The following Fedora 24 Security updates need testing: Age URL 143 https://bodhi.fedoraproject.org/updates/FEDORA-2016-26f9817b08 squid-3.5.23-1.fc24 136 https://bodhi.fedoraproject.org/updates/FEDORA-2016-eaaa9c4a08 exim-4.87.1-1.fc24 99 https://bodhi.fedoraproject.org/updates/FEDORA-2017-ece16ba6ba runc-1.0.0-5.rc2.gitc91b5be.fc24 79 https://bodhi.fedoraproject.org/updates/FEDORA-2017-4b176c1694 redis-3.2.8-1.fc24 49 https://bodhi.fedoraproject.org/updates/FEDORA-2017-0f5fe1913f sane-backends-1.0.25-7.fc24 41 https://bodhi.fedoraproject.org/updates/FEDORA-2017-ec01954fe9 chromium-57.0.2987.133-1.fc24 35 https://bodhi.fedoraproject.org/updates/FEDORA-2017-8330a48ca2 python-XStatic-jquery-ui-1.12.0.1-1.fc24 17 https://bodhi.fedoraproject.org/updates/FEDORA-2017-7a7d2044c9 libreoffice-5.1.6.2-8.fc24 15 https://bodhi.fedoraproject.org/updates/FEDORA-2017-0b6da97aa5 squirrelmail-1.4.22-19.fc24 8 https://bodhi.fedoraproject.org/updates/FEDORA-2017-9264ed563d php-horde-ingo-3.2.15-1.fc24 8 https://bodhi.fedoraproject.org/updates/FEDORA-2017-c3ce061ea7 lynis-2.5.0-1.fc24 7 https://bodhi.fedoraproject.org/updates/FEDORA-2017-c9d71f0860 xen-4.6.5-6.fc24 7 https://bodhi.fedoraproject.org/updates/FEDORA-2017-7a0e2d58f8 thunderbird-52.1.0-1.fc24 5 https://bodhi.fedoraproject.org/updates/FEDORA-2017-cdc7caed36 radicale-1.1.2-1.fc24 5 https://bodhi.fedoraproject.org/updates/FEDORA-2017-ebe41f3fd7 python-fedora-0.9.0-3.fc24 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-01a7989fc0 git-2.7.5-1.fc24 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-6bdbf57f29 kf5-kauth-5.33.0-2.fc24 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-8b4898ce81 kdelibs-4.14.30-2.fc24 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-aceb424894 smb4k-1.2.2-3.fc24 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-da0b00fd64 jasper-1.900.13-4.fc24 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-4de07172f4 postgresql-9.5.7-1.fc24 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-947da3daa5 chicken-4.12.0-2.fc24 The following Fedora 24 Critical Path updates have yet to be approved: Age URL 31 https://bodhi.fedoraproject.org/updates/FEDORA-2017-ae0e285fc1 libdrm-2.4.79-1.fc24 22 https://bodhi.fedoraproject.org/updates/FEDORA-2017-e1905fd566 koji-1.12.0-2.fc24 12 https://bodhi.fedoraproject.org/updates/FEDORA-2017-fb8bb34a62 coreutils-8.25-9.fc24 10 https://bodhi.fedoraproject.org/updates/FEDORA-2017-3a209288cf audit-2.7.6-1.fc24 8 https://bodhi.fedoraproject.org/updates/FEDORA-2017-94e1a0cb77 libXdmcp-1.1.2-6.fc24 8 https://bodhi.fedoraproject.org/updates/FEDORA-2017-80497255ca libICE-1.0.9-9.fc24 8 https://bodhi.fedoraproject.org/updates/FEDORA-2017-a16494458f rsync-3.1.2-3.fc24 7 https://bodhi.fedoraproject.org/updates/FEDORA-2017-7a0e2d58f8 thunderbird-52.1.0-1.fc24 2 https://bodhi.fedoraproject.org/updates/FEDORA-2017-9a479a2cff kernel-4.10.15-100.fc24 2 https://bodhi.fedoraproject.org/updates/FEDORA-2017-1fa6f4f9bf cups-2.1.4-7.fc24 2 https://bodhi.fedoraproject.org/updates/FEDORA-2017-1e4ebe1303 hwdata-0.300-1.fc24 2 https://bodhi.fedoraproject.org/updates/FEDORA-2017-2dde77a642 python-beautifulsoup4-4.6.0-1.fc24 2 https://bodhi.fedoraproject.org/updates/FEDORA-2017-6dfa4501e8 qt5-qtbase-5.6.2-4.fc24 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-830e540c85 python3-3.5.3-6.fc24 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-da0b00fd64 jasper-1.900.13-4.fc24 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-05913d5475 python-2.7.13-2.fc24 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-ea08548d1a vim-8.0.596-1.fc24 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-8b4898ce81 kdelibs-4.14.30-2.fc24 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-01a7989fc0 git-2.7.5-1.fc24 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-3fa1357529 webkitgtk4-2.16.2-1.fc24 The following builds have been pushed to Fedora 24 updates-testing alembic-1.7.1-3.fc24 blender-2.78c-4.fc24 chicken-4.12.0-2.fc24 copyq-3.0.1-1.fc24 davix-0.6.6-1.fc24 drupal8-8.3.2-1.fc24 elixir-1.4.2-1.fc24 fcitx-configtool-0.4.9-1.fc24 fcitx-sunpinyin-0.4.1-9.fc24 gimp-2.8.22-2.fc24 git-2.7.5-1.fc24 glusterfs-3.8.12-1.fc24 golang-github-petar-GoLLRB-0-0.1.git53be0d3.fc24 jasper-1.900.13-4.fc24 kdelibs-4.14.30-2.fc24 kf5-kauth-5.33.0-2.fc24 konversation-1.7.2-1.fc24 libvirt-1.3.3.3-1.fc24 luminance-hdr-2.5.1-4.fc24 marco-1.16.1-1.fc24 mate-themes-3.20.20-1.fc24 mint-x-icons-1.4.2-3.fc24 mozilla-https-everywhere-5.2.16-2.fc24 nagios-4.3.2-1.fc24 openvdb-4.0.1-2.fc24 owncloud-client-2.3.2-1.fc24 