The following Fedora 23 Security updates need testing:
Age URL
305
https://bodhi.fedoraproject.org/updates/FEDORA-2015-16240 nagios-4.0.8-1.fc23
262
https://bodhi.fedoraproject.org/updates/FEDORA-2015-81ded368fe
miniupnpc-1.9-6.fc23
235
https://bodhi.fedoraproject.org/updates/FEDORA-2015-27392b3324
jbig2dec-0.12-2.fc23
186
https://bodhi.fedoraproject.org/updates/FEDORA-2015-dd52a54fa1
python-pymongo-3.0.3-1.fc23
185
https://bodhi.fedoraproject.org/updates/FEDORA-2015-06a7c972e8
thttpd-2.25b-37.fc23
151
https://bodhi.fedoraproject.org/updates/FEDORA-2016-637618fcd4
mingw-nsis-2.50-1.fc23
26
https://bodhi.fedoraproject.org/updates/FEDORA-2016-fcccb0a547
nodejs-0.10.46-1.fc23
9
https://bodhi.fedoraproject.org/updates/FEDORA-2016-cef912e3a4
breeze-icon-theme-5.24.0-1.fc23 extra-cmake-modules-5.24.0-1.fc23 kf5-5.24.0-1.fc23
kf5-attica-5.24.0-1.fc23 kf5-baloo-5.24.0-1.fc23 kf5-bluez-qt-5.24.0-1.fc23
kf5-frameworkintegration-5.24.0-1.fc23 kf5-kactivities-5.24.0-1.fc23
kf5-kactivities-stats-5.24.0-1.fc23 kf5-kapidox-5.24.0-1.fc23 kf5-karchive-5.24.0-1.fc23
kf5-kauth-5.24.0-1.fc23 kf5-kbookmarks-5.24.0-1.fc23 kf5-kcmutils-5.24.0-1.fc23
kf5-kcodecs-5.24.0-1.fc23 kf5-kcompletion-5.24.0-1.fc23 kf5-kconfig-5.24.0-1.fc23
kf5-kconfigwidgets-5.24.0-1.fc23 kf5-kcoreaddons-5.24.0-1.fc23 kf5-kcrash-5.24.0-1.fc23
kf5-kdbusaddons-5.24.0-1.fc23 kf5-kdeclarative-5.24.0-1.fc23 kf5-kded-5.24.0-1.fc23
kf5-kdelibs4support-5.24.0-1.fc23 kf5-kdesignerplugin-5.24.0-1.fc23
kf5-kdesu-5.24.0-1.fc23 kf5-kdewebkit-5.24.0-1.fc23 kf5-kdnssd-5.24.0-1.fc23
kf5-kdoctools-5.24.0-1.fc23 kf5-kemoticons-5.24.0-1.fc23 kf5-kfilemetadata-5.24.0-1.fc23
kf5-kglobalaccel-5.24.0-1.fc23 kf5-kguiad
dons-5.24.0-1.fc23 kf5-khtml-5.24.0-1.fc23 kf5-ki18n-5.24.0-1.fc23
kf5-kiconthemes-5.24.0-1.fc23 kf5-kidletime-5.24.0-1.fc23 kf5-kimageformats-5.24.0-1.fc23
kf5-kinit-5.24.0-1.fc23 kf5-kio-5.24.0-1.fc23 kf5-kitemmodels-5.24.0-1.fc23
kf5-kitemviews-5.24.0-1.fc23 kf5-kjobwidgets-5.24.0-1.fc23 kf5-kjs-5.24.0-1.fc23
kf5-kjsembed-5.24.0-1.fc23 kf5-kmediaplayer-5.24.0-1.fc23 kf5-knewstuff-5.24.0-1.fc23
kf5-knotifications-5.24.0-1.fc23 kf5-knotifyconfig-5.24.0-1.fc23
kf5-kpackage-5.24.0-1.fc23 kf5-kparts-5.24.0-1.fc23 kf5-kpeople-5.24.0-1.fc23
kf5-kplotting-5.24.0-1.fc23 kf5-kpty-5.24.0-1.fc23 kf5-kross-5.24.0-1.fc23
kf5-krunner-5.24.0-1.fc23 kf5-kservice-5.24.0-1.fc23 kf5-ktexteditor-5.24.0-1.fc23
kf5-ktextwidgets-5.24.0-1.fc23 kf5-kunitconversion-5.24.0-1.fc23 kf5-kwallet-5.24.0-1.fc23
kf5-kwayland-5.24.0-1.fc23 kf5-kwidgetsaddons-5.24.0-1.fc23
kf5-kwindowsystem-5.24.0-1.fc23 kf5-kxmlgui-5.24.0-1.fc23 kf5-kxmlrpcclient-5.24.0-1.fc23
kf5-modemmanager-qt-5.24.0-1.fc23 kf5-networkmanager-qt
-5.24.0-1.fc23 kf5-plasma-5.24.0-1.fc23 kf5-solid-5.24.0-1.fc23 kf5-sonnet-5.24.0-1.fc23
kf5-threadweaver-5.24.0-1.fc23 oxygen-icon-theme-5.24.0-1.fc23
7
https://bodhi.fedoraproject.org/updates/FEDORA-2016-a7322c9fd1
spice-0.12.8-1.fc23
5
https://bodhi.fedoraproject.org/updates/FEDORA-2016-70b5173c05
ecryptfs-utils-111-1.fc23
5
https://bodhi.fedoraproject.org/updates/FEDORA-2016-6db1c9eb69
dnsmasq-2.76-1.fc23
2
