Fedora 26 Update: python-rpmfluff-0.5.3-1.fc26
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2017-a3f3a19d39
2018-03-06 17:26:39.508452
--------------------------------------------------------------------------------
Name : python-rpmfluff
Product : Fedora 26
Version : 0.5.3
Release : 1.fc26
URL : https://pagure.io/rpmfluff
Summary : Lightweight way of building RPMs, and sabotaging them
Description :
rpmfluff provides a python library for building RPM packages, and
sabotaging them so they are broken in controlled ways.
It is intended for use when validating package analysis tools such as RPM lint.
It can also be used to construct test cases for package management software
such as rpm and yum.
--------------------------------------------------------------------------------
Update Information:
Support mixing noarch and archful packages in a yum repo build by Dan Callaghan
<dcallagh(a)redhat.com>
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade python-rpmfluff' at the command line.
For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
6 years, 1 month
[SECURITY] Fedora 27 Update: dhcp-4.3.6-9.fc27
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2018-5051dbd15e
2018-03-05 19:28:02.885900
--------------------------------------------------------------------------------
Name : dhcp
Product : Fedora 27
Version : 4.3.6
Release : 9.fc27
URL : http://isc.org/products/DHCP/
Summary : Dynamic host configuration protocol software
Description :
DHCP (Dynamic Host Configuration Protocol)
--------------------------------------------------------------------------------
Update Information:
Security fix for CVE-2018-5732 CVE-2018-5733
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1549960 - CVE-2018-5732 dhcp: Buffer overflow in dhclient possibly allowing code execution triggered by malicious server
https://bugzilla.redhat.com/show_bug.cgi?id=1549960
[ 2 ] Bug #1549961 - CVE-2018-5733 dhcp: Reference count overflow in dhcpd allows denial of service
https://bugzilla.redhat.com/show_bug.cgi?id=1549961
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade dhcp' at the command line.
For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
6 years, 1 month
Fedora 26 Update: getdns-1.4.0-1.fc26
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2018-17f2e9a2d1
2018-03-02 18:23:59.825143
--------------------------------------------------------------------------------
Name : getdns
Product : Fedora 26
Version : 1.4.0
Release : 1.fc26
URL : http://www.getdnsapi.net
Summary : Modern asynchronous API to the DNS
Description :
getdns is a modern asynchronous DNS API. It implements DNS entry points
from a design developed and vetted by application developers, in an API
specification edited by Paul Hoffman. With the development of this API,
we intend to offer application developers a modernized and flexible way
to access DNS security (DNSSEC) and other powerful new DNS features; a
particular hope is to inspire application developers towards innovative
security solutions in their applications.
--------------------------------------------------------------------------------
Update Information:
Updated to 1.4.0 (which includes previous patch)
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade getdns' at the command line.
For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
6 years, 1 month
Fedora 26 Update: wine-3.2-2.fc26
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2018-e1d1b6df3c
2018-03-02 18:23:59.825123
--------------------------------------------------------------------------------
Name : wine
Product : Fedora 26
Version : 3.2
Release : 2.fc26
URL : http://www.winehq.org/
Summary : A compatibility layer for windows applications
Description :
Wine as a compatibility layer for UNIX to run Windows applications. This
package includes a program loader, which allows unmodified Windows
3.x/9x/NT binaries to run on x86 and x86_64 Unixes. Wine can use native system
.dll files if they are available.
In Fedora wine is a meta-package which will install everything needed for wine
to work smoothly. Smaller setups can be achieved by installing some of the
wine-* sub packages.
--------------------------------------------------------------------------------
Update Information:
- Separate implementation of USER controls for ComCtl32 v6. - Multisample
texture support in Direct3D. - Support for HID gamepads. - More event support in
MSHTML. - Obsolete DOS code removed. - Various bug fixes.
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade wine' at the command line.
