The following Fedora 25 Security updates need testing: Age URL 29 https://bodhi.fedoraproject.org/updates/FEDORA-2016-c614315d29 squid-4.0.17-1.fc25 23 https://bodhi.fedoraproject.org/updates/FEDORA-2016-d79ba708cb exim-4.87.1-1.fc25 19 https://bodhi.fedoraproject.org/updates/FEDORA-2016-87dc28b1a0 w3m-0.5.3-27.git20161120.fc25 6 https://bodhi.fedoraproject.org/updates/FEDORA-2017-c756d37779 ikiwiki-3.20170111-1.fc25 6 https://bodhi.fedoraproject.org/updates/FEDORA-2017-e02ec160d8 wordpress-4.7.1-1.fc25 5 https://bodhi.fedoraproject.org/updates/FEDORA-2017-fff6e1af37 fedmsg-0.18.2-1.fc25 2 https://bodhi.fedoraproject.org/updates/FEDORA-2017-d50418723d xemacs-packages-extra-20170114-1.fc25 2 https://bodhi.fedoraproject.org/updates/FEDORA-2017-da50adf63e boomaga-0.8.0-6.git97f52c1.fc25 2 https://bodhi.fedoraproject.org/updates/FEDORA-2017-cc0e0daf0f groovy-2.4.5-10.fc25 2 https://bodhi.fedoraproject.org/updates/FEDORA-2017-c1ae4335e5 pdns-recursor-4.0.4-1.fc25 1 https://bodhi.fedoraproject.org/updates/FEDORA-2017-cb88734094 ansible-2.2.1.0-1.fc25 1 https://bodhi.fedoraproject.org/updates/FEDORA-2017-f87674ad41 ed-1.14.1-1.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-b953d4d3a4 qemu-2.7.1-2.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-cbd5501d31 pdns-4.0.3-1.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-0d9bdbd9dd opus-1.1.3-2.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-b015aa1d33 webkitgtk4-2.14.3-1.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-090a9c11db libnl3-3.2.29-2.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-7c569d396b python-crypto-2.6.1-13.fc25 The following Fedora 25 Critical Path updates have yet to be approved: Age URL 53 https://bodhi.fedoraproject.org/updates/FEDORA-2016-940ecb5c59 wpa_supplicant-2.6-1.fc25 8 https://bodhi.fedoraproject.org/updates/FEDORA-2017-70547b9af8 python-productmd-1.4-1.fc25 5 https://bodhi.fedoraproject.org/updates/FEDORA-2017-78dbca9c0a python-2.7.13-1.fc25 python-docs-2.7.13-1.fc25 2 https://bodhi.fedoraproject.org/updates/FEDORA-2017-fb3ef36678 libinput-1.5.902-1.fc25 1 https://bodhi.fedoraproject.org/updates/FEDORA-2017-94b97e80d7 pyatspi-2.20.3-1.fc25 1 https://bodhi.fedoraproject.org/updates/FEDORA-2017-efa9e9cd40 gtk3-3.22.7-1.fc25 1 https://bodhi.fedoraproject.org/updates/FEDORA-2017-0d6e19964f gdk-pixbuf2-2.36.4-1.fc25 1 https://bodhi.fedoraproject.org/updates/FEDORA-2017-26ef1f6e18 libgtop2-2.34.2-1.fc25 1 https://bodhi.fedoraproject.org/updates/FEDORA-2017-b43f73858a libappstream-glib-0.6.7-2.fc25 gnome-software-3.22.5-1.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-766da1b4ef libxkbcommon-0.7.1-1.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-a3339bdd44 flatpak-0.8.1-1.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-d117622795 pungi-4.1.12-1.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-090a9c11db libnl3-3.2.29-2.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-b015aa1d33 webkitgtk4-2.14.3-1.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-98726ef1ea xorg-x11-drv-evdev-2.10.5-1.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-252ce2f03f kernel-4.9.4-201.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-0d9bdbd9dd opus-1.1.3-2.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-2adfb69272 linux-firmware-20161205-69.git91ddce49.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-cadae3ffee dnf-1.1.10-5.fc25 hawkey-0.6.3-6.1.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-2e72a58eb8 libpsl-0.17.0-1.fc25 publicsuffix-list-20170116-1.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-bd56fddcc6 balsa-2.5.3-1.fc25.2 gpgme-1.8.0-8.fc25 kde-runtime-16.08.3-4.fc25 kdepim-16.08.3-2.fc25 kdepim-addons-16.08.3-2.fc25 kdepim-apps-libs-16.08.3-2.fc25 kdepim4-4.14.10-27.fc25 kdepimlibs-4.14.10-17.fc25 kf5-gpgmepp-16.08.3-3.fc25 kf5-libkleo-16.08.3-2.fc25 kf5-mailcommon-16.08.3-2.fc25 kf5-messagelib-16.08.3-2.fc25 kget-16.08.3-2.fc25 kleopatra-16.08.3-2.fc25 ostree-2016.15-1.fc25.1 trojita-0.7-4.fc25.1 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-e42b513012 firefox-50.1.0-3.fc25 nss-3.28.1-1.2.fc25 nss-softokn-3.28.1-1.0.fc25 nss-util-3.28.1-1.0.fc25 The following builds have been pushed to Fedora 25 updates-testing GeoIP-GeoLite-data-2017.01-1.fc25 abcde-2.8-1.fc25 acpid-2.0.28-2.fc25 aime-8.20170111-1.fc25 atomic-1.15.1-1.fc25 balsa-2.5.3-1.fc25.2 brightnessctl-0.2-1.fc25 cacti-0.8.8h-3.fc25 clang-3.8.1-1.fc25 compiler-rt-3.8.1-1.fc25 converseen-0.9.6-1.fc25 dnf-1.1.10-5.fc25 docker-1.12.6-5.git037a2f5.fc25 doxygen-1.8.13-2.fc25 eclipse-usage-4.4.3-0.1.fc25 erlang-19.2.1-1.fc25 firefox-50.1.0-3.fc25 flatpak-0.8.1-1.fc25 gfal2-python-1.8.5-1.fc25 gnome-shell-extension-pomodoro-0.13.0-1.fc25 golang-github-BurntSushi-toml-0-0.10.git2ceedfe.fc25 golang-github-davecgh-go-spew-0-0.11.git6d21280.fc25 golang-github-emicklei-go-restful-1.1.3-0.11.gitbf50d2b.fc25 golang-github-golang-sys-0-0.9.git8f0908a.fc25 golang-github-kr-text-0-0.10.git6807e77.fc25 golang-github-magiconair-properties-1.7.0-1.fc25 golang-github-rackspace-gophercloud-1.0.0-13.fc25 golang-github-ugorji-go-0-0.8.git5cd0f2b.fc25 golang-github-urfave-cli-1.18.0-0.1.git61f519f.fc25 golang-googlecode-uuid-0-0.11.gitb984ec7.fc25 gomtree-0.3.0-1.fc25 gpgme-1.8.0-8.fc25 gramps-4.2.5-3.fc25 greenisland-0.8.1-2.fc25 hawaii-shell-0.8.0-4.fc25 hawkey-0.6.3-6.1.fc25 holland-1.0.14-2.fc25 kde-runtime-16.08.3-4.fc25 kdepim-16.08.3-2.fc25 kdepim-addons-16.08.3-2.fc25 kdepim-apps-libs-16.08.3-2.fc25 kdepim4-4.14.10-27.fc25 kdepimlibs-4.14.10-17.fc25 kernel-4.9.4-201.fc25 kf5-gpgmepp-16.08.3-3.fc25 kf5-libkleo-16.08.3-2.fc25 kf5-mailcommon-16.08.3-2.fc25 kf5-messagelib-16.08.3-2.fc25 kget-16.08.3-2.fc25 kleopatra-16.08.3-2.fc25 kubernetes-1.5.2-2.fc25 libnl3-3.2.29-2.fc25 libpsl-0.17.0-1.fc25 libreoffice-5.2.4.2-3.fc25 libxkbcommon-0.7.1-1.fc25 lighttpd-1.4.45-1.fc25 linux-firmware-20161205-69.git91ddce49.fc25 lldb-3.8.1-1.fc25 mate-screensaver-1.16.0-2.fc25 mod_auth_mellon-0.12.0-4.fc25 mpop-1.2.6-2.fc25 nagios-plugins-2.1.4-3.fc25 nss-3.28.1-1.2.fc25 nss-softokn-3.28.1-1.0.fc25 nss-util-3.28.1-1.0.fc25 ocid-0-0.8.git2e6070f.fc25 opus-1.1.3-2.fc25 os-autoinst-4.4-13.20170104git84d91e6.fc25 ostree-2016.15-1.fc25.1 pantheon-files-0.3.1-1.fc25 pdns-4.0.3-1.fc25 php-7.0.15-1.fc25 php-aws-sdk3-3.21.0-1.fc25 plee-the-bear-0.7.0-13.fc25 publicsuffix-list-20170116-1.fc25 pungi-4.1.12-1.fc25 pypolicyd-spf-2.0.1-1.fc25 python-crypto-2.6.1-13.fc25 python-ldap3-2.2.0-1.fc25 python-pyvo-0.5.0.1-1.fc25 python-sanic-0.2.0-1.fc25 qemu-2.7.1-2.fc25 qlipper-5.0.0-2.fc25 rednotebook-1.14-2.fc25 texlive-2016-24.20160520.fc25 trojita-0.7-4.fc25.1 tunir-0.16.1-1.fc25 tzdata-2016j-2.fc25 vdr-epg-daemon-1.1.79-1.fc25 wcstools-3.9.4-1.fc25 webfts-2.2.11-1.fc25 webkitgtk4-2.14.3-1.fc25 whohas-0.29.1-5.fc25 wingpanel-indicator-ayatana-2.0.2-2.fc25 wingpanel-indicator-bluetooth-2.0-4.fc25 wingpanel-indicator-datetime-2.0.1-2.fc25 xdg-desktop-portal-0.5-1.fc25 xdg-desktop-portal-gtk-0.5-1.fc25 xorg-x11-drv-evdev-2.10.5-1.fc25 Details about builds: ================================================================================ GeoIP-GeoLite-data-2017.01-1.fc25 (FEDORA-2017-98b6b2a69e) Free GeoLite IP geolocation country database -------------------------------------------------------------------------------- Update Information: Periodic database update. -------------------------------------------------------------------------------- ================================================================================ abcde-2.8-1.fc25 (FEDORA-2017-e33b4f8099) A Better CD Encoder -------------------------------------------------------------------------------- Update Information: Update to latest stable release, suggest more optional supported tools. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1413274 - abcde-2.8 is available https://bugzilla.redhat.com/show_bug.cgi?id=1413274 -------------------------------------------------------------------------------- ================================================================================ acpid-2.0.28-2.fc25 (FEDORA-2017-f83941c948) ACPI Event Daemon -------------------------------------------------------------------------------- Update Information: Fixed obtaining process list in power.sh to avoid SELinux denials -------------------------------------------------------------------------------- References: [ 1 ] Bug #1408457 - power.sh fails to list processes and so will always shut down the computer https://bugzilla.redhat.com/show_bug.cgi?id=1408457 -------------------------------------------------------------------------------- ================================================================================ aime-8.20170111-1.fc25 (FEDORA-2017-e7e0b7ebdb) An application embeddable programming language interpreter -------------------------------------------------------------------------------- Update Information: Updated to new 8.20170111 upstream version, fixes rhbz #1413563 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1413563 - aime-8.20170111 is available https://bugzilla.redhat.com/show_bug.cgi?id=1413563 -------------------------------------------------------------------------------- ================================================================================ atomic-1.15.1-1.fc25 (FEDORA-2017-e9cf7a5748) Tool for managing ProjectAtomic systems and containers -------------------------------------------------------------------------------- Update Information: bump to v1.15.1 -------------------------------------------------------------------------------- ================================================================================ balsa-2.5.3-1.fc25.2 (FEDORA-2017-bd56fddcc6) Mail Client -------------------------------------------------------------------------------- Update Information: Update gpgme to 1.8.0 -------------------------------------------------------------------------------- ================================================================================ brightnessctl-0.2-1.fc25 (FEDORA-2017-75a582c05f) Read and control device brightness -------------------------------------------------------------------------------- Update Information: update -------------------------------------------------------------------------------- References: [ 1 ] Bug #1413787 - brightnessctl-0.