The following Fedora 26 Security updates need testing:
Age URL
208
https://bodhi.fedoraproject.org/updates/FEDORA-2017-ccb5c8d1e7
docker-distribution-2.6.2-1.git48294d9.fc26
101
https://bodhi.fedoraproject.org/updates/FEDORA-2017-3915878e18 ldns-1.7.0-4.fc26
46
https://bodhi.fedoraproject.org/updates/FEDORA-2018-ccef1ced42 gimp-2.8.22-3.fc26
40
https://bodhi.fedoraproject.org/updates/FEDORA-2018-66b885ae3c
keycloak-httpd-client-install-0.8-1.fc26
27
https://bodhi.fedoraproject.org/updates/FEDORA-2018-b166805347
transmission-2.92-12.fc26
27
https://bodhi.fedoraproject.org/updates/FEDORA-2018-4f8a78a5ef
squid-4.0.23-1.fc26
20
https://bodhi.fedoraproject.org/updates/FEDORA-2018-c7c6160e65
thunderbird-52.6.0-1.fc26
14
https://bodhi.fedoraproject.org/updates/FEDORA-2018-fff755ee8e jhead-3.00-7.fc26
7
https://bodhi.fedoraproject.org/updates/FEDORA-2018-c54ced412e gcab-1.1-1.fc26
7
https://bodhi.fedoraproject.org/updates/FEDORA-2018-b3de6c389e
torbrowser-launcher-0.2.9-1.fc26
5
https://bodhi.fedoraproject.org/updates/FEDORA-2018-f97cb1c9b0 krb5-1.15.2-7.fc26
5
https://bodhi.fedoraproject.org/updates/FEDORA-2018-4367d984c1
sblim-sfcb-1.4.9-7.fc26
5
https://bodhi.fedoraproject.org/updates/FEDORA-2018-e23d2dae46
mingw-poppler-0.52.0-6.fc26
5
https://bodhi.fedoraproject.org/updates/FEDORA-2018-f5d2f4ec0d
mingw-OpenEXR-2.2.0-6.fc26
5
https://bodhi.fedoraproject.org/updates/FEDORA-2018-5cdc56766f
firefox-58.0.2-1.fc26
4
https://bodhi.fedoraproject.org/updates/FEDORA-2018-71fac70309 patch-2.7.6-3.fc26
4
https://bodhi.fedoraproject.org/updates/FEDORA-2018-c1b8e0176c
freetype-2.7.1-10.fc26
2
https://bodhi.fedoraproject.org/updates/FEDORA-2018-db5041e661 bro-2.5.3-1.fc26
2
https://bodhi.fedoraproject.org/updates/FEDORA-2018-cbc52e8812 irssi-1.0.7-1.fc26
2
https://bodhi.fedoraproject.org/updates/FEDORA-2018-25a7ba3cb6 exim-4.90.1-2.fc26
2
https://bodhi.fedoraproject.org/updates/FEDORA-2018-7d90e269a4
milkytracker-1.01.00-1.fc26
1
https://bodhi.fedoraproject.org/updates/FEDORA-2018-b2d76ba048
seamonkey-2.49.2-2.fc26
0
https://bodhi.fedoraproject.org/updates/FEDORA-2018-9817f1dafa
mbedtls-2.7.0-1.fc26
0
https://bodhi.fedoraproject.org/updates/FEDORA-2018-b79f325c48
bugzilla-5.0.4-1.fc26
0
https://bodhi.fedoraproject.org/updates/FEDORA-2018-844a1e9778
knot-resolver-2.1.0-1.fc26
0
https://bodhi.fedoraproject.org/updates/FEDORA-2018-2293c571b1
electrum-3.0.6-1.fc26
The following Fedora 26 Critical Path updates have yet to be approved:
Age URL
20
https://bodhi.fedoraproject.org/updates/FEDORA-2018-c7c6160e65
thunderbird-52.6.0-1.fc26
10
https://bodhi.fedoraproject.org/updates/FEDORA-2018-27cb0cd918 ibus-1.5.17-6.fc26
7
https://bodhi.fedoraproject.org/updates/FEDORA-2018-bc14e16004 nss-3.35.0-1.0.fc26
