--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2018-79db828bff
2018-01-31 21:56:56.444273
--------------------------------------------------------------------------------
Name : firefox
Product : Fedora 27
Version : 58.0.1
Release : 1.fc27
URL : https://www.mozilla.org/firefox/
Summary : Mozilla Firefox Web browser
Description :
Mozilla Firefox is an open-source web browser, designed for standards
compliance, performance and portability.
--------------------------------------------------------------------------------
Update Information:
Security update to the latest Firefox package (58.0.1)
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade firefox' at the command line.
For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2018-e7e73bb28d
2018-01-31 21:56:56.444251
--------------------------------------------------------------------------------
Name : qupzilla
Product : Fedora 27
Version : 2.2.5
Release : 1.fc27
URL : http://www.qupzilla.com/
Summary : Modern web browser
Description :
QupZilla is a modern web browser based on QtWebEngine (which is itself based on
the Chromium core, i.e., Blink) and the Qt framework. It is designed to be
lightweight and fast and offers advanced functions such as
- an integrated advertisement blocker,
- a search engine manager,
- a SSL certificate manager,
- speed dial
- theming support, and
- seamless integration into your desktop environment.
--------------------------------------------------------------------------------
Update Information:
An update of QupZilla to the latest upstream release, version 2.2.5. New in
QupZilla 2.2.4: * added option to disable search suggestions from locationbar *
added support for detaching and moving tabs to other windows with drag&drop *
added support for dropping text/url on tabbar to create new tabs * added support
for GreaseMonkey 4.0 API in userscripts * added support for customizing
navigation bar layout and widgets * added support for loading userChrome.css
stylesheet from profile to configure interface * added new buttons to navigation
bar: Tools, Downloads, GreaseMonkey and AdBlock * added new Windows theme and
improve every other theme * added support for printing from JavaScript with
window.print() * closed windows can now be restored using history menu or
Ctrl+Shit+N shortcut * multiple windows in session now each restore its
geometry, state and settings * number of fixes and improvements in tabbar *
greatly improved compatibility with various GreaseMonkey userscripts * updated
design for SpeedDial * fix infinite loading animation on some sites with
QtWebEngine 5.10 * fix restoring maximized state after leaving fullscreen * fix
internal pages not working when JavaScript is disabled * fix showing close
button in Web Inspector * fix tabs not being restored when activated in some
cases * fix loading "localhost" from locationbar * fix applying web settings
when in private mode New in QupZilla 2.2.5: * added Unload Tab action * added
search engine buttons to locationbar completer * added option to disable
automatic password completion on sites * plugins are now always enabled (fixes
missing AdBlock) * bring back AdBlock and GreaseMonkey icons in statusbar + add
new buttons * fix incorrect size of buttons in bookmarks toolbar with some
styles * fix losing session when loading newer profile with old application
version * fix temporariliy enabling/disabling JavaScript using StatusBarIcons
plugin * fix user agent settings not being applied on startup * fix calculating
remaining time in download manager See also http://blog.qupzilla.com/2018/01
/whats-new-in-qupzilla-224.html
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade qupzilla' at the command line.
For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2018-77221a1e52
2018-01-31 21:56:56.444222
--------------------------------------------------------------------------------
Name : libdigidocpp
Product : Fedora 27
Version : 3.13.2
Release : 1.fc27
URL : https://github.com/open-eid/libdigidocpp
Summary : Library offers creating, signing and verification of digitally signed documents
Description :
Libdigidocpp library offers creating, signing and verification of digitally
signed documents, according to XAdES and XML-DSIG standards. Documentation
http://open-eid.github.io/libdigidocpp
--------------------------------------------------------------------------------
Update Information:
3.13 release
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade libdigidocpp' at the command line.
For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2018-c587c0a62d
2018-01-31 21:56:56.444197
--------------------------------------------------------------------------------
Name : moodle
Product : Fedora 27
Version : 3.3.4
Release : 1.fc27
URL : http://moodle.org/
Summary : A Course Management System
Description :
Moodle is a course management system (CMS) - a free, Open Source software
package designed using sound pedagogical principles, to help educators create
effective online learning communities.