https://bodhi.fedoraproject.org/updates/FEDORA-2016-430bc0f808 p7zip-16.02-1.fc23
2
https://bodhi.fedoraproject.org/updates/FEDORA-2016-1136df48e5
openssh-7.2p2-4.fc23
1
https://bodhi.fedoraproject.org/updates/FEDORA-2016-16e8d38f57
gsi-openssh-7.2p2-3.fc23
1
https://bodhi.fedoraproject.org/updates/FEDORA-2016-9c8cf5912c
php-guzzlehttp-guzzle6-6.2.1-1.fc23
1
https://bodhi.fedoraproject.org/updates/FEDORA-2016-df0726ae26
httpd-2.4.23-4.fc23
1
https://bodhi.fedoraproject.org/updates/FEDORA-2016-e2c8f5f95a
php-guzzlehttp-guzzle-5.3.1-1.fc23
1
https://bodhi.fedoraproject.org/updates/FEDORA-2016-7b7e16a39e
libvirt-1.2.18.4-1.fc23
1
https://bodhi.fedoraproject.org/updates/FEDORA-2016-6f69bc4d59 glpi-0.90.4-1.fc23
1
https://bodhi.fedoraproject.org/updates/FEDORA-2016-833533ffde
ca-certificates-2016.2.8-1.0.fc23
1
https://bodhi.fedoraproject.org/updates/FEDORA-2016-d6288f555c
libarchive-3.2.1-3.fc23
1
https://bodhi.fedoraproject.org/updates/FEDORA-2016-ed5f606dde
drupal7-views-3.14-1.fc23
1
https://bodhi.fedoraproject.org/updates/FEDORA-2016-340e361b90
golang-1.5.4-2.fc23
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-cd2bd0800f php-5.6.24-1.fc23
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-b777fc7a8b
php-pecl-zip-1.13.4-1.fc23
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-2e20730676
pbuilder-0.225.2-1.fc23
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-ec4c27d766
libgcrypt-1.6.5-1.fc23
The following Fedora 23 Critical Path updates have yet to be approved:
Age URL
11
https://bodhi.fedoraproject.org/updates/FEDORA-2016-1f48f924bb
gnome-online-accounts-3.18.5-1.fc23
11
https://bodhi.fedoraproject.org/updates/FEDORA-2016-afcccffb41 fuse-2.9.7-1.fc23
9
https://bodhi.fedoraproject.org/updates/FEDORA-2016-cef912e3a4
breeze-icon-theme-5.24.0-1.fc23 extra-cmake-modules-5.24.0-1.fc23 kf5-5.24.0-1.fc23
kf5-attica-5.24.0-1.fc23 kf5-baloo-5.24.0-1.fc23 kf5-bluez-qt-5.24.0-1.fc23
kf5-frameworkintegration-5.24.0-1.fc23 kf5-kactivities-5.24.0-1.fc23
kf5-kactivities-stats-5.24.0-1.fc23 kf5-kapidox-5.24.0-1.fc23 kf5-karchive-5.24.0-1.fc23
kf5-kauth-5.24.0-1.fc23 kf5-kbookmarks-5.24.0-1.fc23 kf5-kcmutils-5.24.0-1.fc23
kf5-kcodecs-5.24.0-1.fc23 kf5-kcompletion-5.24.0-1.fc23 kf5-kconfig-5.24.0-1.fc23
kf5-kconfigwidgets-5.24.0-1.fc23 kf5-kcoreaddons-5.24.0-1.fc23 kf5-kcrash-5.24.0-1.fc23
kf5-kdbusaddons-5.24.0-1.fc23 kf5-kdeclarative-5.24.0-1.fc23 kf5-kded-5.24.0-1.fc23
kf5-kdelibs4support-5.24.0-1.fc23 kf5-kdesignerplugin-5.24.0-1.fc23
kf5-kdesu-5.24.0-1.fc23 kf5-kdewebkit-5.24.0-1.fc23 kf5-kdnssd-5.24.0-1.fc23
kf5-kdoctools-5.24.0-1.fc23 kf5-kemoticons-5.24.0-1.fc23 kf5-kfilemetadata-5.24.0-1.fc23
kf5-kglobalaccel-5.24.0-1.fc23 kf5-kguiad
dons-5.24.0-1.fc23 kf5-khtml-5.24.0-1.fc23 kf5-ki18n-5.24.0-1.fc23
kf5-kiconthemes-5.24.0-1.fc23 kf5-kidletime-5.24.0-1.fc23 kf5-kimageformats-5.24.0-1.fc23
kf5-kinit-5.24.0-1.fc23 kf5-kio-5.24.0-1.fc23 kf5-kitemmodels-5.24.0-1.fc23
kf5-kitemviews-5.24.0-1.fc23 kf5-kjobwidgets-5.24.0-1.fc23 kf5-kjs-5.24.0-1.fc23
kf5-kjsembed-5.24.0-1.fc23 kf5-kmediaplayer-5.24.0-1.fc23 kf5-knewstuff-5.24.0-1.fc23
