The following Fedora 23 Security updates need testing:
Age URL
406
https://bodhi.fedoraproject.org/updates/FEDORA-2015-16240 nagios-4.0.8-1.fc23
363
https://bodhi.fedoraproject.org/updates/FEDORA-2015-81ded368fe
miniupnpc-1.9-6.fc23
336
https://bodhi.fedoraproject.org/updates/FEDORA-2015-27392b3324
jbig2dec-0.12-2.fc23
287
https://bodhi.fedoraproject.org/updates/FEDORA-2015-dd52a54fa1
python-pymongo-3.0.3-1.fc23
287
https://bodhi.fedoraproject.org/updates/FEDORA-2015-06a7c972e8
thttpd-2.25b-37.fc23
252
https://bodhi.fedoraproject.org/updates/FEDORA-2016-637618fcd4
mingw-nsis-2.50-1.fc23
106
https://bodhi.fedoraproject.org/updates/FEDORA-2016-70b5173c05
ecryptfs-utils-111-1.fc23
93
https://bodhi.fedoraproject.org/updates/FEDORA-2016-8d79ade826 flex-2.6.0-2.fc23
82
https://bodhi.fedoraproject.org/updates/FEDORA-2016-c2ec9c716e redis-3.2.3-1.fc23
75
https://bodhi.fedoraproject.org/updates/FEDORA-2016-d6288f555c
libarchive-3.2.1-3.fc23 python-libarchive-c-2.5-1.fc23
73
https://bodhi.fedoraproject.org/updates/FEDORA-2016-47dc2b203f
firewalld-0.4.3.3-1.fc23
59
https://bodhi.fedoraproject.org/updates/FEDORA-2016-b3a6435b14
dhcpcd-6.11.3-1.fc23
27
https://bodhi.fedoraproject.org/updates/FEDORA-2016-8e4e733bef
systemd-222-17.fc23
25
https://bodhi.fedoraproject.org/updates/FEDORA-2016-1649cc31e0
ca-certificates-2016.2.10-1.0.fc23
24
https://bodhi.fedoraproject.org/updates/FEDORA-2016-0e7694c456
libXfixes-5.0.3-1.fc23
24
https://bodhi.fedoraproject.org/updates/FEDORA-2016-d045c2c7b3
libXrandr-1.5.1-1.fc23
24
https://bodhi.fedoraproject.org/updates/FEDORA-2016-b26b497381
libXtst-1.2.3-1.fc23
24
https://bodhi.fedoraproject.org/updates/FEDORA-2016-49d560da23
libXrender-0.9.10-1.fc23
24
https://bodhi.fedoraproject.org/updates/FEDORA-2016-d286ffb801
libXvMC-1.0.10-1.fc23
24
https://bodhi.fedoraproject.org/updates/FEDORA-2016-3b41a9eaa8
libXv-1.0.11-1.fc23
21
https://bodhi.fedoraproject.org/updates/FEDORA-2016-95407a836f
libass-0.13.4-1.fc23
17
https://bodhi.fedoraproject.org/updates/FEDORA-2016-17ea599651
compat-guile18-1.8.8-14.fc23
16
https://bodhi.fedoraproject.org/updates/FEDORA-2016-ee56c530fa
epiphany-3.18.8-1.fc23 webkitgtk4-2.14.1-1.fc23
16
https://bodhi.fedoraproject.org/updates/FEDORA-2016-c1bb366e5b
dbus-1.10.12-1.fc23
7
https://bodhi.fedoraproject.org/updates/FEDORA-2016-3b6393acdd tor-0.2.8.9-1.fc23
5
https://bodhi.fedoraproject.org/updates/FEDORA-2016-6c789ba91d
jasper-1.900.13-1.fc23
4
https://bodhi.fedoraproject.org/updates/FEDORA-2016-4094bd4ad6
tomcat-8.0.38-1.fc23
4
https://bodhi.fedoraproject.org/updates/FEDORA-2016-21f0de504c libXi-1.7.8-2.fc23
4
https://bodhi.fedoraproject.org/updates/FEDORA-2016-f7a079f775
kdepimlibs-4.14.10-15.fc23
4
https://bodhi.fedoraproject.org/updates/FEDORA-2016-568c7ff4f6
quagga-0.99.24.1-3.fc23
2
https://bodhi.fedoraproject.org/updates/FEDORA-2016-b89e991e63
nodejs-0.10.48-1.fc23
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-012de4c97e
chromium-54.0.2840.71-1.fc23
The following Fedora 23 Critical Path updates have yet to be approved:
Age URL
102
https://bodhi.fedoraproject.org/updates/FEDORA-2016-98a7a1b6e0 abrt-2.8.0-6.fc23
