The following Fedora 25 Security updates need testing:
Age URL
120
https://bodhi.fedoraproject.org/updates/FEDORA-2016-9b3ed5f170
chicken-4.11.0-3.fc25
71
https://bodhi.fedoraproject.org/updates/FEDORA-2016-6dd3bc37c3
compat-guile18-1.8.8-14.fc25
17
https://bodhi.fedoraproject.org/updates/FEDORA-2016-2d8fb6d7ad
ipsilon-2.0.2-2.fc25
13
https://bodhi.fedoraproject.org/updates/FEDORA-2016-daf90926d4
dovecot-2.2.27-1.fc25
7
https://bodhi.fedoraproject.org/updates/FEDORA-2016-01eba63bcc
FlightGear-2016.3.1-3.fc25
4
https://bodhi.fedoraproject.org/updates/FEDORA-2016-fce8b939c9
python-wikitcms-2.1.10-1.fc25
4
https://bodhi.fedoraproject.org/updates/FEDORA-2016-f30fae0f67
nagios-plugins-2.1.4-2.fc25
4
https://bodhi.fedoraproject.org/updates/FEDORA-2016-9b83c6862d
community-mysql-5.7.17-1.fc25
4
https://bodhi.fedoraproject.org/updates/FEDORA-2016-89ee54c661
mingw-openjpeg2-2.1.2-3.fc25
2
https://bodhi.fedoraproject.org/updates/FEDORA-2016-c614315d29
squid-4.0.17-1.fc25
2
https://bodhi.fedoraproject.org/updates/FEDORA-2016-95b4e9077e
tor-0.2.8.12-1.fc25
2
https://bodhi.fedoraproject.org/updates/FEDORA-2016-b6cb3e83fa
js-jquery1-1.12.4-2.fc25
2
https://bodhi.fedoraproject.org/updates/FEDORA-2016-3368a38282
js-jquery-2.2.4-1.fc25
2
https://bodhi.fedoraproject.org/updates/FEDORA-2016-897a1e6698 smack-4.1.5-3.fc25
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-a6e72e28e1
php-zendframework-zend-mail-2.7.2-1.fc25
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-5557ccf1f9
zookeeper-3.4.9-1.fc25
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-2361e1e07a cxf-3.1.6-3.fc25
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-8d9b62c784
httpd-2.4.25-1.fc25
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-3477b592e3 hdf5-1.8.17-2.fc25
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-92e3ea2d1b xen-4.7.1-6.fc25
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-d3e562bb52
libbsd-0.8.3-1.fc25
The following Fedora 25 Critical Path updates have yet to be approved:
Age URL
26
https://bodhi.fedoraproject.org/updates/FEDORA-2016-a1231ada78
python-productmd-1.3-1.fc25
26
https://bodhi.fedoraproject.org/updates/FEDORA-2016-940ecb5c59
wpa_supplicant-2.6-1.fc25
13
https://bodhi.fedoraproject.org/updates/FEDORA-2016-9c25320b71
pungi-4.1.11-3.fc25
6
https://bodhi.fedoraproject.org/updates/FEDORA-2016-ab324eaf7a
libnl3-3.2.29-0.2.fc25
4
https://bodhi.fedoraproject.org/updates/FEDORA-2016-37c1b46c83
python-mako-1.0.6-1.fc25
3
https://bodhi.fedoraproject.org/updates/FEDORA-2016-be5fa630c5 vim-8.0.134-2.fc25
2
https://bodhi.fedoraproject.org/updates/FEDORA-2016-469935a9d1
xorg-x11-server-1.19.0-3.fc25
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-b3e16aeb0c gcc-6.3.1-1.fc25
libtool-2.4.6-13.fc25 gcc-python-plugin-0.15-8.1.fc25
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-2d575f7046
libwebp-0.5.2-1.fc25
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-3189d3a4df
PackageKit-1.1.5-0.1.20161221.fc25
The following builds have been pushed to Fedora 25 updates-testing
COPASI-4.18.138-1.fc25
SLOF-0.1.git20161019-1.fc25
apper-0.9.3-0.5.20161109.fc25
cinnamon-3.2.7-1.fc25
cinnamon-screensaver-3.2.11-1.fc25
docker-1.12.5-3.git079fbe3.fc25
fedora-packager-0.6.0.1-1.fc25
gcc-6.3.1-1.fc25
gcc-python-plugin-0.15-8.1.fc25
groonga-6.1.1-1.fc25
hdf5-1.8.17-2.fc25
httpd-2.4.25-1.fc25
ibus-qt-1.3.3-12.fc25
inkscape-0.92-9.pre4.fc25
libbsd-0.8.3-1.fc25
libtool-2.4.6-13.fc25
nodejs-6.9.2-2.fc25
photocollage-1.4.3-1.fc25
php-justinrainbow-json-schema4-4.1.0-1.fc25
php-pear-phing-2.16.0-1.fc25
purple-hangouts-0-42.20161222hg7c0a620.fc25
purple-skypeweb-1.2.2-6.20161220gitfa888e0.fc25
python-ladon-0.9.38-1.fc25
python-linux-procfs-0.4.10-1.fc25
python-pathlib2-2.1.0-2.fc25
python-schedutils-0.5-1.fc25