kf5-knotifications-5.24.0-1.fc23 kf5-knotifyconfig-5.24.0-1.fc23
kf5-kpackage-5.24.0-1.fc23 kf5-kparts-5.24.0-1.fc23 kf5-kpeople-5.24.0-1.fc23
kf5-kplotting-5.24.0-1.fc23 kf5-kpty-5.24.0-1.fc23 kf5-kross-5.24.0-1.fc23
kf5-krunner-5.24.0-1.fc23 kf5-kservice-5.24.0-1.fc23 kf5-ktexteditor-5.24.0-1.fc23
kf5-ktextwidgets-5.24.0-1.fc23 kf5-kunitconversion-5.24.0-1.fc23 kf5-kwallet-5.24.0-1.fc23
kf5-kwayland-5.24.0-1.fc23 kf5-kwidgetsaddons-5.24.0-1.fc23
kf5-kwindowsystem-5.24.0-1.fc23 kf5-kxmlgui-5.24.0-1.fc23 kf5-kxmlrpcclient-5.24.0-1.fc23
kf5-modemmanager-qt-5.24.0-1.fc23 kf5-networkmanager-qt
-5.24.0-1.fc23 kf5-plasma-5.24.0-1.fc23 kf5-solid-5.24.0-1.fc23 kf5-sonnet-5.24.0-1.fc23
kf5-threadweaver-5.24.0-1.fc23 oxygen-icon-theme-5.24.0-1.fc23
8
https://bodhi.fedoraproject.org/updates/FEDORA-2016-fc3a26d327
coreutils-8.24-8.fc23
8
https://bodhi.fedoraproject.org/updates/FEDORA-2016-dd82ceb4e0
poppler-0.34.0-3.fc23
8
https://bodhi.fedoraproject.org/updates/FEDORA-2016-6e407680b6
libtasn1-4.8-2.fc23
8
https://bodhi.fedoraproject.org/updates/FEDORA-2016-916c007124
firefox-47.0.1-2.fc23
5
https://bodhi.fedoraproject.org/updates/FEDORA-2016-6db1c9eb69
dnsmasq-2.76-1.fc23
2
https://bodhi.fedoraproject.org/updates/FEDORA-2016-1136df48e5
openssh-7.2p2-4.fc23
2
https://bodhi.fedoraproject.org/updates/FEDORA-2016-70344c9c11
thunderbird-45.2.0-1.fc23
1
https://bodhi.fedoraproject.org/updates/FEDORA-2016-d6288f555c
libarchive-3.2.1-3.fc23
1
https://bodhi.fedoraproject.org/updates/FEDORA-2016-833533ffde
ca-certificates-2016.2.8-1.0.fc23
1
https://bodhi.fedoraproject.org/updates/FEDORA-2016-98a7a1b6e0 abrt-2.8.0-6.fc23
libreport-2.6.4-3.fc23
1
https://bodhi.fedoraproject.org/updates/FEDORA-2016-f76d52932c
koji-1.10.1-10.fc23
1
https://bodhi.fedoraproject.org/updates/FEDORA-2016-df0726ae26
httpd-2.4.23-4.fc23
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-2abbdf016d
gnupg2-2.1.13-1.fc23
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-ec4c27d766
libgcrypt-1.6.5-1.fc23
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-65dc8f0ead
libassuan-2.4.3-1.fc23
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-c110d99b0b
libgpg-error-1.24-1.fc23
The following builds have been pushed to Fedora 23 updates-testing
bcg729-1.0.0-2.fc23
deluge-1.3.13-1.fc23
docker-1.10.3-39.git1ecb834.fc23
gnome-shell-extension-panel-osd-1-0.14.20160721git6ad19f0.fc23
gnupg2-2.1.13-1.fc23
hidrd-0.2.0-3.20160712git1abf7033.fc23
libassuan-2.4.3-1.fc23
libcdr-0.1.3-1.fc23
libgcrypt-1.6.5-1.fc23
libgpg-error-1.24-1.fc23
lighttpd-1.4.40-2.fc23
microcode_ctl-2.1-13.fc23
opendkim-2.10.3-5.fc23
opendmarc-1.3.2-0.2.beta0.fc23
pbuilder-0.225.2-1.fc23
perl-Module-CoreList-5.20160720-1.fc23
perl-Pod-Constants-0.19-2.fc23
php-5.6.24-1.fc23
php-consolidation-annotated-command-1.0.1-1.fc23
php-consolidation-output-formatters-1.0.0-1.fc23
php-dnoegel-php-xdg-base-dir-0.1-1.fc23
php-jakub-onderka-php-console-color-0.1-1.fc23
php-jakub-onderka-php-console-highlighter-0.3.2-1.fc23
php-pecl-zip-1.13.4-1.fc23
psysh-0.7.2-2.fc23
vagrant-hostmanager-1.8.5-1.fc23
Details about builds:
