The following Fedora 26 Security updates need testing: Age URL 207 https://bodhi.fedoraproject.org/updates/FEDORA-2017-ccb5c8d1e7 docker-distribution-2.6.2-1.git48294d9.fc26 100 https://bodhi.fedoraproject.org/updates/FEDORA-2017-3915878e18 ldns-1.7.0-4.fc26 45 https://bodhi.fedoraproject.org/updates/FEDORA-2018-ccef1ced42 gimp-2.8.22-3.fc26 39 https://bodhi.fedoraproject.org/updates/FEDORA-2018-66b885ae3c keycloak-httpd-client-install-0.8-1.fc26 38 https://bodhi.fedoraproject.org/updates/FEDORA-2018-0db545e976 ruby-2.4.3-86.fc26 26 https://bodhi.fedoraproject.org/updates/FEDORA-2018-b166805347 transmission-2.92-12.fc26 26 https://bodhi.fedoraproject.org/updates/FEDORA-2018-4f8a78a5ef squid-4.0.23-1.fc26 19 https://bodhi.fedoraproject.org/updates/FEDORA-2018-c7c6160e65 thunderbird-52.6.0-1.fc26 16 https://bodhi.fedoraproject.org/updates/FEDORA-2018-ac2e276c76 tomcat-8.0.49-1.fc26 13 https://bodhi.fedoraproject.org/updates/FEDORA-2018-fff755ee8e jhead-3.00-7.fc26 6 https://bodhi.fedoraproject.org/updates/FEDORA-2018-6f08b79a09 golang-1.8.7-1.fc26 6 https://bodhi.fedoraproject.org/updates/FEDORA-2018-c54ced412e gcab-1.1-1.fc26 6 https://bodhi.fedoraproject.org/updates/FEDORA-2018-b3de6c389e torbrowser-launcher-0.2.9-1.fc26 5 https://bodhi.fedoraproject.org/updates/FEDORA-2018-f97cb1c9b0 krb5-1.15.2-7.fc26 5 https://bodhi.fedoraproject.org/updates/FEDORA-2018-4367d984c1 sblim-sfcb-1.4.9-7.fc26 4 https://bodhi.fedoraproject.org/updates/FEDORA-2018-e23d2dae46 mingw-poppler-0.52.0-6.fc26 4 https://bodhi.fedoraproject.org/updates/FEDORA-2018-f5d2f4ec0d mingw-OpenEXR-2.2.0-6.fc26 4 https://bodhi.fedoraproject.org/updates/FEDORA-2018-5cdc56766f firefox-58.0.2-1.fc26 3 https://bodhi.fedoraproject.org/updates/FEDORA-2018-71fac70309 patch-2.7.6-3.fc26 3 https://bodhi.fedoraproject.org/updates/FEDORA-2018-c1b8e0176c freetype-2.7.1-10.fc26 1 https://bodhi.fedoraproject.org/updates/FEDORA-2018-db5041e661 bro-2.5.3-1.fc26 1 https://bodhi.fedoraproject.org/updates/FEDORA-2018-cbc52e8812 irssi-1.0.7-1.fc26 1 https://bodhi.fedoraproject.org/updates/FEDORA-2018-25a7ba3cb6 exim-4.90.1-2.fc26 1 https://bodhi.fedoraproject.org/updates/FEDORA-2018-7d90e269a4 milkytracker-1.01.00-1.fc26 1 https://bodhi.fedoraproject.org/updates/FEDORA-2018-b2d76ba048 seamonkey-2.49.2-2.fc26 The following Fedora 26 Critical Path updates have yet to be approved: Age URL 19 https://bodhi.fedoraproject.org/updates/FEDORA-2018-c7c6160e65 thunderbird-52.6.0-1.fc26 14 https://bodhi.fedoraproject.org/updates/FEDORA-2018-f0ad9c0f9c pungi-4.1.22-2.fc26 9 https://bodhi.fedoraproject.org/updates/FEDORA-2018-27cb0cd918 ibus-1.5.17-6.fc26 6 https://bodhi.fedoraproject.org/updates/FEDORA-2018-bc14e16004 nss-3.35.0-1.0.fc26 nss-softokn-3.35.0-1.0.fc26 nss-util-3.35.0-1.0.fc26 nspr-4.18.0-1.fc26 6 https://bodhi.fedoraproject.org/updates/FEDORA-2018-3e5558f0ff vim-8.0.1505-1.fc26 6 https://bodhi.fedoraproject.org/updates/FEDORA-2018-c54ced412e gcab-1.1-1.fc26 6 https://bodhi.fedoraproject.org/updates/FEDORA-2018-9ef65cf422 perl-5.24.3-396.fc26 5 https://bodhi.fedoraproject.org/updates/FEDORA-2018-6fe397a796 lxpanel-0.9.3-4.D20180109git2ddf8dfc.fc26 5 https://bodhi.fedoraproject.org/updates/FEDORA-2018-ddd1e5c30a iproute-4.14.1-5.fc26 5 https://bodhi.fedoraproject.org/updates/FEDORA-2018-f97cb1c9b0 krb5-1.15.2-7.fc26 4 https://bodhi.fedoraproject.org/updates/FEDORA-2018-85dd2a6ff9 curl-7.53.1-15.fc26 4 https://bodhi.fedoraproject.org/updates/FEDORA-2018-562467e141 sssd-1.16.0-6.fc26 4 https://bodhi.fedoraproject.org/updates/FEDORA-2018-5cdc56766f firefox-58.0.2-1.fc26 3 https://bodhi.fedoraproject.org/updates/FEDORA-2018-c1b8e0176c freetype-2.7.1-10.fc26 3 https://bodhi.fedoraproject.org/updates/FEDORA-2018-5a2e230b9d net-snmp-5.7.3-26.fc26 3 https://bodhi.fedoraproject.org/updates/FEDORA-2018-9d8876b830 samba-4.6.13-0.fc26 3 https://bodhi.fedoraproject.org/updates/FEDORA-2018-b7b864a29e breeze-icon-theme-5.43.0-1.fc26 extra-cmake-modules-5.43.0-1.fc26 kf5-5.43.0-1.fc26 kf5-attica-5.43.0-1.fc26 kf5-baloo-5.43.0-1.fc26 kf5-bluez-qt-5.43.0-1.fc26 kf5-frameworkintegration-5.43.0-2.fc26 