This came up in Fedora's most recent testing cycle, but the
failure mode was not reliably reproducable, and so did not
rise to the level of a blocker. I think I have some insight
It looks like there is a missing SELinux ruleset problem,
causing the hang ups in Firefox, but not all of them, for
reasons discussed below
https://bugzilla.redhat.com/show_bug.cgi?id=1473754
I see Adam in
https://bugzilla.redhat.com/show_bug.cgi?id=1439282#c20
but sadly his conclusion that it is normal, is not true, after
doing some tracing of stderr noise, and then looking for why
ICP processes were failing ... Selinux ;)
------------
Adam mentions a need for fedora-qa testing through SSH tunnels
and did so as root, which may have masked some of the noise --
I have a similar process for starting FF only through an ssh
tunnel, daily, but it is pretty paranoid and ssh's over to a
non-priv'd, and non container of information I would not want
to have exfiltrated
https://bugzilla.redhat.com/show_bug.cgi?id=1439429
yeah -- I know -- paranoid
--------
anyway one culprit is the upstream cutover by FF to
'electrolysis' and its new Inter-Process Communication model.
IPC is hard, and in this case SELinux is doing its job, as it
has not been told about a need to accomodate electrolysis yet
In digging down into the Mozilla development process, it
appears they are deploy A B testing, invisibly, and so this is
why the changes to the firefox settings:
about:config
browser.tabs.remote.autostart = false
browser.tabs.remote.autostart.2 = false
are NOT deterministically appearing -- FF developers have some
back end, which is invisible in non-developer mode, which
makes a selection process choosing if one is or is not in a
test pool, AND silently upstreaming 'telemetry' ;( That sounds
like exfiltration of data to me
perhaps I an not unjustifiably paranoid starting firefox in a
unpriv'd and no content containing 'sandbox'
-- Russ herrold
Hey folks! Heads up: there is a brief openQA outage at present while I
upgrade the production instance to Fedora 26. Staging was already
upgraded last week, so there shouldn't be any big problems. Thanks!
--
Adam Williamson
Fedora QA Community Monkey
IRC: adamw | Twitter: AdamW_Fedora | XMPP: adamw AT happyassassin . net
http://www.happyassassin.net
The following Fedora 26 Security updates need testing:
Age URL
104 https://bodhi.fedoraproject.org/updates/FEDORA-2017-1bf5a0ce01 python-XStatic-jquery-ui-1.12.0.1-2.fc26
43 https://bodhi.fedoraproject.org/updates/FEDORA-2017-2522df3526 nodejs-brace-expansion-1.1.7-1.fc26
8 https://bodhi.fedoraproject.org/updates/FEDORA-2017-661dddc462 groovy18-1.8.9-28.fc26
7 https://bodhi.fedoraproject.org/updates/FEDORA-2017-2afe501b36 heimdal-7.4.0-1.fc26
6 https://bodhi.fedoraproject.org/updates/FEDORA-2017-a40590256c glpi-9.1.5-1.fc26
6 https://bodhi.fedoraproject.org/updates/FEDORA-2017-690a2548ba openvswitch-2.7.1-2.fc26
6 https://bodhi.fedoraproject.org/updates/FEDORA-2017-bbb664e0a0 mingw-poppler-0.52.0-3.fc26
4 https://bodhi.fedoraproject.org/updates/FEDORA-2017-7c1621d2e8 nodejs-6.11.1-1.fc26
4 https://bodhi.fedoraproject.org/updates/FEDORA-2017-05888dd4fe phpldapadmin-1.2.3-10.fc26
4 https://bodhi.fedoraproject.org/updates/FEDORA-2017-0642394b5a minicom-2.7.1-1.fc26
4 https://bodhi.fedoraproject.org/updates/FEDORA-2017-088b16a69a yara-3.6.3-1.fc26
3 https://bodhi.fedoraproject.org/updates/FEDORA-2017-704c201dbb subversion-1.9.6-2.fc26
3 https://bodhi.fedoraproject.org/updates/FEDORA-2017-8f018a3d39 golang-1.8.3-2.fc26
3 https://bodhi.fedoraproject.org/updates/FEDORA-2017-3d5354d30f perl-XML-LibXML-2.0129-2.fc26
1 https://bodhi.fedoraproject.org/updates/FEDORA-2017-0d726dbed3 freeradius-3.0.15-1.fc26
1 https://bodhi.fedoraproject.org/updates/FEDORA-2017-4fcbd8a4c3 php-symfony-2.8.25-1.fc26
0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-0446b53fd8 GraphicsMagick-1.3.26-3.fc26
0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-cf36278519 librsvg2-2.40.18-1.fc26
0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-ee04231942 mingw-librsvg2-2.40.18-1.fc26
The following Fedora 26 Critical Path updates have yet to be approved:
Age URL
12 https://bodhi.fedoraproject.org/updates/FEDORA-2017-73370082fb garcon-0.6.1-1.fc26
8 https://bodhi.fedoraproject.org/updates/FEDORA-2017-654872eda8 lorax-26.9-1.fc26
7 https://bodhi.fedoraproject.org/updates/FEDORA-2017-f6b14e0e63 supermin-5.1.18-1.fc26
7 https://bodhi.fedoraproject.org/updates/FEDORA-2017-ad7e5c5657 libvirt-3.2.1-4.fc26
6 https://bodhi.fedoraproject.org/updates/FEDORA-2017-97c48d9a81 qemu-2.9.0-3.fc26
3 https://bodhi.fedoraproject.org/updates/FEDORA-2017-a695811465 pungi-4.1.17-1.fc26
1 https://bodhi.fedoraproject.org/updates/FEDORA-2017-4cacf8fe60 ca-certificates-2017.2.16-1.0.fc26
1 https://bodhi.fedoraproject.org/updates/FEDORA-2017-1b30bbf03d libinput-1.8.0-2.fc26
1 https://bodhi.fedoraproject.org/updates/FEDORA-2017-c78ab34ae6 gdk-pixbuf2-2.36.7-1.fc26
1 https://bodhi.fedoraproject.org/updates/FEDORA-2017-532ba1d4ab nautilus-3.24.2.1-1.fc26
1 https://bodhi.fedoraproject.org/updates/FEDORA-2017-79637b77e0 pango-1.40.7-1.fc26
1 https://bodhi.fedoraproject.org/updates/FEDORA-2017-7af9d6cfd4 orc-0.4.27-1.fc26
1 https://bodhi.fedoraproject.org/updates/FEDORA-2017-80e282c2e4 ostree-2017.8-3.fc26
1 https://bodhi.fedoraproject.org/updates/FEDORA-2017-0424f8f546 epiphany-3.24.3-1.fc26
1 https://bodhi.fedoraproject.org/updates/FEDORA-2017-244f799ac9 nspr-4.15.0-1.fc26 nss-3.31.0-1.1.fc26 nss-softokn-3.31.0-1.0.fc26 nss-util-3.31.0-1.0.fc26
0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-e44399d729 util-linux-2.30.1-1.fc26
0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-babb2fb19d authconfig-7.0.1-2.fc26
0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-65a320831f emacs-25.2-3.fc26
0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-cf36278519 librsvg2-2.40.18-1.fc26
0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-d9de901507 curl-7.53.1-8.fc26
0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-9b8727a5c1 libdrm-2.4.82-1.fc26
0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-010b355b70 mutter-3.24.4-1.fc26 gnome-shell-3.24.3-1.fc26 gnome-shell-extensions-3.24.3-1.fc26
0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-44ae5171a3 krb5-1.15.1-15.fc26
0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-27f2754e07 gvfs-1.32.1-2.fc26
0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-a1c17d3bbf bluez-5.46-1.fc26
0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-ceedc87e86 python3-3.6.2-1.fc26
0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-64455b107f gtk3-3.22.17-2.fc26
The following builds have been pushed to Fedora 26 updates-testing
GraphicsMagick-1.3.26-3.fc26
aime-8.20170718-1.fc26
arprec-2.2.19-2.fc26
authconfig-7.0.1-2.fc26
bluez-5.46-1.fc26
copr-dist-git-0.33-1.fc26
copr-frontend-1.116-1.fc26
curl-7.53.1-8.fc26
elementary-icon-theme-4.2.0-1.fc26