perl-CPAN-Perl-Releases-3.16-1.fc24 perl-Gnome2-VFS-1.083-1.fc24 php-libvirt-0.5.3-2.fc24 php-pear-Text-Diff-1.2.2-1.fc24 php-swiftmailer-5.4.8-1.fc24 pkgconf-1.3.6-1.fc24 postgresql-9.5.7-1.fc24 python-2.7.13-2.fc24 python-bitstruct-3.4.0-1.fc24 python-streamlink-0.6.0-1.fc24 python3-3.5.3-6.fc24 qpid-proton-0.17.0-2.fc24 rubygem-nokogiri-1.7.2-1.fc24 salt-2016.11.5-2.fc24 sayonara-0.9.3-2.git20170509.fc24 smb4k-1.2.2-3.fc24 vim-8.0.596-1.fc24 webkitgtk4-2.16.2-1.fc24 xdg-desktop-portal-0.6-1.fc24 xdg-desktop-portal-gtk-0.6-1.fc24 xrootd-4.6.1-1.fc24 Details about builds: ================================================================================ alembic-1.7.1-3.fc24 (FEDORA-2017-44a755a3db) Open framework for storing and sharing scene data -------------------------------------------------------------------------------- Update Information: * Add support for OpenVDB Volume Rendering * Add Alembic import/export support * Remove redundant fonts directory -------------------------------------------------------------------------------- References: [ 1 ] Bug #1444634 - Review Request: openvdb - C++ library for sparse volumetric data discretized on three-dimensional grids https://bugzilla.redhat.com/show_bug.cgi?id=1444634 [ 2 ] Bug #1445675 - Review Request: alembic - Open framework for storing and sharing scene data https://bugzilla.redhat.com/show_bug.cgi?id=1445675 -------------------------------------------------------------------------------- ================================================================================ blender-2.78c-4.fc24 (FEDORA-2017-44a755a3db) 3D modeling, animation, rendering and post-production -------------------------------------------------------------------------------- Update Information: * Add support for OpenVDB Volume Rendering * Add Alembic import/export support * Remove redundant fonts directory -------------------------------------------------------------------------------- References: [ 1 ] Bug #1444634 - Review Request: openvdb - C++ library for sparse volumetric data discretized on three-dimensional grids https://bugzilla.redhat.com/show_bug.cgi?id=1444634 [ 2 ] Bug #1445675 - Review Request: alembic - Open framework for storing and sharing scene data https://bugzilla.redhat.com/show_bug.cgi?id=1445675 -------------------------------------------------------------------------------- ================================================================================ chicken-4.12.0-2.fc24 (FEDORA-2017-947da3daa5) A practical and portable Scheme system -------------------------------------------------------------------------------- Update Information: Fix for CVE-2017-6949, also bump to 4.12.0 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1433278 - CVE-2017-6949 chicken: Unchecked size argument in malloc() in CHICKEN Scheme https://bugzilla.redhat.com/show_bug.cgi?id=1433278 -------------------------------------------------------------------------------- ================================================================================ copyq-3.0.1-1.fc24 (FEDORA-2017-5a1e27e448) Advanced clipboard manager -------------------------------------------------------------------------------- Update Information: Upstream release rhbz#1449207 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1449207 - copyq-v3.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1449207 -------------------------------------------------------------------------------- ================================================================================ davix-0.6.6-1.fc24 (FEDORA-2017-018520ad72) Toolkit for Http-based file management -------------------------------------------------------------------------------- Update Information: * new upstream release -------------------------------------------------------------------------------- ================================================================================ drupal8-8.3.2-1.fc24 (FEDORA-2017-af171cd5ee) An open source content management platform -------------------------------------------------------------------------------- Update Information: * [8.3.2](https://www.drupal.org/project/drupal/releases/8.3.2) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1447814 - drupal8-8.3.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=1447814 -------------------------------------------------------------------------------- ================================================================================ elixir-1.4.2-1.fc24 (FEDORA-2017-aca5b8522c) A modern approach to programming for the Erlang VM -------------------------------------------------------------------------------- Update Information: New upstream release ---- New upstream release ---- New upstream release. ---- New upstream release -------------------------------------------------------------------------------- References: [ 1 ] Bug #1341379 - elixir-1.4.