with world is disabled. Packaging change: * use upstream locale files -------------------------------------------------------------------------------- ================================================================================ php-horde-imp-6.2.17-2.fc24 (FEDORA-2016-e1bb6274f2) A web based webmail system -------------------------------------------------------------------------------- Update Information: **imp 6.2.17** * [jan] Update German translation. * [jan] Update Greek translation. * [mjr] Fix issue when forwarding an email to multiple recipients in Mobile view (Bug #14060). * [jan] Fix iTip MIME viewer actions if attachment type hasn't been specified. * [mjr] Add option to reload folder tree when fetching via the API. * [jan] Update preview cache after permanently unblocking images from a sender (Bug #14446). Packaging change: * use upstream locale files -------------------------------------------------------------------------------- ================================================================================ php-horde-ingo-3.2.13-2.fc24 (FEDORA-2016-1b9079bec7) An email filter rules manager -------------------------------------------------------------------------------- Update Information: **ingo 3.2.13** * [jan] Convert vacation rules in preference backend from Ingo < 2.0. * [jan] Fix some edge cases with Sieve vacation rules with date limits (Bug #14486). Packaging change: * use upstream locale files -------------------------------------------------------------------------------- ================================================================================ php-horde-kronolith-4.2.19-2.fc24 (FEDORA-2016-d143e1eaed) A web based calendar -------------------------------------------------------------------------------- Update Information: **kronolith 4.2.19** * [mjr] Fix allowing ics import on when user has edit permissions on a shared calendar (Bug #14501). * [jan] Disallow setting of creator permissions too if sharing with world is disabled. * [jan] Split shared users by linebreaks too. Packaging change: * use upstream locale files -------------------------------------------------------------------------------- ================================================================================ php-horde-mnemo-4.2.12-2.fc24 (FEDORA-2016-cc0a29cbd0) A web based notes manager -------------------------------------------------------------------------------- Update Information: **mnemo 4.2.12** * [jan] Update German translation. Packaging change: * use upstream locale files -------------------------------------------------------------------------------- ================================================================================ php-horde-nag-4.2.13-2.fc24 (FEDORA-2016-1a1015a3ec) A web based task list manager -------------------------------------------------------------------------------- Update Information: Packaging change: * use upstream locale files -------------------------------------------------------------------------------- ================================================================================ php-horde-passwd-5.0.6-2.fc24 (FEDORA-2016-5992553f80) Horde password changing application -------------------------------------------------------------------------------- Update Information: **passwd 5.0.6** * [jan] Update German translation. Packaging change: * use upstream locale files -------------------------------------------------------------------------------- ================================================================================ php-horde-turba-4.2.18-2.fc24 (FEDORA-2016-b79956034c) A web based address book -------------------------------------------------------------------------------- Update Information: **turba 4.2.18** * [jan] Remove left over from 10-years-old code (Bug #14521). Packaging change: * use upstream locale files -------------------------------------------------------------------------------- ================================================================================ php-horde-wicked-2.0.7-2.fc24 (FEDORA-2016-b76299f908) Wiki application -------------------------------------------------------------------------------- Update Information: **wicked 2.0.7** * [jan] Update German translation. Packaging change: * use upstream locale files -------------------------------------------------------------------------------- ================================================================================ php-zendframework-zend-cache-2.7.2-1.fc24 (FEDORA-2016-dc7c0d7b0f) Zend Framework Cache component -------------------------------------------------------------------------------- Update Information: **Version 2.7.2** - 2016-12-16 - [#124](https://github.com/zendframework/zend- cache/pull/124) New coding standard - [#123](https://github.com/zendframework /zend-cache/pull/123) Deprecate capability "expiredRead". It's basically providing the same information as staticTtl but from a wrong PoV - [#122](https://github.com/zendframework/zend-cache/pull/122) Fixed redis doc for lib_options (not lib_option) - [#118](https://github.com/zendframework/zend- cache/pull/118) fixed redis tests in case running with different server - [#119](https://github.com/zendframework/zend-cache/pull/119) Redis: Don't call method Redis::info() every time - [#113](https://github.com/zendframework/zend- cache/pull/113) Travis: Moved coverage reporting to latest env - [#114](https://github.com/zendframework/zend-cache/pull/114) Travis: removed fast_finish flag - [#107](https://github.com/zendframework/zend- cache/issues/107) fixed redis server version test in Redis::internalGetMetadata() - [#111](https://github.com/zendframework/zend- cache/pull/111) Fixed typo in storage adapter doc - [#102](https://github.com/zendframework/zend-cache/pull/102) filesystem: fixes a lot of possible race conditions -------------------------------------------------------------------------------- ================================================================================ rsnapshot-1.4.2-2.fc24 (FEDORA-2016-cca4e23413) Local and remote filesystem snapshot utility -------------------------------------------------------------------------------- Update Information: Fixes bz#1388209 - lvm functionality broken -------------------------------------------------------------------------------- References: [ 1 ] Bug #1388209 - LVM functionality broken after update to 1.4.2 https://bugzilla.redhat.com/show_bug.cgi?id=1388209 -------------------------------------------------------------------------------- ================================================================================ samba-4.4.8-0.fc24 (FEDORA-2016-09dc3efcd2) Server and Client software to interoperate with Windows machines -------------------------------------------------------------------------------- Update Information: Security fix for CVE-2016-2125, CVE-2016-2126 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1403114 - CVE-2016-2125 samba: Unconditional privilege delegation to Kerberos servers in trusted realms https://bugzilla.redhat.com/show_bug.cgi?id=1403114 [ 2 ] Bug #1403115 - CVE-2016-2126 samba: Flaws in Kerberos PAC validation can trigger privilege elevation https://bugzilla.redhat.com/show_bug.cgi?id=1403115 -------------------------------------------------------------------------------- ================================================================================ scanmem-0.16-1.fc24 (FEDORA-2016-e36ec69053) Memory scanner -------------------------------------------------------------------------------- Update Information: Update to 0.16 License is changed from GPL-2.0+ to GPL-3.0+ and LGPL-3.0+ -------------------------------------------------------------------------------- References: [ 1 ] Bug #1406381 - scanmem-v0.16 is available https://bugzilla.redhat.com/show_bug.cgi?id=1406381 -------------------------------------------------------------------------------- ================================================================================ squid-3.5.23-1.fc24 (FEDORA-2016-26f9817b08) The Squid proxy caching server -------------------------------------------------------------------------------- Update Information: Security fix for CVE-2016-10002, CVE-2016-10003 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1405943 - CVE-2016-10003 squid: Information disclosure in Collapsed forwarding https://bugzilla.redhat.com/show_bug.cgi?id=1405943 [ 2 ] Bug #1405941 - CVE-2016-10002 squid: Information disclosure in HTTP request processing https://bugzilla.redhat.com/show_bug.cgi?id=1405941 -------------------------------------------------------------------------------- _______________________________________________ test mailing list -- test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to test-leave@xxxxxxxxxxxxxxxxxxxxxxx
