The following Fedora 26 Security updates need testing: Age URL 177 https://bodhi.fedoraproject.org/updates/FEDORA-2017-1bf5a0ce01 python-XStatic-jquery-ui-1.12.0.1-2.fc26 116 https://bodhi.fedoraproject.org/updates/FEDORA-2017-2522df3526 nodejs-brace-expansion-1.1.7-1.fc26 79 https://bodhi.fedoraproject.org/updates/FEDORA-2017-690a2548ba openvswitch-2.7.1-2.fc26 70 https://bodhi.fedoraproject.org/updates/FEDORA-2017-1c053de325 memcached-1.4.39-1.fc26 67 https://bodhi.fedoraproject.org/updates/FEDORA-2017-ccb5c8d1e7 docker-distribution-2.6.2-1.git48294d9.fc26 48 https://bodhi.fedoraproject.org/updates/FEDORA-2017-d4248ba346 botan-1.10.16-1.fc26 7 https://bodhi.fedoraproject.org/updates/FEDORA-2017-55b5527f23 ejabberd-17.01-3.fc26 6 https://bodhi.fedoraproject.org/updates/FEDORA-2017-cf9301d69e mingw-LibRaw-0.18.5-1.fc26 4 https://bodhi.fedoraproject.org/updates/FEDORA-2017-efeb59171d chromium-61.0.3163.100-1.fc26 4 https://bodhi.fedoraproject.org/updates/FEDORA-2017-3adc791de1 MySQL-zrm-3.0-17.fc26 4 https://bodhi.fedoraproject.org/updates/FEDORA-2017-89492f7161 perl-5.24.3-395.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-897a192750 ImageMagick-6.9.9.15-1.fc26 rubygem-rmagick-2.16.0-7.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-700915e34f openvpn-2.4.4-1.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-730e299c49 firefox-56.0-2.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-cf3746f1f6 tor-0.2.9.12-1.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-5c2a294fba weechat-1.9.1-1.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-c9abeb3158 WebCalendar-1.2.9-1.fc26 The following Fedora 26 Critical Path updates have yet to be approved: Age URL 14 https://bodhi.fedoraproject.org/updates/FEDORA-2017-ff7b30a42d libvirt-3.2.1-6.fc26 12 https://bodhi.fedoraproject.org/updates/FEDORA-2017-eaaa4b2079 supermin-5.1.19-1.fc26 11 https://bodhi.fedoraproject.org/updates/FEDORA-2017-5d0014f404 pungi-4.1.19-1.fc26 4 https://bodhi.fedoraproject.org/updates/FEDORA-2017-89492f7161 perl-5.24.3-395.fc26 2 https://bodhi.fedoraproject.org/updates/FEDORA-2017-87acef340c boost-1.63.0-9.fc26 2 https://bodhi.fedoraproject.org/updates/FEDORA-2017-9774b14bb8 flatpak-0.9.98.2-1.fc26 flatpak-builder-0.9.98-1.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-b6a648f3fd dtc-1.4.5-1.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-3b2d3ceaa8 xmlrpc-c-1.48.0-8.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-621a9b4828 iproute-4.13.0-1.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-c0e81a1c7a kernel-4.13.4-200.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-730e299c49 firefox-56.0-2.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-29d4eac4a8 selinux-policy-3.13.1-260.10.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-6271764d02 menu-cache-1.0.2-7.D20170914git8c8534159d.fc26 The following builds have been pushed to Fedora 26 updates-testing GitPython-2.1.7-1.fc26 ImageMagick-6.9.9.15-1.fc26 R-IRdisplay-0.4.4-1.fc26 R-jsonlite-1.5-4.fc26 WebCalendar-1.2.9-1.fc26 ardour5-5.12.0-2.fc26 autoconf-archive-2017.09.28-1.fc26 bgpq3-0.1.31-1.fc26 container-storage-setup-0.8.0-1.git1d27ecf.fc26 copyq-3.1.1-1.fc26 diorite-4.8.0-1.fc26 dtc-1.4.5-1.fc26 eclipse-cdt-9.3.2-2.fc26 eclipse-mylyn-3.23.1-6.fc26 eclipse-pydev-5.9.2-2.fc26 erlang-meck-0.8.8-2.fc26 fedora-easy-karma-0-0.32.20170930git0c81432c.fc26 filezilla-3.28.0-1.fc26 firefox-56.0-2.fc26 flacon-3.1.1-4.fc26 golang-github-aws-aws-sdk-go-1.4.22-0.5.git50762c1.fc26 golang-github-coreos-go-iptables-0-0.10.git259c8e6.fc26 golang-github-emicklei-go-restful-1.1.3-0.15.git09691a3.fc26 golang-github-golang-appengine-0-0.13.git4f7eeb5.fc26 golang-github-google-gofuzz-0-0.18.git44d8105.fc26 golang-github-jdkato-prose-0-0.5.20170911git2f94c80.fc26 golang-googlecode-goauth2-0-0.22.git5432cc9.fc26 golang-torproject-pluggable-transports-goptlib-0.7-2.fc26 iproute-4.13.0-1.fc26 jose-10-1.fc26 jython-2.7.1-3.fc26 kernel-4.13.4-200.fc26 libfilezilla-0.11.0-1.fc26 libnuml-1.1.1-2.fc26 libsemigroups-0.5.0-1.fc26 luksmeta-8-1.fc26 mate-applets-1.18.1-2.fc26 menu-cache-1.0.2-7.D20170914git8c8534159d.fc26 metamath-0.152-1.fc26 nova-agent-2.1.6-1.fc26 nuvola-app-amazon-cloud-player-5.5-1.fc26 nuvola-app-bbc-iplayer-1.2-1.fc26 nuvola-app-google-play-music-6.0-1.fc26 nuvola-app-groove-2.0-1.fc26 nuvola-app-spotify-2.4-1.fc26 nuvolaruntime-4.8.0-1.fc26 obfs4-0.0.7-1.fc26 odcs-0.0.7-1.fc26 openboardview-7.3-5.fc26 openscap-daemon-0.1.8-1.fc26 opensmtpd-6.0.2p1-6.fc26 openvpn-2.4.4-1.fc26 otter-browser-0.9.12-0.6.beta12gitb195b9a.fc26 petsc-3.7.7-1.fc26 php-phpmyadmin-sql-parser-4.2.2-1.fc26 php-zendframework-zend-servicemanager-di-1.1.1-1.fc26 pioneer-20171001-1.fc26 polyclipping-6.4.2-1.fc26 python-aioodbc-0.2.0-1.fc26 python-coveralls-1.2.0-1.fc26 python-gitdb-2.0.3-1.fc26 python-multidict-3.2.0-1.fc26 python-pytaglib-1.4.1-1.fc26 python-serpy-0.2.0-1.fc26 python-streamlink-0.8.1-2.fc26 python-sync2jira-1.4-1.fc26 python-tabulate-0.8.0-1.fc26 root-6.10.06-1.fc26 rubygem-rmagick-2.16.0-7.fc26 selinux-policy-3.13.1-260.10.fc26 sysbench-1.0.9-2.fc26 thunar-sendto-clamtk-0.06-1.fc26 tinc-1.0.32-1.fc26 tor-0.2.9.12-1.fc26 tsung-1.7.0-1.fc26 weechat-1.9.1-1.fc26 xmlrpc-c-1.48.0-8.fc26 yoshimi-1.5.4-1.fc26 zegrapher-3.0.1-2.fc26 Details about builds: ================================================================================ GitPython-2.1.7-1.fc26 (FEDORA-2017-b080d98490) Python Git Library -------------------------------------------------------------------------------- Update Information: Update GitPython stack to latest versions, only bugfixes. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1495379 - GitPython-2.1.7 is available https://bugzilla.redhat.com/show_bug.cgi?id=1495379 -------------------------------------------------------------------------------- ================================================================================ ImageMagick-6.9.9.15-1.fc26 (FEDORA-2017-897a192750) An X application for displaying and manipulating images -------------------------------------------------------------------------------- Update Information: 6.9.9-15 ---- Rebuilt for ImageMagick 6.9.9-13 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1496308 - [config/type-ghostscript.xml.in] using outdated hardcoded paths for (URW)++ fonts https://bugzilla.redhat.com/show_bug.cgi?id=1496308 [ 2 ] Bug #1496032 - convert: Ignoring invalid time value https://bugzilla.redhat.com/show_bug.cgi?id=1496032 [ 3 ] Bug #1487680 - CVE-2017-13768 ImageMagick: NULL pointer dereference in IdentifyImage function in MagickCore/identify.c [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1487680 -------------------------------------------------------------------------------- ================================================================================ R-IRdisplay-0.4.4-1.fc26 (FEDORA-2017-6e2f18b761) 'Jupyter' Display Machinery -------------------------------------------------------------------------------- Update Information: Initial package of IRdisplay for R. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1485185 - Review Request: R-IRdisplay - Jupyter Display Machinery https://bugzilla.redhat.com/show_bug.cgi?id=1485185 -------------------------------------------------------------------------------- ================================================================================ R-jsonlite-1.5-4.fc26 (FEDORA-2017-347ea277d1) A Robust, High Performance JSON Parser and Generator for R -------------------------------------------------------------------------------- Update Information: Initial package of jsonlite for R. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1489340 - Review Request: R-jsonlite - A Robust, High Performance JSON Parser and Generator for R https://bugzilla.redhat.com/show_bug.cgi?id=1489340 -------------------------------------------------------------------------------- ================================================================================ WebCalendar-1.2.9-1.fc26 (FEDORA-2017-c9abeb3158) Single/multi-user web-based calendar application -------------------------------------------------------------------------------- Update Information: New upstream release. Fixes CVE-2017-10840 and CVE-2017-10841.<br> Upstream moved from sourceforge to github.<br> PHP >= 5.3 required.<br> Adjust httpd configuration to support PHP FCGI. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1486208 - CVE-2017-10840 CVE-2017-10841 WebCalendar: Cross-site scripting and directory traversal issues https://bugzilla.redhat.com/show_bug.cgi?id=1486208 -------------------------------------------------------------------------------- ================================================================================ ardour5-5.12.0-2.fc26 (FEDORA-2017-da5efacdb8) Digital Audio Workstation -------------------------------------------------------------------------------- Update Information: Fix Stretch Mode crashes ardour5 ---- New upstream bugfix and enhancement release. For details, refer to the [upstream release announcement](https://community.ardour.org/node/15298). -------------------------------------------------------------------------------- References: [ 1 ] Bug #1494796 - Stretch Mode crashes ardour5 https://bugzilla.redhat.com/show_bug.cgi?id=1494796 -------------------------------------------------------------------------------- ================================================================================ autoconf-archive-2017.09.28-1.fc26 (FEDORA-2017-c01525c28b) The Autoconf Macro Archive -------------------------------------------------------------------------------- Update Information: Update to 2017.09.28 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1496786 - autoconf-archive-2017.09.28 is available https://bugzilla.redhat.com/show_bug.cgi?id=1496786 -------------------------------------------------------------------------------- ================================================================================ bgpq3-0.1.31-1.fc26 (FEDORA-2017-1ecbeb8436) Automate BGP filter generation based on routing database information -------------------------------------------------------------------------------- Update Information: Initial package. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1495004 - Review Request: bgpq3 - Automate BGP filter generation based on routing database information https://bugzilla.redhat.com/show_bug.cgi?id=1495004 -------------------------------------------------------------------------------- ================================================================================ container-storage-setup-0.8.0-1.git1d27ecf.fc26 (FEDORA-2017-f5a58649eb) A simple service to setup container storage devices -------------------------------------------------------------------------------- Update Information: Fix up containers-storage-setup for Fedora Atomic Host logical volumes. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1477894 - Fedora Atomic Host logical volume renamed from docker-pool https://bugzilla.redhat.com/show_bug.cgi?id=1477894 -------------------------------------------------------------------------------- ================================================================================ copyq-3.1.1-1.fc26 (FEDORA-2017-2cb08a6c18) Advanced clipboard manager -------------------------------------------------------------------------------- Update Information: Upstream release rhbz#1496733 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1496733 - copyq-v3.1.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1496733 -------------------------------------------------------------------------------- ================================================================================ diorite-4.8.0-1.fc26 (FEDORA-2017-790a203182) Utility and widget library for Nuvola Player -------------------------------------------------------------------------------- Update Information: Update to stable 4.8.0 -------------------------------------------------------------------------------- ================================================================================ dtc-1.4.5-1.fc26 (FEDORA-2017-b6a648f3fd) Device Tree Compiler -------------------------------------------------------------------------------- Update Information: New dtc 1.4.5 release -------------------------------------------------------------------------------- ================================================================================ eclipse-cdt-9.3.2-2.fc26 (FEDORA-2017-674d872ce6) Eclipse C/C++ Development Tools (CDT) plugin -------------------------------------------------------------------------------- Update Information: Updates to Oxygen.1 releases. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1491792 - update eclipse-mylyn to 3.23.1.v20170623-0008 https://bugzilla.redhat.com/show_bug.cgi?id=1491792 -------------------------------------------------------------------------------- ================================================================================ eclipse-mylyn-3.23.1-6.fc26 (FEDORA-2017-674d872ce6) Eclipse Mylyn main feature. -------------------------------------------------------------------------------- Update Information: Updates to Oxygen.1 releases. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1491792 - update eclipse-mylyn to 3.23.1.v20170623-0008 https://bugzilla.redhat.com/show_bug.cgi?id=1491792 -------------------------------------------------------------------------------- ================================================================================ eclipse-pydev-5.9.2-2.fc26 (FEDORA-2017-bcf6079c0c) Eclipse Python development plug-in -------------------------------------------------------------------------------- Update Information: Fixes errors seen when doing code analysis with pycodestyle and fixes errors seen when attempting to use the interactive jython console. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1476354 - "Error analyzing: path.to.module (SourceModule)" as java.lang.RuntimeException when loading pycodestyle https://bugzilla.redhat.com/show_bug.cgi?id=1476354 -------------------------------------------------------------------------------- ================================================================================ erlang-meck-0.8.8-2.fc26 (FEDORA-2017-6dd9f536e5) A mocking library for Erlang -------------------------------------------------------------------------------- Update Information: * Ver. 0.8.8 * Fixed failures on some arches -------------------------------------------------------------------------------- References: [ 1 ] Bug #1467121 - erlang-meck-0.8.8 is available https://bugzilla.redhat.com/show_bug.cgi?id=1467121 -------------------------------------------------------------------------------- ================================================================================ fedora-easy-karma-0-0.32.20170930git0c81432c.fc26 (FEDORA-2017-1a378bed07) Fedora update feedback made easy -------------------------------------------------------------------------------- Update Information: Add support for new bodhi client bindings and add hard dependencies for yum or python2-dnf -------------------------------------------------------------------------------- References: [ 1 ] Bug #1494644 - fedora.client.bodhi.BodhiClientException: You must provide a captcha_key https://bugzilla.redhat.com/show_bug.cgi?id=1494644 [ 2 ] Bug #1270600 - fedora-easy-karma can not execute without yum or python2-dnf (missing dependency) https://bugzilla.redhat.com/show_bug.cgi?id=1270600 -------------------------------------------------------------------------------- ================================================================================ filezilla-3.28.0-1.fc26 (FEDORA-2017-76e6992413) FTP, FTPS and SFTP client -------------------------------------------------------------------------------- Update Information: Libfilezilla 0.11.0, Filezilla 3.28.0 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1497187 - libfilezilla-0.11.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1497187 -------------------------------------------------------------------------------- ================================================================================ firefox-56.0-2.fc26 (FEDORA-2017-730e299c49) Mozilla Firefox Web browser -------------------------------------------------------------------------------- Update Information: - Updated to latest upstream (56.0) -------------------------------------------------------------------------------- ================================================================================ flacon-3.1.1-4.fc26 (FEDORA-2017-033c75d53a) Audio File Encoder -------------------------------------------------------------------------------- Update Information: rebuilt package -------------------------------------------------------------------------------- ================================================================================ golang-github-aws-aws-sdk-go-1.4.22-0.5.git50762c1.fc26 (FEDORA-2017-329936d462) AWS SDK for the Go programming language -------------------------------------------------------------------------------- Update Information: Bump to upstream 50762c1efc55dd2a05eac85fc170b0f65aeec28f -------------------------------------------------------------------------------- References: [ 1 ] Bug #1274280 - Tracker for golang-github-aws-aws-sdk-go https://bugzilla.redhat.com/show_bug.cgi?id=1274280 -------------------------------------------------------------------------------- ================================================================================ golang-github-coreos-go-iptables-0-0.10.git259c8e6.fc26 (FEDORA-2017-222222950a) Go wrapper around iptables utility -------------------------------------------------------------------------------- Update Information: Bump to upstream 259c8e6a4275d497442c721fa52204d7a58bde8b -------------------------------------------------------------------------------- References: [ 1 ] Bug #1262543 - Tracker for golang-github-coreos-go-iptables https://bugzilla.redhat.com/show_bug.cgi?id=1262543 -------------------------------------------------------------------------------- ================================================================================ golang-github-emicklei-go-restful-1.1.3-0.15.git09691a3.fc26 (FEDORA-2017-4ba2c4790f) Package for building REST-style Web Services using Google Go -------------------------------------------------------------------------------- Update Information: Bump to upstream 09691a3b6378b740595c1002f40c34dd5f218a22 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1215626 - Tracker for golang-github-emicklei-go-restful https://bugzilla.redhat.com/show_bug.cgi?id=1215626 -------------------------------------------------------------------------------- ================================================================================ golang-github-golang-appengine-0-0.13.git4f7eeb5.fc26 (FEDORA-2017-a33e638f35) Go App Engine for Managed VMs -------------------------------------------------------------------------------- Update Information: Bump to upstream 4f7eeb5305a4ba1966344836ba4af9996b7b4e05 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1249049 - Tracker for golang-github-golang-appengine https://bugzilla.redhat.com/show_bug.cgi?id=1249049 -------------------------------------------------------------------------------- ================================================================================ golang-github-google-gofuzz-0-0.18.git44d8105.fc26 (FEDORA-2017-9d6bbe2503) Library for populating go objects with random values -------------------------------------------------------------------------------- Update Information: Bump to upstream 44d81051d367757e1c7c6a5a86423ece9afcf63c -------------------------------------------------------------------------------- References: [ 1 ] Bug #1249075 - Tracker for golang-github-google-gofuzz https://bugzilla.redhat.com/show_bug.cgi?id=1249075 -------------------------------------------------------------------------------- ================================================================================ golang-github-jdkato-prose-0-0.5.20170911git2f94c80.fc26 (FEDORA-2017-dd79a3d6d4) Golang library for text processing -------------------------------------------------------------------------------- Update Information: Update revision -------------------------------------------------------------------------------- ================================================================================ golang-googlecode-goauth2-0-0.22.git5432cc9.fc26 (FEDORA-2017-f2f46e7631) OAuth 2.0 for Go clients -------------------------------------------------------------------------------- Update Information: Bump to upstream 5432cc9688e6250a0dd8f5a5f4c781d92b398be6 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1227273 - Tracker for golang-googlecode-goauth2 https://bugzilla.redhat.com/show_bug.cgi?id=1227273 -------------------------------------------------------------------------------- ================================================================================ golang-torproject-pluggable-transports-goptlib-0.7-2.fc26 (FEDORA-2017-ef8e3a20c9) A library for writing Tor pluggable transports in Go -------------------------------------------------------------------------------- Update Information: Fix the import path ---- New package -------------------------------------------------------------------------------- ================================================================================ iproute-4.13.0-1.fc26 (FEDORA-2017-621a9b4828) Advanced IP routing and network device configuration tools -------------------------------------------------------------------------------- Update Information: New version 4.13.0 to match kernel version. -------------------------------------------------------------------------------- ================================================================================ jose-10-1.fc26 (FEDORA-2017-9b0d9daec9) Tools for JSON Object Signing and Encryption (JOSE) -------------------------------------------------------------------------------- Update Information: New upstream release. -------------------------------------------------------------------------------- ================================================================================ jython-2.7.1-3.fc26 (FEDORA-2017-bcf6079c0c) A Java implementation of the Python language -------------------------------------------------------------------------------- Update Information: Fixes errors seen when doing code analysis with pycodestyle and fixes errors seen when attempting to use the interactive jython console. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1476354 - "Error analyzing: path.to.module (SourceModule)" as java.lang.RuntimeException when loading pycodestyle https://bugzilla.redhat.com/show_bug.cgi?id=1476354 -------------------------------------------------------------------------------- ================================================================================ kernel-4.13.4-200.fc26 (FEDORA-2017-c0e81a1c7a) The Linux kernel -------------------------------------------------------------------------------- Update Information: Rebase to the 4.13 series of kernels -------------------------------------------------------------------------------- References: [ 1 ] Bug #1432684 - bind(2) port collision checking is wrong for IPv4 if IPv6 is checked first https://bugzilla.redhat.com/show_bug.cgi?id=1432684 [ 2 ] Bug #1493498 - None https://bugzilla.redhat.com/show_bug.cgi?id=1493498 -------------------------------------------------------------------------------- ================================================================================ libfilezilla-0.11.0-1.fc26 (FEDORA-2017-76e6992413) C++ Library for FileZilla -------------------------------------------------------------------------------- Update Information: Libfilezilla 0.11.0, Filezilla 3.28.0 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1497187 - libfilezilla-0.11.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1497187 -------------------------------------------------------------------------------- ================================================================================ libnuml-1.1.1-2.fc26 (FEDORA-2017-3af99694b7) Numerical Markup Language -------------------------------------------------------------------------------- Update Information: - New package bz#1496885 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1496885 - Review Request: libnuml - Numerical Markup Language https://bugzilla.redhat.com/show_bug.cgi?id=1496885 -------------------------------------------------------------------------------- ================================================================================ libsemigroups-0.5.0-1.fc26 (FEDORA-2017-74b3a199c4) C++ library for semigroups and monoids -------------------------------------------------------------------------------- Update Information: See https://github.com/james-d-mitchell/libsemigroups/releases for changes in this version. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1493321 - libsemigroups-v0.5.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1493321 -------------------------------------------------------------------------------- ================================================================================ luksmeta-8-1.fc26 (FEDORA-2017-f5e9199b7f) Utility for storing small metadata in the LUKSv1 header -------------------------------------------------------------------------------- Update Information: New upstream release -------------------------------------------------------------------------------- ================================================================================ mate-applets-1.18.1-2.fc26 (FEDORA-2017-e8b8ae2395) MATE Desktop panel applets -------------------------------------------------------------------------------- Update Information: add more upstream patches -------------------------------------------------------------------------------- ================================================================================ menu-cache-1.0.2-7.D20170914git8c8534159d.fc26 (FEDORA-2017-6271764d02) Caching mechanism for freedesktop.org compliant menus -------------------------------------------------------------------------------- Update Information: Update to the latest git. Some additional fixes for CPU usage issue is included. -------------------------------------------------------------------------------- ================================================================================ metamath-0.152-1.fc26 (FEDORA-2017-2b0232eaf0) Construct mathematics from basic axioms -------------------------------------------------------------------------------- Update Information: Changes in version 0.151: - better matching to insert space between A and y in "E. x e. ran A y R x" to prevent spurious spaces in thms rncoeq, dfiun3g as reported by Benoit Jubin Changes in version 0.152: - change default links from mpegif to mpeuni - enforce minimum screen width = 3 to prevent crash reported by Benoit Jubin -------------------------------------------------------------------------------- References: [ 1 ] Bug #1495184 - metamath-0.151 is available https://bugzilla.redhat.com/show_bug.cgi?id=1495184 [ 2 ] Bug #1497491 - metamath-0.152 is available https://bugzilla.redhat.com/show_bug.cgi?id=1497491 -------------------------------------------------------------------------------- ================================================================================ nova-agent-2.1.6-1.fc26 (FEDORA-2017-60fce39969) Agent for setting up clean servers on Xen -------------------------------------------------------------------------------- Update Information: This is a new package. -------------------------------------------------------------------------------- ================================================================================ nuvola-app-amazon-cloud-player-5.5-1.fc26 (FEDORA-2017-116f5c148d) Amazon Cloud Player for Nuvola Player 3 -------------------------------------------------------------------------------- Update Information: - update to 5.5 - correct Source0 tag fixes (BZ#1497189). -------------------------------------------------------------------------------- References: [ 1 ] Bug #1497189 - nuvola-app-amazon-cloud-player-5.5 is available https://bugzilla.redhat.com/show_bug.cgi?id=1497189 -------------------------------------------------------------------------------- ================================================================================ nuvola-app-bbc-iplayer-1.2-1.fc26 (FEDORA-2017-eb9764439c) BBC iPlayer plugin for Nuvola Player -------------------------------------------------------------------------------- Update Information: Update to 1.2 -------------------------------------------------------------------------------- ================================================================================ nuvola-app-google-play-music-6.0-1.fc26 (FEDORA-2017-1979d6a106) Google Play integration for Nuvola Player -------------------------------------------------------------------------------- Update Information: Update to 6.0 -------------------------------------------------------------------------------- ================================================================================ nuvola-app-groove-2.0-1.fc26 (FEDORA-2017-0ac1a131b5) Microsoft Groove for Nuvola Player 3 -------------------------------------------------------------------------------- Update Information: - Update to 2.0 - correct Source0 tag -------------------------------------------------------------------------------- ================================================================================ nuvola-app-spotify-2.4-1.fc26 (FEDORA-2017-9313619999) Spotify for Nuvola Player 3 -------------------------------------------------------------------------------- Update Information: - Update to 2.4 -------------------------------------------------------------------------------- ================================================================================ nuvolaruntime-4.8.0-1.fc26 (FEDORA-2017-89658af49a) Tight integration of web apps with your desktop -------------------------------------------------------------------------------- Update Information: - Update to 4.8.0 - Remove Recommends: gstreamer1-plugins-ugly-free -------------------------------------------------------------------------------- References: [ 1 ] Bug #1497440 - nuvolaruntime-4.8.