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=1413787 -------------------------------------------------------------------------------- ================================================================================ cacti-0.8.8h-3.fc25 (FEDORA-2017-01a21b5785) An rrd based graphing tool -------------------------------------------------------------------------------- Update Information: - Fixes for PHP7 backported from Arch Linux (#1390770) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1390770 - Cacti needs to be ported to PHP 7 https://bugzilla.redhat.com/show_bug.cgi?id=1390770 -------------------------------------------------------------------------------- ================================================================================ clang-3.8.1-1.fc25 (FEDORA-2017-8ed1fcacb1) A C language family front-end for LLVM -------------------------------------------------------------------------------- Update Information: clang and friends 3.8.1 maintenance release -------------------------------------------------------------------------------- ================================================================================ compiler-rt-3.8.1-1.fc25 (FEDORA-2017-8ed1fcacb1) LLVM "compiler-rt" runtime libraries -------------------------------------------------------------------------------- Update Information: clang and friends 3.8.1 maintenance release -------------------------------------------------------------------------------- ================================================================================ converseen-0.9.6-1.fc25 (FEDORA-2017-c4ca7bff04) A batch image conversion tool written in C++ with Qt5 and Magick++ -------------------------------------------------------------------------------- Update Information: - Rebuilt for new upstream version 0.9.6, fixes RHBZ#1414398 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1414398 - converseen-0.9.6 is available https://bugzilla.redhat.com/show_bug.cgi?id=1414398 -------------------------------------------------------------------------------- ================================================================================ dnf-1.1.10-5.fc25 (FEDORA-2017-cadae3ffee) Package manager forked from Yum, using libsolv as a dependency resolver -------------------------------------------------------------------------------- Update Information: Prefer obsoletes -------------------------------------------------------------------------------- References: [ 1 ] Bug #1096506 - promoting 'install a' to 'install b' when b obsoletes a https://bugzilla.redhat.com/show_bug.cgi?id=1096506 -------------------------------------------------------------------------------- ================================================================================ docker-1.12.6-5.git037a2f5.fc25 (FEDORA-2017-b7af66c72a) Automates deployment of containerized applications -------------------------------------------------------------------------------- Update Information: Fix BZ#1413954 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1413954 - Restart policy on-failure does not start container after boot https://bugzilla.redhat.com/show_bug.cgi?id=1413954 -------------------------------------------------------------------------------- ================================================================================ doxygen-1.8.13-2.fc25 (FEDORA-2017-8636cd5bf0) A documentation system for C/C++ -------------------------------------------------------------------------------- Update Information: * Add upstream patch to fix regression in xml processing -------------------------------------------------------------------------------- References: [ 1 ] Bug #1413296 - doxygen crash building libosmium documentaion https://bugzilla.redhat.com/show_bug.cgi?id=1413296 -------------------------------------------------------------------------------- ================================================================================ eclipse-usage-4.4.3-0.1.fc25 (FEDORA-2017-9947c17707) Usage reporting plug-ins for Eclipse -------------------------------------------------------------------------------- Update Information: This package allows opt-in, anonymous, usage reporting for Eclipse. -------------------------------------------------------------------------------- ================================================================================ erlang-19.2.1-1.fc25 (FEDORA-2017-4fe3be8c13) General-purpose programming language and runtime environment -------------------------------------------------------------------------------- Update Information: * Ver. 19.2.1 ---- * Ver. 19.2 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1413784 - erlang-19.2.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1413784 [ 2 ] Bug #1400080 - erlang-19.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=1400080 -------------------------------------------------------------------------------- ================================================================================ firefox-50.1.0-3.fc25 (FEDORA-2017-e42b513012) Mozilla Firefox Web browser -------------------------------------------------------------------------------- Update Information: NSS: * Updates the nss family of packages to upstream NSS 3.28.1. * For details about new functionality and a list of bugs fixed in this release please see the upstream releases notes: https://developer.mozilla.org/en- US/docs/Mozilla/Projects/NSS/NSS_3.28.1_release_notes * In addition to the upstream changes, this build re-enables TLS 1.3. Firefox: * Added patch for nss 3.28.1 (mozbz#1290037) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1381400 - nss-3.28.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1381400 [ 2 ] Bug #1413182 - Respin the Firefox 50 build to allow early testing of NSS 3.28.1 https://bugzilla.redhat.com/show_bug.cgi?id=1413182 -------------------------------------------------------------------------------- ================================================================================ flatpak-0.8.1-1.fc25 (FEDORA-2017-a3339bdd44) Application deployment framework for desktop apps -------------------------------------------------------------------------------- Update Information: Update to 0.8.1 -------------------------------------------------------------------------------- ================================================================================ gfal2-python-1.8.5-1.fc25 (FEDORA-2017-3b84d297dc) Python bindings for gfal 2 -------------------------------------------------------------------------------- Update Information: Update for new upstream release -------------------------------------------------------------------------------- ================================================================================ gnome-shell-extension-pomodoro-0.13.0-1.fc25 (FEDORA-2017-4fcb639c40) A time management utility for GNOME -------------------------------------------------------------------------------- Update Information: Update to latest upstream release. -------------------------------------------------------------------------------- ================================================================================ golang-github-BurntSushi-toml-0-0.10.git2ceedfe.fc25 (FEDORA-2017-5f4646cdb1) TOML parser and encoder for Go with reflection -------------------------------------------------------------------------------- Update Information: Polish the spec file -------------------------------------------------------------------------------- References: [ 1 ] Bug #1247656 - Tracker for golang-github-BurntSushi-toml https://bugzilla.redhat.com/show_bug.cgi?id=1247656 -------------------------------------------------------------------------------- ================================================================================ golang-github-davecgh-go-spew-0-0.11.git6d21280.fc25 (FEDORA-2017-035f9d1d02) Deep pretty printer for Go data structures to aid in debug -------------------------------------------------------------------------------- Update Information: Bump to upstream 6d212800a42e8ab5c146b8ace3490ee17e5225f9 ---- Polish the spec file -------------------------------------------------------------------------------- References: [ 1 ] Bug #1248791 - Tracker for golang-github-davecgh-go-spew https://bugzilla.redhat.com/show_bug.cgi?id=1248791 -------------------------------------------------------------------------------- ================================================================================ golang-github-emicklei-go-restful-1.1.3-0.11.gitbf50d2b.fc25 (FEDORA-2017-5a76f29118) Package for building REST-style Web Services using Google Go -------------------------------------------------------------------------------- Update Information: Bump to upstream bf50d2be18145391aa3d4339b07195807b25a427 