The following Fedora 25 Security updates need testing: Age URL 110 https://bodhi.fedoraproject.org/updates/FEDORA-2016-d79ba708cb exim-4.87.1-1.fc25 30 https://bodhi.fedoraproject.org/updates/FEDORA-2017-06f4b88ceb php-onelogin-php-saml-2.10.5-1.fc25 10 https://bodhi.fedoraproject.org/updates/FEDORA-2017-cc029be02d tnef-1.4.14-1.fc25 9 https://bodhi.fedoraproject.org/updates/FEDORA-2017-c0ef6054d7 python-django-1.9.13-1.fc25 9 https://bodhi.fedoraproject.org/updates/FEDORA-2017-e2d17af41e python-XStatic-jquery-ui-1.12.0.1-4.fc25 7 https://bodhi.fedoraproject.org/updates/FEDORA-2017-d43d46f1ca ming-0.4.8-1.fc25 5 https://bodhi.fedoraproject.org/updates/FEDORA-2017-c6f424c3ff proftpd-1.3.5e-1.fc25 5 https://bodhi.fedoraproject.org/updates/FEDORA-2017-2a90185a04 php-pear-CAS-1.3.5-1.fc25 5 https://bodhi.fedoraproject.org/updates/FEDORA-2017-a3a47973eb libxml2-2.9.4-2.fc25 4 https://bodhi.fedoraproject.org/updates/FEDORA-2017-b83c0eeab0 xstream-1.4.9-5.fc25 4 https://bodhi.fedoraproject.org/updates/FEDORA-2017-a902f8db61 jenkins-xstream-1.4.7-11.jenkins1.fc25 3 https://bodhi.fedoraproject.org/updates/FEDORA-2017-6ef28e38d6 dovecot-2.2.29.1-1.fc25 3 https://bodhi.fedoraproject.org/updates/FEDORA-2017-8dce7a3940 backintime-1.1.20-1.fc25 3 https://bodhi.fedoraproject.org/updates/FEDORA-2017-db77ca450f ansible-2.3.0.0-1.fc25 1 https://bodhi.fedoraproject.org/updates/FEDORA-2017-26c9ecd7a4 kernel-4.10.10-200.fc25 1 https://bodhi.fedoraproject.org/updates/FEDORA-2017-11ac1e31eb yara-3.5.0-7.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-80763c8c03 collectd-5.7.1-3.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-01925dba3c qemu-2.7.1-6.fc25 The following Fedora 25 Critical Path updates have yet to be approved: Age URL 18 https://bodhi.fedoraproject.org/updates/FEDORA-2017-ea86a8123b pungi-4.1.14-1.fc25 9 https://bodhi.fedoraproject.org/updates/FEDORA-2017-a919011cf0 sssd-1.15.2-2.fc25 7 https://bodhi.fedoraproject.org/updates/FEDORA-2017-b19d9e3c3d gnutls-3.5.11-1.fc25 5 https://bodhi.fedoraproject.org/updates/FEDORA-2017-a3a47973eb libxml2-2.9.4-2.fc25 3 https://bodhi.fedoraproject.org/updates/FEDORA-2017-4efaae68fe thunderbird-52.0-2.fc25 3 https://bodhi.fedoraproject.org/updates/FEDORA-2017-3c25dd541a livecd-tools-24.3-2.fc25 1 https://bodhi.fedoraproject.org/updates/FEDORA-2017-26c9ecd7a4 kernel-4.10.10-200.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-19451b76d6 highlight-3.36-1.fc25 The following builds have been pushed to Fedora 25 updates-testing COPASI-4.19.148-1.fc25 avogadro2-libs-1.90.0-5.fc25 cacti-1.1.3-1.fc25 caja-1.16.5-1.fc25 calamares-2.4.6-2.fc25 electrum-2.8.2-1.fc25 fldigi-4.0.2-1.fc25 icecat-52.0.2-1.fc25 python-flask-oidc-1.1.1-1.fc25 python-openpyxl-2.4.6-1.fc25 qemu-2.7.1-6.fc25 slick-greeter-1.0.0-15.fc25 yadifa-2.2.4-2.fc25 Details about builds: ================================================================================ COPASI-4.19.148-1.fc25 (FEDORA-2017-435ec9c5aa) Biochemical network simulator -------------------------------------------------------------------------------- Update Information: - Update to version 4.19 -build 148 (fix upstream bug #2403) -------------------------------------------------------------------------------- ================================================================================ avogadro2-libs-1.90.0-5.fc25 (FEDORA-2017-2a7d940435) Avogadro2 libraries -------------------------------------------------------------------------------- Update Information: - New package -------------------------------------------------------------------------------- References: [ 1 ] Bug #1431445 - Review Request: avogadro2-libs - Avogadro2 libraries https://bugzilla.redhat.com/show_bug.cgi?id=1431445 -------------------------------------------------------------------------------- ================================================================================ cacti-1.1.3-1.fc25 (FEDORA-2017-1df284e9b5) An rrd based graphing tool -------------------------------------------------------------------------------- Update Information: - Update to 1.1.3 Release notes: http://www.cacti.net/release_notes_1_1_3.php ---- - Work with several MySQL variants (#1440755) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1442607 - cacti-1.1.3 is available https://bugzilla.redhat.com/show_bug.cgi?id=1442607 [ 2 ] Bug #1440755 - Work with several MySQL variants https://bugzilla.redhat.com/show_bug.cgi?id=1440755 -------------------------------------------------------------------------------- ================================================================================ caja-1.16.5-1.fc25 (FEDORA-2017-1200784139) File manager for MATE -------------------------------------------------------------------------------- Update Information: new release -------------------------------------------------------------------------------- ================================================================================ calamares-2.4.6-2.fc25 (FEDORA-2017-60c6be7edc) Installer from a live CD/DVD/USB to disk -------------------------------------------------------------------------------- Update Information: This Calamares update backports some bug fixes from version 3.x: * Fixed a crash (Python exception) in the `displaymanager` module when trying to disable autologin with SDDM. (The default `sddm.conf` does not enable autologin to begin with, so the attempt to remove the `User=` key was throwing an exception.) Crash fix backported from 3.0, additional fixes for SDDM autologin configuration backported from 3.0.1. * Fixed the handling of non-Latin1 (Unicode) user names and passwords in the `users` module. The bug could break login if the chosen user name or password had non-Latin1 characters. Backported from 3.0.1. * Commented out the `sudoersGroup: wheel` setting in the default `users.conf` because this is already set up by default in the Fedora `/etc/sudoers` and letting Calamares set it up was creating a redundant and confusing `/etc/sudoers.d/10-installer` file. (This issue was documented in the 3.1 release.) -------------------------------------------------------------------------------- ================================================================================ electrum-2.8.2-1.fc25 (FEDORA-2017-db91bf60a6) A lightweight Bitcoin Client -------------------------------------------------------------------------------- Update Information: Updated to new version, uses python-pyaes instead of python-slowaes -------------------------------------------------------------------------------- References: [ 1 ] Bug #1440717 - Upgrade electrum to ver. 2.8.2 https://bugzilla.redhat.com/show_bug.cgi?id=1440717 -------------------------------------------------------------------------------- ================================================================================ fldigi-4.0.2-1.fc25 (FEDORA-2017-729335bf02) Digital modem program for Linux -------------------------------------------------------------------------------- Update Information: Version 4.0.2 * Maintenance release - revert wefax - lotw match - flrigi bw synch - clang 8.1.0 - sound card - ifkp image processing - macro save - cw end of transmit - font initialization - os x socket connect - winkeyer exit process Revert "wefax" * This reverts commit 5609415222335e9376defc325f20ae29c5c8c8ca. * Modifies wefax.cxx iaw request from Remi, wefax author Lotw Match * fix failure to mark logbook as dirty when records are matched flrigi bw synch * Improve bandwidth table / selection sync with flrig when changing xcvr mode from fldigi Clang 8.1.0 * Correct warning notification with latest Clang compiler on macOS Sierra 10.12.4 Sound card * Changed to separate Rx/Tx soundcard instances - only open/close when samplerate changes - attempt to reduce incidence of lost sound card in OS X IFKP image processing * Rx processing failed to return to TEXT state upon conclusion of image transfer Macro Save * Corrected issue with macro tag "Save" CW end- of-transmit * Add <LF> character to Rx echo text when going from Tx to Rx - provides visual separation of Tx and Rx text in the Rx panel - color rendition still applies. Font Initialization * Force all font initialization to be name dependent * Font name / Font number can change as user installs or removes fonts from the OS with potentially fatal impact on fldigi font usage. * May require user to reconfigure various font selections OS X socket connect * connect test for fail conditions not correct for OS X Winkeyer exit process * Release resources when closing Winkeyer * Issue ADMIN:CLOSE command to Winkeyer when disconnecting or closing fldigi. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1413327 - fldigi-4.0.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=1413327 -------------------------------------------------------------------------------- ================================================================================ icecat-52.0.2-1.fc25 (FEDORA-2017-e69660cbf8) GNU version of Firefox browser -------------------------------------------------------------------------------- Update Information: - Update to 52.0.2 - Add patch for mozbz#1158076 - enable dark theme by pref -------------------------------------------------------------------------------- ================================================================================ python-flask-oidc-1.1.1-1.fc25 (FEDORA-2017-ec36e12db9) An openID Connect support for Flask -------------------------------------------------------------------------------- Update Information: Latest upstream. -------------------------------------------------------------------------------- ================================================================================ python-openpyxl-2.4.6-1.fc25 (FEDORA-2017-d65f0ec5c4) Python library to read/write Excel 2010 xlsx/xlsm files -------------------------------------------------------------------------------- Update Information: Update to 2.4.6 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1442381 - python-openpyxl-2.4.6 is available https://bugzilla.redhat.com/show_bug.cgi?id=1442381 -------------------------------------------------------------------------------- ================================================================================ qemu-2.7.1-6.fc25 (FEDORA-2017-01925dba3c) QEMU is a FAST! processor emulator -------------------------------------------------------------------------------- Update Information: * chardev data is dropped when host side closed (bz #1352977) * CVE-2016-8667: dma: divide by zero error in set_next_tick (bz #1384876) * IPv6 DNS problems in qemu user networking (bz #1401165) * Fix crash in qxl memslot_get_virt (bz #1405847) * CVE-2017-5579: serial: fix memory leak in serial exit (bz #1416161) * spec: Pull in ipxe/vgabios links via -common package (bz #1431403) * Clean up binfmt.d configuration files (bz #1394859) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1384874 - CVE-2016-8667 Qemu: hw: dma: divide by zero error in set_next_tick https://bugzilla.redhat.com/show_bug.cgi?id=1384874 [ 2 ] Bug #1416157 - CVE-2017-5579 Qemu: serial: host memory leakage 16550A UART emulation https://bugzilla.redhat.com/show_bug.cgi?id=1416157 -------------------------------------------------------------------------------- ================================================================================ slick-greeter-1.0.0-15.fc25 (FEDORA-2017-9da76720e4) A slick-looking LightDM greeter -------------------------------------------------------------------------------- Update Information: - Remove unused file - Fix override schema - Add virtual provides -------------------------------------------------------------------------------- ================================================================================ yadifa-2.2.4-2.fc25 (FEDORA-2017-5eca3401ae) Lightweight authoritative Name Server with DNSSEC capabilities -------------------------------------------------------------------------------- Update Information: 20170414: YADIFA 2.2.4 --- - Added aliased IPs support ("--enable-messages" option) ---- 20170406: YADIFA 2.2.4 ---- - Fixes an issue with relative include names that would not always be properly computed - Fixes an issue where concurrent configuration reloads could lead to a crash -------------------------------------------------------------------------------- References: [ 1 ] Bug #1439718 - yadifa-2.2.4 is available https://bugzilla.redhat.com/show_bug.cgi?id=1439718 -------------------------------------------------------------------------------- _______________________________________________ test mailing list -- test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to test-leave@xxxxxxxxxxxxxxxxxxxxxxx