nss-softokn-3.35.0-1.0.fc26 nss-util-3.35.0-1.0.fc26 nspr-4.18.0-1.fc26
7
https://bodhi.fedoraproject.org/updates/FEDORA-2018-3e5558f0ff
vim-8.0.1505-1.fc26
7
https://bodhi.fedoraproject.org/updates/FEDORA-2018-c54ced412e gcab-1.1-1.fc26
7
https://bodhi.fedoraproject.org/updates/FEDORA-2018-9ef65cf422
perl-5.24.3-396.fc26
5
https://bodhi.fedoraproject.org/updates/FEDORA-2018-85dd2a6ff9
curl-7.53.1-15.fc26
5
https://bodhi.fedoraproject.org/updates/FEDORA-2018-562467e141 sssd-1.16.0-6.fc26
5
https://bodhi.fedoraproject.org/updates/FEDORA-2018-5cdc56766f
firefox-58.0.2-1.fc26
5
https://bodhi.fedoraproject.org/updates/FEDORA-2018-6fe397a796
lxpanel-0.9.3-4.D20180109git2ddf8dfc.fc26
5
https://bodhi.fedoraproject.org/updates/FEDORA-2018-ddd1e5c30a
iproute-4.14.1-5.fc26
5
https://bodhi.fedoraproject.org/updates/FEDORA-2018-f97cb1c9b0 krb5-1.15.2-7.fc26
4
https://bodhi.fedoraproject.org/updates/FEDORA-2018-c1b8e0176c
freetype-2.7.1-10.fc26
4
https://bodhi.fedoraproject.org/updates/FEDORA-2018-5a2e230b9d
net-snmp-5.7.3-26.fc26
4
https://bodhi.fedoraproject.org/updates/FEDORA-2018-9d8876b830
samba-4.6.13-0.fc26
4
https://bodhi.fedoraproject.org/updates/FEDORA-2018-b7b864a29e
breeze-icon-theme-5.43.0-1.fc26 extra-cmake-modules-5.43.0-1.fc26 kf5-5.43.0-1.fc26
kf5-attica-5.43.0-1.fc26 kf5-baloo-5.43.0-1.fc26 kf5-bluez-qt-5.43.0-1.fc26
kf5-frameworkintegration-5.43.0-2.fc26 kf5-kactivities-5.43.0-2.fc26
kf5-kactivities-stats-5.43.0-2.fc26 kf5-kapidox-5.43.0-1.fc26 kf5-karchive-5.43.0-1.fc26
kf5-kauth-5.43.0-1.fc26 kf5-kbookmarks-5.43.0-2.fc26 kf5-kcmutils-5.43.0-3.fc26
kf5-kcodecs-5.43.0-1.fc26 kf5-kcompletion-5.43.0-1.fc26 kf5-kconfig-5.43.0-1.fc26
kf5-kconfigwidgets-5.43.0-1.fc26 kf5-kcoreaddons-5.43.0-1.fc26 kf5-kcrash-5.43.0-1.fc26
kf5-kdbusaddons-5.43.0-1.fc26 kf5-kdeclarative-5.43.0-2.fc26 kf5-kded-5.43.0-3.fc26
kf5-kdelibs4support-5.43.0-3.fc26 kf5-kdesignerplugin-5.43.0-2.fc26
kf5-kdesu-5.43.0-1.fc26 kf5-kdewebkit-5.43.0-2.fc26 kf5-kdnssd-5.43.0-1.fc26
kf5-kdoctools-5.43.0-1.fc26 kf5-kemoticons-5.43.0-1.fc26 kf5-kfilemetadata-5.43.0-1.fc26
kf5-kglobalaccel-5.43.0-1.fc26 kf5-kguiad
dons-5.43.0-1.fc26 kf5-khtml-5.43.0-3.fc26 kf5-ki18n-5.43.0-1.fc26
kf5-kiconthemes-5.43.0-1.fc26 kf5-kidletime-5.43.0-1.fc26 kf5-kimageformats-5.43.0-1.fc26
kf5-kinit-5.43.0-2.fc26 kf5-kio-5.43.0-3.fc26 kf5-kirigami2-5.43.0-1.fc26
kf5-kitemmodels-5.43.0-1.fc26 kf5-kitemviews-5.43.0-1.fc26 kf5-kjobwidgets-5.43.0-1.fc26
kf5-kjs-5.43.0-1.fc26 kf5-kjsembed-5.43.0-1.fc26 kf5-kmediaplayer-5.43.0-2.fc26
kf5-knewstuff-5.43.0-2.fc26 kf5-knotifications-5.43.0-1.fc26
kf5-knotifyconfig-5.43.0-2.fc26 kf5-kpackage-5.43.0-1.fc26 kf5-kparts-5.43.0-2.fc26
