The following Fedora 24 Security updates need testing: Age URL 121 https://bodhi.fedoraproject.org/updates/FEDORA-2016-26f9817b08 squid-3.5.23-1.fc24 114 https://bodhi.fedoraproject.org/updates/FEDORA-2016-eaaa9c4a08 exim-4.87.1-1.fc24 76 https://bodhi.fedoraproject.org/updates/FEDORA-2017-ece16ba6ba runc-1.0.0-5.rc2.gitc91b5be.fc24 57 https://bodhi.fedoraproject.org/updates/FEDORA-2017-4b176c1694 redis-3.2.8-1.fc24 26 https://bodhi.fedoraproject.org/updates/FEDORA-2017-0f5fe1913f sane-backends-1.0.25-7.fc24 19 https://bodhi.fedoraproject.org/updates/FEDORA-2017-ec01954fe9 chromium-57.0.2987.133-1.fc24 13 https://bodhi.fedoraproject.org/updates/FEDORA-2017-a66ca10c22 tigervnc-1.7.1-4.fc24 13 https://bodhi.fedoraproject.org/updates/FEDORA-2017-7de130a80d tnef-1.4.14-1.fc24 12 https://bodhi.fedoraproject.org/updates/FEDORA-2017-8330a48ca2 python-XStatic-jquery-ui-1.12.0.1-1.fc24 9 https://bodhi.fedoraproject.org/updates/FEDORA-2017-d9d620366e php-pear-CAS-1.3.5-1.fc24 7 https://bodhi.fedoraproject.org/updates/FEDORA-2017-da4ed58fd5 dovecot-2.2.29.1-1.fc24 7 https://bodhi.fedoraproject.org/updates/FEDORA-2017-7c9a9b2b36 backintime-1.1.20-1.fc24 5 https://bodhi.fedoraproject.org/updates/FEDORA-2017-9941306740 yara-3.5.0-7.fc24 4 https://bodhi.fedoraproject.org/updates/FEDORA-2017-6b639afc9c collectd-5.6.2-1.fc24 3 https://bodhi.fedoraproject.org/updates/FEDORA-2017-374389c196 qemu-2.6.2-8.fc24 2 https://bodhi.fedoraproject.org/updates/FEDORA-2017-d5aa7c77d6 tomcat-8.0.43-1.fc24 2 https://bodhi.fedoraproject.org/updates/FEDORA-2017-edce28f24b bind99-9.9.9-4.P8.fc24 1 https://bodhi.fedoraproject.org/updates/FEDORA-2017-2c4ddb3ca2 pcre2-10.21-18.fc24 1 https://bodhi.fedoraproject.org/updates/FEDORA-2017-7a5363b41d libnl3-3.2.28-5.fc24 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-c2129c77ca ansible-2.3.0.0-3.fc24 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-ef6bed485e community-mysql-5.7.18-2.fc24 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-87e23bcc34 firefox-53.0-2.fc24 The following Fedora 24 Critical Path updates have yet to be approved: Age URL 13 https://bodhi.fedoraproject.org/updates/FEDORA-2017-a66ca10c22 tigervnc-1.7.1-4.fc24 12 https://bodhi.fedoraproject.org/updates/FEDORA-2017-a90e43dc1b thunderbird-52.0-1.fc24 12 https://bodhi.fedoraproject.org/updates/FEDORA-2017-185a953346 libfm-1.2.5-3.fc24 11 https://bodhi.fedoraproject.org/updates/FEDORA-2017-6ec305fa93 dbus-1.11.12-1.fc24 9 https://bodhi.fedoraproject.org/updates/FEDORA-2017-ae0e285fc1 libdrm-2.4.79-1.fc24 7 https://bodhi.fedoraproject.org/updates/FEDORA-2017-c8186b8423 audit-2.7.5-1.fc24 2 https://bodhi.fedoraproject.org/updates/FEDORA-2017-01fa93cbeb menu-cache-1.0.2-2.D20170417git54ab9e4576.fc24 1 https://bodhi.fedoraproject.org/updates/FEDORA-2017-b50889d720 kernel-4.10.11-100.fc24 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-87e23bcc34 firefox-53.0-2.fc24 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-8b5ff2ceb5 pyOpenSSL-16.2.0-1.fc24 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-e1905fd566 koji-1.12.0-2.fc24 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-8736dff73a koji-1.12.0-1.fc24 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-9042085060 nss-softokn-3.29.5-1.0.fc24 nss-util-3.29.5-1.0.fc24 The following builds have been pushed to Fedora 24 updates-testing ansible-2.3.0.0-3.fc24 community-mysql-5.7.18-2.fc24 firefox-53.0-2.fc24 koji-1.12.0-2.fc24 libimagequant-2.9.1-1.fc24 lumina-desktop-1.2.0-2.p1.Ld700dea.fc24 mate-icon-theme-1.16.2-1.fc24 nodejs-emojione-2.2.7-3.fc24 pngquant-2.9.1-1.fc24 pyOpenSSL-16.2.0-1.fc24 python-libcloud-2.0.0rc2-1.fc24 rubygem-unf_ext-0.0.7.4-1.fc24 squidGuard-1.4-28.fc24 Details about builds: ================================================================================ ansible-2.3.0.0-3.fc24 (FEDORA-2017-c2129c77ca) SSH-based configuration management, deployment, and task execution system -------------------------------------------------------------------------------- Update Information: Backport fix for https://github.com/ansible/ansible/issues/22572 ---- Many bugfixes and improvements. See https://github.com/ansible/ansible/blob/stable-2.3/CHANGELOG.md for full list of changes. rst and html docs have been split out into a ansible-docs subpackage. Includes fix for CVE-2017-7466 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1441355 - CVE-2017-7466 ansible: Arbitrary code execution on control node (incomplete fix for CVE-2016-9587) [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1441355 -------------------------------------------------------------------------------- ================================================================================ community-mysql-5.7.18-2.fc24 (FEDORA-2017-ef6bed485e) MySQL client programs and shared libraries -------------------------------------------------------------------------------- Update Information: Update to 5.7.18 CVEs fixed by this update can be found here: http://www.oracle.com/technetwork/security-advisory/cpuapr2017-3236618.html -------------------------------------------------------------------------------- References: [ 1 ] Bug #1414386 - CVE-2017-3265 community-mysql: various flaws [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1414386 [ 2 ] Bug #1443407 - CVE-2017-3308 CVE-2017-3309 CVE-2017-3329 CVE-2017-3450 CVE-2017-3453 CVE-2017-3456 CVE-2017-3461 CVE-2017-3462 CVE-2017-3463 CVE-2017-3464 CVE-2017-3599 CVE-2017-3600 community-mysql: various flaws [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1443407 [ 3 ] Bug #1441001 - community-mysql-5.7.18 is available https://bugzilla.redhat.com/show_bug.cgi?id=1441001 -------------------------------------------------------------------------------- ================================================================================ firefox-53.0-2.fc24 (FEDORA-2017-87e23bcc34) Mozilla Firefox Web browser -------------------------------------------------------------------------------- Update Information: - update to latest upstream (53.0) -------------------------------------------------------------------------------- ================================================================================ koji-1.12.0-2.fc24 (FEDORA-2017-e1905fd566) Build system tools -------------------------------------------------------------------------------- Update Information: update to upstream 1.12.0, add bugfix -------------------------------------------------------------------------------- ================================================================================ libimagequant-2.9.1-1.fc24 (FEDORA-2017-d63dcb7149) Palette quantization library -------------------------------------------------------------------------------- Update Information: update to pngquant-2.9.1 and libimagequant-2.9.1 -------------------------------------------------------------------------------- ================================================================================ lumina-desktop-1.2.0-2.p1.Ld700dea.fc24 (FEDORA-2017-67b6492d3a) A lightweight, portable desktop environment -------------------------------------------------------------------------------- Update Information: fix dependency to filesystem subpackage, it is noarch -------------------------------------------------------------------------------- ================================================================================ mate-icon-theme-1.16.2-1.fc24 (FEDORA-2017-727cadfa8d) Icon theme for MATE Desktop -------------------------------------------------------------------------------- Update Information: - update to new upstream release - fix some broken flags -------------------------------------------------------------------------------- ================================================================================ nodejs-emojione-2.2.7-3.fc24 (FEDORA-2017-4ff0470d0c) EmojiOne is a complete set of emojis designed for the web -------------------------------------------------------------------------------- Update Information: package.js* are now moved from base package to json package. -------------------------------------------------------------------------------- ================================================================================ pngquant-2.9.1-1.fc24 (FEDORA-2017-d63dcb7149) PNG quantization tool for reducing image file size -------------------------------------------------------------------------------- Update Information: update to pngquant-2.9.1 and libimagequant-2.9.1 -------------------------------------------------------------------------------- ================================================================================ pyOpenSSL-16.2.0-1.fc24 (FEDORA-2017-8b5ff2ceb5) Python wrapper module around the OpenSSL library -------------------------------------------------------------------------------- Update Information: Update to latest upstream version with bug fixes and enhancements. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1442554 - Regression in get_signature_algorithm() https://bugzilla.redhat.com/show_bug.cgi?id=1442554 -------------------------------------------------------------------------------- ================================================================================ python-libcloud-2.0.0rc2-1.fc24 (FEDORA-2017-aeda7ad8c8) A Python library to address multiple cloud provider APIs -------------------------------------------------------------------------------- Update Information: Apache Libcloud version 2.0.0rc2 upgrade -------------------------------------------------------------------------------- ================================================================================ rubygem-unf_ext-0.0.7.4-1.fc24 (FEDORA-2017-367b887fcc) Unicode Normalization Form support library for CRuby -------------------------------------------------------------------------------- Update Information: New version 0.0.7.4 is released. -------------------------------------------------------------------------------- ================================================================================ squidGuard-1.4-28.fc24 (FEDORA-2017-2ba67b0fa0) Filter, redirector and access controller plugin for squid -------------------------------------------------------------------------------- Update Information: Maintenance changes only: - Helper protocol patch (bug #1443273, bug #1418267) - Fix logrotate configuration (bug #1394601) - Fix typo in transparent- proxying.service -------------------------------------------------------------------------------- References: [ 1 ] Bug #1443273 - squidGuard does not work with current squid in F25 (and probably other versions) https://bugzilla.redhat.com/show_bug.cgi?id=1443273 [ 2 ] Bug #1418267 - UPGRADE WARNING from squid "url rewriter responded with garbage" https://bugzilla.redhat.com/show_bug.cgi?id=1418267 [ 3 ] Bug #1394601 - squidGuard logrotate config uses wildcard incorrectly https://bugzilla.redhat.com/show_bug.cgi?id=1394601 -------------------------------------------------------------------------------- _______________________________________________ test mailing list -- test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to test-leave@xxxxxxxxxxxxxxxxxxxxxxx