--------------------------------------------------------------------------------
Update Information:
CVE-2018-1042/CVE-2018-1043/CVE-2018-1044/CVE-2018-1045 fixes.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1537469 - CVE-2018-1042 CVE-2018-1043 CVE-2018-1044 CVE-2018-1045 moodle: Four security issues fixed in the latest release [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1537469
[ 2 ] Bug #1537470 - CVE-2018-1042 CVE-2018-1043 CVE-2018-1044 CVE-2018-1045 moodle: Four security issues fixed in the latest release [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1537470
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade moodle' at the command line.
For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2018-19b6223bdc
2018-01-31 21:56:56.444129
--------------------------------------------------------------------------------
Name : unboundid-ldapsdk
Product : Fedora 27
Version : 4.0.4
Release : 1.fc27
URL : https://www.ldap.com/unboundid-ldap-sdk-for-java
Summary : UnboundID LDAP SDK for Java
Description :
The UnboundID LDAP SDK for Java is a fast, powerful, user-friendly, and
completely free Java library for communicating with LDAP directory servers and
performing related tasks like reading and writing LDIF, encoding and
decoding data using base64 and ASN.1 BER, and performing secure communication.
--------------------------------------------------------------------------------
Update Information:
See release notes at https://github.com/pingidentity/ldapsdk/releases/tag/4.0.4
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1537503 - unboundid-ldapsdk-4.0.4 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1537503
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade unboundid-ldapsdk' at the command line.
For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2018-ee4279408d
2018-01-31 21:56:56.444107
--------------------------------------------------------------------------------
Name : darktable
Product : Fedora 27
Version : 2.4.1
Release : 1.fc27
URL : http://www.darktable.org/
Summary : Utility to organize and develop raw images
Description :
Darktable is a virtual light-table and darkroom for photographers:
it manages your digital negatives in a database and lets you view them
through a zoom-able light-table.
It also enables you to develop raw images and enhance them.
--------------------------------------------------------------------------------
Update Information:
2.4.1 release
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade darktable' at the command line.
For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2018-7c03d6eef6
2018-01-31 21:56:56.444085
--------------------------------------------------------------------------------
Name : xca
Product : Fedora 27
Version : 1.4.0
Release : 1.fc27
URL : https://sourceforge.net/projects/xca/
Summary : Graphical X.509 certificate management tool
Description :
X Certificate and Key management is a graphic interface for managing
asymmetric keys like RSA or DSA, certificates and revocation lists. It is
intended as a small CA for creation and signing certificates. It uses the
OpenSSL library for the cryptographic operations.
Certificate signing requests (PKCS#10), certificates (X509v3), the signing
of requests, the creation of self-signed certificates, certificate revocation
lists and SmartCards are supported. For an easy company-wide use, customizable
templates can be used for certificate and request generation. The PKI structures
can be imported and exported in several formats like PKCS#7, PKCS#12, PEM,
DER, PKCS#8. All cryptographic data are stored in a byte order agnostic file
format, portable across operating systems.
--------------------------------------------------------------------------------
Update Information:
New upstream release. Use qt5. Remove obsolete rpm scriptlets.
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade xca' at the command line.
For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2018-84e90236f3
2018-01-31 21:56:56.444063
--------------------------------------------------------------------------------
Name : python-psutil
Product : Fedora 27
Version : 5.4.3
Release : 2.fc27
URL : https://github.com/giampaolo/psutil
Summary : A process and system utilities module for Python
Description :
psutil is a module providing an interface for retrieving information on all
running processes and system utilization (CPU, memory, disks, network, users) in
a portable way by using Python, implementing many functionalities offered by
command line tools such as: ps, top, df, kill, free, lsof, free, netstat,
ifconfig, nice, ionice, iostat, iotop, uptime, pidof, tty, who, taskset, pmap.
--------------------------------------------------------------------------------
Update Information:
Update python-psutil for mypy.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1487622 - python-psutil-5.4.3 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1487622
[ 2 ] Bug #1534333 - Missing dependency for mypy on psutil
https://bugzilla.redhat.com/show_bug.cgi?id=1534333
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade python-psutil' at the command line.