libreport-2.6.4-3.fc23
75
https://bodhi.fedoraproject.org/updates/FEDORA-2016-d6288f555c
libarchive-3.2.1-3.fc23 python-libarchive-c-2.5-1.fc23
36
https://bodhi.fedoraproject.org/updates/FEDORA-2016-79072fd70e
python-virtkey-0.63.0-1.fc23
30
https://bodhi.fedoraproject.org/updates/FEDORA-2016-d26923757a
koji-1.10.1-13.fc23
27
https://bodhi.fedoraproject.org/updates/FEDORA-2016-8e4e733bef
systemd-222-17.fc23
25
https://bodhi.fedoraproject.org/updates/FEDORA-2016-1649cc31e0
ca-certificates-2016.2.10-1.0.fc23
24
https://bodhi.fedoraproject.org/updates/FEDORA-2016-3646279587
libgdata-0.17.5-2.fc23
24
https://bodhi.fedoraproject.org/updates/FEDORA-2016-3b41a9eaa8
libXv-1.0.11-1.fc23
24
https://bodhi.fedoraproject.org/updates/FEDORA-2016-d286ffb801
libXvMC-1.0.10-1.fc23
24
https://bodhi.fedoraproject.org/updates/FEDORA-2016-49d560da23
libXrender-0.9.10-1.fc23
24
https://bodhi.fedoraproject.org/updates/FEDORA-2016-b26b497381
libXtst-1.2.3-1.fc23
24
https://bodhi.fedoraproject.org/updates/FEDORA-2016-d045c2c7b3
libXrandr-1.5.1-1.fc23
24
https://bodhi.fedoraproject.org/updates/FEDORA-2016-0e7694c456
libXfixes-5.0.3-1.fc23
21
https://bodhi.fedoraproject.org/updates/FEDORA-2016-95407a836f
libass-0.13.4-1.fc23
16
https://bodhi.fedoraproject.org/updates/FEDORA-2016-2a91644580
thunderbird-45.4.0-1.fc23
16
https://bodhi.fedoraproject.org/updates/FEDORA-2016-c1bb366e5b
dbus-1.10.12-1.fc23
13
https://bodhi.fedoraproject.org/updates/FEDORA-2016-6e25f5418b
gnome-settings-daemon-3.18.4-1.fc23
10
https://bodhi.fedoraproject.org/updates/FEDORA-2016-79669f13cf
dmidecode-3.0-6.fc23
9
https://bodhi.fedoraproject.org/updates/FEDORA-2016-3da7667d60
sane-backends-1.0.25-4.fc23
8
https://bodhi.fedoraproject.org/updates/FEDORA-2016-86a2119f42 nspr-4.13.1-1.fc23
7
https://bodhi.fedoraproject.org/updates/FEDORA-2016-4379c6e6d6
libfm-1.2.4-8.D20161017git82b3a1a201.fc23
6
https://bodhi.fedoraproject.org/updates/FEDORA-2016-4a8ab1b8bc
menu-cache-1.0.1-3.D20161021git441f0ca9a1.fc23
5
https://bodhi.fedoraproject.org/updates/FEDORA-2016-b06386d473 pcre-8.39-6.fc23
5
https://bodhi.fedoraproject.org/updates/FEDORA-2016-6c789ba91d
jasper-1.900.13-1.fc23
4
https://bodhi.fedoraproject.org/updates/FEDORA-2016-f7a079f775
kdepimlibs-4.14.10-15.fc23
4
https://bodhi.fedoraproject.org/updates/FEDORA-2016-21f0de504c libXi-1.7.8-2.fc23
2
https://bodhi.fedoraproject.org/updates/FEDORA-2016-68a38b6693
kernel-4.7.10-100.fc23
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-a0a575d718
libraw1394-2.1.2-1.fc23
The following builds have been pushed to Fedora 23 updates-testing
accumulo-1.6.6-6.fc23
ansible-lint-3.4.1-1.fc23
chromium-54.0.2840.71-1.fc23
clamtk-5.23-1.fc23
dmlite-0.8.2-1.fc23
gnome-chemistry-utils-0.14.14-3.fc23
goffice-0.10.32-2.fc23
hgsvn-0.5.1-1.fc23
inxi-2.3.3-1.fc23
libpst-0.6.69-1.fc23
libraw1394-2.1.2-1.fc23
lis-1.7.4-2.fc23
ngrep-1.47-0.1.a39256b.fc23
perl-HTTP-MultiPartParser-0.01-2.fc23
php-fedora-autoloader-0.2.1-2.fc23
php-solarium-3.7.0-1.fc23
python-taskw-1.2.0-1.fc23
qmc2-0.69-1.fc23
rubygem-css_parser-1.4.6-1.fc23
