The following Fedora 23 Security updates need testing:
Age URL
164
https://bodhi.fedoraproject.org/updates/FEDORA-2015-16240 nagios-4.0.8-1.fc23
122
https://bodhi.fedoraproject.org/updates/FEDORA-2015-81ded368fe
miniupnpc-1.9-6.fc23
94
https://bodhi.fedoraproject.org/updates/FEDORA-2015-27392b3324
jbig2dec-0.12-2.fc23
45
https://bodhi.fedoraproject.org/updates/FEDORA-2015-dd52a54fa1
python-pymongo-3.0.3-1.fc23
45
https://bodhi.fedoraproject.org/updates/FEDORA-2015-06a7c972e8
thttpd-2.25b-37.fc23
34
https://bodhi.fedoraproject.org/updates/FEDORA-2016-a69ee02554
xulrunner-44.0-1.fc23
16
https://bodhi.fedoraproject.org/updates/FEDORA-2016-40401300ed
389-ds-base-1.3.4.8-1.fc23
16
https://bodhi.fedoraproject.org/updates/FEDORA-2016-65a1f22818
community-mysql-5.6.29-1.fc23
16
https://bodhi.fedoraproject.org/updates/FEDORA-2016-94b0b50351 gummi-0.6.6-1.fc23
10
https://bodhi.fedoraproject.org/updates/FEDORA-2016-637618fcd4
mingw-nsis-2.50-1.fc23
7
https://bodhi.fedoraproject.org/updates/FEDORA-2016-cdd4228cc7 pcs-0.9.149-2.fc23
5
https://bodhi.fedoraproject.org/updates/FEDORA-2016-f12be382f4 mote-0.5.1-3.fc23
5
https://bodhi.fedoraproject.org/updates/FEDORA-2016-8411497132
drupal6-6.38-1.fc23
3
https://bodhi.fedoraproject.org/updates/FEDORA-2016-eeb0f0c94f
drupal7-7.43-1.fc23
3
https://bodhi.fedoraproject.org/updates/FEDORA-2016-ae14784e4e
libmodbus-3.0.6-1.fc23
3
https://bodhi.fedoraproject.org/updates/FEDORA-2016-120b194a75
qpid-cpp-0.34-6.fc23
2
https://bodhi.fedoraproject.org/updates/FEDORA-2016-f802cade15 exiv2-0.25-3.fc23
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-6b977c4737
php-htmLawed-1.1.21-1.fc23
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-2802690366
openssl-1.0.2g-2.fc23
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-040577033c
python-django-1.8.10-1.fc23
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-5d4fc5ecc9
perl-5.22.1-351.fc23
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-3e4408f350 squid-3.5.9-8.fc23
The following Fedora 23 Critical Path updates have yet to be approved:
Age URL
34
https://bodhi.fedoraproject.org/updates/FEDORA-2016-a69ee02554
xulrunner-44.0-1.fc23
14
https://bodhi.fedoraproject.org/updates/FEDORA-2016-054e18a33d
htdig-3.2.0-0.23.b6.fc23
10
https://bodhi.fedoraproject.org/updates/FEDORA-2016-8dde5e377c
lxsession-0.5.2-8.fc23
10
https://bodhi.fedoraproject.org/updates/FEDORA-2016-2400dcd3d1
virtuoso-opensource-6.1.6-10.fc23
3
https://bodhi.fedoraproject.org/updates/FEDORA-2016-ffbae3a870
selinux-policy-3.13.1-158.9.fc23
3
https://bodhi.fedoraproject.org/updates/FEDORA-2016-e10d786768 pungi-4.0.6-1.fc23
2
https://bodhi.fedoraproject.org/updates/FEDORA-2016-f802cade15 exiv2-0.25-3.fc23
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-7fc7d51465
openssh-7.2p1-1.fc23
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-7715236b1c
NetworkManager-1.0.10-3.fc23
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-5d4fc5ecc9
perl-5.22.1-351.fc23
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-9850932586
sqlite-3.11.0-3.fc23
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-2802690366
openssl-1.0.2g-2.fc23