For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2018-84e90236f3
2018-01-31 21:56:56.444063
--------------------------------------------------------------------------------
Name : python3-mypy
Product : Fedora 27
Version : 0.560
Release : 2.fc27
URL : https://github.com/python/mypy
Summary : A static type checker for Python
Description :
Mypy is an optional static type checker for Python. You can add type
hints to your Python programs using the upcoming standard for type
annotations introduced in Python 3.5 beta 1 (PEP 484), and use mypy to
type check them statically. Find bugs in your programs without even
running them!
--------------------------------------------------------------------------------
Update Information:
Update python-psutil for mypy.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1487622 - python-psutil-5.4.3 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1487622
[ 2 ] Bug #1534333 - Missing dependency for mypy on psutil
https://bugzilla.redhat.com/show_bug.cgi?id=1534333
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade python3-mypy' at the command line.
For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2018-7c61d08c4f
2018-01-31 21:56:56.444040
--------------------------------------------------------------------------------
Name : GraphicsMagick
Product : Fedora 27
Version : 1.3.28
Release : 1.fc27
URL : http://www.graphicsmagick.org/
Summary : An ImageMagick fork, offering faster image generation and better quality
Description :
GraphicsMagick is a comprehensive image processing package which is initially
based on ImageMagick 5.5.2, but which has undergone significant re-work by
the GraphicsMagick Group to significantly improve the quality and performance
of the software.
--------------------------------------------------------------------------------
Update Information:
Latest stable release, includes many bug and security fixes. See also
http://www.graphicsmagick.org/NEWS.html#january-20-2017
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1536950 - GraphicsMagick: 2018-5685 GraphicsMagick: Infinite loop and application hang in coders/bmp.c:ReadBMPImage [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1536950
[ 2 ] Bug #1529579 - CVE-2017-17912 GraphicsMagick: GraphicsMagick: heap-based buffer over-read in ReadNewsProfile in coders/tiff.c [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1529579
[ 3 ] Bug #1529558 - CVE-2017-17913 GraphicsMagick: stack-based buffer over-read in WriteWEBPImage in coders/webp.c [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1529558
[ 4 ] Bug #1529536 - CVE-2017-17915 GraphicsMagick: Memory leak in the function ReadMNGImage in coders/png.c [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1529536
[ 5 ] Bug #1528050 - CVE-2017-17783 GraphicsMagick: heap based buffer over-read in ReadPALMImage in coders/palm.c [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1528050
[ 6 ] Bug #1528038 - CVE-2017-17782 GraphicsMagick: heap-based buffer over-read in ReadOneJNGImage function in coders/png.c [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1528038
[ 7 ] Bug #1515317 - CVE-2017-16353 GraphicsMagick: ImageMagick, GraphicsMagick: memory information disclosure in DescribeImage function in magick/describe.c [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1515317
[ 8 ] Bug #1512039 - CVE-2017-16669 GraphicsMagick: Heap buffer over-write in AcquireCacheNexus function in magick/pixel_cache.c [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1512039
[ 9 ] Bug #1484484 - CVE-2017-13147 GraphicsMagick: Allocation failure in ReadMNGImage function in coders/png.c [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1484484
[ 10 ] Bug #1475499 - CVE-2017-11643 GraphicsMagick: Heap based over-write in WriteCMYKImagefunction in coders/cmyk.c [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1475499
[ 11 ] Bug #1475491 - CVE-2017-11641 GraphicsMagick: Memory Leak in the PersistCache in magick/pixel_cache.c [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1475491
[ 12 ] Bug #1475457 - CVE-2017-11636 GraphicsMagick: Heap based buffer over-write in WriteRGBImage in coders/rgb.c [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1475457
[ 13 ] Bug #1475453 - CVE-2017-11637 GraphicsMagick: NULL pointer dereference in WritePCLImage() in coders/pcl.c [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1475453
[ 14 ] Bug #1473751 - CVE-2017-11140 GraphicsMagick: Resource exhaustion denial of service in ReadJPEGImage function [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1473751
[ 15 ] Bug #1473745 - CVE-2017-11139 GraphicsMagick: double free vulnerabilities in the ReadOneJNGImage() function in coders/png.c [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1473745
[ 16 ] Bug #1473730 - CVE-2017-11102 GraphicsMagick: Input validation failure in ReadOneJNGImage function may cause denial of service [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1473730
[ 17 ] Bug #1536770 - GraphicsMagick-1.3.28 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1536770
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade GraphicsMagick' at the command line.
For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------