The following Fedora 25 Security updates need testing: Age URL 205 https://bodhi.fedoraproject.org/updates/FEDORA-2016-d79ba708cb exim-4.87.1-1.fc25 104 https://bodhi.fedoraproject.org/updates/FEDORA-2017-e2d17af41e python-XStatic-jquery-ui-1.12.0.1-4.fc25 43 https://bodhi.fedoraproject.org/updates/FEDORA-2017-5d7498559f nodejs-brace-expansion-1.1.7-1.fc25 12 https://bodhi.fedoraproject.org/updates/FEDORA-2017-b9e4c24094 subversion-1.9.6-1.fc25 8 https://bodhi.fedoraproject.org/updates/FEDORA-2017-90ad72e684 irssi-1.0.4-1.fc25 8 https://bodhi.fedoraproject.org/updates/FEDORA-2017-c844713925 qt5-qtwebkit-5.212.0-0.5.alpha2.fc25 8 https://bodhi.fedoraproject.org/updates/FEDORA-2017-33c8085c5d groovy18-1.8.9-28.fc25 7 https://bodhi.fedoraproject.org/updates/FEDORA-2017-5d6a9e0c9c heimdal-7.4.0-1.fc25 7 https://bodhi.fedoraproject.org/updates/FEDORA-2017-f941184db1 qemu-2.7.1-7.fc25 6 https://bodhi.fedoraproject.org/updates/FEDORA-2017-cc0b92f6c1 glpi-9.1.5-1.fc25 6 https://bodhi.fedoraproject.org/updates/FEDORA-2017-9fa2cefa7a mingw-poppler-0.45.0-3.fc25 5 https://bodhi.fedoraproject.org/updates/FEDORA-2017-81522ac6d8 nodejs-6.11.1-1.fc25 5 https://bodhi.fedoraproject.org/updates/FEDORA-2017-346836a623 phpldapadmin-1.2.3-10.fc25 3 https://bodhi.fedoraproject.org/updates/FEDORA-2017-90cf7a82de minicom-2.7.1-1.fc25 3 https://bodhi.fedoraproject.org/updates/FEDORA-2017-2d8a1226d1 libmwaw-0.3.12-1.fc25 3 https://bodhi.fedoraproject.org/updates/FEDORA-2017-c22a8af4e9 rubygem-rack-cors-0.4.1-1.fc25 3 https://bodhi.fedoraproject.org/updates/FEDORA-2017-1d46019681 yara-3.6.3-1.fc25 3 https://bodhi.fedoraproject.org/updates/FEDORA-2017-86cfcbbae8 libstaroffice-0.0.4-1.fc25 3 https://bodhi.fedoraproject.org/updates/FEDORA-2017-534f300508 perl-XML-LibXML-2.0129-2.fc25 1 https://bodhi.fedoraproject.org/updates/FEDORA-2017-24c64c531a freeradius-3.0.15-1.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-6c52e2d731 GraphicsMagick-1.3.26-3.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-cf1a42722d librsvg2-2.40.18-1.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-bcf1bc0775 mingw-librsvg2-2.40.18-1.fc25 The following Fedora 25 Critical Path updates have yet to be approved: Age URL 47 https://bodhi.fedoraproject.org/updates/FEDORA-2017-613a72e282 lorax-25.22-1.fc25 26 https://bodhi.fedoraproject.org/updates/FEDORA-2017-0187b2a605 selinux-policy-3.13.1-225.19.fc25 8 https://bodhi.fedoraproject.org/updates/FEDORA-2017-ebeb4bb332 mariadb-10.1.25-1.fc25 7 https://bodhi.fedoraproject.org/updates/FEDORA-2017-e587cfd70e supermin-5.1.18-1.fc25 7 https://bodhi.fedoraproject.org/updates/FEDORA-2017-f941184db1 qemu-2.7.1-7.fc25 6 https://bodhi.fedoraproject.org/updates/FEDORA-2017-6d834aa7e7 breeze-icon-theme-5.36.0-1.fc25 extra-cmake-modules-5.36.0-1.fc25 kf5-5.36.0-1.fc25 kf5-attica-5.36.0-1.fc25 kf5-baloo-5.36.0-1.fc25 kf5-bluez-qt-5.36.0-1.fc25 kf5-frameworkintegration-5.36.0-1.fc25 kf5-kactivities-5.36.0-1.fc25 kf5-kactivities-stats-5.36.0-1.fc25 kf5-kapidox-5.36.0-1.fc25 kf5-karchive-5.36.0-1.fc25 kf5-kauth-5.36.0-1.fc25 kf5-kbookmarks-5.36.0-1.fc25 kf5-kcmutils-5.36.0-1.fc25 kf5-kcodecs-5.36.0-1.fc25 kf5-kcompletion-5.36.0-1.fc25 kf5-kconfig-5.36.0-1.fc25 kf5-kconfigwidgets-5.36.0-1.fc25 kf5-kcoreaddons-5.36.0-1.fc25 kf5-kcrash-5.36.0-1.fc25 kf5-kdbusaddons-5.36.0-1.fc25 kf5-kdeclarative-5.36.0-1.fc25 kf5-kded-5.36.0-1.fc25 kf5-kdelibs4support-5.36.0-1.fc25 kf5-kdesignerplugin-5.36.0-1.fc25 kf5-kdesu-5.36.0-1.fc25 kf5-kdewebkit-5.36.0-1.fc25 kf5-kdnssd-5.36.0-1.fc25 kf5-kdoctools-5.36.0-1.fc25 kf5-kemoticons-5.36.0-1.fc25 kf5-kfilemetadata-5.36.0-1.fc25 kf5-kglobalaccel-5.36.0-1.fc25 kf5-kguiad dons-5.36.0-2.fc25 