The following Fedora 26 Security updates need testing: Age URL 182 https://bodhi.fedoraproject.org/updates/FEDORA-2017-1bf5a0ce01 python-XStatic-jquery-ui-1.12.0.1-2.fc26 121 https://bodhi.fedoraproject.org/updates/FEDORA-2017-2522df3526 nodejs-brace-expansion-1.1.7-1.fc26 75 https://bodhi.fedoraproject.org/updates/FEDORA-2017-1c053de325 memcached-1.4.39-1.fc26 71 https://bodhi.fedoraproject.org/updates/FEDORA-2017-ccb5c8d1e7 docker-distribution-2.6.2-1.git48294d9.fc26 9 https://bodhi.fedoraproject.org/updates/FEDORA-2017-efeb59171d chromium-61.0.3163.100-1.fc26 4 https://bodhi.fedoraproject.org/updates/FEDORA-2017-897a192750 ImageMagick-6.9.9.15-1.fc26 rubygem-rmagick-2.16.0-7.fc26 4 https://bodhi.fedoraproject.org/updates/FEDORA-2017-5c2a294fba weechat-1.9.1-1.fc26 4 https://bodhi.fedoraproject.org/updates/FEDORA-2017-c9abeb3158 WebCalendar-1.2.9-1.fc26 3 https://bodhi.fedoraproject.org/updates/FEDORA-2017-9d9d8173df mingw-poppler-0.52.0-4.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-d4248ba346 botan-1.10.17-1.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-213ebf97c8 xen-4.8.2-3.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-f244168d7f recode-3.6-44.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-601b4c20a4 curl-7.53.1-11.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-1179268a20 tor-0.3.1.7-1.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-6e6f4f95e6 ruby-2.4.2-84.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-45625fecca openvswitch-2.7.3-2.fc26 The following Fedora 26 Critical Path updates have yet to be approved: Age URL 19 https://bodhi.fedoraproject.org/updates/FEDORA-2017-ff7b30a42d libvirt-3.2.1-6.fc26 4 https://bodhi.fedoraproject.org/updates/FEDORA-2017-621a9b4828 iproute-4.13.0-1.fc26 4 https://bodhi.fedoraproject.org/updates/FEDORA-2017-6271764d02 menu-cache-1.0.2-7.D20170914git8c8534159d.fc26 3 https://bodhi.fedoraproject.org/updates/FEDORA-2017-0b189f2107 nspr-4.17.0-1.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-81c8b510a2 kernel-4.13.5-200.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-9099d5f81c pitivi-0.99-1.fc26 gst-devtools-1.12.3-2.fc26 gstreamer1-1.12.3-1.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-ebef90185e libgudev-232-1.fc26 iio-sensor-proxy-2.3-1.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-de386febf7 vte291-0.48.4-1.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-ff8aeb8db8 fontconfig-2.12.6-3.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-cd46d09a72 breeze-icon-theme-5.38.0-2.fc26 extra-cmake-modules-5.38.0-2.fc26 kf5-5.38.0-1.fc26 kf5-attica-5.38.0-1.fc26 kf5-baloo-5.38.0-1.fc26 kf5-bluez-qt-5.38.0-1.fc26 kf5-frameworkintegration-5.38.0-1.fc26 kf5-kactivities-5.38.0-1.fc26 kf5-kactivities-stats-5.38.0-1.fc26 kf5-kapidox-5.38.0-1.fc26 kf5-karchive-5.38.0-1.fc26 kf5-kauth-5.38.0-1.fc26 kf5-kbookmarks-5.38.0-1.fc26 kf5-kcmutils-5.38.0-1.fc26 kf5-kcodecs-5.38.0-1.fc26 kf5-kcompletion-5.38.0-1.fc26 kf5-kconfig-5.38.0-5.fc26 kf5-kconfigwidgets-5.38.0-1.fc26 kf5-kcoreaddons-5.38.0-1.fc26 kf5-kcrash-5.38.0-1.fc26 kf5-kdbusaddons-5.38.0-1.fc26 kf5-kdeclarative-5.38.0-1.fc26 kf5-kded-5.38.0-1.fc26 kf5-kdelibs4support-5.38.0-1.fc26 kf5-kdesignerplugin-5.38.0-1.fc26 kf5-kdesu-5.38.0-1.fc26 kf5-kdewebkit-5.38.0-1.fc26 kf5-kdnssd-5.38.0-1.fc26 kf5-kdoctools-5.38.0-1.fc26 kf5-kemoticons-5.38.0-1.fc26 kf5-kfilemetadata-5.38.0-1.fc26 kf5-kglobalaccel-5.38.1-1.fc26 kf5-kguiad dons-5.38.0-1.fc26 kf5-khtml-5.38.0-1.fc26 kf5-ki18n-5.38.0-1.fc26 kf5-kiconthemes-5.38.0-1.fc26 kf5-kidletime-5.38.0-1.fc26 kf5-kimageformats-5.38.0-1.fc26 kf5-kinit-5.38.0-1.fc26 kf5-kio-5.38.0-1.fc26 kf5-kitemmodels-5.38.0-1.fc26 kf5-kitemviews-5.38.0-1.fc26 kf5-kjobwidgets-5.38.0-1.fc26 kf5-kjs-5.38.0-1.fc26 kf5-kjsembed-5.38.0-1.fc26 kf5-kmediaplayer-5.38.0-1.fc26 kf5-knewstuff-5.38.0-1.fc26 kf5-knotifications-5.38.0-1.fc26 kf5-knotifyconfig-5.38.0-1.fc26 kf5-kpackage-5.38.0-1.fc26 kf5-kparts-5.38.0-1.fc26 kf5-kpeople-5.38.0-1.fc26 