The following Fedora 24 Security updates need testing: Age URL 169 https://bodhi.fedoraproject.org/updates/FEDORA-2016-32eaf0c41e redis-3.2.3-1.fc24 67 https://bodhi.fedoraproject.org/updates/FEDORA-2016-93679a91df jenkins-1.651.3-2.fc24 jenkins-remoting-2.62.3-1.fc24 36 https://bodhi.fedoraproject.org/updates/FEDORA-2016-26f9817b08 squid-3.5.23-1.fc24 29 https://bodhi.fedoraproject.org/updates/FEDORA-2016-eaaa9c4a08 exim-4.87.1-1.fc24 13 https://bodhi.fedoraproject.org/updates/FEDORA-2017-19b0fe001d runc-1.0.0-3.rc2.gitc91b5be.fc24 12 https://bodhi.fedoraproject.org/updates/FEDORA-2017-8873ebdb43 ikiwiki-3.20170111-1.fc24 11 https://bodhi.fedoraproject.org/updates/FEDORA-2017-a73bc7ac5d fedmsg-0.18.2-1.fc24 6 https://bodhi.fedoraproject.org/updates/FEDORA-2017-bb0b9ddf27 pdns-4.0.3-1.fc24 6 https://bodhi.fedoraproject.org/updates/FEDORA-2017-08207fe48b python-crypto-2.6.1-13.fc24 5 https://bodhi.fedoraproject.org/updates/FEDORA-2017-f8094477ee mapserver-6.2.4-1.fc24 5 https://bodhi.fedoraproject.org/updates/FEDORA-2017-d2e7217e2a irssi-0.8.21-1.fc24 5 https://bodhi.fedoraproject.org/updates/FEDORA-2017-5a823376be percona-xtrabackup-2.3.6-1.fc24 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-0d7ef286d1 drupal7-title-1.0-0.7.alpha9.fc24 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-294c23bb1d phpMyAdmin-4.6.6-1.fc24 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-6681f94e10 moodle-3.1.4-1.fc24 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-5136456ce3 ghostscript-9.20-6.fc24 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-6d6e2bfd1a libXpm-3.5.12-1.fc24 The following Fedora 24 Critical Path updates have yet to be approved: Age URL 15 https://bodhi.fedoraproject.org/updates/FEDORA-2017-7585703fbe selinux-policy-3.13.1-191.24.fc24 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-22f5d201fe firefox-51.0.1-1.fc24 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-6d6e2bfd1a libXpm-3.5.12-1.fc24 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-bfe67455ae libtiff-4.0.7-2.fc24 The following builds have been pushed to Fedora 24 updates-testing arduino-builder-1.0.5-2.fc24 firefox-51.0.1-1.fc24 ghostscript-9.20-6.fc24 golang-github-spf13-viper-0-0.5.git1699063.fc24 homebank-5.1.3-1.fc24 innotop-1.11.4-1.fc24 java-1.8.0-openjdk-1.8.0.121-1.b14.fc24 latexmk-4.52c-1.fc24 libXpm-3.5.12-1.fc24 man-pages-it-4.08-1.fc24 perl-Astro-SunTime-0.05-2.fc24 perl-Git-Wrapper-0.047-1.fc24 perl-Inline-Filters-0.19-1.fc24 powertop-2.8-3.fc24 python-distro-1.0.2-2.fc24 python-html2text-2016.9.19-1.fc24 qt5ct-0.29-1.fc24 quodlibet-3.8.1-1.fc24 vdr-epg-daemon-1.1.88-1.fc24 Details about builds: ================================================================================ arduino-builder-1.0.5-2.fc24 (FEDORA-2017-9e3f59cacf) A command line tool for compiling Arduino sketches -------------------------------------------------------------------------------- Update Information: initial package import -------------------------------------------------------------------------------- References: [ 1 ] Bug #1394193 - Review Request: arduino-builder - A command line tool for compiling Arduino sketches https://bugzilla.redhat.com/show_bug.cgi?id=1394193 -------------------------------------------------------------------------------- ================================================================================ firefox-51.0.1-1.fc24 (FEDORA-2017-22f5d201fe) Mozilla Firefox Web browser -------------------------------------------------------------------------------- Update Information: - new upstream version (51.0.1) -------------------------------------------------------------------------------- ================================================================================ ghostscript-9.20-6.fc24 (FEDORA-2017-5136456ce3) A PostScript interpreter and renderer -------------------------------------------------------------------------------- Update Information: This is a security update for these CVEs: * [CVE-2016-9601](https://bugzilla.redhat.com/show_bug.cgi?id=1410021) - *Heap- buffer overflow in jbig2_image_new function* This update also solves possible licensing issues with ghostscritpt's source code. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1410022 - CVE-2016-9601 ghostscript: Heap-buffer overflow due to Integer overflow in jbig2_image_new function [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1410022 [ 2 ] Bug #1404933 - ghostscript and non-free UTF code. https://bugzilla.redhat.com/show_bug.cgi?id=1404933 -------------------------------------------------------------------------------- ================================================================================ golang-github-spf13-viper-0-0.5.git1699063.fc24 (FEDORA-2017-48c8adb2aa) Go configuration with fangs -------------------------------------------------------------------------------- Update Information: Bump to upstream 16990631d4aa7e38f73dbbbf37fa13e67c648531 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1414254 - Tracker for golang-github-spf13-viper https://bugzilla.redhat.com/show_bug.cgi?id=1414254 -------------------------------------------------------------------------------- ================================================================================ homebank-5.1.3-1.fc24 (FEDORA-2017-d3649f122c) Free easy personal accounting for all -------------------------------------------------------------------------------- Update Information: Update to latest version - 5.1.3 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1410598 - Wrong documentation path https://bugzilla.redhat.com/show_bug.cgi?id=1410598 [ 2 ] Bug #1415522 - homebank-5.1.3 is available https://bugzilla.redhat.com/show_bug.cgi?id=1415522 -------------------------------------------------------------------------------- ================================================================================ innotop-1.11.4-1.fc24 (FEDORA-2017-232c2e4905) A MySQL and InnoDB monitor program -------------------------------------------------------------------------------- Update Information: update -------------------------------------------------------------------------------- References: [ 1 ] Bug #1416245 - Package update request for innotop v1.11.4 https://bugzilla.redhat.com/show_bug.cgi?id=1416245 -------------------------------------------------------------------------------- ================================================================================ java-1.8.0-openjdk-1.8.0.121-1.b14.fc24 (FEDORA-2017-2176221cd2) OpenJDK Runtime Environment -------------------------------------------------------------------------------- Update Information: Updated to security update of u121. In meantime fixed 1415137 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1415137 - java-1.8.0-openjdk: NSS 3.28 update causes core dump https://bugzilla.redhat.com/show_bug.cgi?id=1415137 -------------------------------------------------------------------------------- ================================================================================ latexmk-4.52c-1.fc24 (FEDORA-2017-70e7e7198a) A make-like utility for LaTeX files -------------------------------------------------------------------------------- Update Information: Changes in version 4.52c: - Work around LuaTeX line-wrapping bug. - Minor improvements in code and diagnostics. - Fix bug introduced in initial release, as 4.52, that use of bibtex wasn't always detected when recorder mode is on. The detection now appears to be correct. - When the -pdflua or -pdfxe option is used, the -jobname option now works. -------------------------------------------------------------------------------- ================================================================================ libXpm-3.5.12-1.fc24 (FEDORA-2017-6d6e2bfd1a) X.Org X11 libXpm runtime library -------------------------------------------------------------------------------- Update Information: Security fix for CVE-2016-10164 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1416410 - CVE-2016-10164 libXpm: Out-of-bounds write in XPM extension parsing https://bugzilla.redhat.com/show_bug.cgi?id=1416410 -------------------------------------------------------------------------------- ================================================================================ man-pages-it-4.08-1.fc24 (FEDORA-2017-d9caace415) Italian man (manual) pages from the Linux Documentation Project -------------------------------------------------------------------------------- Update Information: update to 4.08 -------------------------------------------------------------------------------- ================================================================================ perl-Astro-SunTime-0.05-2.fc24 (FEDORA-2017-5bfcccedd5) Calculates sun rise/set times -------------------------------------------------------------------------------- Update Information: This is a new package. perl(Time::ParseDate) was not autodetected and has been manually added to Requires. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1409866 - Review Request: perl-Astro-SunTime - Calculates sun rise/set times https://bugzilla.redhat.com/show_bug.cgi?id=1409866 -------------------------------------------------------------------------------- ================================================================================ perl-Git-Wrapper-0.047-1.fc24 (FEDORA-2017-dc00f9f341) Wrap git command-line interface for Perl -------------------------------------------------------------------------------- Update Information: This new package provide a data structure interface for Git in Perl. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1416059 - Review Request: perl-Git-Wrapper - Wrap git command-line interface for Perl https://bugzilla.redhat.com/show_bug.cgi?id=1416059 -------------------------------------------------------------------------------- ================================================================================ perl-Inline-Filters-0.19-1.fc24 (FEDORA-2017-38133949c7) Common source code filters for Inline modules -------------------------------------------------------------------------------- Update Information: This release introduces a CLEAN_AFTER_BUILD argument that allows to suppress cleaning generated C files. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1416393 - perl-Inline-Filters-0.19 is available https://bugzilla.redhat.com/show_bug.cgi?id=1416393 -------------------------------------------------------------------------------- ================================================================================ powertop-2.8-3.fc24 (FEDORA-2017-55acecc0dd) Power consumption monitor -------------------------------------------------------------------------------- Update Information: Fixed some potential sources of segfaults -------------------------------------------------------------------------------- References: [ 1 ] Bug #1352708 - [abrt] powertop: tunables_sort(): powertop killed by SIGSEGV https://bugzilla.redhat.com/show_bug.cgi?id=1352708 -------------------------------------------------------------------------------- ================================================================================ python-distro-1.0.2-2.fc24 (FEDORA-2017-1bb302fc08) Linux Distribution - a Linux OS platform information API -------------------------------------------------------------------------------- Update Information: update LICENSE file and deps. -------------------------------------------------------------------------------- ================================================================================ python-html2text-2016.9.19-1.fc24 (FEDORA-2017-0dd3963752) Convert HTML to Markdown-formatted text -------------------------------------------------------------------------------- Update Information: * Update to latest upstream * Package license and documentation * Package generated man-pages * Adapt to recent guidelines * Fix other packaging issues -------------------------------------------------------------------------------- References: [ 1 ] Bug #1289269 - Failing testsuite with python3 ... perhaps some Unicode problem? https://bugzilla.redhat.com/show_bug.cgi?id=1289269 -------------------------------------------------------------------------------- ================================================================================ qt5ct-0.29-1.fc24 (FEDORA-2017-384d969051) Qt5 Configuration Tool -------------------------------------------------------------------------------- Update Information: new version -------------------------------------------------------------------------------- References: [ 1 ] Bug #1416400 - qt5ct-0.29 is available https://bugzilla.redhat.com/show_bug.cgi?id=1416400 -------------------------------------------------------------------------------- ================================================================================ quodlibet-3.8.1-1.fc24 (FEDORA-2017-58cde7d5ff) A music management program -------------------------------------------------------------------------------- Update Information: - update to 3.8.1 - http://quodlibet.readthedocs.io/en/latest/changelog.html#let-s-talk-about-birds -------------------------------------------------------------------------------- ================================================================================ vdr-epg-daemon-1.1.88-1.fc24 (FEDORA-2017-6593654365) A daemon to download EPG data from internet and manage it in a mysql database -------------------------------------------------------------------------------- Update Information: Update to 1.1.88 ---- Update to 1.1.87 ---- Update to 1.1.85 ---- Update to 1.1.84 ---- Update to 1.1.81 ---- Update to 1.1.79 ---- Update to 1.1.78 ---- Update to 1.1.75 -------------------------------------------------------------------------------- _______________________________________________ test mailing list -- test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to test-leave@xxxxxxxxxxxxxxxxxxxxxxx