kf5-khtml-5.36.0-1.fc25 kf5-ki18n-5.36.0-3.fc25 kf5-kiconthemes-5.36.0-1.fc25 kf5-kidletime-5.36.0-1.fc25 kf5-kimageformats-5.36.0-1.fc25 kf5-kinit-5.36.0-1.fc25 kf5-kio-5.36.0-1.fc25 kf5-kitemmodels-5.36.0-1.fc25 kf5-kitemviews-5.36.0-1.fc25 kf5-kjobwidgets-5.36.0-1.fc25 kf5-kjs-5.36.0-1.fc25 kf5-kjsembed-5.36.0-1.fc25 kf5-kmediaplayer-5.36.0-1.fc25 kf5-knewstuff-5.36.0-3.fc25 kf5-knotifications-5.36.0-1.fc25 kf5-knotifyconfig-5.36.0-1.fc25 kf5-kpackage-5.36.0-1.fc25 kf5-kparts-5.36.0-1.fc25 kf5-kpeople-5.36.0-1.fc25 kf5-kplotting-5.36.0-1.fc25 kf5-kpty-5.36.0-1.fc25 kf5-kross-5.36.0-1.fc25 kf5-krunner-5.36.0-1.fc25 kf5-kservice-5.36.0-1.fc25 kf5-ktexteditor-5.36.0-1.fc25 kf5-ktextwidgets-5.36.0-1.fc25 kf5-kunitconversion-5.36.0-1.fc25 kf5-kwallet-5.36.0-1.fc25 kf5-kwayland-5.36.0-1.fc25 kf5-kwidgetsaddons-5.36.0-1.fc25 kf5-kwindowsystem-5.36.0-1.fc25 kf5-kxmlgui-5.36.0-1.fc25 kf5-kxmlrpcclient-5.36.0-1.fc25 kf5-modemmanager-qt-5.36.0-1.fc25 kf5-networkmanager-qt -5.36.0-1.fc25 kf5-plasma-5.36.0-1.fc25 kf5-solid-5.36.0-1.fc25 kf5-sonnet-5.36.0-1.fc25 kf5-syntax-highlighting-5.36.0-1.fc25 kf5-threadweaver-5.36.0-1.fc25 oxygen-icon-theme-5.36.0-1.fc25 6 https://bodhi.fedoraproject.org/updates/FEDORA-2017-77b3ddeaaa net-snmp-5.7.3-14.fc25 3 https://bodhi.fedoraproject.org/updates/FEDORA-2017-e2312ac9d9 pungi-4.1.17-1.fc25 1 https://bodhi.fedoraproject.org/updates/FEDORA-2017-04d751ec2f tar-1.29-4.fc25 1 https://bodhi.fedoraproject.org/updates/FEDORA-2017-f55b21a811 pango-1.40.7-1.fc25 1 https://bodhi.fedoraproject.org/updates/FEDORA-2017-f21d307d97 nspr-4.15.0-1.fc25 nss-3.31.0-1.1.fc25 nss-softokn-3.31.0-1.0.fc25 nss-util-3.31.0-1.0.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-cf1a42722d librsvg2-2.40.18-1.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-7a6144ef24 curl-7.51.0-8.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-7fd15754fd libdrm-2.4.82-1.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-6b67562744 ca-certificates-2017.2.16-1.0.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-e229cf5d7c qt5-qtbase-5.7.1-19.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-3b5470b48e gtk3-3.22.17-2.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-b213f353b1 vim-8.0.728-1.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-56704c88b6 wpa_supplicant-2.6-3.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-2ee31a6998 gdk-pixbuf2-2.36.7-1.fc25 The following builds have been pushed to Fedora 25 updates-testing GraphicsMagick-1.3.26-3.fc25 aime-8.20170718-1.fc25 copr-dist-git-0.33-1.fc25 copr-frontend-1.116-1.fc25 curl-7.51.0-8.fc25 elementary-icon-theme-4.2.0-1.fc25 engauge-digitizer-10.1-1.fc25 gtk3-3.22.17-2.fc25 jdns-2.0.5-1.fc25 libdrm-2.4.82-1.fc25 libreoffice-5.2.7.2-6.fc25 librsvg2-2.40.18-1.fc25 mingw-librsvg2-2.40.18-1.fc25 nuvolaruntime-4.5.0-1.fc25 unetbootin-655-1.fc25 xorgxrdp-0.2.3-1.fc25 yamllint-1.8.1-1.fc25 zulucrypt-5.2.0-1.fc25 Details about builds: ================================================================================ GraphicsMagick-1.3.26-3.fc25 (FEDORA-2017-6c52e2d731) An ImageMagick fork, offering faster image generation and better quality -------------------------------------------------------------------------------- Update Information: Security fix for CVE-2017-11403 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1472214 - CVE-2017-11403 GraphicsMagick: Use-after-free in CloseBlob https://bugzilla.redhat.com/show_bug.cgi?id=1472214 -------------------------------------------------------------------------------- ================================================================================ aime-8.20170718-1.fc25 (FEDORA-2017-ec5efe04b9) An