The following Fedora 25 Security updates need testing: Age URL 44 https://bodhi.fedoraproject.org/updates/FEDORA-2016-d79ba708cb exim-4.87.1-1.fc25 40 https://bodhi.fedoraproject.org/updates/FEDORA-2016-87dc28b1a0 w3m-0.5.3-27.git20161120.fc25 23 https://bodhi.fedoraproject.org/updates/FEDORA-2017-da50adf63e boomaga-0.8.0-6.git97f52c1.fc25 12 https://bodhi.fedoraproject.org/updates/FEDORA-2017-541aea2890 wireshark-2.2.4-1.fc25 11 https://bodhi.fedoraproject.org/updates/FEDORA-2017-307dcf0411 drupal7-title-1.0-0.7.alpha9.fc25 11 https://bodhi.fedoraproject.org/updates/FEDORA-2017-c9828b259c lynx-2.8.9-0.14.dev11.fc25 7 https://bodhi.fedoraproject.org/updates/FEDORA-2017-c1252ccd41 java-1.8.0-openjdk-aarch32-1.8.0.112-3.161109.fc25 3 https://bodhi.fedoraproject.org/updates/FEDORA-2017-63697e7e0f sshrc-0.6.1-1.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-5972ebe591 spice-0.13.3-2.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-504745c0b4 mingw-gstreamer1-1.11.1-1.fc25 The following Fedora 25 Critical Path updates have yet to be approved: Age URL 29 https://bodhi.fedoraproject.org/updates/FEDORA-2017-70547b9af8 python-productmd-1.4-1.fc25 21 https://bodhi.fedoraproject.org/updates/FEDORA-2017-d117622795 pungi-4.1.12-1.fc25 11 https://bodhi.fedoraproject.org/updates/FEDORA-2017-d991dd7e59 qt5-qtbase-5.7.1-13.fc25 7 https://bodhi.fedoraproject.org/updates/FEDORA-2017-ae05043e23 python3-3.5.3-1.fc25 python3-docs-3.5.3-1.fc25 2 https://bodhi.fedoraproject.org/updates/FEDORA-2017-adc3383af9 python-pyasn1-0.2.1-1.fc25 2 https://bodhi.fedoraproject.org/updates/FEDORA-2017-4b7056b1a2 lorax-25.18-1.fc25 2 https://bodhi.fedoraproject.org/updates/FEDORA-2017-9f6383547e libglvnd-0.2.999-10.gitdc16f8c.fc25 mesa-13.0.4-1.fc25 wlc-0.0.7-3.git12ee978.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-76e3fe6cfa kernel-4.9.8-201.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-fe10618d39 appstream-data-25-16.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-0147cd142b vim-8.0.314-1.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-2810889d00 libsolv-0.6.25-1.fc25 The following builds have been pushed to Fedora 25 updates-testing appstream-data-25-16.fc25 babl-0.1.24-1.fc25 cmark-0.25.2-2.fc25 cockpit-131-1.fc25 container-selinux-2.6-1.fc25 davix-0.6.5-1.fc25 erlang-ibrowse-4.4-1.fc25 erlang-setup-1.8.1-1.fc25 fakechroot-2.19-1.fc25 freeorion-0.4.6-7.fc25 gsi-openssh-7.4p1-2.fc25 kernel-4.9.8-201.fc25 libcec-4.0.2-1.fc25 libprelude-3.1.0-27.fc25 libreoffice-5.2.5.1-6.fc25 libsolv-0.6.25-1.fc25 mariadb-connector-c-2.3.2-2.fc25 mingw-gstreamer1-1.11.1-1.fc25 nordugrid-arc-5.2.2-1.fc25 nordugrid-arc-doc-2.0.13-1.fc25 openfortivpn-1.3.0-1.fc25 ovirt-guest-agent-1.0.13-1.fc25 perl-IO-Socket-Multicast-1.12-2.fc25 php-fig-http-message-util-1.1.1-1.fc25 php-phpunit-PHPUnit-5.7.11-2.fc25 prelude-lml-3.1.0-2.fc25 prelude-manager-3.1.0-2.fc25 python-trollius-2.1-4.fc25 spice-0.13.3-2.fc25 switchboard-plug-keyboard-0.3.2-1.fc25 switchboard-plug-mouse-touchpad-0.1.2-1.fc25 ufw-kde-0.5.0-0.5.20161006git.fc25 vdr-epg2vdr-1.1.30-1.fc25 vim-8.0.314-1.fc25 Details about builds: ================================================================================ appstream-data-25-16.fc25 (FEDORA-2017-fe10618d39) Fedora AppStream metadata -------------------------------------------------------------------------------- Update Information: New metadata version -------------------------------------------------------------------------------- ================================================================================ babl-0.1.24-1.fc25 (FEDORA-2017-e5b6ecbcc8) A dynamic, any to any, pixel format conversion library -------------------------------------------------------------------------------- Update Information: Improved performance due to more fast paths and a persistent conversion cache. This should have a positive effect when editing images in GNOME Photos. -------------------------------------------------------------------------------- ================================================================================ cmark-0.25.2-2.fc25 (FEDORA-2017-63b86d2541) CommonMark parsing and rendering -------------------------------------------------------------------------------- Update Information: fix libdir in libcmark.pc for pkgconf -------------------------------------------------------------------------------- References: [ 1 ] Bug #1416426 - cmark-devel-0.25.2-1.fc25 has wrong library path in pkg-config file https://bugzilla.redhat.com/show_bug.cgi?id=1416426 -------------------------------------------------------------------------------- ================================================================================ cockpit-131-1.fc25 (FEDORA-2017-cfe76d4264) A user interface for Linux servers -------------------------------------------------------------------------------- Update Information: - Show session