The following Fedora 23 Security updates need testing:
Age URL
376
https://bodhi.fedoraproject.org/updates/FEDORA-2015-16240 nagios-4.0.8-1.fc23
334
https://bodhi.fedoraproject.org/updates/FEDORA-2015-81ded368fe
miniupnpc-1.9-6.fc23
307
https://bodhi.fedoraproject.org/updates/FEDORA-2015-27392b3324
jbig2dec-0.12-2.fc23
257
https://bodhi.fedoraproject.org/updates/FEDORA-2015-dd52a54fa1
python-pymongo-3.0.3-1.fc23
257
https://bodhi.fedoraproject.org/updates/FEDORA-2015-06a7c972e8
thttpd-2.25b-37.fc23
222
https://bodhi.fedoraproject.org/updates/FEDORA-2016-637618fcd4
mingw-nsis-2.50-1.fc23
98
https://bodhi.fedoraproject.org/updates/FEDORA-2016-fcccb0a547
nodejs-0.10.46-1.fc23
76
https://bodhi.fedoraproject.org/updates/FEDORA-2016-70b5173c05
ecryptfs-utils-111-1.fc23
64
https://bodhi.fedoraproject.org/updates/FEDORA-2016-8d79ade826 flex-2.6.0-2.fc23
53
https://bodhi.fedoraproject.org/updates/FEDORA-2016-c2ec9c716e redis-3.2.3-1.fc23
46
https://bodhi.fedoraproject.org/updates/FEDORA-2016-d6288f555c
libarchive-3.2.1-3.fc23 python-libarchive-c-2.5-1.fc23
44
https://bodhi.fedoraproject.org/updates/FEDORA-2016-47dc2b203f
firewalld-0.4.3.3-1.fc23
30
https://bodhi.fedoraproject.org/updates/FEDORA-2016-b3a6435b14
dhcpcd-6.11.3-1.fc23
21
https://bodhi.fedoraproject.org/updates/FEDORA-2016-ed1c402851
thunderbird-45.3.0-1.fc23
9
https://bodhi.fedoraproject.org/updates/FEDORA-2016-58f90ae3cc
mariadb-10.0.27-1.fc23
9
https://bodhi.fedoraproject.org/updates/FEDORA-2016-0de0e0ee0c gd-2.1.1-10.fc23
9
https://bodhi.fedoraproject.org/updates/FEDORA-2016-4cedbd4308
mongodb-3.0.12-2.fc23
8
https://bodhi.fedoraproject.org/updates/FEDORA-2016-b331a099f3
chromium-53.0.2785.116-1.fc23
8
https://bodhi.fedoraproject.org/updates/FEDORA-2016-aa8275e843 links-2.13-1.fc23
4
https://bodhi.fedoraproject.org/updates/FEDORA-2016-97454404fe
openssl-1.0.2j-1.fc23
4
https://bodhi.fedoraproject.org/updates/FEDORA-2016-0551065fe0
irssi-0.8.20-2.fc23
3
https://bodhi.fedoraproject.org/updates/FEDORA-2016-77e5105570
php-ZendFramework-1.12.20-1.fc23
3
https://bodhi.fedoraproject.org/updates/FEDORA-2016-3795497354
python-django-1.8.15-1.fc23
2
https://bodhi.fedoraproject.org/updates/FEDORA-2016-ad1871cf02
openjpeg2-2.1.2-1.fc23
2
https://bodhi.fedoraproject.org/updates/FEDORA-2016-fe55f449e0
mingw-openjpeg2-2.1.2-1.fc23
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-3af8b344f1
bind-9.10.4-2.P3.fc23
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-cbef6c8619
bind99-9.9.9-2.P3.fc23
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-1b9d24c2b6
zathura-pdf-mupdf-0.3.0-2.fc23 mujs-0-5.20160921git5c337af.fc23
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-7aa3c89e7b
c-ares-1.12.0-1.fc23
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-66d9389548
mingw-c-ares-1.12.0-1.fc23
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-f15168439d bash-4.3.42-5.fc23
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-bb007a4097
openssh-7.2p2-6.fc23
The following Fedora 23 Critical Path updates have yet to be approved:
Age URL
73
https://bodhi.fedoraproject.org/updates/FEDORA-2016-98a7a1b6e0 abrt-2.8.0-6.fc23
libreport-2.6.4-3.fc23
46
https://bodhi.fedoraproject.org/updates/FEDORA-2016-d6288f555c
libarchive-3.2.1-3.fc23 python-libarchive-c-2.5-1.fc23
21
https://bodhi.fedoraproject.org/updates/FEDORA-2016-ed1c402851
thunderbird-45.3.0-1.fc23
9
https://bodhi.fedoraproject.org/updates/FEDORA-2016-0de0e0ee0c gd-2.1.1-10.fc23
7
https://bodhi.fedoraproject.org/updates/FEDORA-2016-79072fd70e
python-virtkey-0.63.0-1.fc23
4
https://bodhi.fedoraproject.org/updates/FEDORA-2016-ab35400bb1
poppler-0.34.0-4.fc23
4
https://bodhi.fedoraproject.org/updates/FEDORA-2016-7aef55393a
polkit-qt-0.112.0-8.fc23
4
https://bodhi.fedoraproject.org/updates/FEDORA-2016-97454404fe
openssl-1.0.2j-1.fc23
4
https://bodhi.fedoraproject.org/updates/FEDORA-2016-6a3e81a5be
linux-firmware-20160923-68.git42ad5367.fc23
2
https://bodhi.fedoraproject.org/updates/FEDORA-2016-cf2b06f96f
libass-0.13.3-1.fc23
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-bb007a4097
openssh-7.2p2-6.fc23
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-f15168439d bash-4.3.42-5.fc23
