The following Fedora 24 Security updates need testing: Age URL 152 https://bodhi.fedoraproject.org/updates/FEDORA-2016-32eaf0c41e redis-3.2.3-1.fc24 135 https://bodhi.fedoraproject.org/updates/FEDORA-2016-0ef628998f chicken-4.11.0-3.fc24 86 https://bodhi.fedoraproject.org/updates/FEDORA-2016-990e2012ea compat-guile18-1.8.8-14.fc24 49 https://bodhi.fedoraproject.org/updates/FEDORA-2016-93679a91df jenkins-1.651.3-2.fc24 jenkins-remoting-2.62.3-1.fc24 18 https://bodhi.fedoraproject.org/updates/FEDORA-2016-26f9817b08 squid-3.5.23-1.fc24 11 https://bodhi.fedoraproject.org/updates/FEDORA-2016-eaaa9c4a08 exim-4.87.1-1.fc24 8 https://bodhi.fedoraproject.org/updates/FEDORA-2016-0b6ee25a07 php-PHPMailer-5.2.21-1.fc24 7 https://bodhi.fedoraproject.org/updates/FEDORA-2016-76d9809fd4 w3m-0.5.3-27.git20161120.fc24 3 https://bodhi.fedoraproject.org/updates/FEDORA-2017-8311440c55 pcsc-lite-1.8.20-1.fc24 2 https://bodhi.fedoraproject.org/updates/FEDORA-2017-cdf8277947 onionshare-0.9.1-1.fc24 The following Fedora 24 Critical Path updates have yet to be approved: Age URL 51 https://bodhi.fedoraproject.org/updates/FEDORA-2016-cddf0ec383 nss-3.27.0-1.3.fc24 31 https://bodhi.fedoraproject.org/updates/FEDORA-2016-90bd4d7d33 selinux-policy-3.13.1-191.23.fc24 7 https://bodhi.fedoraproject.org/updates/FEDORA-2016-1979eafeae libgweather-3.20.4-1.fc24 6 https://bodhi.fedoraproject.org/updates/FEDORA-2017-6c9a495a48 elfutils-0.168-1.fc24 4 https://bodhi.fedoraproject.org/updates/FEDORA-2016-8b3063d71c redhat-rpm-config-42-2.fc24 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-a762d6af95 koji-1.11.0-3.fc24 The following builds have been pushed to Fedora 24 updates-testing darktable-2.2.1-1.fc24 fail2ban-0.9.6-1.fc24 glusterfs-3.8.7-2.fc24 inxi-2.3.7-1.fc24 keycloak-httpd-client-install-0.5-1.fc24 koji-1.11.0-3.fc24 lilypond-2.19.54-2.fc24 loopabull-0.0.5-1.fc24 openms-2.1.0-3.fc24 pesign-0.112-5.fc24 php-simplepie-1.4.3-2.fc24 python-cerberus-1.0.1-2.fc24 python-httpretty-0.8.14-1.20161011git70af1f8.fc24 python-phyghtmap-1.80-1.fc24 python-sure-1.4.0-1.fc24 runc-1.0.0-2.rc2.git47ea5c7.fc24 texstudio-2.12.0-1.fc24 wxGTK3-3.0.2-32.fc24 xonsh-0.5.2-1.fc24 Details about builds: ================================================================================ darktable-2.2.1-1.fc24 (FEDORA-2017-dbeb3aa2c1) Utility to organize and develop raw images -------------------------------------------------------------------------------- Update Information: 2.2.1 release -------------------------------------------------------------------------------- ================================================================================ fail2ban-0.9.6-1.fc24 (FEDORA-2017-4cccf70ef9) Daemon to ban hosts that cause multiple authentication errors -------------------------------------------------------------------------------- Update Information: Update to 0.9.6: * Misleading add resp. enable of (already available) jail in database, that induced a subsequent error: last position of log file will be never retrieved (gh-795) * Fixed a distribution related bug within testReadStockJailConfForceEnabled (e.g. test-cases faults on Fedora, see gh-1353) * Fixed pythonic filters and test scripts (running via wrong python version, uses "fail2ban-python" now); * Fixed test case "testSetupInstallRoot" for not default python version (also using direct call, out of virtualenv); * Fixed ambiguous wrong recognized date pattern resp. its optional parts (see gh-1512); * FIPS compliant, use sha1 instead of md5 if it not allowed (see gh-1540) * Monit config: scripting is not supported in path (gh-1556) * `filter.d/apache-modsecurity.conf` - Fixed for newer version (one space, gh-1626), optimized: non-greedy catch-all replaced for safer match, unneeded catch-all anchoring removed, non-capturing * `filter.d/asterisk.conf` - Fixed to match different asterisk log prefix (source file: method:) * `filter.d/dovecot.conf` - Fixed failregex ignores failures through some not relevant info (gh-1623) * `filter.d/ignorecommands/apache-fakegooglebot` - Fixed error within apache-fakegooglebot, that will be called with wrong python version (gh-1506) * `filter.d/assp.conf` - Extended failregex and test cases to handle ASSP V1 and V2 (gh-1494) * `filter.d/postfix-sasl.conf` - Allow for having no trailing space after 'failed:' (gh-1497) * `filter.d/vsftpd.conf` - Optional reason part in message after FAIL LOGIN (gh-1543) * `filter.d/sendmail-reject.conf` - removed mandatory double space (if dns-host available, gh-1579) * filter.d/sshd.conf - recognized "Failed publickey for" (gh-1477); - optimized failregex to match all of "Failed any- method for ... from <HOST>" (gh-1479) - eliminated possible complex injections (on user-name resp. auth-info, see gh-1479) - optional port part after host (see gh-1533, gh-1581) * New Actions: - `action.d/npf.conf` for NPF, the latest packet filter for NetBSD * New Filters: - `filter.d/mongodb- auth.conf` for MongoDB (document-oriented NoSQL database engine) (gh-1586, gh-1606 and gh-1607) * DateTemplate regexp extended with the word-end boundary, additionally to word-start boundary * Introduces new command "fail2ban- python", as automatically created symlink to python executable, where fail2ban currently installed (resp. its modules are located): - allows to use the same version, fail2ban currently running, e.g. in external scripts just via replace python with fail2ban-python: ```diff -#!