kf5-kpeople-5.43.0-1.fc26 kf5-kplotting-5.43.0-1.fc26 kf5-kpty-5.43.0-1.fc26
kf5-kross-5.43.0-2.fc26 kf5-krunner-5.43.0-3.fc26 kf5-kservice-5.43.0-1.fc26
kf5-ktexteditor-5.43.0-3.fc26 kf5-ktextwidgets-5.43.0-1.fc26
kf5-kunitconversion-5.43.0-1.fc26 kf5-kwallet-5.43.0-1.fc26 kf5-kwayland-5.43.0-1.fc26
kf5-kwidgetsaddons-5.43.0-1.fc26 kf5-kwindowsystem-5.43.0-1.fc26 kf5-kxmlgui-5.43.0-1.fc26
kf5-kxmlrpcclient-5.43.0-2.fc26 kf5-modemmanager-qt-5.43.0-
1.fc26 kf5-networkmanager-qt-5.43.0-1.fc26 kf5-plasma-5.43.0-3.fc26
kf5-prison-5.43.0-1.fc26 kf5-purpose-5.43.0-1.fc26 kf5-solid-5.43.0-1.fc26
kf5-sonnet-5.43.0-1.fc26 kf5-syntax-highlighting-5.43.0-1.fc26
kf5-threadweaver-5.43.0-1.fc26 oxygen-icon-theme-5.43.0-1.fc26
qqc2-desktop-style-5.43.0-1.fc26
4
https://bodhi.fedoraproject.org/updates/FEDORA-2018-18c1baca23
qt5-qtbase-5.9.4-4.fc26
4
https://bodhi.fedoraproject.org/updates/FEDORA-2018-71fac70309 patch-2.7.6-3.fc26
2
https://bodhi.fedoraproject.org/updates/FEDORA-2018-5e5bb3f1fb koji-1.15.0-4.fc26
2
https://bodhi.fedoraproject.org/updates/FEDORA-2018-53c4737dfb git-2.13.6-3.fc26
2
https://bodhi.fedoraproject.org/updates/FEDORA-2018-4c127acb0f
libwebp-0.6.1-5.fc26
2
https://bodhi.fedoraproject.org/updates/FEDORA-2018-4c28b00507
gnutls-3.5.18-2.fc26
1
https://bodhi.fedoraproject.org/updates/FEDORA-2018-be760d6d28
libidn2-2.0.4-3.fc26
1
https://bodhi.fedoraproject.org/updates/FEDORA-2018-800cf2f81e
ethtool-4.15-1.fc26
1
https://bodhi.fedoraproject.org/updates/FEDORA-2018-0be6ceb3e0
python2-2.7.14-5.fc26
The following builds have been pushed to Fedora 26 updates-testing
boinc-client-7.9.2-2.fc26
cryptopp-5.6.5-2.fc26
dislocker-0.7.1-7.fc26
dnssec-trigger-0.15-4.fc26
dolphin-emu-5.0-20.fc26
dot2tex-2.9.0-1.fc26
dpm-contrib-admintools-0.2.4-1.fc26
golang-github-paulrosania-go-charset-0-0.1.20151028git621bb39.fc26
libdvbpsi-1.3.2-1.fc26
libndn-cxx-0.6.1-1.fc26
libplacebo-0.4.0-1.fc26
nekovm-2.2.0-3.fc26
pcp-4.0.0-2.fc26
pcre-8.41-6.fc26
perl-Dancer-Session-Cookie-0.29-1.fc26
perl-IO-Socket-Socks-0.74-2.fc26
php-phpseclib-2.0.10-1.fc26
poedit-2.0.6-1.fc26
python-sqlalchemy-1.1.16-1.fc26
root-6.12.06-1.fc26
rpkg-client-0.14-1.fc26
rsync-bpc-3.0.9.12-1.fc26
rubygem-unf_ext-0.0.7.5-1.fc26
syncthing-gtk-0.9.3-1.fc26
tcl-thread-2.8.2-1.fc26
unixODBC-2.3.5-2.fc26
wavpack-5.1.0-7.fc26
zerofree-1.1.1-1.fc26
Details about builds:
================================================================================
boinc-client-7.9.2-2.fc26 (FEDORA-2018-cc40039e71)
The BOINC client
--------------------------------------------------------------------------------
Update Information:
New upstream release of the BOINC client + added fix for #1494241 "Use mariadb-
connector-c instead of mysql-libs or mariadb-libs"