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-9d283ed227
python-2.7.11-11.fc23
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-3af8b344f1
bind-9.10.4-2.P3.fc23
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-d26923757a
koji-1.10.1-13.fc23
The following builds have been pushed to Fedora 23 updates-testing
PyQt-3.18.1-32.fc23
ansible-2.1.2.0-1.fc23
bash-4.3.42-5.fc23
bitstream-1.1-2.fc23
c-ares-1.12.0-1.fc23
cura-lulzbot-21.00-1.fc23
findbugs-contrib-6.6.3-2.fc23
foo2zjs-0.20160904-3.fc23
lighttpd-1.4.41-2.fc23
lulzbot-marlin-firmware-21.00-1.fc23
mingw-c-ares-1.12.0-1.fc23
openfortivpn-1.2.0-1.fc23
openssh-7.2p2-6.fc23
pcmanx-gtk2-1.3-1.fc23
perl-Encode-2.80-7.fc23
perl-Params-Validate-1.25-1.fc23
pintail-0.3-1.20160805git6f2daf7.fc23
python-2.7.11-11.fc23
qmc2-0.68-1.fc23
wxGTK3-3.0.2-24.fc23
Details about builds:
================================================================================
PyQt-3.18.1-32.fc23 (FEDORA-2016-1e89b010af)
Python bindings for Qt3
--------------------------------------------------------------------------------
Update Information:
Rebuild for newer sip (and ensure binary compatibility)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1331102 - None
https://bugzilla.redhat.com/show_bug.cgi?id=1331102
--------------------------------------------------------------------------------
================================================================================
ansible-2.1.2.0-1.fc23 (FEDORA-2016-678b448d7a)
SSH-based configuration management, deployment, and task execution system
--------------------------------------------------------------------------------
Update Information:
See
https://github.com/ansible/ansible/blob/stable-2.1/CHANGELOG.md for a full
list of changes and bugfixes.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1372018 - None
https://bugzilla.redhat.com/show_bug.cgi?id=1372018
--------------------------------------------------------------------------------
================================================================================
bash-4.3.42-5.fc23 (FEDORA-2016-f15168439d)
The GNU Bourne Again shell
--------------------------------------------------------------------------------
Update Information:
Specially crafted SHELLOPTS and PS4 variables can cause arbitrary code
execution. It is a security bug described in CVE-2016-7543 and this update
fixes it.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1379634 - CVE-2016-7543 bash: Specially crafted SHELLOPTS+PS4 variables
allows command substitution [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1379634
--------------------------------------------------------------------------------
================================================================================
bitstream-1.1-2.fc23 (FEDORA-2016-ee29986bd5)
Simpler access to binary structures such as specified by MPEG, DVB, IETF
--------------------------------------------------------------------------------
Update Information:
libdvbpsi converts binary structures to C structures. Lists are implemented with
chained lists of C structures. biTStream is lower level, and more efficient:
fewer memory allocations, fewer memory copies. It also features a better
separation between layers and specifications.
--------------------------------------------------------------------------------
================================================================================
c-ares-1.12.0-1.fc23 (FEDORA-2016-7aa3c89e7b)
A library that performs asynchronous DNS operations
--------------------------------------------------------------------------------
Update Information:
Security fix for CVE-2016-5180
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1380463 - CVE-2016-5180 c-ares: Single byte out of buffer write
https://bugzilla.redhat.com/show_bug.cgi?id=1380463
--------------------------------------------------------------------------------
================================================================================
cura-lulzbot-21.00-1.fc23 (FEDORA-2016-0e65c279f9)
Cura LulzBot Edition, 3D printer control software
--------------------------------------------------------------------------------
Update Information:
Update to 21.00.