emacs-25.2-3.fc26
engauge-digitizer-10.1-1.fc26
erlang-rpm-macros-0.2.8-1.fc26
gnome-shell-3.24.3-1.fc26
gnome-shell-extensions-3.24.3-1.fc26
gtk3-3.22.17-2.fc26
gvfs-1.32.1-2.fc26
jdns-2.0.5-1.fc26
krb5-1.15.1-15.fc26
libdrm-2.4.82-1.fc26
liberasurecode-1.5.0-1.fc26
libreoffice-5.3.4.2-4.fc26
librsvg2-2.40.18-1.fc26
lv2-x42-plugins-0.3.0-0.1.20170428.fc26
mingw-librsvg2-2.40.18-1.fc26
mutter-3.24.4-1.fc26
nfs-ganesha-2.5.0-2.fc26
nrpe-3.2.0-3.fc26
nuvolaruntime-4.5.0-1.fc26
python-Lektor-3.0.1-1.fc26
python-blurb-1.0.0-1.post1.fc26
python-enchant-1.6.10-1.fc26
python-flit-0.11.1-1.fc26
python3-3.6.2-1.fc26
rubygem-occi-api-4.3.13-1.fc26
rubygem-rack-cors-1.0.1-1.fc26
rubygem-rails-controller-testing-1.0.2-1.fc26
snapper-0.5.0-1.fc26
unetbootin-655-1.fc26
urh-1.7.1-1.fc26
util-linux-2.30.1-1.fc26
xorgxrdp-0.2.3-1.fc26
yamllint-1.8.1-1.fc26
zulucrypt-5.2.0-1.fc26
Details about builds:
================================================================================
GraphicsMagick-1.3.26-3.fc26 (FEDORA-2017-0446b53fd8)
An ImageMagick fork, offering faster image generation and better quality
--------------------------------------------------------------------------------
Update Information:
Security fix for CVE-2017-11403
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1472214 - CVE-2017-11403 GraphicsMagick: Use-after-free in CloseBlob
https://bugzilla.redhat.com/show_bug.cgi?id=1472214
--------------------------------------------------------------------------------
================================================================================
aime-8.20170718-1.fc26 (FEDORA-2017-4d8e62bb9e)
An application embeddable programming language interpreter
--------------------------------------------------------------------------------
Update Information:
- Updated to new 8.20170718 upstream version, fixes rhbz #1469511
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1465412 - aime-8.20170704 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1465412
[ 2 ] Bug #1469511 - aime-8.20170718 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1469511
--------------------------------------------------------------------------------
================================================================================
arprec-2.2.19-2.fc26 (FEDORA-2017-2dc1375b7c)
Software package for performing arbitrary precision arithmetic
--------------------------------------------------------------------------------
Update Information:
* New upstream release
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1472013 - arprec-2.2.19 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1472013
--------------------------------------------------------------------------------
================================================================================
authconfig-7.0.1-2.fc26 (FEDORA-2017-babb2fb19d)
Command line tool for setting up authentication from network services
--------------------------------------------------------------------------------
Update Information:
Update authconfig behavior to reflect default nsswitch.conf configuration in
Fedora.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1472691 - Running "authconfig --updateall" removes modules from nsswitch.conf
https://bugzilla.redhat.com/show_bug.cgi?id=1472691
--------------------------------------------------------------------------------
================================================================================
bluez-5.46-1.fc26 (FEDORA-2017-a1c17d3bbf)
Bluetooth utilities
--------------------------------------------------------------------------------
Update Information:
Update to 5.46, mostly BT-LE GATT improvements
--------------------------------------------------------------------------------
================================================================================
copr-dist-git-0.33-1.fc26 (FEDORA-2017-e0069cf3fd)
Copr services for Dist Git server
--------------------------------------------------------------------------------
Update Information:
- remove ExclusiveArch directive - add support for SCM Subdirectory parameter -
remove docker related stuff - fix variable name - add missing import in
providers.py - auto-differentiate between downstream and upstream repo in
SCMProvider - do not include dist information in displayed version - remove
unused exceptions - get_package_name from spec_path is now a separate method -
do not modify spec for MockScm method - use python's tarfile instead of tar
shell cmd ---- - srpms are now not being built on dist-git - MockSCM and Tito
methods unified into single source ---- .spec method implemented ---- -
import build task only once - remove unsupported --depth from git svn command -
add dep on git-svn - better exception handling in MockScmProvider - fix 'git svn
clone' and add exception handling for clone part in MockScm provider ---- -
add --depth 1 for git clone in GitProvider - add missing 'which' for tito &&
git-annex builds - arbitrary dist-git branching support - use MockScmProvider
without mock-scm to solve performance problems - add "powerpc64le" into list of
archs to allow building for - Bug 1457888 - Mock SCM method fails to build a
package - increase depth for git clone so that required tags that tito needs are
downloaded ---- Fixes problem with fedpkg builds, see
https://bugzilla.redhat.com/show_bug.cgi?id=1447102
--------------------------------------------------------------------------------
================================================================================
copr-frontend-1.116-1.fc26 (FEDORA-2017-93a3538590)
Frontend for Copr
--------------------------------------------------------------------------------
Update Information:
- in UI, rename Tito to SCM-1 and MockSCM to SCM-2 - add support for SCM
Subdirectory parameter ---- Changes in tips and url of an uploaded file now
being composed on frontend (before it was being composed on copr-dist-git).
---- .spec method implemented
--------------------------------------------------------------------------------
================================================================================
curl-7.53.1-8.fc26 (FEDORA-2017-d9de901507)
A utility for getting files from remote servers (FTP, HTTP, and others)
--------------------------------------------------------------------------------
Update Information:
- nss: fix a possible use-after-free in SelectClientCert() (#1436158)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1436158 - dnf crashes when downloading updates from Katello server
https://bugzilla.redhat.com/show_bug.cgi?id=1436158
--------------------------------------------------------------------------------
================================================================================
elementary-icon-theme-4.2.0-1.fc26 (FEDORA-2017-cb821d8aa3)
Icons from the Elementary Project
--------------------------------------------------------------------------------
Update Information:
Update to version 4.2.0.
