The following Fedora 26 Security updates need testing: Age URL 128 https://bodhi.fedoraproject.org/updates/FEDORA-2017-1bf5a0ce01 python-XStatic-jquery-ui-1.12.0.1-2.fc26 67 https://bodhi.fedoraproject.org/updates/FEDORA-2017-2522df3526 nodejs-brace-expansion-1.1.7-1.fc26 33 https://bodhi.fedoraproject.org/updates/FEDORA-2017-661dddc462 groovy18-1.8.9-28.fc26 30 https://bodhi.fedoraproject.org/updates/FEDORA-2017-690a2548ba openvswitch-2.7.1-2.fc26 22 https://bodhi.fedoraproject.org/updates/FEDORA-2017-76ce091a43 chicken-4.12.0-3.fc26 22 https://bodhi.fedoraproject.org/updates/FEDORA-2017-1c053de325 memcached-1.4.39-1.fc26 22 https://bodhi.fedoraproject.org/updates/FEDORA-2017-dd0d5d376f python-tablib-0.11.5-1.fc26 18 https://bodhi.fedoraproject.org/updates/FEDORA-2017-ccb5c8d1e7 docker-distribution-2.6.2-1.git48294d9.fc26 18 https://bodhi.fedoraproject.org/updates/FEDORA-2017-6186f95179 nasm-2.13.01-3.fc26 18 https://bodhi.fedoraproject.org/updates/FEDORA-2017-a5fc805283 sscep-0.6.1-5.20160525git2052ee1.fc26 12 https://bodhi.fedoraproject.org/updates/FEDORA-2017-721314e3b3 java-1.8.0-openjdk-aarch32-1.8.0.141-2.170721.fc26 7 https://bodhi.fedoraproject.org/updates/FEDORA-2017-8f4fba5afa varnish-5.1.3-2.fc26 1 https://bodhi.fedoraproject.org/updates/FEDORA-2017-c535f23493 torbrowser-launcher-0.2.8-1.fc26 1 https://bodhi.fedoraproject.org/updates/FEDORA-2017-adc7d95627 kernel-4.12.5-300.fc26 1 https://bodhi.fedoraproject.org/updates/FEDORA-2017-f9e66916ec mingw-postgresql-9.6.4-1.fc26 1 https://bodhi.fedoraproject.org/updates/FEDORA-2017-1f4c82d73e mingw-libsoup-2.58.2-1.fc26 1 https://bodhi.fedoraproject.org/updates/FEDORA-2017-aab5f759f5 cryptlib-3.4.3.1-7.fc26 1 https://bodhi.fedoraproject.org/updates/FEDORA-2017-d9cac37bd8 postgresql-9.6.4-1.fc26 1 https://bodhi.fedoraproject.org/updates/FEDORA-2017-191d7ec089 cups-filters-1.13.4-3.fc26 qpdf-6.0.0-8.fc26 1 https://bodhi.fedoraproject.org/updates/FEDORA-2017-f8f4cd5b67 cyrus-imapd-3.0.3-1.fc26 1 https://bodhi.fedoraproject.org/updates/FEDORA-2017-a6b0626e20 firefox-55.0-6.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-d4248ba346 botan-1.10.16-1.fc26 The following Fedora 26 Critical Path updates have yet to be approved: Age URL 27 https://bodhi.fedoraproject.org/updates/FEDORA-2017-a695811465 pungi-4.1.17-1.fc26 25 https://bodhi.fedoraproject.org/updates/FEDORA-2017-4cacf8fe60 ca-certificates-2017.2.16-1.0.fc26 7 https://bodhi.fedoraproject.org/updates/FEDORA-2017-923c28037f qemu-2.9.0-4.fc26 7 https://bodhi.fedoraproject.org/updates/FEDORA-2017-3c92db10b8 libvirt-3.2.1-5.fc26 1 https://bodhi.fedoraproject.org/updates/FEDORA-2017-a6b0626e20 firefox-55.0-6.fc26 1 https://bodhi.fedoraproject.org/updates/FEDORA-2017-c510774d90 libpsl-0.18.0-1.fc26 publicsuffix-list-20170809-1.fc26 1 https://bodhi.fedoraproject.org/updates/FEDORA-2017-3f11b3237a nspr-4.16.0-1.fc26 nss-3.32.0-1.0.fc26 nss-softokn-3.32.0-1.1.fc26 nss-util-3.32.0-1.0.fc26 1 https://bodhi.fedoraproject.org/updates/FEDORA-2017-06dd72dfb8 gdk-pixbuf2-2.36.8-1.fc26 1 https://bodhi.fedoraproject.org/updates/FEDORA-2017-203f6f4a61 python3-3.6.2-4.fc26 1 https://bodhi.fedoraproject.org/updates/FEDORA-2017-2a7adf6daa krb5-1.15.1-21.fc26 1 https://bodhi.fedoraproject.org/updates/FEDORA-2017-adc7d95627 kernel-4.12.5-300.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-32a149cee7 osinfo-db-20170813-1.fc26 The following builds have been pushed to Fedora 26 updates-testing audience-0.2.4-1.fc26 awscli-1.11.133-1.fc26 botan-1.10.16-1.fc26 cmake-3.9.1-1.fc26 elementary-theme-5.1.0-1.fc26 f2fs-tools-1.8.0-1.fc26 feh-2.19.2-1.fc26 freeciv-2.5.8-1.fc26 gnome-shell-extension-freon-26-1.fc26 lirc-0.10.0-1.fc26 lshw-B.02.18-10.fc26 osinfo-db-20170813-1.fc26 php-zendframework-zend-expressive-twigrenderer-1.5.0-1.fc26 python-boto3-1.4.6-1.fc26 python-botocore-1.6.0-1.fc26 rkhunter-1.4.4-4.fc26 shotwell-0.26.3-1.fc26 xiphos-4.0.6-1.fc26 Details about builds: ================================================================================ audience-0.2.4-1.fc26 (FEDORA-2017-4ad3d6559e) Audience video player -------------------------------------------------------------------------------- Update Information: Update to version 0.2.4. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1480857 - audience-0.2.4 is available https://bugzilla.redhat.com/show_bug.cgi?id=1480857 -------------------------------------------------------------------------------- ================================================================================ awscli-1.11.133-1.fc26 (FEDORA-2017-78c82965f7) Universal Command Line Environment for AWS -------------------------------------------------------------------------------- Update Information: Update -------------------------------------------------------------------------------- ================================================================================ botan-1.10.16-1.fc26 (FEDORA-2017-d4248ba346) Crypto library written in C++ -------------------------------------------------------------------------------- Update Information: #### Version 1.10.16, 2017-04-04 #### * Fix a bug in X509 DN string comparisons that could result in out of bound reads. This could result in information leakage, denial of service, or potentially incorrect certificate validation results. (CVE-2017-2801) * Avoid throwing during a destructor since this is undefined in C++11 and rarely a good idea. [GH #930](https://github.com/randombit/botan/issues/930) #### Version 1.10.15, 2017-01-12 #### * Fix a bug causing modular exponentiations done modulo even numbers to almost always be incorrect, unless the values were small. This bug is not known to affect any cryptographic operation in Botan. [GH #754](https://github.com/randombit/botan/issues/754) * Avoid use of C++11 std::to_string in some code added in 1.10.14 [GH #747](https://github.com/randombit/botan/issues/747) [GH #834](https://github.com/randombit/botan/issues/834) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1441126 - CVE-2017-2801 botan: Incorrect comparison in X.509 DN strings https://bugzilla.redhat.com/show_bug.cgi?id=1441126 -------------------------------------------------------------------------------- ================================================================================ cmake-3.9.1-1.fc26 (FEDORA-2017-d18b2da703) Cross-platform make system -------------------------------------------------------------------------------- Update Information: * New upstream release -------------------------------------------------------------------------------- References: [ 1 ] Bug #1480396 - cmake-3.9.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1480396 -------------------------------------------------------------------------------- ================================================================================ elementary-theme-5.1.0-1.fc26 (FEDORA-2017-1da916a893) elementary GTK+ Stylesheet -------------------------------------------------------------------------------- Update Information: Update to version 5.1.0. This release improves support for GTK+ 3.22+. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1480860 - elementary-theme-5.1.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1480860 -------------------------------------------------------------------------------- ================================================================================ f2fs-tools-1.8.0-1.fc26 (FEDORA-2017-a40b5df963) Tools for Flash-Friendly File System (F2FS) -------------------------------------------------------------------------------- Update Information: Update to 1.8.0 -------------------------------------------------------------------------------- ================================================================================ feh-2.19.2-1.fc26 (FEDORA-2017-7b6d383b19) Fast command line image viewer using Imlib2 -------------------------------------------------------------------------------- Update Information: Update -------------------------------------------------------------------------------- ================================================================================ freeciv-2.5.8-1.fc26 (FEDORA-2017-5918491700) A multi-player strategy game -------------------------------------------------------------------------------- Update Information: 2.5.8 -------------------------------------------------------------------------------- ================================================================================ gnome-shell-extension-freon-26-1.fc26 (FEDORA-2017-9839d9d27a) GNOME Shell extension to display system temperature, voltage, and fan speed -------------------------------------------------------------------------------- Update Information: Bump to upstream version 26, which adds support for multiple simultaneous graphics cards. -------------------------------------------------------------------------------- ================================================================================ lirc-0.10.0-1.fc26 (FEDORA-2017-8f8251c7b6) The Linux Infrared Remote Control package -------------------------------------------------------------------------------- Update Information: New upstream release -------------------------------------------------------------------------------- ================================================================================ lshw-B.02.18-10.fc26 (FEDORA-2017-56aabeab27) Hardware lister -------------------------------------------------------------------------------- Update Information: Add AppData file to lshw package. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1476498 - AppStream metadata for lshw gui package are missing https://bugzilla.redhat.com/show_bug.cgi?id=1476498 -------------------------------------------------------------------------------- ================================================================================ osinfo-db-20170813-1.fc26 (FEDORA-2017-32a149cee7) osinfo database files -------------------------------------------------------------------------------- Update Information: Update to new release -------------------------------------------------------------------------------- ================================================================================ php-zendframework-zend-expressive-twigrenderer-1.5.0-1.fc26 (FEDORA-2017-2c648f58d9) Twig integration for Expressive -------------------------------------------------------------------------------- Update Information: **Version 1.5.0** - 2017-08-12 * **Added** - [#30](https://github.com/zendframework/zend-expressive-twigrenderer/pull/30) adds support for the PSR-11 Container Interface. * **Changed** - [#33](https://github.com/zendframework/zend-expressive-twigrenderer/pull/33) removes duplicate code. -------------------------------------------------------------------------------- ================================================================================ python-boto3-1.4.6-1.fc26 (FEDORA-2017-78c82965f7) The AWS SDK for Python -------------------------------------------------------------------------------- Update Information: Update -------------------------------------------------------------------------------- ================================================================================ python-botocore-1.6.0-1.fc26 (FEDORA-2017-78c82965f7) Low-level, data-driven core of boto 3 -------------------------------------------------------------------------------- Update Information: Update -------------------------------------------------------------------------------- ================================================================================ rkhunter-1.4.4-4.fc26 (FEDORA-2017-98bd4ee8ab) A host-based tool to scan for rootkits, backdoors and local exploits -------------------------------------------------------------------------------- Update Information: Disable ipc_shared_mem test for now due to false positives. Bug #1472299 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1472299 - rkhunter finds suspicious shared segments in evolution and xfce4-terminal https://bugzilla.redhat.com/show_bug.cgi?id=1472299 -------------------------------------------------------------------------------- ================================================================================ shotwell-0.26.3-1.fc26 (FEDORA-2017-0382d38fcb) A photo organizer for the GNOME desktop -------------------------------------------------------------------------------- Update Information: #### Shotwell 0.26.3 - 10 Aug 2017 #### * Fix missing XML escape in wallpaper.xml file * Fix missing "Photos" menu content * Fix missing "find" icon * Fix build macro for appstream * Fix data loss/corruption issue when importing from camera -------------------------------------------------------------------------------- ================================================================================ xiphos-4.0.6-1.fc26 (FEDORA-2017-af4945324c) Bible study and research tool -------------------------------------------------------------------------------- Update Information: Upstream release 4.0.6 ---- Fix post install scripts for upgrades -------------------------------------------------------------------------------- References: [ 1 ] Bug #1448623 - GUI broken & Error with RPM Script https://bugzilla.redhat.com/show_bug.cgi?id=1448623 -------------------------------------------------------------------------------- _______________________________________________ test mailing list -- test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to test-leave@xxxxxxxxxxxxxxxxxxxxxxx
