The following Fedora 25 Security updates need testing: Age URL 139 https://bodhi.fedoraproject.org/updates/FEDORA-2016-9b3ed5f170 chicken-4.11.0-3.fc25 22 https://bodhi.fedoraproject.org/updates/FEDORA-2016-c614315d29 squid-4.0.17-1.fc25 16 https://bodhi.fedoraproject.org/updates/FEDORA-2016-d79ba708cb exim-4.87.1-1.fc25 11 https://bodhi.fedoraproject.org/updates/FEDORA-2016-87dc28b1a0 w3m-0.5.3-27.git20161120.fc25 6 https://bodhi.fedoraproject.org/updates/FEDORA-2017-e6a9108cce onionshare-0.9.1-1.fc25 5 https://bodhi.fedoraproject.org/updates/FEDORA-2017-6a2709f065 SimGear-2016.3.1-3.fc25 2 https://bodhi.fedoraproject.org/updates/FEDORA-2017-3d7734a8b2 icoutils-0.31.1-1.fc25 2 https://bodhi.fedoraproject.org/updates/FEDORA-2017-21edf966b0 mingw-libgsf-1.14.41-1.fc25 1 https://bodhi.fedoraproject.org/updates/FEDORA-2017-77ab791c90 ark-16.08.3-2.fc25 1 https://bodhi.fedoraproject.org/updates/FEDORA-2017-2ddf7d452a libgit2-0.24.6-1.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-c756d37779 ikiwiki-3.20170110-1.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-dbc2b618eb docker-1.12.6-3.git51ef5a8.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-9784ee67f2 ca-certificates-2017.2.11-1.0.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-fcd02e2c2d docker-latest-1.12.6-2.git51ef5a8.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-0200646669 runc-1.0.0-3.rc2.gitc91b5be.fc25 The following Fedora 25 Critical Path updates have yet to be approved: Age URL 46 https://bodhi.fedoraproject.org/updates/FEDORA-2016-940ecb5c59 wpa_supplicant-2.6-1.fc25 33 https://bodhi.fedoraproject.org/updates/FEDORA-2016-9c25320b71 pungi-4.1.11-3.fc25 2 https://bodhi.fedoraproject.org/updates/FEDORA-2017-a42cba00c1 python-lxml-3.7.2-1.fc25 1 https://bodhi.fedoraproject.org/updates/FEDORA-2017-47f2b2e9ae kernel-4.9.2-200.fc25 1 https://bodhi.fedoraproject.org/updates/FEDORA-2017-70547b9af8 python-productmd-1.4-1.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-4e17feecd9 xorg-x11-server-1.19.1-1.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-1abc385587 gdb-7.12-36.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-cd323b81de cups-2.2.0-5.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-ef5050fde2 xfsprogs-4.9.0-1.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-e1e6c0fe97 gnome-online-accounts-3.22.4-1.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-9784ee67f2 ca-certificates-2017.2.11-1.0.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-a8424e62db ibus-1.5.14-5.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-ffa261faa0 gtk3-3.22.6-2.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-1e88986ac9 llvm-3.8.1-2.fc25 The following builds have been pushed to Fedora 25 updates-testing bear-0.7.0-0.11.20161230git781ec80.fc25 ca-certificates-2017.2.11-1.0.fc25 carbon-c-relay-2.5-1.fc25 cups-2.2.0-5.fc25 docker-1.12.6-3.git51ef5a8.fc25 docker-latest-1.12.6-2.git51ef5a8.fc25 drupal8-8.2.5-1.fc25 eclipse-4.6.2-2.fc25 eclipse-dltk-5.7.0-1.fc25 eclipse-ecf-3.13.3-1.fc25 eclipse-egit-4.6.0-1.fc25 eclipse-epp-logging-2.0.3-2.fc25 eclipse-jgit-4.6.0-2.fc25 eclipse-mpc-1.5.3-1.fc25 eclipse-pdt-4.2.0-1.fc25 erlang-cuttlefish-2.0.11-1.fc25 erlang-erlsyslog-0.8.0-1.fc25 erlang-mochiweb-2.16.0-1.fc25 erlang-neotoma-1.7.4-1.fc25 euca2ools-3.4.0-2.fc25 gdb-7.12-36.fc25 ginac-1.7.2-1.fc25 globus-common-16.9-1.fc25 globus-gsi-callback-5.13-1.fc25 globus-gsi-cert-utils-9.16-1.fc25 globus-gsi-openssl-error-3.8-1.fc25 globus-gss-assist-10.21-1.fc25 globus-proxy-utils-6.19-1.fc25 gnome-online-accounts-3.22.4-1.fc25 golang-github-kr-fs-0-0.8.git2788f0d.fc25 golang-github-pelletier-go-buffruneio-0-0.1.gitdf1e16f.fc25 golang-github-pkg-errors-0.7.1-0.2.gita887431.fc25 golang-github-pkg-sftp-0-0.1.git8197a2e.fc25 gtk3-3.22.6-2.fc25 gtkd-3.5.1-1.fc25 hplip-3.16.11-4.fc25 hyperv-daemons-0-0.17.20170105git.fc25 ibus-1.5.14-5.fc25 ikiwiki-3.20170110-1.fc25 java-1.8.0-openjdk-1.8.0.111-5.b16.fc25 libtaskotron-0.4.18-1.fc25 libwps-0.4.5-1.fc25 llvm-3.8.1-2.fc25 lucene4-4.10.4-7.fc25 mingw-gsm-1.0.16-1.fc25 mod_gnutls-0.8.2-1.fc25 myproxy-6.1.25-1.fc25 nextcloud-client-2.2.4-8.fc25 owncloud-client-2.2.4-4.fc25 pandora-wallpapers-0.1.4-1.fc25 pantheon-files-0.3.0.5-3.fc25 pdc-client-1.2.0-1.fc25 php-bartlett-PHP-CompatInfo-5.0.3-1.fc25 php-nette-utils-2.4.3-1.fc25 python-adal-0.4.4-1.fc25 python-aexpect-1.2.0-5.20161110gitaca459d.fc25 python-avocado-43.0-7.fc25 python-sqlalchemy_schemadisplay-1.3-1.fc25 python-txaio-2.5.2-1.fc25 qgit-2.6-4.fc25 runc-1.0.0-3.rc2.gitc91b5be.fc25 sdformat-4.2.0-2.fc25 switchboard-2.2.0-5.fc25 unifont-9.0.06-1.fc25 urjtag-0.10-13.fc25.20111215gite1a4227 vdr-epg2vdr-1.1.23-1.fc25 wingpanel-2.0.1-10.fc25 xfce4-terminal-0.8.3-1.fc25 xfsprogs-4.9.0-1.fc25 xorg-x11-server-1.19.1-1.fc25 yad-0.38.1-1.fc25 Details about builds: ================================================================================ bear-0.7.0-0.11.20161230git781ec80.fc25 (FEDORA-2017-30c138d1c3) Game engine and editors dedicated to creating great 2D games -------------------------------------------------------------------------------- Update Information: - fix Release tag to include snapshot checkout date - prepare rebuild against libclaw >= 1.7.4-16 for fix ABI compatibility ---- add RR hicolor-icon-theme ---- Update to 0.7.0-0.9git781ec80 ---- - add if condition due ppc64le build problem -------------------------------------------------------------------------------- ================================================================================ ca-certificates-2017.2.11-1.0.fc25 (FEDORA-2017-9784ee67f2) The Mozilla CA root certificate bundle -------------------------------------------------------------------------------- Update Information: This is an update to the Mozilla CA certificates list version 2.11, which has been published as part of Mozilla NSS 3.28.1. For additional details, please refer to the NSS 3.28.1 release notes: https://developer.mozilla.org/en- US/docs/Mozilla/Projects/NSS/NSS_3.28.1_release_notes Note: This package version contains an unmodified version of the Mozilla CA list, and the ca-legacy configuration has no effect with this package version. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1381400 - nss-3.28.