/usr/bin/env python +#!/usr/bin/env fail2ban-python ``` - always the same pickle protocol - the same (and also guaranteed available) fail2ban modules - simplified stand-alone install, resp. stand-alone installation possibility via setup (like gh-1487) is getting closer * Several test cases rewritten using new methods assertIn, assertNotIn * New forward compatibility method assertRaisesRegexp (normally python >= 2.7). Methods assertIn, assertNotIn, assertRaisesRegexp, assertLogged, assertNotLogged are test covered now * Jail configuration extended with new syntax to pass options to the backend (see gh-1408), examples: - `backend = systemd[journalpath=/run/log/journal/machine-1]` - `backend = systemd[journalfiles="/run/log/journal/machine-1/system.journal, /run/log/journal/machine-1/user.journal"]` - `backend = systemd[journalflags=2]` Fix sendmail-auth filter (bug #1329919) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1329919 - sendmail-auth.conf filter never matchs on failregex condition https://bugzilla.redhat.com/show_bug.cgi?id=1329919 -------------------------------------------------------------------------------- ================================================================================ glusterfs-3.8.7-2.fc24 (FEDORA-2017-5a2b84da61) Distributed File System -------------------------------------------------------------------------------- Update Information: firewalld fixes -------------------------------------------------------------------------------- ================================================================================ inxi-2.3.7-1.fc24 (FEDORA-2017-7942dd6b18) A full featured system information script -------------------------------------------------------------------------------- Update Information: Update to 2.3.7. -------------------------------------------------------------------------------- ================================================================================ keycloak-httpd-client-install-0.5-1.fc24 (FEDORA-2017-d3ca5b534b) Tools to configure Apache HTTPD as Keycloak client -------------------------------------------------------------------------------- Update Information: If the mellon port was set to either default http (80) or default https (443) mellon would generate a bad request error during authentication. This update strips any default port from the generated URL's so the URL's will match. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1410938 - Using default ports produces bad request error https://bugzilla.redhat.com/show_bug.cgi?id=1410938 -------------------------------------------------------------------------------- ================================================================================ koji-1.11.0-3.fc24 (FEDORA-2017-a762d6af95) Build system tools -------------------------------------------------------------------------------- Update Information: Add proxy support to hub ---- Fix kerberos support for koji-gc -------------------------------------------------------------------------------- ================================================================================ lilypond-2.19.54-2.fc24 (FEDORA-2017-1982e81a38) A typesetting system for music notation -------------------------------------------------------------------------------- Update Information: Update vim file installation path. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1410875 - vim files should be installed in /usr/share/vim/vim80 https://bugzilla.redhat.com/show_bug.cgi?id=1410875 -------------------------------------------------------------------------------- ================================================================================ loopabull-0.0.5-1.fc24 (FEDORA-2017-726292d91e) Event loop driven Ansible playbook execution engine -------------------------------------------------------------------------------- Update Information: Update to latest upstream release -------------------------------------------------------------------------------- ================================================================================ openms-2.1.0-3.fc24 (FEDORA-2017-b6ae08a079) LC/MS data management and analyses -------------------------------------------------------------------------------- Update Information: - Fix desktop icons -------------------------------------------------------------------------------- ================================================================================ pesign-0.112-5.fc24 (FEDORA-2017-eb22571e6a) Signing utility for UEFI binaries -------------------------------------------------------------------------------- Update Information: This removes the dependencies on pkcs11 module providers; those need to be handled elsewhere so as to only pull in the modules required on a given system. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1349073 - pesign: should not require coolkey https://bugzilla.redhat.com/show_bug.cgi?id=1349073 -------------------------------------------------------------------------------- ================================================================================ php-simplepie-1.4.3-2.fc24 (FEDORA-2017-cd0667a57e) A simple Atom/RSS parsing library for PHP -------------------------------------------------------------------------------- Update Information: Drop flash files -------------------------------------------------------------------------------- References: [ 1 ] Bug #1000260 - php-simplepie bundles Flash files https://bugzilla.redhat.com/show_bug.cgi?id=1000260 -------------------------------------------------------------------------------- ================================================================================ python-cerberus-1.0.1-2.fc24 (FEDORA-2017-f261029921) Lightweight, extensible data validation library for Python -------------------------------------------------------------------------------- Update Information: Update to 1.0.1 -------------------------------------------------------------------------------- ================================================================================ python-httpretty-0.8.14-1.20161011git70af1f8.fc24 (FEDORA-2017-bdd01bcf53) HTTP request mock tool for Python -------------------------------------------------------------------------------- Update Information: This update provides version 0.8.14 of httpretty. This is a significant update over the previous 0.8.3, but so far as I am aware, there are no backward- incompatible changes (please comment if you find any). The package now has its test suite enabled (aside from a few tests that require remote trips), and all tests pass for all releases, so we have some confidence this in fact works correctly now. Python 3 compatibility is also greatly improved. 0.8.3 was entirely broken with more recent urllib3, requests, and openssl versions, and had many compatibility issues with Python 3. -------------------------------------------------------------------------------- ================================================================================ python-phyghtmap-1.80-1.fc24 (FEDORA-2017-a2a2734e8c) Generate OSM contour lines from NASA SRTM data -------------------------------------------------------------------------------- Update Information: Fixed the SRTM version 3.0 earthdata login issue. I. e., - Added the --earthdata-user and --earthdata-password options. - Added configuration file handling to store the earthdata login credentials. - Added code for basic http authentication. - Added cookie handling to prevent infinite http redirect loops. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1409677 - python-phyghtmap-1.80.orig is available https://bugzilla.redhat.com/show_bug.cgi?id=1409677 -------------------------------------------------------------------------------- ================================================================================ python-sure-1.4.0-1.fc24 (FEDORA-2017-68e5693309) Utility belt for automated testing in Python -------------------------------------------------------------------------------- Update Information: This update provides python-sure 1.4.0. There are no indications in the upstream changelog of any incompatible changes between 1.2.7 and 1.4.0. The previous (1.2.7) package is in fact entirely broken in Fedora 24 and Fedora 25, as it is not compatible with the `mock` library version found in those Fedora releases. 1.4.0 fixes this, along with other fixes and improvements. -------------------------------------------------------------------------------- ================================================================================ runc-1.0.0-2.rc2.git47ea5c7.fc24 (FEDORA-2017-59d0e19bcd) CLI for running Open Containers -------------------------------------------------------------------------------- Update Information: patch to enable seccomp ---- Resolves: #1342707 - bump to v1.0.0-rc1 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1342707 - runc-v1.0.0-rc1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1342707 -------------------------------------------------------------------------------- ================================================================================ texstudio-2.12.0-1.fc24 (FEDORA-2017-6f499c5e18) A feature-rich editor for LaTeX documents -------------------------------------------------------------------------------- Update Information: - update to 2.12.0 - http://texstudio.sourceforge.net/manual/current/CHANGELOG.txt -------------------------------------------------------------------------------- ================================================================================ wxGTK3-3.0.2-32.fc24 (FEDORA-2017-503b24e62a) GTK port of the wxWidgets GUI library -------------------------------------------------------------------------------- Update Information: Fix blank menubar/toolbar when using wx[MT]B_DOCKABLE (#1410729) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1410729 - toolbar and menubar not visible https://bugzilla.redhat.com/show_bug.cgi?id=1410729 -------------------------------------------------------------------------------- ================================================================================ xonsh-0.5.2-1.fc24 (FEDORA-2017-f81b1f2862) A general purpose, Python-ish shell -------------------------------------------------------------------------------- Update Information: New upstream release 0.5.2 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1410402 - xonsh-0.5.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=1410402 -------------------------------------------------------------------------------- _______________________________________________ test mailing list -- test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to test-leave@xxxxxxxxxxxxxxxxxxxxxxx