================================================================================
bcg729-1.0.0-2.fc23 (FEDORA-2016-2c219c2a4d)
Opensource implementation of the G.729 codec
--------------------------------------------------------------------------------
Update Information:
Initial package.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1358293 - Review Request: bcg729 - Opensource implementation of the G.729
codec
https://bugzilla.redhat.com/show_bug.cgi?id=1358293
--------------------------------------------------------------------------------
================================================================================
deluge-1.3.13-1.fc23 (FEDORA-2016-baf1c1a70e)
A GTK+ BitTorrent client with support for DHT, UPnP, and PEX
--------------------------------------------------------------------------------
Update Information:
http://dev.deluge-torrent.org/wiki/ReleaseNotes/1.3.13
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1358545 - deluge-1.3.13 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1358545
--------------------------------------------------------------------------------
================================================================================
docker-1.10.3-39.git1ecb834.fc23 (FEDORA-2016-0218df61cf)
Automates deployment of containerized applications
--------------------------------------------------------------------------------
Update Information:
built docker @projectatomic/fedora-1.10.3 commit 1ecb834 ---- built docker
@projectatomic/fedora-1.10.3 commit cba0656 ---- built docker
@projectatomic/fedora-1.10.3 commit 29066b4 ---- built docker
@projectatomic/fedora-1.10.3 commit 971d3bf ---- built docker
@projectatomic/fedora-1.10.3 commit 3b3d748 ---- built docker
@projectatomic/fedora-1.10.3 commit 19b5791 ---- remove dependency on
firewalld BZ#1348334 ---- remove MountFlags=slave from docker.service ----
built docker @projectatomic/fedora-1.10.3 commit ee81b72
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1330442 - Package docker-selinux is missing interface files
https://bugzilla.redhat.com/show_bug.cgi?id=1330442
[ 2 ] Bug #1316711 - docker-1.10.2-11.gitddbb15a.fc24 tries to use invalid %triggerpost
https://bugzilla.redhat.com/show_bug.cgi?id=1316711
[ 3 ] Bug #1340940 - Include v1.10-migrator-helper script in the docker-v1.10-migrator
RPM
https://bugzilla.redhat.com/show_bug.cgi?id=1340940
[ 4 ] Bug #1317561 - manpage for docker-daemon should exist but doesn't
https://bugzilla.redhat.com/show_bug.cgi?id=1317561
[ 5 ] Bug #1348334 - docker forces firewalld installation
https://bugzilla.redhat.com/show_bug.cgi?id=1348334
--------------------------------------------------------------------------------
================================================================================
gnome-shell-extension-panel-osd-1-0.14.20160721git6ad19f0.fc23 (FEDORA-2016-c94217caeb)
Configure the place where notifications are shown
--------------------------------------------------------------------------------
Update Information:
Fixes layout on multimonitor-systems or when using bottom-panel extensions.