--------------------------------------------------------------------------------
================================================================================
emacs-25.2-3.fc26 (FEDORA-2017-65a320831f)
GNU Emacs text editor
--------------------------------------------------------------------------------
Update Information:
Add emacs build with LUCID X toolkit.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1471258 - Add emacs build with LUCID X toolkit
https://bugzilla.redhat.com/show_bug.cgi?id=1471258
--------------------------------------------------------------------------------
================================================================================
engauge-digitizer-10.1-1.fc26 (FEDORA-2017-9a145e8b0a)
Convert graphs or map files into numbers
--------------------------------------------------------------------------------
Update Information:
- Update to 10.1
--------------------------------------------------------------------------------
================================================================================
erlang-rpm-macros-0.2.8-1.fc26 (FEDORA-2017-7ac7534aa8)
Macros for simplifying building of Erlang packages
--------------------------------------------------------------------------------
Update Information:
* Ver. 0.2.8
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1468910 - The erlang automatic Requires system is creating requirements that can't be fulfilled
https://bugzilla.redhat.com/show_bug.cgi?id=1468910
--------------------------------------------------------------------------------
================================================================================
gnome-shell-3.24.3-1.fc26 (FEDORA-2017-010b355b70)
Window management and application launching for GNOME
--------------------------------------------------------------------------------
Update Information:
Update GNOME Shell and extensions to latest stable versions
--------------------------------------------------------------------------------
================================================================================
gnome-shell-extensions-3.24.3-1.fc26 (FEDORA-2017-010b355b70)
Modify and extend GNOME Shell functionality and behavior
--------------------------------------------------------------------------------
Update Information:
Update GNOME Shell and extensions to latest stable versions
--------------------------------------------------------------------------------
================================================================================
gtk3-3.22.17-2.fc26 (FEDORA-2017-64455b107f)
GTK+ graphical user interface library
--------------------------------------------------------------------------------
Update Information:
gtk+ 3.22.17 release fixing a number of issues: - 766517 GtkAboutDialog should
use https:// license URLs - 778188 Throttle system bell requests on Wayland -
781583 gtk_image_new_from_resource does not work - 781935 Add nullable return
annotation to gtk_notebook_get_tab_label - 781936 Add nullable return
annotation to gtk_text_mark_get_name - 782040 Wacom pen calibration application
responds to mouse input - 782325 wayland: Add possibility to get the exported
handle multiple times - 784323 Quartz backend: gtk_clipboard_get_default not
implemented - 784723 macOS: native file chooser dialog - 784888
gtkapplication: Mark gtk_application_get_active_window() as nullable
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1466654 - Beepbleed
https://bugzilla.redhat.com/show_bug.cgi?id=1466654
--------------------------------------------------------------------------------
================================================================================
gvfs-1.32.1-2.fc26 (FEDORA-2017-27f2754e07)
Backends for the gio framework in GLib
--------------------------------------------------------------------------------
Update Information:
goa: Fix password-based authentication (rhbz#1461066)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1461066 - Can't open Nextcloud remote disk in Nautilus
https://bugzilla.redhat.com/show_bug.cgi?id=1461066
--------------------------------------------------------------------------------
================================================================================
jdns-2.0.5-1.fc26 (FEDORA-2017-abba35ce63)
A simple DNS queries library
--------------------------------------------------------------------------------
Update Information:
Bump to 2.0.5
--------------------------------------------------------------------------------
================================================================================
krb5-1.15.1-15.fc26 (FEDORA-2017-44ae5171a3)
The Kerberos network authentication system
--------------------------------------------------------------------------------
Update Information:
Add SSF querying support, fix a leak, clean up the test suite, and fix some
triggers.
--------------------------------------------------------------------------------
================================================================================
libdrm-2.4.82-1.fc26 (FEDORA-2017-9b8727a5c1)
Direct Rendering Manager runtime library
--------------------------------------------------------------------------------
Update Information:
Update to 2.4.82
--------------------------------------------------------------------------------
================================================================================
liberasurecode-1.5.0-1.fc26 (FEDORA-2017-b14bb46f9a)
Erasure Code API library written in C with pluggable backends
--------------------------------------------------------------------------------
Update Information:
The update to upstream 1.5.0 includes a fix for bug #1454543
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1454543 - SIGILL in ceill() when called by liberasurecode_get_aligned_data_size()
https://bugzilla.redhat.com/show_bug.cgi?id=1454543
--------------------------------------------------------------------------------
================================================================================
libreoffice-5.3.4.2-4.fc26 (FEDORA-2017-e0ccc869d0)
Free Software Productivity Suite
--------------------------------------------------------------------------------
Update Information:
- enable video playback under gtk3 at arbitrary sizes in full screen
presentation mode.
--------------------------------------------------------------------------------
================================================================================
librsvg2-2.40.18-1.fc26 (FEDORA-2017-cf36278519)
An SVG library based on cairo
--------------------------------------------------------------------------------
Update Information:
librsvg 2.40.18 release, fixing CVE-2017-11464 (division-by-zero in the Gaussian
blur code). For details, see https://mail.gnome.org/archives/ftp-release-
list/2017-July/msg00078.html
--------------------------------------------------------------------------------
================================================================================
lv2-x42-plugins-0.3.0-0.1.20170428.fc26 (FEDORA-2017-7561bdd73a)
A number of LV2 plugins
--------------------------------------------------------------------------------
Update Information:
Update to 20170428 upstream release. New plugins.
--------------------------------------------------------------------------------
================================================================================
mingw-librsvg2-2.40.18-1.fc26 (FEDORA-2017-ee04231942)
SVG library based on cairo for MinGW
--------------------------------------------------------------------------------
Update Information:
MinGW cross compiled librsvg 2.40.18 release, fixing CVE-2017-11464 (division-
by-zero in the Gaussian blur code).
--------------------------------------------------------------------------------
================================================================================
mutter-3.24.4-1.fc26 (FEDORA-2017-010b355b70)
Window and compositing manager based on Clutter
--------------------------------------------------------------------------------
Update Information:
Update GNOME Shell and extensions to latest stable versions
--------------------------------------------------------------------------------
================================================================================
nfs-ganesha-2.5.0-2.fc26 (FEDORA-2017-5c06dc3aab)
NFS-Ganesha is a NFS Server running in user space
--------------------------------------------------------------------------------
Update Information:
nfs-ganesha 2.5.0 w/ libntirpc-1.5.3
--------------------------------------------------------------------------------
================================================================================
nrpe-3.2.0-3.fc26 (FEDORA-2017-47d1a274d4)
Host/service/network monitoring agent for Nagios
--------------------------------------------------------------------------------
Update Information:
Remove git from release name ---- Remember to put in a patch so the
/etc/nrpe.d/ is used. ---- Update to 3.2.0 ---- Put in fix for 1204683 ----
Add comments to nrpe.cfg to alert user on RHBZ #1318773 ---- Fix patch name.