qcad-3.16.2.0-2.fc25
xen-4.7.1-6.fc25
Details about builds:
================================================================================
COPASI-4.18.138-1.fc25 (FEDORA-2016-d1099aab3e)
Biochemical network simulator
--------------------------------------------------------------------------------
Update Information:
- Update to build 138 (bug fixes from upstream)
--------------------------------------------------------------------------------
================================================================================
SLOF-0.1.git20161019-1.fc25 (FEDORA-2016-a90dbae5f8)
Slimline Open Firmware
--------------------------------------------------------------------------------
Update Information:
* Fix keyboard on xhci (bz #1400985) * Update to SLOF 20161019 for qemu 2.8
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1400985 - SLOF keyboard regression on xhci
https://bugzilla.redhat.com/show_bug.cgi?id=1400985
--------------------------------------------------------------------------------
================================================================================
apper-0.9.3-0.5.20161109.fc25 (FEDORA-2016-5cc3349787)
KDE interface for PackageKit
--------------------------------------------------------------------------------
Update Information:
Backport upstream fix for a class of crash-on-start or hang-on-quit conditions.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1400011 - apper crashes on startup
https://bugzilla.redhat.com/show_bug.cgi?id=1400011
--------------------------------------------------------------------------------
================================================================================
cinnamon-3.2.7-1.fc25 (FEDORA-2016-6b61cc6489)
Window management and application launching for GNOME
--------------------------------------------------------------------------------
Update Information:
- Update
--------------------------------------------------------------------------------
================================================================================
cinnamon-screensaver-3.2.11-1.fc25 (FEDORA-2016-6b61cc6489)
Cinnamon Screensaver
--------------------------------------------------------------------------------
Update Information:
- Update
--------------------------------------------------------------------------------
================================================================================
docker-1.12.5-3.git079fbe3.fc25 (FEDORA-2016-2f28826f76)
Automates deployment of containerized applications
--------------------------------------------------------------------------------
Update Information:
built docker @projectatomic/docker-1.12 commit 079fbe3 ---- built docker
@projectatomic/docker-1.12 commit e330732
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1403908 - docker pull cannot use registries with authentication
https://bugzilla.redhat.com/show_bug.cgi?id=1403908
--------------------------------------------------------------------------------
================================================================================
fedora-packager-0.6.0.1-1.fc25 (FEDORA-2016-15be3598a0)
Tools for setting up a fedora maintainer environment
--------------------------------------------------------------------------------
Update Information:
fix up the locations of the alternative arch koji configs, add a config for a
fedora profile, switch to using fast_upload to koji
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1406376 - arm-koji fails authentication
https://bugzilla.redhat.com/show_bug.cgi?id=1406376
--------------------------------------------------------------------------------
================================================================================
gcc-6.3.1-1.fc25 (FEDORA-2016-b3e16aeb0c)
Various compilers (C, C++, Objective-C, Java, ...)
