The following Fedora 26 Security updates need testing:
Age URL
233
https://bodhi.fedoraproject.org/updates/FEDORA-2017-ccb5c8d1e7
docker-distribution-2.6.2-1.git48294d9.fc26
65
https://bodhi.fedoraproject.org/updates/FEDORA-2018-66b885ae3c
keycloak-httpd-client-install-0.8-1.fc26
52
https://bodhi.fedoraproject.org/updates/FEDORA-2018-4f8a78a5ef
squid-4.0.23-1.fc26
46
https://bodhi.fedoraproject.org/updates/FEDORA-2018-c7c6160e65
thunderbird-52.6.0-1.fc26
27
https://bodhi.fedoraproject.org/updates/FEDORA-2018-db5041e661 bro-2.5.3-1.fc26
24
https://bodhi.fedoraproject.org/updates/FEDORA-2018-fc47f3c85d
glibc-arm-linux-gnu-2.26-4.fc26
21
https://bodhi.fedoraproject.org/updates/FEDORA-2018-c1f73debee
drupal7-7.57-1.fc26
16
https://bodhi.fedoraproject.org/updates/FEDORA-2018-70c191d84a
ntp-4.2.8p11-1.fc26
15
https://bodhi.fedoraproject.org/updates/FEDORA-2018-c967cee830
dovecot-2.2.34-1.fc26
11
https://bodhi.fedoraproject.org/updates/FEDORA-2018-122ea355a7
memcached-1.4.39-2.fc26
9
https://bodhi.fedoraproject.org/updates/FEDORA-2018-5a5f51753c
net-snmp-5.7.3-27.fc26
5
https://bodhi.fedoraproject.org/updates/FEDORA-2018-6143b1d911
calibre-3.19.0-1.fc26
5
https://bodhi.fedoraproject.org/updates/FEDORA-2018-d809bd2fd6
php-simplesamlphp-saml2_1-1.10.6-1.fc26
5
https://bodhi.fedoraproject.org/updates/FEDORA-2018-f4ab4d96f9
php-simplesamlphp-saml2-2.3.8-1.fc26
5
https://bodhi.fedoraproject.org/updates/FEDORA-2018-f2097d8937
php-simplesamlphp-saml2_3-3.1.4-1.fc26
3
https://bodhi.fedoraproject.org/updates/FEDORA-2018-5673d070df
ImageMagick-6.9.9.38-1.fc26
3
https://bodhi.fedoraproject.org/updates/FEDORA-2018-505e83d30e
webkitgtk4-2.20.0-1.fc26
3
https://bodhi.fedoraproject.org/updates/FEDORA-2018-a0cca16ec6 exim-4.90.1-3.fc26
3
https://bodhi.fedoraproject.org/updates/FEDORA-2018-66c96e0024
curl-7.53.1-16.fc26
2
https://bodhi.fedoraproject.org/updates/FEDORA-2018-7011a8b0da
firefox-59.0-4.fc26
2
https://bodhi.fedoraproject.org/updates/FEDORA-2018-1d3d0e6f2e
monitorix-3.10.1-1.fc26
1
https://bodhi.fedoraproject.org/updates/FEDORA-2018-296bf0c332
kernel-4.15.10-200.fc26
1
https://bodhi.fedoraproject.org/updates/FEDORA-2018-c1769746da
python-paramiko-2.2.3-1.fc26
The following Fedora 26 Critical Path updates have yet to be approved:
Age URL
46
https://bodhi.fedoraproject.org/updates/FEDORA-2018-c7c6160e65
thunderbird-52.6.0-1.fc26
31
https://bodhi.fedoraproject.org/updates/FEDORA-2018-ddd1e5c30a
iproute-4.14.1-5.fc26
27
https://bodhi.fedoraproject.org/updates/FEDORA-2018-5e5bb3f1fb koji-1.15.0-4.fc26
27
https://bodhi.fedoraproject.org/updates/FEDORA-2018-53c4737dfb git-2.13.6-3.fc26
15
https://bodhi.fedoraproject.org/updates/FEDORA-2018-001ca50386
libdrm-2.4.90-2.fc26
15
https://bodhi.fedoraproject.org/updates/FEDORA-2018-e3590e7463