--------------------------------------------------------------------------------
================================================================================
gnupg2-2.1.13-1.fc23 (FEDORA-2016-2abbdf016d)
Utility for secure communication and data storage
--------------------------------------------------------------------------------
Update Information:
New upstream release with minor bug fixes and enhancements.
--------------------------------------------------------------------------------
================================================================================
hidrd-0.2.0-3.20160712git1abf7033.fc23 (FEDORA-2016-b86cca1f5b)
HID report descriptor I/O library and conversion tool
--------------------------------------------------------------------------------
Update Information:
This is new package - USB HID report descriptor I/O library and conversion tool.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1355830 - Review Request: hidrd - HID report descriptor I/O library and
conversion tool
https://bugzilla.redhat.com/show_bug.cgi?id=1355830
--------------------------------------------------------------------------------
================================================================================
libassuan-2.4.3-1.fc23 (FEDORA-2016-65dc8f0ead)
GnuPG IPC library
--------------------------------------------------------------------------------
Update Information:
New upstream release with minor improvements.
--------------------------------------------------------------------------------
================================================================================
libcdr-0.1.3-1.fc23 (FEDORA-2016-3d9f906882)
A library for import of CorelDRAW drawings
--------------------------------------------------------------------------------
Update Information:
new upstream release
--------------------------------------------------------------------------------
================================================================================
libgcrypt-1.6.5-1.fc23 (FEDORA-2016-ec4c27d766)
A general-purpose cryptography library
--------------------------------------------------------------------------------
Update Information:
New upstream release fixing CVE-2015-7511 low impact security issue.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1306184 - CVE-2015-7511 libgcrypt: side-channel attack on ECDH with
Weierstrass curves
https://bugzilla.redhat.com/show_bug.cgi?id=1306184
--------------------------------------------------------------------------------
================================================================================
libgpg-error-1.24-1.fc23 (FEDORA-2016-c110d99b0b)
Library for error values used by GnuPG components
--------------------------------------------------------------------------------
Update Information:
New upstream release with minor improvements.
--------------------------------------------------------------------------------
================================================================================
lighttpd-1.4.40-2.fc23 (FEDORA-2016-2e25b87b4e)
Lightning fast webserver with light system requirements
--------------------------------------------------------------------------------
Update Information:
Patch for ipv6 blocking bug. ---- 1.4.40
https://www.lighttpd.net/2016/7/16/1.4.40/
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1357238 - lighttpd-1.4.40 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1357238
--------------------------------------------------------------------------------
================================================================================
microcode_ctl-2.1-13.fc23 (FEDORA-2016-a596f3c268)
Tool to transform and deploy CPU microcode update for x86
--------------------------------------------------------------------------------
Update Information:
You want to check it on Intel skylake cpus, previous version led to the stuck
boot process.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1353103 - Kernel 4.5.7-202 doesn't boot on Samsung Notebook 9
https://bugzilla.redhat.com/show_bug.cgi?id=1353103
--------------------------------------------------------------------------------
================================================================================
opendkim-2.10.3-5.fc23 (FEDORA-2016-d35e7b8e9a)
A DomainKeys Identified Mail (DKIM) milter to sign and/or verify mail
--------------------------------------------------------------------------------
Update Information:
Fixed OpenLDAP support for all versions except EL5 (required version not
available).