--------------------------------------------------------------------------------
Update Information:
Fixed bugs (
http://gcc.gnu.org/PRNNNNN): 41922, 48863, 51960, 57438, 57728,
58001, 58991, 58992, 59874, 60774, 61318, 61420, 66227, 66343, 67219, 67335,
67631, 67710, 68323, 68377, 69183, 69514, 69544, 69741, 69867, 69962, 70006,
70101, 70184, 70564, 70975, 71067, 71115, 71274, 71337, 71496, 71515, 71575,
71709, 71730, 71762, 71767, 71799, 71848, 71859, 71862, 71891, 71895, 71902,
71912, 71979, 72717, 72747, 72808, 72820, 72827, 72832, 77260, 77285, 77288,
77309, 77322, 77326, 77349, 77351, 77372, 77375, 77380, 77391, 77406, 77411,
77420, 77429, 77436, 77450, 77459, 77460, 77467, 77478, 77482, 77483, 77506,
77507, 77514, 77519, 77544, 77550, 77558, 77587, 77591, 77605, 77612, 77621,
77624, 77637, 77638, 77645, 77646, 77648, 77665, 77666, 77670, 77673, 77679,
77686, 77694, 77707, 77722, 77727, 77739, 77745, 77748, 77756, 77759, 77763,
77767, 77768, 77773, 77794, 77795, 77801, 77804, 77822, 77834, 77839, 77855,
77864, 77874, 77879, 77904, 77905, 77907, 77915, 77916, 77919, 77933, 77937,
77942, 77943, 77957, 77973, 77978, 77987, 77990, 77991, 77994, 77995, 78013,
78021, 78025, 78037, 78038, 78039, 78047, 78052, 78057, 78064, 78089, 78092,
78101, 78108, 78111, 78123, 78128, 78129, 78166, 78178, 78185, 78188, 78189,
78206, 78221, 78224, 78227, 78228, 78229, 78252, 78262, 78279, 78294, 78297,
78298, 78299, 78305, 78309, 78310, 78326, 78333, 78378, 78416, 78419, 78426,
78429, 78443, 78465, 78472, 78482, 78490, 78500, 78540, 78542, 78546, 78550,
78551, 78593, 78646, 78649, 78701, 78731, 78761, 78796
--------------------------------------------------------------------------------
================================================================================
gcc-python-plugin-0.15-8.1.fc25 (FEDORA-2016-b3e16aeb0c)
GCC plugin that embeds Python
--------------------------------------------------------------------------------
Update Information:
Fixed bugs (
http://gcc.gnu.org/PRNNNNN): 41922, 48863, 51960, 57438, 57728,
58001, 58991, 58992, 59874, 60774, 61318, 61420, 66227, 66343, 67219, 67335,
67631, 67710, 68323, 68377, 69183, 69514, 69544, 69741, 69867, 69962, 70006,
70101, 70184, 70564, 70975, 71067, 71115, 71274, 71337, 71496, 71515, 71575,
71709, 71730, 71762, 71767, 71799, 71848, 71859, 71862, 71891, 71895, 71902,
71912, 71979, 72717, 72747, 72808, 72820, 72827, 72832, 77260, 77285, 77288,
77309, 77322, 77326, 77349, 77351, 77372, 77375, 77380, 77391, 77406, 77411,
77420, 77429, 77436, 77450, 77459, 77460, 77467, 77478, 77482, 77483, 77506,
77507, 77514, 77519, 77544, 77550, 77558, 77587, 77591, 77605, 77612, 77621,
77624, 77637, 77638, 77645, 77646, 77648, 77665, 77666, 77670, 77673, 77679,
77686, 77694, 77707, 77722, 77727, 77739, 77745, 77748, 77756, 77759, 77763,
77767, 77768, 77773, 77794, 77795, 77801, 77804, 77822, 77834, 77839, 77855,
77864, 77874, 77879, 77904, 77905, 77907, 77915, 77916, 77919, 77933, 77937,
77942, 77943, 77957, 77973, 77978, 77987, 77990, 77991, 77994, 77995, 78013,
78021, 78025, 78037, 78038, 78039, 78047, 78052, 78057, 78064, 78089, 78092,
78101, 78108, 78111, 78123, 78128, 78129, 78166, 78178, 78185, 78188, 78189,
78206, 78221, 78224, 78227, 78228, 78229, 78252, 78262, 78279, 78294, 78297,
78298, 78299, 78305, 78309, 78310, 78326, 78333, 78378, 78416, 78419, 78426,
78429, 78443, 78465, 78472, 78482, 78490, 78500, 78540, 78542, 78546, 78550,
78551, 78593, 78646, 78649, 78701, 78731, 78761, 78796
--------------------------------------------------------------------------------
================================================================================
groonga-6.1.1-1.fc25 (FEDORA-2016-66466bf0bb)
An Embeddable Fulltext Search Engine
--------------------------------------------------------------------------------
Update Information:
http://groonga.org/en/blog/2016/11/29/groonga-6.1.1.html
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1400156 - groonga-6.1.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1400156
--------------------------------------------------------------------------------
================================================================================
hdf5-1.8.17-2.fc25 (FEDORA-2016-3477b592e3)
A general purpose library and file format for storing scientific data
--------------------------------------------------------------------------------
Update Information:
Security fix for CVE-2016-4330, CVE-2016-4331, CVE-2016-4332, CVE-2016-4333
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1397708 - CVE-2016-4333 hdf5: H5T_COMPOUND heap buffer overflow