Silly human. Do a fedpkg srpm before build.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1470684 - NRPE stopped working using SSL
https://bugzilla.redhat.com/show_bug.cgi?id=1470684
[ 2 ] Bug #1204683 - check_ide_smart cannot be started by nrpe
https://bugzilla.redhat.com/show_bug.cgi?id=1204683
[ 3 ] Bug #1318773 - nrpe.service sets User/Group, prevents normal .cfg user/group setting
https://bugzilla.redhat.com/show_bug.cgi?id=1318773
--------------------------------------------------------------------------------
================================================================================
nuvolaruntime-4.5.0-1.fc26 (FEDORA-2017-b3ec01ba35)
Tight integration of web apps with your desktop
--------------------------------------------------------------------------------
Update Information:
- update to 4.5.0 - Add 0001-Revert-Check-whether-VA-API-driver-is-
installed.patch - Add 0002-Revert-Check-whether-VDPAU-driver-is-installed.patch
- dropped %%{name}-wscript.patch - add if condition due ppc64le build problem
--------------------------------------------------------------------------------
================================================================================
python-Lektor-3.0.1-1.fc26 (FEDORA-2017-9f40b82666)
A static content management system
--------------------------------------------------------------------------------
Update Information:
Upgrade to version 3.0.1
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1460842 - python-Lektor-3.0.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1460842
--------------------------------------------------------------------------------
================================================================================
python-blurb-1.0.0-1.post1.fc26 (FEDORA-2017-cc3308b985)
Command-line tool to manage CPython Misc/NEWS.d entries
--------------------------------------------------------------------------------
Update Information:
Command-line tool to manage CPython Misc/NEWS.d entries
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1466523 - Review Request: python-blurb - Command-line tool to manage CPython Misc/NEWS.d entries
https://bugzilla.redhat.com/show_bug.cgi?id=1466523
--------------------------------------------------------------------------------
================================================================================
python-enchant-1.6.10-1.fc26 (FEDORA-2017-9aa6d94c7c)
Python bindings for Enchant spellchecking library
--------------------------------------------------------------------------------
Update Information:
Update to 1.6.10
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1472304 - python-enchant-1.6.10 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1472304
--------------------------------------------------------------------------------
================================================================================
python-flit-0.11.1-1.fc26 (FEDORA-2017-a19a05e900)
Simplified packaging of Python modules
--------------------------------------------------------------------------------
Update Information:
Update to 0.11.1
--------------------------------------------------------------------------------
================================================================================
python3-3.6.2-1.fc26 (FEDORA-2017-ceedc87e86)
Version 3 of the Python programming language aka Python 3000
--------------------------------------------------------------------------------
Update Information:
Update to Python 3.6.2
--------------------------------------------------------------------------------
================================================================================
rubygem-occi-api-4.3.13-1.fc26 (FEDORA-2017-200fbdcb99)
OCCI development library providing a high-level client API
--------------------------------------------------------------------------------
Update Information:
Added CA options for token auth.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1461609 - rubygem-occi-api-4.3.13 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1461609
--------------------------------------------------------------------------------
================================================================================
rubygem-rack-cors-1.0.1-1.fc26 (FEDORA-2017-18c2074f56)
Middleware for enabling Cross-Origin Resource Sharing in Rack apps
--------------------------------------------------------------------------------
Update Information:
Lambda origin configuration and other improvements and fixes
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1471444 - rubygem-rack-cors-1.0.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1471444
--------------------------------------------------------------------------------
================================================================================
rubygem-rails-controller-testing-1.0.2-1.fc26 (FEDORA-2017-0508496624)
Extracting `assigns` and `assert_template` from ActionDispatch
--------------------------------------------------------------------------------
Update Information:
Fixed with rails >= 5.0.1 and added new test hooks
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1451740 - rubygem-rails-controller-testing-1.0.2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1451740
--------------------------------------------------------------------------------
================================================================================
snapper-0.5.0-1.fc26 (FEDORA-2017-76750a79d3)
Tool for filesystem snapshot management
--------------------------------------------------------------------------------
Update Information:
Update to 0.5.0
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1449856 - snapper-0.5.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1449856
--------------------------------------------------------------------------------
================================================================================
unetbootin-655-1.fc26 (FEDORA-2017-c652dce14c)
Create bootable Live USB drives for a variety of Linux distributions
--------------------------------------------------------------------------------
Update Information:
- Rebuilt for new upstream release 655, fixes rhbz #1471101
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1471101 - unetbootin-655 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1471101
--------------------------------------------------------------------------------
================================================================================
urh-1.7.1-1.fc26 (FEDORA-2017-1e0040f0ed)
Universal Radio Hacker: investigate wireless protocols like a boss
--------------------------------------------------------------------------------
Update Information:
This is new version of urh. ---- This is new version of urh.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1473063 - urh-v1.7.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1473063
[ 2 ] Bug #1471311 - urh-v1.7.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1471311