kf5-kactivities-5.43.0-2.fc26 kf5-kactivities-stats-5.43.0-2.fc26 kf5-kapidox-5.43.0-1.fc26 kf5-karchive-5.43.0-1.fc26 kf5-kauth-5.43.0-1.fc26 kf5-kbookmarks-5.43.0-2.fc26 kf5-kcmutils-5.43.0-3.fc26 kf5-kcodecs-5.43.0-1.fc26 kf5-kcompletion-5.43.0-1.fc26 kf5-kconfig-5.43.0-1.fc26 kf5-kconfigwidgets-5.43.0-1.fc26 kf5-kcoreaddons-5.43.0-1.fc26 kf5-kcrash-5.43.0-1.fc26 kf5-kdbusaddons-5.43.0-1.fc26 kf5-kdeclarative-5.43.0-2.fc26 kf5-kded-5.43.0-3.fc26 kf5-kdelibs4support-5.43.0-3.fc26 kf5-kdesignerplugin-5.43.0-2.fc26 kf5-kdesu-5.43.0-1.fc26 kf5-kdewebkit-5.43.0-2.fc26 kf5-kdnssd-5.43.0-1.fc26 kf5-kdoctools-5.43.0-1.fc26 kf5-kemoticons-5.43.0-1.fc26 kf5-kfilemetadata-5.43.0-1.fc26 kf5-kglobalaccel-5.43.0-1.fc26 kf5-kguiad dons-5.43.0-1.fc26 kf5-khtml-5.43.0-3.fc26 kf5-ki18n-5.43.0-1.fc26 kf5-kiconthemes-5.43.0-1.fc26 kf5-kidletime-5.43.0-1.fc26 kf5-kimageformats-5.43.0-1.fc26 kf5-kinit-5.43.0-2.fc26 kf5-kio-5.43.0-3.fc26 kf5-kirigami2-5.43.0-1.fc26 kf5-kitemmodels-5.43.0-1.fc26 kf5-kitemviews-5.43.0-1.fc26 kf5-kjobwidgets-5.43.0-1.fc26 kf5-kjs-5.43.0-1.fc26 kf5-kjsembed-5.43.0-1.fc26 kf5-kmediaplayer-5.43.0-2.fc26 kf5-knewstuff-5.43.0-2.fc26 kf5-knotifications-5.43.0-1.fc26 kf5-knotifyconfig-5.43.0-2.fc26 kf5-kpackage-5.43.0-1.fc26 kf5-kparts-5.43.0-2.fc26 kf5-kpeople-5.43.0-1.fc26 kf5-kplotting-5.43.0-1.fc26 kf5-kpty-5.43.0-1.fc26 kf5-kross-5.43.0-2.fc26 kf5-krunner-5.43.0-3.fc26 kf5-kservice-5.43.0-1.fc26 kf5-ktexteditor-5.43.0-3.fc26 kf5-ktextwidgets-5.43.0-1.fc26 kf5-kunitconversion-5.43.0-1.fc26 kf5-kwallet-5.43.0-1.fc26 kf5-kwayland-5.43.0-1.fc26 kf5-kwidgetsaddons-5.43.0-1.fc26 kf5-kwindowsystem-5.43.0-1.fc26 kf5-kxmlgui-5.43.0-1.fc26 kf5-kxmlrpcclient-5.43.0-2.fc26 kf5-modemmanager-qt-5.43.0- 1.fc26 kf5-networkmanager-qt-5.43.0-1.fc26 kf5-plasma-5.43.0-3.fc26 kf5-prison-5.43.0-1.fc26 kf5-purpose-5.43.0-1.fc26 kf5-solid-5.43.0-1.fc26 kf5-sonnet-5.43.0-1.fc26 kf5-syntax-highlighting-5.43.0-1.fc26 kf5-threadweaver-5.43.0-1.fc26 oxygen-icon-theme-5.43.0-1.fc26 qqc2-desktop-style-5.43.0-1.fc26 3 https://bodhi.fedoraproject.org/updates/FEDORA-2018-18c1baca23 qt5-qtbase-5.9.4-4.fc26 3 https://bodhi.fedoraproject.org/updates/FEDORA-2018-71fac70309 patch-2.7.6-3.fc26 1 https://bodhi.fedoraproject.org/updates/FEDORA-2018-be760d6d28 libidn2-2.0.4-3.fc26 1 https://bodhi.fedoraproject.org/updates/FEDORA-2018-800cf2f81e ethtool-4.15-1.fc26 1 https://bodhi.fedoraproject.org/updates/FEDORA-2018-0be6ceb3e0 python2-2.7.14-5.fc26 1 https://bodhi.fedoraproject.org/updates/FEDORA-2018-5e5bb3f1fb koji-1.15.0-4.fc26 1 https://bodhi.fedoraproject.org/updates/FEDORA-2018-53c4737dfb git-2.13.6-3.fc26 1 https://bodhi.fedoraproject.org/updates/FEDORA-2018-4c127acb0f libwebp-0.6.1-5.fc26 1 https://bodhi.fedoraproject.org/updates/FEDORA-2018-4c28b00507 gnutls-3.5.18-2.fc26 1 https://bodhi.fedoraproject.org/updates/FEDORA-2018-8739091f47 kernel-4.15.3-200.fc26 The following builds have been pushed to Fedora 26 updates-testing beecrypt-4.2.1-20.fc26 boinc-client-7.9.2-1.fc26 bugzilla-5.0.4-1.fc26 ccnet-6.1.4-2.fc26 cmrt-1.0.6-7.fc26 dislocker-0.7.1-6.fc26 dist-git-1.6-1.fc26 drbdlinks-1.28-3.fc26 electrum-3.0.6-1.fc26 f2c-20160102-1.fc26 fedrepo-req-1.11.1-1.fc26 golang-github-inconshreveable-go-vhost-0-0.1.20160627git06d8411.fc26 iwidgets-4.0.2-22.fc26 knot-resolver-2.1.0-1.fc26 ldapvi-1.7-29.fc26 libva-intel-hybrid-driver-1.0.2-5.fc26 lmms-1.1.3-8.fc26 mbedtls-2.7.0-1.fc26 mir-0.30.0.1-1.fc26 mozilla-lightbeam-2.1.0-1.fc26 mozilla-noscript-10.1.6.5-1.fc26 nodejs-grunt-wrap-0.3.1-1.fc26 nuvola-app-amazon-cloud-player-5.6-1.fc26 perl-Importer-0.025-1.fc26 python-certbot-dns-digitalocean-0.21.1-1.fc26 python-cloudflare-2.0.4-1.fc26 python-sphinx-intl-0.9.11-1.fc26 qdirstat-1.4-6.fc26 qt-creator-4.5.1-1.fc26 rubygem-gobject-introspection-3.2.1-5.fc26 spectre-meltdown-checker-0.35-1.fc26 tideEditor-1.4.4-1.fc26 unixODBC-2.3.5-1.fc26 vdr-epg2vdr-1.1.86-1.fc26 zegrapher-3.0.2-4.fc26 Details about builds: ================================================================================ beecrypt-4.2.1-20.fc26 (FEDORA-2018-0deca50856) An open source cryptography