https://bugzilla.redhat.com/show_bug.cgi?id=1397708
[ 2 ] Bug #1397707 - CVE-2016-4332 hdf5: Shareable message type out-of-bounds write
https://bugzilla.redhat.com/show_bug.cgi?id=1397707
[ 3 ] Bug #1397704 - CVE-2016-4331 hdf5: H5Z_NBIT heap buffer overflow
https://bugzilla.redhat.com/show_bug.cgi?id=1397704
[ 4 ] Bug #1397701 - CVE-2016-4330 hdf5: H5T_ARRAY heap buffer overflow
https://bugzilla.redhat.com/show_bug.cgi?id=1397701
--------------------------------------------------------------------------------
================================================================================
httpd-2.4.25-1.fc25 (FEDORA-2016-8d9b62c784)
Apache HTTP Server
--------------------------------------------------------------------------------
Update Information:
Security fix for CVE-2016-8743, CVE-2016-2161, CVE-2016-0736
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1406744 - CVE-2016-0736 httpd: Padding Oracle in Apache mod_session_crypto
https://bugzilla.redhat.com/show_bug.cgi?id=1406744
[ 2 ] Bug #1406753 - CVE-2016-2161 httpd: DoS vulnerability in mod_auth_digest
https://bugzilla.redhat.com/show_bug.cgi?id=1406753
[ 3 ] Bug #1406822 - CVE-2016-8743 httpd: Apache HTTP Request Parsing Whitespace
Defects
https://bugzilla.redhat.com/show_bug.cgi?id=1406822
--------------------------------------------------------------------------------
================================================================================
ibus-qt-1.3.3-12.fc25 (FEDORA-2016-529887617e)
Qt IBus library and Qt input method plugin
--------------------------------------------------------------------------------
Update Information:
A module breaks API and have to rebuild again.
--------------------------------------------------------------------------------
================================================================================
inkscape-0.92-9.pre4.fc25 (FEDORA-2016-0d0898c13a)
Vector-based drawing program using SVG
--------------------------------------------------------------------------------
Update Information:
pre4
--------------------------------------------------------------------------------
================================================================================
libbsd-0.8.3-1.fc25 (FEDORA-2016-d3e562bb52)
Library providing BSD-compatible functions for portability
--------------------------------------------------------------------------------
Update Information:
Security fix for CVE-2016-2090
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1302622 - CVE-2016-2090 libbsd: heap buffer overflow in fgetwln function
https://bugzilla.redhat.com/show_bug.cgi?id=1302622
--------------------------------------------------------------------------------
================================================================================
libtool-2.4.6-13.fc25 (FEDORA-2016-b3e16aeb0c)
The GNU Portable Library Tool
--------------------------------------------------------------------------------
Update Information:
Fixed bugs (
http://gcc.gnu.org/PRNNNNN): 41922, 48863, 51960, 57438, 57728,
58001, 58991, 58992, 59874, 60774, 61318, 61420, 66227, 66343, 67219, 67335,
67631, 67710, 68323, 68377, 69183, 69514, 69544, 69741, 69867, 69962, 70006,
70101, 70184, 70564, 70975, 71067, 71115, 71274, 71337, 71496, 71515, 71575,
71709, 71730, 71762, 71767, 71799, 71848, 71859, 71862, 71891, 71895, 71902,
71912, 71979, 72717, 72747, 72808, 72820, 72827, 72832, 77260, 77285, 77288,
77309, 77322, 77326, 77349, 77351, 77372, 77375, 77380, 77391, 77406, 77411,
77420, 77429, 77436, 77450, 77459, 77460, 77467, 77478, 77482, 77483, 77506,
77507, 77514, 77519, 77544, 77550, 77558, 77587, 77591, 77605, 77612, 77621,
77624, 77637, 77638, 77645, 77646, 77648, 77665, 77666, 77670, 77673, 77679,
77686, 77694, 77707, 77722, 77727, 77739, 77745, 77748, 77756, 77759, 77763,
77767, 77768, 77773, 77794, 77795, 77801, 77804, 77822, 77834, 77839, 77855,
77864, 77874, 77879, 77904, 77905, 77907, 77915, 77916, 77919, 77933, 77937,
77942, 77943, 77957, 77973, 77978, 77987, 77990, 77991, 77994, 77995, 78013,
78021, 78025, 78037, 78038, 78039, 78047, 78052, 78057, 78064, 78089, 78092,
78101, 78108, 78111, 78123, 78128, 78129, 78166, 78178, 78185, 78188, 78189,
78206, 78221, 78224, 78227, 78228, 78229, 78252, 78262, 78279, 78294, 78297,
78298, 78299, 78305, 78309, 78310, 78326, 78333, 78378, 78416, 78419, 78426,
78429, 78443, 78465, 78472, 78482, 78490, 78500, 78540, 78542, 78546, 78550,
78551, 78593, 78646, 78649, 78701, 78731, 78761, 78796