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1381400 -------------------------------------------------------------------------------- ================================================================================ carbon-c-relay-2.5-1.fc25 (FEDORA-2017-3bdc52694c) Enhanced C implementation of Carbon relay, aggregator and rewriter -------------------------------------------------------------------------------- Update Information: Update to 2.5 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1392644 - carbon-c-relay-v2.5 is available https://bugzilla.redhat.com/show_bug.cgi?id=1392644 -------------------------------------------------------------------------------- ================================================================================ cups-2.2.0-5.fc25 (FEDORA-2017-cd323b81de) CUPS printing system -------------------------------------------------------------------------------- Update Information: Added wheel into SystemGroup -------------------------------------------------------------------------------- References: [ 1 ] Bug #1405669 - Add wheel to /etc/cups/cups-files.conf SystemGroup https://bugzilla.redhat.com/show_bug.cgi?id=1405669 -------------------------------------------------------------------------------- ================================================================================ docker-1.12.6-3.git51ef5a8.fc25 (FEDORA-2017-dbc2b618eb) Automates deployment of containerized applications -------------------------------------------------------------------------------- Update Information: Fix [CVE-2016-9962] Insecure opening of file-descriptor allows privilege Fix BZ#1412148 - containerd: container did not start before the specified timeout ---- use container-selinux >= 2:2.0-2 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1412148 - containerd: container did not start before the specified timeout https://bugzilla.redhat.com/show_bug.cgi?id=1412148 [ 2 ] Bug #1412147 - CVE-2016-9962 docker: Insecure opening of file-descriptor allows privilege escalation [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1412147 -------------------------------------------------------------------------------- ================================================================================ docker-latest-1.12.6-2.git51ef5a8.fc25 (FEDORA-2017-fcd02e2c2d) Automates deployment of containerized applications -------------------------------------------------------------------------------- Update Information: Fix CVE-2016-9962 - Insecure opening of file-descriptor allows privilege escalation ---- built docker @projectatomic/docker-1.12 commit 6009905 ---- built docker @projectatomic/docker-1.12 commit 97974ae ---- built docker @projectatomic/docker-1.12 commit 7b5044b -------------------------------------------------------------------------------- References: [ 1 ] Bug #1412189 - CVE-2016-9962 docker: Insecure opening of file-descriptor allows privilege escalation [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1412189 -------------------------------------------------------------------------------- ================================================================================ drupal8-8.2.5-1.fc25 (FEDORA-2017-34493aee3c) An open source content management platform -------------------------------------------------------------------------------- Update Information: https://www.drupal.org/project/drupal/releases/8.2.5 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1410077 - drupal8-8.2.5 is available https://bugzilla.redhat.com/show_bug.cgi?id=1410077 -------------------------------------------------------------------------------- ================================================================================ eclipse-4.6.2-2.fc25 (FEDORA-2017-ddde4436aa) An open, extensible IDE -------------------------------------------------------------------------------- Update Information: Various updates to Neon.2 versions Fixes DLTK indexing failures (especially apparent in PHP tooling) Fixes Lucene index reading errors when AERI synchronises problem lists -------------------------------------------------------------------------------- References: [ 1 ] Bug #1398889 - Eclipse Error https://bugzilla.redhat.com/show_bug.cgi?id=1398889 [ 2 ] Bug #1397238 - An internal error occurred during: "Open Call Hierarchy action". https://bugzilla.redhat.com/show_bug.cgi?id=1397238 -------------------------------------------------------------------------------- ================================================================================ eclipse-dltk-5.7.0-1.fc25 (FEDORA-2017-ddde4436aa) Dynamic Languages Toolkit (DLTK) Eclipse plug-in -------------------------------------------------------------------------------- Update Information: Various updates to Neon.2 versions Fixes DLTK indexing failures (especially apparent in PHP tooling) Fixes Lucene index reading errors when AERI synchronises problem lists -------------------------------------------------------------------------------- References: [ 1 ] Bug #1398889 - Eclipse Error https://bugzilla.redhat.com/show_bug.cgi?id=1398889 [ 2 ] Bug #1397238 - An internal error occurred during: "Open Call Hierarchy action". https://bugzilla.redhat.com/show_bug.cgi?id=1397238 -------------------------------------------------------------------------------- ================================================================================ eclipse-ecf-3.13.3-1.fc25 (FEDORA-2017-ddde4436aa) Eclipse Communication Framework (ECF) Eclipse plug-in -------------------------------------------------------------------------------- Update Information: Various updates to Neon.2 versions Fixes DLTK indexing failures (especially apparent in PHP tooling) Fixes Lucene index reading errors when AERI synchronises problem lists -------------------------------------------------------------------------------- References: [ 1 ] Bug #1398889 - Eclipse Error https://bugzilla.redhat.com/show_bug.cgi?id=1398889 [ 2 ] Bug #1397238 - An internal error occurred during: "Open Call Hierarchy action". https://bugzilla.redhat.com/show_bug.cgi?id=1397238 -------------------------------------------------------------------------------- ================================================================================ eclipse-egit-4.6.0-1.fc25 (FEDORA-2017-ddde4436aa) Eclipse Git Integration -------------------------------------------------------------------------------- Update Information: Various updates to Neon.2 versions Fixes DLTK indexing failures (especially apparent in PHP tooling) Fixes Lucene index reading errors when AERI synchronises problem lists -------------------------------------------------------------------------------- References: [ 1 ] Bug #1398889 - Eclipse Error https://bugzilla.redhat.com/show_bug.cgi?id=1398889 [ 2 ] Bug #1397238 - An internal error occurred during: "Open Call Hierarchy action". https://bugzilla.redhat.com/show_bug.cgi?id=1397238 -------------------------------------------------------------------------------- ================================================================================ eclipse-epp-logging-2.0.3-2.fc25 (FEDORA-2017-ddde4436aa) Eclipse Error Reporting tool -------------------------------------------------------------------------------- Update Information: Various updates to Neon.2 versions Fixes DLTK indexing failures (especially apparent in PHP tooling) Fixes Lucene index reading errors when AERI synchronises problem lists -------------------------------------------------------------------------------- References: [ 1 ] Bug #1398889 - Eclipse Error https://bugzilla.redhat.com/show_bug.cgi?id=1398889 [ 2 ] Bug #1397238 - An internal error occurred during: "Open Call Hierarchy action". https://bugzilla.redhat.com/show_bug.cgi?id=1397238 -------------------------------------------------------------------------------- ================================================================================ eclipse-jgit-4.6.0-2.fc25 (FEDORA-2017-ddde4436aa) Eclipse JGit -------------------------------------------------------------------------------- Update Information: Various updates to Neon.2 versions Fixes DLTK indexing failures (especially apparent in PHP tooling) Fixes Lucene index reading errors when AERI synchronises problem lists -------------------------------------------------------------------------------- References: [ 1 ] Bug #1398889 - Eclipse Error https://bugzilla.redhat.com/show_bug.cgi?id=1398889 [ 2 ] Bug #1397238 - An internal error occurred during: "Open Call Hierarchy action". https://bugzilla.redhat.com/show_bug.cgi?id=1397238 -------------------------------------------------------------------------------- ================================================================================ eclipse-mpc-1.5.3-1.fc25 (FEDORA-2017-ddde4436aa) Eclipse Marketplace Client -------------------------------------------------------------------------------- Update Information: Various updates to Neon.2 versions Fixes DLTK indexing failures (especially apparent in PHP tooling) Fixes Lucene index reading errors when AERI synchronises problem lists -------------------------------------------------------------------------------- References: [ 1 ] Bug #1398889 - Eclipse Error https://bugzilla.redhat.com/show_bug.cgi?id=1398889 [ 2 ] Bug #1397238 - An internal error occurred during: "Open Call Hierarchy action". https://bugzilla.redhat.com/show_bug.cgi?id=1397238 -------------------------------------------------------------------------------- ================================================================================ eclipse-pdt-4.2.0-1.fc25 (FEDORA-2017-ddde4436aa) PHP Development Tools (PDT) Eclipse plug-in -------------------------------------------------------------------------------- Update Information: Various updates to Neon.2 versions Fixes DLTK indexing failures (especially apparent in PHP tooling) Fixes Lucene index reading errors when AERI synchronises problem lists -------------------------------------------------------------------------------- References: [ 1 ] Bug #1398889 - Eclipse Error https://bugzilla.redhat.com/show_bug.cgi?id=1398889 [ 2 ] Bug #1397238 - An internal error occurred during: "Open Call Hierarchy action". https://bugzilla.redhat.com/show_bug.cgi?id=1397238 -------------------------------------------------------------------------------- ================================================================================ erlang-cuttlefish-2.0.11-1.fc25 (FEDORA-2017-45931dd0dc) A library for dealing with sysctl-like configuration syntax -------------------------------------------------------------------------------- Update Information: * Ver. 2.0.11 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1410271 - erlang-cuttlefish-2.0.11 is available https://bugzilla.redhat.com/show_bug.cgi?id=1410271 -------------------------------------------------------------------------------- ================================================================================ erlang-erlsyslog-0.8.0-1.fc25 (FEDORA-2017-255a19521b) Syslog facility for Erlang -------------------------------------------------------------------------------- Update Information: * Ver. 0.8.0 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1376232 - erlang-erlsyslog-0.8.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1376232 -------------------------------------------------------------------------------- ================================================================================ erlang-mochiweb-2.16.0-1.fc25 (FEDORA-2017-da05bded3f) An Erlang library for building lightweight HTTP servers -------------------------------------------------------------------------------- Update Information: * Ver. 2.16.0 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1406198 - erlang-mochiweb-2.16.