iptables-1.6.2-2.fc26 libnftnl-1.0.9-2.fc26 nftables-0.8.2-2.fc26
13
https://bodhi.fedoraproject.org/updates/FEDORA-2018-9efc9ddbb6
xfce4-settings-4.12.2-2.fc26
12
https://bodhi.fedoraproject.org/updates/FEDORA-2018-bac26576fe
lxpanel-0.9.3-7.D20180305gitb85c71a6.fc26
11
https://bodhi.fedoraproject.org/updates/FEDORA-2018-3cf2e9af11
redhat-rpm-config-65-1.fc26
10
https://bodhi.fedoraproject.org/updates/FEDORA-2018-1e6641ec83 gsm-1.0.17-2.fc26
10
https://bodhi.fedoraproject.org/updates/FEDORA-2018-6b73fc22f3
breeze-icon-theme-5.44.0-1.fc26 extra-cmake-modules-5.44.0-1.fc26 kf5-5.44.0-1.fc26
kf5-attica-5.44.0-1.fc26 kf5-baloo-5.44.0-1.fc26 kf5-bluez-qt-5.44.0-1.fc26
kf5-frameworkintegration-5.44.0-1.fc26 kf5-kactivities-5.44.0-1.fc26
kf5-kactivities-stats-5.44.0-1.fc26 kf5-kapidox-5.44.0-1.fc26 kf5-karchive-5.44.0-1.fc26
kf5-kauth-5.44.0-1.fc26 kf5-kbookmarks-5.44.0-1.fc26 kf5-kcmutils-5.44.0-1.fc26
kf5-kcodecs-5.44.0-1.fc26 kf5-kcompletion-5.44.0-1.fc26 kf5-kconfig-5.44.0-1.fc26
kf5-kconfigwidgets-5.44.0-1.fc26 kf5-kcoreaddons-5.44.0-2.fc26 kf5-kcrash-5.44.0-1.fc26
kf5-kdbusaddons-5.44.0-1.fc26 kf5-kdeclarative-5.44.0-1.fc26 kf5-kded-5.44.0-1.fc26
kf5-kdelibs4support-5.44.0-1.fc26 kf5-kdesignerplugin-5.44.0-1.fc26
kf5-kdesu-5.44.0-1.fc26 kf5-kdewebkit-5.44.0-1.fc26 kf5-kdnssd-5.44.0-1.fc26
kf5-kdoctools-5.44.0-1.fc26 kf5-kemoticons-5.44.0-1.fc26 kf5-kfilemetadata-5.44.0-1.fc26
kf5-kglobalaccel-5.44.0-1.fc26 kf5-kguiad
dons-5.44.0-1.fc26 kf5-khtml-5.44.0-1.fc26 kf5-ki18n-5.44.0-1.fc26
kf5-kiconthemes-5.44.0-1.fc26 kf5-kidletime-5.44.0-1.fc26 kf5-kimageformats-5.44.0-1.fc26
kf5-kinit-5.44.0-1.fc26 kf5-kio-5.44.0-2.fc26 kf5-kirigami2-5.44.0-1.fc26
kf5-kitemmodels-5.44.0-1.fc26 kf5-kitemviews-5.44.0-1.fc26 kf5-kjobwidgets-5.44.0-1.fc26
kf5-kjs-5.44.0-1.fc26 kf5-kjsembed-5.44.0-1.fc26 kf5-kmediaplayer-5.44.0-1.fc26
kf5-knewstuff-5.44.0-1.fc26 kf5-knotifications-5.44.0-1.fc26
kf5-knotifyconfig-5.44.0-1.fc26 kf5-kpackage-5.44.0-1.fc26 kf5-kparts-5.44.0-1.fc26
kf5-kpeople-5.44.0-1.fc26 kf5-kplotting-5.44.0-1.fc26 kf5-kpty-5.44.0-1.fc26
kf5-kross-5.44.0-1.fc26 kf5-krunner-5.44.0-1.fc26 kf5-kservice-5.44.0-1.fc26
kf5-ktexteditor-5.44.0-1.fc26 kf5-ktextwidgets-5.44.0-1.fc26
kf5-kunitconversion-5.44.0-1.fc26 kf5-kwallet-5.44.0-1.fc26 kf5-kwayland-5.44.0-1.fc26
kf5-kwidgetsaddons-5.44.0-1.fc26 kf5-kwindowsystem-5.44.0-1.fc26 kf5-kxmlgui-5.44.0-1.fc26
kf5-kxmlrpcclient-5.44.0-1.fc26 kf5-modemmanager-qt-5.44.0-
1.fc26 kf5-networkmanager-qt-5.44.0-1.fc26 kf5-plasma-5.44.0-1.fc26
kf5-prison-5.44.0-1.fc26 kf5-purpose-5.44.0-1.fc26 kf5-solid-5.44.0-1.fc26
kf5-sonnet-5.44.0-1.fc26 kf5-syntax-highlighting-5.44.0-1.fc26
kf5-threadweaver-5.44.0-1.fc26 oxygen-icon-theme-5.44.0-1.fc26
qqc2-desktop-style-5.44.0-1.fc26
9
https://bodhi.fedoraproject.org/updates/FEDORA-2018-5a5f51753c
net-snmp-5.7.3-27.fc26
