The following Fedora 24 Security updates need testing:
Age URL
4
https://bodhi.fedoraproject.org/updates/FEDORA-2016-4701636a74
breeze-icon-theme-5.24.0-1.fc24 extra-cmake-modules-5.24.0-1.fc24 kf5-5.24.0-1.fc24
kf5-attica-5.24.0-1.fc24 kf5-baloo-5.24.0-1.fc24 kf5-bluez-qt-5.24.0-1.fc24
kf5-frameworkintegration-5.24.0-1.fc24 kf5-kactivities-5.24.0-1.fc24
kf5-kactivities-stats-5.24.0-1.fc24 kf5-kapidox-5.24.0-1.fc24 kf5-karchive-5.24.0-1.fc24
kf5-kauth-5.24.0-1.fc24 kf5-kbookmarks-5.24.0-1.fc24 kf5-kcmutils-5.24.0-1.fc24
kf5-kcodecs-5.24.0-1.fc24 kf5-kcompletion-5.24.0-1.fc24 kf5-kconfig-5.24.0-1.fc24
kf5-kconfigwidgets-5.24.0-1.fc24 kf5-kcoreaddons-5.24.0-1.fc24 kf5-kcrash-5.24.0-1.fc24
kf5-kdbusaddons-5.24.0-1.fc24 kf5-kdeclarative-5.24.0-1.fc24 kf5-kded-5.24.0-1.fc24
kf5-kdelibs4support-5.24.0-1.fc24 kf5-kdesignerplugin-5.24.0-1.fc24
kf5-kdesu-5.24.0-1.fc24 kf5-kdewebkit-5.24.0-1.fc24 kf5-kdnssd-5.24.0-1.fc24
kf5-kdoctools-5.24.0-1.fc24 kf5-kemoticons-5.24.0-1.fc24 kf5-kfilemetadata-5.24.0-1.fc24
kf5-kglobalaccel-5.24.0-1.fc24 kf5-kguiad
dons-5.24.0-1.fc24 kf5-khtml-5.24.0-1.fc24 kf5-ki18n-5.24.0-1.fc24
kf5-kiconthemes-5.24.0-1.fc24 kf5-kidletime-5.24.0-1.fc24 kf5-kimageformats-5.24.0-1.fc24
kf5-kinit-5.24.0-1.fc24 kf5-kio-5.24.0-1.fc24 kf5-kitemmodels-5.24.0-1.fc24
kf5-kitemviews-5.24.0-1.fc24 kf5-kjobwidgets-5.24.0-1.fc24 kf5-kjs-5.24.0-1.fc24
kf5-kjsembed-5.24.0-1.fc24 kf5-kmediaplayer-5.24.0-1.fc24 kf5-knewstuff-5.24.0-1.fc24
kf5-knotifications-5.24.0-1.fc24 kf5-knotifyconfig-5.24.0-1.fc24
kf5-kpackage-5.24.0-1.fc24 kf5-kparts-5.24.0-1.fc24 kf5-kpeople-5.24.0-1.fc24
kf5-kplotting-5.24.0-1.fc24 kf5-kpty-5.24.0-1.fc24 kf5-kross-5.24.0-1.fc24
kf5-krunner-5.24.0-1.fc24 kf5-kservice-5.24.0-1.fc24 kf5-ktexteditor-5.24.0-1.fc24
kf5-ktextwidgets-5.24.0-1.fc24 kf5-kunitconversion-5.24.0-1.fc24 kf5-kwallet-5.24.0-1.fc24
kf5-kwayland-5.24.0-1.fc24 kf5-kwidgetsaddons-5.24.0-1.fc24
kf5-kwindowsystem-5.24.0-1.fc24 kf5-kxmlgui-5.24.0-1.fc24 kf5-kxmlrpcclient-5.24.0-1.fc24
kf5-modemmanager-qt-5.24.0-1.fc24 kf5-networkmanager-qt
-5.24.0-1.fc24 kf5-plasma-5.24.0-1.fc24 kf5-solid-5.24.0-1.fc24 kf5-sonnet-5.24.0-1.fc24
kf5-threadweaver-5.24.0-1.fc24 oxygen-icon-theme-5.24.0-1.fc24
1
https://bodhi.fedoraproject.org/updates/FEDORA-2016-4373f7d32a pulp-2.8.6-1.fc24
pulp-docker-2.0.2-1.fc24 pulp-ostree-1.1.2-1.fc24 pulp-puppet-2.8.6-1.fc24
pulp-python-1.1.2-1.fc24 pulp-rpm-2.8.6-1.fc24
1
https://bodhi.fedoraproject.org/updates/FEDORA-2016-4e7db3d437
php-guzzlehttp-guzzle6-6.2.1-1.fc24
1
https://bodhi.fedoraproject.org/updates/FEDORA-2016-341c83dbd3
gsi-openssh-7.2p2-6.fc24
1
https://bodhi.fedoraproject.org/updates/FEDORA-2016-aef8a45afe
php-guzzlehttp-guzzle-5.3.1-1.fc24
1
https://bodhi.fedoraproject.org/updates/FEDORA-2016-2a33a2c9df glpi-0.90.4-1.fc24
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-c580100c89
libarchive-3.2.1-3.fc24
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-ea5e284d34
golang-1.6.3-1.fc24
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-fff25f75b4
drupal7-views-3.14-1.fc24
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-8eb11666aa php-5.6.24-2.fc24
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-3af39b1fcb
php-pecl-zip-1.13.4-1.fc24
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-bdb86fbc7d
pbuilder-0.225.2-1.fc24
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-b7e31a0b9a
python-django-1.9.8-1.fc24
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-83cd045bcc