rubygem-prawn-icon-1.3.0-1.fc23
ubu-keyring-2016.10.27-1.fc23
Details about builds:
================================================================================
accumulo-1.6.6-6.fc23 (FEDORA-2016-edc5bd0a1b)
A software platform for processing vast amounts of data
--------------------------------------------------------------------------------
Update Information:
This update fixes missing classpath elements and provides more sane default
logging configuration files. ---- Update to Apache Accumulo 1.6.6. HDFS
provider for VFS 2.1 is not yet supported in f25, f26.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1389325 - None
https://bugzilla.redhat.com/show_bug.cgi?id=1389325
--------------------------------------------------------------------------------
================================================================================
ansible-lint-3.4.1-1.fc23 (FEDORA-2016-3f43dfb47e)
Best practices checker for Ansible
--------------------------------------------------------------------------------
Update Information:
Update to 3.4.1
--------------------------------------------------------------------------------
================================================================================
chromium-54.0.2840.71-1.fc23 (FEDORA-2016-012de4c97e)
A WebKit (Blink) powered web browser
--------------------------------------------------------------------------------
Update Information:
Security fix for CVE-2016-5181, CVE-2016-5182, CVE-2016-5183, CVE-2016-5184,
CVE-2016-5185, CVE-2016-5187, CVE-2016-5188, CVE-2016-5192, CVE-2016-5189,
CVE-2016-5186, CVE-2016-5191, CVE-2016-5190, CVE-2016-5193, CVE-2016-5194
Update to new stable, 54.0.2840.71.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1384365 - CVE-2016-5194 chromium-browser: various fixes from internal audits
https://bugzilla.redhat.com/show_bug.cgi?id=1384365
[ 2 ] Bug #1384364 - CVE-2016-5193 chromium-browser: scheme bypass
https://bugzilla.redhat.com/show_bug.cgi?id=1384364
[ 3 ] Bug #1384362 - CVE-2016-5190 chromium-browser: use after free in internals
https://bugzilla.redhat.com/show_bug.cgi?id=1384362
[ 4 ] Bug #1384361 - CVE-2016-5191 chromium-browser: universal xss in bookmarks
https://bugzilla.redhat.com/show_bug.cgi?id=1384361
[ 5 ] Bug #1384360 - CVE-2016-5186 chromium-browser: out of bounds read in devtools
https://bugzilla.redhat.com/show_bug.cgi?id=1384360
[ 6 ] Bug #1384358 - CVE-2016-5189 chromium-browser: url spoofing
https://bugzilla.redhat.com/show_bug.cgi?id=1384358
[ 7 ] Bug #1384357 - CVE-2016-5192 chromium-browser: cross-origin bypass in blink
https://bugzilla.redhat.com/show_bug.cgi?id=1384357
[ 8 ] Bug #1384355 - CVE-2016-5188 chromium-browser: ui spoofing
https://bugzilla.redhat.com/show_bug.cgi?id=1384355
[ 9 ] Bug #1384354 - CVE-2016-5187 chromium-browser: url spoofing
https://bugzilla.redhat.com/show_bug.cgi?id=1384354
[ 10 ] Bug #1384352 - CVE-2016-5185 chromium-browser: use after free in blink
https://bugzilla.redhat.com/show_bug.cgi?id=1384352
[ 11 ] Bug #1384350 - CVE-2016-5184 chromium-browser: use after free in pdfium