--------------------------------------------------------------------------------
================================================================================
util-linux-2.30.1-1.fc26 (FEDORA-2017-e44399d729)
A collection of basic system utilities
--------------------------------------------------------------------------------
Update Information:
Update to upstream stable maintenance release v2.30.1. The resease fixes some
cfdisk, agetty and another issues. For more details see:
http://ftp.kernel.org/pub/linux/utils/util-linux/v2.30/v2.30.1-ReleaseNotes
--------------------------------------------------------------------------------
================================================================================
xorgxrdp-0.2.3-1.fc26 (FEDORA-2017-91d38815bd)
Implementation of xrdp backend as Xorg modules
--------------------------------------------------------------------------------
Update Information:
This version includes fixes of following issues: - X programs crash when
reconnecting to xrdp with screen resize
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1470667 - xorgxrdp-0.2.3 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1470667
--------------------------------------------------------------------------------
================================================================================
yamllint-1.8.1-1.fc26 (FEDORA-2017-2619acde26)
A linter for YAML files
--------------------------------------------------------------------------------
Update Information:
- Update to latest upstream version - Update dependencies
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1466084 - yamllint-1.8.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1466084
--------------------------------------------------------------------------------
================================================================================
zulucrypt-5.2.0-1.fc26 (FEDORA-2017-d0a1c53411)
Qt GUI front end to cryptsetup
--------------------------------------------------------------------------------
Update Information:
version 5.2.0 - - add ability to select a file manager to use to open mount
points. A file manager, can be set through zuluCrypt-gui->menu->options->set
file manager. - dont run zuluCrypt-gui and zuluMount-gui from root's account
when running in mixed mode. - add arabic translation.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1429090 - ecryptfs-simple does not work without proper root environment (su -l)
https://bugzilla.redhat.com/show_bug.cgi?id=1429090
[ 2 ] Bug #1467892 - zulucrypt-5.2.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1467892
--------------------------------------------------------------------------------
The following Fedora 25 Security updates need testing:
Age URL
205 https://bodhi.fedoraproject.org/updates/FEDORA-2016-d79ba708cb exim-4.87.1-1.fc25
104 https://bodhi.fedoraproject.org/updates/FEDORA-2017-e2d17af41e python-XStatic-jquery-ui-1.12.0.1-4.fc25
43 https://bodhi.fedoraproject.org/updates/FEDORA-2017-5d7498559f nodejs-brace-expansion-1.1.7-1.fc25
12 https://bodhi.fedoraproject.org/updates/FEDORA-2017-b9e4c24094 subversion-1.9.6-1.fc25
8 https://bodhi.fedoraproject.org/updates/FEDORA-2017-90ad72e684 irssi-1.0.4-1.fc25
8 https://bodhi.fedoraproject.org/updates/FEDORA-2017-c844713925 qt5-qtwebkit-5.212.0-0.5.alpha2.fc25
8 https://bodhi.fedoraproject.org/updates/FEDORA-2017-33c8085c5d groovy18-1.8.9-28.fc25
7 https://bodhi.fedoraproject.org/updates/FEDORA-2017-5d6a9e0c9c heimdal-7.4.0-1.fc25
7 https://bodhi.fedoraproject.org/updates/FEDORA-2017-f941184db1 qemu-2.7.1-7.fc25
6 https://bodhi.fedoraproject.org/updates/FEDORA-2017-cc0b92f6c1 glpi-9.1.5-1.fc25
6 https://bodhi.fedoraproject.org/updates/FEDORA-2017-9fa2cefa7a mingw-poppler-0.45.0-3.fc25
5 https://bodhi.fedoraproject.org/updates/FEDORA-2017-81522ac6d8 nodejs-6.11.1-1.fc25
5 https://bodhi.fedoraproject.org/updates/FEDORA-2017-346836a623 phpldapadmin-1.2.3-10.fc25
3 https://bodhi.fedoraproject.org/updates/FEDORA-2017-90cf7a82de minicom-2.7.1-1.fc25
3 https://bodhi.fedoraproject.org/updates/FEDORA-2017-2d8a1226d1 libmwaw-0.3.12-1.fc25
3 https://bodhi.fedoraproject.org/updates/FEDORA-2017-c22a8af4e9 rubygem-rack-cors-0.4.1-1.fc25
3 https://bodhi.fedoraproject.org/updates/FEDORA-2017-1d46019681 yara-3.6.3-1.fc25
3 https://bodhi.fedoraproject.org/updates/FEDORA-2017-86cfcbbae8 libstaroffice-0.0.4-1.fc25
3 https://bodhi.fedoraproject.org/updates/FEDORA-2017-534f300508 perl-XML-LibXML-2.0129-2.fc25
1 https://bodhi.fedoraproject.org/updates/FEDORA-2017-24c64c531a freeradius-3.0.15-1.fc25
0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-6c52e2d731 GraphicsMagick-1.3.26-3.fc25
0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-cf1a42722d librsvg2-2.40.18-1.fc25
0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-bcf1bc0775 mingw-librsvg2-2.40.18-1.fc25
The following Fedora 25 Critical Path updates have yet to be approved:
Age URL
47 https://bodhi.fedoraproject.org/updates/FEDORA-2017-613a72e282 lorax-25.22-1.fc25
26 https://bodhi.fedoraproject.org/updates/FEDORA-2017-0187b2a605 selinux-policy-3.13.1-225.19.fc25
8 https://bodhi.fedoraproject.org/updates/FEDORA-2017-ebeb4bb332 mariadb-10.1.25-1.fc25
7 https://bodhi.fedoraproject.org/updates/FEDORA-2017-e587cfd70e supermin-5.1.18-1.fc25
7 https://bodhi.fedoraproject.org/updates/FEDORA-2017-f941184db1 qemu-2.7.1-7.fc25
6 https://bodhi.fedoraproject.org/updates/FEDORA-2017-6d834aa7e7 breeze-icon-theme-5.36.0-1.fc25 extra-cmake-modules-5.36.0-1.fc25 kf5-5.36.0-1.fc25 kf5-attica-5.36.0-1.fc25 kf5-baloo-5.36.0-1.fc25 kf5-bluez-qt-5.36.0-1.fc25 kf5-frameworkintegration-5.36.0-1.fc25 kf5-kactivities-5.36.0-1.fc25 kf5-kactivities-stats-5.36.0-1.fc25 kf5-kapidox-5.36.0-1.fc25 kf5-karchive-5.36.0-1.fc25 kf5-kauth-5.36.0-1.fc25 kf5-kbookmarks-5.36.0-1.fc25 kf5-kcmutils-5.36.0-1.fc25 kf5-kcodecs-5.36.0-1.fc25 kf5-kcompletion-5.36.0-1.fc25 kf5-kconfig-5.36.0-1.fc25 kf5-kconfigwidgets-5.36.0-1.fc25 kf5-kcoreaddons-5.36.0-1.fc25 kf5-kcrash-5.36.0-1.fc25 kf5-kdbusaddons-5.36.0-1.fc25 kf5-kdeclarative-5.36.0-1.fc25 kf5-kded-5.36.0-1.fc25 kf5-kdelibs4support-5.36.0-1.fc25 kf5-kdesignerplugin-5.36.0-1.fc25 kf5-kdesu-5.36.0-1.fc25 kf5-kdewebkit-5.36.0-1.fc25 kf5-kdnssd-5.36.0-1.fc25 kf5-kdoctools-5.36.0-1.fc25 kf5-kemoticons-5.36.0-1.fc25 kf5-kfilemetadata-5.36.0-1.fc25 kf5-kglobalaccel-5.36.0-1.fc25 kf5-kguiad
dons-5.36.0-2.fc25 kf5-khtml-5.36.0-1.fc25 kf5-ki18n-5.36.0-3.fc25 kf5-kiconthemes-5.36.0-1.fc25 kf5-kidletime-5.36.0-1.fc25 kf5-kimageformats-5.36.0-1.fc25 kf5-kinit-5.36.0-1.fc25 kf5-kio-5.36.0-1.fc25 kf5-kitemmodels-5.36.0-1.fc25 kf5-kitemviews-5.36.0-1.fc25 kf5-kjobwidgets-5.36.0-1.fc25 kf5-kjs-5.36.0-1.fc25 kf5-kjsembed-5.36.0-1.fc25 kf5-kmediaplayer-5.36.0-1.fc25 kf5-knewstuff-5.36.0-3.fc25 kf5-knotifications-5.36.0-1.fc25 kf5-knotifyconfig-5.36.0-1.fc25 kf5-kpackage-5.36.0-1.fc25 kf5-kparts-5.36.0-1.fc25 kf5-kpeople-5.36.0-1.fc25 kf5-kplotting-5.36.0-1.fc25 kf5-kpty-5.36.0-1.fc25 kf5-kross-5.36.0-1.fc25 kf5-krunner-5.36.0-1.fc25 kf5-kservice-5.36.0-1.fc25 kf5-ktexteditor-5.36.0-1.fc25 kf5-ktextwidgets-5.36.0-1.fc25 kf5-kunitconversion-5.36.0-1.fc25 kf5-kwallet-5.36.0-1.fc25 kf5-kwayland-5.36.0-1.fc25 kf5-kwidgetsaddons-5.36.0-1.fc25 kf5-kwindowsystem-5.36.0-1.fc25 kf5-kxmlgui-5.36.0-1.fc25 kf5-kxmlrpcclient-5.36.0-1.fc25 kf5-modemmanager-qt-5.36.0-1.fc25 kf5-networkmanager-qt