libgcrypt-1.6.5-1.fc24
The following Fedora 24 Critical Path updates have yet to be approved:
Age URL
8
https://bodhi.fedoraproject.org/updates/FEDORA-2016-8aabc73dbf
xorg-x11-drv-intel-2.99.917-24.20160712.fc24
1
https://bodhi.fedoraproject.org/updates/FEDORA-2016-03e5b363ac
ncurses-6.0-6.20160709.fc24
1
https://bodhi.fedoraproject.org/updates/FEDORA-2016-17d7436e77
koji-1.10.1-10.fc24
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-b3d13b330a
gnupg2-2.1.13-1.fc24
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-83cd045bcc
libgcrypt-1.6.5-1.fc24
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-73121ec768
libassuan-2.4.3-1.fc24
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-a07fb35131
libgpg-error-1.24-1.fc24
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-5ac25856f0
nss-pem-1.0.2-2.fc24 nss-3.25.0-1.2.fc24
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-47bda25e7a systemd-229-9.fc24
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-64b6be0e07
libdrm-2.4.69-1.fc24
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-198d93bc53 gpgme-1.6.0-1.fc24
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-c580100c89
libarchive-3.2.1-3.fc24
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-a695c3362b gmp-6.1.1-1.fc24
The following builds have been pushed to Fedora 24 updates-testing
bcg729-1.0.0-2.fc24
ccache-3.2.7-1.fc24
classified-ads-0.11-1.fc24
deluge-1.3.13-1.fc24
docker-1.10.3-26.git1ecb834.fc24
fleet-commander-client-0.7.1-1.fc24
gnome-shell-extension-panel-osd-1-0.14.20160721git6ad19f0.fc24
gnupg2-2.1.13-1.fc24
gpgme-1.6.0-1.fc24
hidrd-0.2.0-3.20160712git1abf7033.fc24
hplip-3.16.7-1.fc24
hunspell-pl-0.20160720-1.fc24
jclouds-1.9.2-1.fc24
jipijapa-1.0.1-1.fc24
joe-4.2-2.fc24
libassuan-2.4.3-1.fc24
libcdr-0.1.3-1.fc24
libdrm-2.4.69-1.fc24
libgcrypt-1.6.5-1.fc24
libgpg-error-1.24-1.fc24
lighttpd-1.4.40-2.fc24
microcode_ctl-2.1-13.fc24
nfs-ganesha-2.4.0-0.12dev25.fc24
nodejs-4.4.7-2.fc24
nss-3.25.0-1.2.fc24
nss-pem-1.0.2-2.fc24
opendkim-2.10.3-5.fc24
opendmarc-1.3.2-0.2.beta0.fc24
orca-3.20.3-1.fc24
pbuilder-0.225.2-1.fc24
perl-CDB_File-0.99-1.fc24
perl-CPAN-Perl-Releases-2.84-1.fc24
perl-Module-CoreList-5.20160720-1.fc24
perl-Pod-Constants-0.19-2.fc24
permlib-0.2.9-1.fc24
php-5.6.24-2.fc24
php-consolidation-annotated-command-1.0.1-1.fc24
php-consolidation-output-formatters-1.0.0-1.fc24
php-dnoegel-php-xdg-base-dir-0.1-1.fc24
php-jakub-onderka-php-console-color-0.1-1.fc24
php-jakub-onderka-php-console-highlighter-0.3.2-1.fc24
php-pecl-zip-1.13.4-1.fc24
psysh-0.7.2-2.fc24
python-django-1.9.8-1.fc24
python-docs-2.7.12-1.fc24
python-pytest-spec-1.0.1-1.fc24
python-simpleeval-0.8.7-2.fc24
python-stdnum-1.3-2.fc24
pytz-2016.6.1-1.fc24
sanlock-3.4.0-1.fc24
skrooge-2.4.0-1.fc24
sympol-0.1.9-2.fc24
systemd-229-9.fc24
vagrant-hostmanager-1.8.5-1.fc24
valgrind-3.11.0-24.fc24
vdr-epg-daemon-1.1.8-1.fc24
Details about builds:
================================================================================
bcg729-1.0.0-2.fc24 (FEDORA-2016-8e02805a7a)
Opensource implementation of the G.729 codec
--------------------------------------------------------------------------------
Update Information:
Initial package.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1358293 - Review Request: bcg729 - Opensource implementation of the G.729
codec
https://bugzilla.redhat.com/show_bug.cgi?id=1358293
--------------------------------------------------------------------------------
