The following Fedora 24 Security updates need testing:
Age URL
136
https://bodhi.fedoraproject.org/updates/FEDORA-2016-26f9817b08
squid-3.5.23-1.fc24
129
https://bodhi.fedoraproject.org/updates/FEDORA-2016-eaaa9c4a08 exim-4.87.1-1.fc24
92
https://bodhi.fedoraproject.org/updates/FEDORA-2017-ece16ba6ba
runc-1.0.0-5.rc2.gitc91b5be.fc24
72
https://bodhi.fedoraproject.org/updates/FEDORA-2017-4b176c1694 redis-3.2.8-1.fc24
42
https://bodhi.fedoraproject.org/updates/FEDORA-2017-0f5fe1913f
sane-backends-1.0.25-7.fc24
34
https://bodhi.fedoraproject.org/updates/FEDORA-2017-ec01954fe9
chromium-57.0.2987.133-1.fc24
28
https://bodhi.fedoraproject.org/updates/FEDORA-2017-8330a48ca2
python-XStatic-jquery-ui-1.12.0.1-1.fc24
19
https://bodhi.fedoraproject.org/updates/FEDORA-2017-374389c196 qemu-2.6.2-8.fc24
17
https://bodhi.fedoraproject.org/updates/FEDORA-2017-edce28f24b
bind99-9.9.9-4.P8.fc24
13
https://bodhi.fedoraproject.org/updates/FEDORA-2017-c2cefcc2b3 icu-56.1-8.fc24
13
https://bodhi.fedoraproject.org/updates/FEDORA-2017-3b367c896f pcre-8.40-7.fc24
10
https://bodhi.fedoraproject.org/updates/FEDORA-2017-7a7d2044c9
libreoffice-5.1.6.2-8.fc24
8
https://bodhi.fedoraproject.org/updates/FEDORA-2017-0b6da97aa5
squirrelmail-1.4.22-19.fc24
5
https://bodhi.fedoraproject.org/updates/FEDORA-2017-7de130a80d tnef-1.4.14-2.fc24
5
https://bodhi.fedoraproject.org/updates/FEDORA-2017-c8448d0cad
roundcubemail-1.2.5-1.fc24
5
https://bodhi.fedoraproject.org/updates/FEDORA-2017-aff3dd3101 batik-1.8-9.fc24
3
https://bodhi.fedoraproject.org/updates/FEDORA-2017-3849af4477
libplist-2.0.0-1.fc24
3
https://bodhi.fedoraproject.org/updates/FEDORA-2017-a6a053fc05
java-1.8.0-openjdk-aarch32-1.8.0.131-1.170420.fc24
3
https://bodhi.fedoraproject.org/updates/FEDORA-2017-9ccef781a6
weechat-1.7.1-1.fc24
2
https://bodhi.fedoraproject.org/updates/FEDORA-2017-950cc68400
freetype-2.6.3-5.fc24
1
https://bodhi.fedoraproject.org/updates/FEDORA-2017-fae1506f94
ghostscript-9.20-9.fc24
1
https://bodhi.fedoraproject.org/updates/FEDORA-2017-9264ed563d
php-horde-ingo-3.2.15-1.fc24
1
https://bodhi.fedoraproject.org/updates/FEDORA-2017-c3ce061ea7 lynis-2.5.0-1.fc24
1
https://bodhi.fedoraproject.org/updates/FEDORA-2017-ad045f80ac
kernel-4.10.14-100.fc24
0
https://bodhi.fedoraproject.org/updates/FEDORA-2017-c9d71f0860 xen-4.6.5-6.fc24
0
https://bodhi.fedoraproject.org/updates/FEDORA-2017-7a0e2d58f8
thunderbird-52.1.0-1.fc24
The following Fedora 24 Critical Path updates have yet to be approved:
Age URL
24
https://bodhi.fedoraproject.org/updates/FEDORA-2017-ae0e285fc1
libdrm-2.4.79-1.fc24
15
https://bodhi.fedoraproject.org/updates/FEDORA-2017-e1905fd566 koji-1.12.0-2.fc24
13
https://bodhi.fedoraproject.org/updates/FEDORA-2017-3b367c896f pcre-8.40-7.fc24
13
https://bodhi.fedoraproject.org/updates/FEDORA-2017-c2cefcc2b3 icu-56.1-8.fc24
10
https://bodhi.fedoraproject.org/updates/FEDORA-2017-dc35d35e92 vim-8.0.586-1.fc24
10
https://bodhi.fedoraproject.org/updates/FEDORA-2017-f808fd0be7
menu-cache-1.0.2-3.D20170419gitdffb1314ec.fc24
8
https://bodhi.fedoraproject.org/updates/FEDORA-2017-508fd2b9ca
json-c-0.12.1-1.fc24
8
https://bodhi.fedoraproject.org/updates/FEDORA-2017-878927210f
ca-certificates-2017.2.14-1.0.fc24
5
https://bodhi.fedoraproject.org/updates/FEDORA-2017-162308e82b llvm-3.8.1-3.fc24
cargo-0.18.0-1.fc24 rust-1.17.0-1.fc24
5
https://bodhi.fedoraproject.org/updates/FEDORA-2017-fb8bb34a62
coreutils-8.25-9.fc24
3
https://bodhi.fedoraproject.org/updates/FEDORA-2017-6cbcdc4571
xorg-x11-drv-nouveau-1.0.15-1.fc24
3
https://bodhi.fedoraproject.org/updates/FEDORA-2017-3849af4477
libplist-2.0.0-1.fc24
3
https://bodhi.fedoraproject.org/updates/FEDORA-2017-3a209288cf audit-2.7.6-1.fc24
2
https://bodhi.fedoraproject.org/updates/FEDORA-2017-950cc68400
freetype-2.6.3-5.fc24
1
https://bodhi.fedoraproject.org/updates/FEDORA-2017-ad045f80ac
kernel-4.10.14-100.fc24
1
https://bodhi.fedoraproject.org/updates/FEDORA-2017-94e1a0cb77
libXdmcp-1.1.2-6.fc24
1
https://bodhi.fedoraproject.org/updates/FEDORA-2017-80497255ca
libICE-1.0.9-9.fc24
1
https://bodhi.fedoraproject.org/updates/FEDORA-2017-a16494458f rsync-3.1.2-3.fc24
0
https://bodhi.fedoraproject.org/updates/FEDORA-2017-7a0e2d58f8
thunderbird-52.1.0-1.fc24
The following builds have been pushed to Fedora 24 updates-testing
amanda-3.4.4-1.fc24
ansible-lint-3.4.13-1.fc24
golang-github-klauspost-reedsolomon-1.3-1.fc24
hypre-2.11.2-1.fc24
mc-4.8.19-2.fc24
mozjs45-45.9.0-1.fc24
perl-DateTime-Format-Pg-0.16013-1.fc24
php-fedora-autoloader-1.0.0-1.fc24
php-horde-Horde-Cli-2.2.2-1.fc24
php-phpmyadmin-sql-parser-4.1.4-1.fc24
python-btchip-0.1.20-1.fc24
rubygem-domain_name-0.5.20170404-1.fc24
sayonara-0.9.3-1.git20170502.fc24
thunderbird-52.1.0-1.fc24
xen-4.6.5-6.fc24