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=1341379 -------------------------------------------------------------------------------- ================================================================================ fcitx-configtool-0.4.9-1.fc24 (FEDORA-2017-310e5401c9) Gtk+-based configuring tools for Fcitx -------------------------------------------------------------------------------- Update Information: Update to 0.4.9 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1420558 - fcitx-configtool-0.4.9 is available https://bugzilla.redhat.com/show_bug.cgi?id=1420558 -------------------------------------------------------------------------------- ================================================================================ fcitx-sunpinyin-0.4.1-9.fc24 (FEDORA-2017-040e80e512) Sunpinyin Wrapper for Fcitx -------------------------------------------------------------------------------- Update Information: Requires sunpinyin-data (BZ#1408832) -------------------------------------------------------------------------------- ================================================================================ gimp-2.8.22-2.fc24 (FEDORA-2017-d0d68371c7) GNU Image Manipulation Program -------------------------------------------------------------------------------- Update Information: Overview of Changes from GIMP 2.8.20 to GIMP 2.8.22 =================================================== GUI: - improve drawing performance in single window mode, especially with pixmap themes Plug-ins: - Fix for CVE-2007-3126, a bug in the ICO plug-in which allowed context- dependent attackers to cause a denial of service (crash) via an ICO file with an InfoHeader containing a Height of zero. We couldn't reproduce any crash in recent version, but fixed the error messages for good measure - Avoid creating wrong layer group structure when importing PSD files (already fixed in 2.8.20, didn't make it to the NEWS) - Prevent a crash in PDF plug-in if images or resolution are large - stop parsing invalid PCX files early and prevent a segmentation fault - **added support for screenshot functionality under Wayland sessions (backported from devel version of GIMP)** General: - if NOCONFIGURE is set, autogen.sh won't run configure - VPATH builds for win32 targets have been fixed Updated Translations: - Basque - Brazilian Portuguese - Catalan - Chinese (PRC) - Finnish - Greek - Hungarian - Italian - Kazakh - Norwegian - Polish - Slovenian - Spanish - Swedish -------------------------------------------------------------------------------- References: [ 1 ] Bug #1398556 - Gimp screenshot function does not work under Wayland session https://bugzilla.redhat.com/show_bug.cgi?id=1398556 [ 2 ] Bug #1448977 - gimp-2.8.22 is available https://bugzilla.redhat.com/show_bug.cgi?id=1448977 -------------------------------------------------------------------------------- ================================================================================ git-2.7.5-1.fc24 (FEDORA-2017-01a7989fc0) Fast Version Control System -------------------------------------------------------------------------------- Update Information: An issue in `git-shell` could allow remote users to run an interactive pager. >From the [update announcement](https://public- inbox.org/git/xmqq8tm5ziat.fsf@xxxxxxxxxxxxxxxxxxxxxxxxxxx/): ... fix a recently disclosed problem with "git shell", which may allow a user who comes over SSH to run an interactive pager by causing it to spawn "git upload-pack --help" (CVE-2017-8386). The announcement also notes: If you are not running a server, or if your server has not been explicitly configured to use git-shell as a login shell, you are not affected. Also note that sites running "git shell" behind gitolite are NOT vulnerable. Further details can be found in the commit message which fixed the issue ([3ec804490](https://github.com/git/git/commit/3ec804490)). -------------------------------------------------------------------------------- ================================================================================ glusterfs-3.8.12-1.fc24 (FEDORA-2017-1ca3ef15ab) Distributed File System -------------------------------------------------------------------------------- Update Information: 3.8.12 GA -------------------------------------------------------------------------------- ================================================================================ golang-github-petar-GoLLRB-0-0.1.git53be0d3.fc24 (FEDORA-2017-646178adbe) Left-Leaning Red-Black implementation of balanced binary search trees -------------------------------------------------------------------------------- Update Information: First package in Fedora -------------------------------------------------------------------------------- References: [ 1 ] Bug #1245962 - Review Request: golang-github-petar-GoLLRB - Left-Leaning Red-Black implementation of balanced binary search trees https://bugzilla.redhat.com/show_bug.cgi?id=1245962 -------------------------------------------------------------------------------- ================================================================================ jasper-1.900.13-4.fc24 (FEDORA-2017-da0b00fd64) Implementation of the JPEG-2000 standard, Part 1 -------------------------------------------------------------------------------- Update Information: Security fix for CVE-2016-9387, CVE-2016-9388, CVE-2016-9389, CVE-2016-9390, CVE-2016-9391, CVE-2016-9392, CVE-2016-9393, CVE-2016-9394, CVE-2016-9560, CVE-2016-9591, CVE-2016-9600, CVE-2016-10251 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1406408 - CVE-2016-9591 CVE-2016-9600 CVE-2016-10251 jasper: various flaws [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1406408 [ 2 ] Bug #1396986 - CVE-2016-9387 CVE-2016-9388 CVE-2016-9389 CVE-2016-9390 CVE-2016-9391 CVE-2016-9392 CVE-2016-9393 CVE-2016-9394 CVE-2016-9560 jasper: various flaws [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1396986 -------------------------------------------------------------------------------- ================================================================================ kdelibs-4.14.30-2.fc24 (FEDORA-2017-8b4898ce81) KDE Libraries -------------------------------------------------------------------------------- Update Information: security fix for CVE-2017-8422. https://www.kde.org/info/security/advisory-20170510-1.txt -------------------------------------------------------------------------------- References: [ 1 ] Bug #1449649 - CVE-2017-8422 kdelibs: kauth: service invoking dbus is not properly checked and allows local privilege escalation [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1449649 -------------------------------------------------------------------------------- ================================================================================ kf5-kauth-5.33.0-2.fc24 (FEDORA-2017-6bdbf57f29) KDE Frameworks 5 Tier 2 integration module to perform actions as privileged user -------------------------------------------------------------------------------- Update Information: security fix for CVE-2017-8422. https://www.kde.org/info/security/advisory-20170510-1.txt -------------------------------------------------------------------------------- References: [ 1 ] Bug #1449652 - CVE-2017-8422 kf5-kauth: kauth: service invoking dbus is not properly checked and allows local privilege escalation [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1449652 -------------------------------------------------------------------------------- ================================================================================ konversation-1.7.2-1.fc24 (FEDORA-2017-2a80e17590) A user friendly IRC client -------------------------------------------------------------------------------- Update Information: Update to new upstream version 1.7.2, which brings several minor bug fixes. -------------------------------------------------------------------------------- ================================================================================ libvirt-1.3.3.3-1.fc24 (FEDORA-2017-6055198a14) Library providing a simple virtualization API -------------------------------------------------------------------------------- Update Information: * Rebased to version 1.3.3.3 * schema: don't validate paths (bz #1353296) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1353296 - Libvirt fails to validate following virsh edit. XML created by virt-manager. https://bugzilla.redhat.com/show_bug.cgi?id=1353296 -------------------------------------------------------------------------------- ================================================================================ luminance-hdr-2.5.1-4.fc24 (FEDORA-2017-82a95aaccf) A graphical tool for creating and tone-mapping HDR images -------------------------------------------------------------------------------- Update