================================================================================
ccache-3.2.7-1.fc24 (FEDORA-2016-813d040de1)
C/C++ compiler cache
--------------------------------------------------------------------------------
Update Information:
Update to 3.2.7, fixes #1307367
https://ccache.samba.org/releasenotes.html#_ccache_3_2_7
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1307367 - ccache: FTBFS in rawhide
https://bugzilla.redhat.com/show_bug.cgi?id=1307367
[ 2 ] Bug #1327915 - ccache-3.2.6 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1327915
--------------------------------------------------------------------------------
================================================================================
classified-ads-0.11-1.fc24 (FEDORA-2016-802dcfc781)
Classified ads is a program for posting ads online
--------------------------------------------------------------------------------
Update Information:
Upstream version bump to 0.11: bugfixes and OpenSSL 1.1 support. This package is
new to f24, thus type=newpackage.
--------------------------------------------------------------------------------
================================================================================
deluge-1.3.13-1.fc24 (FEDORA-2016-7c7da3c3c4)
A GTK+ BitTorrent client with support for DHT, UPnP, and PEX
--------------------------------------------------------------------------------
Update Information:
http://dev.deluge-torrent.org/wiki/ReleaseNotes/1.3.13
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1358545 - deluge-1.3.13 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1358545
--------------------------------------------------------------------------------
================================================================================
docker-1.10.3-26.git1ecb834.fc24 (FEDORA-2016-9eaa7d91d1)
Automates deployment of containerized applications
--------------------------------------------------------------------------------
Update Information:
built docker @projectatomic/fedora-1.10.3 commit 1ecb834 ---- built docker
@projectatomic/fedora-1.10.3 commit cba0656
--------------------------------------------------------------------------------
================================================================================
fleet-commander-client-0.7.1-1.fc24 (FEDORA-2016-5363ab22de)
Fleet Commander Client
--------------------------------------------------------------------------------
Update Information:
This release fixes a regression with systemd autostarting the service once
--------------------------------------------------------------------------------
================================================================================
gnome-shell-extension-panel-osd-1-0.14.20160721git6ad19f0.fc24 (FEDORA-2016-4302c46df5)
Configure the place where notifications are shown
--------------------------------------------------------------------------------
Update Information:
Fixes layout on multimonitor-systems or when using bottom-panel extensions.
--------------------------------------------------------------------------------
================================================================================
gnupg2-2.1.13-1.fc24 (FEDORA-2016-b3d13b330a)
Utility for secure communication and data storage
--------------------------------------------------------------------------------
Update Information:
New upstream release with minor bug fixes and enhancements.