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1406198 -------------------------------------------------------------------------------- ================================================================================ erlang-neotoma-1.7.4-1.fc25 (FEDORA-2017-02b17d790a) Erlang library and packrat parser-generator for parsing expression grammars -------------------------------------------------------------------------------- Update Information: * Ver. 1.7.4 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1402167 - erlang-neotoma-1.7.4 is available https://bugzilla.redhat.com/show_bug.cgi?id=1402167 -------------------------------------------------------------------------------- ================================================================================ euca2ools-3.4.0-2.fc25 (FEDORA-2017-54e4965a0b) Eucalyptus/AWS-compatible command line tools -------------------------------------------------------------------------------- Update Information: This update adds support for NAT gateways, CloudFormation template attributes, new AWS regions, and more. For a complete list of changes, see the [upstream release notes](https://docs.eucalyptus.com/eucalyptus/4.3.1/#euca2ools-release- notes/rn_index_3.4.0.html). -------------------------------------------------------------------------------- ================================================================================ gdb-7.12-36.fc25 (FEDORA-2017-1abc385587) A stub package for GNU source-level debugger -------------------------------------------------------------------------------- Update Information: Update from FSF GDB 7.12 stable branch to snapshot: gdb-7.12.0.20170111 -------------------------------------------------------------------------------- ================================================================================ ginac-1.7.2-1.fc25 (FEDORA-2017-61af1bc8e3) C++ library for symbolic calculations -------------------------------------------------------------------------------- Update Information: Bugfix update. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1411745 - ginac-1.7.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=1411745 -------------------------------------------------------------------------------- ================================================================================ globus-common-16.9-1.fc25 (FEDORA-2017-291a6f8f07) Globus Toolkit - Common Library -------------------------------------------------------------------------------- Update Information: globus-common-16.9-1 - Fix crash in globus_eval_path globus-gsi- callback-5.13-1 - Fix crash with OpenSSL 1.1.0 with a CRL (issue #87) globus- gsi-cert-utils-9.16-1 - Add const qualifier to avoid casting with OpensSL 1.1.0 globus-gsi-openssl-error-3.8-1 - Alter dependency order to avoid mixing SSL version globus-gss-assist-10.21-1 - Slow grid-mapfile-delete-entry (issue #84) globus-proxy-utils-6.19-1 - Fix RSA key checking myproxy-6.1.25-1 - Fixes for OpenSSL 1.1.0 -------------------------------------------------------------------------------- ================================================================================ globus-gsi-callback-5.13-1.fc25 (FEDORA-2017-291a6f8f07) Globus Toolkit - Globus GSI Callback Library -------------------------------------------------------------------------------- Update Information: globus-common-16.9-1 - Fix crash in globus_eval_path globus-gsi- callback-5.13-1 - Fix crash with OpenSSL 1.1.0 with a CRL (issue #87) globus- gsi-cert-utils-9.16-1 - Add const qualifier to avoid casting with OpensSL 1.1.0 globus-gsi-openssl-error-3.8-1 - Alter dependency order to avoid mixing SSL version globus-gss-assist-10.21-1 - Slow grid-mapfile-delete-entry (issue #84) globus-proxy-utils-6.19-1 - Fix RSA key checking myproxy-6.1.25-1 - Fixes for OpenSSL 1.1.0 -------------------------------------------------------------------------------- ================================================================================ globus-gsi-cert-utils-9.16-1.fc25 (FEDORA-2017-291a6f8f07) Globus Toolkit - Globus GSI Cert Utils Library -------------------------------------------------------------------------------- Update Information: globus-common-16.9-1 - Fix crash in globus_eval_path globus-gsi- callback-5.13-1 - Fix crash with OpenSSL 1.1.0 with a CRL (issue #87) globus- gsi-cert-utils-9.16-1 - Add const qualifier to avoid casting with OpensSL 1.1.0 globus-gsi-openssl-error-3.8-1 - Alter dependency order to avoid mixing SSL version globus-gss-assist-10.21-1 - Slow grid-mapfile-delete-entry (issue #84) globus-proxy-utils-6.19-1 - Fix RSA key checking myproxy-6.1.25-1 - Fixes for OpenSSL 1.1.0 -------------------------------------------------------------------------------- ================================================================================ globus-gsi-openssl-error-3.8-1.fc25 (FEDORA-2017-291a6f8f07) Globus Toolkit - Globus OpenSSL Error Handling -------------------------------------------------------------------------------- Update Information: globus-common-16.9-1 - Fix crash in globus_eval_path globus-gsi- callback-5.13-1 - Fix crash with OpenSSL 1.1.0 with a CRL (issue #87) globus- gsi-cert-utils-9.16-1 - Add const qualifier to avoid casting with OpensSL 1.1.0 globus-gsi-openssl-error-3.8-1 - Alter dependency order to avoid mixing SSL version globus-gss-assist-10.21-1 - Slow grid-mapfile-delete-entry (issue #84) globus-proxy-utils-6.19-1 - Fix RSA key checking myproxy-6.1.25-1 - Fixes for OpenSSL 1.1.0 -------------------------------------------------------------------------------- ================================================================================ globus-gss-assist-10.21-1.fc25 (FEDORA-2017-291a6f8f07) Globus Toolkit - GSSAPI Assist library -------------------------------------------------------------------------------- Update Information: globus-common-16.9-1 - Fix crash in globus_eval_path globus-gsi- callback-5.13-1 - Fix crash with OpenSSL 1.1.0 with a CRL (issue #87) globus- gsi-cert-utils-9.16-1 - Add const qualifier to avoid casting with OpensSL 1.1.0 globus-gsi-openssl-error-3.8-1 - Alter dependency order to avoid mixing SSL version globus-gss-assist-10.21-1 - Slow grid-mapfile-delete-entry (issue #84) globus-proxy-utils-6.19-1 - Fix RSA key checking myproxy-6.1.25-1 - Fixes for OpenSSL 1.1.0 -------------------------------------------------------------------------------- ================================================================================ globus-proxy-utils-6.19-1.fc25 (FEDORA-2017-291a6f8f07) Globus Toolkit - Globus GSI Proxy Utility Programs -------------------------------------------------------------------------------- Update Information: globus-common-16.9-1 - Fix crash in globus_eval_path globus-gsi- callback-5.13-1 - Fix crash with OpenSSL 1.1.0 with a CRL (issue #87) globus- gsi-cert-utils-9.16-1 - Add const qualifier to avoid casting with