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1293279 - opendkim miss LDAP support
https://bugzilla.redhat.com/show_bug.cgi?id=1293279
--------------------------------------------------------------------------------
================================================================================
opendmarc-1.3.2-0.2.beta0.fc23 (FEDORA-2016-5d4aaf0511)
A Domain-based Message Authentication, Reporting & Conformance (DMARC) milter and
library
--------------------------------------------------------------------------------
Update Information:
Updating to 1.3.2.Beta0 release, in anticipation of full release. This version
incorporates a number of patches since the 1.3.1 release. See:
https://sourceforge.net/p/opendmarc/activity/
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1287176 - OpenDMARC does not accept valid mail size limiting syntax in DMARC
record
https://bugzilla.redhat.com/show_bug.cgi?id=1287176
[ 2 ] Bug #1331971 - wrong result with self SPF check
https://bugzilla.redhat.com/show_bug.cgi?id=1331971
[ 3 ] Bug #1332521 - opendmarc always adds spf=pass
https://bugzilla.redhat.com/show_bug.cgi?id=1332521
--------------------------------------------------------------------------------
================================================================================
pbuilder-0.225.2-1.fc23 (FEDORA-2016-2e20730676)
Personal package builder for Debian packages
--------------------------------------------------------------------------------
Update Information:
Update to version 0.225.2, see
http://metadata.ftp-
master.debian.org/changelogs//main/p/pbuilder/pbuilder_0.225.2_changelog for
details. ---- This update fixes a potential security issue where copy-on-write
does not work when used with eatmydata, resulting in persistent filesystem
changes.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1358337 - pbuilder: Copy-on-write does not work when used with eatmydata
https://bugzilla.redhat.com/show_bug.cgi?id=1358337
--------------------------------------------------------------------------------
================================================================================
perl-Module-CoreList-5.20160720-1.fc23 (FEDORA-2016-041087f97f)
What modules are shipped with versions of perl
--------------------------------------------------------------------------------
Update Information:
This release provides data for perl 5.25.3.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1358553 - perl-Module-CoreList-5.20160720 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1358553
--------------------------------------------------------------------------------
================================================================================
perl-Pod-Constants-0.19-2.fc23 (FEDORA-2016-8e7498513f)
Include constants from POD
--------------------------------------------------------------------------------
Update Information:
This update contains packaging changes: - BuildRequires: perl-generators - Use
CPAN URL
--------------------------------------------------------------------------------
================================================================================
php-5.6.24-1.fc23 (FEDORA-2016-cd2bd0800f)
PHP scripting language for creating dynamic web sites
--------------------------------------------------------------------------------
Update Information:
21 Jul 2016, **PHP 5.6.24** **Core:** * Fixed bug php#71936 (Segmentation
fault destroying HTTP_RAW_POST_DATA). (mike dot laspina at gmail dot com, Remi)
* Fixed bug php#72496 (Cannot declare public method with signature incompatible
with parent private method). (Pedro Magalh��es) * Fixed bug php#72138 (Integer
Overflow in Length of String-typed ZVAL). (Stas) * Fixed bug php#72513 (Stack-
based buffer overflow vulnerability in virtual_file_ex). (loianhtuan at gmail
dot com) * Fixed bug php#72562 (Use After Free in unserialize() with Unexpected
Session Deserialization). (taoguangchen at icloud dot com) * Fixed bug php#72573
(HTTP_PROXY is improperly trusted by some PHP libraries and applications).
