The following Fedora 26 Security updates need testing: Age URL 189 https://bodhi.fedoraproject.org/updates/FEDORA-2017-1bf5a0ce01 python-XStatic-jquery-ui-1.12.0.1-2.fc26 128 https://bodhi.fedoraproject.org/updates/FEDORA-2017-2522df3526 nodejs-brace-expansion-1.1.7-1.fc26 82 https://bodhi.fedoraproject.org/updates/FEDORA-2017-1c053de325 memcached-1.4.39-1.fc26 78 https://bodhi.fedoraproject.org/updates/FEDORA-2017-ccb5c8d1e7 docker-distribution-2.6.2-1.git48294d9.fc26 11 https://bodhi.fedoraproject.org/updates/FEDORA-2017-5c2a294fba weechat-1.9.1-1.fc26 7 https://bodhi.fedoraproject.org/updates/FEDORA-2017-d4248ba346 botan-1.10.17-1.fc26 7 https://bodhi.fedoraproject.org/updates/FEDORA-2017-6e6f4f95e6 ruby-2.4.2-84.fc26 7 https://bodhi.fedoraproject.org/updates/FEDORA-2017-45625fecca openvswitch-2.7.3-2.fc26 5 https://bodhi.fedoraproject.org/updates/FEDORA-2017-9f36da1aac check-mk-1.2.8p26-1.fc26 5 https://bodhi.fedoraproject.org/updates/FEDORA-2017-6f1b90dbb7 golang-1.8.4-1.fc26 4 https://bodhi.fedoraproject.org/updates/FEDORA-2017-b52f851dea calamares-3.1.5-1.fc26 2 https://bodhi.fedoraproject.org/updates/FEDORA-2017-d22c391318 upx-3.94-1.fc26 2 https://bodhi.fedoraproject.org/updates/FEDORA-2017-afb05e0873 nodejs-forwarded-0.1.2-1.fc26 2 https://bodhi.fedoraproject.org/updates/FEDORA-2017-36eb36ea71 procmail-3.22-44.fc26 2 https://bodhi.fedoraproject.org/updates/FEDORA-2017-9b0095a6f2 SDL2_image-2.0.1-8.fc26 2 https://bodhi.fedoraproject.org/updates/FEDORA-2017-21293887a2 poppler-0.52.0-8.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-2c63df4fe3 glibc-2.25-12.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-88b6a06bce selinux-policy-3.13.1-260.13.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-2783ef2c63 libXfont-1.5.2-5.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-f44afd1f34 libXfont2-2.0.2-1.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-a62dd57720 rubygem-rmagick-2.16.0-8.fc26 ImageMagick-6.9.9.19-1.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-65b543b628 sssd-1.15.3-5.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-c2882ae75b tnef-1.4.15-1.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-a0ffdf1fbd mingw-poppler-0.52.0-5.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-5bcddc1984 xen-4.8.2-4.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-845c543ea4 thunderbird-52.4.0-2.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-74d659e9da kernel-4.13.6-200.fc26 The following Fedora 26 Critical Path updates have yet to be approved: Age URL 11 https://bodhi.fedoraproject.org/updates/FEDORA-2017-621a9b4828 iproute-4.13.0-1.fc26 11 https://bodhi.fedoraproject.org/updates/FEDORA-2017-6271764d02 menu-cache-1.0.2-7.D20170914git8c8534159d.fc26 7 https://bodhi.fedoraproject.org/updates/FEDORA-2017-ebef90185e libgudev-232-1.fc26 iio-sensor-proxy-2.3-1.fc26 7 https://bodhi.fedoraproject.org/updates/FEDORA-2017-ff8aeb8db8 fontconfig-2.12.6-3.fc26 7 https://bodhi.fedoraproject.org/updates/FEDORA-2017-02be915e88 p11-kit-0.23.9-2.fc26 7 https://bodhi.fedoraproject.org/updates/FEDORA-2017-b843cc1876 libguestfs-1.36.7-1.fc26 7 https://bodhi.fedoraproject.org/updates/FEDORA-2017-621c36fcb8 nss-3.33.0-1.0.fc26 nss-softokn-3.33.0-1.0.fc26 nss-util-3.33.0-1.0.fc26 7 https://bodhi.fedoraproject.org/updates/FEDORA-2017-45a9490ce0 geocode-glib-3.24.0-1.fc26 5 https://bodhi.fedoraproject.org/updates/FEDORA-2017-2ab6fac68e glusterfs-3.10.6-3.fc26 5 https://bodhi.fedoraproject.org/updates/FEDORA-2017-9099d5f81c gst-devtools-1.12.3-2.fc26 gst-editing-services-1.12.3-1.fc26 gstreamer1-1.12.3-1.fc26 gstreamer1-plugins-bad-free-1.12.3-1.fc26 gstreamer1-plugins-base-1.12.3-1.fc26 gstreamer1-plugins-good-1.12.3-1.fc26 pitivi-0.99-1.fc26 2 https://bodhi.fedoraproject.org/updates/FEDORA-2017-21293887a2 poppler-0.52.0-8.fc26 2 https://bodhi.fedoraproject.org/updates/FEDORA-2017-0f491ba90a python-productmd-1.8-1.fc26 2 https://bodhi.fedoraproject.org/updates/FEDORA-2017-018cffeab4 ding-libs-0.6.1-34.fc26 2 https://bodhi.fedoraproject.org/updates/FEDORA-2017-8e91b32f31 python3-3.6.3-2.fc26 2 https://bodhi.fedoraproject.org/updates/FEDORA-2017-3a93bf495e flatpak-builder-0.9.99-1.fc26 flatpak-0.9.99-1.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-74d659e9da kernel-4.13.6-200.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-845c543ea4 thunderbird-52.4.0-2.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-ee9475ced0 vim-8.0.1187-1.