library -------------------------------------------------------------------------------- Update Information: Update python 2 dependency declarations to new packaging standards, see https://fedoraproject.org/wiki/FinalizingFedoraSwitchtoPython3 -------------------------------------------------------------------------------- ================================================================================ boinc-client-7.9.2-1.fc26 (FEDORA-2018-cc40039e71) The BOINC client -------------------------------------------------------------------------------- Update Information: New upstream release of the BOINC client -------------------------------------------------------------------------------- ================================================================================ bugzilla-5.0.4-1.fc26 (FEDORA-2018-b79f325c48) Bug tracking system -------------------------------------------------------------------------------- Update Information: A CSRF vulnerability in Bugzilla's report.cgi would allow a third-party site to extract confidential information from a bug the victim had access to. This security bug has been published as CVE-2018-5123. This updates contains Bugzilla 5.0.4, which fixes the issue. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1438957 - icons are missing on bugzilla's front page https://bugzilla.redhat.com/show_bug.cgi?id=1438957 -------------------------------------------------------------------------------- ================================================================================ ccnet-6.1.4-2.fc26 (FEDORA-2018-2c5bf44bf3) A framework for writing networked applications in C -------------------------------------------------------------------------------- Update Information: Add a require for sqlite: configuration is stored in a sqlite database. Without sqlite, it cannot work. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1546560 - seafile-client needs sqlite https://bugzilla.redhat.com/show_bug.cgi?id=1546560 -------------------------------------------------------------------------------- ================================================================================ cmrt-1.0.6-7.fc26 (FEDORA-2018-e400522ceb) C for Media Runtime -------------------------------------------------------------------------------- Update Information: Add missing BR for gcc-c++ -------------------------------------------------------------------------------- ================================================================================ dislocker-0.7.1-6.fc26 (FEDORA-2018-9e31caf5c9) Utility to access BitLocker encrypted volumes -------------------------------------------------------------------------------- Update Information: - Rebuilt for mbed TLS 2.7.0 -------------------------------------------------------------------------------- ================================================================================ dist-git-1.6-1.fc26 (FEDORA-2018-9a51538243) Package source version control system -------------------------------------------------------------------------------- Update Information: - add 'fedmsgs', 'old_paths', and 'default_namespace' config options - remove domain_read_all_domains_state SELinux rule - require dist-git-selinux - give optional map permission to git_system_t on git_user_content_t - update requires to work for all environments - make the package completely distribution-agnostic -------------------------------------------------------------------------------- ================================================================================ drbdlinks-1.28-3.fc26 (FEDORA-2018-c0b333854d) Program for managing links into a DRBD shared partition -------------------------------------------------------------------------------- Update Information: - Update python 2 dependency declarations to new packaging standards, see https://fedoraproject.org/wiki/FinalizingFedoraSwitchtoPython3 -------------------------------------------------------------------------------- ================================================================================ electrum-3.0.6-1.fc26 (FEDORA-2018-2293c571b1) A