Information: Release 2.5.1 - This is essentially a bugfixing release with some minor enhancements. Highlights and artifacts issues have been fixed for all profiles. -------------------------------------------------------------------------------- ================================================================================ marco-1.16.1-1.fc24 (FEDORA-2017-54e2fdc876) MATE Desktop window manager -------------------------------------------------------------------------------- Update Information: - fix for https://github.com/mate-desktop/marco/issues/251 - https://bugzilla.redhat.com/show_bug.cgi?id=1419634 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1419634 - Focus not always on window on top of the z axis https://bugzilla.redhat.com/show_bug.cgi?id=1419634 -------------------------------------------------------------------------------- ================================================================================ mate-themes-3.20.20-1.fc24 (FEDORA-2017-77b4b2400d) MATE Desktop themes -------------------------------------------------------------------------------- Update Information: update to latest upstream releases -------------------------------------------------------------------------------- ================================================================================ mint-x-icons-1.4.2-3.fc24 (FEDORA-2017-eb88899313) Icon theme for Linux Mint -------------------------------------------------------------------------------- Update Information: * Remove icons for nm-applet, because they are ugly -------------------------------------------------------------------------------- ================================================================================ mozilla-https-everywhere-5.2.16-2.fc24 (FEDORA-2017-255d7c6485) HTTPS/HSTS enforcement extension for Mozilla Firefox and SeaMonkey -------------------------------------------------------------------------------- Update Information: Why do medication commercials have to tell you not to take it if you're allergic to it? -------------------------------------------------------------------------------- ================================================================================ nagios-4.3.2-1.fc24 (FEDORA-2017-0555c00eb0) Host/service/network monitoring program -------------------------------------------------------------------------------- Update Information: Updated from 4.3.1 maint to 4.3.2 ---- I broke several peoples names because the UTF-8 character was removed. My apologies. -------------------------------------------------------------------------------- ================================================================================ openvdb-4.0.1-2.fc24 (FEDORA-2017-44a755a3db) C++ library for sparse volumetric data discretized on three-dimensional grids -------------------------------------------------------------------------------- Update Information: * Add support for OpenVDB Volume Rendering * Add Alembic import/export support * Remove redundant fonts directory -------------------------------------------------------------------------------- References: [ 1 ] Bug #1444634 - Review Request: openvdb - C++ library for sparse volumetric data discretized on three-dimensional grids https://bugzilla.redhat.com/show_bug.cgi?id=1444634 [ 2 ] Bug #1445675 - Review Request: alembic - Open framework for storing and sharing scene data https://bugzilla.redhat.com/show_bug.cgi?id=1445675 -------------------------------------------------------------------------------- ================================================================================ owncloud-client-2.3.2-1.fc24 (FEDORA-2017-c6a40a3598) The ownCloud Client -------------------------------------------------------------------------------- Update Information: - Fix more crashes (thanks to everyone submitting to our crash reporter!) - Improve compatibility with server 10.0 (5691, X-OC-Total-Size) - Share dialog: UI improvements, Bring to front on tray click - owncloudcmd: Align process return value with sync return value (3936) - Fix disk free check on Windows when opening the local DB -------------------------------------------------------------------------------- References: [ 1 ] Bug #1434416 - owncloud-client-2.3.