For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
6 years, 1 month
Fedora 26 Update: tideEditor-1.4.4-1.fc26
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2018-1e873307ae
2018-03-02 18:23:59.825103
--------------------------------------------------------------------------------
Name : tideEditor
Product : Fedora 26
Version : 1.4.4
Release : 1.fc26
URL : http://www.flaterco.com/xtide/
Summary : Editor for Tide Constituent Database (TCD) files
Description :
tideEditor is an editor for Tide Constituent Database (TCD) files. It
was written by Jan C. Depner but is now jointly maintained by David
Flater and Jan Depner.
--------------------------------------------------------------------------------
Update Information:
New version 1.4.4 is released.
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade tideEditor' at the command line.
For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
6 years, 1 month
Fedora 26 Update: rubygem-gobject-introspection-3.2.1-5.fc26
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2018-c74e165a34
2018-03-02 18:23:59.825082
--------------------------------------------------------------------------------
Name : rubygem-gobject-introspection
Product : Fedora 26
Version : 3.2.1
Release : 5.fc26
URL : http://ruby-gnome2.sourceforge.jp/
Summary : Ruby binding of GObjectIntrospection
Description :
Ruby/GObjectIntrospection is a Ruby binding of
GObjectIntrospection.
--------------------------------------------------------------------------------
Update Information:
This rpm fixes some integer overflow on 32bit, which was firstly reported for
ruby gstreamer.
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade rubygem-gobject-introspection' at the command line.
For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
6 years, 1 month
Fedora 26 Update: lxpanel-0.9.3-4.D20180109git2ddf8dfc.fc26
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2018-6fe397a796
2018-03-02 18:23:59.825034
--------------------------------------------------------------------------------
Name : lxpanel
Product : Fedora 26
Version : 0.9.3
Release : 4.D20180109git2ddf8dfc.fc26
URL : http://lxde.org/
Summary : A lightweight X11 desktop panel
Description :
lxpanel is a lightweight X11 desktop panel. It works with any ICCCM / NETWM
compliant window manager (eg sawfish, metacity, xfwm4, kwin) and features a
tasklist, pager, launchbar, clock, menu and sytray.
--------------------------------------------------------------------------------
Update Information:
Monitors plugin may crash when once cleaning up color entry, or copy / pasting
color value from somewhere else. This new rpm will fix such crash issue. ----
This new lxpanel fixes some issues with multiscreen environment.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1544406 - [abrt] lxpanel: strncmp(): lxpanel killed by SIGSEGV
https://bugzilla.redhat.com/show_bug.cgi?id=1544406
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade lxpanel' at the command line.
For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
6 years, 1 month
[SECURITY] Fedora 27 Update: ruby-2.4.3-87.fc27
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2018-40ed78700c
2018-03-02 16:23:59.092551
--------------------------------------------------------------------------------
Name : ruby
Product : Fedora 27
Version : 2.4.3
Release : 87.fc27
URL : http://ruby-lang.org/
Summary : An interpreter of object-oriented scripting language
Description :
Ruby is the interpreted scripting language for quick and easy
object-oriented programming. It has many features to process text
files and to do system management tasks (as in Perl). It is simple,
straight-forward, and extensible.
--------------------------------------------------------------------------------
Update Information:
Fix: Multiple vulnerabilities in RubyGems https://www.ruby-
lang.org/en/news/2018/02/17/multiple-vulnerabilities-in-rubygems/
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1547431 - CVE-2018-1000073 CVE-2018-1000074 CVE-2018-1000075 CVE-2018-1000076 CVE-2018-1000077 CVE-2018-1000078 CVE-2018-1000079 rubygems: various flaws [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1547431
[ 2 ] Bug #1528226 - CVE-2017-17790 ruby: Command injection in lib/resolv.rb:lazy_initialize() allows arbitrary code execution [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1528226
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade ruby' at the command line.