xfce4-dict-0.8.0-1.fc24
Details about builds:
================================================================================
amanda-3.4.4-1.fc24 (FEDORA-2017-6581dc4119)
A network-capable tape backup solution
--------------------------------------------------------------------------------
Update Information:
Update to latest upstream release, which includes various minor bugfixes.
--------------------------------------------------------------------------------
================================================================================
ansible-lint-3.4.13-1.fc24 (FEDORA-2017-35fa3c521c)
Best practices checker for Ansible
--------------------------------------------------------------------------------
Update Information:
Update to 3.4.13 version
--------------------------------------------------------------------------------
================================================================================
golang-github-klauspost-reedsolomon-1.3-1.fc24 (FEDORA-2017-d1dab82433)
Reed-Solomon Erasure Coding in Go
--------------------------------------------------------------------------------
Update Information:
Initial package for fedora. This is one of the (indirect) dependencies of
syncthing.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1437471 - Review Request: golang-github-klauspost-reedsolomon - Reed-Solomon
Erasure Coding in Go
https://bugzilla.redhat.com/show_bug.cgi?id=1437471
--------------------------------------------------------------------------------
================================================================================
hypre-2.11.2-1.fc24 (FEDORA-2017-bb38660471)
High performance matrix preconditioners
--------------------------------------------------------------------------------
Update Information:
Bugfix release
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1431888 - hypre-2.12.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1431888
--------------------------------------------------------------------------------
================================================================================
mc-4.8.19-2.fc24 (FEDORA-2017-70c2e0ec52)
User-friendly text console file manager and visual shell
--------------------------------------------------------------------------------
Update Information:
Revert to slang, etc. ---- 4.8.19
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1442842 - 4.8.19-2: go back to slang and other cleanups
https://bugzilla.redhat.com/show_bug.cgi?id=1442842
[ 2 ] Bug #1440532 - Mignight Commander shows pseudographics as letters in PuTTY
https://bugzilla.redhat.com/show_bug.cgi?id=1440532
[ 3 ] Bug #1440110 - Midnight Command 4.8.19 has broken keymapping for Copy & Move
https://bugzilla.redhat.com/show_bug.cgi?id=1440110
[ 4 ] Bug #1438149 - mc-wrapper.sh script does not work anymore
https://bugzilla.redhat.com/show_bug.cgi?id=1438149
[ 5 ] Bug #1433602 - Extends TMPDIR_DEFAULT to mc-wrapper scripts - exit to CWD
https://bugzilla.redhat.com/show_bug.cgi?id=1433602
[ 6 ] Bug #1436394 - update to 4.8.19, switch from slang to ncurses, other cleanups
https://bugzilla.redhat.com/show_bug.cgi?id=1436394
[ 7 ] Bug #1429265 - mc-4.8.19 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1429265
--------------------------------------------------------------------------------
================================================================================
mozjs45-45.9.0-1.fc24 (FEDORA-2017-a19e3dba9a)
JavaScript interpreter and libraries
--------------------------------------------------------------------------------
Update Information:
Update to latest minor release 45.9.0.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1443268 - mozjs45-45.9.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1443268
--------------------------------------------------------------------------------
================================================================================
perl-DateTime-Format-Pg-0.16013-1.fc24 (FEDORA-2017-5376fa1b44)
Parse and format PostgreSQL dates and times
--------------------------------------------------------------------------------
Update Information:
Updated to the latest version
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1448243 - perl-DateTime-Format-Pg-0.16013 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1448243
--------------------------------------------------------------------------------
================================================================================
php-fedora-autoloader-1.0.0-1.fc24 (FEDORA-2017-0a2adab24e)
Fedora Autoloader
--------------------------------------------------------------------------------
Update Information:
## 1.0.0 (2017-05-04) First stable release. No changes since 1.0.0-rc1. May
the 4th be with you!