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1494241 - Use mariadb-connector-c instead of mysql-libs or mariadb-libs
https://bugzilla.redhat.com/show_bug.cgi?id=1494241
--------------------------------------------------------------------------------
================================================================================
cryptopp-5.6.5-2.fc26 (FEDORA-2018-5a249b4214)
C++ class library of cryptographic schemes
--------------------------------------------------------------------------------
Update Information:
Update cryptopp to 5.6.5 security release. * fixed CVE-2016-7420 (Issue 277,
document NDEBUG for production/release) * fixed CVE-2016-7544 (Issue 302, avoid
_malloca and _freea for MSC compilers) * Shipped library in recommended state
backwards compatibility achieved with <config.compat> * improved Testing and QA
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1376698 - CVE-2016-7420 cryptopp: Library documentation lacks treatment of
-DNDEBUG and Static Initialization [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1376698
[ 2 ] Bug #1376697 - CVE-2016-7420 cryptopp: Library documentation lacks treatment of
-DNDEBUG and Static Initialization [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1376697
[ 3 ] Bug #1375180 - CryptoPP::CMAC_Base::Update assert failed with tegrarcm
https://bugzilla.redhat.com/show_bug.cgi?id=1375180
[ 4 ] Bug #1401407 - Cryptopp 5.6.5 released, Fedora Rawhide currently on 5.6.3
https://bugzilla.redhat.com/show_bug.cgi?id=1401407
--------------------------------------------------------------------------------
================================================================================
dislocker-0.7.1-7.fc26 (FEDORA-2018-9e31caf5c9)
Utility to access BitLocker encrypted volumes
--------------------------------------------------------------------------------
Update Information:
- Rebuilt for mbed TLS 2.7.0
--------------------------------------------------------------------------------
================================================================================
dnssec-trigger-0.15-4.fc26 (FEDORA-2018-0003054b16)
Tool for dynamic reconfiguration of validating resolver Unbound
--------------------------------------------------------------------------------
Update Information:
- two bugs fixed - migrated from NetworkManager-glib to NetworkManager-libnm -
added explicit BuildRequires on gcc ---- - New upstream release 0.15
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1388055 - HTTP probe result length could not be longer than 2 characters
https://bugzilla.redhat.com/show_bug.cgi?id=1388055
[ 2 ] Bug #1542400 - Removing task whose target is dnssec-trigger fails to remove
dnssec-trigger itself.