--------------------------------------------------------------------------------
================================================================================
gpgme-1.6.0-1.fc24 (FEDORA-2016-198d93bc53)
GnuPG Made Easy - high level crypto API
--------------------------------------------------------------------------------
Update Information:
Update to 1.6.0
--------------------------------------------------------------------------------
================================================================================
hidrd-0.2.0-3.20160712git1abf7033.fc24 (FEDORA-2016-72c0a31b17)
HID report descriptor I/O library and conversion tool
--------------------------------------------------------------------------------
Update Information:
This is new package - USB HID report descriptor I/O library and conversion tool
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1355830 - Review Request: hidrd - HID report descriptor I/O library and
conversion tool
https://bugzilla.redhat.com/show_bug.cgi?id=1355830
--------------------------------------------------------------------------------
================================================================================
hplip-3.16.7-1.fc24 (FEDORA-2016-312e5c073d)
HP Linux Imaging and Printing Project
--------------------------------------------------------------------------------
Update Information:
Rebase to 3.16.7
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1358761 - hplip-3.16.7 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1358761
--------------------------------------------------------------------------------
================================================================================
hunspell-pl-0.20160720-1.fc24 (FEDORA-2016-b4ef1b0612)
Polish hunspell dictionaries
--------------------------------------------------------------------------------
Update Information:
* update spellchecker to something contemporary
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1358280 - Please update to newer upstream
https://bugzilla.redhat.com/show_bug.cgi?id=1358280
--------------------------------------------------------------------------------
================================================================================
jclouds-1.9.2-1.fc24 (FEDORA-2016-ecbc4ace39)
Concurrent API for Cloud Services
--------------------------------------------------------------------------------
Update Information:
Initial import (#969820).
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #969820 - Review Request: jclouds - Concurrent API for Cloud Services
https://bugzilla.redhat.com/show_bug.cgi?id=969820
--------------------------------------------------------------------------------
================================================================================
jipijapa-1.0.1-1.fc24 (FEDORA-2016-2237188bd2)
Improve application platform integration with JPA persistence providers
--------------------------------------------------------------------------------
Update Information:
update to 1.0.1.Final
--------------------------------------------------------------------------------
================================================================================
joe-4.2-2.fc24 (FEDORA-2016-47f0c4c8e5)
An easy to use, modeless text editor
--------------------------------------------------------------------------------
Update Information:
Enable RPM spec file syntax highlighting. Update to 4.2.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1358499 - Syntax highlight files not enabled.
https://bugzilla.redhat.com/show_bug.cgi?id=1358499
--------------------------------------------------------------------------------
================================================================================
libassuan-2.4.3-1.fc24 (FEDORA-2016-73121ec768)
GnuPG IPC library
--------------------------------------------------------------------------------
Update Information:
New upstream release with minor improvements.
--------------------------------------------------------------------------------
================================================================================
libcdr-0.1.3-1.fc24 (FEDORA-2016-ff144b0196)
A library for import of CorelDRAW drawings
--------------------------------------------------------------------------------
Update Information:
new upstream release
--------------------------------------------------------------------------------
================================================================================
libdrm-2.4.69-1.fc24 (FEDORA-2016-64b6be0e07)
Direct Rendering Manager runtime library
--------------------------------------------------------------------------------
Update Information:
Update to 2.4.69
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1358549 - libdrm-2.4.69 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1358549
--------------------------------------------------------------------------------
================================================================================
libgcrypt-1.6.5-1.fc24 (FEDORA-2016-83cd045bcc)
A general-purpose cryptography library
--------------------------------------------------------------------------------
Update Information:
New upstream release fixing CVE-2015-7511 low impact security issue.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1306184 - CVE-2015-7511 libgcrypt: side-channel attack on ECDH with
Weierstrass curves
https://bugzilla.redhat.com/show_bug.cgi?id=1306184
--------------------------------------------------------------------------------
================================================================================
libgpg-error-1.24-1.fc24 (FEDORA-2016-a07fb35131)
Library for error values used by GnuPG components
--------------------------------------------------------------------------------
Update Information:
New upstream release with minor improvements.