-5.36.0-1.fc25 kf5-plasma-5.36.0-1.fc25 kf5-solid-5.36.0-1.fc25 kf5-sonnet-5.36.0-1.fc25 kf5-syntax-highlighting-5.36.0-1.fc25 kf5-threadweaver-5.36.0-1.fc25 oxygen-icon-theme-5.36.0-1.fc25
6 https://bodhi.fedoraproject.org/updates/FEDORA-2017-77b3ddeaaa net-snmp-5.7.3-14.fc25
3 https://bodhi.fedoraproject.org/updates/FEDORA-2017-e2312ac9d9 pungi-4.1.17-1.fc25
1 https://bodhi.fedoraproject.org/updates/FEDORA-2017-04d751ec2f tar-1.29-4.fc25
1 https://bodhi.fedoraproject.org/updates/FEDORA-2017-f55b21a811 pango-1.40.7-1.fc25
1 https://bodhi.fedoraproject.org/updates/FEDORA-2017-f21d307d97 nspr-4.15.0-1.fc25 nss-3.31.0-1.1.fc25 nss-softokn-3.31.0-1.0.fc25 nss-util-3.31.0-1.0.fc25
0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-cf1a42722d librsvg2-2.40.18-1.fc25
0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-7a6144ef24 curl-7.51.0-8.fc25
0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-7fd15754fd libdrm-2.4.82-1.fc25
0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-6b67562744 ca-certificates-2017.2.16-1.0.fc25
0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-e229cf5d7c qt5-qtbase-5.7.1-19.fc25
0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-3b5470b48e gtk3-3.22.17-2.fc25
0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-b213f353b1 vim-8.0.728-1.fc25
0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-56704c88b6 wpa_supplicant-2.6-3.fc25
0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-2ee31a6998 gdk-pixbuf2-2.36.7-1.fc25
The following builds have been pushed to Fedora 25 updates-testing
GraphicsMagick-1.3.26-3.fc25
aime-8.20170718-1.fc25
copr-dist-git-0.33-1.fc25
copr-frontend-1.116-1.fc25
curl-7.51.0-8.fc25
elementary-icon-theme-4.2.0-1.fc25
engauge-digitizer-10.1-1.fc25
gtk3-3.22.17-2.fc25
jdns-2.0.5-1.fc25
libdrm-2.4.82-1.fc25
libreoffice-5.2.7.2-6.fc25
librsvg2-2.40.18-1.fc25
mingw-librsvg2-2.40.18-1.fc25
nuvolaruntime-4.5.0-1.fc25
unetbootin-655-1.fc25
xorgxrdp-0.2.3-1.fc25
yamllint-1.8.1-1.fc25
zulucrypt-5.2.0-1.fc25
Details about builds:
================================================================================
GraphicsMagick-1.3.26-3.fc25 (FEDORA-2017-6c52e2d731)
An ImageMagick fork, offering faster image generation and better quality
--------------------------------------------------------------------------------
Update Information:
Security fix for CVE-2017-11403
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1472214 - CVE-2017-11403 GraphicsMagick: Use-after-free in CloseBlob
https://bugzilla.redhat.com/show_bug.cgi?id=1472214
--------------------------------------------------------------------------------
================================================================================
aime-8.20170718-1.fc25 (FEDORA-2017-ec5efe04b9)
An application embeddable programming language interpreter
--------------------------------------------------------------------------------
Update Information:
- Updated to new 8.20170718 upstream version, fixes rhbz #1469511
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1465412 - aime-8.20170704 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1465412
[ 2 ] Bug #1469511 - aime-8.20170718 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1469511
--------------------------------------------------------------------------------
================================================================================
copr-dist-git-0.33-1.fc25 (FEDORA-2017-a903d4291c)
Copr services for Dist Git server
--------------------------------------------------------------------------------
Update Information:
- remove ExclusiveArch directive - add support for SCM Subdirectory parameter -
remove docker related stuff - fix variable name - add missing import in
providers.py - auto-differentiate between downstream and upstream repo in
SCMProvider - do not include dist information in displayed version - remove
unused exceptions - get_package_name from spec_path is now a separate method -
do not modify spec for MockScm method - use python's tarfile instead of tar
shell cmd ---- - srpms are now not being built on dist-git - MockSCM and Tito
methods unified into single source ---- .spec method implemented ---- -
import build task only once - remove unsupported --depth from git svn command -
add dep on git-svn - better exception handling in MockScmProvider - fix 'git svn
clone' and add exception handling for clone part in MockScm provider ---- -
add --depth 1 for git clone in GitProvider - add missing 'which' for tito &&
git-annex builds - arbitrary dist-git branching support - use MockScmProvider
without mock-scm to solve performance problems - add "powerpc64le" into list of
archs to allow building for - Bug 1457888 - Mock SCM method fails to build a
package - increase depth for git clone so that required tags that tito needs are
downloaded ---- Fixes problem with fedpkg builds, see
https://bugzilla.redhat.com/show_bug.cgi?id=1447102
--------------------------------------------------------------------------------
================================================================================
copr-frontend-1.116-1.fc25 (FEDORA-2017-301d5099ca)
Frontend for Copr
--------------------------------------------------------------------------------
Update Information:
- in UI, rename Tito to SCM-1 and MockSCM to SCM-2 - add support for SCM
Subdirectory parameter ---- Changes in tips and url of an uploaded file now
being composed on frontend (before it was being composed on copr-dist-git).
---- .spec method implemented
--------------------------------------------------------------------------------
================================================================================
curl-7.51.0-8.fc25 (FEDORA-2017-7a6144ef24)
A utility for getting files from remote servers (FTP, HTTP, and others)
--------------------------------------------------------------------------------
Update Information:
- nss: fix a possible use-after-free in SelectClientCert() (#1436158)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1436158 - dnf crashes when downloading updates from Katello server
https://bugzilla.redhat.com/show_bug.cgi?id=1436158
--------------------------------------------------------------------------------
================================================================================
elementary-icon-theme-4.2.0-1.fc25 (FEDORA-2017-4dc4c05c86)
Icons from the Elementary Project
--------------------------------------------------------------------------------
Update Information:
Update to version 4.2.0.