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1215626 - Tracker for golang-github-emicklei-go-restful https://bugzilla.redhat.com/show_bug.cgi?id=1215626 -------------------------------------------------------------------------------- ================================================================================ golang-github-golang-sys-0-0.9.git8f0908a.fc25 (FEDORA-2017-40cc68c956) Go packages for low-level interaction with the operating system -------------------------------------------------------------------------------- Update Information: Bump to upstream 8f0908ab3b2457e2e15403d3697c9ef5cb4b57a9 ---- Polish the spec file -------------------------------------------------------------------------------- References: [ 1 ] Bug #1360748 - update for s390x support https://bugzilla.redhat.com/show_bug.cgi?id=1360748 -------------------------------------------------------------------------------- ================================================================================ golang-github-kr-text-0-0.10.git6807e77.fc25 (FEDORA-2017-19450fb8ea) Go package for manipulating paragraphs of text -------------------------------------------------------------------------------- Update Information: Polish the spec file -------------------------------------------------------------------------------- References: [ 1 ] Bug #1248175 - Tracker for golang-github-kr-text https://bugzilla.redhat.com/show_bug.cgi?id=1248175 -------------------------------------------------------------------------------- ================================================================================ golang-github-magiconair-properties-1.7.0-1.fc25 (FEDORA-2017-70b655f966) Java properties scanner for Go -------------------------------------------------------------------------------- Update Information: Bump to upstream 0723e352fa358f9322c938cc2dadda874e9151a9 ---- Polish the spec file -------------------------------------------------------------------------------- References: [ 1 ] Bug #1413067 - Tracker for golang-github-magiconair-properties https://bugzilla.redhat.com/show_bug.cgi?id=1413067 -------------------------------------------------------------------------------- ================================================================================ golang-github-rackspace-gophercloud-1.0.0-13.fc25 (FEDORA-2017-19ab39bf19) The Go SDK for Openstack http://gophercloud.io -------------------------------------------------------------------------------- Update Information: Bump to upstream c90cb954266e1bdd6d1914678fd6909fc5fabbfa -------------------------------------------------------------------------------- References: [ 1 ] Bug #1214774 - Tracker for golang-github-rackspace-gophercloud https://bugzilla.redhat.com/show_bug.cgi?id=1214774 -------------------------------------------------------------------------------- ================================================================================ golang-github-ugorji-go-0-0.8.git5cd0f2b.fc25 (FEDORA-2017-9eb82ef2bf) Idiomatic codec and rpc lib for msgpack, cbor, json, etc -------------------------------------------------------------------------------- Update Information: Bump to upstream 5cd0f2b3b6cca8e3a0a4101821e41a73cb59bed6 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1250516 - Tracker for golang-github-ugorji-go https://bugzilla.redhat.com/show_bug.cgi?id=1250516 -------------------------------------------------------------------------------- ================================================================================ golang-github-urfave-cli-1.18.0-0.1.git61f519f.fc25 (FEDORA-2017-a3c63da65b) A simple, fast, and fun package for building command line apps in Go -------------------------------------------------------------------------------- Update Information: Bump to upstream 61f519fe5e57c2518c03627b194899a105838eba -------------------------------------------------------------------------------- References: [ 1 ] Bug #1354378 - Review Request: golang-github-urfave-cli - A simple, fast, and fun package for building command line apps in Go https://bugzilla.redhat.com/show_bug.cgi?id=1354378 -------------------------------------------------------------------------------- ================================================================================ golang-googlecode-uuid-0-0.11.gitb984ec7.fc25 (FEDORA-2017-b864fd17c9) Generates and inspects UUIDs based on RFC 4122 and DCE 1.1 -------------------------------------------------------------------------------- Update Information: Bump to upstream b984ec7fa9ff9e428bd0cf0abf429384dfbe3e37 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1250523 - Tracker for golang-googlecode-uuid https://bugzilla.redhat.com/show_bug.cgi?id=1250523 -------------------------------------------------------------------------------- ================================================================================ gomtree-0.3.0-1.fc25 (FEDORA-2017-335eac31ec) Go CLI tool for mtree support -------------------------------------------------------------------------------- Update Information: Resolves: 1403037 - bump to v0.3.0 -------------------------------------------------------------------------------- ================================================================================ gpgme-1.8.0-8.fc25 (FEDORA-2017-bd56fddcc6) GnuPG Made Easy - high level crypto API -------------------------------------------------------------------------------- Update Information: Update gpgme to 1.8.0 -------------------------------------------------------------------------------- ================================================================================ gramps-4.2.5-3.fc25 (FEDORA-2017-34dfbd2c86) Genealogical Research and Analysis Management Programming System -------------------------------------------------------------------------------- Update Information: Fixed file/directory ownership. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1413404 - [Packaging] Contents of gramps-common overlap gramps and gramps-webapp https://bugzilla.redhat.com/show_bug.cgi?id=1413404 -------------------------------------------------------------------------------- ================================================================================ greenisland-0.8.1-2.fc25 (FEDORA-2017-647d80262b) QtQuick-based Wayland compositor in library form -------------------------------------------------------------------------------- Update Information: Rebuild for the new Qt build -------------------------------------------------------------------------------- References: [ 1 ] Bug #1413369 - Hawaii desktop qt library mismatch https://bugzilla.redhat.com/show_bug.cgi?id=1413369 -------------------------------------------------------------------------------- ================================================================================ hawaii-shell-0.8.0-4.fc25 (FEDORA-2017-647d80262b) Hawaii shell for desktop, netbook and tablet -------------------------------------------------------------------------------- Update Information: Rebuild for the new Qt build -------------------------------------------------------------------------------- References: [ 1 ] Bug #1413369 - Hawaii desktop qt library mismatch https://bugzilla.redhat.com/show_bug.cgi?id=1413369 -------------------------------------------------------------------------------- ================================================================================ hawkey-0.6.3-6.1.fc25 (FEDORA-2017-cadae3ffee) Library providing simplified C and Python API to libsolv -------------------------------------------------------------------------------- Update Information: Prefer obsoletes -------------------------------------------------------------------------------- References: [ 1 ] Bug #1096506 - promoting 'install a' to 'install b' when b obsoletes a https://bugzilla.redhat.com/show_bug.cgi?id=1096506 -------------------------------------------------------------------------------- ================================================================================ holland-1.0.14-2.fc25 (FEDORA-2017-6a29f0efea) Pluggable Backup Framework -------------------------------------------------------------------------------- Update Information: * Remove example, maatkit, and random subpackages * Move holland.lib.mysql and holland.lib.lvm modules into their own subpackages -------------------------------------------------------------------------------- ================================================================================ kde-runtime-16.08.3-4.fc25 (FEDORA-2017-bd56fddcc6) KDE Runtime -------------------------------------------------------------------------------- Update Information: Update gpgme to 1.8.0 -------------------------------------------------------------------------------- ================================================================================ kdepim-16.08.3-2.fc25 (FEDORA-2017-bd56fddcc6) KDE Personal Information Management suite -------------------------------------------------------------------------------- Update Information: Update gpgme to 1.8.0 -------------------------------------------------------------------------------- ================================================================================ kdepim-addons-16.08.3-2.fc25 (FEDORA-2017-bd56fddcc6) Additional plugins for KDE PIM applications -------------------------------------------------------------------------------- Update Information: Update gpgme to 1.8.0 -------------------------------------------------------------------------------- ================================================================================ kdepim-apps-libs-16.08.3-2.fc25 (FEDORA-2017-bd56fddcc6) KDE PIM common libraries -------------------------------------------------------------------------------- Update Information: Update gpgme to 1.8.0 -------------------------------------------------------------------------------- ================================================================================ kdepim4-4.14.10-27.fc25 (FEDORA-2017-bd56fddcc6) KDE4 PIM (Personal Information Manager) applications -------------------------------------------------------------------------------- Update Information: Update gpgme to 1.8.0 -------------------------------------------------------------------------------- ================================================================================ kdepimlibs-4.14.10-17.fc25 (FEDORA-2017-bd56fddcc6) KDE PIM Libraries -------------------------------------------------------------------------------- Update Information: Update gpgme to 1.8.0 -------------------------------------------------------------------------------- ================================================================================ kernel-4.9.4-201.fc25 (FEDORA-2017-252ce2f03f) The Linux kernel -------------------------------------------------------------------------------- Update Information: The 4.9.4 update contains a number of important fixes across the tree -------------------------------------------------------------------------------- ================================================================================ kf5-gpgmepp-16.08.3-3.fc25 (FEDORA-2017-bd56fddcc6) C++ wrapper and Qt integration for GpgMe library -------------------------------------------------------------------------------- Update Information: Update gpgme to 1.8.0 -------------------------------------------------------------------------------- ================================================================================ kf5-libkleo-16.08.3-2.fc25 (FEDORA-2017-bd56fddcc6) KDE PIM cryptographic library -------------------------------------------------------------------------------- Update Information: Update gpgme to 1.8.0 -------------------------------------------------------------------------------- ================================================================================ kf5-mailcommon-16.08.3-2.fc25 (FEDORA-2017-bd56fddcc6) Mail applications support library -------------------------------------------------------------------------------- Update Information: Update gpgme to 1.8.0 -------------------------------------------------------------------------------- ================================================================================ kf5-messagelib-16.08.3-2.fc25 (FEDORA-2017-bd56fddcc6) KDE Message libraries -------------------------------------------------------------------------------- Update Information: Update gpgme to 1.8.0 -------------------------------------------------------------------------------- ================================================================================ kget-16.08.3-2.fc25 (FEDORA-2017-bd56fddcc6) Download manager -------------------------------------------------------------------------------- Update Information: Update gpgme to 1.8.0 -------------------------------------------------------------------------------- ================================================================================ kleopatra-16.08.3-2.fc25 (FEDORA-2017-bd56fddcc6) KDE certificate manager and unified crypto GUI -------------------------------------------------------------------------------- Update Information: Update gpgme to 1.8.0 -------------------------------------------------------------------------------- ================================================================================ kubernetes-1.5.2-2.fc25 (FEDORA-2017-74d98bce50) Container cluster management -------------------------------------------------------------------------------- Update Information: fix rootScopeNaming generate selfLink ---- Bump to upstream 1.5.1 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1413997 - Regression: Kubernetes objects have invalid selfLink field https://bugzilla.redhat.com/show_bug.cgi?id=1413997 [ 2 ] Bug #1410186 - Build kubernetes 1.5.1 https://bugzilla.redhat.com/show_bug.cgi?id=1410186 [ 3 ] Bug #1409943 - Kubernetes manual pages not generated https://bugzilla.redhat.com/show_bug.cgi?id=1409943 -------------------------------------------------------------------------------- ================================================================================ libnl3-3.2.29-2.fc25 (FEDORA-2017-090a9c11db) Convenience library for kernel netlink sockets -------------------------------------------------------------------------------- Update Information: Update with patches from upstream - check valid input arguments for nla_reserve() (rh #1414305, CVE-2017-0386) - fix crash during SRIOV parsing - lazyly read psched settings - use O_CLOEXEC when creating file descriptors with fopen() -------------------------------------------------------------------------------- References: [ 1 ] Bug #1414304 - CVE-2017-0386 libnl: Privilege escalation due to insufficient data checks in nla_reserve and nla_put https://bugzilla.redhat.com/show_bug.cgi?id=1414304 -------------------------------------------------------------------------------- ================================================================================ libpsl-0.17.0-1.fc25 (FEDORA-2017-2e72a58eb8) C library for the Publix Suffix List -------------------------------------------------------------------------------- Update Information: update to 0.17.0 and psl 20170116 Fixed psl-make-dafsa to use (and require) python3 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1413791 - libpsl-0.17.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1413791 [ 2 ] Bug #1403620 - libpsl-0.16.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1403620 -------------------------------------------------------------------------------- ================================================================================ libreoffice-5.2.4.2-3.fc25 (FEDORA-2017-d20e8f680b) Free Software Productivity Suite -------------------------------------------------------------------------------- Update Information: * fix commonly reported crashes and regressions -------------------------------------------------------------------------------- References: [ 1 ] Bug #1413812 - Libreoffice writer take a STUPID while, while Arabic session and Arabic auto correction https://bugzilla.redhat.com/show_bug.cgi?id=1413812 [ 2 ] Bug #1408500 - gtk3: toolbars borders too distinct vs native gtk3 apps https://bugzilla.redhat.com/show_bug.cgi?id=1408500 [ 3 ] Bug #1409634 - [abrt] libreoffice-core: (anonymous namespace)::signalHandlerFunction(int)(): soffice.bin killed by SIGABRT https://bugzilla.redhat.com/show_bug.cgi?id=1409634 [ 4 ] Bug #1400328 - f24->f25 libreoffice writer: svg images are corrupted https://bugzilla.redhat.com/show_bug.cgi?id=1400328 [ 5 ] Bug #1405521 - [abrt] libreoffice-core: (anonymous namespace)::signalHandlerFunction(): soffice.bin killed by SIGABRT https://bugzilla.redhat.com/show_bug.cgi?id=1405521 -------------------------------------------------------------------------------- ================================================================================ libxkbcommon-0.7.1-1.fc25 (FEDORA-2017-766da1b4ef) X.Org X11 XKB parsing library -------------------------------------------------------------------------------- Update Information: xkbcommon 0.7.1, fixes a locale issue with xkb_keysym_from_name() -------------------------------------------------------------------------------- References: [ 1 ] Bug #1414493 - Turkish Q Keyboard special characters does not work in Wayland session https://bugzilla.redhat.com/show_bug.cgi?id=1414493 -------------------------------------------------------------------------------- ================================================================================ lighttpd-1.4.45-1.fc25 (FEDORA-2017-19a134b3d2) Lightning fast webserver with light system requirements -------------------------------------------------------------------------------- Update Information: 1.4.45 https://www.lighttpd.net/2017/1/14/1.4.45/ -------------------------------------------------------------------------------- References: [ 1 ] Bug #1413278 - lighttpd-1.4.45 is available https://bugzilla.redhat.com/show_bug.cgi?id=1413278 -------------------------------------------------------------------------------- ================================================================================ linux-firmware-20161205-69.git91ddce49.fc25 (FEDORA-2017-2adfb69272) Firmware files used by the Linux kernel -------------------------------------------------------------------------------- Update Information: Update to latest upstream git snapshot. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1413488 - Missing firmware amdgpu/tonga_k_smc.bin https://bugzilla.redhat.com/show_bug.cgi?id=1413488 -------------------------------------------------------------------------------- ================================================================================ lldb-3.8.1-1.fc25 (FEDORA-2017-8ed1fcacb1) Next generation high-performance debugger -------------------------------------------------------------------------------- Update Information: clang and friends 3.8.1 maintenance release -------------------------------------------------------------------------------- ================================================================================ mate-screensaver-1.16.0-2.fc25 (FEDORA-2017-ea54cba2e2) MATE Screensaver -------------------------------------------------------------------------------- Update Information: - fix for blankscreen issue - fix rhbz (#1397900) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1397900 - transparent lock screen on multiple/single screens with blank screensaver theme https://bugzilla.redhat.com/show_bug.cgi?id=1397900 -------------------------------------------------------------------------------- ================================================================================ mod_auth_mellon-0.12.0-4.fc25 (FEDORA-2017-d1e7da20dd) A SAML 2.0 authentication module for the Apache Httpd Server -------------------------------------------------------------------------------- Update Information: Fixes incorrect Content-Type header in ECP PAOS response, should be application/vnd.paos+xml -------------------------------------------------------------------------------- References: [ 1 ] Bug #1414019 - Incorrect Content-Type header in ECP PAOS response, should be application/vnd.paos+xml https://bugzilla.redhat.com/show_bug.cgi?id=1414019 -------------------------------------------------------------------------------- ================================================================================ mpop-1.2.6-2.fc25 (FEDORA-2017-743ffdf142) A client for receiving mail from POP3 mailboxes -------------------------------------------------------------------------------- Update Information: Update summary (rhbz#1399621) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1399621 - Typo in Summary https://bugzilla.redhat.com/show_bug.cgi?id=1399621 -------------------------------------------------------------------------------- ================================================================================ nagios-plugins-2.1.4-3.fc25 (FEDORA-2017-54fcdfe5a7) Host/service/network monitoring program plugins for Nagios -------------------------------------------------------------------------------- Update Information: Put in patch to fix check_file_age -------------------------------------------------------------------------------- References: [ 1 ] Bug #1410039 - check_file_age is broken in recent update https://bugzilla.redhat.com/show_bug.cgi?id=1410039 -------------------------------------------------------------------------------- ================================================================================ nss-3.28.1-1.2.fc25 (FEDORA-2017-e42b513012) Network Security Services -------------------------------------------------------------------------------- Update Information: NSS: * Updates the nss family of packages to upstream NSS 3.28.1. * For details about new functionality and a list of bugs fixed in this release please see the upstream releases notes: https://developer.mozilla.org/en- US/docs/Mozilla/Projects/NSS/NSS_3.28.1_release_notes * In addition to the upstream changes, this build re-enables TLS 1.3. Firefox: * Added patch for nss 3.28.1 (mozbz#1290037) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1381400 - nss-3.28.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1381400 [ 2 ] Bug #1413182 - Respin the Firefox 50 build to allow early testing of NSS 3.28.1 https://bugzilla.redhat.com/show_bug.cgi?id=1413182 -------------------------------------------------------------------------------- ================================================================================ nss-softokn-3.28.1-1.0.fc25 (FEDORA-2017-e42b513012) Network Security Services Softoken Module -------------------------------------------------------------------------------- Update Information: NSS: * Updates the nss family of packages to upstream NSS 3.28.1. * For details about new functionality and a list of bugs fixed in this release please see the upstream releases notes: https://developer.mozilla.org/en- US/docs/Mozilla/Projects/NSS/NSS_3.28.1_release_notes * In addition to the upstream changes, this build re-enables TLS 1.3. Firefox: * Added patch for nss 3.28.1 (mozbz#1290037) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1381400 - nss-3.28.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1381400 [ 2 ] Bug #1413182 - Respin the Firefox 50 build to allow early testing of NSS 3.28.1 https://bugzilla.redhat.com/show_bug.cgi?id=1413182 -------------------------------------------------------------------------------- ================================================================================ nss-util-3.28.1-1.0.fc25 (FEDORA-2017-e42b513012) Network Security Services Utilities Library -------------------------------------------------------------------------------- Update Information: NSS: * Updates the nss family of packages to upstream NSS 3.28.1. * For details about new functionality and a list of bugs fixed in this release please see the upstream releases notes: https://developer.mozilla.org/en- US/docs/Mozilla/Projects/NSS/NSS_3.28.1_release_notes * In addition to the upstream changes, this build re-enables TLS 1.3. Firefox: * Added patch for nss 3.28.1 (mozbz#1290037) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1381400 - nss-3.28.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1381400 [ 2 ] Bug #1413182 - Respin the Firefox 50 build to allow early testing of NSS 3.28.1 https://bugzilla.redhat.com/show_bug.cgi?id=1413182 -------------------------------------------------------------------------------- ================================================================================ ocid-0-0.8.git2e6070f.fc25 (FEDORA-2017-d4f51b1502) OCI-based implementation of Kubernetes Container Runtime Interface -------------------------------------------------------------------------------- Update Information: packaging changes from Nalin Dahyabhai <nalin@xxxxxxxxxx> ---- Switch locate to /var/lib/containers for images ---- Resolves: #1392977 - first upload to Fedora -------------------------------------------------------------------------------- References: [ 1 ] Bug #1392977 - Review Request: ocid - OCI-based implementation of Kubernetes Container Runtime Interface https://bugzilla.redhat.com/show_bug.cgi?id=1392977 -------------------------------------------------------------------------------- ================================================================================ opus-1.1.3-2.fc25 (FEDORA-2017-0d9bdbd9dd) An audio codec for use in low-delay speech and audio communication -------------------------------------------------------------------------------- Update Information: Security fix for CVE-2017-0381 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1413604 - CVE-2017-0381 opus: Memory corruption during media file and data processing https://bugzilla.redhat.com/show_bug.cgi?id=1413604 -------------------------------------------------------------------------------- ================================================================================ os-autoinst-4.4-13.20170104git84d91e6.fc25 (FEDORA-2017-c4a36c6859) OS-level test automation -------------------------------------------------------------------------------- Update Information: This update fixes a bug in the previous os-autoinst package which prevented ARM tests from running correctly (because a qemu command line parameter was specified twice, which qemu didn't like). -------------------------------------------------------------------------------- ================================================================================ ostree-2016.15-1.fc25.1 (FEDORA-2017-bd56fddcc6) Tool for managing bootable, immutable filesystem trees -------------------------------------------------------------------------------- Update Information: Update gpgme to 1.8.0 -------------------------------------------------------------------------------- ================================================================================ pantheon-files-0.3.1-1.fc25 (FEDORA-2017-bf9708df90) Pantheon file manager -------------------------------------------------------------------------------- Update Information: Update to version 0.3.1. This includes several bug fixes, general usability improvements and translation updates. -------------------------------------------------------------------------------- ================================================================================ pdns-4.0.3-1.fc25 (FEDORA-2017-cbd5501d31) A modern, advanced and high performance authoritative-only nameserver -------------------------------------------------------------------------------- Update Information: - Update to 4.0.3 - Security fix for CVE-2016-2120, CVE-2016-7068, CVE-2016-7072, CVE-2016-7073, CVE-2016-7074 Release notes 4.0.2: https://doc.powerdns.com/md/changelog/#powerdns-authoritative-server-402 Release notes 4.0.3: https://doc.powerdns.com/md/changelog/#powerdns-authoritative- server-403 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1413517 - CVE-2016-2120 CVE-2016-7068 CVE-2016-7072 CVE-2016-7073 CVE-2016-7074 pdns: Multiple security vulnerabilities fixed in latest versions https://bugzilla.redhat.com/show_bug.cgi?id=1413517 -------------------------------------------------------------------------------- ================================================================================ php-7.0.15-1.fc25 (FEDORA-2017-f4be0df5f9) PHP scripting language for creating dynamic web sites -------------------------------------------------------------------------------- Update Information: **PHP version 7.0.15** (19 Jan 2017) **Core:** * Fixed bug php#73792 (invalid foreach loop hangs script). (Dmitry) * Fixed bug php#73663 ("Invalid opcode 65/16/8" occurs with