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1497440 -------------------------------------------------------------------------------- ================================================================================ obfs4-0.0.7-1.fc26 (FEDORA-2017-7a4e390c64) The obfourscator, a pluggable transport for Tor -------------------------------------------------------------------------------- Update Information: New package: obfs4 pluggable transport for Tor -------------------------------------------------------------------------------- ================================================================================ odcs-0.0.7-1.fc26 (FEDORA-2017-cbd449952f) The On Demand Compose Service -------------------------------------------------------------------------------- Update Information: Now with fedmsg support. ---- Latest upstream, rebuilt for f26. -------------------------------------------------------------------------------- ================================================================================ openboardview-7.3-5.fc26 (FEDORA-2017-8d73303586) Viewer for PCB layouts -------------------------------------------------------------------------------- Update Information: New package. -------------------------------------------------------------------------------- ================================================================================ openscap-daemon-0.1.8-1.fc26 (FEDORA-2017-e04458df40) Manages continuous SCAP scans of your infrastructure -------------------------------------------------------------------------------- Update Information: upgrade to the latest upstream release -------------------------------------------------------------------------------- ================================================================================ opensmtpd-6.0.2p1-6.fc26 (FEDORA-2017-aed89fbb4e) Free implementation of the server-side SMTP protocol as defined by RFC 5321 -------------------------------------------------------------------------------- Update Information: Fixing HAVE_REALLOCARRAY in portable -------------------------------------------------------------------------------- References: [ 1 ] Bug #1480303 - opensmptd: Accidentally interposes reallocarray https://bugzilla.redhat.com/show_bug.cgi?id=1480303 -------------------------------------------------------------------------------- ================================================================================ openvpn-2.4.4-1.fc26 (FEDORA-2017-700915e34f) A full-featured SSL VPN solution -------------------------------------------------------------------------------- Update Information: Maintenance release with several minor upstream bugfixes and a security fix related to legacy configurations deploying the deprecated `key-method 1` configuration option ([CVE-2017-12166](https://community.openvpn.net/openvpn/wiki/CVE-2017-12166)). >From this update of, OpenVPN will use the lz4 compression library from Fedora instead of the upstream bundled library. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1497109 - CVE-2017-12166 openvpn: Incorrect bounds check in read_key() with 'key-method 1' https://bugzilla.redhat.com/show_bug.cgi?id=1497109 -------------------------------------------------------------------------------- ================================================================================ otter-browser-0.9.12-0.6.beta12gitb195b9a.fc26 (FEDORA-2017-f8f56725c3) Web browser controlled by the user, not vice-versa -------------------------------------------------------------------------------- Update Information: - Update to 0.9.12-0.6.beta12gitb195b9a - Add BR qt5-qtsvg-devel -------------------------------------------------------------------------------- ================================================================================ petsc-3.7.7-1.fc26 (FEDORA-2017-9f9951c82a) Portable Extensible Toolkit for Scientific Computation -------------------------------------------------------------------------------- Update Information: - Update to 3.7.7 - Move petscvariables/petscrules under a private directory of libdir -------------------------------------------------------------------------------- ================================================================================ php-phpmyadmin-sql-parser-4.2.2-1.fc26 (FEDORA-2017-2a6f7b52f2) A validating SQL lexer and parser with a focus on MySQL dialect -------------------------------------------------------------------------------- Update Information: **Version 4.2.2** - 2017-09-28 * Added support for binding parameters. -------------------------------------------------------------------------------- ================================================================================ php-zendframework-zend-servicemanager-di-1.1.1-1.fc26 (FEDORA-2017-a800fc3d6c) Zend Framework ServiceManager-Di component -------------------------------------------------------------------------------- Update Information: **Version 1.1.1** - 2017-09-28 * **Added** - [#12](https://github.com/zendframework/zend-servicemanager-di/pull/12) adds support for PHP 7.1 and 7.2. * **Fixed** - [#3](https://github.com/zendframework/zend-servicemanager-di/pull/3) fixes a number of import statements, removing several unused statements, adding missing statements, and fixing those refering to container-interop interfaces. -------------------------------------------------------------------------------- ================================================================================ pioneer-20171001-1.fc26 (FEDORA-2017-e62432f3f2) A game of lonely space adventure -------------------------------------------------------------------------------- Update Information: - Update to 20171001 -------------------------------------------------------------------------------- ================================================================================ polyclipping-6.4.2-1.fc26 (FEDORA-2017-9370dec7ef) Polygon clipping library -------------------------------------------------------------------------------- Update Information: "Several minor bugfixes: #152 #160 #161 #162" https://sourceforge.net/p/polyclipping/bugs -------------------------------------------------------------------------------- References: [ 1 ] Bug #1427130 - polyclipping-6.4.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=1427130 -------------------------------------------------------------------------------- ================================================================================ python-aioodbc-0.2.0-1.fc26 (FEDORA-2017-c15401fa71) Library for accessing a ODBC databases from the asyncio -------------------------------------------------------------------------------- Update Information: * Fixed Cursor.execute returns a pyodbc.Cursor instead of itself * Fixed __aiter__ to not be awaitable for python>=3.5.2 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1447314 - python-aioodbc-0.2.