[SECURITY] Fedora 26 Update: kf5-messagelib-17.04.1-2.fc26
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2017-4d03055306
2017-06-26 19:08:28.704780
--------------------------------------------------------------------------------
Name : kf5-messagelib
Product : Fedora 26
Version : 17.04.1
Release : 2.fc26
URL : https://cgit.kde.org/messagelib.git/
Summary : KDE Message libraries
Description :
KDE Message libraries.
--------------------------------------------------------------------------------
Update Information:
Security fix for CVE-2017-9604
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1461757 - CVE-2017-9604 kf5-messagelib: kmail: Send Later with Delay bypasses OpenPGP [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1461757
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade kf5-messagelib' at the command line.
For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
7 years
[SECURITY] Fedora 26 Update: kmail-17.04.1-3.fc26
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2017-63fbea2273
2017-06-26 19:08:28.704698
--------------------------------------------------------------------------------
Name : kmail
Product : Fedora 26
Version : 17.04.1
Release : 3.fc26
URL : https://www.kde.org/applications/internet/kmail
Summary : Mail client
Description :
Mail client.
--------------------------------------------------------------------------------
Update Information:
CVE-2017-9604 kmail: Send Later with Delay bypasses OpenPGP
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1461760 - CVE-2017-9604 kmail: Send Later with Delay bypasses OpenPGP [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1461760
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade kmail' at the command line.
For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
7 years
Fedora 26 Update: AcetoneISO-6.7-21.fc26
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2017-5183f44c03
2017-06-26 19:08:28.704659
--------------------------------------------------------------------------------
Name : AcetoneISO
Product : Fedora 26
Version : 6.7
Release : 21.fc26
URL : http://www.acetoneteam.org/
Summary : CD/DVD Image Manipulator
Description :
AcetoneISO: The CD/DVD image manipulator for Linux, it can do the following:
- Mount and Unmount ISO, MDF, NRG (if iso-9660 standard)
- Convert / Extract / Browse to ISO : *.bin *.mdf *.nrg *.img *.daa *.cdi
*.xbx *.b5i *.bwi *.pdi
- Play a DVD Movie ISO with most used media players
- Generate an ISO from a Folder or CD/DVD
- Generate MD5 file of an image
- Encrypt an image
- Split image into X megabyte chunks
- Highly compress an image
- Rip a PSX cd to *.bin to make it work with epsxe/psx emulators
- Service-Menu support for Konqueror
- Restore a lost CUE file of *.bin *.img
--------------------------------------------------------------------------------
Update Information:
Disable builds on all powerpc variants, due to lack of konqueror. ---- No
konqueror on ppc/ppc64, disable builds for that arch accordingly.
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade AcetoneISO' at the command line.
For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
7 years
Fedora 26 Update: perl-Debug-Client-0.30-1.fc26
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2017-6c8a81d63c
2017-06-26 19:08:28.704622
--------------------------------------------------------------------------------
Name : perl-Debug-Client
Product : Fedora 26
Version : 0.30
Release : 1.fc26
URL : http://search.cpan.org/dist/Debug-Client/
Summary : Client side code for perl debugger
Description :
Client side module for debugging. This module is part of padre's debugger.
--------------------------------------------------------------------------------
Update Information:
Updated to the latest version
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1462719 - perl-Debug-Client-0.30 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1462719
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade perl-Debug-Client' at the command line.
For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
7 years
Fedora 26 Update: python-latexcodec-1.0.5-1.fc26
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2017-a3e783c781
2017-06-26 19:08:28.704583
--------------------------------------------------------------------------------
Name : python-latexcodec
Product : Fedora 26
Version : 1.0.5
Release : 1.fc26
URL : https://github.com/mcmtroffaes/latexcodec/
Summary : Lexer and codec to work with LaTeX code in Python
Description :
This package contains a lexer and codec to work with LaTeX code in Python.
--------------------------------------------------------------------------------
Update Information:
Changes in version 1.0.5: - More maths symbols (naturals, reals, ...). - Fix
lower case z with accents (reported by AndrewSwann, see issue #51).
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1462201 - python-latexcodec-1.0.5 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1462201
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade python-latexcodec' at the command line.
For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
7 years
[SECURITY] Fedora 26 Update: chromium-native_client-59.0.3071.86-1.20170607gitaac1de2.fc26
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2017-c11d7ef69a
2017-06-26 19:08:28.704542
--------------------------------------------------------------------------------
Name : chromium-native_client
Product : Fedora 26
Version : 59.0.3071.86
Release : 1.20170607gitaac1de2.fc26
URL : http://src.chromium.org/viewvc/native_client/
Summary : Google Native Client Toolchain
Description :
Google's "pnacl" toolchain for native client support in Chromium. Depends on
their older "nacl" toolchain, packaged separately.