a variable created with list()). (Laruence) * Fixed bug php#73585 (Logging of "Internal Zend error - Missing class information" missing class name). (Laruence) * Fixed bug php#73753 (unserialized array pointer not advancing). (David Walker) * Fixed bug php#73825 (Heap out of bounds read on unserialize in finish_nested_data()). (Stas) * Fixed bug php#73831 (NULL Pointer Dereference while unserialize php object). (Stas) * Fixed bug php#73832 (Use of uninitialized memory in unserialize()). (Stas) * Fixed bug php#73092 (Unserialize use-after-free when resizing object's properties hash table). (Nikita) * Fixed bug php#69425 (Use After Free in unserialize()). (Nikita) * Fixed bug php#72731 (Type Confusion in Object Deserialization). (Nikita) **DOM:** * Fixed bug php#67474 (getElementsByTagNameNS filter on default ns). (aboks) **EXIF:** * Bug bug php#73737 (FPE when parsing a tag format). (Stas) **GD:** * Fixed bug php#73869 (Signed Integer Overflow gd_io.c). (cmb) * Fixed bug php#73868 (DOS vulnerability in gdImageCreateFromGd2Ctx()). (cmb) **GMP:** * Fixed bug php#70513 (GMP Deserialization Type Confusion Vulnerability). (Nikita) **Mysqli:** * Fixed bug php#73462 (Persistent connections don't set $connect_errno). (darkain) **Mysqlnd:** * Fixed issue with decoding BIT columns when having more than one rows in the result set. 7.0+ problem. (Andrey) * Fixed bug php#73800 (sporadic segfault with MYSQLI_OPT_INT_AND_FLOAT_NATIVE). (vanviegen) **PCRE:** * Fixed bug php#73612 (preg_*() may leak memory). (cmb) **PDO_Firebird:** * Fixed bug php#72931 (PDO_FIREBIRD with Firebird 3.0 not work on returning statement). (Dorin Marcoci) **Phar:** * Fixed bug php#73773 (Seg fault when loading hostile phar). (Stas) * Fixed bug php#73768 (Memory corruption when loading hostile phar). (Stas) * Fixed bug php#73764 (Crash while loading hostile phar archive). (Stas) **Phpdbg:** * Fixed bug php#73615 (phpdbg without option never load .phpdbginit at startup). (Bob) * Fixed issue getting executable lines from custom wrappers. (Bob) * Fixed bug php#73704 (phpdbg shows the wrong line in files with shebang). (Bob) **Reflection:** * Fixed bug php#46103 (ReflectionObject memory leak). (Nikita) **Streams:** * Fixed bug php#73586 (php_user_filter::$stream is not set to the stream the filter is working on). (Dmitry) **SQLite3:** * Reverted fix for bug php#73530 (Unsetting result set may reset other result set). (cmb) **Standard:** * Fixed bug php#73594 (dns_get_record does not populate $additional out parameter). (Bruce Weirdan) * Fixed bug php#70213 (Unserialize context shared on double class lookup). (Taoguang Chen) * Fixed bug php#73154 (serialize object with __sleep function crash). (Nikita) * Fixed bug php#70490 (get_browser function is very slow). (Nikita) * Fixed bug php#73265 (Loading browscap.ini at startup causes high memory usage). (Nikita) * Fixed bug php#31875 (get_defined_functions additional param to exclude disabled functions). (willianveiga) **Zlib:** * Fixed bug php#73373 (deflate_add does not verify that output was not truncated). (Matt Bonneau) -------------------------------------------------------------------------------- ================================================================================ php-aws-sdk3-3.21.0-1.fc25 (FEDORA-2017-a00b71afae) Amazon Web Services framework for PHP -------------------------------------------------------------------------------- Update Information: ## 3.21.0 - 2017-01-17 * `Aws\Credentials` - Added support for AssumeRoleCredentialProvider and support for source ini credentials from ./aws/config file in defaultProvider * `Aws\DynamoDb` - Added tagging Support for Amazon DynamoDB Tables and Indexes * `Aws\Route53` - Added support for ca- central-1 and eu-west-2 enum values in CloudWatchRegion enum ## 3.20.16 - 2017-01-16 * Fix manifest ## 3.20.15 - 2017-01-16 * `Aws\Cur` - Added Support for new service `AWS CostAndUsageReport` ## 3.20.14 - 2017-01-16 * `Aws\Config` - Updated the models to include InvalidNextTokenException in API response ## 3.20.13 - 2017-01-04 * `Aws\Config` - Added support for customers to use/write rules based on OversizedConfigurationItemChangeNotification mesage type. * `Aws\MarketplaceAnalytics` - Added support for data set disbursed_amount_by_instance_hours, with historical data available starting 2012-09-04 ## 3.20.12 - 2016-12-29 * `Aws\CodeDeploy` - Added support for IAM Session Arns in addition to IAM User Arns for on premise host authentication. * `Aws\Ecs` - Added the ability to customize the placement of tasks on container instances. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1409217 - php-aws-sdk3-3.21.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1409217 -------------------------------------------------------------------------------- ================================================================================ plee-the-bear-0.7.0-13.fc25 (FEDORA-2017-f8436310d2) 2D platform game -------------------------------------------------------------------------------- Update Information: * Mon Jan 16 2017 Martin Gansser <martinkg@xxxxxxxxxxxxxxxxx> - 0.7.0-13 - set -DBEAR_ENGINE_LIBRARY_DIRECTORY=%%{_libdir} to global %%libdir - set -DBEAR_ENGINE_INSTALL_LIBRARY_DIR=%%{_lib} to global %%lib - set -DPTB_LIBRARY_PATH=%%{_libdir} to global %%libdir - set -DPTB_INSTALL_CUSTOM_LIBRARY_DIR=%%{_lib} global %%lib - set -DPTB_LIBRARY_OUTPUT_PATH=%%{_libdir} to global %%libdir - add BR docbook-utils * Fri Dec 23 2016 Martin Gansser <martinkg@xxxxxxxxxxxxxxxxx> - 0.7.0-12 - add ptb-CMakeLists.patch - add ptb-sequencer-gcc6.patch - add ptb-docbook2man.patch * Thu Dec 22 2016 Martin Gansser <martinkg@xxxxxxxxxxxxxxxxx> - 0.7.0-11 - unbundle bear - add BR bear-devel - set -DBEAR_ENGINE_LIBRARY_DIRECTORY=%%{_libdir}/bear - set -DBEAR_ENGINE_INSTALL_LIBRARY_DIR=%%{_lib}/bear - set -DBEAR_ROOT_DIRECTORY=%%{_includedir}/bear - delete add_subdirectory( bear ) in CMakeLists.txt - correct CMAKE_MODULE_PATH in CMakeLists.txt - correct BEAR_ROOT_DIRECTORY in CMakeLists.txt - correct PTB_LIBRARY_PATH in plee-the- bear/launcher/src/CMakeLists.txt - porting issue https://gcc.gnu.org/gcc-6/porting_to.html in plee-the-bear/lib/src/ptb/item /mini-game/code/sequencer.cpp - convert docbook2man filename taken from .sgml file to lowercase - spec file cleanup -------------------------------------------------------------------------------- References: [ 1 ] Bug #1406787 - unbundle bear from plee-the-bear https://bugzilla.redhat.com/show_bug.cgi?id=1406787 -------------------------------------------------------------------------------- ================================================================================ publicsuffix-list-20170116-1.fc25 (FEDORA-2017-2e72a58eb8) Cross-vendor public domain suffix database -------------------------------------------------------------------------------- Update Information: update to 0.17.0 and psl 20170116 Fixed psl-make-dafsa to use (and require) python3 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1413791 - libpsl-0.17.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1413791 [ 2 ] Bug #1403620 - libpsl-0.16.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1403620 -------------------------------------------------------------------------------- ================================================================================ pungi-4.1.12-1.fc25 (FEDORA-2017-d117622795) Distribution compose tool -------------------------------------------------------------------------------- Update Information: New upstream release. Biggest changes are: * There is now a subpackage pungi- utils with some extra tools. The hook for sending notifications to fedmsg has been moved to this subpackage. * The command line arguments for `pungi-make- ostree` have been changed a little. * We now have support for handling non- blocking deliverables at per-arch granularity. * Noarch debuginfo packages are now correctly included in the compose. * Ostree installer images have a type in metadata listed as `dvd-ostree` to distinguish them from other images. * It is now possible to add extra RPM repos when building the ostree installer. * All temporary files are now placed into the work/ subdirectory to reduce chance of machine running out of disk space due to full /tmp. And a lot of other small fixes. ---- Changes for ostree: - Allow using extra repos to get packages for composing OSTree repository (qwan) - Capture all lorax logs from generating installer. (lsedlar) - Allow adding versioning metadata. (qwan) - New option to enable generating ostree summary file. (qwan) - Use the `write-commitid-to` feature rather than parsing ostree logs. (puiterwijk) Other improvements: - Faster multilib blacklist processing in depsolving (dmach, lsedlar) - Generating latest symlink can now be skipped. (qwan) - A notification is sent when compose fails to start. (lsedlar) Backport patches for ostree installer: - Expose lorax's `rootfs-size` argument. (walters) - use `dvd-ostree` type in metadata. (lsedlar) -------------------------------------------------------------------------------- ================================================================================ pypolicyd-spf-2.0.1-1.fc25 (FEDORA-2017-ec45fbc96e) SPF Policy Server for Postfix (Python implementation) -------------------------------------------------------------------------------- Update Information: Pypolicyd-spf 2.0.0 is released. The major version was bumped to 2 due to some incompatibilities with previous releases. Please review the CHANGES file and the updated documentation for details. ---- Run under python3. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1288718 - policyd-spf issuing traceback on emails from bilbo2.documentfoundation.org https://bugzilla.redhat.com/show_bug.cgi?id=1288718 [ 2 ] Bug #1374925 - why is pypolicyd-spf on F24 still using python2 https://bugzilla.redhat.com/show_bug.cgi?id=1374925 -------------------------------------------------------------------------------- ================================================================================ python-crypto-2.6.1-13.fc25 (FEDORA-2017-7c569d396b) Cryptography library for Python -------------------------------------------------------------------------------- Update Information: A heap-buffer overflow vulnerability was discovered in pycrypto leading to arbitrary code execution. All users of pycrypto's AES module that allow the mode of operation to be specified by an attacker, check for ECB explicitly and create the objects without specifying an IV are vulnerable to this issue. This is CVE-2013-7459. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1409754 - CVE-2013-7459 pycrypto: Heap-buffer overflow in ALGobject structure https://bugzilla.redhat.com/show_bug.cgi?id=1409754 -------------------------------------------------------------------------------- ================================================================================ python-ldap3-2.2.0-1.fc25 (FEDORA-2017-cfe5601196) Strictly RFC 4511 conforming LDAP V3 pure Python client -------------------------------------------------------------------------------- Update Information: Update to 2.2.0 -------------------------------------------------------------------------------- ================================================================================ python-pyvo-0.5.0.1-1.fc25 (FEDORA-2017-444bd3db11) Access to remote data and services of the Virtual observatory (VO) using Python -------------------------------------------------------------------------------- Update Information: new version -------------------------------------------------------------------------------- ================================================================================ python-sanic-0.2.0-1.fc25 (FEDORA-2017-429b0e5c9e) Microframework based on uvloop, httptools, and learnings of flask -------------------------------------------------------------------------------- Update Information: Update to 0.2.0 -------------------------------------------------------------------------------- ================================================================================ qemu-2.7.1-2.fc25 (FEDORA-2017-b953d4d3a4) QEMU is a FAST! processor emulator -------------------------------------------------------------------------------- Update Information: * CVE-2016-6836: vmxnet: Information leakage in vmxnet3_complete_packet (bz #1366370) * CVE-2016-7909: pcnet: Infinite loop in pcnet_rdra_addr (bz #1381196) * CVE-2016-7994: virtio-gpu: memory leak in resource_create_2d (bz #1382667) * CVE-2016-8577: 9pfs: host memory leakage in v9fs_read (bz #1383286) * CVE-2016-8578: 9pfs: potential NULL dereferencein 9pfs routines (bz #1383292) * CVE-2016-8668: OOB buffer access in rocker switch emulation (bz #1384898) * CVE-2016-8669: divide by zero error in serial_update_parameters (bz #1384911) * CVE-2016-8909: intel-hda: infinite loop in dma buffer stream (bz #1388053) * Infinite loop vulnerability in a9_gtimer_update (bz #1388300) * CVE-2016-9101: eepro100: memory leakage at device unplug (bz #1389539) * CVE-2016-9103: 9pfs: information leakage via xattr (bz #1389643) * CVE-2016-9102: 9pfs: memory leakage when creating extended attribute (bz #1389551) * CVE-2016-9104: 9pfs: integer overflow leading to OOB access (bz #1389687) * CVE-2016-9105: 9pfs: memory leakage in v9fs_link (bz #1389704) * CVE-2016-9106: 9pfs: memory leakage in v9fs_write (bz #1389713) * CVE-2016-9381: xen: incautious about shared ring processing (bz #1397385) * CVE-2016-9921: Divide by zero vulnerability in cirrus_do_copy (bz #1399054) * CVE-2016-9776: infinite loop while receiving data in mcf_fec_receive (bz #1400830) * CVE-2016-9845: information leakage in virgl_cmd_get_capset_info (bz #1402247) * CVE-2016-9846: virtio-gpu: memory leakage while updating cursor data (bz #1402258) * CVE-2016-9907: usbredir: memory leakage when destroying redirector (bz #1402266) * CVE-2016-9911: usb: ehci: memory leakage in ehci_init_transfer (bz #1402273) * CVE-2016-9913: 9pfs: memory leakage via proxy/handle callbacks (bz #1402277) * CVE-2016-10028: virtio-gpu-3d: OOB access while reading virgl capabilities (bz #1406368) * CVE-2016-9908: virtio-gpu: information leakage in virgl_cmd_get_capset (bz #1402263) * CVE-2016-9912: virtio-gpu: memory leakage when destroying gpu resource (bz #1402285) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1366369 - CVE-2016-6836 Qemu: net: vmxnet: Information leakage in vmxnet3_complete_packet https://bugzilla.redhat.com/show_bug.cgi?id=1366369 [ 2 ] Bug #1329538 - CVE-2016-7909 Qemu: net: pcnet: infinite loop in pcnet_rdra_addr() https://bugzilla.redhat.com/show_bug.cgi?id=1329538 [ 3 ] Bug #1382666 - CVE-2016-7994 Qemu: virtio-gpu: memory leak in virtio_gpu_resource_create_2d https://bugzilla.redhat.com/show_bug.cgi?id=1382666 [ 4 ] Bug #1383285 - CVE-2016-8577 Qemu: 9pfs: host memory leakage in v9fs_read https://bugzilla.redhat.com/show_bug.cgi?id=1383285 [ 5 ] Bug #1383291 - CVE-2016-8578 Qemu: 9pfs: potential NULL dereferencein 9pfs routines https://bugzilla.redhat.com/show_bug.cgi?id=1383291 [ 6 ] Bug #1384896 - CVE-2016-8668 Qemu: net: OOB buffer access in rocker switch emulation https://bugzilla.redhat.com/show_bug.cgi?id=1384896 [ 7 ] Bug #1384909 - CVE-2016-8669 Qemu: char: divide by zero error in serial_update_parameters https://bugzilla.redhat.com/show_bug.cgi?id=1384909 [ 8 ] Bug #1388052 - CVE-2016-8909 Qemu: audio: intel-hda: infinite loop in processing dma buffer stream https://bugzilla.redhat.com/show_bug.cgi?id=1388052 [ 9 ] Bug #1389538 - CVE-2016-9101 Qemu: net: eepro100 memory leakage at device unplug https://bugzilla.redhat.com/show_bug.cgi?id=1389538 [ 10 ] Bug #1389642 - CVE-2016-9103 Qemu: 9pfs: information leakage via xattr https://bugzilla.redhat.com/show_bug.cgi?id=1389642 [ 11 ] Bug #1389550 - CVE-2016-9102 Qemu: 9pfs: memory leakage when creating extended attribute https://bugzilla.redhat.com/show_bug.cgi?id=1389550 [ 12 ] Bug #1389686 - CVE-2016-9104 Qemu: 9pfs: integer overflow leading to OOB access https://bugzilla.redhat.com/show_bug.cgi?id=1389686 [ 13 ] Bug #1389702 - CVE-2016-9105 Qemu: 9pfs: memory leakage in v9fs_link https://bugzilla.redhat.com/show_bug.cgi?id=1389702 [ 14 ] Bug #1389712 - CVE-2016-9106 Qemu: 9pfs: memory leakage in v9fs_write https://bugzilla.redhat.com/show_bug.cgi?id=1389712 [ 15 ] Bug #1392938 - CVE-2016-9381 xsa197 xen: qemu incautious about shared ring processing (XSA-197) https://bugzilla.redhat.com/show_bug.cgi?id=1392938 [ 16 ] Bug #1334398 - CVE-2016-9921 CVE-2016-9922 Qemu: display: cirrus_vga: a divide by zero in cirrus_do_copy https://bugzilla.redhat.com/show_bug.cgi?id=1334398 [ 17 ] Bug #1400829 - CVE-2016-9776 Qemu: net: mcf_fec: infinite loop while receiving data in mcf_fec_receive https://bugzilla.redhat.com/show_bug.cgi?id=1400829 [ 18 ] Bug #1402245 - CVE-2016-9845 Qemu: display: virtio-gpu-3d: information leakage in virgl_cmd_get_capset_info https://bugzilla.redhat.com/show_bug.cgi?id=1402245 [ 19 ] Bug #1402255 - CVE-2016-9846 Qemu: display: virtio-gpu: memory leakage while updating cursor data https://bugzilla.redhat.com/show_bug.cgi?id=1402255 [ 20 ] Bug #1402265 - CVE-2016-9907 Qemu: usb: redirector: memory leakage when destroying redirector https://bugzilla.redhat.com/show_bug.cgi?id=1402265 [ 21 ] Bug #1402272 - CVE-2016-9911 Qemu: usb: ehci: memory leakage in ehci_init_transfer https://bugzilla.redhat.com/show_bug.cgi?id=1402272 [ 22 ] Bug #1402276 - CVE-2016-9913 CVE-2016-9914 CVE-2016-9915 CVE-2016-9916 Qemu: 9pfs: memory leakage via proxy/handle callbacks https://bugzilla.redhat.com/show_bug.cgi?id=1402276 [ 23 ] Bug #1406367 - CVE-2016-10028 Qemu: display: virtio-gpu-3d: OOB access while reading virgl capabilities https://bugzilla.redhat.com/show_bug.cgi?id=1406367 [ 24 ] Bug #1402262 - CVE-2016-9908 Qemu: display: virtio-gpu: information leakage in virgl_cmd_get_capset https://bugzilla.redhat.com/show_bug.cgi?id=1402262 [ 25 ] Bug #1402284 - CVE-2016-9912 Qemu: display: virtio-gpu: memory leakage when destroying gpu resource https://bugzilla.redhat.com/show_bug.cgi?id=1402284 -------------------------------------------------------------------------------- ================================================================================ qlipper-5.0.0-2.fc25 (FEDORA-2017-b0e43e8af6) Lightweight clipboard history -------------------------------------------------------------------------------- Update Information: Fixed segfault issue #1402994 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1402994 - [abrt] qlipper: QBasicAtomicInt::ref(): qlipper killed by SIGSEGV https://bugzilla.redhat.com/show_bug.cgi?id=1402994 -------------------------------------------------------------------------------- ================================================================================ rednotebook-1.14-2.fc25 (FEDORA-2017-1f2c5e4f90) Daily journal with calendar, templates and keyword searching -------------------------------------------------------------------------------- Update Information: Update docs -------------------------------------------------------------------------------- ================================================================================ texlive-2016-24.20160520.fc25 (FEDORA-2017-edf549ecaf) TeX formatting system -------------------------------------------------------------------------------- Update Information: * do not make system dir symlink for ebgaramond (bz1410983) * add Requires: texlive-lua-alt-getopt for texlive-luaotfload-bin (bz1405465) * add Requires: texlive-graphics-cfg for texlive-xcolor -------------------------------------------------------------------------------- ChangeLog: -------------------------------------------------------------------------------- References: [ 1 ] Bug #1405465 - Missing dependency texlive-lua-alt-getopt for package texlive-luaotfload-bin https://bugzilla.redhat.com/show_bug.cgi?id=1405465 [ 2 ] Bug #1410983 - texlive-ebgaramond contains historical flags (i.e., flags obsolete for centuries) as Unicode flag emoji https://bugzilla.redhat.com/show_bug.cgi?id=1410983 -------------------------------------------------------------------------------- ================================================================================ trojita-0.7-4.fc25.1 (FEDORA-2017-bd56fddcc6) IMAP e-mail client -------------------------------------------------------------------------------- Update Information: Update gpgme to 1.8.0 -------------------------------------------------------------------------------- ================================================================================ tunir-0.16.1-1.fc25 (FEDORA-2017-4696d793f9) An ultra light testing system -------------------------------------------------------------------------------- Update Information: Updates to bugfix release 0.16.1 -------------------------------------------------------------------------------- ================================================================================ tzdata-2016j-2.fc25 (FEDORA-2017-9a4b55a830) Timezone data -------------------------------------------------------------------------------- Update Information: Add the zone1970.tab file to the list of files to install. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1414518 - tzselect: time zone files are not set up correctly https://bugzilla.redhat.com/show_bug.cgi?id=1414518 -------------------------------------------------------------------------------- ================================================================================ vdr-epg-daemon-1.1.79-1.fc25 (FEDORA-2017-16c4484276) A daemon to download EPG data from internet and manage it in a mysql database -------------------------------------------------------------------------------- Update Information: Update to 1.1.79 ---- Update to 1.1.78 ---- Update to 1.1.75 -------------------------------------------------------------------------------- ================================================================================ wcstools-3.9.4-1.fc25 (FEDORA-2017-3e3496a088) Software utilities to display and manipulate the WCS of a FITS image -------------------------------------------------------------------------------- Update Information: Unretire wcstools package and update to latest available release. -------------------------------------------------------------------------------- ================================================================================ webfts-2.2.11-1.fc25 (FEDORA-2017-80c9e172ce) Web Interface for FTS -------------------------------------------------------------------------------- Update Information: * new upstream release -------------------------------------------------------------------------------- ================================================================================ webkitgtk4-2.14.3-1.fc25 (FEDORA-2017-b015aa1d33) GTK+ Web content engine library -------------------------------------------------------------------------------- Update Information: This update addresses the following vulnerabilities: * [CVE-2016-7656](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7656), [CVE-2016-7635](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7635), [CVE-2016-7654](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7654), [CVE-2016-7639](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7639), [CVE-2016-7645](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7645), [CVE-2016-7652](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7652), [CVE-2016-7641](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7641), [CVE-2016-7632](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7632), [CVE-2016-7599](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7599), [CVE-2016-7592](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7592), [CVE-2016-7589](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7589), [CVE-2016-7623](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7623), [CVE-2016-7586](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-7586) Additional fixes: * Create GLX OpenGL contexts using version 3.2 (core profile) when available to reduce the memory consumption on Mesa based drivers. * Improve memory pressure handler to reduce the CPU usage on memory pressure situations. * Fix a regression in WebKitWebView title notify signal emission that caused the signal to be emitted multiple times. * Fix high CPU usage in the web process loading hyphenation dictionaries. More user agent string improvements to improve compatibility with several websites. * Fix web process crash when closing the web view in X11. * Fix the build with OpenGL ES2 enabled. * Fix several crashes and rendering issues. Translation updates: * German. -------------------------------------------------------------------------------- ================================================================================ whohas-0.29.1-5.fc25 (FEDORA-2017-afc9de2c17) Command line tool for query package lists -------------------------------------------------------------------------------- Update Information: Fix requirements (rhbz#1412449) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1412449 - Missing perl deps https://bugzilla.redhat.com/show_bug.cgi?id=1412449 -------------------------------------------------------------------------------- ================================================================================ wingpanel-indicator-ayatana-2.0.2-2.fc25 (FEDORA-2017-2c3f35b00e) Ayatana Indicator for wingpanel -------------------------------------------------------------------------------- Update Information: This is a new package for f25 proper. It was previously available via my elementary-stable COPR repository. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1414147 - Review Request: wingpanel-indicator-ayatana - Ayatana Indicator for wingpanel https://bugzilla.redhat.com/show_bug.cgi?id=1414147 -------------------------------------------------------------------------------- ================================================================================ wingpanel-indicator-bluetooth-2.0-4.fc25 (FEDORA-2017-6c4787482f) Bluetooth Indicator for wingpanel -------------------------------------------------------------------------------- Update Information: This is a new package for f25 proper. It was previously available via my elementary-stable COPR repository. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1414141 - Review Request: wingpanel-indicator-bluetooth - Bluetooth Indicator for wingpanel https://bugzilla.redhat.com/show_bug.cgi?id=1414141 -------------------------------------------------------------------------------- ================================================================================ wingpanel-indicator-datetime-2.0.1-2.fc25 (FEDORA-2017-5832e58e7b) Datetime Indicator for wingpanel -------------------------------------------------------------------------------- Update Information: This is a new package for f25 proper. It was previously available via my elementary-stable COPR repository. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1414132 - Review Request: wingpanel-indicator-datetime - Datetime Indicator for wingpanel https://bugzilla.redhat.com/show_bug.cgi?id=1414132 -------------------------------------------------------------------------------- ================================================================================ xdg-desktop-portal-0.5-1.fc25 (FEDORA-2017-1bfe0ae101) Portal frontend service to flatpak -------------------------------------------------------------------------------- Update Information: Update to 0.5 -------------------------------------------------------------------------------- ================================================================================ xdg-desktop-portal-gtk-0.5-1.fc25 (FEDORA-2017-6db728f99b) Backend implementation for xdg-desktop-portal using GTK+ -------------------------------------------------------------------------------- Update Information: Update to 0.5 -------------------------------------------------------------------------------- ================================================================================ xorg-x11-drv-evdev-2.10.5-1.fc25 (FEDORA-2017-98726ef1ea) Xorg X11 evdev input driver -------------------------------------------------------------------------------- Update Information: evdev 2.10.5, fixes an off-by-one error and a touch-pointer emulation issue -------------------------------------------------------------------------------- _______________________________________________ test mailing list -- test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to test-leave@xxxxxxxxxxxxxxxxxxxxxxx