https://bugzilla.redhat.com/show_bug.cgi?id=1384350
[ 12 ] Bug #1384349 - CVE-2016-5183 chromium-browser: use after free in pdfium
https://bugzilla.redhat.com/show_bug.cgi?id=1384349
[ 13 ] Bug #1384348 - CVE-2016-5182 chromium-browser: heap overflow in blink
https://bugzilla.redhat.com/show_bug.cgi?id=1384348
[ 14 ] Bug #1384347 - CVE-2016-5181 chromium-browser: universal xss in blink
https://bugzilla.redhat.com/show_bug.cgi?id=1384347
--------------------------------------------------------------------------------
================================================================================
clamtk-5.23-1.fc23 (FEDORA-2016-3f9f980e30)
Easy to use graphical user interface for Clam anti virus
--------------------------------------------------------------------------------
Update Information:
Update to 5.23, fixing an issue with Live CDs
--------------------------------------------------------------------------------
================================================================================
dmlite-0.8.2-1.fc23 (FEDORA-2016-5d91c9be1a)
Lcgdm grid data management and storage framework
--------------------------------------------------------------------------------
Update Information:
* new upstream release ---- * bug fixes
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1384305 - None
https://bugzilla.redhat.com/show_bug.cgi?id=1384305
--------------------------------------------------------------------------------
================================================================================
gnome-chemistry-utils-0.14.14-3.fc23 (FEDORA-2016-e80a796d2f)
A set of chemical utilities
--------------------------------------------------------------------------------
Update Information:
Added lasem support: *
https://wiki.gnome.org/Projects/Lasem
--------------------------------------------------------------------------------
================================================================================
goffice-0.10.32-2.fc23 (FEDORA-2016-e80a796d2f)
G Office support libraries
--------------------------------------------------------------------------------
Update Information:
Added lasem support: *
https://wiki.gnome.org/Projects/Lasem
--------------------------------------------------------------------------------
================================================================================
hgsvn-0.5.1-1.fc23 (FEDORA-2016-93830b9bab)
A set of scripts to work locally on subversion checkouts using mercurial
--------------------------------------------------------------------------------
Update Information:
Update to latest upstream release hgsvn 0.5.1.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1386992 - None
https://bugzilla.redhat.com/show_bug.cgi?id=1386992
--------------------------------------------------------------------------------
================================================================================
inxi-2.3.3-1.fc23 (FEDORA-2016-0839b5fc34)
A full featured system information script
--------------------------------------------------------------------------------
Update Information:
Update to 2.3.3.