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-8c3f65efd8 pcre-8.38-7.fc23
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-186af2afdd koji-1.10.1-3.fc23
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-5fb0d8ce68
sendmail-8.15.2-3.fc23
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-47408e3719
polkit-qt-0.112.0-7.fc23
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-553640374c
lxmenu-data-0.1.5-1.fc23 lxpanel-0.8.2-1.fc23 lxde-common-0.99.1-1.fc23
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-68253fbd78
v4l-utils-1.10.0-2.fc23
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-dd7900694e libfm-1.2.4-1.fc23
pcmanfm-1.2.4-1.fc23
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-ae562ee2af krb5-1.14.1-1.fc23
The following builds have been pushed to Fedora 23 updates-testing
2ping-3.2.0-1.fc23
NetworkManager-1.0.10-3.fc23
R-RInside-0.2.13-2.fc23
bcm283x-firmware-20160229-1.9cd1c6c.fc23
enki-15.11.2-0.1.20160227git8e374ef.fc23
erlang-egeoip-1.1-2.fc23
erlang-meck-0.8.4-2.fc23
erlang-rebar-2.6.1-6.fc23
fedora-packager-0.5.10.7-1.fc23
golang-github-bugsnag-panicwrap-1.1.0-0.1.gitaceac81.fc23
greenisland-0.7.90-0.2.20160227git.fc23
hawaii-icon-theme-0.6.90-0.1.20160229git.fc23
hawaii-shell-0.6.90-0.1.20160228git.fc23
hawaii-system-preferences-0.6.90-0.1.20160301git.fc23
hawaii-widget-styles-0.6.90-0.1.20160229git.fc23
hawaii-workspace-0.6.90-0.1.20160301git.fc23
holland-1.0.12-2.fc23
koji-1.10.1-3.fc23
libhawaii-0.6.90-0.1.20160222git.fc23
libinput-1.2.1-2.fc23
libmediainfo-0.7.83-1.fc23
libzen-0.4.33-1.fc23
mediainfo-0.7.83-1.fc23
odb-2.4.0-9.fc23
openssh-7.2p1-1.fc23
openssl-1.0.2g-2.fc23
pcre-8.38-7.fc23
perl-5.22.1-351.fc23
php-smbclient-0.8.0-1.fc23
python-django-1.8.10-1.fc23
python-fedmsg-meta-fedora-infrastructure-0.15.10-1.fc23
python-qutepart-2.2.3-1.20160229gitfdc29c7.fc23
rfcdiff-1.43-1.fc23
sqlite-3.11.0-3.fc23
squid-3.5.9-8.fc23
wireshark-1.12.10-1.fc23
Details about builds:
================================================================================
2ping-3.2.0-1.fc23 (FEDORA-2016-0b2a971bf6)
Bi-directional ping utility
--------------------------------------------------------------------------------
Update Information:
Big step forward
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1275261 - 2ping-3.2.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1275261
--------------------------------------------------------------------------------
================================================================================
NetworkManager-1.0.10-3.fc23 (FEDORA-2016-7715236b1c)
Network connection manager and user applications
--------------------------------------------------------------------------------
Update Information:
Workaround for crash related to renaming wifi device (rh#1298007, rh#1241198)
--------------------------------------------------------------------------------
================================================================================
R-RInside-0.2.13-2.fc23 (FEDORA-2016-81508d456b)
C++ Classes to Embed R in C++ Applications
--------------------------------------------------------------------------------
Update Information:
Adapt RInsideLdFlags function to Fedora packaging.