--------------------------------------------------------------------------------
================================================================================
engauge-digitizer-10.1-1.fc25 (FEDORA-2017-b7105e104b)
Convert graphs or map files into numbers
--------------------------------------------------------------------------------
Update Information:
- Update to 10.1
--------------------------------------------------------------------------------
================================================================================
gtk3-3.22.17-2.fc25 (FEDORA-2017-3b5470b48e)
GTK+ graphical user interface library
--------------------------------------------------------------------------------
Update Information:
gtk+ 3.22.17 release fixing a number of issues: - 766517 GtkAboutDialog should
use https:// license URLs - 778188 Throttle system bell requests on Wayland -
781583 gtk_image_new_from_resource does not work - 781935 Add nullable return
annotation to gtk_notebook_get_tab_label - 781936 Add nullable return
annotation to gtk_text_mark_get_name - 782040 Wacom pen calibration application
responds to mouse input - 782325 wayland: Add possibility to get the exported
handle multiple times - 784323 Quartz backend: gtk_clipboard_get_default not
implemented - 784723 macOS: native file chooser dialog - 784888
gtkapplication: Mark gtk_application_get_active_window() as nullable
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1466654 - Beepbleed
https://bugzilla.redhat.com/show_bug.cgi?id=1466654
--------------------------------------------------------------------------------
================================================================================
jdns-2.0.5-1.fc25 (FEDORA-2017-e5dab6c25c)
A simple DNS queries library
--------------------------------------------------------------------------------
Update Information:
Bump to 2.0.5
--------------------------------------------------------------------------------
================================================================================
libdrm-2.4.82-1.fc25 (FEDORA-2017-7fd15754fd)
Direct Rendering Manager runtime library
--------------------------------------------------------------------------------
Update Information:
Update to 2.4.82
--------------------------------------------------------------------------------
================================================================================
libreoffice-5.2.7.2-6.fc25 (FEDORA-2017-4cb26fb637)
Free Software Productivity Suite
--------------------------------------------------------------------------------
Update Information:
- enable video playback under gtk3 at arbitrary sizes in full screen
presentation mode.
--------------------------------------------------------------------------------
================================================================================
librsvg2-2.40.18-1.fc25 (FEDORA-2017-cf1a42722d)
An SVG library based on cairo
--------------------------------------------------------------------------------
Update Information:
librsvg 2.40.18 release, fixing CVE-2017-11464 (division-by-zero in the Gaussian
blur code). For details, see https://mail.gnome.org/archives/ftp-release-
list/2017-July/msg00078.html
--------------------------------------------------------------------------------
================================================================================
mingw-librsvg2-2.40.18-1.fc25 (FEDORA-2017-bcf1bc0775)
SVG library based on cairo for MinGW
--------------------------------------------------------------------------------
Update Information:
MinGW cross compiled librsvg 2.40.18 release, fixing CVE-2017-11464 (division-
by-zero in the Gaussian blur code).
--------------------------------------------------------------------------------
================================================================================
nuvolaruntime-4.5.0-1.fc25 (FEDORA-2017-5b12276625)
Tight integration of web apps with your desktop
--------------------------------------------------------------------------------
Update Information:
- update to 4.5.0 - Add 0001-Revert-Check-whether-VA-API-driver-is-
installed.patch - Add 0002-Revert-Check-whether-VDPAU-driver-is-installed.patch
- dropped %%{name}-wscript.patch - add if condition due ppc64le build problem
--------------------------------------------------------------------------------
================================================================================
unetbootin-655-1.fc25 (FEDORA-2017-1e645ec9d1)
Create bootable Live USB drives for a variety of Linux distributions
--------------------------------------------------------------------------------
Update Information:
- Rebuilt for new upstream release 655, fixes rhbz #1471101
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1471101 - unetbootin-655 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1471101
--------------------------------------------------------------------------------
================================================================================
xorgxrdp-0.2.3-1.fc25 (FEDORA-2017-109a4a74e2)
Implementation of xrdp backend as Xorg modules
--------------------------------------------------------------------------------
Update Information:
This version includes fixes of following issues: - X programs crash when
reconnecting to xrdp with screen resize
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1470667 - xorgxrdp-0.2.3 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1470667
--------------------------------------------------------------------------------
================================================================================
yamllint-1.8.1-1.fc25 (FEDORA-2017-a8df5c5a10)
A linter for YAML files
--------------------------------------------------------------------------------
Update Information:
- Update to latest upstream version - Update dependencies
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1466084 - yamllint-1.8.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1466084
--------------------------------------------------------------------------------
================================================================================
zulucrypt-5.2.0-1.fc25 (FEDORA-2017-d8527a7809)
Qt GUI front end to cryptsetup
--------------------------------------------------------------------------------
Update Information:
version 5.2.0 - - add ability to select a file manager to use to open mount
points. A file manager, can be set through zuluCrypt-gui->menu->options->set
file manager. - dont run zuluCrypt-gui and zuluMount-gui from root's account
when running in mixed mode. - add arabic translation.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1429090 - ecryptfs-simple does not work without proper root environment (su -l)
https://bugzilla.redhat.com/show_bug.cgi?id=1429090
[ 2 ] Bug #1467892 - zulucrypt-5.2.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1467892
--------------------------------------------------------------------------------
The following Fedora 24 Security updates need testing:
Age URL
212 https://bodhi.fedoraproject.org/updates/FEDORA-2016-26f9817b08 squid-3.5.23-1.fc24
205 https://bodhi.fedoraproject.org/updates/FEDORA-2016-eaaa9c4a08 exim-4.87.1-1.fc24
168 https://bodhi.fedoraproject.org/updates/FEDORA-2017-ece16ba6ba runc-1.0.0-5.rc2.gitc91b5be.fc24
104 https://bodhi.fedoraproject.org/updates/FEDORA-2017-8330a48ca2 python-XStatic-jquery-ui-1.12.0.1-1.fc24
43 https://bodhi.fedoraproject.org/updates/FEDORA-2017-5f1006afb1 libstaroffice-0.0.3-3.fc24
43 https://bodhi.fedoraproject.org/updates/FEDORA-2017-a1f4c48c68 nodejs-brace-expansion-1.1.7-1.fc24
34 https://bodhi.fedoraproject.org/updates/FEDORA-2017-bbae64fdc2 libmwaw-0.3.11-3.fc24
23 https://bodhi.fedoraproject.org/updates/FEDORA-2017-37f68e3534 webkitgtk4-2.16.5-1.fc24
23 https://bodhi.fedoraproject.org/updates/FEDORA-2017-56cf7067e7 irssi-1.0.3-1.fc24
8 https://bodhi.fedoraproject.org/updates/FEDORA-2017-21c0e9b25b qt5-qtwebkit-5.212.0-0.5.alpha2.fc24
8 https://bodhi.fedoraproject.org/updates/FEDORA-2017-405453f285 groovy18-1.8.9-28.fc24
7 https://bodhi.fedoraproject.org/updates/FEDORA-2017-06c1422db8 evince-3.20.1-3.fc24
6 https://bodhi.fedoraproject.org/updates/FEDORA-2017-93868169a0 mingw-poppler-0.41.0-3.fc24
5 https://bodhi.fedoraproject.org/updates/FEDORA-2017-aa44293a53 nodejs-4.8.4-6.fc24
5 https://bodhi.fedoraproject.org/updates/FEDORA-2017-1a8bebaab4 phpldapadmin-1.2.3-10.fc24
3 https://bodhi.fedoraproject.org/updates/FEDORA-2017-31af7a849d minicom-2.7.1-1.fc24
3 https://bodhi.fedoraproject.org/updates/FEDORA-2017-944e86b623 yara-3.6.3-1.fc24