(CVE-2016-5385) (Stas) **bz2:** * Fixed bug php#72447 (Type Confusion in
php_bz2_filter_create()). (gogil at stealien dot com). * Fixed bug php#72613
(Inadequate error handling in bzread()). (Stas) **EXIF:** * Fixed bug
php#50845 (exif_read_data() returns corrupted exif headers). (Bartosz
Dziewo��ski) * Fixed bug php#72603 (Out of bound read in
exif_process_IFD_in_MAKERNOTE). (Stas) * Fixed bug #72618 (NULL Pointer
Dereference in exif_process_user_comment). (Stas) **Intl:** * Fixed bug
php#72533 (locale_accept_from_http out-of-bounds access). (Stas) **ODBC:** *
Fixed bug php#69975 (PHP segfaults when accessing nvarchar(max) defined columns)
**OpenSSL:** * Fixed bug php#71915 (openssl_random_pseudo_bytes is not fork-
safe). (Jakub Zelenka) * Fixed bug php#72336 (openssl_pkey_new does not fail for
invalid DSA params). (Jakub Zelenka) **SNMP:** * Fixed bug php#72479 (Use
After Free Vulnerability in SNMP with GC and unserialize()). (taoguangchen at
icloud dot com) **SPL:** * Fixed bug php#55701 (GlobIterator throws
LogicException). (Valentin V��LCIU) **SQLite3:** * Fixed bug php#70628
(Clearing bindings on an SQLite3 statement doesn't work). (cmb) **Streams:** *
Fixed bug php#72439 (Stream socket with remote address leads to a segmentation
fault). (Laruence) **Xmlrpc:** * Fixed bug php#72606 (heap-buffer-overflow
(write) simplestring_addn simplestring.c). (Stas)
--------------------------------------------------------------------------------
================================================================================
php-consolidation-annotated-command-1.0.1-1.fc23 (FEDORA-2016-61de07fc19)
Initialize Symfony Console commands from annotated command class methods
--------------------------------------------------------------------------------
Update Information:
Initialize Symfony Console commands from annotated command class methods
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1357978 - Review Request: php-consolidation-annotated-command - Initialize
Symfony Console commands from annotated command class methods
https://bugzilla.redhat.com/show_bug.cgi?id=1357978
--------------------------------------------------------------------------------
================================================================================
php-consolidation-output-formatters-1.0.0-1.fc23 (FEDORA-2016-3e91c1729b)
Format text by applying transformations provided by plug-in formatters
--------------------------------------------------------------------------------
Update Information:
Format text by applying transformations provided by plug-in formatters
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1357977 - Review Request: php-consolidation-output-formatters - Format text
by applying transformations provided by plug-in formatters
https://bugzilla.redhat.com/show_bug.cgi?id=1357977
--------------------------------------------------------------------------------
================================================================================
php-dnoegel-php-xdg-base-dir-0.1-1.fc23 (FEDORA-2016-72679143c8)
Implementation of the XDG Base Directory Specification for PHP
--------------------------------------------------------------------------------
Update Information:
### php-dnoegel-php-xdg-base-dir Implementation of the XDG Base Directory
Specification for PHP ### php-jakub-onderka-php-console-color Simple library
for creating colored console output ### php-jakub-onderka-php-console-
highlighter Highlight PHP code in console (terminal) ### psysh A runtime
developer console, interactive debugger and REPL for PHP
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1357876 - Review Request: psysh - A runtime developer console, interactive
debugger and REPL for PHP
https://bugzilla.redhat.com/show_bug.cgi?id=1357876
[ 2 ] Bug #1357873 - Review Request: php-jakub-onderka-php-console-highlighter -
Highlight PHP code in console (terminal)
https://bugzilla.redhat.com/show_bug.cgi?id=1357873
[ 3 ] Bug #1357871 - Review Request: php-jakub-onderka-php-console-color - Simple
library for creating colored console output
https://bugzilla.redhat.com/show_bug.cgi?id=1357871
[ 4 ] Bug #1357875 - Review Request: php-dnoegel-php-xdg-base-dir - Implementation of
the XDG Base Directory Specification for PHP
https://bugzilla.redhat.com/show_bug.cgi?id=1357875
--------------------------------------------------------------------------------
================================================================================
php-jakub-onderka-php-console-color-0.1-1.fc23 (FEDORA-2016-72679143c8)
Simple library for creating colored console ouput
--------------------------------------------------------------------------------
Update Information:
### php-dnoegel-php-xdg-base-dir Implementation of the XDG Base Directory
Specification for PHP ### php-jakub-onderka-php-console-color Simple library
for creating colored console output ### php-jakub-onderka-php-console-
highlighter Highlight PHP code in console (terminal) ### psysh A runtime