lightweight Bitcoin Client -------------------------------------------------------------------------------- Update Information: Updated to version 3.0.6 -------------------------------------------------------------------------------- ================================================================================ f2c-20160102-1.fc26 (FEDORA-2018-14995d5544) A Fortran 77 to C/C++ conversion program -------------------------------------------------------------------------------- Update Information: Update to 20160102. -------------------------------------------------------------------------------- ================================================================================ fedrepo-req-1.11.1-1.fc26 (FEDORA-2018-63ec3cdec4) CLI for Fedora package repo requests -------------------------------------------------------------------------------- Update Information: The admin tool now casts the incoming bug IDs as strings (fixes a bug that occurs when the incoming bug ID is an integer). -------------------------------------------------------------------------------- ================================================================================ golang-github-inconshreveable-go-vhost-0-0.1.20160627git06d8411.fc26 (FEDORA-2018-569ccc30be) HTTP/TLS hostname multiplexing library for Go -------------------------------------------------------------------------------- Update Information: **HTTP/TLS hostname multiplexing library for Go** - dependency of bettercap 2.0.0 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1544716 - Review Request: golang-github-inconshreveable-go-vhost - HTTP/TLS hostname multiplexing library for Go https://bugzilla.redhat.com/show_bug.cgi?id=1544716 -------------------------------------------------------------------------------- ================================================================================ iwidgets-4.0.2-22.fc26 (FEDORA-2018-a51a8dde33) A set of useful widgets based on itcl and itk -------------------------------------------------------------------------------- Update Information: Fix /bin/env issue -------------------------------------------------------------------------------- ================================================================================ knot-resolver-2.1.0-1.fc26 (FEDORA-2018-844a1e9778) Caching full DNS Resolver -------------------------------------------------------------------------------- Update Information: Knot Resolver 2.1.0 (2018-02-16) ================================ Incompatible changes -------------------- - stats: remove tracking of expiring records (predict uses another way) - systemd: re-use a single kresd.socket and kresd- tls.socket - ta_sentinel: implement protocol draft-ietf-dnsop-kskroll- sentinel-01 (our draft-ietf-dnsop-kskroll-sentinel-00 implementation had inverted logic) - libknot: require version 2.6.4 or newer to get bugfixes for DNS-over-TLS Bugfixes -------- - detect_time_jump module: don't clear cache on suspend-resume (#284) - stats module: fix stats.list() returning nothing, regressed in 2.0.0 - policy.TLS_FORWARD: refusal when configuring with multiple IPs (#306) - cache: fix broken refresh of insecure records that were about to expire - fix the hints module on some systems, e.g. Fedora (came back on 2.0.0) - build with older gnutls (conditionally disable features) - fix the predict module to work with insecure records & cleanup code Knot Resolver 2.0.0 (2018-01-31) ================================ Incompatible changes -------------------- - systemd: change unit files to allow running multiple instances, deployments with single instance now must use `kresd@1.service` instead of `kresd.service`; see kresd.systemd(7) for details - systemd: the directory for cache is now /var/cache/knot-resolver - unify default directory and user to `knot-resolver` - directory with trust anchor file specified by -k option must be writeable - policy module is now loaded by default to enforce RFC 6761; see documentation for policy.PASS if you use locally-served DNS zones - drop support for alternative cache backends memcached, redis, and for Lua bindings