--------------------------------------------------------------------------------
================================================================================
libpst-0.6.69-1.fc23 (FEDORA-2016-e7c6c67fc1)
Utilities to convert Outlook .pst files to other formats
--------------------------------------------------------------------------------
Update Information:
fix bugs in code allowing folders containing multiple item types
--------------------------------------------------------------------------------
================================================================================
libraw1394-2.1.2-1.fc23 (FEDORA-2016-a0a575d718)
Library providing low-level IEEE-1394 access
--------------------------------------------------------------------------------
Update Information:
Upstream bugfix release. Notable changes: - Fix backwards moving cycle timer in
isochronous transmit. The problem has been observed with audio I/O on
different systems. - Fix crash with SIGBUS on SPARC and similar architectures. -
Fix memory leak in address range mapping response handler. - Fix errno reporting
to applications which relied on behavior of libraw1394 1.x. - Fix errno
checking in the dumpiso and sendiso example programs. - Minor documentation
improvement.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1217034 - None
https://bugzilla.redhat.com/show_bug.cgi?id=1217034
--------------------------------------------------------------------------------
================================================================================
lis-1.7.4-2.fc23 (FEDORA-2016-a00c4b247b)
A library for solving linear equations and eigenvalue problems
--------------------------------------------------------------------------------
Update Information:
Add new binaries ---- Update to 1.6.24 ---- Update to 1.6.10 ---- Update
to 1.6.2 ---- Update to 1.5.76
--------------------------------------------------------------------------------
================================================================================
ngrep-1.47-0.1.a39256b.fc23 (FEDORA-2016-ffc4de257e)
Network layer grep tool
--------------------------------------------------------------------------------
Update Information:
update :)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1283801 - None
https://bugzilla.redhat.com/show_bug.cgi?id=1283801
--------------------------------------------------------------------------------
================================================================================
perl-HTTP-MultiPartParser-0.01-2.fc23 (FEDORA-2016-01961f016b)
HTTP MultiPart Parser
--------------------------------------------------------------------------------
Update Information:
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1382926 - None
https://bugzilla.redhat.com/show_bug.cgi?id=1382926
--------------------------------------------------------------------------------
================================================================================
php-fedora-autoloader-0.2.1-2.fc23 (FEDORA-2016-1e758eff5c)
Fedora Autoloader
--------------------------------------------------------------------------------
Update Information:
Static [
PSR-4](http://www.php-fig.org/psr/psr-4/), [PSR-0](http://www.php-
fig.org/psr/psr-0/), and classmap autoloader. Includes loader for required and
optional dependencies.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1386735 - None
https://bugzilla.redhat.com/show_bug.cgi?id=1386735
--------------------------------------------------------------------------------
================================================================================
php-solarium-3.7.0-1.fc23 (FEDORA-2016-d8978891ef)
Solarium PHP Solr client library
--------------------------------------------------------------------------------
Update Information:
**Version 3.7.0** - 2016-10-28 - added: support for nested documents in update
query - added: spatial component for select query - added: support for keys and
excludes in interval facet - added: support for grouping using a function
(group.func) - bugfix: spellcheck collation parsing for Solr 5+ - improvement:
lots of fixes in documentation markup - added: included suggestion in composer
file for a query builder library Packaging change: - switch from symfony
/class-loader to fedora/autoloader
--------------------------------------------------------------------------------
================================================================================
python-taskw-1.2.0-1.fc23 (FEDORA-2016-c6bf089683)
Python bindings for your taskwarrior database
--------------------------------------------------------------------------------
Update Information:
Latest upstream with some fixes for string escaping.
--------------------------------------------------------------------------------
================================================================================
qmc2-0.69-1.fc23 (FEDORA-2016-1328a440d4)
M.A.M.E. Catalog / Launcher II
--------------------------------------------------------------------------------
Update Information:
Update to the latest upstream release: *
http://qmc2.batcom-
it.net/index.php/2016/10/27/qmc2-0-69-released/
--------------------------------------------------------------------------------
================================================================================
rubygem-css_parser-1.4.6-1.fc23 (FEDORA-2016-9a9cc21424)
Ruby CSS parser
--------------------------------------------------------------------------------
Update Information:
1.4.6
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1387457 - None
https://bugzilla.redhat.com/show_bug.cgi?id=1387457
--------------------------------------------------------------------------------
================================================================================
rubygem-prawn-icon-1.3.0-1.fc23 (FEDORA-2016-c06f6103aa)
Provides icon fonts for PrawnPDF
--------------------------------------------------------------------------------
Update Information:
1.3.0
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1385667 - None
https://bugzilla.redhat.com/show_bug.cgi?id=1385667
--------------------------------------------------------------------------------
================================================================================
ubu-keyring-2016.10.27-1.fc23 (FEDORA-2016-6dafd33c7a)
GnuPG keys of the Ubuntu archive
--------------------------------------------------------------------------------
Update Information:
Update to 2016.10.27, see
http://changelogs.ubuntu.com/changelogs/pool/main/u
/ubuntu-keyring/ubuntu-keyring_2016.10.27/changelog for details.
--------------------------------------------------------------------------------