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-5bcddc1984 xen-4.8.2-4.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-fbb86f4c14 libdrm-2.4.84-1.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-ffd16e2c73 popt-1.16-12.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-ba5ac7af6f audit-2.8.1-1.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-bd24b5ae3f pulseaudio-11.1-2.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-26b1dcd9a2 nmap-7.40-8.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-6aca2300f5 spice-0.14.0-1.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-65b543b628 sssd-1.15.3-5.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-236ad80b82 gperftools-2.6.1-5.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-19f599ecd6 chrony-3.2-1.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-f44afd1f34 libXfont2-2.0.2-1.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-88b6a06bce selinux-policy-3.13.1-260.13.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-2f0f66ceca firefox-57.0-0.3.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-2c63df4fe3 glibc-2.25-12.fc26 The following builds have been pushed to Fedora 26 updates-testing PyQt4-4.12.1-1.fc26 audit-2.8.1-1.fc26 borgbackup-1.1.0-1.fc26 copr-frontend-1.122-2.fc26 getmail-5.4-1.fc26 golang-github-hashicorp-go-plugin-0-0.1.20171028git3e6d191.fc26 greenwave-0.3-2.fc26 gtkd-3.6.6-2.fc26 iprutils-2.4.15.1-1.fc26 kernel-4.13.6-200.fc26 krita-3.3.1-1.fc26 libdrm-2.4.84-1.fc26 libosmocore-0.9.6-4.20170220git32ee5af8.fc26 libservicelog-1.1.18-1.fc26 logrotate-3.12.3-4.fc26 mingw-poppler-0.52.0-5.fc26 pbuilder-0.228.9-1.fc26 phoronix-test-suite-7.4.0-1.fc26 popt-1.16-12.fc26 pulseaudio-11.1-2.fc26 pykde4-4.14.3-18.fc26 python-pytest-runner-2.12.1-1.fc26 python-sseclient-0.0.18-1.fc26 python-wikitcms-2.1.12-1.fc26 skf-2.10.2-1.fc26 sse2fedmsg-0.2.0-1.fc26 thunderbird-52.4.0-2.fc26 tilix-1.6.4-5.fc26 tuned-2.9.0-0.1.rc1.fc26 vim-8.0.1187-1.fc26 wine-2.18-1.fc26 xen-4.8.2-4.fc26 Details about builds: ================================================================================ PyQt4-4.12.1-1.fc26 (FEDORA-2017-7cd5dfcd05) Python bindings for Qt4 -------------------------------------------------------------------------------- Update Information: Rebuild qt4/kde4 python bindings stack (against newer sip) -------------------------------------------------------------------------------- ================================================================================ audit-2.8.1-1.fc26 (FEDORA-2017-ba5ac7af6f) User space tools for 2.6 kernel auditing -------------------------------------------------------------------------------- Update Information: Lots of updates for the auparse_normalizer to improve support on many events. Remote logging now supports IPv6 and other remote logging improvements. Fix bugs in auvirt that prevented locating AVC's for the VM. Add command line option to auditd & audispd for config dir path. -------------------------------------------------------------------------------- ================================================================================ borgbackup-1.1.0-1.fc26 (FEDORA-2017-763e7bdf41) A deduplicating backup program with compression and authenticated encryption -------------------------------------------------------------------------------- Update Information: upstream version 1.1.0 (BZ#1499512) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1499512 - borgbackup 1.1.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1499512 [ 2 ] Bug #1493434 - Missing fuse dependency for borgbackup package https://bugzilla.redhat.com/show_bug.cgi?id=1493434 -------------------------------------------------------------------------------- ================================================================================ copr-frontend-1.122-2.fc26 (FEDORA-2017-7f365b0d20) Frontend for Copr -------------------------------------------------------------------------------- Update Information: - Fix for internal server error when old srpm upload build is accessed. -------------------------------------------------------------------------------- ================================================================================ getmail-5.4-1.fc26 (FEDORA-2017-38f2cdbd37) POP3, IMAP4 and SDPS mail retriever with Maildir delivery -------------------------------------------------------------------------------- Update Information: update to 5.4 -------------------------------------------------------------------------------- ================================================================================ golang-github-hashicorp-go-plugin-0-0.1.20171028git3e6d191.fc26 (FEDORA-2017-10293b9cb4) Golang plugin system over RPC -------------------------------------------------------------------------------- Update Information: First package for Fedora -------------------------------------------------------------------------------- References: [ 1 ] Bug #1501007 - Review Request: golang-github-hashicorp-go-plugin - Golang plugin system over RPC https://bugzilla.redhat.com/show_bug.cgi?id=1501007 -------------------------------------------------------------------------------- ================================================================================ greenwave-0.3-2.fc26 (FEDORA-2017-a2c2e5ce87) Service for gating on automated tests -------------------------------------------------------------------------------- Update Information: Fix incorrect upstream tarball used -------------------------------------------------------------------------------- ================================================================================ gtkd-3.6.6-2.fc26 (FEDORA-2017-9018e72631) D binding and OO wrapper of GTK+ -------------------------------------------------------------------------------- Update Information: gtkd 3.6.6 release together with tilix rebuild. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1499221 - [abrt] tilix: gtk.StyleContext.StyleContext.addProviderForScreen(gdk.Screen.Screen, gtk.StyleProviderIF.StyleProviderIF, uint)(): tilix killed by SIGSEGV https://bugzilla.redhat.com/show_bug.cgi?id=1499221 [ 2 ] Bug #1499473 - [abrt] tilix: gtk.StyleContext.StyleContext.addProviderForScreen(gdk.Screen.Screen, gtk.StyleProviderIF.StyleProviderIF, uint)(): tilix killed by SIGSEGV https://bugzilla.redhat.com/show_bug.cgi?id=1499473 [ 3 ] Bug #1499609 - Tilix fails to start https://bugzilla.redhat.com/show_bug.cgi?id=1499609 -------------------------------------------------------------------------------- ================================================================================ iprutils-2.4.15.1-1.fc26 (FEDORA-2017-0e625ad32e) Utilities for the IBM Power Linux RAID adapters -------------------------------------------------------------------------------- Update Information: Rebase to 2.4.15.1 -------------------------------------------------------------------------------- ================================================================================ kernel-4.13.6-200.fc26 (FEDORA-2017-74d659e9da) The Linux kernel -------------------------------------------------------------------------------- Update Information: The 4.13.6 stable kernel update contains a number of important fixes across the tree. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1498016 - kernel: Incorrect updates of uninstantiated keys crash the kernel https://bugzilla.redhat.com/show_bug.cgi?id=1498016 [ 2 ] Bug #1498067 - CVE-2017-1000255 kernel: Arbitrary stack overwrite causing oops via crafted signal frame https://bugzilla.redhat.com/show_bug.cgi?id=1498067 -------------------------------------------------------------------------------- ================================================================================ krita-3.3.1-1.fc26 (FEDORA-2017-20f8292491) Krita is a sketching and painting program -------------------------------------------------------------------------------- Update Information: Latest stable upstream release, https://krita.org/en/item/krita-3-3-1/ -------------------------------------------------------------------------------- References: [ 1 ] Bug #1481897 - krita-3.3.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1481897 -------------------------------------------------------------------------------- ================================================================================ libdrm-2.4.84-1.fc26 (FEDORA-2017-fbb86f4c14) Direct Rendering Manager runtime library -------------------------------------------------------------------------------- Update Information: Update to 2.4.84 -------------------------------------------------------------------------------- ================================================================================ libosmocore-0.9.6-4.20170220git32ee5af8.fc26 (FEDORA-2017-1d916eef75) Utility functions for OsmocomBB, OpenBSC and related projects -------------------------------------------------------------------------------- Update Information: This is an update adding libtalloc-devel requirement to devel package. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1487734 - libosmocore-devel does not require libtalloc-devel https://bugzilla.redhat.com/show_bug.cgi?id=1487734 -------------------------------------------------------------------------------- ================================================================================ libservicelog-1.1.18-1.fc26 (FEDORA-2017-e35b081efc) Servicelog Database and Library -------------------------------------------------------------------------------- Update Information: Rebase to 1.1.18 -------------------------------------------------------------------------------- ================================================================================ logrotate-3.12.3-4.fc26 (FEDORA-2017-a6985880bb) Rotates, compresses, removes and mails system log files -------------------------------------------------------------------------------- Update Information: - avoid reporting UNKNOWN version in the output of --version (#1500264) - ```copy``` and ```copytruncate``` directives now work together again - ```unlink()``` is no longer preceded by ```open()``` unless shred is enabled - ```compress``` and ```uncompress``` now take commands from ```$PATH```, too -------------------------------------------------------------------------------- References: [ 1 ] Bug #1500264 - Not reporting version https://bugzilla.redhat.com/show_bug.cgi?id=1500264 -------------------------------------------------------------------------------- ================================================================================ mingw-poppler-0.52.0-5.fc26 (FEDORA-2017-a0ffdf1fbd) MinGW Windows Poppler library -------------------------------------------------------------------------------- Update Information: This update fixes the following security vulnerabilities: - CVE-2017-14517 - CVE-2017-14518 - CVE-2017-14519 - CVE-2017-14617 - CVE-2017-14926 - CVE-2017-14927 - CVE-2017-14928 - CVE-2017-14929 - CVE-2017-14975 and CVE-2017-14976 - CVE-2017-14977 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1500345 - CVE-2017-14976 poppler: Heap-based buffer over-read in the FoFiType1C::convertToType0 function https://bugzilla.redhat.com/show_bug.cgi?id=1500345 [ 2 ] Bug #1500344 - CVE-2017-14977 poppler: NULL pointer dereference in the FoFiTrueType::getCFFBlock function https://bugzilla.redhat.com/show_bug.cgi?id=1500344 [ 3 ] Bug #1500343 - CVE-2017-14975 poppler: NULL pointer dereference in the FoFiType1C::convertToType0 function https://bugzilla.redhat.com/show_bug.cgi?id=1500343 [ 4 ] Bug #1499167 - CVE-2017-14929 poppler: Memory corruption via Gfx.cc infinite loop https://bugzilla.redhat.com/show_bug.cgi?id=1499167 [ 5 ] Bug #1499165 - CVE-2017-14519 poppler: Memory corruption via Gfx.cc infinite loop https://bugzilla.redhat.com/show_bug.cgi?id=1499165 [ 6 ] Bug #1499163 - CVE-2017-14518 poppler: Floating point exception in the isImageInterpolationRequired() function https://bugzilla.redhat.com/show_bug.cgi?id=1499163 [ 7 ] Bug #1499162 - CVE-2017-14517 poppler: NULL pointer dereference in the XRef::parseEntry() function https://bugzilla.redhat.com/show_bug.cgi?id=1499162 [ 8 ] Bug #1499905 - CVE-2017-14617 poppler: Floating point exception in the ImageStream class https://bugzilla.redhat.com/show_bug.cgi?id=1499905 -------------------------------------------------------------------------------- ================================================================================ pbuilder-0.228.9-1.fc26 (FEDORA-2017-1b9c9b5633) Personal package builder for Debian packages -------------------------------------------------------------------------------- Update Information: Update to version 0.228.9, see http://metadata.ftp- master.debian.org/changelogs/main/p/pbuilder/pbuilder_0.228.9_changelog for details. -------------------------------------------------------------------------------- ================================================================================ phoronix-test-suite-7.4.0-1.fc26 (FEDORA-2017-59cd185402) An Automated, Open-Source Testing Framework -------------------------------------------------------------------------------- Update Information: update to 7.4.0 -------------------------------------------------------------------------------- ================================================================================ popt-1.16-12.fc26 (FEDORA-2017-ffd16e2c73) C library for parsing command line parameters -------------------------------------------------------------------------------- Update Information: - Added patch to fix free con->os->nextArg when used (memory leak) (#1468298) - Added patch to fix glob(3) error returns (#1051685) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1468298 - Backport memory leak fix https://bugzilla.redhat.com/show_bug.cgi?id=1468298 [ 2 ] Bug #1051685 - rpm doesn't read $HOME/.popt https://bugzilla.redhat.com/show_bug.cgi?id=1051685 -------------------------------------------------------------------------------- ================================================================================ pulseaudio-11.1-2.fc26 (FEDORA-2017-bd24b5ae3f) Improved Linux Sound Server -------------------------------------------------------------------------------- Update Information: Rebase to latest stable upstream pulseaudio release, see also: https://www.freedesktop.org/wiki/Software/PulseAudio/Notes/11.0/ -------------------------------------------------------------------------------- References: [ 1 ] Bug #1492344 - Please add Dell TB16 audio configuration https://bugzilla.redhat.com/show_bug.cgi?id=1492344 -------------------------------------------------------------------------------- ================================================================================ pykde4-4.14.3-18.fc26 (FEDORA-2017-7cd5dfcd05) Python bindings for KDE4 -------------------------------------------------------------------------------- Update Information: Rebuild qt4/kde4 python bindings stack (against newer sip) -------------------------------------------------------------------------------- ================================================================================ python-pytest-runner-2.12.1-1.fc26 (FEDORA-2017-c4985a02c1) Invoke py.test as distutils command with dependency resolution -------------------------------------------------------------------------------- Update Information: Update to 2.12.1 (#1487972) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1487972 - python-pytest-runner-2.12.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1487972 -------------------------------------------------------------------------------- ================================================================================ python-sseclient-0.0.18-1.fc26 (FEDORA-2017-c5615e2e2a) A Python library for iterating over HTTP Server Sent Events (SSE) -------------------------------------------------------------------------------- Update Information: Initial package -------------------------------------------------------------------------------- ================================================================================ python-wikitcms-2.1.12-1.fc26 (FEDORA-2017-05f23b17a4) Fedora QA wiki test management Python library -------------------------------------------------------------------------------- Update Information: This new release of python-wikitcms enhances the result row parser to handle the new 'Basic' milestone (which replaces Alpha going forward). It also slightly tweaks the parser to prefer the *first* milestone in a string like "Alpha / Final", rather than the *second* - so it will consider Alpha as the milestone, not Final. This will usually be a bit more correct in practical usage (i.e. testcase_stats). -------------------------------------------------------------------------------- ================================================================================ skf-2.10.2-1.fc26 (FEDORA-2017-30da9a54ba) Utility binary files in Simple Kanji Filter -------------------------------------------------------------------------------- Update Information: New version 2.10.2 is released. -------------------------------------------------------------------------------- ================================================================================ sse2fedmsg-0.2.0-1.fc26 (FEDORA-2017-63279f0b71) Translates Server-Sent Events to ZeroMQ fedmsgs -------------------------------------------------------------------------------- Update Information: Initial package -------------------------------------------------------------------------------- ================================================================================ thunderbird-52.4.0-2.fc26 (FEDORA-2017-845c543ea4) Mozilla Thunderbird mail/newsgroup client -------------------------------------------------------------------------------- Update Information: For changes see: https://www.mozilla.org/en-US/thunderbird/52.4.0/releasenotes/ -------------------------------------------------------------------------------- References: [ 1 ] Bug #1501409 - what about push builds? (thunderbird 52.4) https://bugzilla.redhat.com/show_bug.cgi?id=1501409 [ 2 ] Bug #1482190 - thunderbird-52.3.