https://bugzilla.redhat.com/show_bug.cgi?id=1542400
--------------------------------------------------------------------------------
================================================================================
dolphin-emu-5.0-20.fc26 (FEDORA-2018-55d6282bb9)
GameCube / Wii / Triforce Emulator
--------------------------------------------------------------------------------
Update Information:
* Rebuilt for mbed TLS 2.7.0
--------------------------------------------------------------------------------
================================================================================
dot2tex-2.9.0-1.fc26 (FEDORA-2018-8df0d3068d)
A Graphviz to LaTeX converter
--------------------------------------------------------------------------------
Update Information:
* Update to 2.9.0 * Fix issue with removed `Upcase` and `_noncomma` from
`pyparsing`
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1505463 - Please update to latest release 2.9.0
https://bugzilla.redhat.com/show_bug.cgi?id=1505463
--------------------------------------------------------------------------------
================================================================================
dpm-contrib-admintools-0.2.4-1.fc26 (FEDORA-2018-ce9ad42dbe)
DPM administration toolkit (contrib from GridPP)
--------------------------------------------------------------------------------
Update Information:
* new upstream release
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1545172 - dpm-contrib-admintools is using arch-dependent BuildRequires
https://bugzilla.redhat.com/show_bug.cgi?id=1545172
--------------------------------------------------------------------------------
================================================================================
golang-github-paulrosania-go-charset-0-0.1.20151028git621bb39.fc26
(FEDORA-2018-32e5246061)
Character set conversion for Go
--------------------------------------------------------------------------------
Update Information:
**Character set conversion for Go** - dependency of *goproxy* (which is a
dependency of *bettercap 2.0.0*)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1546534 - Review Request: golang-github-paulrosania-go-charset - Character
set conversion for Go
https://bugzilla.redhat.com/show_bug.cgi?id=1546534
--------------------------------------------------------------------------------
================================================================================
libdvbpsi-1.3.2-1.fc26 (FEDORA-2018-84d70a4f44)
Library for MPEG TS and DVB PSI tables decoding and generation
--------------------------------------------------------------------------------
Update Information:
The 1.3.2 bugfix release of libdvbpsi is available. It resolves several
descriptor bugs. Changes between 1.3.1 and 1.3.2: * Fix bug in
dvbpsi_decoder_psi_section_add() set i_last_section_number * Fix bug in
descriptor 0x8a that prevented it from being parsed properly * Fix bug in
descriptor 0x56 generation with multiple teletext page entries * Fix bug in
descriptor 0x41 correct maximum service count
--------------------------------------------------------------------------------
================================================================================
libndn-cxx-0.6.1-1.fc26 (FEDORA-2018-ddf1244a2b)
C++ library implementing Named Data Networking primitives
--------------------------------------------------------------------------------
Update Information:
Package for 0.6.1 release
--------------------------------------------------------------------------------
================================================================================
libplacebo-0.4.0-1.fc26 (FEDORA-2018-db6da67a1a)
Reusable library for GPU-accelerated video/image rendering primitives
--------------------------------------------------------------------------------
Update Information:
Initial import for libplacebo
--------------------------------------------------------------------------------
================================================================================
nekovm-2.2.0-3.fc26 (FEDORA-2018-589a2ca8e9)
Neko embedded scripting language and virtual machine
--------------------------------------------------------------------------------
Update Information:
* Rebuilt for mbed TLS 2.7.0
--------------------------------------------------------------------------------
================================================================================
pcp-4.0.0-2.fc26 (FEDORA-2018-6e29ed8f6d)
System-level performance monitoring and performance management
--------------------------------------------------------------------------------
Update Information:
Disable pmdabcc on architectures without BCC/eBPF support. ---- Update to