3 https://bodhi.fedoraproject.org/updates/FEDORA-2017-790ff602a6 perl-XML-LibXML-2.0128-2.fc24
1 https://bodhi.fedoraproject.org/updates/FEDORA-2017-98bed96d12 qt5-qtwebengine-5.6.3-0.1.20170712gitee719ad313e564.fc24
1 https://bodhi.fedoraproject.org/updates/FEDORA-2017-b4df78b4b2 kernel-4.11.11-100.fc24
0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-758fafed81 GraphicsMagick-1.3.26-3.fc24
0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-941058c1f1 librsvg2-2.40.18-1.fc24
0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-0b8c45ebf7 mingw-librsvg2-2.40.18-1.fc24
The following Fedora 24 Critical Path updates have yet to be approved:
Age URL
23 https://bodhi.fedoraproject.org/updates/FEDORA-2017-37f68e3534 webkitgtk4-2.16.5-1.fc24
20 https://bodhi.fedoraproject.org/updates/FEDORA-2017-6c2a7b1453 thunderbird-52.2.1-1.fc24
8 https://bodhi.fedoraproject.org/updates/FEDORA-2017-5a6f49afbd mariadb-10.1.25-1.fc24
6 https://bodhi.fedoraproject.org/updates/FEDORA-2017-de05b989aa net-snmp-5.7.3-14.fc24
3 https://bodhi.fedoraproject.org/updates/FEDORA-2017-c7a7826a49 perl-5.22.4-372.fc24
1 https://bodhi.fedoraproject.org/updates/FEDORA-2017-b4df78b4b2 kernel-4.11.11-100.fc24
0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-941058c1f1 librsvg2-2.40.18-1.fc24
0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-28275fd181 libdrm-2.4.82-1.fc24
The following builds have been pushed to Fedora 24 updates-testing
GraphicsMagick-1.3.26-3.fc24
aime-8.20170718-1.fc24
copr-dist-git-0.33-1.fc24
copr-frontend-1.116-1.fc24
elementary-icon-theme-4.2.0-1.fc24
engauge-digitizer-10.1-1.fc24
libdrm-2.4.82-1.fc24
librsvg2-2.40.18-1.fc24
mingw-librsvg2-2.40.18-1.fc24
unetbootin-655-1.fc24
xorgxrdp-0.2.3-1.fc24
Details about builds:
================================================================================
GraphicsMagick-1.3.26-3.fc24 (FEDORA-2017-758fafed81)
An ImageMagick fork, offering faster image generation and better quality
--------------------------------------------------------------------------------
Update Information:
Security fix for CVE-2017-11403
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1472214 - CVE-2017-11403 GraphicsMagick: Use-after-free in CloseBlob
https://bugzilla.redhat.com/show_bug.cgi?id=1472214
--------------------------------------------------------------------------------
================================================================================
aime-8.20170718-1.fc24 (FEDORA-2017-e1b6a013d2)
An application embeddable programming language interpreter
--------------------------------------------------------------------------------
Update Information:
- Updated to new 8.20170718 upstream version, fixes rhbz #1469511
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1465412 - aime-8.20170704 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1465412
[ 2 ] Bug #1469511 - aime-8.20170718 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1469511
--------------------------------------------------------------------------------
================================================================================
copr-dist-git-0.33-1.fc24 (FEDORA-2017-8c00c787c1)
Copr services for Dist Git server
--------------------------------------------------------------------------------
Update Information:
- remove ExclusiveArch directive - add support for SCM Subdirectory parameter -
remove docker related stuff - fix variable name - add missing import in
providers.py - auto-differentiate between downstream and upstream repo in
SCMProvider - do not include dist information in displayed version - remove
unused exceptions - get_package_name from spec_path is now a separate method -
do not modify spec for MockScm method - use python's tarfile instead of tar
shell cmd ---- - srpms are now not being built on dist-git - MockSCM and Tito
methods unified into single source ---- .spec method implemented ---- -
import build task only once - remove unsupported --depth from git svn command -
add dep on git-svn - better exception handling in MockScmProvider - fix 'git svn
clone' and add exception handling for clone part in MockScm provider ---- -
add --depth 1 for git clone in GitProvider - add missing 'which' for tito &&
git-annex builds - arbitrary dist-git branching support - use MockScmProvider
without mock-scm to solve performance problems - add "powerpc64le" into list of
archs to allow building for - Bug 1457888 - Mock SCM method fails to build a
package - increase depth for git clone so that required tags that tito needs are
downloaded ---- Fixes problem with fedpkg builds, see
https://bugzilla.redhat.com/show_bug.cgi?id=1447102
--------------------------------------------------------------------------------
================================================================================
copr-frontend-1.116-1.fc24 (FEDORA-2017-a59718fbaf)
Frontend for Copr
--------------------------------------------------------------------------------
Update Information:
- in UI, rename Tito to SCM-1 and MockSCM to SCM-2 - add support for SCM
Subdirectory parameter ---- Changes in tips and url of an uploaded file now
being composed on frontend (before it was being composed on copr-dist-git).
---- .spec method implemented
--------------------------------------------------------------------------------
================================================================================
elementary-icon-theme-4.2.0-1.fc24 (FEDORA-2017-0da6a606f5)
Icons from the Elementary Project
--------------------------------------------------------------------------------
Update Information:
Update to version 4.2.0.
--------------------------------------------------------------------------------
================================================================================
engauge-digitizer-10.1-1.fc24 (FEDORA-2017-ec889bceb4)
Convert graphs or map files into numbers
--------------------------------------------------------------------------------
Update Information:
- Update to 10.1
--------------------------------------------------------------------------------
================================================================================
libdrm-2.4.82-1.fc24 (FEDORA-2017-28275fd181)
Direct Rendering Manager runtime library
--------------------------------------------------------------------------------
Update Information:
Update to 2.4.82
--------------------------------------------------------------------------------
================================================================================
librsvg2-2.40.18-1.fc24 (FEDORA-2017-941058c1f1)
An SVG library based on cairo
--------------------------------------------------------------------------------
Update Information:
librsvg 2.40.18 release, fixing CVE-2017-11464 (division-by-zero in the Gaussian
blur code). For details, see https://mail.gnome.org/archives/ftp-release-
list/2017-July/msg00078.html
--------------------------------------------------------------------------------
================================================================================
mingw-librsvg2-2.40.18-1.fc24 (FEDORA-2017-0b8c45ebf7)
SVG library based on cairo for MinGW
--------------------------------------------------------------------------------
Update Information:
MinGW cross compiled librsvg 2.40.18 release, fixing CVE-2017-11464 (division-
by-zero in the Gaussian blur code).
--------------------------------------------------------------------------------
================================================================================
unetbootin-655-1.fc24 (FEDORA-2017-f42a088235)
Create bootable Live USB drives for a variety of Linux distributions
--------------------------------------------------------------------------------
Update Information:
- Rebuilt for new upstream release 655, fixes rhbz #1471101
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1471101 - unetbootin-655 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1471101
--------------------------------------------------------------------------------
================================================================================
xorgxrdp-0.2.3-1.fc24 (FEDORA-2017-65839c33f0)
Implementation of xrdp backend as Xorg modules
--------------------------------------------------------------------------------
Update Information:
This version includes fixes of following issues: - X programs crash when
reconnecting to xrdp with screen resize
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1470667 - xorgxrdp-0.2.3 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1470667
--------------------------------------------------------------------------------