--------------------------------------------------------------------------------
================================================================================
bcm283x-firmware-20160229-1.9cd1c6c.fc23 (FEDORA-2016-69c4168556)
Broadcom bcm283x firmware for the Raspberry Pi
--------------------------------------------------------------------------------
Update Information:
Latest firmware update
--------------------------------------------------------------------------------
================================================================================
enki-15.11.2-0.1.20160227git8e374ef.fc23 (FEDORA-2016-b38ae34a10)
Text editor for programmers
--------------------------------------------------------------------------------
Update Information:
recent upstream snapshots as of 20160229 - - qutepart version 2.2.3 with fixes
for python3 and Qt5 as defaults - python2 component is now obsolete
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1313536 - qutepart-2.2.3 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1313536
--------------------------------------------------------------------------------
================================================================================
erlang-egeoip-1.1-2.fc23 (FEDORA-2016-d1c290ac88)
Erlang IP Geolocation module
--------------------------------------------------------------------------------
Update Information:
* Use system-wide GeoIP data (saves ~99% of the space)
--------------------------------------------------------------------------------
================================================================================
erlang-meck-0.8.4-2.fc23 (FEDORA-2016-5fd0433061)
A mocking library for Erlang
--------------------------------------------------------------------------------
Update Information:
* Ver. 0.8.4
--------------------------------------------------------------------------------
================================================================================
erlang-rebar-2.6.1-6.fc23 (FEDORA-2016-a445d4225f)
Erlang Build Tools
--------------------------------------------------------------------------------
Update Information:
* Disable gpb properly ---- * Fixed warnings ---- * Added (Build)Dependency
which cannot be picked up automatically ---- * Use erlang-rpm-macros
--------------------------------------------------------------------------------
================================================================================
fedora-packager-0.5.10.7-1.fc23 (FEDORA-2016-c997d815c5)
Tools for setting up a fedora maintainer environment
--------------------------------------------------------------------------------
Update Information:
0.5.10.7 release (dennis)
--------------------------------------------------------------------------------
================================================================================
golang-github-bugsnag-panicwrap-1.1.0-0.1.gitaceac81.fc23 (FEDORA-2016-c083a9f6ec)
Go library for catching and handling panics in Go applications
--------------------------------------------------------------------------------
Update Information:
Rebase to 1.1.0 ---- First package for Fedora
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1313834 - Tracker for golang-github-bugsnag-panicwrap
https://bugzilla.redhat.com/show_bug.cgi?id=1313834
[ 2 ] Bug #1270034 - Review Request: golang-github-bugsnag-panicwrap - Go library for
catching and handling panics in Go applications
https://bugzilla.redhat.com/show_bug.cgi?id=1270034
--------------------------------------------------------------------------------
================================================================================
greenisland-0.7.90-0.2.20160227git.fc23 (FEDORA-2016-4bd44c2ec2)
QtQuick-based Wayland compositor in library form
--------------------------------------------------------------------------------
Update Information:
First snapshot of Hawaii 0.7.0. This update fixes a few crashes in the
compositor and adds a workaround for systems that report an invalid screen
physical size that was causing sizing problems, font rendering issues and SVG
icon loading failure.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1310408 - hawaii-workspace-0.6.90 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1310408
[ 2 ] Bug #1030868 - hawaii-widget-styles-v0.5.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1030868
[ 3 ] Bug #1301331 - [abrt] hawaii-shell: qt_message_fatal(): hawaii killed by SIGABRT
https://bugzilla.redhat.com/show_bug.cgi?id=1301331
[ 4 ] Bug #1303287 - [abrt] hawaii-shell: wl_proxy_marshal_array_constructor(): hawaii
killed by SIGABRT
https://bugzilla.redhat.com/show_bug.cgi?id=1303287
[ 5 ] Bug #1303297 - panel
https://bugzilla.redhat.com/show_bug.cgi?id=1303297