kf5-kplotting-5.38.0-1.fc26 kf5-kpty-5.38.0-1.fc26 kf5-kross-5.38.0-1.fc26 kf5-krunner-5.38.0-1.fc26 kf5-kservice-5.38.0-1.fc26 kf5-ktexteditor-5.38.0-1.fc26 kf5-ktextwidgets-5.38.0-1.fc26 kf5-kunitconversion-5.38.0-1.fc26 kf5-kwallet-5.38.0-1.fc26 kf5-kwayland-5.38.0-1.fc26 kf5-kwidgetsaddons-5.38.0-1.fc26 kf5-kwindowsystem-5.38.0-1.fc26 kf5-kxmlgui-5.38.0-1.fc26 kf5-kxmlrpcclient-5.38.0-1.fc26 kf5-modemmanager-qt-5.38.0-1.fc26 kf5-networkmanager-qt -5.38.0-1.fc26 kf5-plasma-5.38.0-1.fc26 kf5-solid-5.38.0-1.fc26 kf5-sonnet-5.38.0-1.fc26 kf5-syntax-highlighting-5.38.0-1.fc26 kf5-threadweaver-5.38.0-1.fc26 oxygen-icon-theme-5.38.0-2.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-cce9120ef9 sudo-1.8.21p2-1.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-02be915e88 p11-kit-0.23.9-2.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-b843cc1876 libguestfs-1.36.7-1.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-601b4c20a4 curl-7.53.1-11.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-621c36fcb8 nss-3.33.0-1.0.fc26 nss-softokn-3.33.0-1.0.fc26 nss-util-3.33.0-1.0.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-e064575be9 libinput-1.8.3-1.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-30a8fc282f koji-1.14.0-1.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-213ebf97c8 xen-4.8.2-3.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-45a9490ce0 geocode-glib-3.24.0-1.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-b07e2d5eef glusterfs-3.10.6-1.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-c992ede7ae gnupg2-2.2.1-1.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-f99c2b1427 python3-3.6.2-8.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-579c47e1aa ostree-2017.12-2.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-078c658b48 evolution-ews-3.24.6-1.fc26 evolution-3.24.6-1.fc26 evolution-data-server-3.24.7-1.fc26 The following builds have been pushed to Fedora 26 updates-testing R-Rcpp-0.12.13-1.fc26 gdouros-symbola-fonts-10.00-2.fc26 ghc-StateVar-1.1.0.4-4.fc26 ghc-cryptohash-md5-0.11.100.1-4.fc26 ghc-cryptohash-sha1-0.11.100.1-4.fc26 ghc-uuid-types-1.0.3-4.fc26 golang-github-zillode-notify-0-0.3.git54e3093.fc26 kernel-4.13.5-200.fc26 mkdocs-0.16.3-3.fc26 openvswitch-2.7.3-2.fc26 p11-kit-0.23.9-2.fc26 php-pecl-memcache-3.0.9-0.7.20170802.e702b5f.fc26 php-tracy-2.4.10-1.fc26 python-msrest-0.4.16-1.fc26 python-msrestazure-0.4.14-1.fc26 rubygem-sequel-5.1.0-1.fc26 syncthing-gtk-0.9.2.6-1.fc26 tcpxtract-1.0.1-25.fc26 xrdp-0.9.4-1.fc26 Details about builds: ================================================================================ R-Rcpp-0.12.13-1.fc26 (FEDORA-2017-beb760a8e3) Seamless R and C++ Integration -------------------------------------------------------------------------------- Update Information: https://cran.r-project.org/web/packages/Rcpp/news.html -------------------------------------------------------------------------------- References: [ 1 ] Bug #1498375 - Version 0.12.13 was released https://bugzilla.redhat.com/show_bug.cgi?id=1498375 -------------------------------------------------------------------------------- ================================================================================ gdouros-symbola-fonts-10.00-2.fc26 (FEDORA-2017-2436e43db5) A symbol font -------------------------------------------------------------------------------- Update Information: Minor edits to some glyphs. -------------------------------------------------------------------------------- ================================================================================ ghc-StateVar-1.1.0.4-4.fc26 (FEDORA-2017-317f03ee79) State variables -------------------------------------------------------------------------------- Update Information: Initial package of StateVar for Haskell. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1498691 - None https://bugzilla.redhat.com/show_bug.cgi?id=1498691 -------------------------------------------------------------------------------- ================================================================================ ghc-cryptohash-md5-0.11.100.1-4.fc26 (FEDORA-2017-cfd5cac775) Fast, pure and practical MD5 implementation -------------------------------------------------------------------------------- Update Information: Initial package of cryptohash-md5 for Haskell. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1498684 - Review Request: ghc-cryptohash-md5 - Fast, pure and practical MD5 implementation https://bugzilla.redhat.com/show_bug.cgi?id=1498684 -------------------------------------------------------------------------------- ================================================================================ ghc-cryptohash-sha1-0.11.100.1-4.fc26 (FEDORA-2017-4d9b9f1a92) Fast, pure and practical SHA-1 implementation -------------------------------------------------------------------------------- Update Information: Initial package of cryptohash-sha1 for Haskell. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1498685 - Review Request: ghc-cryptohash-sha1 - Fast, pure and practical SHA-1 implementation https://bugzilla.redhat.com/show_bug.cgi?id=1498685 -------------------------------------------------------------------------------- ================================================================================ ghc-uuid-types-1.0.3-4.fc26 (FEDORA-2017-367c22f549) Type definitions for Universally Unique Identifiers -------------------------------------------------------------------------------- Update Information: Initial package of uuid-types for Haskell. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1498692 - None https://bugzilla.redhat.com/show_bug.cgi?id=1498692 -------------------------------------------------------------------------------- ================================================================================ golang-github-zillode-notify-0-0.3.git54e3093.fc26 (FEDORA-2017-acf9b06550) File system event notification library on steroids -------------------------------------------------------------------------------- Update Information: Bump to commit 54e3093. -------------------------------------------------------------------------------- ================================================================================ kernel-4.13.5-200.fc26 (FEDORA-2017-81c8b510a2) The Linux kernel -------------------------------------------------------------------------------- Update Information: The 4.13.5 update contains a number of important fixes across the tree. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1497861 - Kernel module peaq_wmi nul bombing the console https://bugzilla.redhat.com/show_bug.cgi?id=1497861 -------------------------------------------------------------------------------- ================================================================================ mkdocs-0.16.3-3.fc26 (FEDORA-2017-2f7489f388) Python tool to create HTML documentation from markdown sources -------------------------------------------------------------------------------- Update Information: Build docs with self to check for broken symlinks -------------------------------------------------------------------------------- ================================================================================ openvswitch-2.7.3-2.fc26 (FEDORA-2017-45625fecca) Open vSwitch daemon/database/utilities -------------------------------------------------------------------------------- Update Information: Add a symlink of the OCF script in the OCF resources folder ---- Updated to Open vSwitch 2.7.3 and DPDK 16.11.3 for CVE-2017-14970 ---- Security fix for CVE-2017-9263, CVE-2017-9265 ---- Updated to Open vSwitch 2.7.1 and DPDK 16.11.2 (#1468234) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1497966 - CVE-2017-14970 openvswitch: Multiple memory leaks in lib/ofp-util.c while parsing malformed OpenFlow group mod messages https://bugzilla.redhat.com/show_bug.cgi?id=1497966 [ 2 ] Bug #1457327 - CVE-2017-9263 openvswitch: Invalid processing of a