The following Fedora 25 Security updates need testing: Age URL 290 https://bodhi.fedoraproject.org/updates/FEDORA-2016-d79ba708cb exim-4.87.1-1.fc25 189 https://bodhi.fedoraproject.org/updates/FEDORA-2017-e2d17af41e python-XStatic-jquery-ui-1.12.0.1-4.fc25 128 https://bodhi.fedoraproject.org/updates/FEDORA-2017-5d7498559f nodejs-brace-expansion-1.1.7-1.fc25 82 https://bodhi.fedoraproject.org/updates/FEDORA-2017-99c0118c0c memcached-1.4.39-1.fc25 78 https://bodhi.fedoraproject.org/updates/FEDORA-2017-2232fe97b4 docker-distribution-2.6.2-1.git48294d9.fc25 29 https://bodhi.fedoraproject.org/updates/FEDORA-2017-6e66393536 libwpd-0.10.2-1.fc25 21 https://bodhi.fedoraproject.org/updates/FEDORA-2017-e3bf383b11 gnome-shell-3.22.3-2.fc25 21 https://bodhi.fedoraproject.org/updates/FEDORA-2017-01ab87482e httpd-2.4.27-4.fc25 16 https://bodhi.fedoraproject.org/updates/FEDORA-2017-f0f24bb2a9 chromium-61.0.3163.100-1.fc25 11 https://bodhi.fedoraproject.org/updates/FEDORA-2017-2aa4d11993 openvpn-2.4.4-1.fc25 11 https://bodhi.fedoraproject.org/updates/FEDORA-2017-89efe409a2 weechat-1.9.1-1.fc25 7 https://bodhi.fedoraproject.org/updates/FEDORA-2017-7e5ac0896e botan-1.10.17-1.fc25 7 https://bodhi.fedoraproject.org/updates/FEDORA-2017-515264ae24 dnsmasq-2.76-4.fc25 7 https://bodhi.fedoraproject.org/updates/FEDORA-2017-9d345f250a nagios-4.3.4-3.fc25 5 https://bodhi.fedoraproject.org/updates/FEDORA-2017-6bbb922009 check-mk-1.2.8p26-1.fc25 2 https://bodhi.fedoraproject.org/updates/FEDORA-2017-8f7bca960b golang-1.7.6-3.fc25 2 https://bodhi.fedoraproject.org/updates/FEDORA-2017-caafcbd6b9 upx-3.94-1.fc25 2 https://bodhi.fedoraproject.org/updates/FEDORA-2017-042c59fab9 nodejs-forwarded-0.1.2-1.fc25 2 https://bodhi.fedoraproject.org/updates/FEDORA-2017-52f233a4f5 procmail-3.22-44.fc25 2 https://bodhi.fedoraproject.org/updates/FEDORA-2017-15987a1b7f SDL2_image-2.0.1-8.fc25 2 https://bodhi.fedoraproject.org/updates/FEDORA-2017-805d9423f8 poppler-0.45.0-9.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-b7c4334524 libXfont-1.5.2-5.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-3c5282ada7 rubygem-rmagick-2.16.0-8.fc25 ImageMagick-6.9.9.19-1.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-88a1f4854d sssd-1.15.3-5.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-2b28a055f2 tnef-1.4.15-1.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-6127ddb036 mingw-poppler-0.45.0-5.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-d4709b0d8b xen-4.7.3-7.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-6967efb3f0 thunderbird-52.4.0-2.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-521bb0d538 kernel-4.13.6-100.fc25 The following Fedora 25 Critical Path updates have yet to be approved: Age URL 132 https://bodhi.fedoraproject.org/updates/FEDORA-2017-613a72e282 lorax-25.22-1.fc25 35 https://bodhi.fedoraproject.org/updates/FEDORA-2017-504aeb74ba rpcbind-0.2.4-7.rc2.fc25 31 https://bodhi.fedoraproject.org/updates/FEDORA-2017-a44008dd1d python-pysocks-1.6.7-1.fc25 30 https://bodhi.fedoraproject.org/updates/FEDORA-2017-27ed767ca1 upower-0.99.6-1.fc25 29 https://bodhi.fedoraproject.org/updates/FEDORA-2017-2802f82ef1 webkitgtk4-2.18.0-1.fc25 23 https://bodhi.fedoraproject.org/updates/FEDORA-2017-d2803ce4f5 linux-firmware-20170828-77.gitb78acc9.fc25 23 