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1482190 -------------------------------------------------------------------------------- ================================================================================ tilix-1.6.4-5.fc26 (FEDORA-2017-9018e72631) Tiling terminal emulator -------------------------------------------------------------------------------- Update Information: gtkd 3.6.6 release together with tilix rebuild. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1499221 - [abrt] tilix: gtk.StyleContext.StyleContext.addProviderForScreen(gdk.Screen.Screen, gtk.StyleProviderIF.StyleProviderIF, uint)(): tilix killed by SIGSEGV https://bugzilla.redhat.com/show_bug.cgi?id=1499221 [ 2 ] Bug #1499473 - [abrt] tilix: gtk.StyleContext.StyleContext.addProviderForScreen(gdk.Screen.Screen, gtk.StyleProviderIF.StyleProviderIF, uint)(): tilix killed by SIGSEGV https://bugzilla.redhat.com/show_bug.cgi?id=1499473 [ 3 ] Bug #1499609 - Tilix fails to start https://bugzilla.redhat.com/show_bug.cgi?id=1499609 -------------------------------------------------------------------------------- ================================================================================ tuned-2.9.0-0.1.rc1.fc26 (FEDORA-2017-d9c6b990df) A dynamic adaptive system tuning daemon -------------------------------------------------------------------------------- Update Information: new release -------------------------------------------------------------------------------- References: [ 1 ] Bug #1467576 - Rebase Tuned to the latest upstream version https://bugzilla.redhat.com/show_bug.cgi?id=1467576 [ 2 ] Bug #1459146 - [RFE] Have "tuned-adm recommend" match OCP 3.5 installed master/node profile https://bugzilla.redhat.com/show_bug.cgi?id=1459146 [ 3 ] Bug #1461838 - RFE: Add "process" rule for recommend_profile https://bugzilla.redhat.com/show_bug.cgi?id=1461838 [ 4 ] Bug #1417659 - radeon_powersave config in video plugin is outdated https://bugzilla.redhat.com/show_bug.cgi?id=1417659 [ 5 ] Bug #988433 - RFE tuned: show available profiles when calling tuned-adm profile https://bugzilla.redhat.com/show_bug.cgi?id=988433 [ 6 ] Bug #1442229 - Use Tuned for cores isolation in cpu-partitioning to support blacklisting of processes that should not be repined on isolated_cores https://bugzilla.redhat.com/show_bug.cgi?id=1442229 [ 7 ] Bug #1251240 - None https://bugzilla.redhat.com/show_bug.cgi?id=1251240 [ 8 ] Bug #1447938 - Boot single VM with 8 rt vCPUs, the latency value is high https://bugzilla.redhat.com/show_bug.cgi?id=1447938 [ 9 ] Bug #1452357 - realtime-virtual-guest: not safe to run PMD thread with fifo:1 https://bugzilla.redhat.com/show_bug.cgi?id=1452357 [ 10 ] Bug #1461279 - Heredity of cmdline works wrong when using 'replace=false' https://bugzilla.redhat.com/show_bug.cgi?id=1461279 [ 11 ] Bug #1451073 - tuned: use skew_tick=1 in all low-latency profiles https://bugzilla.redhat.com/show_bug.cgi?id=1451073 [ 12 ] Bug #1455161 - Not limited parser for bootloader variable initrd_remove_dir https://bugzilla.redhat.com/show_bug.cgi?id=1455161 [ 13 ] Bug #1442306 - None https://bugzilla.redhat.com/show_bug.cgi?id=1442306 [ 14 ] Bug #1454340 - Invalid value of tuned_initrd in grub.cfg when wrong image path is used in bootloader parameter initrd_add_img https://bugzilla.redhat.com/show_bug.cgi?id=1454340 [ 15 ] Bug #1443182 - cpu-partitioning: ERROR tuned.utils.commands: Executing x86_energy_perf_policy error https://bugzilla.redhat.com/show_bug.cgi?id=1443182 [ 16 ] Bug #1482005 - Description of SAP HANA profiles in output of 'tuned-adm list' should be updated https://bugzilla.redhat.com/show_bug.cgi?id=1482005 [ 17 ] Bug #1469258 - cpu-partitioning: CPUs still isolated after changing profile https://bugzilla.redhat.com/show_bug.cgi?id=1469258 [ 18 ] Bug #1451435 - None https://bugzilla.redhat.com/show_bug.cgi?id=1451435 [ 19 ] Bug #1474961 - Executing taskset error: taskset: failed to set pid 30's affinity: Invalid argument https://bugzilla.redhat.com/show_bug.cgi?id=1474961 [ 20 ] Bug #1475571 - tuned fails to update boot option parameter via cloud-init for KVM instance https://bugzilla.redhat.com/show_bug.cgi?id=1475571 [ 21 ] Bug #1443142 - cpu-partitioning: systemctl restart returns before initrd is created https://bugzilla.redhat.com/show_bug.cgi?id=1443142 [ 22 ] Bug #1501252 - None https://bugzilla.redhat.com/show_bug.cgi?id=1501252 -------------------------------------------------------------------------------- ================================================================================ vim-8.0.1187-1.fc26 (FEDORA-2017-ee9475ced0) The VIM editor -------------------------------------------------------------------------------- Update Information: The newest upstream commit -------------------------------------------------------------------------------- ================================================================================ wine-2.18-1.fc26 (FEDORA-2017-21fd86fc28) A compatibility layer for windows applications -------------------------------------------------------------------------------- Update Information: Winehq.org - Radial gradients in Direct2D. - Asynchronous message support in WebServices. - Virtual memory write watches improvements. - FreeType 2.8.1 compatibility fixes. - Various bug fixes. Wine-staging.com * Support for ECDSA certificate chains. * Vsync handling for d3d10/d3d11. * Various smaller bug fixes and improvements. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1497382 - wine-2.18 is available https://bugzilla.redhat.com/show_bug.cgi?id=1497382 -------------------------------------------------------------------------------- ================================================================================ xen-4.8.2-4.fc26 (FEDORA-2017-5bcddc1984) Xen is a virtual machine monitor -------------------------------------------------------------------------------- Update Information: xen: various flaws (#1501391) multiple MSI mapping issues on x86 [XSA-237] DMOP map/unmap missing argument checks [XSA-238] hypervisor stack leak in x86 I/O intercept code [XSA-239] Unlimited recursion in linear pagetable de-typing [XSA-240] Stale TLB entry due to page type release race [XSA-241] page type reference leak on x86 [XSA-242] x86: Incorrect handling of self-linear shadow mappings with translated guests [XSA-243] x86: Incorrect handling of IST settings during CPU hotplug [XSA-244] ---- ARM: Some memory not scrubbed at boot [XSA-245] Qemu: vga: reachable assert failure during during display update [CVE-2017-13673] (#1486591) Qemu: vga: OOB read access during display update [CVE-2017-13672] (#1486562) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1499817 - xsa237 xen: multiple MSI mapping issues on x86 (XSA-237) https://bugzilla.redhat.com/show_bug.cgi?id=1499817 [ 2 ] Bug #1499818 - xsa238 xen: DMOP map/unmap missing argument checks (XSA-238) https://bugzilla.redhat.com/show_bug.cgi?id=1499818 [ 3 ] Bug #1499819 - xsa239 xen: hypervisor stack leak in x86 I/O intercept code (XSA-239) https://bugzilla.redhat.com/show_bug.cgi?id=1499819 [ 4 ] Bug #1499820 - xsa240 xen: Unlimited recursion in linear pagetable de-typing (XSA-240) https://bugzilla.redhat.com/show_bug.cgi?id=1499820 [ 5 ] Bug #1499821 - xsa241 xen: Stale TLB entry due to page type release race (XSA-241) https://bugzilla.redhat.com/show_bug.cgi?id=1499821 [ 6 ] Bug #1499822 - xsa242 xen: page type reference leak on x86 (XSA-242) https://bugzilla.redhat.com/show_bug.cgi?id=1499822 [ 7 ] Bug #1499823 - xsa243 xen: x86: Incorrect handling of self-linear shadow mappings with translated guests (XSA-243) https://bugzilla.redhat.com/show_bug.cgi?id=1499823 [ 8 ] Bug #1499824 - xsa244 xen: x86: Incorrect handling of IST settings during CPU hotplug (XSA-244) https://bugzilla.redhat.com/show_bug.cgi?id=1499824 [ 9 ] Bug #1499825 - xsa245 xen: ARM: Some memory not scrubbed at boot (XSA-245) https://bugzilla.redhat.com/show_bug.cgi?id=1499825 [ 10 ] Bug #1486588 - CVE-2017-13673 Qemu: vga: reachable assert failure during during display update https://bugzilla.redhat.com/show_bug.cgi?id=1486588 [ 11 ] Bug #1486560 - CVE-2017-13672 Qemu: vga: OOB read access during display update https://bugzilla.redhat.com/show_bug.cgi?id=1486560 -------------------------------------------------------------------------------- _______________________________________________ test mailing list -- test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to test-leave@xxxxxxxxxxxxxxxxxxxxxxx