malicious OpenFlow role status message https://bugzilla.redhat.com/show_bug.cgi?id=1457327 [ 3 ] Bug #1457335 - CVE-2017-9265 openvswitch: Buffer over-read while parsing the group mod OpenFlow message https://bugzilla.redhat.com/show_bug.cgi?id=1457335 -------------------------------------------------------------------------------- ================================================================================ p11-kit-0.23.9-2.fc26 (FEDORA-2017-02be915e88) Library for loading and sharing PKCS#11 modules -------------------------------------------------------------------------------- Update Information: - Update to upstream 0.23.9 release -------------------------------------------------------------------------------- ================================================================================ php-pecl-memcache-3.0.9-0.7.20170802.e702b5f.fc26 (FEDORA-2017-32ed9a1ef6) Extension to work with the Memcached caching daemon -------------------------------------------------------------------------------- Update Information: Fix "Failed to read session data" with PHP 7.1 and 7.2 -------------------------------------------------------------------------------- ================================================================================ php-tracy-2.4.10-1.fc26 (FEDORA-2017-14569d7213) Tracy: useful PHP debugger -------------------------------------------------------------------------------- Update Information: **Released version 2.4.10** * Bar: uses session only for redirect, AJAX and when is rendered via renderLoader() * added example "preload" * bar.js: fixed attribute nonce * bar: fixed iconv_strlen may return false #263 * Debugger::detectDebugMode() check for Forwarded header existence -------------------------------------------------------------------------------- ================================================================================ python-msrest-0.4.16-1.fc26 (FEDORA-2017-ee2c4b0ed7) AutoRest swagger generator Python client runtime -------------------------------------------------------------------------------- Update Information: These updates provides the latest versions of msrest and msrestazure libraries for Python. ## msrestazure 0.4.14 ###Features * Add Managed Service Integrated (MSI) authentication ###Bug fix * Fix AdalError handling in some scenarios ([#44](https://github.com/Azure/msrestazure-for-python/pull/44)) ## msrest 0.4.16 ###Bug fix * Fix regression: accept "set" as a valid "[str]" ([#60](https://github.com/Azure/msrest-for-python/pull/60)) ## msrest 0.4.15 ###Bugfixes * Always log response body ([#16](https://github.com/Azure/msrest- for-python/issues/16)) * Improved exception message if error JSON is Odata v4 ([#55](https://github.com/Azure/msrest-for-python/pull/55)) * Refuse "str" as a valid "[str]" type ([#41](https://github.com/Azure/msrest-for-python/issues/41)) * Better exception handling if input from server is not JSON valid ###Features * Add Configuration.session_configuration_callback to customize the requests.Session if necessary ([#52](https://github.com/Azure/msrest-for- python/pull/52)) * Add a flag to Serializer to disable client-side-validation ([#51](https://github.com/Azure/msrest-for-python/issues/51)) * Remove "import requests" from "exceptions.py" for apps that require fast loading time ([#23](https://github.com/Azure/msrest-for-python/issues/23)) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1497873 - python-msrest-v0.4.15 is available https://bugzilla.redhat.com/show_bug.cgi?id=1497873 -------------------------------------------------------------------------------- ================================================================================ python-msrestazure-0.4.14-1.fc26 (FEDORA-2017-ee2c4b0ed7) AutoRest swagger generator Python client runtime (Azure-specific module) -------------------------------------------------------------------------------- Update Information: These updates provides the latest versions of msrest and msrestazure libraries for