The following Fedora 25 Security updates need testing: Age URL 263 https://bodhi.fedoraproject.org/updates/FEDORA-2016-d79ba708cb exim-4.87.1-1.fc25 161 https://bodhi.fedoraproject.org/updates/FEDORA-2017-e2d17af41e python-XStatic-jquery-ui-1.12.0.1-4.fc25 100 https://bodhi.fedoraproject.org/updates/FEDORA-2017-5d7498559f nodejs-brace-expansion-1.1.7-1.fc25 55 https://bodhi.fedoraproject.org/updates/FEDORA-2017-99c0118c0c memcached-1.4.39-1.fc25 51 https://bodhi.fedoraproject.org/updates/FEDORA-2017-2232fe97b4 docker-distribution-2.6.2-1.git48294d9.fc25 33 https://bodhi.fedoraproject.org/updates/FEDORA-2017-7e5ac0896e botan-1.10.16-1.fc25 32 https://bodhi.fedoraproject.org/updates/FEDORA-2017-fa1d8ad61a mercurial-3.8.1-4.fc25 8 https://bodhi.fedoraproject.org/updates/FEDORA-2017-56e23bc2b5 krb5-1.14.4-9.fc25 8 https://bodhi.fedoraproject.org/updates/FEDORA-2017-292c77b3c1 FlightGear-2016.3.1-5.fc25 7 https://bodhi.fedoraproject.org/updates/FEDORA-2017-b7e6e4cfc1 freexl-1.0.4-1.fc25 6 https://bodhi.fedoraproject.org/updates/FEDORA-2017-75aeda4803 mingw-LibRaw-0.17.2-2.fc25 5 https://bodhi.fedoraproject.org/updates/FEDORA-2017-bb5d87e9de mingw-libzip-1.1.3-3.fc25 4 https://bodhi.fedoraproject.org/updates/FEDORA-2017-f27641a807 drupal7-views-3.18-1.fc25 3 https://bodhi.fedoraproject.org/updates/FEDORA-2017-d361de1a65 libwmf-0.2.8.4-53.fc25 2 https://bodhi.fedoraproject.org/updates/FEDORA-2017-6e66393536 libwpd-0.10.2-1.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-3a568adb31 ImageMagick-6.9.9.13-1.fc25 WindowMaker-0.95.7-3.fc25.1 autotrace-0.31.1-49.fc25 converseen-0.9.6.2-3.fc25 drawtiming-0.7.1-22.fc25 emacs-25.3-3.fc25 gtatool-2.2.0-6.fc25 imageinfo-0.05-27.fc25 inkscape-0.92.1-4.20170510bzr15686.fc25.1 k3d-0.8.0.6-8.fc25 kxstitch-1.2.0-9.fc25 perl-Image-SubImageFind-0.03-13.fc25 pfstools-2.0.6-3.fc25 php-pecl-imagick-3.4.3-2.fc25 psiconv-0.9.8-22.fc25 q-7.11-29.fc25 ripright-0.11-5.fc25 rss-glx-0.9.1.p-27.fc25.1 rubygem-rmagick-2.16.0-4.fc25.2 synfig-1.2.0-1.fc25.1 synfigstudio-1.2.0-5.fc25 techne-0.2.3-20.fc25 vdr-scraper2vdr-1.0.5-4.20170611git254122b.fc25 vips-8.4.4-1.fc25.1 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-e07d7fb18e kernel-4.12.13-200.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-e314044789 oniguruma-6.1.3-3.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-f7fd3fe7eb xen-4.7.3-5.fc25 The following Fedora 25 Critical Path updates have yet to be approved: Age URL 105 https://bodhi.fedoraproject.org/updates/FEDORA-2017-613a72e282 lorax-25.22-1.fc25 26 https://bodhi.fedoraproject.org/updates/FEDORA-2017-e22c6d53db mariadb-10.1.26-2.fc25 11 https://bodhi.fedoraproject.org/updates/FEDORA-2017-fade6f459c hwdata-0.304-1.fc25 11 https://bodhi.fedoraproject.org/updates/FEDORA-2017-84eddbed75 publicsuffix-list-20170828-1.fc25 9 https://bodhi.fedoraproject.org/updates/FEDORA-2017-3d979eabcb gnome-online-accounts-3.22.7-1.fc25 9 https://bodhi.fedoraproject.org/updates/FEDORA-2017-bc3c16a54f kobo-0.6.0-1.fc25 9 https://bodhi.fedoraproject.org/updates/FEDORA-2017-f0eba05e47 linux-firmware-20170828-76.gitb78acc9.fc25 8 https://bodhi.fedoraproject.org/updates/FEDORA-2017-504aeb74ba rpcbind-0.2.4-7.rc2.fc25 8 https://bodhi.fedoraproject.org/updates/FEDORA-2017-56e23bc2b5 krb5-1.14.4-9.fc25 4 https://bodhi.fedoraproject.org/updates/FEDORA-2017-a44008dd1d python-pysocks-1.6.7-1.fc25 4 https://bodhi.fedoraproject.org/updates/FEDORA-2017-00cc63ecf5 gawk-4.1.3-10.fc25 3 https://bodhi.fedoraproject.org/updates/FEDORA-2017-d41fab42fc libssh2-1.8.0-5.fc25 3 https://bodhi.fedoraproject.org/updates/FEDORA-2017-43b6d5bc6b sssd-1.15.3-4.fc25 3 https://bodhi.fedoraproject.org/updates/FEDORA-2017-27ed767ca1 upower-0.99.6-1.fc25 2 https://bodhi.fedoraproject.org/updates/FEDORA-2017-9126f38bc2 libatasmart-0.19-13.fc25 2 https://bodhi.fedoraproject.org/updates/FEDORA-2017-2802f82ef1 webkitgtk4-2.18.0-1.fc25 2 https://bodhi.fedoraproject.org/updates/FEDORA-2017-6ec9b7110a menu-cache-1.0.2-6.D20170913gitfd52af607c.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-f7fd3fe7eb xen-4.7.3-5.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-f8059ac0e5 nss-3.32.1-1.0.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-e07d7fb18e kernel-4.12.13-200.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-3a568adb31 ImageMagick-6.9.9.13-1.fc25 WindowMaker-0.95.7-3.fc25.1 autotrace-0.31.1-49.fc25 converseen-0.9.6.2-3.fc25 drawtiming-0.7.1-22.fc25 emacs-25.3-3.fc25 gtatool-2.2.0-6.fc25 imageinfo-0.05-27.fc25 inkscape-0.92.1-4.20170510bzr15686.fc25.1 k3d-0.8.0.6-8.fc25 kxstitch-1.2.0-9.fc25 perl-Image-SubImageFind-0.03-13.fc25 pfstools-2.0.6-3.fc25 php-pecl-imagick-3.4.3-2.fc25 psiconv-0.9.8-22.fc25 q-7.11-29.fc25 ripright-0.11-5.fc25 rss-glx-0.9.1.p-27.fc25.1 rubygem-rmagick-2.16.0-4.fc25.2 synfig-1.2.0-1.fc25.1 synfigstudio-1.2.0-5.fc25 techne-0.2.3-20.fc25 vdr-scraper2vdr-1.0.5-4.20170611git254122b.fc25 vips-8.4.4-1.fc25.1 The following builds have been pushed to Fedora 25 updates-testing ImageMagick-6.9.9.13-1.fc25 LuxRender-1.6-22.fc25 WindowMaker-0.95.7-3.fc25.1 YafaRay-3.3.0-3.fc25 alembic-1.7.3-1.fc25 autotrace-0.31.1-49.fc25 blender-2.79-1.fc25 converseen-0.9.6.2-3.fc25 copr-backend-1.103-1.fc25 copr-cli-1.63-1.fc25 copr-frontend-1.120-1.fc25 copr-keygen-1.68-1.fc25 drawtiming-0.7.1-22.fc25 emacs-25.3-3.fc25 endless-sky-0.9.8-2.fc25 gnome-pkg-tools-0.19.11-1.fc25 gtatool-2.2.0-6.fc25 imageinfo-0.05-27.fc25 inkscape-0.92.1-4.20170510bzr15686.fc25.1 k3d-0.8.0.6-8.fc25 kernel-4.12.13-200.fc25 kxstitch-1.2.0-9.fc25 libbson-1.3.5-4.fc25 libburn-1.4.8-1.fc25 libisoburn-1.4.8-1.fc25 libisofs-1.4.8-1.fc25 module-build-service-1.3.28-1.fc25 nodejs-rhea-0.2.4-1.fc25 nss-3.32.1-1.0.fc25 oniguruma-6.1.3-3.fc25 openvdb-4.0.2-1.fc25 perl-Image-SubImageFind-0.03-13.fc25 pfstools-2.0.6-3.fc25 php-pecl-imagick-3.4.3-2.fc25 polkit-gnome-0.106-0.1.20170423gita0763a2.fc25 psiconv-0.9.8-22.fc25 python-copr-1.81-1.fc25 python-sphinx-intl-0.9.10-1.git20cd0d2.fc25 q-7.11-29.fc25 ripright-0.11-5.fc25 rss-glx-0.9.1.p-27.fc25.1 rubygem-rmagick-2.16.0-4.fc25.2 setroubleshoot-3.3.12-2.fc25 ssdeep-2.14-1.fc25 switchboard-plug-networking-0.1.1-1.fc25 syncthing-0.14.37-1.fc25 synfig-1.2.0-1.fc25.1 synfigstudio-1.2.0-5.fc25 techne-0.2.3-20.fc25 vdr-scraper2vdr-1.0.5-4.20170611git254122b.fc25 vips-8.4.4-1.fc25.1 xen-4.7.3-5.fc25 Details about builds: ================================================================================ ImageMagick-6.9.9.13-1.fc25 (FEDORA-2017-3a568adb31) An X application for displaying and manipulating images -------------------------------------------------------------------------------- Update Information: Many security fixes, bug fixes, and other changes from the previous version 6.9.3.0. See the [6.9 branch ChangeLog](https://github.com/ImageMagick/ImageMagi ck/blob/3fd358e2ac34977fda38a2cf4d88a1cb4dd2d7c7/ChangeLog). Dependent packages are mostly straight rebuilds, a couple also include bugfix version updates. ---- rhbz#1490649 - emacs-25.3 is available rhbz#1490410 - unsafe enriched mode translations (security) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1490409 - CVE-2017-14482 emacs: Unsafe enriched mode translations https://bugzilla.redhat.com/show_bug.cgi?id=1490409 -------------------------------------------------------------------------------- ================================================================================ LuxRender-1.6-22.fc25 (FEDORA-2017-1086f5aa62) Lux Renderer, an unbiased rendering system -------------------------------------------------------------------------------- Update Information: Update to Blender 2.79. HiDPI support. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1473982 - alembic-1.7.3 is available https://bugzilla.redhat.com/show_bug.cgi?id=1473982 [ 2 ] Bug #1450645 - [abrt] blender: gc_list_merge(): blender killed by SIGSEGV https://bugzilla.redhat.com/show_bug.cgi?id=1450645 [ 3 ] Bug #1256068 - Incorrect dpi detected: blender thinks I have 72 dpi https://bugzilla.redhat.com/show_bug.cgi?id=1256068 [ 4 ] Bug #1490876 - blender-2.79 is available https://bugzilla.redhat.com/show_bug.cgi?id=1490876 [ 5 ] Bug #1487933 - early crash before reaching main() https://bugzilla.redhat.com/show_bug.cgi?id=1487933 -------------------------------------------------------------------------------- ================================================================================ WindowMaker-0.95.7-3.fc25.1 (FEDORA-2017-3a568adb31) A fast, feature rich Window Manager -------------------------------------------------------------------------------- Update Information: Many security fixes, bug fixes, and other changes from the previous version 6.9.3.0. See the [6.9 branch ChangeLog](https://github.com/ImageMagick/ImageMagi ck/blob/3fd358e2ac34977fda38a2cf4d88a1cb4dd2d7c7/ChangeLog). Dependent packages are mostly straight rebuilds, a couple also include bugfix version updates. ---- rhbz#1490649 - emacs-25.3 is available rhbz#1490410 - unsafe enriched mode translations (security) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1490409 - CVE-2017-14482 emacs: Unsafe enriched mode translations https://bugzilla.redhat.com/show_bug.cgi?id=1490409 -------------------------------------------------------------------------------- ================================================================================ YafaRay-3.3.0-3.fc25 (FEDORA-2017-1086f5aa62) A free open-source ray-tracing render engine -------------------------------------------------------------------------------- Update Information: Update to Blender 2.79. HiDPI support. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1473982 - alembic-1.7.3 is available https://bugzilla.redhat.com/show_bug.cgi?id=1473982 [ 2 ] Bug #1450645 - [abrt] blender: gc_list_merge(): blender killed by SIGSEGV https://bugzilla.redhat.com/show_bug.cgi?id=1450645 [ 3 ] Bug #1256068 - Incorrect dpi detected: blender thinks I have 72 dpi https://bugzilla.redhat.com/show_bug.cgi?id=1256068 [ 4 ] Bug #1490876 - blender-2.79 is available https://bugzilla.redhat.com/show_bug.cgi?id=1490876 [ 5 ] Bug #1487933 - early crash before reaching main() https://bugzilla.redhat.com/show_bug.cgi?id=1487933 -------------------------------------------------------------------------------- ================================================================================ alembic-1.7.3-1.fc25 (FEDORA-2017-1086f5aa62) Open framework for storing and sharing scene data -------------------------------------------------------------------------------- Update Information: Update to Blender 2.79. HiDPI support. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1473982 - alembic-1.7.3 is available https://bugzilla.redhat.com/show_bug.cgi?id=1473982 [ 2 ] Bug #1450645 - [abrt] blender: gc_list_merge(): blender killed by SIGSEGV https://bugzilla.redhat.com/show_bug.cgi?id=1450645 [ 3 ] Bug #1256068 - Incorrect dpi detected: blender thinks I have 72 dpi https://bugzilla.redhat.com/show_bug.cgi?id=1256068 [ 4 ] Bug #1490876 - blender-2.79 is available https://bugzilla.redhat.com/show_bug.cgi?id=1490876 [ 5 ] Bug #1487933 - early crash before reaching main() https://bugzilla.redhat.com/show_bug.cgi?id=1487933 -------------------------------------------------------------------------------- ================================================================================ autotrace-0.31.1-49.fc25 (FEDORA-2017-3a568adb31) Utility for converting bitmaps to vector graphics -------------------------------------------------------------------------------- Update Information: Many security fixes, bug fixes, and other changes from the previous version 6.9.3.0. See the [6.9 branch ChangeLog](https://github.com/ImageMagick/ImageMagi ck/blob/3fd358e2ac34977fda38a2cf4d88a1cb4dd2d7c7/ChangeLog). Dependent packages are mostly straight rebuilds, a couple also include bugfix version updates. ---- rhbz#1490649 - emacs-25.3 is available rhbz#1490410 - unsafe enriched mode translations (security) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1490409 - CVE-2017-14482 emacs: Unsafe enriched mode translations https://bugzilla.redhat.com/show_bug.cgi?id=1490409 -------------------------------------------------------------------------------- ================================================================================ blender-2.79-1.fc25 (FEDORA-2017-1086f5aa62) 3D modeling, animation, rendering and post-production -------------------------------------------------------------------------------- Update Information: Update to Blender 2.79. HiDPI support. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1473982 - alembic-1.7.3 is available https://bugzilla.redhat.com/show_bug.cgi?id=1473982 [ 2 ] Bug #1450645 - [abrt] blender: gc_list_merge(): blender killed by SIGSEGV https://bugzilla.redhat.com/show_bug.cgi?id=1450645 [ 3 ] Bug #1256068 - Incorrect dpi detected: blender thinks I have 72 dpi https://bugzilla.redhat.com/show_bug.cgi?id=1256068 [ 4 ] Bug #1490876 - blender-2.79 is available https://bugzilla.redhat.com/show_bug.cgi?id=1490876 [ 5 ] Bug #1487933 - early crash before reaching main() https://bugzilla.redhat.com/show_bug.cgi?id=1487933 -------------------------------------------------------------------------------- ================================================================================ converseen-0.9.6.2-3.fc25 (FEDORA-2017-3a568adb31) A batch image conversion tool written in C++ with Qt5 and Magick++ -------------------------------------------------------------------------------- Update Information: Many security fixes, bug fixes, and other changes from the previous version 6.9.3.0. See the [6.9 branch ChangeLog](https://github.com/ImageMagick/ImageMagi ck/blob/3fd358e2ac34977fda38a2cf4d88a1cb4dd2d7c7/ChangeLog). Dependent packages are mostly straight rebuilds, a couple also include bugfix version updates. ---- rhbz#1490649 - emacs-25.3 is available rhbz#1490410 - unsafe enriched mode translations (security) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1490409 - CVE-2017-14482 emacs: Unsafe enriched mode translations https://bugzilla.redhat.com/show_bug.cgi?id=1490409 -------------------------------------------------------------------------------- ================================================================================ copr-backend-1.103-1.fc25 (FEDORA-2017-7a989cabf0) Backend for Copr -------------------------------------------------------------------------------- Update Information: - update fedora image version to 26 - fixes in tests for recent code ---- - srpms are now being built from upstream on builders -------------------------------------------------------------------------------- ================================================================================ copr-cli-1.63-1.fc25 (FEDORA-2017-06039f0414) Command line interface for COPR -------------------------------------------------------------------------------- Update Information: - fix unittests - run tests with python3 - pag#130 update requirements - pag#125 copr build copr pkgs [pkgs ...] builds only the first SRPM - pag#112 [RFE] copr- cli whoami - Bug 1431035 - coprs should check credentials before uploading source rpm - Spelling fixes ---- - allow to modify copr chroots with copr modify cmd -------------------------------------------------------------------------------- References: [ 1 ] Bug #1431035 - coprs should check credentials before uploading source rpm https://bugzilla.redhat.com/show_bug.cgi?id=1431035 -------------------------------------------------------------------------------- ================================================================================ copr-frontend-1.120-1.fc25 (FEDORA-2017-def19d0fd5) Frontend for Copr -------------------------------------------------------------------------------- Update Information: - fix build stucking with srpm url/upload resubmitted builds - .spec cleanup - move DEFER_BUILD_SECONDS to config values and set default to 80 - show backend log for srpm builds - fix url to import log - Bug 1431035 - coprs should check credentials before uploading source rpm ---- - add dist_git_clone_url property of package and use it on /backend - pg#68 Building SRPMs on builder - append / to result_dir_url - pg#119 python-copr client_v2 BuildHandler limits builds to the 100 most recent builds - Fix tab vs spaces errors - [*] Spelling fixes - Invalid escape sequence fixes - Bug 1471285 - Webhook triggers all changed specs even without new tito tag - api for obtaining queue information ---- - fork all succeeded buildchroots in RawhideToRelease - follow Fedora branching project's option added - allow to modify copr chroots - syntax highlight in project description and instructions - fix 500 on /api/coprs/build/ for auto-rebuilds - Bug 1409894 - COPR invalidly renders markdown - basic rebuild all packages feature added ---- - Bug 1473361 - New SCM 2 build does not recall the 'Subdirectory' setting - Deprecation warnings on F25 - hotfix for monitor page with jinja 2.9 - bug 1460399 - Build breadcrumb incorrect for group project -------------------------------------------------------------------------------- ================================================================================ copr-keygen-1.68-1.fc25 (FEDORA-2017-01cfee3cab) Part of Copr build system. Aux service that generate keys for signd -------------------------------------------------------------------------------- Update Information: - Spelling fixes -------------------------------------------------------------------------------- ================================================================================ drawtiming-0.7.1-22.fc25 (FEDORA-2017-3a568adb31) A command line tool for generating timing diagrams -------------------------------------------------------------------------------- Update Information: Many security fixes, bug fixes, and other changes from the previous version 6.9.3.0. See the [6.9 branch ChangeLog](https://github.com/ImageMagick/ImageMagi ck/blob/3fd358e2ac34977fda38a2cf4d88a1cb4dd2d7c7/ChangeLog). Dependent packages are mostly straight rebuilds, a couple also include bugfix version updates. ---- rhbz#1490649 - emacs-25.3 is available rhbz#1490410 - unsafe enriched mode translations (security) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1490409 - CVE-2017-14482 emacs: Unsafe enriched mode translations https://bugzilla.redhat.com/show_bug.cgi?id=1490409 -------------------------------------------------------------------------------- ================================================================================ emacs-25.3-3.fc25 (FEDORA-2017-3a568adb31) GNU Emacs text editor -------------------------------------------------------------------------------- Update Information: Many security fixes, bug fixes, and other changes from the previous version 6.9.3.0. See the [6.9 branch ChangeLog](https://github.com/ImageMagick/ImageMagi ck/blob/3fd358e2ac34977fda38a2cf4d88a1cb4dd2d7c7/ChangeLog). Dependent packages are mostly straight rebuilds, a couple also include bugfix version updates. ---- rhbz#1490649 - emacs-25.3 is available rhbz#1490410 - unsafe enriched mode translations (security) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1490409 - CVE-2017-14482 emacs: Unsafe enriched mode translations https://bugzilla.redhat.com/show_bug.cgi?id=1490409 -------------------------------------------------------------------------------- ================================================================================ endless-sky-0.9.8-2.fc25 (FEDORA-2017-581465a27c) Space exploration, trading, and combat game -------------------------------------------------------------------------------- Update Information: Fixed a build failure on ppc64le -------------------------------------------------------------------------------- ================================================================================ gnome-pkg-tools-0.19.11-1.fc25 (FEDORA-2017-1dabc6e0c7) Tools for the Debian GNOME Packaging Team -------------------------------------------------------------------------------- Update Information: Update to version 0.19.11, see http://metadata.ftp- master.debian.org/changelogs/main/g/gnome-pkg-tools/gnome-pkg- tools_0.19.11_changelog for details. -------------------------------------------------------------------------------- ================================================================================ gtatool-2.2.0-6.fc25 (FEDORA-2017-3a568adb31) Commandline tool to manipulate GTAs -------------------------------------------------------------------------------- Update Information: Many security fixes, bug fixes, and other changes from the previous version 6.9.3.0. See the [6.9 branch ChangeLog](https://github.com/ImageMagick/ImageMagi ck/blob/3fd358e2ac34977fda38a2cf4d88a1cb4dd2d7c7/ChangeLog). Dependent packages are mostly straight rebuilds, a couple also include bugfix version updates. ---- rhbz#1490649 - emacs-25.3 is available rhbz#1490410 - unsafe enriched mode translations (security) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1490409 - CVE-2017-14482 emacs: Unsafe enriched mode translations https://bugzilla.redhat.com/show_bug.cgi?id=1490409 -------------------------------------------------------------------------------- ================================================================================ imageinfo-0.05-27.fc25 (FEDORA-2017-3a568adb31) Extract attributes of digital images -------------------------------------------------------------------------------- Update Information: Many security fixes, bug fixes, and other changes from the previous version 