The following Fedora 28 Security updates need testing: Age URL 398 https://bodhi.fedoraproject.org/updates/FEDORA-2018-d510cfd7eb jgraphx-3.6.0.0-6.fc28 348 https://bodhi.fedoraproject.org/updates/FEDORA-2018-d7aeaa74da nodejs-brace-expansion-1.1.11-1.fc28 346 https://bodhi.fedoraproject.org/updates/FEDORA-2018-bc073fdc1a nodejs-atob-2.1.1-1.fc28 222 https://bodhi.fedoraproject.org/updates/FEDORA-2018-cc4b7af297 xerces-c27-2.7.0-28.fc28 175 https://bodhi.fedoraproject.org/updates/FEDORA-2018-aa3752ac3c nginx-1.14.1-1.fc28 154 https://bodhi.fedoraproject.org/updates/FEDORA-2018-cc86ef9e22 squid-4.4-1.fc28 81 https://bodhi.fedoraproject.org/updates/FEDORA-2019-86412405d5 bind-9.11.5-4.P4.fc28 68 https://bodhi.fedoraproject.org/updates/FEDORA-2019-63029a7692 libu2f-host-1.1.8-1.fc28 49 https://bodhi.fedoraproject.org/updates/FEDORA-2019-ba19e79e9a thunderbird-60.6.1-1.fc28 46 https://bodhi.fedoraproject.org/updates/FEDORA-2019-0927602e59 chromium-73.0.3683.86-2.fc28 14 https://bodhi.fedoraproject.org/updates/FEDORA-2019-9dfd44e1e9 python-gnupg-0.4.4-1.fc28 12 https://bodhi.fedoraproject.org/updates/FEDORA-2019-04e7d39ad3 community-mysql-5.7.26-1.fc28 6 https://bodhi.fedoraproject.org/updates/FEDORA-2019-4d93cf2b34 php-typo3-phar-stream-wrapper-3.1.1-1.fc28 5 https://bodhi.fedoraproject.org/updates/FEDORA-2019-9b58ccab2c freeradius-3.0.19-3.fc28 0 https://bodhi.fedoraproject.org/updates/FEDORA-2019-9f48c6fedc singularity-3.1.1-1.1.fc28 The following Fedora 28 Critical Path updates have yet to be approved: Age URL 154 https://bodhi.fedoraproject.org/updates/FEDORA-2018-9f541b469b nfs-utils-2.3.3-1.rc2.fc28 118 https://bodhi.fedoraproject.org/updates/FEDORA-2019-78153d357c totem-pl-parser-3.26.2-1.fc28 110 https://bodhi.fedoraproject.org/updates/FEDORA-2019-bb30467485 ostree-2019.1-2.fc28 rpm-ostree-2019.1-1.fc28 102 https://bodhi.fedoraproject.org/updates/FEDORA-2019-cb4a3023ef iproute-4.20.0-1.fc28 85 https://bodhi.fedoraproject.org/updates/FEDORA-2019-6c4e362bd0 dhcp-4.3.6-22.fc28 dnsperf-2.2.1-1.fc28 bind-dyndb-ldap-11.1-13.fc28 bind-9.11.5-2.P1.fc28 63 https://bodhi.fedoraproject.org/updates/FEDORA-2019-cb98bf5ace fedfind-4.2.2-1.fc28 python-productmd-1.20-1.fc28 55 https://bodhi.fedoraproject.org/updates/FEDORA-2019-e60ecc03b4 python-productmd-1.21-1.fc28 49 https://bodhi.fedoraproject.org/updates/FEDORA-2019-ba19e79e9a thunderbird-60.6.1-1.fc28 40 https://bodhi.fedoraproject.org/updates/FEDORA-2019-ba19af6a58 libldb-1.4.0-5.fc28.1.3.8 samba-4.8.10-0.fc28 26 https://bodhi.fedoraproject.org/updates/FEDORA-2019-bc14eac80e libblockdev-2.18-2.fc28 20 https://bodhi.fedoraproject.org/updates/FEDORA-2019-9244c8b209 pungi-4.1.36-1.fc28 14 https://bodhi.fedoraproject.org/updates/FEDORA-2019-c82d274716 dhcp-4.3.6-23.fc28 12 https://bodhi.fedoraproject.org/updates/FEDORA-2019-3ab1dba357 hwdata-0.323-1.fc28 11 https://bodhi.fedoraproject.org/updates/FEDORA-2019-44ac6082f0 fuse-2.9.9-7.fc28 10 https://bodhi.fedoraproject.org/updates/FEDORA-2019-472a7c38e8 osinfo-db-20190504-1.fc28 7 https://bodhi.fedoraproject.org/updates/FEDORA-2019-0c6a2c61f0 pcre2-10.33-2.fc28 5 https://bodhi.fedoraproject.org/updates/FEDORA-2019-34f798420a firefox-66.0.5-1.fc28 0 https://bodhi.fedoraproject.org/updates/FEDORA-2019-85907cf348 linux-firmware-20190514-96.fc28 The following builds have been pushed to Fedora 28 updates-testing kernel-5.0.16-100.fc28 kernel-headers-5.0.16-100.fc28 microcode_ctl-2.1-29.fc28 Details about builds: ================================================================================ kernel-5.0.16-100.fc28 (FEDORA-2019-c36afa818c) The Linux kernel -------------------------------------------------------------------------------- Update Information: The 5.0.16 stable updates contain a number of important fixes across the tree. Most importantly, these updates address the kernel portion of the MDS CVEs. ---- The 5.0.14 update contains a number of important fixes across the tree. There is no kernel-headers or kernel-tools build this time. -------------------------------------------------------------------------------- ChangeLog: * Tue May 14 2019 Justin M. Forbes <jforbes@xxxxxxxxxxxxxxxxx> - 5.0.16-300 - Linux v5.0.16 - Fixes CVE-2018-12126 (rhbz 1646781 1709976) - Fixes CVE-2018-12127 (rhbz 1667782 1709978) - Fixes CVE-2018-12130 (rhbz 1646784 1709989 1709996) - Fixes CVE-2019-11091 (rhbz 1705312 1709983) * Mon May 13 2019 Laura Abbott <labbott@xxxxxxxxxx> - 5.0.15-100 - Linux v5.0.15 - Fixes CVE-2019-11884 (rhbz 1709837 1709838) * Thu May 9 2019 Laura Abbott <labbott@xxxxxxxxxx> - 5.0.14-100 - Linux v5.0.14 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1709837 - CVE-2019-11884 kernel: sensitive information disclosure from kernel stack memory via HIDPCONNADD command https://bugzilla.redhat.com/show_bug.cgi?id=1709837 [ 2 ] Bug #1705312 - CVE-2019-11091 hardware: Microarchitectural Data Sampling Uncacheable Memory (MDSUM) https://bugzilla.redhat.com/show_bug.cgi?id=1705312 [ 3 ] Bug #1646784 - CVE-2018-12130 hardware: Microarchitectural Fill Buffer Data Sampling (MFBDS) https://bugzilla.redhat.com/show_bug.cgi?id=1646784 [ 4 ] Bug #1667782 - CVE-2018-12127 hardware: Micro-architectural Load Port Data Sampling - Information Leak (MLPDS) https://bugzilla.redhat.com/show_bug.cgi?id=1667782 [ 5 ] Bug #1646781 - CVE-2018-12126 hardware: Microarchitectural Store Buffer Data Sampling (MSBDS) https://bugzilla.redhat.com/show_bug.cgi?id=1646781 -------------------------------------------------------------------------------- ================================================================================ kernel-headers-5.0.16-100.fc28 (FEDORA-2019-c36afa818c) Header files for the Linux kernel for use by glibc -------------------------------------------------------------------------------- Update Information: The 5.0.16 stable updates contain a number of important fixes across the tree. Most importantly, these updates address the kernel portion of the MDS CVEs. ---- The 5.0.14 update contains a number of important fixes across the tree. There is no kernel-headers or kernel-tools build this time. -------------------------------------------------------------------------------- ChangeLog: * Wed May 15 2019 Justin M. Forbes <jforbes@xxxxxxxxxxxxxxxxx> - 5.0.16-100 - Linux v5.0.16 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1709837 - CVE-2019-11884 kernel: sensitive information disclosure from kernel stack memory via HIDPCONNADD command https://bugzilla.redhat.com/show_bug.cgi?id=1709837 [ 2 ] Bug #1705312 - CVE-2019-11091 hardware: Microarchitectural Data Sampling Uncacheable Memory (MDSUM) https://bugzilla.redhat.com/show_bug.cgi?id=1705312 [ 3 ] Bug #1646784 - CVE-2018-12130 hardware: Microarchitectural Fill Buffer Data Sampling (MFBDS) https://bugzilla.redhat.com/show_bug.cgi?id=1646784 [ 4 ] Bug #1667782 - CVE-2018-12127 hardware: Micro-architectural Load Port Data Sampling - Information Leak (MLPDS) https://bugzilla.redhat.com/show_bug.cgi?id=1667782 [ 5 ] Bug #1646781 - CVE-2018-12126 hardware: Microarchitectural Store Buffer Data Sampling (MSBDS) https://bugzilla.redhat.com/show_bug.cgi?id=1646781 -------------------------------------------------------------------------------- ================================================================================ microcode_ctl-2.1-29.fc28 (FEDORA-2019-1062b13c1e) Tool to transform and deploy CPU microcode update for x86 -------------------------------------------------------------------------------- Update Information: Update to upstream 2.1-21. 20190514 ---- Update to upstream 2.1-20. 20190312 -------------------------------------------------------------------------------- ChangeLog: * Wed May 15 2019 Anton Arapov <aarapov@xxxxxxxxxx> 2:2.1-29 - Update to upstream 2.1-21. 20190514 * Thu May 9 2019 Anton Arapov <aarapov@xxxxxxxxxx> 2:2.1-28 - Update to upstream 2.1-20. 20190312 * Fri Feb 1 2019 Fedora Release Engineering <releng@xxxxxxxxxxxxxxxxx> - 2:2.1-27 - Rebuilt for https://fedoraproject.org/wiki/Fedora_30_Mass_Rebuild -------------------------------------------------------------------------------- _______________________________________________ test mailing list -- test@xxxxxxxxxxxxxxxxxxxxxxx To unsubscribe send an email to test-leave@xxxxxxxxxxxxxxxxxxxxxxx Fedora Code of Conduct: https://getfedora.org/code-of-conduct.html List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/test@xxxxxxxxxxxxxxxxxxxxxxx
