The following Fedora 25 Security updates need testing: Age URL 33 https://bodhi.fedoraproject.org/updates/FEDORA-2016-d79ba708cb exim-4.87.1-1.fc25 29 https://bodhi.fedoraproject.org/updates/FEDORA-2016-87dc28b1a0 w3m-0.5.3-27.git20161120.fc25 13 https://bodhi.fedoraproject.org/updates/FEDORA-2017-da50adf63e boomaga-0.8.0-6.git97f52c1.fc25 10 https://bodhi.fedoraproject.org/updates/FEDORA-2017-7c569d396b python-crypto-2.6.1-13.fc25 9 https://bodhi.fedoraproject.org/updates/FEDORA-2017-7f9e997585 irssi-0.8.21-1.fc25 9 https://bodhi.fedoraproject.org/updates/FEDORA-2017-6382ea8d57 percona-xtrabackup-2.3.6-1.fc25 1 https://bodhi.fedoraproject.org/updates/FEDORA-2017-307dcf0411 drupal7-title-1.0-0.7.alpha9.fc25 1 https://bodhi.fedoraproject.org/updates/FEDORA-2017-360e912fdb phpMyAdmin-4.6.6-1.fc25 1 https://bodhi.fedoraproject.org/updates/FEDORA-2017-c9828b259c lynx-2.8.9-0.14.dev11.fc25 1 https://bodhi.fedoraproject.org/updates/FEDORA-2017-ae7a707032 moodle-3.1.4-1.fc25 1 https://bodhi.fedoraproject.org/updates/FEDORA-2017-541aea2890 wireshark-2.2.4-1.fc25 1 https://bodhi.fedoraproject.org/updates/FEDORA-2017-81fbd592d4 kernel-4.9.6-200.fc25 1 https://bodhi.fedoraproject.org/updates/FEDORA-2017-0be7ce9e72 wordpress-4.7.2-1.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-801e01d1ed mariadb-10.1.21-1.fc25 The following Fedora 25 Critical Path updates have yet to be approved: Age URL 19 https://bodhi.fedoraproject.org/updates/FEDORA-2017-70547b9af8 python-productmd-1.4-1.fc25 10 https://bodhi.fedoraproject.org/updates/FEDORA-2017-d117622795 pungi-4.1.12-1.fc25 1 https://bodhi.fedoraproject.org/updates/FEDORA-2017-81fbd592d4 kernel-4.9.6-200.fc25 1 https://bodhi.fedoraproject.org/updates/FEDORA-2017-d991dd7e59 qt5-qtbase-5.7.1-13.fc25 1 https://bodhi.fedoraproject.org/updates/FEDORA-2017-b00add9ad9 python-decorator-4.0.11-1.fc25 The following builds have been pushed to Fedora 25 updates-testing abi-compliance-checker-2.0-1.fc25 arc-theme-20161119-2.fc25 cinnamon-3.2.8-3.fc25 eclipse-launchbar-2.1.0-1.fc25 inn-2.6.1-3.fc25 kio-gdrive-1.1.0-1.fc25 libglvnd-0.2.999-7.gitdc16f8c.fc25 lxc-2.0.7-1.fc25 ndoutils-2.1.2-1.fc25 python-markdown-2.6.8-1.fc25 vulkan-1.0.39.0-1.fc25 Details about builds: ================================================================================ abi-compliance-checker-2.0-1.fc25 (FEDORA-2017-8f62b1e067) An ABI Compliance Checker -------------------------------------------------------------------------------- Update Information: #### Version 2.0 (January 28, 2017) **Improvements** * Code refactoring * Works faster on big libraries * Added a module to create ABI dump from AST tree * Added a module to create AST dump * Added a module to parse GCC AST * Added a module to find system files and automatically generate include paths * Added a module to mangle C++ symbols * Added a module to read ELF binaries * Added a module to handle type attributes * Added a module to handle XML descriptors * Added a module to filter symbols * Added a module to handle input data * Added a module for logging * Extended test suite * Partial support for GCC 6 * Improved support for Solaris * Compare versioned data types **New Options** * Added -filter option: a path to XML descriptor with skip_* rules to filter analyzed symbols in the report * Added -keep-cxx option to check _ZS*, _ZNS* and _ZNKS* symbols * Bug Fixes * Fixed automatic generation of include paths * Fixed report for removed virtual symbols * Fixed XML-format ABI dumps * Fixed source- compatibility reports * Fixed counter of checked data types * Fixed lists of affected symbols * Fixed analysis of standard C++ libraries * Fixed analysis of added and removed virtual methods * Fixed style of the report * Fixed analysis of alias symbols * Uncover changed typedefs properly * Fixed Parameter_From_Register and Parameter_To_Register rules * Fixed analysis of data types derived from template instances * Enable -headers-only option automatically if header file is used as input library descriptor * Fixed analysis of template instances * Fixed analysis of static data * Fixed error message if modules are not installed * Fixed analysis of versioned symbols * Fixed -ext option * Fixed -use-dumps option * Fixed -debug option * Fixed console output **Other** * Removed support for too old ABI dumps -------------------------------------------------------------------------------- References: [ 1 ] Bug #1417412 - abi-compliance-checker-2.