OpensSL 1.1.0 globus-gsi-openssl-error-3.8-1 - Alter dependency order to avoid mixing SSL version globus-gss-assist-10.21-1 - Slow grid-mapfile-delete-entry (issue #84) globus-proxy-utils-6.19-1 - Fix RSA key checking myproxy-6.1.25-1 - Fixes for OpenSSL 1.1.0 -------------------------------------------------------------------------------- ================================================================================ gnome-online-accounts-3.22.4-1.fc25 (FEDORA-2017-e1e6c0fe97) Single sign-on framework for GNOME -------------------------------------------------------------------------------- Update Information: # Bugs fixed: * 765121 Memory leak in goa-daemon * 776871 Broken error handling in on_got_identity_for_sign_out * 776897 The invocation is leaked when handling ExchangeSecretKeys and SignOut -------------------------------------------------------------------------------- ================================================================================ golang-github-kr-fs-0-0.8.git2788f0d.fc25 (FEDORA-2017-13ec1ff5d3) Provides Go filesystem-related functions -------------------------------------------------------------------------------- Update Information: Polish the spec file -------------------------------------------------------------------------------- References: [ 1 ] Bug #1250492 - Tracker for golang-github-kr-fs https://bugzilla.redhat.com/show_bug.cgi?id=1250492 -------------------------------------------------------------------------------- ================================================================================ golang-github-pelletier-go-buffruneio-0-0.1.gitdf1e16f.fc25 (FEDORA-2017-4820a57257) Wrapper around bufio to provide buffered runes access with unlimited unreads -------------------------------------------------------------------------------- Update Information: First package for Fedora -------------------------------------------------------------------------------- References: [ 1 ] Bug #1387178 - Review Request: golang-github-pelletier-go-buffruneio - Wrapper around bufio to provide buffered runes access with unlimited unreads https://bugzilla.redhat.com/show_bug.cgi?id=1387178 -------------------------------------------------------------------------------- ================================================================================ golang-github-pkg-errors-0.7.1-0.2.gita887431.fc25 (FEDORA-2017-56a23c5467) Simple error handling primitives -------------------------------------------------------------------------------- Update Information: Extend the default architectures, consolidate with_ macros ---- First package for Fedora -------------------------------------------------------------------------------- References: [ 1 ] Bug #1387115 - Review Request: golang-github-pkg-errors - Simple error handling primitives https://bugzilla.redhat.com/show_bug.cgi?id=1387115 -------------------------------------------------------------------------------- ================================================================================ golang-github-pkg-sftp-0-0.1.git8197a2e.fc25 (FEDORA-2017-9f43b78a5c) SFTP support for the go.crypto/ssh package -------------------------------------------------------------------------------- Update Information: First package for Fedora -------------------------------------------------------------------------------- References: [ 1 ] Bug #1387131 - Review Request: golang-github-pkg-sftp - SFTP support for the go.crypto/ssh package https://bugzilla.redhat.com/show_bug.cgi?id=1387131 -------------------------------------------------------------------------------- ================================================================================ gtk3-3.22.6-2.fc25 (FEDORA-2017-ffa261faa0) The GIMP ToolKit (GTK+), a library for creating GUIs for X -------------------------------------------------------------------------------- Update Information: This update fixes [bug #769835](https://bugzilla.gnome.org/show_bug.cgi?id=769835): "On Wayland, application containing GtkGLArea stops responding if it's not on current workspace" -------------------------------------------------------------------------------- ================================================================================ gtkd-3.5.1-1.fc25 (FEDORA-2016-97b52df074) D binding and OO wrapper of GTK+ -------------------------------------------------------------------------------- Update Information: gtkd 3.5.1 release, adding support for gtk+ 3.22 and adding new bindings for gstreamer1 and libpeas. -------------------------------------------------------------------------------- ================================================================================ hplip-3.16.11-4.fc25 (FEDORA-2017-951432528b) HP Linux Imaging and Printing Project -------------------------------------------------------------------------------- Update Information: Added Requires: python3-qt5 -------------------------------------------------------------------------------- ================================================================================ hyperv-daemons-0-0.17.20170105git.fc25 (FEDORA-2017-c186d1cf37) Hyper-V daemons suite -------------------------------------------------------------------------------- Update Information: Use '-gt' instead of '>' to do the right comparison (#1412033) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1412033 - hypervfcopyd, hypervkvpd and hypervvssd: postinstall scriptlet contain "if [ $1 > 1 ] ; then" which creates an empty file /1 https://bugzilla.redhat.com/show_bug.cgi?id=1412033 -------------------------------------------------------------------------------- ================================================================================ ibus-1.5.14-5.fc25 (FEDORA-2017-a8424e62db) Intelligent Input Bus for Linux OS -------------------------------------------------------------------------------- Update Information: - support scroll event in candidates panel - Fixed Bug 1403985 - Emoji typing is enabled during Unicode typing - Fixed Bug 1402494 - Font settings of ibus are ignored on non-Gnome -------------------------------------------------------------------------------- References: [ 1 ] Bug #1402494 - Font settings of ibus are ignored (on non-Gnome desktops like Xfce, ...) https://bugzilla.redhat.com/show_bug.cgi?id=1402494 [ 2 ] Bug #1403985 - Emoji typing is enabled during Unicode typing with sk layout https://bugzilla.redhat.com/show_bug.cgi?id=1403985 -------------------------------------------------------------------------------- ================================================================================ ikiwiki-3.20170110-1.fc25 (FEDORA-2017-c756d37779) A wiki compiler -------------------------------------------------------------------------------- Update Information: Update to the latest stable version. See https://ikiwiki.info/news/ for the list of changes. Security fix for CVE-2016-10026, CVE-2016-9646. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1409556 - CVE-2016-9646 ikiwiki: Commit metadata forgery https://bugzilla.redhat.com/show_bug.cgi?id=1409556 [ 2 ] Bug #1406693 - CVE-2016-10026 ikiwiki: Authorization bypass when reverting changes https://bugzilla.redhat.com/show_bug.cgi?id=1406693 -------------------------------------------------------------------------------- ================================================================================ java-1.8.0-openjdk-1.8.0.111-5.b16.fc25 (FEDORA-2017-a8c96eee6c) OpenJDK Runtime Environment -------------------------------------------------------------------------------- Update Information: This update is fixing a multilib issue, when 32b architecture could pull wrong dependencies when installed on top of 64b -------------------------------------------------------------------------------- ================================================================================ libtaskotron-0.4.18-1.fc25 (FEDORA-2017-85902aadad) Taskotron Support Library -------------------------------------------------------------------------------- Update Information: - distgit directive improvements (D1055, D1069) - yumrepoinfo.conf updates (D1057, D1074) - koji_utils: use supported arches when downloading build logs (D1076) -------------------------------------------------------------------------------- ================================================================================ libwps-0.4.5-1.fc25 (FEDORA-2017-eded485b13) A library for import of Microsoft Works documents -------------------------------------------------------------------------------- Update Information: new upstream release -------------------------------------------------------------------------------- ================================================================================ llvm-3.8.1-2.fc25 (FEDORA-2017-1e88986ac9) The Low Level Virtual Machine -------------------------------------------------------------------------------- Update Information: Update to 3.8.1 and fix s390x atomic fences. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1410950 - Cannot select:... AtomicFence, when compiling Rust on s390x https://bugzilla.redhat.com/show_bug.cgi?id=1410950 [ 2 ] Bug #1376213 - Request: 3.8.1 for Fedora 24/25 https://bugzilla.redhat.com/show_bug.cgi?id=1376213 -------------------------------------------------------------------------------- ================================================================================ lucene4-4.10.4-7.fc25 (FEDORA-2017-ddde4436aa) High-performance, full-featured text search engine -------------------------------------------------------------------------------- Update Information: Various updates to Neon.2 versions Fixes DLTK indexing failures (especially apparent in PHP tooling) Fixes Lucene index reading errors when AERI synchronises problem lists -------------------------------------------------------------------------------- References: [ 1 ] Bug #1398889 - Eclipse Error https://bugzilla.redhat.com/show_bug.cgi?id=1398889 [ 2 ] Bug #1397238 - An internal error occurred during: "Open Call Hierarchy action". https://bugzilla.redhat.com/show_bug.cgi?id=1397238 -------------------------------------------------------------------------------- ================================================================================ mingw-gsm-1.0.16-1.fc25 (FEDORA-2017-04dc3e813e) Shared libraries for GSM speech compressor -------------------------------------------------------------------------------- Update Information: Update to the latest release -------------------------------------------------------------------------------- ================================================================================ mod_gnutls-0.8.2-1.fc25 (FEDORA-2017-9b5e2ca94c) GnuTLS module for the Apache HTTP server -------------------------------------------------------------------------------- Update Information: update to 0.8.2 -------------------------------------------------------------------------------- ================================================================================ myproxy-6.1.25-1.fc25 (FEDORA-2017-291a6f8f07) Manage X.509 Public Key Infrastructure (PKI) security credentials -------------------------------------------------------------------------------- Update Information: globus-common-16.9-1 - Fix crash in globus_eval_path globus-gsi- callback-5.13-1 - Fix crash with OpenSSL 1.1.0 with a CRL (issue #87) globus- gsi-cert-utils-9.16-1 - Add const qualifier to avoid casting with OpensSL 1.1.0 globus-gsi-openssl-error-3.8-1 - Alter dependency order to avoid mixing SSL version globus-gss-assist-10.21-1 - Slow grid-mapfile-delete-entry (issue #84) globus-proxy-utils-6.19-1 - Fix RSA key checking myproxy-6.1.25-1 - Fixes for OpenSSL 1.1.0 -------------------------------------------------------------------------------- ================================================================================ nextcloud-client-2.2.4-8.fc25 (FEDORA-2017-d626812ceb) The Nextcloud Client -------------------------------------------------------------------------------- Update Information: Fix the appdata file so that nextcloud would show up in GNOME and KDE software centers. -------------------------------------------------------------------------------- ================================================================================ owncloud-client-2.2.4-4.fc25 (FEDORA-2017-e9b13f7f74) The ownCloud Client -------------------------------------------------------------------------------- Update Information: Fix the appdata file so that owncloud would show up in GNOME and KDE software centers. -------------------------------------------------------------------------------- ================================================================================ pandora-wallpapers-0.1.4-1.fc25 (FEDORA-2017-a1ead18e49) Wallpapers for elementary's Pantheon desktop -------------------------------------------------------------------------------- Update Information: This is a new package for f25 proper. It is a fork of the original upstream elementary wallpapers, with pictures with licenses unacceptable for fedora removed. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1411954 - Review Request: pandora-wallpapers - Wallpapers for elementary's Pantheon desktop https://bugzilla.redhat.com/show_bug.cgi?id=1411954 -------------------------------------------------------------------------------- ================================================================================ pantheon-files-0.3.0.5-3.fc25 (FEDORA-2017-e0bb3a9d92) Pantheon file manager -------------------------------------------------------------------------------- Update Information: This is a new package for f25 proper. It was previously available via my elementary-stable COPR repository. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1411957 - Review Request: pantheon-files - Pantheon file manager https://bugzilla.redhat.com/show_bug.cgi?id=1411957 -------------------------------------------------------------------------------- ================================================================================ pdc-client-1.2.0-1.fc25 (FEDORA-2017-765ca70134) Console client for interacting with Product Definition Center -------------------------------------------------------------------------------- Update Information: - Add the SSL and remove the Warning Info (bliu@xxxxxxxxxx) - Add RPC "clone" command to content-delivery-repo (ahills@xxxxxxxxxx) - Add a new plugin of group-resource-permission (bliu@xxxxxxxxxx) - Add insecure configuration option back with a warning (ahills@xxxxxxxxxx) - Fix PEP8 violation (ahills@xxxxxxxxxx) - More flexible SSL certificate verification configuration (ahills@xxxxxxxxxx) - Create a new plugin of compose-full-import (bliu@xxxxxxxxxx) - Update the SPEC file (bliu@xxxxxxxxxx) - fix TypeError: unorderable types: NoneType() <= int() (jpopelka@xxxxxxxxxx) - [spec] Python3 build (jpopelka@xxxxxxxxxx) ---- - fix TypeError: unorderable types: NoneType() <= int() (jpopelka@xxxxxxxxxx) - Python3 build -------------------------------------------------------------------------------- ================================================================================ php-bartlett-PHP-CompatInfo-5.0.3-1.fc25 (FEDORA-2017-a2a61febed) Find out version and the extensions required for a piece of code to run -------------------------------------------------------------------------------- Update Information: **Version 5.0.3** From git history, as upstream doesn't provide any ChangeLog: * Fix gh#226 5.0.2 does not detect yield / generators #226 -------------------------------------------------------------------------------- ================================================================================ php-nette-utils-2.4.3-1.fc25 (FEDORA-2017-1236c4bcbe) Nette Utility Classes -------------------------------------------------------------------------------- Update Information: **Released version 2.4.3** * added Reflection -------------------------------------------------------------------------------- ================================================================================ python-adal-0.4.4-1.fc25 (FEDORA-2017-547960e9d2) ADAL for Python -------------------------------------------------------------------------------- Update Information: Fix https://github.com/AzureAD/azure-activedirectory-library-for- python/issues/61 -------------------------------------------------------------------------------- ================================================================================ python-aexpect-1.2.0-5.20161110gitaca459d.fc25 (FEDORA-2017-ac6294b225) A python library to control interactive applications -------------------------------------------------------------------------------- Update Information: Updated SPEC files to enable building packages for EL6/7. -------------------------------------------------------------------------------- ================================================================================ python-avocado-43.0-7.fc25 (FEDORA-2017-ac6294b225) Framework with tools and libraries for Automated Testing -------------------------------------------------------------------------------- Update Information: Updated SPEC files to enable building packages for EL6/7. -------------------------------------------------------------------------------- ================================================================================ python-sqlalchemy_schemadisplay-1.3-1.fc25 (FEDORA-2017-5c5965a67c) Turn SQLAlchemy DB Model into a graph -------------------------------------------------------------------------------- Update Information: Initial package -------------------------------------------------------------------------------- References: [ 1 ] Bug #1409929 - Review Request: python-sqlalchemy_schemadisplay - Turn SQLAlchemy DB Model into a graph https://bugzilla.redhat.com/show_bug.cgi?id=1409929 -------------------------------------------------------------------------------- ================================================================================ python-txaio-2.5.2-1.fc25 (FEDORA-2017-012893c359) Compatibility API between asyncio/Twisted/Trollius -------------------------------------------------------------------------------- Update Information: Update to 2.5.2 -------------------------------------------------------------------------------- ================================================================================ qgit-2.6-4.fc25 (FEDORA-2017-226d58d15e) GUI browser for git repositories -------------------------------------------------------------------------------- Update Information: - fix custom actions -------------------------------------------------------------------------------- References: [ 1 ] Bug #1411191 - Custom actions do not work in qgit 