May 2017 - package-announce - Fedora Mailing-Lists

[SECURITY] Fedora 24 Update: menu-cache-1.0.2-4.D20170514git56f6668459.fc24

by updates＠fedoraproject.org

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2017-3f2d5790d2 2017-05-30 15:08:36.562803 -------------------------------------------------------------------------------- Name : menu-cache Product : Fedora 24 Version : 1.0.2 Release : 4.D20170514git56f6668459.fc24 URL : http://lxde.org Summary : Caching mechanism for freedesktop.org compliant menus Description : Menu-cache is a caching mechanism for freedesktop.org compliant menus to speed up parsing of the menu entries. It is currently used by some of components of the LXDE desktop environment such as LXPanel or LXLauncher. -------------------------------------------------------------------------------- Update Information: A potential security flaw is found on LXDE products, which create socket under /tmp with some predictable names, which may leads to DOS. The security flow on lxterminal is now assigned as CVE-2016-10369. Some other components also had similar issues. These new rpms should fix these issues. At least relogin is required to make this fix effect. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1449114 - CVE-2016-10369 lxterminal: Insecure use of /tmp for a socket file [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1449114 [ 2 ] Bug #1451070 - CVE-2017-8933 menu-cache: Insecure temporary file creation in get_socket_name function [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1451070 [ 3 ] Bug #1451065 - CVE-2017-8934 pcmanfm: Insecure temporary file creation in get_socket_name function [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1451065 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade menu-cache' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

6 years, 11 months

1
0
0 / 0

Fedora 24 Update: dpm-dsi-1.9.13-1.fc24

by updates＠fedoraproject.org

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2017-03caa84713 2017-05-30 15:08:36.562749 -------------------------------------------------------------------------------- Name : dpm-dsi Product : Fedora 24 Version : 1.9.13 Release : 1.fc24 URL : https://svnweb.cern.ch/trac/lcgdm/wiki/Dpm Summary : Disk Pool Manager (DPM) plugin for the Globus GridFTP server Description : The dpm-dsi package provides a Disk Pool Manager (DPM) plugin for the Globus GridFTP server, following the Globus Data Storage Interface (DSI). The Disk Pool Manager (DPM) is a lightweight storage solution for grid sites. It offers a simple way to create a disk-based grid storage element and supports relevant protocols (SRM, gridFTP, RFIO) for file management and access. Globus provides open source grid software, including a server implementation of the GridFTP protocol. This plugin implements the DPM backend specifics required to expose the data using this protocol. -------------------------------------------------------------------------------- Update Information: * New upstream release -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade dpm-dsi' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

6 years, 11 months

1
0
0 / 0

Fedora 24 Update: unicode-emoji-4.0-3.fc24

by updates＠fedoraproject.org

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2017-984da542ca 2017-05-30 15:08:36.562693 -------------------------------------------------------------------------------- Name : unicode-emoji Product : Fedora 24 Version : 4.0 Release : 3.fc24 URL : http://www.unicode.org/emoji/ Summary : Unicode Emoji Data Files Description : Unicode Emoji Data Files are the machine-readable emoji data files associated with http://www.unicode.org/reports/tr51/index.html -------------------------------------------------------------------------------- Update Information: New package, the data in this package is used by ibus and ibus-typing-booster. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1445366 - Review Request: unicode-emoji - Unicode Emoji Data Files https://bugzilla.redhat.com/show_bug.cgi?id=1445366 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade unicode-emoji' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

6 years, 11 months

1
0
0 / 0

Fedora 24 Update: meson-0.40.1-1.fc24

by updates＠fedoraproject.org

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2017-1a337ab3c1 2017-05-30 15:08:36.562632 -------------------------------------------------------------------------------- Name : meson Product : Fedora 24 Version : 0.40.1 Release : 1.fc24 URL : http://mesonbuild.com/ Summary : High productivity build system Description : Meson is a build system designed to optimize programmer productivity. It aims to do this by providing simple, out-of-the-box support for modern software development tools and practices, such as unit tests, coverage reports, Valgrind, CCache and the like. -------------------------------------------------------------------------------- Update Information: Update to 0.40.1 ---- Update to 0.40.0 (https://github.com/mesonbuild/meson/wiki/Release-notes-for-0.40.0) -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade meson' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