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1417412 -------------------------------------------------------------------------------- ================================================================================ arc-theme-20161119-2.fc25 (FEDORA-2017-65690b0d35) Flat theme with transparent elements -------------------------------------------------------------------------------- Update Information: * Add Patch0: fix missing gradient warning -------------------------------------------------------------------------------- ================================================================================ cinnamon-3.2.8-3.fc25 (FEDORA-2017-077fb63232) Window management and application launching for GNOME -------------------------------------------------------------------------------- Update Information: * Add patch to use fedora-icon as default menu-icon -------------------------------------------------------------------------------- References: [ 1 ] Bug #1268718 - Use fedora logo in menu applet https://bugzilla.redhat.com/show_bug.cgi?id=1268718 -------------------------------------------------------------------------------- ================================================================================ eclipse-launchbar-2.1.0-1.fc25 (FEDORA-2017-e86e3c8e50) Eclipse Launchbar plug-in -------------------------------------------------------------------------------- Update Information: Update to Neon.2 release of CDT. Release notes can be found here: https://wiki.eclipse.org/CDT/User/NewIn92 -------------------------------------------------------------------------------- ================================================================================ inn-2.6.1-3.fc25 (FEDORA-2017-61f63409ea) The InterNetNews system, an Usenet news server -------------------------------------------------------------------------------- Update Information: * __nnrpd__ now uses -0000 as the time zone for Date: and Injection-Date: header fields it generates. It was previously using +0000, wrongly systematically indicating a local time zone at Universal Time when _localtime_ is set to false (which is the default) in _readers.conf_. The +0000 time zone will now be used only if _localtime_ is set to true and UTC is really the local time zone of the server. * Julien Elie has implemented in __nnrpd__ the new COMPRESS command described in draft-murchison-nntp-compress that extends the NNTP protocol to allow a connection to be effectively and efficiently compressed. News clients that also support that extension will be able to benefit from that bandwidth optimization and improvement in speed. Moreover, using COMPRESS is more secure than TLS-level compression, as far as authentication credentials are concerned. * The default value for the _tlscompression_ parameter in _inn.conf_ has changed. TLS-level compression is now disabled by default, to comply with the best current practices for a secure use of TLS in application protocols like NNTP. Using the new COMPRESS command is recommended. * The tlscompression parameter in inn.conf now also permits to disable TLS-level compression with OpenSSL 0.9.8. It previously had an effect only when OpenSSL 1.0.0 or later was used. * __rnews__ no longer segfaults at startup when started setuid news. Thanks to Marcus Jodorf for the bug report. * Fixed slow __nnrpd__ responses for a few NNTP commands. The TCP_NODELAY option was unconditionally set whereas only BSD/OS systems needed it. Thanks to Christian Mock for having discovered that. * Articles containing a Received: or a Posted: header field are no longer rejected by __nnrpd__ at injection time. * Articles containing control characters or whitespace-only content lines in their headers are now rejected by __nnrpd__ at injection time. * OpenSSL 1.1.0 support has been added to INN. * When an encryption layer is negotiated during a successful use of the STARTTLS command, or after a successful authentication using a SASL mechanism that negotiates an encryption layer, __nnrpd__ now updates the permissions of the news client according to the new secure state of his connection (that is to say auth blocks in _readers.conf_ using the _require_ssl_ parameter