application embeddable programming language interpreter -------------------------------------------------------------------------------- Update Information: - Updated to new 8.20170718 upstream version, fixes rhbz #1469511 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1465412 - aime-8.20170704 is available https://bugzilla.redhat.com/show_bug.cgi?id=1465412 [ 2 ] Bug #1469511 - aime-8.20170718 is available https://bugzilla.redhat.com/show_bug.cgi?id=1469511 -------------------------------------------------------------------------------- ================================================================================ copr-dist-git-0.33-1.fc25 (FEDORA-2017-a903d4291c) Copr services for Dist Git server -------------------------------------------------------------------------------- Update Information: - remove ExclusiveArch directive - add support for SCM Subdirectory parameter - remove docker related stuff - fix variable name - add missing import in providers.py - auto-differentiate between downstream and upstream repo in SCMProvider - do not include dist information in displayed version - remove unused exceptions - get_package_name from spec_path is now a separate method - do not modify spec for MockScm method - use python's tarfile instead of tar shell cmd ---- - srpms are now not being built on dist-git - MockSCM and Tito methods unified into single source ---- .spec method implemented ---- - import build task only once - remove unsupported --depth from git svn command - add dep on git-svn - better exception handling in MockScmProvider - fix 'git svn clone' and add exception handling for clone part in MockScm provider ---- - add --depth 1 for git clone in GitProvider - add missing 'which' for tito && git-annex builds - arbitrary dist-git branching support - use MockScmProvider without mock-scm to solve performance problems - add "powerpc64le" into list of archs to allow building for - Bug 1457888 - Mock SCM method fails to build a package - increase depth for git clone so that required tags that tito needs are downloaded ---- Fixes problem with fedpkg builds, see https://bugzilla.redhat.com/show_bug.cgi?id=1447102 -------------------------------------------------------------------------------- ================================================================================ copr-frontend-1.116-1.fc25 (FEDORA-2017-301d5099ca) Frontend for Copr -------------------------------------------------------------------------------- Update Information: - in UI, rename Tito to SCM-1 and MockSCM to SCM-2 - add support for SCM Subdirectory parameter ---- Changes in tips and url of an uploaded file now being composed on frontend (before it was being composed on copr-dist-git). ---- .spec method implemented -------------------------------------------------------------------------------- ================================================================================ curl-7.51.0-8.fc25 (FEDORA-2017-7a6144ef24) A utility for getting files from remote servers (FTP, HTTP, and others) -------------------------------------------------------------------------------- Update Information: - nss: fix a possible use-after-free in SelectClientCert() (#1436158) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1436158 - dnf crashes when downloading updates from Katello server https://bugzilla.redhat.com/show_bug.cgi?id=1436158 -------------------------------------------------------------------------------- ================================================================================ elementary-icon-theme-4.2.0-1.fc25 (FEDORA-2017-4dc4c05c86) Icons from the Elementary Project -------------------------------------------------------------------------------- Update