Python. ## msrestazure 0.4.14 ###Features * Add Managed Service Integrated (MSI) authentication ###Bug fix * Fix AdalError handling in some scenarios ([#44](https://github.com/Azure/msrestazure-for-python/pull/44)) ## msrest 0.4.16 ###Bug fix * Fix regression: accept "set" as a valid "[str]" ([#60](https://github.com/Azure/msrest-for-python/pull/60)) ## msrest 0.4.15 ###Bugfixes * Always log response body ([#16](https://github.com/Azure/msrest- for-python/issues/16)) * Improved exception message if error JSON is Odata v4 ([#55](https://github.com/Azure/msrest-for-python/pull/55)) * Refuse "str" as a valid "[str]" type ([#41](https://github.com/Azure/msrest-for-python/issues/41)) * Better exception handling if input from server is not JSON valid ###Features * Add Configuration.session_configuration_callback to customize the requests.Session if necessary ([#52](https://github.com/Azure/msrest-for- python/pull/52)) * Add a flag to Serializer to disable client-side-validation ([#51](https://github.com/Azure/msrest-for-python/issues/51)) * Remove "import requests" from "exceptions.py" for apps that require fast loading time ([#23](https://github.com/Azure/msrest-for-python/issues/23)) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1497873 - python-msrest-v0.4.15 is available https://bugzilla.redhat.com/show_bug.cgi?id=1497873 -------------------------------------------------------------------------------- ================================================================================ rubygem-sequel-5.1.0-1.fc26 (FEDORA-2017-33d5eaca70) The Database Toolkit for Ruby -------------------------------------------------------------------------------- Update Information: Update to Sequel 5.1.0 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1447161 - None https://bugzilla.redhat.com/show_bug.cgi?id=1447161 -------------------------------------------------------------------------------- ================================================================================ syncthing-gtk-0.9.2.6-1.fc26 (FEDORA-2017-0a8b4a4165) Syncthing GTK+ GUI -------------------------------------------------------------------------------- Update Information: Update to version 0.9.2.6. -------------------------------------------------------------------------------- ================================================================================ tcpxtract-1.0.1-25.fc26 (FEDORA-2017-50e756825f) Tool for extracting files from network traffic -------------------------------------------------------------------------------- Update Information: Apply known fixes to issues. -------------------------------------------------------------------------------- ================================================================================ xrdp-0.9.4-1.fc26 (FEDORA-2017-673f629cb8) Open source remote desktop protocol (RDP) server -------------------------------------------------------------------------------- Update Information: New features - Accept prefill credentials in base64 form #153 #811 - Indroduce AAC encoder to audio redirection (requires Windows 10 client) Bugfixes - Fix ocasional SEGV in drive redirection #838 - Fix client's IP addresses in xrdp-sesman.log are always logged as 0.0.0.0 #878 #882 - Fix ls_background_image didn't accept full path #776 #853 - Fix misuse of hidelogwindow #414 #876 - Fix WTSVirtualChannelWrite return code #859 - Fix no longer needed socket files remained in the socket dir #812 #831 - Make creating socket path a bit more robust #823 Other changes - Add Belgian keyboard #858 - Add a PAM file for FreeBSD #824 - Several refactorings and cosmetic changes Known issues - Windows 10 (1703) shows black blank screen in RemoteFX mode -- This issue is already fixed at Insider Preview build 16273 -------------------------------------------------------------------------------- _______________________________________________ test mailing list -- test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to test-leave@xxxxxxxxxxxxxxxxxxxxxxx