--------------------------------------------------------------------------------
================================================================================
findbugs-contrib-6.6.3-2.fc23 (FEDORA-2016-ca6bbb80ba)
Extra findbugs detectors
--------------------------------------------------------------------------------
Update Information:
Update to new version 6.6.3
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1379056 - None
https://bugzilla.redhat.com/show_bug.cgi?id=1379056
--------------------------------------------------------------------------------
================================================================================
foo2zjs-0.20160904-3.fc23 (FEDORA-2016-ffbaaf6911)
Linux printer driver for ZjStream protocol
--------------------------------------------------------------------------------
Update Information:
Add optflags to CFLAGS
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1380520 - None
https://bugzilla.redhat.com/show_bug.cgi?id=1380520
--------------------------------------------------------------------------------
================================================================================
lighttpd-1.4.41-2.fc23 (FEDORA-2016-cdf61dde70)
Lightning fast webserver with light system requirements
--------------------------------------------------------------------------------
Update Information:
Directory and permissions fixes.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1201056 - None
https://bugzilla.redhat.com/show_bug.cgi?id=1201056
--------------------------------------------------------------------------------
================================================================================
lulzbot-marlin-firmware-21.00-1.fc23 (FEDORA-2016-0e65c279f9)
Marlin firmware files for the Lulzbot family of 3D printers
--------------------------------------------------------------------------------
Update Information:
Update to 21.00.
--------------------------------------------------------------------------------
================================================================================
mingw-c-ares-1.12.0-1.fc23 (FEDORA-2016-66d9389548)
Library that performs asynchronous DNS operations
--------------------------------------------------------------------------------
Update Information:
Security fix for CVE-2016-5180
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1380463 - CVE-2016-5180 c-ares: Single byte out of buffer write
https://bugzilla.redhat.com/show_bug.cgi?id=1380463
--------------------------------------------------------------------------------
================================================================================
openfortivpn-1.2.0-1.fc23 (FEDORA-2016-8eda56af39)
Client for PPP+SSL VPN tunnel services
--------------------------------------------------------------------------------
Update Information:
Update to latest upstream version
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1380062 - None
https://bugzilla.redhat.com/show_bug.cgi?id=1380062
--------------------------------------------------------------------------------
================================================================================
openssh-7.2p2-6.fc23 (FEDORA-2016-bb007a4097)
An open source implementation of SSH protocol versions 1 and 2
--------------------------------------------------------------------------------
Update Information:
Fix NULL dereference (#1380297)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1380296 - openssh: Null pointer dereference due to early NEWKEYS
https://bugzilla.redhat.com/show_bug.cgi?id=1380296
--------------------------------------------------------------------------------
================================================================================
pcmanx-gtk2-1.3-1.fc23 (FEDORA-2016-8cbd06eb5d)
Telnet client designed for BBS browsing
--------------------------------------------------------------------------------
Update Information:
Feature: Add ANSI color editor Feature: Enhance OpenPCMan style mouse
compatibility Feature: Add mouse browsing support Feature: Add hotkey
settings Feature: Add gnome-terminal style keyboard shortcuts Feature:
Option to startup in simple mode Feature: Close tabs selected by middle
clicks Bugfix: Fix build under Fedora Linux Bugfix: Some combinations
for key settings do not work
--------------------------------------------------------------------------------
================================================================================
perl-Encode-2.80-7.fc23 (FEDORA-2016-7c35f227d8)
Character encodings in Perl
--------------------------------------------------------------------------------
Update Information:
This release fixes encoding an undefined value.
--------------------------------------------------------------------------------
================================================================================
perl-Params-Validate-1.25-1.fc23 (FEDORA-2016-88f3328948)
Params-Validate Perl module
--------------------------------------------------------------------------------
Update Information:
Upstream update
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1380057 - None
https://bugzilla.redhat.com/show_bug.cgi?id=1380057
--------------------------------------------------------------------------------
================================================================================
pintail-0.3-1.20160805git6f2daf7.fc23 (FEDORA-2016-9460866789)
Build web sites from Mallard sources
--------------------------------------------------------------------------------
Update Information:
New package
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1364194 - None
https://bugzilla.redhat.com/show_bug.cgi?id=1364194
--------------------------------------------------------------------------------
================================================================================
python-2.7.11-11.fc23 (FEDORA-2016-9d283ed227)
An interpreted, interactive, object-oriented programming language
--------------------------------------------------------------------------------
Update Information:
Provide python27
--------------------------------------------------------------------------------
================================================================================
qmc2-0.68-1.fc23 (FEDORA-2016-acf1923f21)
M.A.M.E. Catalog / Launcher II
--------------------------------------------------------------------------------
Update Information:
Update to the latest qmc2 release: *
http://qmc2.batcom-
it.net/index.php/2016/09/28/qmc2-0-68-released/
--------------------------------------------------------------------------------
================================================================================
wxGTK3-3.0.2-24.fc23 (FEDORA-2016-93a91fd751)
GTK port of the wxWidgets GUI library
--------------------------------------------------------------------------------
Update Information:
Fixes crash in wxGCDC.
--------------------------------------------------------------------------------