6 years, 11 months

1
0
0 / 0

Fedora 24 Update: certbot-0.14.1-3.fc24

by updates＠fedoraproject.org

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2017-c651872919 2017-05-30 15:08:36.562509 -------------------------------------------------------------------------------- Name : certbot Product : Fedora 24 Version : 0.14.1 Release : 3.fc24 URL : https://pypi.python.org/pypi/certbot Summary : A free, automated certificate authority client Description : certbot is a free, automated certificate authority that aims to lower the barriers to entry for encrypting all HTTP traffic on the internet. -------------------------------------------------------------------------------- Update Information: * Update to 0.14.1 * Tweaks to the renew timer (bz#1444814 bz#1441846) * New nginx plugin added **NOTE** The behaviour of hooks has changed with this build, please review /etc/sysconfig/certbot for details if making use of hooks. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1441846 - Improvements to timer randomization https://bugzilla.redhat.com/show_bug.cgi?id=1441846 [ 2 ] Bug #1448431 - python-certbot-apache-0.14.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1448431 [ 3 ] Bug #1448423 - python-acme-0.14.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1448423 [ 4 ] Bug #1444814 - certbot: error: argument --pre-hook: expected one argument https://bugzilla.redhat.com/show_bug.cgi?id=1444814 [ 5 ] Bug #1448430 - certbot-0.14.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1448430 [ 6 ] Bug #1444397 - Review Request: python-certbot-nginx - nginx plugin to automatically configure certificate via certbot https://bugzilla.redhat.com/show_bug.cgi?id=1444397 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade certbot' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

6 years, 11 months

1
0
0 / 0

Fedora 24 Update: python-certbot-nginx-0.14.1-1.fc24

by updates＠fedoraproject.org

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2017-c651872919 2017-05-30 15:08:36.562509 -------------------------------------------------------------------------------- Name : python-certbot-nginx Product : Fedora 24 Version : 0.14.1 Release : 1.fc24 URL : https://pypi.python.org/pypi/certbot-nginx Summary : The nginx plugin for certbot Description : Plugin for certbot that allows for automatic configuration of ngnix -------------------------------------------------------------------------------- Update Information: * Update to 0.14.1 * Tweaks to the renew timer (bz#1444814 bz#1441846) * New nginx plugin added **NOTE** The behaviour of hooks has changed with this build, please review /etc/sysconfig/certbot for details if making use of hooks. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1441846 - Improvements to timer randomization https://bugzilla.redhat.com/show_bug.cgi?id=1441846 [ 2 ] Bug #1448431 - python-certbot-apache-0.14.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1448431 [ 3 ] Bug #1448423 - python-acme-0.14.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1448423 [ 4 ] Bug #1444814 - certbot: error: argument --pre-hook: expected one argument https://bugzilla.redhat.com/show_bug.cgi?id=1444814 [ 5 ] Bug #1448430 - certbot-0.14.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1448430 [ 6 ] Bug #1444397 - Review Request: python-certbot-nginx - nginx plugin to automatically configure certificate via certbot https://bugzilla.redhat.com/show_bug.cgi?id=1444397 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade python-certbot-nginx' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

6 years, 11 months

1
0
0 / 0

Fedora 24 Update: python-certbot-apache-0.14.1-1.fc24

by updates＠fedoraproject.org

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2017-c651872919 2017-05-30 15:08:36.562509 -------------------------------------------------------------------------------- Name : python-certbot-apache Product : Fedora 24 Version : 0.14.1 Release : 1.fc24 URL : https://pypi.python.org/pypi/certbot-apache Summary : The apache plugin for certbot Description : Plugin for certbot that allows for automatic configuration of apache -------------------------------------------------------------------------------- Update Information: * Update to 0.14.1 * Tweaks to the renew timer (bz#1444814 bz#1441846) * New nginx plugin added **NOTE** The behaviour of hooks has changed with this build, please review /etc/sysconfig/certbot for details if making use of hooks. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1441846 - Improvements to timer randomization https://bugzilla.redhat.com/show_bug.cgi?id=1441846 [ 2 ] Bug #1448431 - python-certbot-apache-0.14.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1448431 [ 3 ] Bug #1448423 - python-acme-0.14.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1448423 [ 4 ] Bug #1444814 - certbot: error: argument --pre-hook: expected one argument https://bugzilla.redhat.com/show_bug.cgi?id=1444814 [ 5 ] Bug #1448430 - certbot-0.14.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1448430 [ 6 ] Bug #1444397 - Review Request: python-certbot-nginx - nginx plugin to automatically configure certificate via certbot https://bugzilla.redhat.com/show_bug.cgi?id=1444397 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade python-certbot-apache' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