developer console, interactive debugger and REPL for PHP
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1357876 - Review Request: psysh - A runtime developer console, interactive
debugger and REPL for PHP
https://bugzilla.redhat.com/show_bug.cgi?id=1357876
[ 2 ] Bug #1357873 - Review Request: php-jakub-onderka-php-console-highlighter -
Highlight PHP code in console (terminal)
https://bugzilla.redhat.com/show_bug.cgi?id=1357873
[ 3 ] Bug #1357871 - Review Request: php-jakub-onderka-php-console-color - Simple
library for creating colored console output
https://bugzilla.redhat.com/show_bug.cgi?id=1357871
[ 4 ] Bug #1357875 - Review Request: php-dnoegel-php-xdg-base-dir - Implementation of
the XDG Base Directory Specification for PHP
https://bugzilla.redhat.com/show_bug.cgi?id=1357875
--------------------------------------------------------------------------------
================================================================================
php-jakub-onderka-php-console-highlighter-0.3.2-1.fc23 (FEDORA-2016-72679143c8)
Highlight PHP code in console (terminal)
--------------------------------------------------------------------------------
Update Information:
### php-dnoegel-php-xdg-base-dir Implementation of the XDG Base Directory
Specification for PHP ### php-jakub-onderka-php-console-color Simple library
for creating colored console output ### php-jakub-onderka-php-console-
highlighter Highlight PHP code in console (terminal) ### psysh A runtime
developer console, interactive debugger and REPL for PHP
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1357876 - Review Request: psysh - A runtime developer console, interactive
debugger and REPL for PHP
https://bugzilla.redhat.com/show_bug.cgi?id=1357876
[ 2 ] Bug #1357873 - Review Request: php-jakub-onderka-php-console-highlighter -
Highlight PHP code in console (terminal)
https://bugzilla.redhat.com/show_bug.cgi?id=1357873
[ 3 ] Bug #1357871 - Review Request: php-jakub-onderka-php-console-color - Simple
library for creating colored console output
https://bugzilla.redhat.com/show_bug.cgi?id=1357871
[ 4 ] Bug #1357875 - Review Request: php-dnoegel-php-xdg-base-dir - Implementation of
the XDG Base Directory Specification for PHP
https://bugzilla.redhat.com/show_bug.cgi?id=1357875
--------------------------------------------------------------------------------
================================================================================
php-pecl-zip-1.13.4-1.fc23 (FEDORA-2016-b777fc7a8b)
A ZIP archive management extension
--------------------------------------------------------------------------------
Update Information:
**Version 1.13.4** - Fixed bug php#72520 (Stack-based buffer overflow
vulnerability in php_stream_zip_opener). (Stas)
--------------------------------------------------------------------------------
================================================================================
psysh-0.7.2-2.fc23 (FEDORA-2016-72679143c8)
A runtime developer console, interactive debugger and REPL for PHP
--------------------------------------------------------------------------------
Update Information:
### php-dnoegel-php-xdg-base-dir Implementation of the XDG Base Directory
Specification for PHP ### php-jakub-onderka-php-console-color Simple library
for creating colored console output ### php-jakub-onderka-php-console-
highlighter Highlight PHP code in console (terminal) ### psysh A runtime
developer console, interactive debugger and REPL for PHP
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1357876 - Review Request: psysh - A runtime developer console, interactive
debugger and REPL for PHP
https://bugzilla.redhat.com/show_bug.cgi?id=1357876
[ 2 ] Bug #1357873 - Review Request: php-jakub-onderka-php-console-highlighter -
Highlight PHP code in console (terminal)
https://bugzilla.redhat.com/show_bug.cgi?id=1357873
[ 3 ] Bug #1357871 - Review Request: php-jakub-onderka-php-console-color - Simple
library for creating colored console output
https://bugzilla.redhat.com/show_bug.cgi?id=1357871
[ 4 ] Bug #1357875 - Review Request: php-dnoegel-php-xdg-base-dir - Implementation of
the XDG Base Directory Specification for PHP
https://bugzilla.redhat.com/show_bug.cgi?id=1357875
--------------------------------------------------------------------------------
================================================================================
vagrant-hostmanager-1.8.5-1.fc23 (FEDORA-2016-2269fc7ea1)
Vagrant plugin to manage /etc/hosts
--------------------------------------------------------------------------------
Update Information:
Update to 1.8.5 (#1358110). ---- Update to 1.8.3 (#1356344).
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1358110 - vagrant-hostmanager-1.8.5 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1358110
[ 2 ] Bug #1356344 - vagrant-hostmanager-1.8.3 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1356344
--------------------------------------------------------------------------------