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1447314 -------------------------------------------------------------------------------- ================================================================================ python-coveralls-1.2.0-1.fc26 (FEDORA-2017-973f447b12) Coveralls.io provides seamless integration with coverage.py -------------------------------------------------------------------------------- Update Information: Update to v.1.2.0 release -------------------------------------------------------------------------------- References: [ 1 ] Bug #1441660 - python-coveralls-2.9.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1441660 -------------------------------------------------------------------------------- ================================================================================ python-gitdb-2.0.3-1.fc26 (FEDORA-2017-b080d98490) Git Object Database -------------------------------------------------------------------------------- Update Information: Update GitPython stack to latest versions, only bugfixes. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1495379 - GitPython-2.1.7 is available https://bugzilla.redhat.com/show_bug.cgi?id=1495379 -------------------------------------------------------------------------------- ================================================================================ python-multidict-3.2.0-1.fc26 (FEDORA-2017-6c10ca9648) MultiDict implementation -------------------------------------------------------------------------------- Update Information: * Fix pickling * Fix equality check when other contains more keys * Fix `CIMultiDict` copy -------------------------------------------------------------------------------- References: [ 1 ] Bug #1475304 - python-multidict-3.2.0a3 is available https://bugzilla.redhat.com/show_bug.cgi?id=1475304 -------------------------------------------------------------------------------- ================================================================================ python-pytaglib-1.4.1-1.fc26 (FEDORA-2017-3d37bf1849) Python audio metadata ("tagging") library based on TagLib -------------------------------------------------------------------------------- Update Information: Update to 1.4.1 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1450393 - python-pytaglib-1.4.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1450393 -------------------------------------------------------------------------------- ================================================================================ python-serpy-0.2.0-1.fc26 (FEDORA-2017-d6b3b53eee) Ridiculously fast object serialization -------------------------------------------------------------------------------- Update Information: Update to 0.2.0 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1497492 - python-serpy-0.2.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1497492 -------------------------------------------------------------------------------- ================================================================================ python-streamlink-0.8.1-2.fc26 (FEDORA-2017-dd60e663ef) Python library for extracting streams from various websites -------------------------------------------------------------------------------- Update Information: 97 commits have occured since the last release, including a large majority of plugin changes. Here's the outline of what's new: * Multiple plugin fixes (twitch, vaughlive, hitbox, etc.) * Multiple doc updates * Support for SOCKS proxies * Code refactoring -------------------------------------------------------------------------------- References: [ 1 ] Bug #1491077 - python-streamlink-0.8.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1491077 -------------------------------------------------------------------------------- ================================================================================ python-sync2jira-1.4-1.fc26 (FEDORA-2017-a3d8b1888d) Sync pagure and github issues to jira, via fedmsg -------------------------------------------------------------------------------- Update Information: Now with support for spaces! -------------------------------------------------------------------------------- ================================================================================ python-tabulate-0.8.0-1.fc26 (FEDORA-2017-0bdba3dc09) Pretty-print tabular data in Python, a library and a command-line utility -------------------------------------------------------------------------------- Update Information: * Multiline cells * `latex_raw` format * Column-specific floating point formatting -------------------------------------------------------------------------------- References: [ 1 ] Bug #1497530 - python-tabulate-0.8.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1497530 -------------------------------------------------------------------------------- ================================================================================ root-6.10.06-1.fc26 (FEDORA-2017-59e883d32a) Numerical data analysis framework -------------------------------------------------------------------------------- Update Information: https://root.cern.ch/doc/v610/release-notes.html#release-6.1006 -------------------------------------------------------------------------------- ================================================================================ rubygem-rmagick-2.16.0-7.fc26 (FEDORA-2017-897a192750) Ruby binding to ImageMagick -------------------------------------------------------------------------------- Update Information: 6.9.9-15 ---- Rebuilt for ImageMagick 6.9.9-13 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1496308 - [config/type-ghostscript.xml.in] using outdated hardcoded paths for (URW)++ fonts https://bugzilla.redhat.com/show_bug.cgi?id=1496308 [ 2 ] Bug #1496032 - convert: Ignoring invalid time value https://bugzilla.redhat.com/show_bug.cgi?id=1496032 [ 3 ] Bug #1487680 - CVE-2017-13768 ImageMagick: NULL pointer dereference in IdentifyImage function in MagickCore/identify.c [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1487680 -------------------------------------------------------------------------------- ================================================================================ selinux-policy-3.13.1-260.10.fc26 (FEDORA-2017-29d4eac4a8) SELinux policy configuration -------------------------------------------------------------------------------- Update Information: More info: https://koji.fedoraproject.org/koji/buildinfo?buildID=976910 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1398907 - postfix chroot-update has incorrect SELinux label https://bugzilla.redhat.com/show_bug.cgi?id=1398907 [ 2 ] Bug #1491427 - SELinux is preventing postgres from unix_read, unix_write access on the shared memory Unknown. https://bugzilla.redhat.com/show_bug.cgi?id=1491427 [ 3 ] Bug #1487044 - SELinux is preventing systemd-logind from 'getattr' accesses on the file /dev/shm/PostgreSQL.188495196. https://bugzilla.redhat.com/show_bug.cgi?id=1487044 [ 4 ] Bug #1471545 - SElinux prevents postfix from reading /run/systemd/resolve/resolv.conf https://bugzilla.redhat.com/show_bug.cgi?id=1471545 [ 5 ] Bug #1436026 - selinux prevents postfix cleanup from accessing socket based non_smtpd_milters https://bugzilla.redhat.com/show_bug.cgi?id=1436026 -------------------------------------------------------------------------------- ================================================================================ sysbench-1.0.9-2.fc26 (FEDORA-2017-afe8c93af1) System performance benchmark -------------------------------------------------------------------------------- Update Information: Update to latest upstream release. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1488694 - sysbench-1.0.9 is available https://bugzilla.redhat.com/show_bug.cgi?id=1488694 -------------------------------------------------------------------------------- ================================================================================ thunar-sendto-clamtk-0.06-1.fc26 (FEDORA-2017-e3c377609c) Simple virus scanning extension for Thunar -------------------------------------------------------------------------------- Update Information: Update to 0.06. Updates language strings, URLs, documentation. Change compression from gz -> xz. -------------------------------------------------------------------------------- ================================================================================ tinc-1.0.32-1.fc26 (FEDORA-2017-de91881327) A virtual private network daemon -------------------------------------------------------------------------------- Update Information: Update to new upstream version 1.0.32 -------------------------------------------------------------------------------- ================================================================================ tor-0.2.9.12-1.fc26 (FEDORA-2017-cf3746f1f6) Anonymizing overlay network for TCP -------------------------------------------------------------------------------- Update Information: update to upstream release 0.2.9.12 (SECURITY) (#1494860) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1494860 - tor-0.2.9.10-1.el7.x86_64 is unsecure and out of date https://bugzilla.redhat.com/show_bug.cgi?id=1494860 [ 2 ] Bug #1493512 - CVE-2017-0380 tor: Stack disclosure in hidden services logs when SafeLogging disabled [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1493512 [ 3 ] Bug #1493513 - CVE-2017-0380 tor: Stack disclosure in hidden services logs when SafeLogging disabled [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=1493513 -------------------------------------------------------------------------------- ================================================================================ tsung-1.7.0-1.fc26 (FEDORA-2017-e6a9e666a3) A distributed multi-protocol load testing tool -------------------------------------------------------------------------------- Update Information: Update to 1.7.0 (#1486744) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1486744 - tsung-1.7.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1486744 -------------------------------------------------------------------------------- ================================================================================ weechat-1.9.1-1.fc26 (FEDORA-2017-5c2a294fba) Portable, fast, light and extensible IRC client -------------------------------------------------------------------------------- Update Information: New upstream version -------------------------------------------------------------------------------- References: [ 1 ] Bug #1494835 - weechat-1.9.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1494835 -------------------------------------------------------------------------------- ================================================================================ xmlrpc-c-1.48.0-8.fc26 (FEDORA-2017-3b2d3ceaa8) A lightweight RPC library based on XML and HTTP -------------------------------------------------------------------------------- Update Information: Add missing `xmlrpc_client++.pc` into devel subpackage -------------------------------------------------------------------------------- References: [ 1 ] Bug #1482842 - xmlrpc_client++.pc is missing from xmlrpc-c-devel https://bugzilla.redhat.com/show_bug.cgi?id=1482842 -------------------------------------------------------------------------------- ================================================================================ yoshimi-1.5.4-1.fc26 (FEDORA-2017-cbdd38505c) Rewrite of ZynAddSubFx aiming for better JACK support -------------------------------------------------------------------------------- Update Information: Update to upstream release 1.5.4 -------------------------------------------------------------------------------- ================================================================================ zegrapher-3.0.1-2.fc26 (FEDORA-2017-0ddb868807) Free and opensource math graphing software -------------------------------------------------------------------------------- Update Information: Added patches to fix permissions, fix desktop file, add appdata and add install method -------------------------------------------------------------------------------- References: [ 1 ] Bug #1495845 - Review Request: zegrapher - Free and opensource math graphing software https://bugzilla.redhat.com/show_bug.cgi?id=1495845 -------------------------------------------------------------------------------- _______________________________________________ test mailing list -- test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to test-leave@xxxxxxxxxxxxxxxxxxxxxxx