latest PCP sources.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1508028 - [abrt] pcp-system-tools: topcline(): pcp-atop killed by SIGSEGV
https://bugzilla.redhat.com/show_bug.cgi?id=1508028
[ 2 ] Bug #1508026 - [abrt] pcp-system-tools: pmLookupName():
pmcc.py:360:mcFetchPmids:TypeError: unsupported operand type(s) for >>:
'builtin_function_or_method' and '_io.TextIOWrapper'
https://bugzilla.redhat.com/show_bug.cgi?id=1508026
[ 3 ] Bug #1352461 - PCP options -s and -T are mutually exclusive
https://bugzilla.redhat.com/show_bug.cgi?id=1352461
[ 4 ] Bug #1451475 - proc pmda crashes in -K/-L mode
https://bugzilla.redhat.com/show_bug.cgi?id=1451475
[ 5 ] Bug #1352465 - Python PMAPI pmWhichZone crashes Python
https://bugzilla.redhat.com/show_bug.cgi?id=1352465
[ 6 ] Bug #1289126 - man pages for non-existing pmview included
https://bugzilla.redhat.com/show_bug.cgi?id=1289126
[ 7 ] Bug #1490012 - selinux errors with pcp installed
https://bugzilla.redhat.com/show_bug.cgi?id=1490012
[ 8 ] Bug #1517655 - PCP SELinux AVCs
https://bugzilla.redhat.com/show_bug.cgi?id=1517655
--------------------------------------------------------------------------------
================================================================================
pcre-8.41-6.fc26 (FEDORA-2018-70fbfc5434)
Perl-compatible regular expression library
--------------------------------------------------------------------------------
Update Information:
This release fixes returning unset groups in POSIX interface if REG_STARTEND has
a non-zero starting offset.
--------------------------------------------------------------------------------
================================================================================
perl-Dancer-Session-Cookie-0.29-1.fc26 (FEDORA-2018-7e2cb0696f)
Encrypted cookie-based session back-end for Dancer
--------------------------------------------------------------------------------
Update Information:
This release corrects tests. ---- This release improves documentation and
tests.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1546961 - perl-Dancer-Session-Cookie-0.29 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1546961
[ 2 ] Bug #1544162 - perl-Dancer-Session-Cookie-0.28 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1544162
--------------------------------------------------------------------------------
================================================================================
perl-IO-Socket-Socks-0.74-2.fc26 (FEDORA-2018-3caef3d480)
Provides a way to create socks (4 or 5) client or server
--------------------------------------------------------------------------------
Update Information:
This is the first Fedora/EPEL release of perl-IO-Socket-Socks.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1546648 - Review Request: perl-IO-Socket-Socks - Provides a way to create
socks (4 or 5) client or server
https://bugzilla.redhat.com/show_bug.cgi?id=1546648
--------------------------------------------------------------------------------
================================================================================
php-phpseclib-2.0.10-1.fc26 (FEDORA-2018-4987715889)
PHP Secure Communications Library
--------------------------------------------------------------------------------
Update Information:
**Version 2.0.10** - 2018-02-08 - BigInteger: fix issue with bitwise_xor
(#1245) - Crypt: some of the minimum lengths were off - SFTP: update stat cache
accordingly when file becomes a directory (#1235) - SFTP: fix issue with
extended attributes on 64-bit PHP installs (#1248) - SSH2: more channel handling
updates (#1200) - X509: use anonymous functions in PHP >= 5.3.0 - X509: revise
logic for validateLogic (#1213) - X509: fix 7.2 error when extensions were
removed and new ones added (#1243) - fix float to int conversions on ARM CPU's
(#1220)
--------------------------------------------------------------------------------
================================================================================
poedit-2.0.6-1.fc26 (FEDORA-2018-1b6ad8dc68)
GUI editor for GNU gettext .po files
--------------------------------------------------------------------------------
Update Information:
New upstream version
--------------------------------------------------------------------------------
================================================================================
python-sqlalchemy-1.1.16-1.fc26 (FEDORA-2018-71e779c6b8)
Modular and flexible ORM library for python
--------------------------------------------------------------------------------
Update Information:
This update contains a new upstream bugfix release. The upstream [changelog](ht
tp://docs.sqlalchemy.org/en/latest/changelog/changelog_11.html#change-1.1.16)
contains a list of all changes in version 1.1.16.