[ 6 ] Bug #1308762 - greenisland-0.7.90 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1308762
--------------------------------------------------------------------------------
================================================================================
hawaii-icon-theme-0.6.90-0.1.20160229git.fc23 (FEDORA-2016-4bd44c2ec2)
Icon themes for Hawaii desktop environment
--------------------------------------------------------------------------------
Update Information:
First snapshot of Hawaii 0.7.0. This update fixes a few crashes in the
compositor and adds a workaround for systems that report an invalid screen
physical size that was causing sizing problems, font rendering issues and SVG
icon loading failure.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1310408 - hawaii-workspace-0.6.90 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1310408
[ 2 ] Bug #1030868 - hawaii-widget-styles-v0.5.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1030868
[ 3 ] Bug #1301331 - [abrt] hawaii-shell: qt_message_fatal(): hawaii killed by SIGABRT
https://bugzilla.redhat.com/show_bug.cgi?id=1301331
[ 4 ] Bug #1303287 - [abrt] hawaii-shell: wl_proxy_marshal_array_constructor(): hawaii
killed by SIGABRT
https://bugzilla.redhat.com/show_bug.cgi?id=1303287
[ 5 ] Bug #1303297 - panel
https://bugzilla.redhat.com/show_bug.cgi?id=1303297
[ 6 ] Bug #1308762 - greenisland-0.7.90 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1308762
--------------------------------------------------------------------------------
================================================================================
hawaii-shell-0.6.90-0.1.20160228git.fc23 (FEDORA-2016-4bd44c2ec2)
Hawaii shell for desktop, netbook and tablet
--------------------------------------------------------------------------------
Update Information:
First snapshot of Hawaii 0.7.0. This update fixes a few crashes in the
compositor and adds a workaround for systems that report an invalid screen
physical size that was causing sizing problems, font rendering issues and SVG
icon loading failure.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1310408 - hawaii-workspace-0.6.90 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1310408
[ 2 ] Bug #1030868 - hawaii-widget-styles-v0.5.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1030868
[ 3 ] Bug #1301331 - [abrt] hawaii-shell: qt_message_fatal(): hawaii killed by SIGABRT
https://bugzilla.redhat.com/show_bug.cgi?id=1301331
[ 4 ] Bug #1303287 - [abrt] hawaii-shell: wl_proxy_marshal_array_constructor(): hawaii
killed by SIGABRT
https://bugzilla.redhat.com/show_bug.cgi?id=1303287
[ 5 ] Bug #1303297 - panel
https://bugzilla.redhat.com/show_bug.cgi?id=1303297
[ 6 ] Bug #1308762 - greenisland-0.7.90 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1308762
--------------------------------------------------------------------------------
================================================================================
hawaii-system-preferences-0.6.90-0.1.20160301git.fc23 (FEDORA-2016-4bd44c2ec2)
Utilities to configure the Hawaii desktop environment
--------------------------------------------------------------------------------
Update Information:
First snapshot of Hawaii 0.7.0. This update fixes a few crashes in the
compositor and adds a workaround for systems that report an invalid screen
physical size that was causing sizing problems, font rendering issues and SVG
icon loading failure.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1310408 - hawaii-workspace-0.6.90 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1310408
[ 2 ] Bug #1030868 - hawaii-widget-styles-v0.5.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1030868
[ 3 ] Bug #1301331 - [abrt] hawaii-shell: qt_message_fatal(): hawaii killed by SIGABRT
https://bugzilla.redhat.com/show_bug.cgi?id=1301331
[ 4 ] Bug #1303287 - [abrt] hawaii-shell: wl_proxy_marshal_array_constructor(): hawaii
killed by SIGABRT
https://bugzilla.redhat.com/show_bug.cgi?id=1303287
[ 5 ] Bug #1303297 - panel
https://bugzilla.redhat.com/show_bug.cgi?id=1303297
[ 6 ] Bug #1308762 - greenisland-0.7.90 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1308762
--------------------------------------------------------------------------------
================================================================================
hawaii-widget-styles-0.6.90-0.1.20160229git.fc23 (FEDORA-2016-4bd44c2ec2)
Styles for applications using QtQuick Controls
--------------------------------------------------------------------------------
Update Information:
First snapshot of Hawaii 0.7.0. This update fixes a few crashes in the
compositor and adds a workaround for systems that report an invalid screen
physical size that was causing sizing problems, font rendering issues and SVG