6.9.3.0. See the [6.9 branch ChangeLog](https://github.com/ImageMagick/ImageMagi ck/blob/3fd358e2ac34977fda38a2cf4d88a1cb4dd2d7c7/ChangeLog). Dependent packages are mostly straight rebuilds, a couple also include bugfix version updates. ---- rhbz#1490649 - emacs-25.3 is available rhbz#1490410 - unsafe enriched mode translations (security) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1490409 - CVE-2017-14482 emacs: Unsafe enriched mode translations https://bugzilla.redhat.com/show_bug.cgi?id=1490409 -------------------------------------------------------------------------------- ================================================================================ inkscape-0.92.1-4.20170510bzr15686.fc25.1 (FEDORA-2017-3a568adb31) Vector-based drawing program using SVG -------------------------------------------------------------------------------- Update Information: Many security fixes, bug fixes, and other changes from the previous version 6.9.3.0. See the [6.9 branch ChangeLog](https://github.com/ImageMagick/ImageMagi ck/blob/3fd358e2ac34977fda38a2cf4d88a1cb4dd2d7c7/ChangeLog). Dependent packages are mostly straight rebuilds, a couple also include bugfix version updates. ---- rhbz#1490649 - emacs-25.3 is available rhbz#1490410 - unsafe enriched mode translations (security) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1490409 - CVE-2017-14482 emacs: Unsafe enriched mode translations https://bugzilla.redhat.com/show_bug.cgi?id=1490409 -------------------------------------------------------------------------------- ================================================================================ k3d-0.8.0.6-8.fc25 (FEDORA-2017-3a568adb31) A 3D Modeling, Animation and Rendering System -------------------------------------------------------------------------------- Update Information: Many security fixes, bug fixes, and other changes from the previous version 6.9.3.0. See the [6.9 branch ChangeLog](https://github.com/ImageMagick/ImageMagi ck/blob/3fd358e2ac34977fda38a2cf4d88a1cb4dd2d7c7/ChangeLog). Dependent packages are mostly straight rebuilds, a couple also include bugfix version updates. ---- rhbz#1490649 - emacs-25.3 is available rhbz#1490410 - unsafe enriched mode translations (security) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1490409 - CVE-2017-14482 emacs: Unsafe enriched mode translations https://bugzilla.redhat.com/show_bug.cgi?id=1490409 -------------------------------------------------------------------------------- ================================================================================ kernel-4.12.13-200.fc25 (FEDORA-2017-e07d7fb18e) The Linux kernel -------------------------------------------------------------------------------- Update Information: The 4.12.13 stable kernel update contains a number of important fixes across the tree. ---- The 4.12.12 stable kernel update contains a number of important fixes across the tree. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1489716 - CVE-2017-1000251 kernel: stack buffer overflow in the native Bluetooth stack https://bugzilla.redhat.com/show_bug.cgi?id=1489716 [ 2 ] Bug #1491046 - CVE-2017-12153 kernel: null pointer dereference in nl80211_set_rekey_data() https://bugzilla.redhat.com/show_bug.cgi?id=1491046 [ 3 ] Bug #1491224 - CVE-2017-12154 Kernel: kvm: nVMX: L2 guest could access hardware(L0) CR8 register https://bugzilla.redhat.com/show_bug.cgi?id=1491224 -------------------------------------------------------------------------------- ================================================================================ kxstitch-1.2.0-9.fc25 (FEDORA-2017-3a568adb31) Program to create cross stitch patterns -------------------------------------------------------------------------------- Update Information: Many security fixes, bug fixes, and other changes from the previous version 6.9.3.0. See the [6.9 branch ChangeLog](https://github.com/ImageMagick/ImageMagi ck/blob/3fd358e2ac34977fda38a2cf4d88a1cb4dd2d7c7/ChangeLog). Dependent packages are mostly straight rebuilds, a couple also include bugfix version updates. ---- rhbz#1490649 - emacs-25.3 is available rhbz#1490410 - unsafe enriched mode translations (security) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1490409 - CVE-2017-14482 emacs: Unsafe enriched mode translations https://bugzilla.redhat.com/show_bug.cgi?id=1490409 -------------------------------------------------------------------------------- ================================================================================ libbson-1.3.5-4.fc25 (FEDORA-2017-7edc2ea787) Building, parsing, and iterating BSON documents -------------------------------------------------------------------------------- Update Information: This release fixes a crash when parsing an empty code string of a codewscope type. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1489355 - There is a heap-buffer-overflow in bson_utf8_validate() function of libbson. https://bugzilla.redhat.com/show_bug.cgi?id=1489355 -------------------------------------------------------------------------------- ================================================================================ libburn-1.4.8-1.fc25 (FEDORA-2017-80def0c0da) Library for reading, mastering and writing optical discs -------------------------------------------------------------------------------- Update Information: libisofs 1.4.8 ============== * Bug fix: iso_read_opts_set_no_rockridge() did not prevent reading of root SUSP. * Bug fix: Non-SUSP data in System Use Area prevented image loading if Rock Ridge was enabled. Thanks to Jonathan Dowland. * Bug fix: Protective MBR for GPT could emerge with boot flag set. * Bug fix: Appended partitions of size >= 4 GiB led to abort with error message "FATAL : ISO overwrite". Thanks to Sven Haardiek. * Bug fix: Bit 15 of iso_write_opts_set_system_area did not work with generic MBR. * Bug fix: Keeping and patching of loaded boot images failed. Regression by version 1.4.4. * Bug fix: Program crashes by intentionally wrong ISO image input. Found by American Fuzzy Lop and Jakub Wilk. Debian bug reports: 872372, 872475, 872545, 872590, 872761. * New API calls el_torito_set_full_load(), el_torito_get_full_load(). * New API call iso_write_opts_set_iso_mbr_part_type(). libburn and cdrskin 1.4.8 ========================= * Bug fix: Option -dummy did not affect writing by direct_write_amount= * New API call burn_drive_reset_simulate() * New API call burn_drive_get_bd_r_pow() * Refusing to write to BD-R if formatted to Pseudo Overwrite libisoburn and xorriso 1.4.8 ============================ * Bug fix: -as mkisofs -no-emul-boot without -boot-load-size defaulted to size 4, instead of full boot image size * Bug fix: -read_fs "norock" did not prevent reading of root Rock Ridge info * Bug fix: Mix of absolute and relative disk paths could cause SIGSEGV with pattern expansion * Bug fix: --mbr-force-bootable did not get into effect with -append_partition * Bug fix: Exit value of failed -mount command was reported as 0 * Bug fix: -boot_image actions "keep" and "patch" did not work any more. Regression by libisofs 1.4.4. * New -find tests -maxdepth and -mindepth * New commands -update_lxi and -update_li * New API calls isoburn_igopt_set_iso_mbr_part_type(), isoburn_igopt_get_iso_mbr_part_type() * New -boot_image bootspec iso_mbr_part_type= * New -as mkisofs option -iso_mbr_part_type * New -as mkisofs option -eltorito-platform * Properly refusing on Pseudo Overwritable formatted BD-R -------------------------------------------------------------------------------- References: [ 1 ] Bug #1491482 - libisoburn-1.4.8 is available https://bugzilla.redhat.com/show_bug.cgi?id=1491482 [ 2 ] Bug #1491478 - libburn-1.4.8 is available https://bugzilla.redhat.com/show_bug.cgi?id=1491478 [ 3 ] Bug #1491483 - libisofs-1.4.8 is available https://bugzilla.redhat.com/show_bug.cgi?id=1491483 -------------------------------------------------------------------------------- ================================================================================ libisoburn-1.4.8-1.fc25 (FEDORA-2017-80def0c0da) Library to enable creation and expansion of ISO-9660 filesystems -------------------------------------------------------------------------------- Update Information: libisofs 1.4.8 ============== * Bug fix: iso_read_opts_set_no_rockridge() did not prevent reading of root SUSP. * Bug fix: Non-SUSP data in System Use Area prevented image loading if Rock Ridge was enabled. Thanks to Jonathan Dowland. * Bug fix: Protective MBR for GPT could emerge with boot flag set. * Bug fix: Appended partitions of size >= 4 GiB led to abort with error message "FATAL : ISO overwrite". Thanks to Sven Haardiek. * Bug fix: Bit 15 of iso_write_opts_set_system_area did not work with generic MBR. * Bug fix: Keeping and patching of loaded boot images failed. Regression by version 1.4.4. * Bug fix: Program crashes by intentionally wrong ISO image input. Found by American Fuzzy Lop and Jakub Wilk. Debian bug reports: 872372, 872475, 872545, 872590, 872761. * New API calls el_torito_set_full_load(), el_torito_get_full_load(). * New API call iso_write_opts_set_iso_mbr_part_type(). libburn and cdrskin 1.4.8 ========================= * Bug fix: Option -dummy did not affect writing by direct_write_amount= * New API call burn_drive_reset_simulate() * New API call burn_drive_get_bd_r_pow() * Refusing to write to BD-R if formatted to Pseudo Overwrite libisoburn and xorriso 1.4.8 ============================ * Bug fix: -as mkisofs -no-emul-boot without -boot-load-size defaulted to size 4, instead of full boot image size * Bug fix: -read_fs "norock" did not prevent reading of root Rock Ridge info * Bug fix: Mix of absolute and relative disk paths could cause SIGSEGV with pattern expansion * Bug fix: --mbr-force-bootable did not get into effect with -append_partition * Bug fix: Exit value of failed -mount command was reported as 0 * Bug fix: -boot_image actions "keep" and "patch" did not work any more. Regression by libisofs 1.4.4. * New -find tests -maxdepth and -mindepth * New commands -update_lxi and -update_li * New API calls isoburn_igopt_set_iso_mbr_part_type(), isoburn_igopt_get_iso_mbr_part_type() * New -boot_image bootspec iso_mbr_part_type= * New -as mkisofs option -iso_mbr_part_type * New -as mkisofs option -eltorito-platform * Properly refusing on Pseudo Overwritable formatted BD-R -------------------------------------------------------------------------------- References: [ 1 ] Bug #1491482 - libisoburn-1.4.8 is available https://bugzilla.redhat.com/show_bug.cgi?id=1491482 [ 2 ] Bug #1491478 - libburn-1.4.8 is available https://bugzilla.redhat.com/show_bug.cgi?id=1491478 [ 3 ] Bug #1491483 - libisofs-1.4.8 is available https://bugzilla.redhat.com/show_bug.cgi?id=1491483 -------------------------------------------------------------------------------- ================================================================================ libisofs-1.4.8-1.fc25 (FEDORA-2017-80def0c0da) Library to create ISO 9660 disk images -------------------------------------------------------------------------------- Update Information: libisofs 1.4.8 ============== * Bug fix: iso_read_opts_set_no_rockridge() did not prevent reading of root SUSP. * Bug fix: Non-SUSP data in System Use Area prevented image loading if Rock Ridge was enabled. Thanks to Jonathan Dowland. * Bug fix: Protective MBR for GPT could emerge with boot flag set. * Bug fix: Appended partitions of size >= 4 GiB led to abort with error message "FATAL : ISO overwrite". Thanks to Sven Haardiek. * Bug fix: Bit 15 of iso_write_opts_set_system_area did not work with generic MBR. * Bug fix: Keeping and patching of loaded boot images failed. Regression by version 1.4.4. * Bug fix: Program crashes by intentionally wrong ISO image input. Found by American Fuzzy Lop and Jakub Wilk. Debian bug reports: 872372, 872475, 872545, 872590, 872761. * New API calls el_torito_set_full_load(), el_torito_get_full_load(). * New API call iso_write_opts_set_iso_mbr_part_type(). libburn and cdrskin 1.4.8 ========================= * Bug fix: Option -dummy did not affect writing by direct_write_amount= * New API call burn_drive_reset_simulate() * New API call burn_drive_get_bd_r_pow() * Refusing to write to BD-R if formatted to Pseudo Overwrite libisoburn and xorriso 1.4.8 ============================ * Bug fix: -as mkisofs -no-emul-boot without -boot-load-size defaulted to size 4, instead of full boot image size * Bug fix: -read_fs "norock" did not prevent reading of root Rock Ridge info * Bug fix: Mix of absolute and relative disk paths could cause SIGSEGV with pattern expansion * Bug fix: --mbr-force-bootable did not get into effect with -append_partition * Bug fix: Exit value of failed -mount command was reported as 0 * Bug fix: -boot_image actions "keep" and "patch" did not work any more. Regression by libisofs 1.4.4. * New -find tests -maxdepth and -mindepth * New commands -update_lxi and -update_li * New API calls isoburn_igopt_set_iso_mbr_part_type(), isoburn_igopt_get_iso_mbr_part_type() * New -boot_image bootspec iso_mbr_part_type= * New -as mkisofs option -iso_mbr_part_type * New -as mkisofs option -eltorito-platform * Properly refusing on Pseudo Overwritable formatted BD-R -------------------------------------------------------------------------------- References: [ 1 ] Bug #1491482 - libisoburn-1.4.8 is available https://bugzilla.redhat.com/show_bug.cgi?id=1491482 [ 2 ] Bug #1491478 - libburn-1.4.8 is available https://bugzilla.redhat.com/show_bug.cgi?id=1491478 [ 3 ] Bug #1491483 - libisofs-1.4.8 is available https://bugzilla.redhat.com/show_bug.cgi?id=1491483 -------------------------------------------------------------------------------- ================================================================================ module-build-service-1.3.28-1.fc25 (FEDORA-2017-d34fb7ead6) The Module Build Service for Modularity -------------------------------------------------------------------------------- Update Information: Latest upstream. - Optional Kerberos + LDAP Authentication for the server. - Correct "filtering" at build time: conflict with packages filtered out from the build-requires to ensure they won't appear in a buildroot. - Wait for components to be tagged also in final tag before marking module as done. This should fix an issue for the F27 compose. - Local mock builds no longer hardcode`x86_64` for architecture. ---- Latest upstream. ---- Backport patches to fix skiptests behavior -------------------------------------------------------------------------------- ================================================================================ nodejs-rhea-0.2.4-1.fc25 (FEDORA-2017-868511e995) A reactive messaging library based on the AMQP protocol -------------------------------------------------------------------------------- Update Information: Rebased to 0.2.4. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1433338 - nodejs-rhea-0.2.4 is available https://bugzilla.redhat.com/show_bug.cgi?id=1433338 -------------------------------------------------------------------------------- ================================================================================ nss-3.32.1-1.0.fc25 (FEDORA-2017-f8059ac0e5) Network Security Services -------------------------------------------------------------------------------- Update Information: Updates the nss family of packages to upstream NSS 3.32.1. Note that, only the nss package has changed since the previous upstream release 3.32.1. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1490652 - nss-3.32.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1490652 -------------------------------------------------------------------------------- ================================================================================ oniguruma-6.1.3-3.fc25 (FEDORA-2017-e314044789) Regular expressions library -------------------------------------------------------------------------------- Update Information: This new package includes additional fixes for CVE-2017-9228 . -------------------------------------------------------------------------------- References: [ 1 ] Bug #1466752 - CVE-2017-9224 CVE-2017-9225 CVE-2017-9226 CVE-2017-9227 CVE-2017-9228 CVE-2017-9229 oniguruma: various flaws [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1466752 -------------------------------------------------------------------------------- ================================================================================ openvdb-4.0.2-1.fc25 (FEDORA-2017-1086f5aa62) C++ library for sparse volumetric data discretized on three-dimensional grids -------------------------------------------------------------------------------- Update Information: Update to Blender 2.79. HiDPI support. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1473982 - alembic-1.7.3 is available https://bugzilla.redhat.com/show_bug.cgi?id=1473982 [ 2 ] Bug #1450645 - [abrt] blender: gc_list_merge(): blender killed by SIGSEGV https://bugzilla.redhat.com/show_bug.cgi?id=1450645 [ 3 ] Bug #1256068 - Incorrect dpi detected: blender thinks I have 72 dpi https://bugzilla.redhat.com/show_bug.cgi?id=1256068 [ 4 ] Bug #1490876 - blender-2.79 is available https://bugzilla.redhat.com/show_bug.cgi?id=1490876 [ 5 ] Bug #1487933 - early crash before reaching main() https://bugzilla.redhat.com/show_bug.cgi?id=1487933 -------------------------------------------------------------------------------- ================================================================================ perl-Image-SubImageFind-0.03-13.fc25 (FEDORA-2017-3a568adb31) Perl extension for locating a sub-image within an image -------------------------------------------------------------------------------- Update Information: Many security fixes, bug fixes, and other changes from the previous version 6.9.3.0. See the [6.9 branch ChangeLog](https://github.com/ImageMagick/ImageMagi ck/blob/3fd358e2ac34977fda38a2cf4d88a1cb4dd2d7c7/ChangeLog). Dependent packages are mostly straight rebuilds, a couple also include bugfix version updates. ---- rhbz#1490649 - emacs-25.3 is available rhbz#1490410 - unsafe enriched mode translations (security) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1490409 - CVE-2017-14482 emacs: Unsafe enriched mode translations https://bugzilla.redhat.com/show_bug.cgi?id=1490409 -------------------------------------------------------------------------------- ================================================================================ pfstools-2.0.6-3.fc25 (FEDORA-2017-3a568adb31) Programs for handling high-dynamic range images -------------------------------------------------------------------------------- Update Information: Many security fixes, bug fixes, and other changes from the previous version 6.9.3.0. See the [6.9 branch ChangeLog](https://github.com/ImageMagick/ImageMagi ck/blob/3fd358e2ac34977fda38a2cf4d88a1cb4dd2d7c7/ChangeLog). Dependent packages are mostly straight rebuilds, a couple also include bugfix version updates. ---- rhbz#1490649 - emacs-25.3 is available rhbz#1490410 - unsafe enriched mode translations (security) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1490409 - CVE-2017-14482 emacs: Unsafe enriched mode translations https://bugzilla.redhat.com/show_bug.cgi?id=1490409 -------------------------------------------------------------------------------- ================================================================================ php-pecl-imagick-3.4.3-2.fc25 (FEDORA-2017-3a568adb31) Provides a wrapper to the ImageMagick library -------------------------------------------------------------------------------- Update Information: Many security fixes, bug fixes, and other changes from the previous version 6.9.3.0. See the [6.9 branch ChangeLog](https://github.com/ImageMagick/ImageMagi ck/blob/3fd358e2ac34977fda38a2cf4d88a1cb4dd2d7c7/ChangeLog). Dependent packages are mostly straight rebuilds, a couple also include bugfix version updates. ---- rhbz#1490649 - emacs-25.3 is available rhbz#1490410 - unsafe enriched mode translations (security) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1490409 - CVE-2017-14482 emacs: Unsafe enriched mode translations https://bugzilla.redhat.com/show_bug.cgi?id=1490409 -------------------------------------------------------------------------------- ================================================================================ polkit-gnome-0.106-0.1.20170423gita0763a2.fc25 (FEDORA-2017-a1cc016bc7) PolicyKit integration for the GNOME desktop -------------------------------------------------------------------------------- Update Information: Update to the latest git snapshot for improved locale support. -------------------------------------------------------------------------------- ================================================================================ psiconv-0.9.8-22.fc25 (FEDORA-2017-3a568adb31) A conversion utility for Psion files -------------------------------------------------------------------------------- Update Information: Many security fixes, bug fixes, and other changes from the previous version 6.9.3.0. See the [6.9 branch ChangeLog](https://github.com/ImageMagick/ImageMagi ck/blob/3fd358e2ac34977fda38a2cf4d88a1cb4dd2d7c7/ChangeLog). Dependent packages are mostly straight rebuilds, a couple also include bugfix version updates. ---- rhbz#1490649 - emacs-25.3 is available rhbz#1490410 - unsafe enriched mode translations (security) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1490409 - CVE-2017-14482 emacs: Unsafe enriched mode translations