--------------------------------------------------------------------------------
Update Information:
Chromium 59. Add smaller logo files. Fix lots of security bugs: Security fix for
CVE-2017-5070, CVE-2017-5071, CVE-2017-5072, CVE-2017-5073, CVE-2017-5074,
CVE-2017-5075, CVE-2017-5086, CVE-2017-5076, CVE-2017-5077, CVE-2017-5078,
CVE-2017-5079, CVE-2017-5080, CVE-2017-5081, CVE-2017-5082, CVE-2017-5083,
CVE-2017-5085
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1459037 - CVE-2017-5085 chromium-browser: inappropriate javascript execution on webui pages
https://bugzilla.redhat.com/show_bug.cgi?id=1459037
[ 2 ] Bug #1459036 - CVE-2017-5083 chromium-browser: ui spoofing in blink
https://bugzilla.redhat.com/show_bug.cgi?id=1459036
[ 3 ] Bug #1459035 - CVE-2017-5082 chromium-browser: insufficient hardening in credit card editor
https://bugzilla.redhat.com/show_bug.cgi?id=1459035
[ 4 ] Bug #1459034 - CVE-2017-5081 chromium-browser: extension verification bypass
https://bugzilla.redhat.com/show_bug.cgi?id=1459034
[ 5 ] Bug #1459033 - CVE-2017-5080 chromium-browser: use after free in credit card autofill
https://bugzilla.redhat.com/show_bug.cgi?id=1459033
[ 6 ] Bug #1459032 - CVE-2017-5079 chromium-browser: ui spoofing in blink
https://bugzilla.redhat.com/show_bug.cgi?id=1459032
[ 7 ] Bug #1459031 - CVE-2017-5078 chromium-browser: possible command injection in mailto handling
https://bugzilla.redhat.com/show_bug.cgi?id=1459031
[ 8 ] Bug #1459030 - CVE-2017-5077 chromium-browser: heap buffer overflow in skia
https://bugzilla.redhat.com/show_bug.cgi?id=1459030
[ 9 ] Bug #1459029 - CVE-2017-5076 chromium-browser: address spoofing in omnibox
https://bugzilla.redhat.com/show_bug.cgi?id=1459029
[ 10 ] Bug #1459028 - CVE-2017-5086 chromium-browser: address spoofing in omnibox
https://bugzilla.redhat.com/show_bug.cgi?id=1459028
[ 11 ] Bug #1459027 - CVE-2017-5075 chromium-browser: information leak in csp reporting
https://bugzilla.redhat.com/show_bug.cgi?id=1459027
[ 12 ] Bug #1459025 - CVE-2017-5074 chromium-browser: use after free in apps bluetooth
https://bugzilla.redhat.com/show_bug.cgi?id=1459025
[ 13 ] Bug #1459024 - CVE-2017-5073 chromium-browser: use after free in print preview
https://bugzilla.redhat.com/show_bug.cgi?id=1459024
[ 14 ] Bug #1459023 - CVE-2017-5072 chromium-browser: address spoofing in omnibox
https://bugzilla.redhat.com/show_bug.cgi?id=1459023
[ 15 ] Bug #1459022 - CVE-2017-5071 chromium-browser: out of bounds read in v8
https://bugzilla.redhat.com/show_bug.cgi?id=1459022
[ 16 ] Bug #1459021 - CVE-2017-5070 chromium-browser: type confusion in v8
https://bugzilla.redhat.com/show_bug.cgi?id=1459021
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade chromium-native_client' at the command line.
For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
7 years
Fedora 26 Update: golang-github-hashicorp-go-sockaddr-0-0.2.gitaf174a6.fc26
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2017-a9f013e731
2017-06-26 19:08:28.704494
--------------------------------------------------------------------------------
Name : golang-github-hashicorp-go-sockaddr
Product : Fedora 26
Version : 0
Release : 0.2.gitaf174a6.fc26
URL : https://github.com/hashicorp/go-sockaddr
Summary : IP Address/UNIX Socket convenience functions for Go
Description :
IP Address/UNIX Socket convenience functions for Go
--------------------------------------------------------------------------------
Update Information:
Remove cyclic dep
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1410393 - Review Request: golang-github-hashicorp-go-sockaddr - IP Address/UNIX Socket convenience functions for Go
https://bugzilla.redhat.com/show_bug.cgi?id=1410393
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade golang-github-hashicorp-go-sockaddr' at the command line.
For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
7 years
Fedora 26 Update: convmv-2.01-1.fc26
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2017-2131940cac
2017-06-26 19:08:28.704390
--------------------------------------------------------------------------------
Name : convmv
Product : Fedora 26
Version : 2.01
Release : 1.fc26
URL : http://j3e.de/linux/convmv
Summary : Convert filename encodings
Description :
This package contains the tool convmv with which you can convert the encodings
of filenames, e.g. from Latin1 to UTF-8.
--------------------------------------------------------------------------------
Update Information:
map : instead of / in SFU mapping tables
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade convmv' at the command line.
For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
7 years
Fedora 24 Update: python-argh-0.26.1-5.fc24
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2017-c4ae888be4
2017-06-26 01:23:28.906877
--------------------------------------------------------------------------------
Name : python-argh
Product : Fedora 24
Version : 0.26.1
Release : 5.fc24
URL : https://pypi.python.org/pypi/argh
Summary : Unobtrusive argparse wrapper with natural syntax
Description :
Building a command-line interface? Found yourself uttering ���argh!���
while struggling with the API of argparse? Don���t want to lose its
power but don���t need the complexity?
python-argh provides a wrapper for argparse. Argparse is a very powerful
tool; python-argh just makes it easy to use.
--------------------------------------------------------------------------------
Update Information:
* Adapt spec-file to recent guidelines * Initial build for EPEL 7
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1181845 - Request for EPEL7 build of python-argh
https://bugzilla.redhat.com/show_bug.cgi?id=1181845
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade python-argh' at the command line.
For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
7 years
Fedora 24 Update: mint-y-icons-1.0.8-1.fc24
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2017-555de876e0
2017-06-26 01:23:28.906818
--------------------------------------------------------------------------------
Name : mint-y-icons
Product : Fedora 24
Version : 1.0.8
Release : 1.fc24
URL : http://linuxmint.com
Summary : The Mint-Y icon theme
Description :
The Mint-Y icon theme.
--------------------------------------------------------------------------------
Update Information:
* New upstream release
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1463454 - mint-y-icons-1.0.8 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1463454
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade mint-y-icons' at the command line.
For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
7 years