virtual machines on Machines page - Fix use of the TAB key on login page - Robust naming and detection of network bond master - Debian packaging fixes -------------------------------------------------------------------------------- ================================================================================ container-selinux-2.6-1.fc25 (FEDORA-2017-ffc69d0e18) SELinux policies for container runtimes -------------------------------------------------------------------------------- Update Information: This update should fix issues with --no-new-privs flags and entrypoints mounted from the host under /usr. -------------------------------------------------------------------------------- ================================================================================ davix-0.6.5-1.fc25 (FEDORA-2017-b15e95ef8b) Toolkit for Http-based file management -------------------------------------------------------------------------------- Update Information: New upstream release -------------------------------------------------------------------------------- ================================================================================ erlang-ibrowse-4.4-1.fc25 (FEDORA-2017-c38b6bf37d) Erlang HTTP client -------------------------------------------------------------------------------- Update Information: * Ver. 4.4 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1417413 - erlang-ibrowse-4.4.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1417413 -------------------------------------------------------------------------------- ================================================================================ erlang-setup-1.8.1-1.fc25 (FEDORA-2017-9452a455ec) Generic setup utility for Erlang-based systems -------------------------------------------------------------------------------- Update Information: * Ver. 1.8.1 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1418134 - erlang-setup-1.8.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1418134 -------------------------------------------------------------------------------- ================================================================================ fakechroot-2.19-1.fc25 (FEDORA-2017-df14a7770c) Gives a fake chroot environment -------------------------------------------------------------------------------- Update Information: Update fakechroot to 2.19 (#1396855) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1396855 - fakechroot-2.19 is available https://bugzilla.redhat.com/show_bug.cgi?id=1396855 -------------------------------------------------------------------------------- ================================================================================ freeorion-0.4.6-7.fc25 (FEDORA-2017-1af933c890) Turn-based space empire and galactic conquest (4X) computer game -------------------------------------------------------------------------------- Update Information: Fixes a crash when expanding a resource meter with zero resources in it. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1416197 - [abrt] freeorion: std::__throw_length_error(): freeorion killed by SIGABRT https://bugzilla.redhat.com/show_bug.cgi?id=1416197 -------------------------------------------------------------------------------- ================================================================================ gsi-openssh-7.4p1-2.fc25 (FEDORA-2017-b9863b9b17) An implementation of the SSH protocol with GSI authentication -------------------------------------------------------------------------------- Update Information: Sync with openssh package. -------------------------------------------------------------------------------- ================================================================================ kernel-4.9.8-201.fc25 (FEDORA-2017-76e3fe6cfa) The Linux kernel -------------------------------------------------------------------------------- Update Information: Fix stability regression on Raspberry Pi 3 ---- The 4.9.8 update contains a number of important fixes across the tree -------------------------------------------------------------------------------- References: [ 1 ] Bug #1418183 - Fedora 25 on Raspberry Pi 3 randomly kernel panics https://bugzilla.redhat.com/show_bug.cgi?id=1418183 -------------------------------------------------------------------------------- ================================================================================ libcec-4.0.2-1.fc25 (FEDORA-2017-04be2274aa) Library and utilities for HDMI-CEC device control -------------------------------------------------------------------------------- Update Information: Update to 4.0.2 -------------------------------------------------------------------------------- ================================================================================ libprelude-3.1.0-27.fc25 (FEDORA-2017-76568b05df) Secure Connections between all Sensors and the Prelude Manager -------------------------------------------------------------------------------- Update Information: Fix GnuTLS patch -------------------------------------------------------------------------------- ================================================================================ libreoffice-5.2.5.1-6.fc25 (FEDORA-2017-67de7bdb10) Free Software Productivity Suite -------------------------------------------------------------------------------- Update Information: * fix broken blink .doc property triggering msword's safe mode * make opengl effects not crash presenter console * add dependency on required gstreamer element for gtk3 video playback * fix odf dropcap import * fix stray XWarpPointer call under wayland -------------------------------------------------------------------------------- References: [ 1 ] Bug #1417480 - [abrt] libreoffice-core: soffice.bin killed by SIGSEGV https://bugzilla.redhat.com/show_bug.cgi?id=1417480 [ 2 ] Bug #1409401 - ooimpress not playing videos properly https://bugzilla.redhat.com/show_bug.cgi?id=1409401 -------------------------------------------------------------------------------- ================================================================================ libsolv-0.6.25-1.fc25 (FEDORA-2017-2810889d00) Package dependency solver -------------------------------------------------------------------------------- Update Information: Update to 0.6.25 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1398085 - Fedora 25: gnome-software unable to install software due to PackageKit daemon SIGABRTing https://bugzilla.redhat.com/show_bug.cgi?id=1398085 -------------------------------------------------------------------------------- ================================================================================ mariadb-connector-c-2.3.2-2.fc25 (FEDORA-2017-1a61d41606) The MariaDB Native Client library (C driver) -------------------------------------------------------------------------------- Update Information: Rebase to the latest version. ! Plugin dir moved ! Fix based on RPMLint output from version 2.3.2-1 ---- Rebase to the latest version. ! Plugin dir moved ! -------------------------------------------------------------------------------- ================================================================================ mingw-gstreamer1-1.11.1-1.fc25 (FEDORA-2017-504745c0b4) MinGW Windows Streaming-Media Framework Runtime -------------------------------------------------------------------------------- Update Information: Security fix for CVE-2017-5838 - update to 1.11.1 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1419587 - CVE-2017-5838 gstreamer: Out-of-bounds read in gst_date_time_new_from_iso8601_string() https://bugzilla.redhat.com/show_bug.cgi?id=1419587 -------------------------------------------------------------------------------- ================================================================================ nordugrid-arc-5.2.2-1.fc25 (FEDORA-2017-f2e640e0c9) Advanced Resource Connector Grid Middleware -------------------------------------------------------------------------------- Update Information: ARC 5.2.2 -------------------------------------------------------------------------------- ================================================================================ nordugrid-arc-doc-2.0.13-1.fc25 (FEDORA-2017-f2e640e0c9) Advanced Resource Connector Documentation -------------------------------------------------------------------------------- Update Information: ARC 5.2.2 -------------------------------------------------------------------------------- ================================================================================ openfortivpn-1.3.0-1.fc25 (FEDORA-2017-b2f1f37a4a) Client for PPP+SSL VPN tunnel services -------------------------------------------------------------------------------- Update Information: Update to latest upstream version -------------------------------------------------------------------------------- ================================================================================ ovirt-guest-agent-1.0.13-1.fc25 (FEDORA-2017-1c93a9784c) The oVirt Guest Agent -------------------------------------------------------------------------------- Update Information: Bump to upstream version 1.0.13 -------------------------------------------------------------------------------- ================================================================================ perl-IO-Socket-Multicast-1.12-2.fc25 (FEDORA-2017-b9913738d7) Perl library for sending and receiving multicast messages -------------------------------------------------------------------------------- Update Information: New perl module for el6, el7, f24, f25. Nothing complicated. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1417316 - Review Request: perl-IO-Socket-Multicast - Perl library for sending and receiving multicast messages https://bugzilla.redhat.com/show_bug.cgi?id=1417316 -------------------------------------------------------------------------------- ================================================================================ php-fig-http-message-util-1.1.1-1.fc25 (FEDORA-2017-e4a5d217d6) PSR Http Message Util -------------------------------------------------------------------------------- Update Information: **Version 1.1.1** - 2017-02-06 - [#3](https://github.com/php-fig/http-message- util/pull/3) adds the constant `StatusCodeInterface::STATUS_IM_A_TEAPOT` (418). -------------------------------------------------------------------------------- ================================================================================ php-phpunit-PHPUnit-5.7.11-2.fc25 (FEDORA-2017-ce2d3d8c2e) The PHP Unit Testing framework -------------------------------------------------------------------------------- Update Information: **Version 5.7.11** - 2017-02-05 * Deprecation errors when used with PHP 7.2 ---- **Version 5.7.10** - 2017-02-04 * Fixed [#2462](https://github.com/sebastianbergmann/phpunit/issues/2462): Code Coverage blacklist is filled even if no code coverage data is to be collected ---- **Version 5.7.9** - 2017-01-28 * Fixed [#2447](https://github.com/sebastianbergmann/phpunit/issues/2447): Reverted backwards incompatible change to handling of boolean environment variable values specified in XML ---- **Version 5.7.8** - 2017-01-26 * Fixed [#2446](https://github.com/sebastianbergmann/phpunit/issues/2446): Reverted backwards incompatible change to exit code in case of warnings ---- **Version 5.7.7** - 2017-01-25 * Fixed [#1896](https://github.com/sebastianbergmann/phpunit/issues/1896): Wrong test location when `@depends` and `@dataProvider` are combined * Fixed [#1983](https://github.com/sebastianbergmann/phpunit/pull/1983): Tests with `@expectedException` annotation cannot be skipped * Fixed [#2137](https://github.com/sebastianbergmann/phpunit/issues/2137): Warnings for invalid data providers are suppressed when test execution is filtered * Fixed [#2275](https://github.com/sebastianbergmann/phpunit/pull/2275): Invalid UTF-8 characters can lead to missing output * Fixed [#2299](https://github.com/sebastianbergmann/phpunit/issues/2299): `expectExceptionMessage()` and `expectExceptionCode()` do not work without `expectException()` * Fixed [#2328](https://github.com/sebastianbergmann/phpunit/issues/2328): `TestListener` callbacks `startTest()` and `endTest()` are not called when test is skipped due to `@depends` * Fixed [#2331](https://github.com/sebastianbergmann/phpunit/issues/2331): Boolean environment variable values specified in XML get mangled * Fixed [#2333](https://github.com/sebastianbergmann/phpunit/issues/2333): `assertContains()` and `assertNotContains()` do not handle UTF-8 strings correctly * Fixed [#2340](https://github.com/sebastianbergmann/phpunit/pull/2340): Data providers that use `yield` or implement `Iterator` cannot be combined * Fixed [#2349](https://github.com/sebastianbergmann/phpunit/pull/2349): `PHPUnit_TextUI_Command` does not `exit()` when it should * Fixed [#2392](https://github.com/sebastianbergmann/phpunit/issues/2392): Empty (but valid) data provider should skip the test * Fixed [#2431](https://github.com/sebastianbergmann/phpunit/issues/2431): `assertArraySubset()` does not support `ArrayAccess` * Fixed [#2435](https://github.com/sebastianbergmann/phpunit/issues/2435): Empty `@group` annotation causes error on PHP 7.2+ ---- **Version 5.7.6** - 2017-01-22 * Fixed [#2424](https://github.com/sebastianbergmann/phpunit/issues/2424): `TestCase::getStatus()` returns `STATUS_PASSED` instead of `STATUS_RISKY` for risky test * Fixed [#2427](https://github.com/sebastianbergmann/phpunit/issues/2427): TestDox group configuration is not handled * Fixed [#2428](https://github.com/sebastianbergmann/phpunit/pull/2428): Nested arrays specificied in XML configuration file are not handled correctly ---- Packaging change: * handle redirection to composer installed version 6.x -------------------------------------------------------------------------------- ================================================================================ prelude-lml-3.1.0-2.fc25 (FEDORA-2017-e9e7bcbb6c) Log analyzer sensor with IDMEF output -------------------------------------------------------------------------------- Update Information: Bump version -------------------------------------------------------------------------------- References: [ 1 ] Bug #1417405 - Review Request: prelude-lml https://bugzilla.redhat.com/show_bug.cgi?id=1417405 -------------------------------------------------------------------------------- ================================================================================ prelude-manager-3.1.0-2.fc25 (FEDORA-2017-139dd58faa) Bus communicator for Prelude modules and other IDMEF agents -------------------------------------------------------------------------------- Update