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=1434416 [ 2 ] Bug #1432540 - Remove OpenSSL SSLeay_add_all_algorithms() patch on 2.3.0 https://bugzilla.redhat.com/show_bug.cgi?id=1432540 -------------------------------------------------------------------------------- ================================================================================ perl-CPAN-Perl-Releases-3.16-1.fc24 (FEDORA-2017-96ac06ebca) Mapping Perl releases on CPAN to the location of the tarballs -------------------------------------------------------------------------------- Update Information: Updated to the latest version -------------------------------------------------------------------------------- References: [ 1 ] Bug #1450233 - perl-CPAN-Perl-Releases-3.16 is available https://bugzilla.redhat.com/show_bug.cgi?id=1450233 -------------------------------------------------------------------------------- ================================================================================ perl-Gnome2-VFS-1.083-1.fc24 (FEDORA-2017-fe380388f3) Perl interface to the 2.x series of the GNOME VFS library -------------------------------------------------------------------------------- Update Information: This release fixes argument check in Gnome2::VFS::read(). -------------------------------------------------------------------------------- ================================================================================ php-libvirt-0.5.3-2.fc24 (FEDORA-2017-e6712f155f) PHP language bindings for Libvirt -------------------------------------------------------------------------------- Update Information: Upgrade to 0.5.3 -------------------------------------------------------------------------------- ================================================================================ php-pear-Text-Diff-1.2.2-1.fc24 (FEDORA-2017-3fa72b84cf) Engine for performing and rendering text diffs -------------------------------------------------------------------------------- Update Information: Update to 1.2.2 : - Fully use PHP5 constructors - Make statically called method static -------------------------------------------------------------------------------- References: [ 1 ] Bug #1430568 - php-pear-Text-Diff-1.2.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=1430568 -------------------------------------------------------------------------------- ================================================================================ php-swiftmailer-5.4.8-1.fc24 (FEDORA-2017-130e261e8b) Free Feature-rich PHP Mailer -------------------------------------------------------------------------------- Update Information: **Version 5.4.8** (2017-05-01) * fixed encoding inheritance in addPart() * fixed sorting MIME children when their types are equal -------------------------------------------------------------------------------- ================================================================================ pkgconf-1.3.6-1.fc24 (FEDORA-2017-54cbc35d6b) Package compiler and linker metadata toolkit -------------------------------------------------------------------------------- Update Information: **Enhancements**: - add many cflags to the protected set: -Wa, -Wl, -Wp, -ansi, -std=, -stdlib=, -pedantic, -pthread, -trigraphs, -nostdinc, -nostdlibinc, -nobuiltininc. **Bug fixes**: - handle -include cflag fragments properly. -------------------------------------------------------------------------------- ================================================================================ postgresql-9.5.7-1.fc24 (FEDORA-2017-4de07172f4) PostgreSQL client programs -------------------------------------------------------------------------------- Update Information: Per release notes: http://www.postgresql.org/docs/9.5/static/release-9-5-7.html -------------------------------------------------------------------------------- ================================================================================ python-2.7.13-2.fc24 (FEDORA-2017-05913d5475) An interpreted, interactive, object-oriented programming language -------------------------------------------------------------------------------- Update Information: Enable profile guided optimizations for x86_64 and i686 architectures -------------------------------------------------------------------------------- References: [ 1 ] Bug #613045 - RFE: Add profile guided optimization to our builds of Python 2 https://bugzilla.redhat.com/show_bug.cgi?id=613045 -------------------------------------------------------------------------------- ================================================================================ python-bitstruct-3.4.0-1.fc24 (FEDORA-2017-8f8aa4a33b) Interpret strings as packed binary data -------------------------------------------------------------------------------- Update Information: * New upstream release -------------------------------------------------------------------------------- References: [ 1 ] Bug #1450026 - python-bitstruct-3.4.