The following Fedora 25 Security updates need testing: Age URL 202 https://bodhi.fedoraproject.org/updates/FEDORA-2016-d79ba708cb exim-4.87.1-1.fc25 101 https://bodhi.fedoraproject.org/updates/FEDORA-2017-e2d17af41e python-XStatic-jquery-ui-1.12.0.1-4.fc25 44 https://bodhi.fedoraproject.org/updates/FEDORA-2017-7dbbbafea6 runc-1.0.0-7.git6394544.fc25.2 40 https://bodhi.fedoraproject.org/updates/FEDORA-2017-5d7498559f nodejs-brace-expansion-1.1.7-1.fc25 11 https://bodhi.fedoraproject.org/updates/FEDORA-2017-1ca18683e4 openldap-2.4.44-11.fc25 8 https://bodhi.fedoraproject.org/updates/FEDORA-2017-b9e4c24094 subversion-1.9.6-1.fc25 5 https://bodhi.fedoraproject.org/updates/FEDORA-2017-b0a2770a9b knot-2.4.5-1.fc25 5 https://bodhi.fedoraproject.org/updates/FEDORA-2017-90ad72e684 irssi-1.0.4-1.fc25 5 https://bodhi.fedoraproject.org/updates/FEDORA-2017-efdd962fee putty-0.70-1.fc25 5 https://bodhi.fedoraproject.org/updates/FEDORA-2017-c844713925 qt5-qtwebkit-5.212.0-0.5.alpha2.fc25 5 https://bodhi.fedoraproject.org/updates/FEDORA-2017-33c8085c5d groovy18-1.8.9-28.fc25 5 https://bodhi.fedoraproject.org/updates/FEDORA-2017-92643d70b7 knot-resolver-1.3.1-1.fc25 4 https://bodhi.fedoraproject.org/updates/FEDORA-2017-7eaec3353d poppler-0.45.0-5.fc25 4 https://bodhi.fedoraproject.org/updates/FEDORA-2017-5d6a9e0c9c heimdal-7.4.0-1.fc25 4 https://bodhi.fedoraproject.org/updates/FEDORA-2017-f941184db1 qemu-2.7.1-7.fc25 3 https://bodhi.fedoraproject.org/updates/FEDORA-2017-cc0b92f6c1 glpi-9.1.5-1.fc25 3 https://bodhi.fedoraproject.org/updates/FEDORA-2017-9fa2cefa7a mingw-poppler-0.45.0-3.fc25 2 https://bodhi.fedoraproject.org/updates/FEDORA-2017-81522ac6d8 nodejs-6.11.1-1.fc25 2 https://bodhi.fedoraproject.org/updates/FEDORA-2017-346836a623 phpldapadmin-1.2.3-10.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-90cf7a82de minicom-2.7.1-1.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-2d8a1226d1 libmwaw-0.3.12-1.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-c22a8af4e9 rubygem-rack-cors-0.4.1-1.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-1d46019681 yara-3.6.3-1.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-86cfcbbae8 libstaroffice-0.0.4-1.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-534f300508 perl-XML-LibXML-2.0129-2.fc25 The following Fedora 25 Critical Path updates have yet to be approved: Age URL 44 https://bodhi.fedoraproject.org/updates/FEDORA-2017-613a72e282 lorax-25.22-1.fc25 23 https://bodhi.fedoraproject.org/updates/FEDORA-2017-0187b2a605 selinux-policy-3.13.1-225.19.fc25 16 https://bodhi.fedoraproject.org/updates/FEDORA-2017-118505dd77 libsoup-2.56.0-3.fc25 11 https://bodhi.fedoraproject.org/updates/FEDORA-2017-a90ed7e59d libtirpc-1.0.2-0.fc25 11 https://bodhi.fedoraproject.org/updates/FEDORA-2017-1ca18683e4 openldap-2.4.44-11.fc25 11 https://bodhi.fedoraproject.org/updates/FEDORA-2017-7cd9e81996 quota-4.03-8.fc25 10 https://bodhi.fedoraproject.org/updates/FEDORA-2017-b18eded0a5 glusterfs-3.10.4-1.fc25 5 https://bodhi.fedoraproject.org/updates/FEDORA-2017-ebeb4bb332 mariadb-10.1.25-1.fc25 5 https://bodhi.fedoraproject.org/updates/FEDORA-2017-ddd2aa1a04 xen-4.7.3-1.fc25 4 https://bodhi.fedoraproject.org/updates/FEDORA-2017-e587cfd70e supermin-5.1.18-1.fc25 4 https://bodhi.fedoraproject.org/updates/FEDORA-2017-f21d307d97 nss-3.31.0-1.0.fc25 nss-softokn-3.31.0-1.0.fc25 nss-util-3.31.0-1.0.fc25 nspr-4.15.0-1.fc25 4 https://bodhi.fedoraproject.org/updates/FEDORA-2017-04bf7c03b8 libproxy-0.4.15-2.fc25 4 https://bodhi.fedoraproject.org/updates/FEDORA-2017-f941184db1 qemu-2.7.1-7.fc25 4 https://bodhi.fedoraproject.org/updates/FEDORA-2017-7eaec3353d poppler-0.45.0-5.fc25 3 https://bodhi.fedoraproject.org/updates/FEDORA-2017-6d834aa7e7 breeze-icon-theme-5.36.0-1.fc25 extra-cmake-modules-5.36.0-1.fc25 kf5-5.36.0-1.fc25 kf5-attica-5.36.0-1.fc25 kf5-baloo-5.36.0-1.fc25 kf5-bluez-qt-5.36.0-1.fc25 kf5-frameworkintegration-5.36.0-1.fc25 kf5-kactivities-5.36.0-1.fc25 kf5-kactivities-stats-5.36.0-1.fc25 kf5-kapidox-5.36.0-1.fc25 kf5-karchive-5.36.0-1.fc25 kf5-kauth-5.36.0-1.fc25 kf5-kbookmarks-5.36.0-1.fc25 kf5-kcmutils-5.36.0-1.fc25 kf5-kcodecs-5.36.0-1.fc25 kf5-kcompletion-5.36.0-1.fc25 kf5-kconfig-5.36.0-1.fc25 kf5-kconfigwidgets-5.36.0-1.fc25 kf5-kcoreaddons-5.36.0-1.fc25 kf5-kcrash-5.36.0-1.fc25 kf5-kdbusaddons-5.36.0-1.fc25 kf5-kdeclarative-5.36.0-1.fc25 kf5-kded-5.36.0-1.fc25 kf5-kdelibs4support-5.36.0-1.fc25 