Information: Update to version 4.2.0. -------------------------------------------------------------------------------- ================================================================================ engauge-digitizer-10.1-1.fc25 (FEDORA-2017-b7105e104b) Convert graphs or map files into numbers -------------------------------------------------------------------------------- Update Information: - Update to 10.1 -------------------------------------------------------------------------------- ================================================================================ gtk3-3.22.17-2.fc25 (FEDORA-2017-3b5470b48e) GTK+ graphical user interface library -------------------------------------------------------------------------------- Update Information: gtk+ 3.22.17 release fixing a number of issues: - 766517 GtkAboutDialog should use https:// license URLs - 778188 Throttle system bell requests on Wayland - 781583 gtk_image_new_from_resource does not work - 781935 Add nullable return annotation to gtk_notebook_get_tab_label - 781936 Add nullable return annotation to gtk_text_mark_get_name - 782040 Wacom pen calibration application responds to mouse input - 782325 wayland: Add possibility to get the exported handle multiple times - 784323 Quartz backend: gtk_clipboard_get_default not implemented - 784723 macOS: native file chooser dialog - 784888 gtkapplication: Mark gtk_application_get_active_window() as nullable -------------------------------------------------------------------------------- References: [ 1 ] Bug #1466654 - Beepbleed https://bugzilla.redhat.com/show_bug.cgi?id=1466654 -------------------------------------------------------------------------------- ================================================================================ jdns-2.0.5-1.fc25 (FEDORA-2017-e5dab6c25c) A simple DNS queries library -------------------------------------------------------------------------------- Update Information: Bump to 2.0.5 -------------------------------------------------------------------------------- ================================================================================ libdrm-2.4.82-1.fc25 (FEDORA-2017-7fd15754fd) Direct Rendering Manager runtime library -------------------------------------------------------------------------------- Update Information: Update to 2.4.82 -------------------------------------------------------------------------------- ================================================================================ libreoffice-5.2.7.2-6.fc25 (FEDORA-2017-4cb26fb637) Free Software Productivity Suite -------------------------------------------------------------------------------- Update Information: - enable video playback under gtk3 at arbitrary sizes in full screen presentation mode. -------------------------------------------------------------------------------- ================================================================================ librsvg2-2.40.18-1.fc25 (FEDORA-2017-cf1a42722d) An SVG library based on cairo -------------------------------------------------------------------------------- Update Information: librsvg 2.40.18 release, fixing CVE-2017-11464 (division-by-zero in the Gaussian blur code). For details, see https://mail.gnome.org/archives/ftp-release- list/2017-July/msg00078.html -------------------------------------------------------------------------------- ================================================================================ mingw-librsvg2-2.40.18-1.fc25 (FEDORA-2017-bcf1bc0775) SVG library based on cairo for MinGW -------------------------------------------------------------------------------- Update Information: MinGW cross compiled librsvg 2.40.18 release, fixing CVE-2017-11464 (division- by-zero in the Gaussian blur code). -------------------------------------------------------------------------------- ================================================================================ nuvolaruntime-4.5.0-1.fc25 (FEDORA-2017-5b12276625) Tight integration of web apps with your desktop -------------------------------------------------------------------------------- Update Information: - update to 4.5.0 - Add 0001-Revert-Check-whether-VA-API-driver-is- installed.patch - Add 0002-Revert-Check-whether-VDPAU-driver-is-installed.patch - dropped %%{name}-wscript.patch - add if condition due ppc64le build problem -------------------------------------------------------------------------------- ================================================================================ unetbootin-655-1.fc25 (FEDORA-2017-1e645ec9d1) Create bootable Live USB drives for a variety of Linux distributions -------------------------------------------------------------------------------- Update Information: - Rebuilt for new upstream release 655, fixes rhbz #1471101 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1471101 - unetbootin-655 is available https://bugzilla.redhat.com/show_bug.cgi?id=1471101 -------------------------------------------------------------------------------- ================================================================================ xorgxrdp-0.2.3-1.fc25 (FEDORA-2017-109a4a74e2) Implementation of xrdp backend as Xorg modules -------------------------------------------------------------------------------- Update Information: This version includes fixes of following issues: - X programs crash when reconnecting to xrdp with screen resize -------------------------------------------------------------------------------- References: [ 1 ] Bug #1470667 - xorgxrdp-0.2.3 is available https://bugzilla.redhat.com/show_bug.cgi?id=1470667 -------------------------------------------------------------------------------- ================================================================================ yamllint-1.8.1-1.fc25 (FEDORA-2017-a8df5c5a10) A linter for YAML files -------------------------------------------------------------------------------- Update Information: - Update to latest upstream version - Update dependencies -------------------------------------------------------------------------------- References: [ 1 ] Bug #1466084 - yamllint-1.8.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1466084 -------------------------------------------------------------------------------- ================================================================================ zulucrypt-5.2.0-1.fc25 (FEDORA-2017-d8527a7809) Qt GUI front end to cryptsetup -------------------------------------------------------------------------------- Update Information: version 5.2.0 - - add ability to select a file manager to use to open mount points. A file manager, can be set through zuluCrypt-gui->menu->options->set file manager. - dont run zuluCrypt-gui and zuluMount-gui from root's account when running in mixed mode. - add arabic translation. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1429090 - ecryptfs-simple does not work without proper root environment (su -l) https://bugzilla.redhat.com/show_bug.cgi?id=1429090 [ 2 ] Bug #1467892 - zulucrypt-5.2.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1467892 -------------------------------------------------------------------------------- _______________________________________________ test mailing list -- test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to test-leave@xxxxxxxxxxxxxxxxxxxxxxx