--------------------------------------------------------------------------------
================================================================================
php-horde-Horde-Cli-2.2.2-1.fc24 (FEDORA-2017-67637e548b)
Horde Command Line Interface API
--------------------------------------------------------------------------------
Update Information:
**Horde_Cli 2.2.2** * [jan] Really silence errors from tput and stty (Bug
#14632). ---- **Horde_Cli 2.2.1** * [jan] Silence errors from tput and stty
(Bug #14632).
--------------------------------------------------------------------------------
================================================================================
php-phpmyadmin-sql-parser-4.1.4-1.fc24 (FEDORA-2017-b74532eb9f)
A validating SQL lexer and parser with a focus on MySQL dialect
--------------------------------------------------------------------------------
Update Information:
A validating SQL lexer and parser with a focus on MySQL dialect. This library
was originally developed for phpMyAdmin during the Google Summer of Code 2015.
Autoloader: /usr/share/php/PhpMyAdmin/SqlParser/autoload.php
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1415686 - Review Request: php-phpmyadmin-sql-parser - A validating SQL lexer
and parser with a focus on MySQL dialect
https://bugzilla.redhat.com/show_bug.cgi?id=1415686
--------------------------------------------------------------------------------
================================================================================
python-btchip-0.1.20-1.fc24 (FEDORA-2017-5d44383548)
Python communication library for Ledger Hardware Wallet products
--------------------------------------------------------------------------------
Update Information:
Update to 0.1.20
--------------------------------------------------------------------------------
================================================================================
rubygem-domain_name-0.5.20170404-1.fc24 (FEDORA-2017-fab8390425)
Domain Name manipulation library for Ruby
--------------------------------------------------------------------------------
Update Information:
New version 0.5.20170404 is released
--------------------------------------------------------------------------------
================================================================================
sayonara-0.9.3-1.git20170502.fc24 (FEDORA-2017-9b7b33df91)
A lightweight Qt Audio player
--------------------------------------------------------------------------------
Update Information:
Update to 0.9.3-1.git20170502
--------------------------------------------------------------------------------
================================================================================
thunderbird-52.1.0-1.fc24 (FEDORA-2017-7a0e2d58f8)
Mozilla Thunderbird mail/newsgroup client
--------------------------------------------------------------------------------
Update Information:
See changes there:
https://www.mozilla.org/en-
US/thunderbird/52.1.0/releasenotes/ ---- This update brings a lot of changes,
for complete list see
https://www.mozilla.org/en-
US/thunderbird/52.0/releasenotes/
--------------------------------------------------------------------------------
================================================================================
xen-4.6.5-6.fc24 (FEDORA-2017-c9d71f0860)
Xen is a virtual machine monitor
--------------------------------------------------------------------------------
Update Information:
xen: various flaws (#1447345) x86: 64bit PV guest breakout via pagetable use-
after-mode-change [XSA-213] grant transfer allows PV guest to elevate privileges
[XSA-214] possible memory corruption via failsafe callback [XSA-215]
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1443220 - xsa215 xen: possible memory corruption via failsafe callback
(XSA-215)
https://bugzilla.redhat.com/show_bug.cgi?id=1443220
[ 2 ] Bug #1443222 - xsa213 xen: x86: 64bit PV guest breakout via pagetable
use-after-mode-change (XSA-213)
https://bugzilla.redhat.com/show_bug.cgi?id=1443222
[ 3 ] Bug #1443223 - xsa214 xen: grant transfer allows PV guest to elevate privileges
(XSA-214)
https://bugzilla.redhat.com/show_bug.cgi?id=1443223
--------------------------------------------------------------------------------
================================================================================
xfce4-dict-0.8.0-1.fc24 (FEDORA-2017-5d12d25d38)
A Dictionary Client for the Xfce desktop environment
--------------------------------------------------------------------------------
Update Information:
- Rebuilt to new upstream release 0.8.0 + spec clean up
--------------------------------------------------------------------------------