6 years, 11 months

1
0
0 / 0

Fedora 24 Update: python-acme-0.14.1-1.fc24

by updates＠fedoraproject.org

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2017-c651872919 2017-05-30 15:08:36.562509 -------------------------------------------------------------------------------- Name : python-acme Product : Fedora 24 Version : 0.14.1 Release : 1.fc24 URL : https://pypi.python.org/pypi/acme Summary : Python library for the ACME protocol Description : Python libraries implementing the Automatic Certificate Management Environment (ACME) protocol. It is used by the Let's Encrypt project. -------------------------------------------------------------------------------- Update Information: * Update to 0.14.1 * Tweaks to the renew timer (bz#1444814 bz#1441846) * New nginx plugin added **NOTE** The behaviour of hooks has changed with this build, please review /etc/sysconfig/certbot for details if making use of hooks. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1441846 - Improvements to timer randomization https://bugzilla.redhat.com/show_bug.cgi?id=1441846 [ 2 ] Bug #1448431 - python-certbot-apache-0.14.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1448431 [ 3 ] Bug #1448423 - python-acme-0.14.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1448423 [ 4 ] Bug #1444814 - certbot: error: argument --pre-hook: expected one argument https://bugzilla.redhat.com/show_bug.cgi?id=1444814 [ 5 ] Bug #1448430 - certbot-0.14.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1448430 [ 6 ] Bug #1444397 - Review Request: python-certbot-nginx - nginx plugin to automatically configure certificate via certbot https://bugzilla.redhat.com/show_bug.cgi?id=1444397 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade python-acme' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

6 years, 11 months

1
0
0 / 0

Fedora 24 Update: engrampa-1.16.1-1.fc24

by updates＠fedoraproject.org

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2017-4f129713fe 2017-05-29 06:02:24.452859 -------------------------------------------------------------------------------- Name : engrampa Product : Fedora 24 Version : 1.16.1 Release : 1.fc24 URL : http://mate-desktop.org Summary : MATE Desktop file archiver Description : Mate File Archiver is an application for creating and viewing archives files, such as zip, xv, bzip2, cab, rar and other compress formats. -------------------------------------------------------------------------------- Update Information: update to 1.16.1 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1422004 - Wrong behavior of Skip button in Replace file dialog https://bugzilla.redhat.com/show_bug.cgi?id=1422004 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade engrampa' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

6 years, 11 months

1
0
0 / 0

Fedora 24 Update: kio-gdrive-1.1.2-1.fc24

by updates＠fedoraproject.org

-------------------------------------------------------------------------------- Fedora Update Notification FEDORA-2017-e0d112fc42 2017-05-29 06:02:24.452811 -------------------------------------------------------------------------------- Name : kio-gdrive Product : Fedora 24 Version : 1.1.2 Release : 1.fc24 URL : https://community.kde.org/KIO_GDrive Summary : An Google Drive KIO slave for KDE Description : Provides KIO Access to Google Drive using the gdrive:/// protocol. -------------------------------------------------------------------------------- Update Information: Updated translations - v1.1.2 -------------------------------------------------------------------------------- This update can be installed with the "dnf" update program. Use su -c 'dnf upgrade kio-gdrive' at the command line. For more information, refer to the dnf documentation available at http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label All packages are signed with the Fedora Project GPG key. More details on the GPG keys used by the Fedora Project can be found at https://fedoraproject.org/keys --------------------------------------------------------------------------------

6 years, 11 months

1
0
0 / 0

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

package-announce May 2017