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1450026 -------------------------------------------------------------------------------- ================================================================================ python-streamlink-0.6.0-1.fc24 (FEDORA-2017-3f74ae8127) Python library for extracting streams from various websites -------------------------------------------------------------------------------- Update Information: Another release of Streamlink! We've updated more plugins, improved documentation, and moved out nightly builds to Bintray (S3 was costing *wayyyy* too much). Again, many thanks for those who've contributed! If you think that this application is helpful, please consider supporting the maintainers by donating. Thank you very much! See https://github.com/streamlink/streamlink/releases/tag/0.6.0 for more -------------------------------------------------------------------------------- ================================================================================ python3-3.5.3-6.fc24 (FEDORA-2017-830e540c85) Version 3 of the Python programming language aka Python 3000 -------------------------------------------------------------------------------- Update Information: Enable profile guided optimizations for x86_64 and i686 architectures -------------------------------------------------------------------------------- References: [ 1 ] Bug #613046 - RFE: Add profile guided optimization to our builds of Python 3 https://bugzilla.redhat.com/show_bug.cgi?id=613046 -------------------------------------------------------------------------------- ================================================================================ qpid-proton-0.17.0-2.fc24 (FEDORA-2017-eb21014ab8) A high performance, lightweight messaging library -------------------------------------------------------------------------------- Update Information: Added a fix for PROTON-1466. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1427918 - qpid-proton: FTBFS - error: -Wformat-security ignored without -Wformat [-Werror=format-security] https://bugzilla.redhat.com/show_bug.cgi?id=1427918 -------------------------------------------------------------------------------- ================================================================================ rubygem-nokogiri-1.7.2-1.fc24 (FEDORA-2017-7576731759) An HTML, XML, SAX, and Reader parser -------------------------------------------------------------------------------- Update Information: New version 1.7.2 is released. -------------------------------------------------------------------------------- ================================================================================ salt-2016.11.5-2.fc24 (FEDORA-2017-a1c0c134b1) A parallel remote execution system -------------------------------------------------------------------------------- Update Information: Commented out check for pycryptodomex on Fedora -------------------------------------------------------------------------------- ================================================================================ sayonara-0.9.3-2.git20170509.fc24 (FEDORA-2017-95f56ca9a8) A lightweight Qt Audio player -------------------------------------------------------------------------------- Update Information: Update to 0.9.3-2.git20170509 ---- Update to 0.9.3-1.git20170502 -------------------------------------------------------------------------------- ================================================================================ smb4k-1.2.2-3.fc24 (FEDORA-2017-aceb424894) The SMB/CIFS Share Browser for KDE -------------------------------------------------------------------------------- Update Information: Security fix for CVE-2017-8849. https://www.kde.org/info/security/advisory-20170510-2.txt -------------------------------------------------------------------------------- References: [ 1 ] Bug #1449658 - CVE-2017-8849 smb4k: unauthorized local command execution as root [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1449658 -------------------------------------------------------------------------------- ================================================================================ vim-8.0.596-1.fc24 (FEDORA-2017-ea08548d1a) The VIM editor -------------------------------------------------------------------------------- Update Information: The newest upstream commit -------------------------------------------------------------------------------- ================================================================================ webkitgtk4-2.16.2-1.fc24 (FEDORA-2017-3fa1357529) GTK+ Web content engine library -------------------------------------------------------------------------------- Update Information: Update to WebKitGTK+ 2.16.2: * Update user agent quirks to make Youtube and new Google login page work. * Fix rendering of animated PNGs. * Fix playing of some live streams. * Update several web inspector icons. * Fix several crashes and rendering issues. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1446817 - Cannot sign in with new Google sign-in page https://bugzilla.redhat.com/show_bug.cgi?id=1446817 -------------------------------------------------------------------------------- ================================================================================ xdg-desktop-portal-0.6-1.fc24 (FEDORA-2017-668ef7de0b) Portal frontend service to flatpak -------------------------------------------------------------------------------- Update Information: Update to 0.6 -------------------------------------------------------------------------------- ================================================================================ xdg-desktop-portal-gtk-0.6-1.fc24 (FEDORA-2017-668ef7de0b) Backend implementation for xdg-desktop-portal using GTK+ -------------------------------------------------------------------------------- Update Information: Update to 0.6 -------------------------------------------------------------------------------- ================================================================================ xrootd-4.6.1-1.fc24 (FEDORA-2017-29b393d76e) Extended ROOT file server -------------------------------------------------------------------------------- Update Information: **Version 4.6.1:** The upstream release notes can be seen below. Note that many of the changes were already applied in Fedora and EPEL as patches to version 4.6.0 in order to address reported bugs. **Major bug fixes** * **[Server/Proxy]** Avoid SEGV when close(), closedir() returns an error. * **[cmsd]** Fix feature interaction causing improper file existence to be sent. * **[XrdCrypto/XrdSecgsi]** Make sure the CRL is loaded for the right CA. * **[XrdCrypto]** Support for OpenSSL 1.1 * **[XrdSecgsi]** do not build/package libXrdSecgsiGMAPLDAP-4.so. * **[XrdSecgsi]** Improve detection of errors when loading CRL. * **[XrdSecgsi]** Fix for valid legacy proxy detection (PR #469) * **[XrdSecgsi]** Absent CRLs not an error (#465) * **[XrdSecgsi]** Fix for CA chain verification segfault (issue #463) * **[XrdSecgsi]** Two memory leaks (PR #503) * **[XrdCl]** Make sure there is no request/response mismatch, when the retry logics tries to recover from an error. * **[XrdCl/Server]** Be case insensitive when it comes to checksum names. * **[XrdCeph]** Fix ability to read back a file written with O_RDWR flags. * **[XrdCeph]** Disable logging of every read and write operation. A proper debug-level logging would be needed instead. * **[XrdCeph]** Added statistics about read/write operations in the close log. **Minor bug fixes** * **[XrdHttp]** Make the XrdHttpSecXtractor API backwards compatible. * **[XrdFileCache]** Make caching proxy configuration backwards compatible. * **[XrdFileCache]** Fix cache v1 to cache v2 bridge after introducing cache v2. * **[XrdSec]** Use CommonCrypto header instead of openssl for SHA on OSX. * **[XrdSeckrb5]** Fix memory leaks in client context and cache. * **[Server/Logrotate]** Make sure XRootD logrotate does not interfire with system logrotate, fixes #490 * ** [Server]** Avoid std::ABORT should a naked logfile path be specified. * **[XrdCl]** Make sure ForkHandler doesn't segv if PostMaster is null, fixes #489 * **[Packaging]** Set the working dir to /var/spool/xrootd on CC7, fixes #365 * **[Packaging]** On platforms where systemd is available, manage files in /var/run with tmpfiles.d, fixes #485 **Miscellaneous** * **[XrdPosix]** Add new minpages option to pss.cache to support large pages. * **[XrdPosix]** Make XrdPosix.hh a public header; closes #479 * **[XrdApps]** Remove XrdClient dependency from xrdadler32. * **[Server]** Add XrdCksAssist functions to help handle XRootD checksums. * **[Server/Proxy]** Move disk sync operations out of IO::ioActive() call. * **[Server/Proxy]** Change severity IO::initLocalStat() log message. * **[XrdFileCache]** Ease development of decision plugins. -------------------------------------------------------------------------------- _______________________________________________ test mailing list -- test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to test-leave@xxxxxxxxxxxxxxxxxxxxxxx