5
https://bodhi.fedoraproject.org/updates/FEDORA-2018-1d88fda62c sssd-1.16.1-1.fc26
4
https://bodhi.fedoraproject.org/updates/FEDORA-2018-694c4e8d94 nss-3.36.0-1.0.fc26
nss-softokn-3.36.0-1.0.fc26 nss-util-3.36.0-1.0.fc26 nspr-4.19.0-1.fc26
4
https://bodhi.fedoraproject.org/updates/FEDORA-2018-cae2c0b3b3
osinfo-db-20180311-1.fc26
3
https://bodhi.fedoraproject.org/updates/FEDORA-2018-031d0ddaa3
python2-2.7.14-7.fc26
3
https://bodhi.fedoraproject.org/updates/FEDORA-2018-66c96e0024
curl-7.53.1-16.fc26
3
https://bodhi.fedoraproject.org/updates/FEDORA-2018-13dc94ac37
python3-3.6.4-3.fc26
3
https://bodhi.fedoraproject.org/updates/FEDORA-2018-3fd0a5f75f
gnome-software-3.24.3-5.fc26
3
https://bodhi.fedoraproject.org/updates/FEDORA-2018-505e83d30e
webkitgtk4-2.20.0-1.fc26
3
https://bodhi.fedoraproject.org/updates/FEDORA-2018-1969794434
selinux-policy-3.13.1-260.20.fc26
3
https://bodhi.fedoraproject.org/updates/FEDORA-2018-c308490ec9
jansson-2.11-1.fc26
2
https://bodhi.fedoraproject.org/updates/FEDORA-2018-7011a8b0da
firefox-59.0-4.fc26
1
https://bodhi.fedoraproject.org/updates/FEDORA-2018-296bf0c332
kernel-4.15.10-200.fc26
The following builds have been pushed to Fedora 26 updates-testing
auter-0.11-2.fc26
glpi-9.1.7.1-2.fc26
gnome-chemistry-utils-0.14.17-7.fc26
gnumeric-1.12.39-1.fc26
goffice-0.10.39-1.fc26
latexmk-4.55d-1.fc26
libyami-1.3.0-4.20180228git40fa32e.fc26
mnemosyne-2.6-1.fc26
mosquitto-1.4.15-1.fc26
mozilla-noscript-10.1.7.2-2.fc26
mrrescue-1.02e-7.fc26
perl-Data-HexDump-0.02-28.fc26
python-jupyter-c-kernel-1.2.2-1.fc26
python-octave-kernel-0.28.3-2.fc26
qt-virt-manager-0.53.83-1.fc26
rednotebook-2.4-1.fc26
wine-3.4-1.fc26
Details about builds:
================================================================================
auter-0.11-2.fc26 (FEDORA-2018-8fe9fe7b4d)
Prepare and apply updates
--------------------------------------------------------------------------------
Update Information:
Update to 0.11
--------------------------------------------------------------------------------
================================================================================
glpi-9.1.7.1-2.fc26 (FEDORA-2018-b0f6a5bdbc)
Free IT asset management software
--------------------------------------------------------------------------------
Update Information:
escape get keys to prevent possible xss CVE-2018-7563
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1554755 - CVE-2018-7563 glpi: XSS vulnerability in the query string to
front/preference.php
https://bugzilla.redhat.com/show_bug.cgi?id=1554755
--------------------------------------------------------------------------------
================================================================================
gnome-chemistry-utils-0.14.17-7.fc26 (FEDORA-2018-7535b4c72b)
A set of chemical utilities
