The following Fedora 24 Security updates need testing: Age URL 186 https://bodhi.fedoraproject.org/updates/FEDORA-2016-26f9817b08 squid-3.5.23-1.fc24 179 https://bodhi.fedoraproject.org/updates/FEDORA-2016-eaaa9c4a08 exim-4.87.1-1.fc24 142 https://bodhi.fedoraproject.org/updates/FEDORA-2017-ece16ba6ba runc-1.0.0-5.rc2.gitc91b5be.fc24 78 https://bodhi.fedoraproject.org/updates/FEDORA-2017-8330a48ca2 python-XStatic-jquery-ui-1.12.0.1-1.fc24 17 https://bodhi.fedoraproject.org/updates/FEDORA-2017-5f1006afb1 libstaroffice-0.0.3-3.fc24 17 https://bodhi.fedoraproject.org/updates/FEDORA-2017-a1f4c48c68 nodejs-brace-expansion-1.1.7-1.fc24 14 https://bodhi.fedoraproject.org/updates/FEDORA-2017-e4638a345c tomcat-8.0.44-1.fc24 8 https://bodhi.fedoraproject.org/updates/FEDORA-2017-bbae64fdc2 libmwaw-0.3.11-3.fc24 6 https://bodhi.fedoraproject.org/updates/FEDORA-2017-b154ff2892 mercurial-3.7.3-2.fc24 5 https://bodhi.fedoraproject.org/updates/FEDORA-2017-c2e1dc46a1 chromium-59.0.3071.104-1.fc24 5 https://bodhi.fedoraproject.org/updates/FEDORA-2017-bff00a1c35 thunderbird-52.2.0-1.fc24 3 https://bodhi.fedoraproject.org/updates/FEDORA-2017-b8d76bef4e chromium-native_client-59.0.3071.86-1.20170607gitaac1de2.fc24 3 https://bodhi.fedoraproject.org/updates/FEDORA-2017-4932c9b886 c-ares-1.13.0-1.fc24 1 https://bodhi.fedoraproject.org/updates/FEDORA-2017-5596f2f94d openvpn-2.3.17-1.fc24 1 https://bodhi.fedoraproject.org/updates/FEDORA-2017-2cfb239358 libsndfile-1.0.28-3.fc24 1 https://bodhi.fedoraproject.org/updates/FEDORA-2017-3159dd230a drupal8-8.3.4-1.fc24 1 https://bodhi.fedoraproject.org/updates/FEDORA-2017-5e34cd1c37 php-horde-Horde-Image-2.5.0-1.fc24 1 https://bodhi.fedoraproject.org/updates/FEDORA-2017-b3bdaf58bc xen-4.6.5-7.fc24 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-e0a9e51dd5 graphite2-1.3.10-1.fc24 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-d191fb7fce zabbix-3.0.9-1.fc24 The following Fedora 24 Critical Path updates have yet to be approved: Age URL 65 https://bodhi.fedoraproject.org/updates/FEDORA-2017-e1905fd566 koji-1.12.0-2.fc24 10 https://bodhi.fedoraproject.org/updates/FEDORA-2017-07fed9b000 libteam-1.27-1.fc24 6 https://bodhi.fedoraproject.org/updates/FEDORA-2017-ce8c7053eb audit-2.7.7-1.fc24 5 https://bodhi.fedoraproject.org/updates/FEDORA-2017-bff00a1c35 thunderbird-52.2.0-1.fc24 1 https://bodhi.fedoraproject.org/updates/FEDORA-2017-2cfb239358 libsndfile-1.0.28-3.fc24 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-e0a9e51dd5 graphite2-1.3.10-1.fc24 The following builds have been pushed to Fedora 24 updates-testing graphite2-1.3.10-1.fc24 php-guzzlehttp-guzzle6-6.3.0-1.fc24 psysh-0.8.7-1.fc24 qpid-proton-0.17.0-3.fc24 siril-0.9.6-1.fc24 zabbix-3.0.9-1.fc24 Details about builds: ================================================================================ graphite2-1.3.10-1.fc24 (FEDORA-2017-e0a9e51dd5) Font rendering capabilities for complex non-Roman writing systems -------------------------------------------------------------------------------- Update Information: 1.3.10 - Address floating point build parameters to give consistent positioning results across platforms - Various bug fixes 1.3.9 - Add Collision COLL_ISSPACE to allow for visible spaces in collision avoidance - Add segment and pass direction information to tracing output - Bug fix rule length testing in 32-bit - Increase slanted margin distances for collision avoidance - Change kerning algorithm to simple outline expansion. Seems to make no visible difference. - Add trace2svg to test tools 1.3.8 - Various bug fixes arising from fuzzing - Fix regression that stopped piglatin from working - Make collision avoidance kerning give more regular results - Minor modification to clustering algorithm to handle variable width chars 1.3.7 - Bug fixes - Start to deprecate SegCache. This will be going away in a later release. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1462966 - CVE-2017-7778: Vulnerabilities in the Graphite 2 library (update to 1.3.10) https://bugzilla.redhat.com/show_bug.cgi?id=1462966 -------------------------------------------------------------------------------- ================================================================================ php-guzzlehttp-guzzle6-6.3.0-1.fc24 (FEDORA-2017-7e1e46665c) PHP HTTP client library -------------------------------------------------------------------------------- Update Information: ## 6.3.0 - 2017-06-22 * Feature: force IP resolution (ipv4 or ipv6) [#1608](https://github.com/guzzle/guzzle/pull/1608), [#1659](https://github.com/guzzle/guzzle/pull/1659) * Improvement: Don't include summary in exception message when body is empty [#1621](https://github.com/guzzle/guzzle/pull/1621) * Improvement: Handle `on_headers` option in MockHandler [#1580](https://github.com/guzzle/guzzle/pull/1580) * Improvement: Added SUSE Linux CA path [#1609](https://github.com/guzzle/guzzle/issues/1609) * Improvement: Use class reference for getting the name of the class instead of using hardcoded strings [#1641](https://github.com/guzzle/guzzle/pull/1641) * Feature: Added `read_timeout` option [#1611](https://github.com/guzzle/guzzle/pull/1611) * Bug fix: PHP 7.x fixes [#1685](https://github.com/guzzle/guzzle/pull/1685), [#1686](https://github.com/guzzle/guzzle/pull/1686), [#1811](https://github.com/guzzle/guzzle/pull/1811) * Deprecation: BadResponseException instantiation without a response [#1642](https://github.com/guzzle/guzzle/pull/1642) * Feature: Added NTLM auth [#1569](https://github.com/guzzle/guzzle/pull/1569) * Feature: Track redirect HTTP status codes [#1711](https://github.com/guzzle/guzzle/pull/1711) * Improvement: Check handler type during construction [#1745](https://github.com/guzzle/guzzle/pull/1745) * Improvement: Always include the Content-Length if there's a body [#1721](https://github.com/guzzle/guzzle/pull/1721) * Feature: Added convenience method to access a cookie by name [#1318](https://github.com/guzzle/guzzle/pull/1318) * Bug fix: Fill `CURLOPT_CAPATH` and `CURLOPT_CAINFO` properly [#1684](https://github.com/guzzle/guzzle/pull/1684) * Improvement: Use `\GuzzleHttp\Promise\rejection_for` function instead of object init [#1827](https://github.com/guzzle/guzzle/pull/1827) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1464283 - php-guzzlehttp-guzzle6-6.3.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1464283 -------------------------------------------------------------------------------- ================================================================================ psysh-0.8.7-1.fc24 (FEDORA-2017-e12d244fcb) A runtime developer console, interactive debugger and REPL for PHP -------------------------------------------------------------------------------- Update Information: ## v0.8.7 * Handle missing files in `require` more gracefully (Thanks @Markcial!) * Move `Psy\Shell::debug()` to `Psy\debug()` to match `Psy\sh()` and `Psy\info()`. * Fix `array_multisort` pass-by-reference validation. * Add support for private constant validation in PHP 7.1. ## v0.8.6 ### New * Add `show --ex` for showing context for the last exception. * Show call context (whereami) for debug sessions. ### Improved * Fix using exit or die as an expression (Thanks @zonuexe!) * Fix exceptions during autocomplete on some Windows installs. * Don't show the current `hist` call in the history results. * Add a bunch of missing line numbers on fatal errors. * Documentation overhaul. ## v0.8.5 * Fix namespace handling regression caused by [49c936e](https://githu b.com/bobthecow/psysh/commit/49c936e4c4b9965e43f42479b044dd0829cdbc56). * Add a code cleaner pass to handle `break` and `continue` outside of loop contexts. * Improve `wtf` trace UX. * Exclude execution loop file name from `eval()` lines in traces. * Add a few more integrations to the README. ## v0.8.4 ### New * Add code argument support to commands. Use this for great justice. * Add a `sudo` command. Check it out. I promise you won't be disappointed. ### Improved * Don't show `=> null` for code with no return value. Because it was a lie. * Add `--grep`, `--insensitive` and `--invert` filter options to `trace` and `wtf?` commands. * Include previous exceptions in `wtf?` output. * Show default values for props in `ls ClassName`. * Various and sundry code cleanup. Seriously. Check out `sudo`. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1450707 - psysh-0.8.7 is available https://bugzilla.redhat.com/show_bug.cgi?id=1450707 -------------------------------------------------------------------------------- ================================================================================ qpid-proton-0.17.0-3.fc24 (FEDORA-2017-152542b533) A high performance, lightweight messaging library -------------------------------------------------------------------------------- Update Information: Removed .hpp files from qpid-proton-c-devel RPM. -------------------------------------------------------------------------------- ================================================================================ siril-0.9.6-1.fc24 (FEDORA-2017-3f1fa74981) Astronomical image processing software -------------------------------------------------------------------------------- Update Information: New upstream release 0.9.6 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1463425 - New version of Siril https://bugzilla.redhat.com/show_bug.cgi?id=1463425 -------------------------------------------------------------------------------- ================================================================================ zabbix-3.0.9-1.fc24 (FEDORA-2017-d191fb7fce) Open-source monitoring solution for your IT infrastructure -------------------------------------------------------------------------------- Update Information: - http://www.zabbix.com/rn3.0.8 - http://www.zabbix.com/rn3.0.9 - https://www.zabbix.com/documentation/3.0/manual/introduction/whatsnew308 - https://www.zabbix.com/documentation/3.0/manual/introduction/whatsnew309 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1448392 - CVE-2017-2824 zabbix: Multiple vulnerabilities https://bugzilla.redhat.com/show_bug.cgi?id=1448392 -------------------------------------------------------------------------------- _______________________________________________ test mailing list -- test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to test-leave@xxxxxxxxxxxxxxxxxxxxxxx