https://bugzilla.redhat.com/show_bug.cgi?id=1490409 -------------------------------------------------------------------------------- ================================================================================ python-copr-1.81-1.fc25 (FEDORA-2017-06039f0414) Python interface for Copr -------------------------------------------------------------------------------- Update Information: - fix unittests - run tests with python3 - pag#130 update requirements - pag#125 copr build copr pkgs [pkgs ...] builds only the first SRPM - pag#112 [RFE] copr- cli whoami - Bug 1431035 - coprs should check credentials before uploading source rpm - Spelling fixes ---- - allow to modify copr chroots with copr modify cmd -------------------------------------------------------------------------------- References: [ 1 ] Bug #1431035 - coprs should check credentials before uploading source rpm https://bugzilla.redhat.com/show_bug.cgi?id=1431035 -------------------------------------------------------------------------------- ================================================================================ python-sphinx-intl-0.9.10-1.git20cd0d2.fc25 (FEDORA-2017-0a95c8c921) Sphinx utility that make it easy to translate and to apply translation -------------------------------------------------------------------------------- Update Information: Update to 0.9.10 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1491272 - python-sphinx-intl-0.9.10 is available https://bugzilla.redhat.com/show_bug.cgi?id=1491272 -------------------------------------------------------------------------------- ================================================================================ q-7.11-29.fc25 (FEDORA-2017-3a568adb31) Equational programming language -------------------------------------------------------------------------------- Update Information: Many security fixes, bug fixes, and other changes from the previous version 6.9.3.0. See the [6.9 branch ChangeLog](https://github.com/ImageMagick/ImageMagi ck/blob/3fd358e2ac34977fda38a2cf4d88a1cb4dd2d7c7/ChangeLog). Dependent packages are mostly straight rebuilds, a couple also include bugfix version updates. ---- rhbz#1490649 - emacs-25.3 is available rhbz#1490410 - unsafe enriched mode translations (security) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1490409 - CVE-2017-14482 emacs: Unsafe enriched mode translations https://bugzilla.redhat.com/show_bug.cgi?id=1490409 -------------------------------------------------------------------------------- ================================================================================ ripright-0.11-5.fc25 (FEDORA-2017-3a568adb31) Minimal CD to FLAC ripper -------------------------------------------------------------------------------- Update Information: Many security fixes, bug fixes, and other changes from the previous version 6.9.3.0. See the [6.9 branch ChangeLog](https://github.com/ImageMagick/ImageMagi ck/blob/3fd358e2ac34977fda38a2cf4d88a1cb4dd2d7c7/ChangeLog). Dependent packages are mostly straight rebuilds, a couple also include bugfix version updates. ---- rhbz#1490649 - emacs-25.3 is available rhbz#1490410 - unsafe enriched mode translations (security) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1490409 - CVE-2017-14482 emacs: Unsafe enriched mode translations https://bugzilla.redhat.com/show_bug.cgi?id=1490409 -------------------------------------------------------------------------------- ================================================================================ rss-glx-0.9.1.p-27.fc25.1 (FEDORA-2017-3a568adb31) Really Slick Screensavers -------------------------------------------------------------------------------- Update Information: Many security fixes, bug fixes, and other changes from the previous version 6.9.3.0. See the [6.9 branch ChangeLog](https://github.com/ImageMagick/ImageMagi ck/blob/3fd358e2ac34977fda38a2cf4d88a1cb4dd2d7c7/ChangeLog). Dependent packages are mostly straight rebuilds, a couple also include bugfix version updates. ---- rhbz#1490649 - emacs-25.3 is available rhbz#1490410 - unsafe enriched mode translations (security) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1490409 - CVE-2017-14482 emacs: Unsafe enriched mode translations https://bugzilla.redhat.com/show_bug.cgi?id=1490409 -------------------------------------------------------------------------------- ================================================================================ rubygem-rmagick-2.16.0-4.fc25.2 (FEDORA-2017-3a568adb31) Ruby binding to ImageMagick -------------------------------------------------------------------------------- Update Information: Many security fixes, bug fixes, and other changes from the previous version 6.9.3.0. See the [6.9 branch ChangeLog](https://github.com/ImageMagick/ImageMagi ck/blob/3fd358e2ac34977fda38a2cf4d88a1cb4dd2d7c7/ChangeLog). Dependent packages are mostly straight rebuilds, a couple also include bugfix version updates. ---- rhbz#1490649 - emacs-25.3 is available rhbz#1490410 - unsafe enriched mode translations (security) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1490409 - CVE-2017-14482 emacs: Unsafe enriched mode translations https://bugzilla.redhat.com/show_bug.cgi?id=1490409 -------------------------------------------------------------------------------- ================================================================================ setroubleshoot-3.3.12-2.fc25 (FEDORA-2017-be0959ff2c) Helps troubleshoot SELinux problems -------------------------------------------------------------------------------- Update Information: setroubleshootd was change in order not to catch POSIX signals, see https://bugzilla.redhat.com/show_bug.cgi?id=1366004#c35 for more information. Also, this update contains several backported fixes from the latest upstream release -------------------------------------------------------------------------------- References: [ 1 ] Bug #1366004 - [abrt] setroubleshoot-server: service.py:647:_message_cb:SystemError: <built-in function isinstance> returned a result with an error set https://bugzilla.redhat.com/show_bug.cgi?id=1366004 [ 2 ] Bug #1419245 - [abrt] setroubleshoot-server: service.py:647:_message_cb:SystemError: <built-in function isinstance> returned a result with an error set https://bugzilla.redhat.com/show_bug.cgi?id=1419245 [ 3 ] Bug #1484736 - With selinuxfs unmounted, sealert produces a traceback https://bugzilla.redhat.com/show_bug.cgi?id=1484736 -------------------------------------------------------------------------------- ================================================================================ ssdeep-2.14-1.fc25 (FEDORA-2017-ad403279cb) Compute context triggered piecewise hashes -------------------------------------------------------------------------------- Update Information: ** Version 2.14** - 12 Sep 2017 * New Features - Optimizations to the fuzzy hashing engine. (hash generator can run as twice as fast and comparison can run 1.5 through 5 times faster [heavily depends on the data and platform] than the previous release) * Bug Fixes - Fixed issue when certain memory allocation is failed. -------------------------------------------------------------------------------- ================================================================================ switchboard-plug-networking-0.1.1-1.fc25 (FEDORA-2017-02fd0bfd29) Switchboard Networking plug -------------------------------------------------------------------------------- Update Information: Update to version 0.1.1. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1492086 - switchboard-plug-networking-0.1.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1492086 -------------------------------------------------------------------------------- ================================================================================ syncthing-0.14.37-1.fc25 (FEDORA-2017-c785578933) Continuous File Synchronization -------------------------------------------------------------------------------- Update Information: Update to version 0.14.37. -------------------------------------------------------------------------------- ================================================================================ synfig-1.2.0-1.fc25.1 (FEDORA-2017-3a568adb31) Vector-based 2D animation rendering backend -------------------------------------------------------------------------------- Update Information: Many security fixes, bug fixes, and other changes from the previous version 6.9.3.0. See the [6.9 branch ChangeLog](https://github.com/ImageMagick/ImageMagi ck/blob/3fd358e2ac34977fda38a2cf4d88a1cb4dd2d7c7/ChangeLog). Dependent packages are mostly straight rebuilds, a couple also include bugfix version updates. ---- rhbz#1490649 - emacs-25.3 is available rhbz#1490410 - unsafe enriched mode translations (security) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1490409 - CVE-2017-14482 emacs: Unsafe enriched mode translations https://bugzilla.redhat.com/show_bug.cgi?id=1490409 -------------------------------------------------------------------------------- ================================================================================ synfigstudio-1.2.0-5.fc25 (FEDORA-2017-3a568adb31) Vector-based 2D animation studio -------------------------------------------------------------------------------- Update Information: Many security fixes, bug fixes, and other changes from the previous version 6.9.3.0. See the [6.9 branch ChangeLog](https://github.com/ImageMagick/ImageMagi ck/blob/3fd358e2ac34977fda38a2cf4d88a1cb4dd2d7c7/ChangeLog). Dependent packages are mostly straight rebuilds, a couple also include bugfix version updates. ---- rhbz#1490649 - emacs-25.3 is available rhbz#1490410 - unsafe enriched mode translations (security) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1490409 - CVE-2017-14482 emacs: Unsafe enriched mode translations https://bugzilla.redhat.com/show_bug.cgi?id=1490409 -------------------------------------------------------------------------------- ================================================================================ techne-0.2.3-20.fc25 (FEDORA-2017-3a568adb31) A general purpose, programmable physical simulator and renderer -------------------------------------------------------------------------------- Update Information: Many security fixes, bug fixes, and other changes from the previous version 6.9.3.0. See the [6.9 branch ChangeLog](https://github.com/ImageMagick/ImageMagi ck/blob/3fd358e2ac34977fda38a2cf4d88a1cb4dd2d7c7/ChangeLog). Dependent packages are mostly straight rebuilds, a couple also include bugfix version updates. ---- rhbz#1490649 - emacs-25.3 is available rhbz#1490410 - unsafe enriched mode translations (security) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1490409 - CVE-2017-14482 emacs: Unsafe enriched mode translations https://bugzilla.redhat.com/show_bug.cgi?id=1490409 -------------------------------------------------------------------------------- ================================================================================ vdr-scraper2vdr-1.0.5-4.20170611git254122b.fc25 (FEDORA-2017-3a568adb31) A client plugin which provides scraped metadata from EPGD to other plugins -------------------------------------------------------------------------------- Update Information: Many security fixes, bug fixes, and other changes from the previous version 6.9.3.0. See the [6.9 branch ChangeLog](https://github.com/ImageMagick/ImageMagi ck/blob/3fd358e2ac34977fda38a2cf4d88a1cb4dd2d7c7/ChangeLog). Dependent packages are mostly straight rebuilds, a couple also include bugfix version updates. ---- rhbz#1490649 - emacs-25.3 is available rhbz#1490410 - unsafe enriched mode translations (security) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1490409 - CVE-2017-14482 emacs: Unsafe enriched mode translations https://bugzilla.redhat.com/show_bug.cgi?id=1490409 -------------------------------------------------------------------------------- ================================================================================ vips-8.4.4-1.fc25.1 (FEDORA-2017-3a568adb31) C/C++ library for processing large images -------------------------------------------------------------------------------- Update Information: Many security fixes, bug fixes, and other changes from the previous version 6.9.3.0. See the [6.9 branch ChangeLog](https://github.com/ImageMagick/ImageMagi ck/blob/3fd358e2ac34977fda38a2cf4d88a1cb4dd2d7c7/ChangeLog). Dependent packages are mostly straight rebuilds, a couple also include bugfix version updates. ---- rhbz#1490649 - emacs-25.3 is available rhbz#1490410 - unsafe enriched mode translations (security) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1490409 - CVE-2017-14482 emacs: Unsafe enriched mode translations https://bugzilla.redhat.com/show_bug.cgi?id=1490409 -------------------------------------------------------------------------------- ================================================================================ xen-4.7.3-5.fc25 (FEDORA-2017-f7fd3fe7eb) Xen is a virtual machine monitor -------------------------------------------------------------------------------- Update Information: xen: various flaws (#1490884) Missing NUMA node parameter verification [XSA-231, CVE-2017-14316] Missing check for grant table [XSA-232, CVE-2017-14318] cxenstored: Race in domain cleanup [XSA-233, CVE-2017-14317] insufficient grant unmapping checks for x86 PV guests [XSA-234, CVE-2017-14319] -------------------------------------------------------------------------------- References: [ 1 ] Bug #1486707 - CVE-2017-14316 xsa231 xen: Missing NUMA node parameter verification (XSA-231) https://bugzilla.redhat.com/show_bug.cgi?id=1486707 [ 2 ] Bug #1486708 - CVE-2017-14318 xsa232 xen: Missing check for grant table (XSA-232) https://bugzilla.redhat.com/show_bug.cgi?id=1486708 [ 3 ] Bug #1486709 - CVE-2017-14317 xsa233 xen: cxenstored: Race in domain cleanup (XSA-233) https://bugzilla.redhat.com/show_bug.cgi?id=1486709 [ 4 ] Bug #1486710 - CVE-2017-14319 xsa234 xen: insufficient grant unmapping checks for x86 PV guests (XSA-234) https://bugzilla.redhat.com/show_bug.cgi?id=1486710 -------------------------------------------------------------------------------- _______________________________________________ test mailing list -- test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to test-leave@xxxxxxxxxxxxxxxxxxxxxxx