icon loading failure.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1310408 - hawaii-workspace-0.6.90 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1310408
[ 2 ] Bug #1030868 - hawaii-widget-styles-v0.5.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1030868
[ 3 ] Bug #1301331 - [abrt] hawaii-shell: qt_message_fatal(): hawaii killed by SIGABRT
https://bugzilla.redhat.com/show_bug.cgi?id=1301331
[ 4 ] Bug #1303287 - [abrt] hawaii-shell: wl_proxy_marshal_array_constructor(): hawaii
killed by SIGABRT
https://bugzilla.redhat.com/show_bug.cgi?id=1303287
[ 5 ] Bug #1303297 - panel
https://bugzilla.redhat.com/show_bug.cgi?id=1303297
[ 6 ] Bug #1308762 - greenisland-0.7.90 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1308762
--------------------------------------------------------------------------------
================================================================================
hawaii-workspace-0.6.90-0.1.20160301git.fc23 (FEDORA-2016-4bd44c2ec2)
Hawaii workspace, applications and plugins
--------------------------------------------------------------------------------
Update Information:
First snapshot of Hawaii 0.7.0. This update fixes a few crashes in the
compositor and adds a workaround for systems that report an invalid screen
physical size that was causing sizing problems, font rendering issues and SVG
icon loading failure.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1310408 - hawaii-workspace-0.6.90 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1310408
[ 2 ] Bug #1030868 - hawaii-widget-styles-v0.5.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1030868
[ 3 ] Bug #1301331 - [abrt] hawaii-shell: qt_message_fatal(): hawaii killed by SIGABRT
https://bugzilla.redhat.com/show_bug.cgi?id=1301331
[ 4 ] Bug #1303287 - [abrt] hawaii-shell: wl_proxy_marshal_array_constructor(): hawaii
killed by SIGABRT
https://bugzilla.redhat.com/show_bug.cgi?id=1303287
[ 5 ] Bug #1303297 - panel
https://bugzilla.redhat.com/show_bug.cgi?id=1303297
[ 6 ] Bug #1308762 - greenisland-0.7.90 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1308762
--------------------------------------------------------------------------------
================================================================================
holland-1.0.12-2.fc23 (FEDORA-2016-4419f11d15)
Pluggable Backup Framework
--------------------------------------------------------------------------------
Update Information:
fix for
https://github.com/holland-backup/holland/pull/145
--------------------------------------------------------------------------------
================================================================================
koji-1.10.1-3.fc23 (FEDORA-2016-186af2afdd)
Build system tools
--------------------------------------------------------------------------------
Update Information:
update to git e8201aac8294e6125a73504886b0800041b58868
--------------------------------------------------------------------------------
================================================================================
libhawaii-0.6.90-0.1.20160222git.fc23 (FEDORA-2016-4bd44c2ec2)
Core share library for Hawaii desktop suite
--------------------------------------------------------------------------------
Update Information:
First snapshot of Hawaii 0.7.0. This update fixes a few crashes in the
compositor and adds a workaround for systems that report an invalid screen
physical size that was causing sizing problems, font rendering issues and SVG
icon loading failure.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1310408 - hawaii-workspace-0.6.90 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1310408
[ 2 ] Bug #1030868 - hawaii-widget-styles-v0.5.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1030868
[ 3 ] Bug #1301331 - [abrt] hawaii-shell: qt_message_fatal(): hawaii killed by SIGABRT
https://bugzilla.redhat.com/show_bug.cgi?id=1301331
[ 4 ] Bug #1303287 - [abrt] hawaii-shell: wl_proxy_marshal_array_constructor(): hawaii
killed by SIGABRT
https://bugzilla.redhat.com/show_bug.cgi?id=1303287
[ 5 ] Bug #1303297 - panel
https://bugzilla.redhat.com/show_bug.cgi?id=1303297
[ 6 ] Bug #1308762 - greenisland-0.7.90 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1308762
--------------------------------------------------------------------------------
================================================================================
libinput-1.2.1-2.fc23 (FEDORA-2016-44f5a0e9dd)
Input device library
--------------------------------------------------------------------------------
Update Information:
libinput 1.2.1
--------------------------------------------------------------------------------
================================================================================
libmediainfo-0.7.83-1.fc23 (FEDORA-2016-1ec74022ec)