https://bodhi.fedoraproject.org/updates/FEDORA-2017-235298fa58 python-cryptography-2.0.2-2.fc25 python-cryptography-vectors-2.0.2-1.fc25 21 https://bodhi.fedoraproject.org/updates/FEDORA-2017-e3bf383b11 gnome-shell-3.22.3-2.fc25 14 https://bodhi.fedoraproject.org/updates/FEDORA-2017-b78dd48284 dbus-1.11.18-1.fc25 11 https://bodhi.fedoraproject.org/updates/FEDORA-2017-655278f79b nspr-4.17.0-1.fc25 11 https://bodhi.fedoraproject.org/updates/FEDORA-2017-64612f6c45 vim-8.0.1171-1.fc25 11 https://bodhi.fedoraproject.org/updates/FEDORA-2017-a45ef4d535 hwdata-0.305-1.fc25 11 https://bodhi.fedoraproject.org/updates/FEDORA-2017-3fc5429e7e iproute-4.12.0-1.fc25 11 https://bodhi.fedoraproject.org/updates/FEDORA-2017-eb81135947 menu-cache-1.0.2-7.D20170914git8c8534159d.fc25 7 https://bodhi.fedoraproject.org/updates/FEDORA-2017-1391851bdb vte291-0.46.3-1.fc25 7 https://bodhi.fedoraproject.org/updates/FEDORA-2017-8d6667b0ae sudo-1.8.21p2-1.fc25 7 https://bodhi.fedoraproject.org/updates/FEDORA-2017-f36afbbe07 p11-kit-0.23.9-2.fc25 7 https://bodhi.fedoraproject.org/updates/FEDORA-2017-ad5b0243eb libguestfs-1.36.7-1.fc25 7 https://bodhi.fedoraproject.org/updates/FEDORA-2017-0803060361 nss-3.33.0-1.0.fc25 nss-softokn-3.33.0-1.0.fc25 nss-util-3.33.0-1.0.fc25 7 https://bodhi.fedoraproject.org/updates/FEDORA-2017-5324f52b3d koji-1.14.0-1.fc25 7 https://bodhi.fedoraproject.org/updates/FEDORA-2017-515264ae24 dnsmasq-2.76-4.fc25 7 https://bodhi.fedoraproject.org/updates/FEDORA-2017-00cfac3370 pungi-4.1.19-1.fc25 5 https://bodhi.fedoraproject.org/updates/FEDORA-2017-ae3e7ab916 glusterfs-3.10.6-3.fc25 5 https://bodhi.fedoraproject.org/updates/FEDORA-2017-0f7fefa567 firefox-56.0-5.fc25 2 https://bodhi.fedoraproject.org/updates/FEDORA-2017-805d9423f8 poppler-0.45.0-9.fc25 2 https://bodhi.fedoraproject.org/updates/FEDORA-2017-a2017ed263 python-productmd-1.8-1.fc25 2 https://bodhi.fedoraproject.org/updates/FEDORA-2017-41e6f8d803 breeze-icon-theme-5.38.0-2.fc25 extra-cmake-modules-5.38.0-2.fc25 kf5-5.38.0-1.fc25 kf5-attica-5.38.0-1.fc25 kf5-baloo-5.38.0-1.fc25 kf5-bluez-qt-5.38.0-1.fc25 kf5-frameworkintegration-5.38.0-1.fc25 kf5-kactivities-5.38.0-1.fc25 kf5-kactivities-stats-5.38.0-1.fc25 kf5-kapidox-5.38.0-1.fc25 kf5-karchive-5.38.0-1.fc25 kf5-kauth-5.38.0-1.fc25 kf5-kbookmarks-5.38.0-1.fc25 kf5-kcmutils-5.38.0-1.fc25 kf5-kcodecs-5.38.0-1.fc25 kf5-kcompletion-5.38.0-1.fc25 kf5-kconfig-5.38.0-5.fc25 kf5-kconfigwidgets-5.38.0-1.fc25 kf5-kcoreaddons-5.38.0-1.fc25 kf5-kcrash-5.38.0-1.fc25 kf5-kdbusaddons-5.38.0-1.fc25 kf5-kdeclarative-5.38.0-1.fc25 kf5-kded-5.38.0-1.fc25 kf5-kdelibs4support-5.38.0-1.fc25 kf5-kdesignerplugin-5.38.0-1.fc25 kf5-kdesu-5.38.0-1.fc25 kf5-kdewebkit-5.38.0-1.fc25 kf5-kdnssd-5.38.0-1.fc25 kf5-kdoctools-5.38.0-1.fc25 kf5-kemoticons-5.38.0-1.fc25 kf5-kfilemetadata-5.38.0-1.fc25 kf5-kglobalaccel-5.38.1-1.fc25 kf5-kguiad dons-5.38.0-1.fc25 kf5-khtml-5.38.0-1.fc25 kf5-ki18n-5.38.0-1.fc25 kf5-kiconthemes-5.38.0-1.fc25 kf5-kidletime-5.38.0-1.fc25 kf5-kimageformats-5.38.0-1.fc25 kf5-kinit-5.38.0-1.fc25 kf5-kio-5.38.0-1.fc25 kf5-kitemmodels-5.38.0-1.fc25 kf5-kitemviews-5.38.0-1.fc25 kf5-kjobwidgets-5.38.0-1.fc25 kf5-kjs-5.38.0-1.fc25 kf5-kjsembed-5.38.0-1.fc25 kf5-kmediaplayer-5.38.0-1.fc25 kf5-knewstuff-5.38.0-1.fc25 kf5-knotifications-5.38.0-1.fc25 kf5-knotifyconfig-5.38.0-1.fc25 