Information: Bump version -------------------------------------------------------------------------------- References: [ 1 ] Bug #1417495 - Review Request: prelude-manager https://bugzilla.redhat.com/show_bug.cgi?id=1417495 -------------------------------------------------------------------------------- ================================================================================ python-trollius-2.1-4.fc25 (FEDORA-2017-77e7515990) A port of the Tulip asyncio module to Python 2 -------------------------------------------------------------------------------- Update Information: Add python-six dependency (rhbz#1402775) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1402775 - python-trollius - Missing requires on python-six https://bugzilla.redhat.com/show_bug.cgi?id=1402775 -------------------------------------------------------------------------------- ================================================================================ spice-0.13.3-2.fc25 (FEDORA-2017-5972ebe591) Implements the SPICE protocol -------------------------------------------------------------------------------- Update Information: Add upstream patches fixing CVE-2016-9577 and CVE-2016-9578 -------------------------------------------------------------------------------- ================================================================================ switchboard-plug-keyboard-0.3.2-1.fc25 (FEDORA-2017-f4cf6bf8cc) Switchboard Keyboard plug -------------------------------------------------------------------------------- Update Information: Update to version 0.3.2. This bugfix release includes support for setting the "PrntScrn" as the key for triggering screenshots and now also implements the `settings://` URL scheme. ---- This is a new package for f25 - it was previously available via my elementary-stable COPR repository. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1419331 - Review Request: switchboard-plug-keyboard - Switchboard Keyboard plug https://bugzilla.redhat.com/show_bug.cgi?id=1419331 -------------------------------------------------------------------------------- ================================================================================ switchboard-plug-mouse-touchpad-0.1.2-1.fc25 (FEDORA-2017-a832e9a134) Switchboard Mouse and Touchpad plug -------------------------------------------------------------------------------- Update Information: Update to version 0.1.2. This bugfix release now renders ineffective settings as inactive and added support for the `settings://` URL scheme. ---- This is a new package for f25 - it was previously available via my elementary-stable COPR repository. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1419262 - Review Request: switchboard-plug-mouse-touchpad - Switchboard Mouse and Touchpad plug https://bugzilla.redhat.com/show_bug.cgi?id=1419262 -------------------------------------------------------------------------------- ================================================================================ ufw-kde-0.5.0-0.5.20161006git.fc25 (FEDORA-2017-2a3ec4299a) UFW control module for KDE -------------------------------------------------------------------------------- Update Information: New package ufw-kde - UFW control module for KDE. This package contains a graphical user interface to configure and control the Uncomplicated Firewall (UFW). It was originally designed to integrate into the KDE 4 System Settings, but the current package includes a standalone menu entry to make it work in KDE Plasma 5 and any other desktop environment. (It cannot integrate into Plasma 5's System Settings because it is still based on kdelibs 4.) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1412068 - Review Request: ufw-kde - UFW control module for KDE https://bugzilla.redhat.com/show_bug.cgi?id=1412068 -------------------------------------------------------------------------------- ================================================================================ vdr-epg2vdr-1.1.30-1.fc25 (FEDORA-2017-4d612b702d) A plugin to retrieve EPG data from a mysql database into VDR -------------------------------------------------------------------------------- Update Information: Update to 1.1.30 ---- Update to 1.1.27 -------------------------------------------------------------------------------- ================================================================================ vim-8.0.314-1.fc25 (FEDORA-2017-0147cd142b) The VIM editor -------------------------------------------------------------------------------- Update Information: The newest upstream commit, added screenshot to appdata and added test for appdata validity. -------------------------------------------------------------------------------- _______________________________________________ test mailing list -- test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to test-leave@xxxxxxxxxxxxxxxxxxxxxxx