--------------------------------------------------------------------------------
Update Information:
An update to the latest gnumeric and goffice releases: *
http://gnumeric.org/announcements/1.12/gnumeric-1.12.39.html
--------------------------------------------------------------------------------
================================================================================
gnumeric-1.12.39-1.fc26 (FEDORA-2018-7535b4c72b)
Spreadsheet program for GNOME
--------------------------------------------------------------------------------
Update Information:
An update to the latest gnumeric and goffice releases: *
http://gnumeric.org/announcements/1.12/gnumeric-1.12.39.html
--------------------------------------------------------------------------------
================================================================================
goffice-0.10.39-1.fc26 (FEDORA-2018-7535b4c72b)
G Office support libraries
--------------------------------------------------------------------------------
Update Information:
An update to the latest gnumeric and goffice releases: *
http://gnumeric.org/announcements/1.12/gnumeric-1.12.39.html
--------------------------------------------------------------------------------
================================================================================
latexmk-4.55d-1.fc26 (FEDORA-2018-7725929b89)
A make-like utility for LaTeX files
--------------------------------------------------------------------------------
Update Information:
Changes in version 4.55d: - Correct parsing of biber's log file. - Implement
$warning_cmd. - Deal correctly with situation that files reported in the .fls
file as INPUT or OUTPUT files no longer exist at end of run. These files
aren't true source files or generated files from latexmk's point of view.
Such cases can arise from a bug in the TeX engine (as with lualatex in
TeXLive 2016/2017). They can also arise when temporary files are created,
read and deleted during a run (as with the minted package).
--------------------------------------------------------------------------------
================================================================================
libyami-1.3.0-4.20180228git40fa32e.fc26 (FEDORA-2018-d5158bdd9c)
Yet Another Media Infrastructure
--------------------------------------------------------------------------------
Update Information:
New package
--------------------------------------------------------------------------------
================================================================================
mnemosyne-2.6-1.fc26 (FEDORA-2018-b322e211ca)
Flash-card learning tool
--------------------------------------------------------------------------------
Update Information:
Many fixes and improvements. Full upstream changelog [here](https://mnemosyne-
proj.org/whats-new).