kf5-kpackage-5.38.0-1.fc25 kf5-kparts-5.38.0-1.fc25 kf5-kpeople-5.38.0-1.fc25 kf5-kplotting-5.38.0-1.fc25 kf5-kpty-5.38.0-1.fc25 kf5-kross-5.38.0-1.fc25 kf5-krunner-5.38.0-1.fc25 kf5-kservice-5.38.0-1.fc25 kf5-ktexteditor-5.38.0-2.fc25 kf5-ktextwidgets-5.38.0-1.fc25 kf5-kunitconversion-5.38.0-1.fc25 kf5-kwallet-5.38.0-1.fc25 kf5-kwayland-5.38.0-1.fc25 kf5-kwidgetsaddons-5.38.0-1.fc25 kf5-kwindowsystem-5.38.0-1.fc25 kf5-kxmlgui-5.38.0-1.fc25 kf5-kxmlrpcclient-5.38.0-1.fc25 kf5-modemmanager-qt-5.38.0-1.fc25 kf5-networkmanager-qt -5.38.0-1.fc25 kf5-plasma-5.38.0-1.fc25 kf5-solid-5.38.0-1.fc25 kf5-sonnet-5.38.0-1.fc25 kf5-syntax-highlighting-5.38.0-1.fc25 kf5-threadweaver-5.38.0-1.fc25 oxygen-icon-theme-5.38.0-2.fc25 2 https://bodhi.fedoraproject.org/updates/FEDORA-2017-4d00e4db6a selinux-policy-3.13.1-225.23.fc25 2 https://bodhi.fedoraproject.org/updates/FEDORA-2017-4d9b3c4003 ding-libs-0.6.1-34.fc25 2 https://bodhi.fedoraproject.org/updates/FEDORA-2017-48f0da57ca python3-3.5.4-2.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-521bb0d538 kernel-4.13.6-100.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-6967efb3f0 thunderbird-52.4.0-2.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-d4709b0d8b xen-4.7.3-7.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-fa32d9cd0c popt-1.16-12.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-b005e95422 audit-2.8.1-1.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-b763f774a4 spice-0.14.0-1.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-88a1f4854d sssd-1.15.3-5.fc25 The following builds have been pushed to Fedora 25 updates-testing audit-2.8.1-1.fc25 copr-frontend-1.122-2.fc25 getmail-5.4-1.fc25 kernel-4.13.6-100.fc25 krita-3.3.1-1.fc25 mingw-poppler-0.45.0-5.fc25 phoronix-test-suite-7.4.0-1.fc25 popt-1.16-12.fc25 python-wikitcms-2.1.12-1.fc25 skf-2.10.2-1.fc25 thunderbird-52.4.0-2.fc25 wine-2.18-1.fc25 xen-4.7.3-7.fc25 Details about builds: ================================================================================ audit-2.8.1-1.fc25 (FEDORA-2017-b005e95422) User space tools for 2.6 kernel auditing -------------------------------------------------------------------------------- Update Information: Lots of updates for the auparse_normalizer to improve support on many events. Remote logging now supports IPv6 and other remote logging improvements. Fix bugs in auvirt that prevented locating AVC's for the VM. Add command line option to auditd & audispd for config dir path. -------------------------------------------------------------------------------- ================================================================================ copr-frontend-1.122-2.fc25 (FEDORA-2017-7cb752f173) Frontend for Copr -------------------------------------------------------------------------------- Update Information: - Fix for internal server error when old srpm upload build is accessed. -------------------------------------------------------------------------------- ================================================================================ getmail-5.4-1.fc25 (FEDORA-2017-d5c218a3b6) POP3, IMAP4 and SDPS mail retriever with Maildir delivery -------------------------------------------------------------------------------- Update Information: update to 5.4 -------------------------------------------------------------------------------- ================================================================================ kernel-4.13.6-100.fc25 (FEDORA-2017-521bb0d538) The Linux kernel -------------------------------------------------------------------------------- Update Information: The 4.13.6 stable kernel update contains a number of important fixes across the tree. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1498016 - kernel: Incorrect updates of uninstantiated keys crash the kernel https://bugzilla.redhat.com/show_bug.cgi?id=1498016 [ 2 ] Bug #1498067 - CVE-2017-1000255 kernel: Arbitrary stack overwrite causing oops via crafted signal frame https://bugzilla.redhat.com/show_bug.cgi?id=1498067 -------------------------------------------------------------------------------- ================================================================================ krita-3.3.1-1.fc25 (FEDORA-2017-14a890fd4a) Krita is a sketching and painting program -------------------------------------------------------------------------------- Update Information: Latest stable upstream release, https://krita.org/en/item/krita-3-3-1/ -------------------------------------------------------------------------------- References: [ 1 ] Bug #1481897 - krita-3.3.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1481897 -------------------------------------------------------------------------------- ================================================================================ mingw-poppler-0.45.0-5.fc25 (FEDORA-2017-6127ddb036) MinGW Windows Poppler library -------------------------------------------------------------------------------- Update Information: This update fixes the following security vulnerabilities: - CVE-2017-14517 - CVE-2017-14518 - CVE-2017-14519 - CVE-2017-14617 - CVE-2017-14926 - CVE-2017-14927 - CVE-2017-14928 - CVE-2017-14929 - CVE-2017-14975 and CVE-2017-14976 - CVE-2017-14977 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1500345 - CVE-2017-14976 poppler: Heap-based buffer over-read in the FoFiType1C::convertToType0 function https://bugzilla.redhat.com/show_bug.cgi?id=1500345 [ 2 ] Bug #1500344 - CVE-2017-14977 poppler: NULL pointer dereference in the FoFiTrueType::getCFFBlock function https://bugzilla.redhat.com/show_bug.cgi?id=1500344 [ 3 ] Bug #1500343 - CVE-2017-14975 poppler: NULL pointer dereference in the FoFiType1C::convertToType0 function https://bugzilla.redhat.com/show_bug.cgi?id=1500343 [ 4 ] Bug #1499167 - CVE-2017-14929 poppler: Memory corruption via Gfx.cc infinite loop https://bugzilla.redhat.com/show_bug.cgi?id=1499167 [ 5 ] Bug #1499165 - CVE-2017-14519 poppler: Memory corruption via Gfx.cc infinite loop https://bugzilla.redhat.com/show_bug.cgi?id=1499165 [ 6 ] Bug #1499163 - CVE-2017-14518 poppler: Floating point exception in the isImageInterpolationRequired() function https://bugzilla.redhat.com/show_bug.cgi?id=1499163 [ 7 ] Bug #1499162 - CVE-2017-14517 poppler: NULL pointer dereference in the XRef::parseEntry() function https://bugzilla.redhat.com/show_bug.cgi?id=1499162 [ 8 ] Bug #1499905 - CVE-2017-14617 poppler: Floating point exception in the ImageStream class https://bugzilla.redhat.com/show_bug.cgi?id=1499905 -------------------------------------------------------------------------------- ================================================================================ phoronix-test-suite-7.4.0-1.fc25 (FEDORA-2017-86f64852ff) An Automated, Open-Source Testing Framework -------------------------------------------------------------------------------- Update Information: update to 7.4.0 -------------------------------------------------------------------------------- ================================================================================ popt-1.16-12.fc25 (FEDORA-2017-fa32d9cd0c) C library for parsing command line parameters -------------------------------------------------------------------------------- Update Information: - Added patch to fix free con->os->nextArg when used (memory leak) (#1468298) - Added patch to fix glob(3) error returns (#1051685) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1468298 - Backport memory leak fix https://bugzilla.redhat.com/show_bug.cgi?id=1468298 [ 2 ] Bug #1051685 - rpm doesn't read $HOME/.popt https://bugzilla.redhat.com/show_bug.cgi?id=1051685 -------------------------------------------------------------------------------- ================================================================================ python-wikitcms-2.1.12-1.fc25 (FEDORA-2017-0702546cdd) Fedora QA wiki test management Python library -------------------------------------------------------------------------------- Update Information: This new release of python-wikitcms enhances the result row parser to handle the new 'Basic' milestone (which replaces Alpha going forward). It also slightly tweaks the parser to prefer the *first* milestone in a string like "Alpha / Final", rather than the *second* - so it will consider Alpha as the milestone, not Final. This will usually be a bit more correct in practical usage (i.e. testcase_stats). -------------------------------------------------------------------------------- ================================================================================ skf-2.10.2-1.fc25 (FEDORA-2017-797c4c5200) Utility binary files in Simple Kanji Filter -------------------------------------------------------------------------------- Update Information: New version 2.10.2 is released. -------------------------------------------------------------------------------- ================================================================================ thunderbird-52.4.0-2.fc25 (FEDORA-2017-6967efb3f0) Mozilla Thunderbird mail/newsgroup client -------------------------------------------------------------------------------- Update Information: For changes see: https://www.mozilla.org/en-US/thunderbird/52.4.0/releasenotes/ -------------------------------------------------------------------------------- References: [ 1 ] Bug #1501409 - what about push builds? (thunderbird 52.4) https://bugzilla.redhat.com/show_bug.cgi?id=1501409 [ 2 ] Bug #1482190 - thunderbird-52.3.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1482190 -------------------------------------------------------------------------------- ================================================================================ wine-2.18-1.fc25 (FEDORA-2017-ec21470795) A compatibility layer for windows applications -------------------------------------------------------------------------------- Update Information: Winehq.org - Radial gradients in Direct2D. - Asynchronous message support in WebServices. - Virtual memory write watches improvements. - FreeType 2.8.1 compatibility fixes. - Various bug fixes. Wine-staging.com * Support for ECDSA certificate chains. * Vsync handling for d3d10/d3d11. * Various smaller bug fixes and improvements. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1497382 - wine-2.18 is available https://bugzilla.redhat.com/show_bug.cgi?id=1497382 -------------------------------------------------------------------------------- ================================================================================ xen-4.7.3-7.fc25 (FEDORA-2017-d4709b0d8b) Xen is a virtual machine monitor -------------------------------------------------------------------------------- Update Information: xen: various flaws (#1501391) multiple MSI mapping issues on x86 [XSA-237] DMOP map/unmap missing argument checks [XSA-238] hypervisor stack leak in x86 I/O intercept code [XSA-239] Unlimited recursion in linear pagetable de-typing [XSA-240] Stale TLB entry due to page type release race [XSA-241] page type reference leak on x86 [XSA-242] x86: Incorrect handling of self-linear shadow mappings with translated guests [XSA-243] x86: Incorrect handling of IST settings during CPU hotplug [XSA-244] ---- ARM: Some memory not scrubbed at boot [XSA-245] Qemu: vga: reachable assert failure during during display update [CVE-2017-13673] (#1486591) Qemu: vga: OOB read access during display update [CVE-2017-13672] (#1486562) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1499817 - xsa237 xen: multiple MSI mapping issues on x86 (XSA-237) https://bugzilla.redhat.com/show_bug.cgi?id=1499817 [ 2 ] Bug #1499818 - xsa238 xen: DMOP map/unmap missing argument checks (XSA-238) https://bugzilla.redhat.com/show_bug.cgi?id=1499818 [ 3 ] Bug #1499819 - xsa239 xen: hypervisor stack leak in x86 I/O intercept code (XSA-239) https://bugzilla.redhat.com/show_bug.cgi?id=1499819 [ 4 ] Bug #1499820 - xsa240 xen: Unlimited recursion in linear pagetable de-typing (XSA-240) https://bugzilla.redhat.com/show_bug.cgi?id=1499820 [ 5 ] Bug #1499821 - xsa241 xen: Stale TLB entry due to page type release race (XSA-241) https://bugzilla.redhat.com/show_bug.cgi?id=1499821 [ 6 ] Bug #1499822 - xsa242 xen: page type reference leak on x86 (XSA-242) https://bugzilla.redhat.com/show_bug.cgi?id=1499822 [ 7 ] Bug #1499823 - xsa243 xen: x86: Incorrect handling of self-linear shadow mappings with translated guests (XSA-243) https://bugzilla.redhat.com/show_bug.cgi?id=1499823 [ 8 ] Bug #1499824 - xsa244 xen: x86: Incorrect handling of IST settings during CPU hotplug (XSA-244) https://bugzilla.redhat.com/show_bug.cgi?id=1499824 [ 9 ] Bug #1499825 - xsa245 xen: ARM: Some memory not scrubbed at boot (XSA-245) https://bugzilla.redhat.com/show_bug.cgi?id=1499825 [ 10 ] Bug #1486588 - CVE-2017-13673 Qemu: vga: reachable assert failure during during display update https://bugzilla.redhat.com/show_bug.cgi?id=1486588 [ 11 ] Bug #1486560 - CVE-2017-13672 Qemu: vga: OOB read access during display update https://bugzilla.redhat.com/show_bug.cgi?id=1486560 -------------------------------------------------------------------------------- _______________________________________________ test mailing list -- test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to test-leave@xxxxxxxxxxxxxxxxxxxxxxx