2.6 https://bugzilla.redhat.com/show_bug.cgi?id=1411191 -------------------------------------------------------------------------------- ================================================================================ runc-1.0.0-3.rc2.gitc91b5be.fc25 (FEDORA-2017-0200646669) CLI for running Open Containers -------------------------------------------------------------------------------- Update Information: Resolves: #1412238 - *CVE-2016-9962* - set init processes as non-dumpable, ---- patch to enable seccomp ---- bump to 1.0.0 rc2 ---- Resolves: #1342707 - bump to v1.0.0-rc1 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1412238 - CVE-2016-9962 runc: docker: insecure opening of file-descriptor allows privilege escalation [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1412238 [ 2 ] Bug #1342707 - runc-v1.0.0-rc1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1342707 -------------------------------------------------------------------------------- ================================================================================ sdformat-4.2.0-2.fc25 (FEDORA-2017-07dd668b1e) The Simulation Description Format -------------------------------------------------------------------------------- Update Information: Add tinyxml-devel to sdformat-devel's requirements. No changes to functionality. -------------------------------------------------------------------------------- ================================================================================ switchboard-2.2.0-5.fc25 (FEDORA-2017-67fea57bc4) Modular Desktop Settings Hub -------------------------------------------------------------------------------- Update Information: This update hopefully fixes an issue that prevented the creation of debuginfo packages for switchboard plugs. -------------------------------------------------------------------------------- ================================================================================ unifont-9.0.06-1.fc25 (FEDORA-2017-67c295259e) Tools and glyph descriptions in a very simple text format -------------------------------------------------------------------------------- Update Information: Bugfix update: removal of serifs from most of the Cherokee upper- and lower-case letters to improve readability in running text, and refining about 50 of the 888 Pikto CSUR glyphs. At this point, the Pikto glyphs can be considered stable. -------------------------------------------------------------------------------- ================================================================================ urjtag-0.10-13.fc25.20111215gite1a4227 (FEDORA-2017-a6f9435bb8) A tool for communicating over JTAG with flash chips and CPUs -------------------------------------------------------------------------------- Update Information: libftdi is not detected as it is libftdi1 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1403243 - wrong detection of libftdi https://bugzilla.redhat.com/show_bug.cgi?id=1403243 -------------------------------------------------------------------------------- ================================================================================ vdr-epg2vdr-1.1.23-1.fc25 (FEDORA-2017-8ea9836bba) A plugin to retrieve EPG data from a mysql database into VDR -------------------------------------------------------------------------------- Update Information: Update to 1.1.23 ---- Update to 1.1.21 ---- Update to 1.1.20 -------------------------------------------------------------------------------- ================================================================================ wingpanel-2.0.1-10.fc25 (FEDORA-2017-f24d06f75c) Stylish top panel -------------------------------------------------------------------------------- Update Information: This update hopefully fixes an issue that prevented the creation of debuginfo packages for wingpanel indicators and the slingshot launcher. -------------------------------------------------------------------------------- ================================================================================ xfce4-terminal-0.8.3-1.fc25 (FEDORA-2017-c9eea52ac5) X Terminal Emulator for the Xfce Desktop environment -------------------------------------------------------------------------------- Update Information: New version with various bugfixes. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1369002 - xfce terminal tabs are huge https://bugzilla.redhat.com/show_bug.cgi?id=1369002 -------------------------------------------------------------------------------- ================================================================================ xfsprogs-4.9.0-1.fc25 (FEDORA-2017-ef5050fde2) Utilities for managing the XFS filesystem -------------------------------------------------------------------------------- Update Information: kernel 4.9.0 is the first to include the _experimental_ rmap/reflink support in xfs. Updating xfsprogs to include this support as well. Again, rmap/reflink support is still _experimental_. -------------------------------------------------------------------------------- ================================================================================ xorg-x11-server-1.19.1-1.fc25 (FEDORA-2017-4e17feecd9) X.Org X11 X server -------------------------------------------------------------------------------- Update Information: xserver 1.19.1 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1384843 - Latest xorg server freezes KDE's plasma desktop https://bugzilla.redhat.com/show_bug.cgi?id=1384843 -------------------------------------------------------------------------------- ================================================================================ yad-0.38.1-1.fc25 (FEDORA-2017-f9369c035d) Display graphical dialogs from shell scripts or command line -------------------------------------------------------------------------------- Update Information: update to yad-0.38.1 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1403631 - yad-0.38.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1403631 -------------------------------------------------------------------------------- _______________________________________________ test mailing list -- test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to test-leave@xxxxxxxxxxxxxxxxxxxxxxx