For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
6 years, 1 month
Fedora 27 Update: getdns-1.4.0-1.fc27
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2018-151c3dcb68
2018-03-02 16:23:59.092531
--------------------------------------------------------------------------------
Name : getdns
Product : Fedora 27
Version : 1.4.0
Release : 1.fc27
URL : http://www.getdnsapi.net
Summary : Modern asynchronous API to the DNS
Description :
getdns is a modern asynchronous DNS API. It implements DNS entry points
from a design developed and vetted by application developers, in an API
specification edited by Paul Hoffman. With the development of this API,
we intend to offer application developers a modernized and flexible way
to access DNS security (DNSSEC) and other powerful new DNS features; a
particular hope is to inspire application developers towards innovative
security solutions in their applications.
--------------------------------------------------------------------------------
Update Information:
Updated to 1.4.0 (which includes previous patch)
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade getdns' at the command line.
For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
6 years, 1 month
Fedora 27 Update: pki-core-10.5.6-2.fc27
by updates@fedoraproject.org
--------------------------------------------------------------------------------
Fedora Update Notification
FEDORA-2018-358fb13ff1
2018-03-02 16:23:59.092507
--------------------------------------------------------------------------------
Name : pki-core
Product : Fedora 27
Version : 10.5.6
Release : 2.fc27
URL : http://pki.fedoraproject.org/
Summary : Certificate System - PKI Core Components
Description :
==================================
|| ABOUT "CERTIFICATE SYSTEM" ||
==================================
Certificate System (CS) is an enterprise software system designed
to manage enterprise Public Key Infrastructure (PKI) deployments.
PKI Core contains ALL top-level java-based Tomcat PKI components:
* pki-symkey
* pki-base
* pki-base-python2 (alias for pki-base)
* pki-base-python3
* pki-base-java
* pki-tools
* pki-server
* pki-ca
* pki-kra
* pki-ocsp
* pki-tks
* pki-tps
* pki-javadoc
which comprise the following corresponding PKI subsystems:
* Certificate Authority (CA)
* Key Recovery Authority (KRA)
* Online Certificate Status Protocol (OCSP) Manager
* Token Key Service (TKS)
* Token Processing Service (TPS)
Python clients need only install the pki-base package. This
package contains the python REST client packages and the client
upgrade framework.
Java clients should install the pki-base-java package. This package
contains the legacy and REST Java client packages. These clients
should also consider installing the pki-tools package, which contain
native and Java-based PKI tools and utilities.
Certificate Server instances require the fundamental classes and
modules in pki-base and pki-base-java, as well as the utilities in
pki-tools. The main server classes are in pki-server, with subsystem
specific Java classes and resources in pki-ca, pki-kra, pki-ocsp etc.
Finally, if Certificate System is being deployed as an individual or
set of standalone rather than embedded server(s)/service(s), it is
strongly recommended (though not explicitly required) to include at
least one PKI Theme package:
* dogtag-pki-theme (Dogtag Certificate System deployments)
* dogtag-pki-server-theme
* redhat-pki-server-theme (Red Hat Certificate System deployments)
* redhat-pki-server-theme
* customized pki theme (Customized Certificate System deployments)
* <customized>-pki-server-theme
NOTE: As a convenience for standalone deployments, top-level meta
packages may be provided which bind a particular theme to
these certificate server packages.
--------------------------------------------------------------------------------
Update Information:
Resolves: dogtagpki Pagure Issue #2946 ---- Resolves: rhbz
#1445532,1532867,1540687 ---- Resolves: dogtagpki Pagure Issue
#2656,2838,2844,2855,2878,2880,2889,2901,2909,2916,2920,2921 ---- dogtagpki
Pagure Issue #2557,2604,2661,2835,2870,2872,2873,2887,2889,2904,2910,2911 ----
Resolves: dogtagpki Pagure Issue #2735,2856,2861,2862,2874 ---- Re-base
Dogtag to 10.5.2
--------------------------------------------------------------------------------
This update can be installed with the "dnf" update program. Use
su -c 'dnf upgrade pki-core' at the command line.
For more information, refer to the dnf documentation available at
http://dnf.readthedocs.io/en/latest/command_ref.html#upgrade-command-label
All packages are signed with the Fedora Project GPG key. More details on the
GPG keys used by the Fedora Project can be found at
https://fedoraproject.org/keys
--------------------------------------------------------------------------------
6 years, 1 month