Library for supplies technical and tag information about a video or audio file
--------------------------------------------------------------------------------
Update Information:
Update to last version.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1295708 - libzen (mediainfo) cannot deal with filenames containing
questionmark (?) or asterisk (*)
https://bugzilla.redhat.com/show_bug.cgi?id=1295708
--------------------------------------------------------------------------------
================================================================================
libzen-0.4.33-1.fc23 (FEDORA-2016-1ec74022ec)
Shared library for libmediainfo and medianfo*
--------------------------------------------------------------------------------
Update Information:
Update to last version.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1295708 - libzen (mediainfo) cannot deal with filenames containing
questionmark (?) or asterisk (*)
https://bugzilla.redhat.com/show_bug.cgi?id=1295708
--------------------------------------------------------------------------------
================================================================================
mediainfo-0.7.83-1.fc23 (FEDORA-2016-1ec74022ec)
Supplies technical and tag information about a video or audio file (CLI)
--------------------------------------------------------------------------------
Update Information:
Update to last version.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1295708 - libzen (mediainfo) cannot deal with filenames containing
questionmark (?) or asterisk (*)
https://bugzilla.redhat.com/show_bug.cgi?id=1295708
--------------------------------------------------------------------------------
================================================================================
odb-2.4.0-9.fc23 (FEDORA-2016-7737a32986)
Object-relational mapping (ORM) system for C++
--------------------------------------------------------------------------------
Update Information:
Rebuild for gcc update
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1313344 - odb requires gcc 5.1.1, latest is gcc 5.3.1
https://bugzilla.redhat.com/show_bug.cgi?id=1313344
--------------------------------------------------------------------------------
================================================================================
openssh-7.2p1-1.fc23 (FEDORA-2016-7fc7d51465)
An open source implementation of SSH protocol versions 1 and 2
--------------------------------------------------------------------------------
Update Information:
This update provides new upstream release of openssh-7.2p1. This is mostly
bugfix release, but note that: * the minimum modulus size supported for diffie-
hellman-group-exchange was increased to 2048 bits, * several legacy
cryptographic algorithms and MD5-based and truncated HMAC algorithms were
disabled on client side. More information about this release can be found in
[upstream release
notes](http://www.openssh.com/txt/release-7.2). Few more notes
on the [mainling-list HEADS
UP](https://lists.fedoraproject.org/archives/list/de
vel(a)lists.fedoraproject.org/thread/WNYBILDLT3RN7XDNWFIAVSC5WMSZ6ERZ/).
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1312870 - openssh-7.2p1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1312870
--------------------------------------------------------------------------------
================================================================================
openssl-1.0.2g-2.fc23 (FEDORA-2016-2802690366)
Utilities from the general purpose cryptography library with TLS implementation
--------------------------------------------------------------------------------
Update Information:
New upstream release fixing security issues. Note that SSLv2 was already
disabled by default in Fedora OpenSSL.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1312219 - CVE-2016-0799 OpenSSL: Fix memory issues in BIO_*printf functions
https://bugzilla.redhat.com/show_bug.cgi?id=1312219
[ 2 ] Bug #1310599 - CVE-2016-0702 OpenSSL: Side channel attack on modular
exponentiation
https://bugzilla.redhat.com/show_bug.cgi?id=1310599
[ 3 ] Bug #1310596 - CVE-2016-0705 OpenSSL: Double-free in DSA code
https://bugzilla.redhat.com/show_bug.cgi?id=1310596
--------------------------------------------------------------------------------
================================================================================
pcre-8.38-7.fc23 (FEDORA-2016-8c3f65efd8)
Perl-compatible regular expression library
--------------------------------------------------------------------------------
Update Information:
This release fixes a non-diagnosis of missing assertion after (?(?C) that could
corrupt a process stack. It also corrects a typo in pcre_study() code that did
not have any bad impact probably.