kf5-kdesignerplugin-5.36.0-1.fc25 kf5-kdesu-5.36.0-1.fc25 kf5-kdewebkit-5.36.0-1.fc25 kf5-kdnssd-5.36.0-1.fc25 kf5-kdoctools-5.36.0-1.fc25 kf5-kemoticons-5.36.0-1.fc25 kf5-kfilemetadata-5.36.0-1.fc25 kf5-kglobalaccel-5.36.0-1.fc25 kf5-kguiad dons-5.36.0-2.fc25 kf5-khtml-5.36.0-1.fc25 kf5-ki18n-5.36.0-3.fc25 kf5-kiconthemes-5.36.0-1.fc25 kf5-kidletime-5.36.0-1.fc25 kf5-kimageformats-5.36.0-1.fc25 kf5-kinit-5.36.0-1.fc25 kf5-kio-5.36.0-1.fc25 kf5-kitemmodels-5.36.0-1.fc25 kf5-kitemviews-5.36.0-1.fc25 kf5-kjobwidgets-5.36.0-1.fc25 kf5-kjs-5.36.0-1.fc25 kf5-kjsembed-5.36.0-1.fc25 kf5-kmediaplayer-5.36.0-1.fc25 kf5-knewstuff-5.36.0-3.fc25 kf5-knotifications-5.36.0-1.fc25 kf5-knotifyconfig-5.36.0-1.fc25 kf5-kpackage-5.36.0-1.fc25 kf5-kparts-5.36.0-1.fc25 kf5-kpeople-5.36.0-1.fc25 kf5-kplotting-5.36.0-1.fc25 kf5-kpty-5.36.0-1.fc25 kf5-kross-5.36.0-1.fc25 kf5-krunner-5.36.0-1.fc25 kf5-kservice-5.36.0-1.fc25 kf5-ktexteditor-5.36.0-1.fc25 kf5-ktextwidgets-5.36.0-1.fc25 kf5-kunitconversion-5.36.0-1.fc25 kf5-kwallet-5.36.0-1.fc25 kf5-kwayland-5.36.0-1.fc25 kf5-kwidgetsaddons-5.36.0-1.fc25 kf5-kwindowsystem-5.36.0-1.fc25 kf5-kxmlgui-5.36.0-1.fc25 kf5-kxmlrpcclient-5.36.0-1.fc25 kf5-modemmanager-qt-5.36.0-1.fc25 kf5-networkmanager-qt -5.36.0-1.fc25 kf5-plasma-5.36.0-1.fc25 kf5-solid-5.36.0-1.fc25 kf5-sonnet-5.36.0-1.fc25 kf5-syntax-highlighting-5.36.0-1.fc25 kf5-threadweaver-5.36.0-1.fc25 oxygen-icon-theme-5.36.0-1.fc25 3 https://bodhi.fedoraproject.org/updates/FEDORA-2017-77b3ddeaaa net-snmp-5.7.3-14.fc25 2 https://bodhi.fedoraproject.org/updates/FEDORA-2017-077cbd8617 unzip-6.0-32.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-a21449ff30 perl-5.24.2-387.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-e2312ac9d9 pungi-4.1.17-1.fc25 The following builds have been pushed to Fedora 25 updates-testing caja-actions-1.8.3-1.fc25 copy-jdk-configs-2.3-1.fc25 evince-3.22.1-6.fc25 httpd-2.4.27-3.fc25 libstaroffice-0.0.4-1.fc25 libwps-0.4.7-1.fc25 naev-0.7.0-1.fc25 naev-data-0.7.0-2.fc25 perl-5.24.2-387.fc25 perl-CPAN-Perl-Releases-3.28-1.fc25 perl-Module-CoreList-5.20170715-1.fc25 perl-Module-Runtime-0.015-1.fc25 perl-Test-Script-1.20-1.fc25 perl-XML-LibXML-2.0129-2.fc25 pungi-4.1.17-1.fc25 pygrib-2.0.2-8.fc25 python-bitstring-3.1.5-1.fc25 python-vulture-0.16-1.fc25 rpm-ostree-2017.7-1.fc25 Details about builds: ================================================================================ caja-actions-1.8.3-1.fc25 (FEDORA-2017-39eb31b325) Caja extension for customizing the context menu -------------------------------------------------------------------------------- Update Information: - update to 1.8.3 -------------------------------------------------------------------------------- ================================================================================ copy-jdk-configs-2.3-1.fc25 (FEDORA-2017-025f7cb183) JDKs configuration files copier -------------------------------------------------------------------------------- Update Information: updated to latest head ---- Added uspport for jdk9, silcenced yum warnings, excluded debug subpackages -------------------------------------------------------------------------------- ================================================================================ evince-3.22.1-6.fc25 (FEDORA-2017-356ccb0c6a) Document viewer -------------------------------------------------------------------------------- Update Information: * Previous security update created invalid mimetype line in evince.desktop -------------------------------------------------------------------------------- References: [ 1 ] Bug #1471474 - Error in file "/usr/share/applications/evince.desktop": "" is an invalid MIME type ("" does not contain a subtype) https://bugzilla.redhat.com/show_bug.cgi?id=1471474 -------------------------------------------------------------------------------- ================================================================================ httpd-2.4.27-3.fc25 (FEDORA-2017-253c608dd2) Apache HTTP Server -------------------------------------------------------------------------------- Update Information: Bug fix update -------------------------------------------------------------------------------- References: [ 1 ] Bug #1471791 - httpd package does not require mod_http2 https://bugzilla.redhat.com/show_bug.cgi?id=1471791 -------------------------------------------------------------------------------- ================================================================================ libstaroffice-0.0.4-1.fc25 (FEDORA-2017-86cfcbbae8) A library for import of binary StarOffice documents -------------------------------------------------------------------------------- Update Information: new upstream release ---- Security fix for CVE-2017-9432 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1458799 - CVE-2017-9432 libstaroffice: Stack-buffer overflow in the StarWriterStruct::DatabaseName::read https://bugzilla.redhat.com/show_bug.cgi?id=1458799 -------------------------------------------------------------------------------- ================================================================================ libwps-0.4.7-1.fc25 (FEDORA-2017-7199c2953d) A library for import of Microsoft Works documents -------------------------------------------------------------------------------- Update Information: new upstream release -------------------------------------------------------------------------------- ================================================================================ naev-0.7.0-1.fc25 (FEDORA-2017-014179d914) 2d action, RPG space game -------------------------------------------------------------------------------- Update Information: New version with new missions -------------------------------------------------------------------------------- ================================================================================ naev-data-0.7.0-2.fc25 (FEDORA-2017-014179d914) Data files for NAEV -------------------------------------------------------------------------------- Update Information: New version with new missions -------------------------------------------------------------------------------- ================================================================================ perl-5.24.2-387.fc25 (FEDORA-2017-a21449ff30) Practical Extraction and Report Language -------------------------------------------------------------------------------- Update Information: Updated to the newer version 5.24.2 -------------------------------------------------------------------------------- ================================================================================ perl-CPAN-Perl-Releases-3.28-1.fc25 (FEDORA-2017-798f1cd92e) Mapping Perl releases on CPAN to the location of the tarballs -------------------------------------------------------------------------------- Update Information: Updated to the latest version -------------------------------------------------------------------------------- References: [ 1 ] Bug #1471440 - perl-CPAN-Perl-Releases-3.28 is available https://bugzilla.redhat.com/show_bug.cgi?id=1471440 -------------------------------------------------------------------------------- ================================================================================ perl-Module-CoreList-5.20170715-1.fc25 (FEDORA-2017-c13221b431) What modules are shipped with versions of perl -------------------------------------------------------------------------------- Update Information: This release brings data about Perl 5.22.4 and 5.24.2. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1471443 - perl-Module-CoreList-5.20170715 is available https://bugzilla.redhat.com/show_bug.cgi?id=1471443 -------------------------------------------------------------------------------- ================================================================================ perl-Module-Runtime-0.015-1.fc25 (FEDORA-2017-f95c5d9fae) Runtime module handling -------------------------------------------------------------------------------- Update Information: This release fixes its build script to work without "." in @INC path. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1471500 - perl-Module-Runtime-0.015 is available https://bugzilla.redhat.com/show_bug.cgi?id=1471500 -------------------------------------------------------------------------------- ================================================================================ perl-Test-Script-1.20-1.fc25 (FEDORA-2017-f5078f73ab) Cross-platform basic tests for scripts -------------------------------------------------------------------------------- Update Information: -------------------------------------------------------------------------------- ================================================================================ perl-XML-LibXML-2.0129-2.fc25 (FEDORA-2017-534f300508) Perl interface to the libxml2 library -------------------------------------------------------------------------------- Update Information: This release fixes a use-after-free in replaceChild() call. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1470204 - CVE-2017-10672 perl-XML-LibXML: Use-after-free by controlling the arguments to a replaceChild call https://bugzilla.redhat.com/show_bug.cgi?id=1470204 -------------------------------------------------------------------------------- ================================================================================ pungi-4.1.17-1.fc25 (FEDORA-2017-e2312ac9d9) Distribution compose tool -------------------------------------------------------------------------------- Update Information: This release brings an update to documentation. There is now description of the configuration format, overview of what happens during the compose and explanation of how packages are gathered and how the process can be customized. Bugs fixed and features added: * Creating delta RPMs is fixed. If this makes a compose too slow, just change `createrepo_deltas` option to `False` * When package dependencies are not resolved, Pungi will still read input packages from comps file. * Environments in comps files can now be filtered by architecture. * All command line parsers are ported to `argparse`. * Improved logging of where packages in the compose are coming from. Improvements for Ostree * Multiple notification scripts can now be used, which turns it into a hook callback system. * A script is provided that will pause the compose until new ostree commits are signed. To enable this, add `--notification-script=pungi- wait-for-signed-ostree-handler` to the `pungi-koji` command invocation. * When creating the installer, Pungi ensures lorax runs on non-existing directory to avoid errors. Modularity improvements * Multiple Koji tags can be used as source of packages. * Use release number of a module. And a few other smaller fixes. -------------------------------------------------------------------------------- ================================================================================ pygrib-2.0.2-8.fc25 (FEDORA-2017-2799d98d14) Python module for reading and writing GRIB (editions 1 and 2) files -------------------------------------------------------------------------------- Update Information: reorganize spec file (following pyproj) example to ensure Requires are used for the right sub-package, and added optflags. Also this rebuild is needed to adapt to the package name change implemented for pyproj. -------------------------------------------------------------------------------- ================================================================================ python-bitstring-3.1.5-1.fc25 (FEDORA-2017-a6d1586e7a) Simple construction, analysis and modification of binary data -------------------------------------------------------------------------------- Update Information: Initial package release -------------------------------------------------------------------------------- References: [ 1 ] Bug #1330833 - Review Request: python-bitstring - Simple construction, analysis and modification of binary data https://bugzilla.redhat.com/show_bug.cgi?id=1330833 -------------------------------------------------------------------------------- ================================================================================ python-vulture-0.16-1.fc25 (FEDORA-2017-a32ea0a023) Find Dead Code -------------------------------------------------------------------------------- Update Information: Sync with upstream release 0.16 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1470431 - python-vulture-0.16 is available https://bugzilla.redhat.com/show_bug.cgi?id=1470431 -------------------------------------------------------------------------------- ================================================================================ rpm-ostree-2017.7-1.fc25 (FEDORA-2017-45adcbb9a3) Hybrid image/package system -------------------------------------------------------------------------------- Update Information: New upstream release. See full release notes [upstream](https://github.com/projectatomic/rpm-ostree/releases/tag/v2017.7). -------------------------------------------------------------------------------- _______________________________________________ test mailing list -- test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to test-leave@xxxxxxxxxxxxxxxxxxxxxxx