--------------------------------------------------------------------------------
================================================================================
root-6.12.06-1.fc26 (FEDORA-2018-4a78e2b220)
Numerical data analysis framework
--------------------------------------------------------------------------------
Update Information:
Update to root 6.12.06.
https://root.cern.ch/content/release-61206
--------------------------------------------------------------------------------
================================================================================
rpkg-client-0.14-1.fc26 (FEDORA-2018-0df711cc64)
RPM packaging utitility
--------------------------------------------------------------------------------
Update Information:
- fix error when redownloading sources - do not invoke parent's module_name in
load_ns_module_name - fix python builddeps naming
--------------------------------------------------------------------------------
================================================================================
rsync-bpc-3.0.9.12-1.fc26 (FEDORA-2018-30425289b8)
A customized version of rsync that is used as part of BackupPC
--------------------------------------------------------------------------------
Update Information:
In bpc_read() ensure we don't read past the end of the buffer, in case actual
file's size is less than the attribute file size.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1539376 - rsync-bpc-3.0.9.12 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1539376
--------------------------------------------------------------------------------
================================================================================
rubygem-unf_ext-0.0.7.5-1.fc26 (FEDORA-2018-6e6a9c6dea)
Unicode Normalization Form support library for CRuby
--------------------------------------------------------------------------------
Update Information:
New version 0.0.7.5 is released.
--------------------------------------------------------------------------------
================================================================================
syncthing-gtk-0.9.3-1.fc26 (FEDORA-2018-c5154c8de9)
Syncthing GTK+ GUI
--------------------------------------------------------------------------------
Update Information:
Update to version 0.9.3.
--------------------------------------------------------------------------------
================================================================================
tcl-thread-2.8.2-1.fc26 (FEDORA-2018-5f353e41ca)
Tcl Thread extension
--------------------------------------------------------------------------------
Update Information:
Return to repos after unretire.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1544384 - Review Request: tcl-thread - Tcl Thread extension
https://bugzilla.redhat.com/show_bug.cgi?id=1544384
--------------------------------------------------------------------------------
================================================================================
unixODBC-2.3.5-2.fc26 (FEDORA-2018-1d4dc5f1c0)
A complete ODBC driver manager for Linux
--------------------------------------------------------------------------------
Update Information:
Fix for conflicts introduced by the previous update. Fixed by [cleanup of SPEC
file](https://src.fedoraproject.org/rpms/unixODBC/pull-request/3) and removing
`autotools` hacks. Thanks, praiskup! ---- Update to the latest
[upstream](http://www.unixodbc.com) version.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1537840 - unixODBC-2.3.5 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1537840
[ 2 ] Bug #1546921 - conflicts between attempted installs of unixODBC-2.3.5-1.fc27.i686
and unixODBC-2.3.5-1.fc27.x86_64
https://bugzilla.redhat.com/show_bug.cgi?id=1546921
--------------------------------------------------------------------------------
================================================================================
wavpack-5.1.0-7.fc26 (FEDORA-2018-d94e205df8)
A completely open audiocodec
--------------------------------------------------------------------------------
Update Information:
* CVE-2018-6767 * CVE-2018-7253
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1542552 - CVE-2018-6767 wavpack: stack buffer overflow via crafted wav file
[fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1542552
--------------------------------------------------------------------------------
================================================================================
zerofree-1.1.1-1.fc26 (FEDORA-2018-c753faab74)
Utility to force unused ext2/3/4 inodes and blocks to zero
--------------------------------------------------------------------------------
Update Information:
zerofree 1.1.1 ============== * 2017-02-22: Lift call to
ext2fs_free_blocks_count out of loop. Suggested by Thanassis Tsiodras.
zerofree 1.1.0 ============== * 2016-02-18: Add support for 64-bit block
numbers. * 2015-10-18: Use memcmp. Suggested by Damien Clark.
--------------------------------------------------------------------------------