--------------------------------------------------------------------------------
================================================================================
perl-5.22.1-351.fc23 (FEDORA-2016-5d4fc5ecc9)
Practical Extraction and Report Language
--------------------------------------------------------------------------------
Update Information:
Fix manipulating environment variables to align with how glibc handles
duplicated environment variables. Perl now uses the first variable listed in the
environment array and it removes any subsequent entries of the same-named
variable from the array, so that child processes have only one variable instance
in its environment.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1309214 - CVE-2016-2381 perl: ambiguous environment variables handling
https://bugzilla.redhat.com/show_bug.cgi?id=1309214
--------------------------------------------------------------------------------
================================================================================
php-smbclient-0.8.0-1.fc23 (FEDORA-2016-c235a571e5)
PHP wrapper for libsmbclient
--------------------------------------------------------------------------------
Update Information:
* Update to 0.8.0 stable (no change since RC1) * Now available on PECL * Add
virtual provides (php-pecl-smbclient)
--------------------------------------------------------------------------------
================================================================================
python-django-1.8.10-1.fc23 (FEDORA-2016-040577033c)
A high-level Python Web framework
--------------------------------------------------------------------------------
Update Information:
update to 1.8.10, fixing CVE-2016-2512, CVE-2016-2513
--------------------------------------------------------------------------------
================================================================================
python-fedmsg-meta-fedora-infrastructure-0.15.10-1.fc23 (FEDORA-2016-67a764d3de)
Metadata providers for Fedora Infrastructure's fedmsg deployment
--------------------------------------------------------------------------------
Update Information:
Fix a bug in handling of pagure messages. ---- Handle new mdapi format. Also,
a bugfix for handling copr messages.
--------------------------------------------------------------------------------
================================================================================
python-qutepart-2.2.3-1.20160229gitfdc29c7.fc23 (FEDORA-2016-b38ae34a10)
Code editor widget
--------------------------------------------------------------------------------
Update Information:
recent upstream snapshots as of 20160229 - - qutepart version 2.2.3 with fixes
for python3 and Qt5 as defaults - python2 component is now obsolete
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1313536 - qutepart-2.2.3 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1313536
--------------------------------------------------------------------------------
================================================================================
rfcdiff-1.43-1.fc23 (FEDORA-2016-92b13f39d2)
Compares two internet draft files and outputs the difference
--------------------------------------------------------------------------------
Update Information:
Changed the output charset from ISO-8859-1 to UTF-8
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1313830 - rfcdiff-1.43 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1313830
--------------------------------------------------------------------------------
================================================================================
sqlite-3.11.0-3.fc23 (FEDORA-2016-9850932586)
Library that implements an embeddable SQL database engine
--------------------------------------------------------------------------------
Update Information:
SQLite rebuilt with FTS3 tokenizer support reenabled.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1312506 - sqlite 3.11.0 upgrade breaks searching in GtkFileChooser
https://bugzilla.redhat.com/show_bug.cgi?id=1312506
--------------------------------------------------------------------------------
================================================================================
squid-3.5.9-8.fc23 (FEDORA-2016-3e4408f350)
The Squid proxy caching server
--------------------------------------------------------------------------------
Update Information:
Security fix for Multiple Denial of Service issues in HTTP Response processing
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1311585 - squid: Multiple Denial of Service issues in HTTP Response
processing [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1311585
--------------------------------------------------------------------------------
================================================================================
wireshark-1.12.10-1.fc23 (FEDORA-2016-85424d778a)
Network traffic analyzer
--------------------------------------------------------------------------------
Update Information:
Ver. 1.12.10
--------------------------------------------------------------------------------