--------------------------------------------------------------------------------
================================================================================
nodejs-6.9.2-2.fc25 (FEDORA-2016-506097d0f0)
JavaScript runtime
--------------------------------------------------------------------------------
Update Information:
https://github.com/nodejs/node/blob/v6.9.2/doc/changelogs/CHANGELOG_V6.md
--------------------------------------------------------------------------------
================================================================================
photocollage-1.4.3-1.fc25 (FEDORA-2016-088c427807)
Graphical tool to make photo collage posters
--------------------------------------------------------------------------------
Update Information:
- Update to new upstream version - Add missing 'python3-six' dependency
--------------------------------------------------------------------------------
================================================================================
php-justinrainbow-json-schema4-4.1.0-1.fc25 (FEDORA-2016-4bb2e63763)
A library to validate a json schema
--------------------------------------------------------------------------------
Update Information:
A PHP Implementation for validating JSON Structures against a given Schema. *
This package provides the library version 4. * The php-JsonSchema package
provides the library version 1. * The php-justinrainbow-json-schema package
provides the library version 2. See
http://json-schema.org/ Autoloader:
/usr/share/php/JsonSchema4/autoload.php
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1403724 - Review Request: php-justinrainbow-json-schema4 - A library to
validate a json schema
https://bugzilla.redhat.com/show_bug.cgi?id=1403724
--------------------------------------------------------------------------------
================================================================================
php-pear-phing-2.16.0-1.fc25 (FEDORA-2016-9ce32c3088)
A project build system based on Apache Ant
--------------------------------------------------------------------------------
Update Information:
Dec. 22, 2016 - **Phing 2.16.0** This release contains the following new or
improved functionality: * Append, Property, Sleep, Sonar and Truncate tasks *
Improved PHP 7.1 compatibility * Various typo and bug fixes, documentation
updates This release will most likely be the last minor update in the 2.x
series. Phing 3.x will drop support for PHP < 5.6. The following issues were
closed in this release: * phing should get a strict mode \(Trac \#918\)
[\#554](https://github.com/phingofficial/phing/issues/554) * Can not delete git
folders on windows \(Trac \#956\)
[\#556](https://github.com/phingofficial/phing/issues/556) * Relative symlinks
\(Trac \#1124\) [\#567](https://github.com/phingofficial/phing/issues/567) *
Tests fail under windows \(Trac \#1215\)
[\#578](https://github.com/phingofficial/phing/issues/578) * stripphpcomments
matches links in html \(Trac \#1219\)
[\#579](https://github.com/phingofficial/phing/issues/579) * OS detection fails
on OSX \(Trac \#1227\)
[\#581](https://github.com/phingofficial/phing/issues/581) * JsHintTask fails
when reporter attribute is not set \(Trac \#1230\)
[\#582](https://github.com/phingofficial/phing/issues/582) * An issue with
'file' attribute of 'append' task \(v2.15.1\)
[\#595](https://github.com/phingofficial/phing/issues/595) * An issue with
'append' task when adding a list of files in a directory \(v2.15.1\)
[\#597](https://github.com/phingofficial/phing/issues/597) * Git auto modified
file with phing vendor
[\#613](https://github.com/phingofficial/phing/issues/613) * phar file not
working - \Symfony\Component\Yaml\Parser' not found
[\#614](https://github.com/phingofficial/phing/issues/614) * JSHint ��� Support
of specific config file path
[\#615](https://github.com/phingofficial/phing/issues/615) * PHP notice on 7.1:
A non well formed numeric value encountered
[\#622](https://github.com/phingofficial/phing/issues/622) * Sass task fails
when PEAR is not installed
[\#624](https://github.com/phingofficial/phing/issues/624) * sha-512 hash for
phing-latest.phar [\#629](https://github.com/phingofficial/phing/issues/629)
--------------------------------------------------------------------------------
================================================================================
purple-hangouts-0-42.20161222hg7c0a620.fc25 (FEDORA-2016-6276a51e35)
Hangouts plugin for libpurple
--------------------------------------------------------------------------------
Update Information:
Updated to latest snapshots.