are taken into account). Previously, only connections on a dedicated port (usually 563) were taking benefit from that parameter. Thanks to Steve Crook for the bug report. * When a data integrity layer was negotiated during a successful SASL authentication, __nnrpd__ was wrongly reseting any knowledge obtained from the client, such as the current newsgroup and article number. This behaviour now applies only when an encryption layer is negotiated. * __nntpsend__ now correctly waits until all of the child __innxmit__ processes exit before it does. It was causing __nntpsend__ to fail to work properly on systems that use systemd, because when it exits prematurely, systemd kills all of the processes it launched, including the __innxmit__ processes. Thanks to Jonathan Kamens for the patch. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1403810 - inn-2.6.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1403810 [ 2 ] Bug #1395717 - Cannot run /usr/libexec/news/innd as non-root user because innd segfaults https://bugzilla.redhat.com/show_bug.cgi?id=1395717 -------------------------------------------------------------------------------- ================================================================================ kio-gdrive-1.1.0-1.fc25 (FEDORA-2017-a10a22d584) An Google Drive KIO slave for KDE -------------------------------------------------------------------------------- Update Information: update version 1.1 ---- Initial version of the package -------------------------------------------------------------------------------- References: [ 1 ] Bug #1387669 - Review Request: kio-gdrive - KDE Dolphin Google Drive access https://bugzilla.redhat.com/show_bug.cgi?id=1387669 -------------------------------------------------------------------------------- ================================================================================ libglvnd-0.2.999-7.gitdc16f8c.fc25 (FEDORA-2017-9f6383547e) The GL Vendor-Neutral Dispatch library -------------------------------------------------------------------------------- Update Information: - Make libglvnd the default libGL.so.1 (and friends) provider - Split up libglvnd libraries to appropriate subpackages - New libglvnd snapshot - Enable mesa libglvnd support -------------------------------------------------------------------------------- References: [ 1 ] Bug #1413579 - Make libglvnd the default libGL.so.1 (and friends) provider https://bugzilla.redhat.com/show_bug.cgi?id=1413579 -------------------------------------------------------------------------------- ================================================================================ lxc-2.0.7-1.fc25 (FEDORA-2017-5a8267bb56) Linux Resource Containers -------------------------------------------------------------------------------- Update Information: Update to LXC 2.0.7. The detailed changelog can be found here: https://linuxcontainers.org/lxc/news/. -------------------------------------------------------------------------------- ================================================================================ ndoutils-2.1.2-1.fc25 (FEDORA-2017-6b908011c6) Stores all configuration and event data from Nagios in a database -------------------------------------------------------------------------------- Update Information: - Update ndoutils to 2.1.2. - Rebuild RHEL/CentOS support for Nagios 4.x. -------------------------------------------------------------------------------- ================================================================================ python-markdown-2.6.8-1.fc25 (FEDORA-2017-a9d367e723) Markdown implementation in Python -------------------------------------------------------------------------------- Update Information: Update to Markdown 2.6.8. -------------------------------------------------------------------------------- ================================================================================ vulkan-1.0.39.0-1.fc25 (FEDORA-2017-cf5056b6c8) Vulkan loader and validation layers -------------------------------------------------------------------------------- Update Information: Update -------------------------------------------------------------------------------- _______________________________________________ test mailing list -- test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to test-leave@xxxxxxxxxxxxxxxxxxxxxxx