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1546829 - mnemosyne crashes because of a missing dependency python3-pyopengl
https://bugzilla.redhat.com/show_bug.cgi?id=1546829
[ 2 ] Bug #1524747 - mnemosyne-2.6 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1524747
--------------------------------------------------------------------------------
================================================================================
mosquitto-1.4.15-1.fc26 (FEDORA-2018-e03a17fa61)
An Open Source MQTT v3.1/v3.1.1 Broker
--------------------------------------------------------------------------------
Update Information:
Fix CVE-2017-7651 (rhbz#1551755, rhbz#1551754)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1551743 - CVE-2017-7652 mosquitto: configuration reload fails when no free
sockets/file descriptors are available
https://bugzilla.redhat.com/show_bug.cgi?id=1551743
--------------------------------------------------------------------------------
================================================================================
mozilla-noscript-10.1.7.2-2.fc26 (FEDORA-2018-f011e7a0c5)
JavaScript white list extension for Mozilla Firefox
--------------------------------------------------------------------------------
Update Information:
v 10.1.7.2 ============================================================= * Fixed
bug causing some pages and RSS feeds to fail without access to NoScript UI
10.1.7 ============================================================= * "Needed
type" feedback in Custom preset for data: and blob: fonts (thanks
skriptimaahinen for report) * Pressing DEL while left-mousing down on a
fixed/absolutely positioned element of a script-disabled page removes it,
allowing users to dismiss in-content popup "windows" and blocking overlays *
Fixed changing sites permission resets local preferences regression from
10.1.7rc1 (thanks pal1000 for report) * Fixed data: and blob: fonts not blocked
even if the "font" permission is not given to the main document (thanks
skriptimaahinen for report and preliminary patch) * "Appearance|List full
addresses in the permissions popup" option, off by default, to simplify the
popup UI * "webgl" requirement feedback in CUSTOM permissions *
"webgl"
placeholder wherever possible * Activated beta channel updates from
secure.informaction.com * WebGL blocking now honored on scripted pages * Quantum
RC versions are hosted on
secure.informaction.com from now on due to beta
channel deprecation on AMO
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1557318 - mozilla-noscript-10.1.7.2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1557318
--------------------------------------------------------------------------------
================================================================================
mrrescue-1.02e-7.fc26 (FEDORA-2018-b203229889)
Arcade-style fire fighting game
--------------------------------------------------------------------------------
Update Information:
Add readme docs, reduce redundant love binary size
--------------------------------------------------------------------------------
================================================================================
perl-Data-HexDump-0.02-28.fc26 (FEDORA-2018-d470e3b5b8)
Hexadecimal Dumper
--------------------------------------------------------------------------------
Update Information:
Cleaned-up package that doesn't have "use lib 'lib'".
--------------------------------------------------------------------------------
================================================================================
python-jupyter-c-kernel-1.2.2-1.fc26 (FEDORA-2018-c654b43f77)
Minimalistic C kernel for Jupyter
--------------------------------------------------------------------------------
Update Information:
Initial package of jupyter-c-kernel for Python.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1556718 - Review Request: python-jupyter-c-kernel - Minimalistic C kernel for
Jupyter
https://bugzilla.redhat.com/show_bug.cgi?id=1556718
--------------------------------------------------------------------------------
================================================================================
python-octave-kernel-0.28.3-2.fc26 (FEDORA-2018-cbc8ea74e2)
A Jupyter kernel for Octave
--------------------------------------------------------------------------------
Update Information:
Initial package release of octave-kernel for Python.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1556689 - Review Request: python-octave-kernel - A Jupyter kernel for Octave
https://bugzilla.redhat.com/show_bug.cgi?id=1556689
--------------------------------------------------------------------------------
================================================================================
qt-virt-manager-0.53.83-1.fc26 (FEDORA-2018-45b2b6e084)
Qt Virtual Machine Manager
--------------------------------------------------------------------------------
Update Information:
some enhancements; ---- fixes for using virtual-viewer (*.vv) connection
files;
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1551558 - qt-virt-manager-0.52.81 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1551558
[ 2 ] Bug #1554491 - Process hangs after open a vv file
https://bugzilla.redhat.com/show_bug.cgi?id=1554491
[ 3 ] Bug #1557593 - qt-virt-manager-0.53.83 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1557593
--------------------------------------------------------------------------------
================================================================================
rednotebook-2.4-1.fc26 (FEDORA-2018-7655d493cc)
Daily journal with calendar, templates and keyword searching
--------------------------------------------------------------------------------
Update Information:
Update to latest upstream release 2.4
--------------------------------------------------------------------------------
================================================================================
wine-3.4-1.fc26 (FEDORA-2018-c5a0e704d6)
A compatibility layer for windows applications
--------------------------------------------------------------------------------
Update Information:
3.3 - Beginnings of Vulkan support. - Direct3D multi-threaded command stream
enabled by default. - Multisample textures enabled by default. - Support for
game controllers through SDL. - Support for loading CIL-only .Net binaries.
- Various bug fixes. 3.4 - More Vulkan support, including integration with the
X11 driver. - Better handling of privileged instructions on x86-64. - Hex
edit dialog improvements in RegEdit. - Assortment of patches merged from wine-
staging. - Various bug fixes.
--------------------------------------------------------------------------------