--------------------------------------------------------------------------------
================================================================================
purple-skypeweb-1.2.2-6.20161220gitfa888e0.fc25 (FEDORA-2016-6276a51e35)
Adds support for Skype to Pidgin
--------------------------------------------------------------------------------
Update Information:
Updated to latest snapshots.
--------------------------------------------------------------------------------
================================================================================
python-ladon-0.9.38-1.fc25 (FEDORA-2016-a32866de98)
Multiprotocol approach to creating a webservice
--------------------------------------------------------------------------------
Update Information:
The packages are now depends on python3 only.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1219035 - python-ladon-0.9.38 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1219035
[ 2 ] Bug #1309783 - python-ladon: Provide a Python 3 subpackage
https://bugzilla.redhat.com/show_bug.cgi?id=1309783
--------------------------------------------------------------------------------
================================================================================
python-linux-procfs-0.4.10-1.fc25 (FEDORA-2016-aff7e0e267)
Linux /proc abstraction classes
--------------------------------------------------------------------------------
Update Information:
update to latest release
--------------------------------------------------------------------------------
================================================================================
python-pathlib2-2.1.0-2.fc25 (FEDORA-2016-a461353f4a)
Object-oriented filesystem paths
--------------------------------------------------------------------------------
Update Information:
New package: Object-oriented filesystem paths.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1406962 - Review Request: python-pathlib2 - Object-oriented filesystem paths
https://bugzilla.redhat.com/show_bug.cgi?id=1406962
--------------------------------------------------------------------------------
================================================================================
python-schedutils-0.5-1.fc25 (FEDORA-2016-8ce270a792)
Linux scheduler python bindings
--------------------------------------------------------------------------------
Update Information:
new upstream release
--------------------------------------------------------------------------------
================================================================================
qcad-3.16.2.0-2.fc25 (FEDORA-2016-74b582dd78)
Powerful 2D CAD system
--------------------------------------------------------------------------------
Update Information:
- Main directory moved under libdir directory - Filtering of private libraries
- Return to QT4 (see comment) - Update to 3.16.2.0
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1401967 - Review Request: qcad - Powerful 2D CAD system
https://bugzilla.redhat.com/show_bug.cgi?id=1401967
--------------------------------------------------------------------------------
================================================================================
xen-4.7.1-6.fc25 (FEDORA-2016-92e3ea2d1b)
Xen is a virtual machine monitor
--------------------------------------------------------------------------------
Update Information:
two security flaws (#1406840) x86 PV guests may be able to mask interrupts
[XSA-202, CVE-2016-10024] x86: missing NULL pointer check in VMFUNC emulation
[XSA-203, CVE-2016-10025] x86: Mishandling of SYSCALL singlestep during
emulation [XSA-204, CVE-2016-10013] (#1406260)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1402759 - CVE-2016-10025 xsa203 xen: x86: missing NULL pointer check in
VMFUNC emulation (XSA-203)
https://bugzilla.redhat.com/show_bug.cgi?id=1402759
[ 2 ] Bug #1402758 - CVE-2016-10024 xsa202 xen: x86 PV guests may be able to mask
interrupts (XSA-202)
https://bugzilla.redhat.com/show_bug.cgi?id=1402758
[ 3 ] Bug #1406259 - CVE-2016-10013 xen: x86: Mishandling of SYSCALL singlestep during
emulation (XSA-204)
https://bugzilla.redhat.com/show_bug.cgi?id=1406259
--------------------------------------------------------------------------------