for some specific cache operations - REORDER_RR option is not implemented (temporarily) New features ------------ - aggressive caching of validated records (RFC 8198) for NSEC zones; thanks to ICANN for sponsoring this work. - forwarding over TLS, authenticated by SPKI pin or certificate. policy.TLS_FORWARD pipelines queries out-of-order over shared TLS connection Beware: Some resolvers do not support out-of-order query processing. TLS forwarding to such resolvers will lead to slower resolution or failures. - trust anchors: you may specify a read-only file via -K or --keyfile-ro - trust anchors: at build-time you may set KEYFILE_DEFAULT (read-only) - ta_sentinel module implements draft ietf-dnsop-kskroll-sentinel-00, enabled by default - serve_stale module is prototype, subject to change - extended API for Lua modules Bugfixes -------- - fix build on osx - regressed in 1.5.3 (different linker option name) ---- Knot Resolver 1.5.3 (2018-01-23) ================================ Bugfixes -------- - fix the hints module on some systems, e.g. Fedora. Symptom: `undefined symbol: engine_hint_root_file` Knot Resolver 1.5.2 (2018-01-22) ================================ Security -------- - fix CVE-2018-1000002: insufficient DNSSEC validation, allowing attackers to deny existence of some data by forging packets. Some combinations pointed out in RFC 6840 sections 4.1 and 4.3 were not taken into account. Bugfixes -------- - memcached: fix fallout from module rename in 1.5.1 Knot Resolver 1.5.1 (2017-12-12) ================================ Incompatible changes -------------------- - script supervisor.py was removed, please migrate to a real process manager - module ketcd was renamed to etcd for consistency - module kmemcached was renamed to memcached for consistency Bugfixes -------- - fix SIGPIPE crashes (#271) - tests: work around out-of-space for platforms with larger memory pages - lua: fix mistakes in bindings affecting 1.4.0 and 1.5.0 (and 1.99.1-alpha), potentially causing problems in dns64 and workarounds modules - predict module: various fixes (!399) Improvements ------------ - add priming module to implement RFC 8109, enabled by default (#220) - add modules helping with system time problems, enabled by default; for details see documentation of detect_time_skew and detect_time_jump -------------------------------------------------------------------------------- References: [ 1 ] Bug #1537462 - CVE-2018-1000002 knot-resolver: Insufficient DNSSEC validation https://bugzilla.redhat.com/show_bug.cgi?id=1537462 -------------------------------------------------------------------------------- ================================================================================ ldapvi-1.7-29.fc26 (FEDORA-2018-e0aa200e45) An interactive LDAP client -------------------------------------------------------------------------------- Update Information: Fix packaging issues and avoid sending password in plain in logs. -------------------------------------------------------------------------------- ================================================================================ libva-intel-hybrid-driver-1.0.2-5.fc26 (FEDORA-2018-45b57a5008) VA driver for Intel G45 & HD Graphics family -------------------------------------------------------------------------------- Update Information: Add missing BR for gcc-c++ -------------------------------------------------------------------------------- ================================================================================ lmms-1.1.3-8.fc26 (FEDORA-2018-a0b680a2e8) Linux MultiMedia Studio -------------------------------------------------------------------------------- Update Information: Add patch that should fix linkage of the Vestige module (#1388466). -------------------------------------------------------------------------------- References: [ 1 ] Bug #1388466 - Vestige plugin is not showing up in the instrument plugins list. https://bugzilla.redhat.com/show_bug.cgi?id=1388466 -------------------------------------------------------------------------------- ================================================================================ mbedtls-2.7.0-1.fc26 (FEDORA-2018-9817f1dafa) Light-weight cryptographic and SSL/TLS library -------------------------------------------------------------------------------- Update Information: - Update to 2.7.0 Release notes: https://tls.mbed.org/tech- updates/releases/mbedtls-2.7.0-2.1.10-and-1.3.22-released Security Advisory: https://tls.mbed.org/tech-updates/security-advisories/mbedtls-security- advisory-2018-01 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1544729 - CVE-2017-18187 CVE-2018-0487 CVE-2018-0488 mbedtls: various flaws [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1544729 -------------------------------------------------------------------------------- ================================================================================ mir-0.30.0.1-1.fc26 (FEDORA-2018-c405830c86) Next generation display server -------------------------------------------------------------------------------- Update Information: Notable upstream changes: * Many fixes to Wayland protocol support: * `SessionAuthorizer::connection_is_allowed` is now called on Wayland client connection, required for Wayland clients to work in Unity 8. * Keyboard state is now sent of focus, resolving strange modifier behavior when switching between clients * A number of crash fixes * Initial, experimental, support for `xdg-shell` (v6). * Set the `MIR_EXPERIMENTAL_XDG_SHELL` environment variable to enable. * Pointer events are now sent to windows that move underneath the pointer -------------------------------------------------------------------------------- References: [ 1 ] Bug #1545646 - mir-0.30.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1545646 [ 2 ] Bug #1546741 - mir-0.30.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1546741 -------------------------------------------------------------------------------- ================================================================================ mozilla-lightbeam-2.1.0-1.fc26 (FEDORA-2018-bc41d52441) An add-on for visualizing HTTP requests between websites in real time -------------------------------------------------------------------------------- Update Information: **NOTE:** All packaged Firefox add-ons are affected by Firefox bug fedora#1508827 . A workaround is provided in the bug report. Please do not give negative karma just because of that bug. This update brings visualization performance improvements. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1546516 - mozilla-lightbeam-2.1.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1546516 -------------------------------------------------------------------------------- ================================================================================ mozilla-noscript-10.1.6.5-1.fc26 (FEDORA-2018-3ea54614ca) JavaScript white list extension for Mozilla Firefox -------------------------------------------------------------------------------- Update Information: **NOTE:** All packaged Firefox add-ons are affected by Firefox bug fedora#1508827 . A workaround is provided in the bug report. Please do not give negative karma just because of that bug. **WebExtension changes:** * Context menu on web pages to access main UI * Fixed UI regression showing only the two rightmost components of IPv4 addresses * [XSS] More specific and unobtrusive handling of window.name sanitization * Fixed "XSS User Choices" not being included in Export files **Classic version changes:** * Fixed XSS false positive on some Facebook embeddings (thanks barbaz for reporting) * Fixed edge case origin checks for WebExtensions embedded in privileged documents * Fixed DNT support initialization regression (thanks barbaz for reporting) * [XSS] Fixed false positives on badly encoded URLs (thanks sage11 for reporting) * Script Surrogates don't affect privileged URLs anymore, unless the noscript.surrogate.matchPrivileged about:config preference is set to true (thanks barbaz for RFE) * [e10s] Fixed temporary permissions inter-process sync issue (thanks to the TorBrowser team for solution) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1543851 - mozilla-noscript-10.1.6.5 is available https://bugzilla.redhat.com/show_bug.cgi?id=1543851 -------------------------------------------------------------------------------- ================================================================================ nodejs-grunt-wrap-0.3.1-1.fc26 (FEDORA-2018-1cec681932) A Grunt plugin for wrapping project text files -------------------------------------------------------------------------------- Update Information: Update to [0.3.1](https://github.com/chrissrogers/grunt-wrap/compare/a28588468e4 4db6f990d0f10d95833565eaa7057...fb342f1781fd0fcfcd2ef6bc0b84662de4d3beb4). -------------------------------------------------------------------------------- References: [ 1 ] Bug #1460839 - nodejs-grunt-wrap-0.3.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1460839 -------------------------------------------------------------------------------- ================================================================================ nuvola-app-amazon-cloud-player-5.6-1.fc26 (FEDORA-2018-b25f8c6a9a) Amazon Cloud Player for Nuvola Player 3 -------------------------------------------------------------------------------- Update Information: Update to 5.6 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1546414 - nuvola-app-amazon-cloud-player-5.6 is available https://bugzilla.redhat.com/show_bug.cgi?id=1546414 -------------------------------------------------------------------------------- ================================================================================ perl-Importer-0.025-1.fc26 (FEDORA-2018-7e3105358b) Alternative interface to modules that export symbols -------------------------------------------------------------------------------- Update Information: This release corrects a test. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1546584 - perl-Importer-0.025 is available https://bugzilla.redhat.com/show_bug.cgi?id=1546584 -------------------------------------------------------------------------------- ================================================================================ python-certbot-dns-digitalocean-0.21.1-1.fc26 (FEDORA-2018-11c9d4ea02) DigitalOcean DNS Authenticator plugin for Certbot -------------------------------------------------------------------------------- Update Information: Initial package of python-certbot-dns-digitalocean -------------------------------------------------------------------------------- References: [ 1 ] Bug #1545969 - Review Request: python-certbot-dns-digitalocean - DigitalOcean DNS Authenticator plugin for Certbot https://bugzilla.redhat.com/show_bug.cgi?id=1545969 -------------------------------------------------------------------------------- ================================================================================ python-cloudflare-2.0.4-1.fc26 (FEDORA-2018-8477d00cfb) Python wrapper for the Cloudflare Client API v4 -------------------------------------------------------------------------------- Update Information: Initial package of python-cloudflare -------------------------------------------------------------------------------- References: [ 1 ] Bug #1546297 - Review Request: python-cloudflare - Python wrapper for the Cloudflare Client API v4 https://bugzilla.redhat.com/show_bug.cgi?id=1546297 -------------------------------------------------------------------------------- ================================================================================ python-sphinx-intl-0.9.11-1.fc26 (FEDORA-2018-44bffc2ac8) Sphinx utility that make it easy to translate and to apply translation -------------------------------------------------------------------------------- Update Information: Update to 0.9.11 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1544587 - python-sphinx-intl-0.9.11 is available https://bugzilla.redhat.com/show_bug.cgi?id=1544587 -------------------------------------------------------------------------------- ================================================================================ qdirstat-1.4-6.fc26 (FEDORA-2018-6fb1edc698) Qt-based directory statistics -------------------------------------------------------------------------------- Update Information: Add missing BR for gcc-c++ -------------------------------------------------------------------------------- ================================================================================ qt-creator-4.5.1-1.fc26 (FEDORA-2018-6fe8455d9b) Cross-platform IDE for Qt -------------------------------------------------------------------------------- Update Information: Update to version 4.5.1, see https://code.qt.io/cgit/qt-creator/qt- creator.git/tree/dist/changes-4.5.1.md for details. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1541807 - Design mode not available for *.ui.qml files https://bugzilla.redhat.com/show_bug.cgi?id=1541807 -------------------------------------------------------------------------------- ================================================================================ rubygem-gobject-introspection-3.2.1-5.fc26 (FEDORA-2018-c74e165a34) Ruby binding of GObjectIntrospection -------------------------------------------------------------------------------- Update Information: This rpm fixes some integer overflow on 32bit, which was firstly reported for ruby gstreamer. -------------------------------------------------------------------------------- ================================================================================ spectre-meltdown-checker-0.35-1.fc26 (FEDORA-2018-b25332842d) Spectre & Meltdown vulnerability/mitigation checker for Linux -------------------------------------------------------------------------------- Update Information: Update to 0.35 - Feature: correctly detect specific Red Hat/Ubuntu patch for Spectre Variant 1 - Update: new list of blacklisted microcodes (from Intel document) - Enhancement: detect disrepancy between found kernel image and running kernel - Enhancement: speed up execution by not decompressing kernel in --sysfs-only mode - Enhancement: find images installed by systemd kernel-install - Enhancement: better explanation when kernel supports IBRS but CPU doesn't - Misc: other minor changes and bugfixes -------------------------------------------------------------------------------- ================================================================================ tideEditor-1.4.4-1.fc26 (FEDORA-2018-1e873307ae) Editor for Tide Constituent Database (TCD) files -------------------------------------------------------------------------------- Update Information: New version 1.4.4 is released. -------------------------------------------------------------------------------- ================================================================================ unixODBC-2.3.5-1.fc26 (FEDORA-2018-e7626c7cd1) A complete ODBC driver manager for Linux -------------------------------------------------------------------------------- Update Information: Update to the latest [upstream](http://www.unixodbc.com) version. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1537840 - unixODBC-2.3.5 is available https://bugzilla.redhat.com/show_bug.cgi?id=1537840 -------------------------------------------------------------------------------- ================================================================================ vdr-epg2vdr-1.1.86-1.fc26 (FEDORA-2018-660d5621c3) A plugin to retrieve EPG data from a mysql database into VDR -------------------------------------------------------------------------------- Update Information: Update to 1.1.86 ---- Update to 1.1.84 ---- Update to 1.1.83 -------------------------------------------------------------------------------- ================================================================================ zegrapher-3.0.2-4.fc26 (FEDORA-2018-d62184658f) Free and opensource math graphing software -------------------------------------------------------------------------------- Update Information: Add missing BR for gcc-c++ -------------------------------------------------------------------------------- _______________________________________________ test mailing list -- test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to test-leave@xxxxxxxxxxxxxxxxxxxxxxx