--------------------------------------------------------------------------------
================================================================================
lighttpd-1.4.40-2.fc24 (FEDORA-2016-5141f21891)
Lightning fast webserver with light system requirements
--------------------------------------------------------------------------------
Update Information:
Patch for ipv6 blocking bug. ---- 1.4.40
https://www.lighttpd.net/2016/7/16/1.4.40/
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1357238 - lighttpd-1.4.40 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1357238
--------------------------------------------------------------------------------
================================================================================
microcode_ctl-2.1-13.fc24 (FEDORA-2016-17e40fd8da)
Tool to transform and deploy CPU microcode update for x86
--------------------------------------------------------------------------------
Update Information:
You want to check it on Intel skylake cpus, previous version led to the stuck
boot process.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1353103 - Kernel 4.5.7-202 doesn't boot on Samsung Notebook 9
https://bugzilla.redhat.com/show_bug.cgi?id=1353103
--------------------------------------------------------------------------------
================================================================================
nfs-ganesha-2.4.0-0.12dev25.fc24 (FEDORA-2016-2197b958e3)
NFS-Ganesha is a NFS Server running in user space
--------------------------------------------------------------------------------
Update Information:
2.4-dev-25 (revised 32-bit)
--------------------------------------------------------------------------------
================================================================================
nodejs-4.4.7-2.fc24 (FEDORA-2016-7011006b71)
JavaScript runtime
--------------------------------------------------------------------------------
Update Information:
https://github.com/nodejs/node/blob/v4.4.7/CHANGELOG.md debugger: * All
properties of an array (aside from length) can now be printed in the repl npm:
* Upgrade npm to 2.15.8 stream: * Fix for a bug that became more prevalent
with the stream changes that landed in v4.4.5. V8: * Fix for a bug in
crankshaft that was causing crashes on arm64 * Add missing classes to postmortem
info such as JSMap and JSSet
--------------------------------------------------------------------------------
================================================================================
nss-3.25.0-1.2.fc24 (FEDORA-2016-5ac25856f0)
Network Security Services
--------------------------------------------------------------------------------
Update Information:
This updates moves library libnsspem.so, which was previously shipped as part of
the nss package, to a new package nss-pem.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1346806 - Review Request: nss-pem - PEM file reader for Network Security
Services (NSS)
https://bugzilla.redhat.com/show_bug.cgi?id=1346806
[ 2 ] Bug #1347336 - decouple nss-pem from the nss package
https://bugzilla.redhat.com/show_bug.cgi?id=1347336
--------------------------------------------------------------------------------
================================================================================
nss-pem-1.0.2-2.fc24 (FEDORA-2016-5ac25856f0)
PEM file reader for Network Security Services (NSS)
--------------------------------------------------------------------------------
Update Information:
This updates moves library libnsspem.so, which was previously shipped as part of
the nss package, to a new package nss-pem.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1346806 - Review Request: nss-pem - PEM file reader for Network Security
Services (NSS)
https://bugzilla.redhat.com/show_bug.cgi?id=1346806
[ 2 ] Bug #1347336 - decouple nss-pem from the nss package
https://bugzilla.redhat.com/show_bug.cgi?id=1347336
--------------------------------------------------------------------------------
================================================================================
opendkim-2.10.3-5.fc24 (FEDORA-2016-3984ca9533)
A DomainKeys Identified Mail (DKIM) milter to sign and/or verify mail
--------------------------------------------------------------------------------
Update Information:
Fixed OpenLDAP support for all versions except EL5 (required version not
available).
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1293279 - opendkim miss LDAP support
https://bugzilla.redhat.com/show_bug.cgi?id=1293279
--------------------------------------------------------------------------------
================================================================================
opendmarc-1.3.2-0.2.beta0.fc24 (FEDORA-2016-efcca8fd58)
A Domain-based Message Authentication, Reporting & Conformance (DMARC) milter and
library
--------------------------------------------------------------------------------
Update Information:
Updating to 1.3.2.Beta0 release, in anticipation of full release. This version
incorporates a number of patches since the 1.3.1 release. See:
https://sourceforge.net/p/opendmarc/activity/
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1287176 - OpenDMARC does not accept valid mail size limiting syntax in DMARC
record
https://bugzilla.redhat.com/show_bug.cgi?id=1287176
[ 2 ] Bug #1331971 - wrong result with self SPF check
https://bugzilla.redhat.com/show_bug.cgi?id=1331971
[ 3 ] Bug #1332521 - opendmarc always adds spf=pass
https://bugzilla.redhat.com/show_bug.cgi?id=1332521
--------------------------------------------------------------------------------
================================================================================
orca-3.20.3-1.fc24 (FEDORA-2016-a87a39021b)
Assistive technology for people with visual impairments
--------------------------------------------------------------------------------
Update Information:
Update to 3.20.3
--------------------------------------------------------------------------------
================================================================================
pbuilder-0.225.2-1.fc24 (FEDORA-2016-bdb86fbc7d)
Personal package builder for Debian packages
--------------------------------------------------------------------------------
Update Information:
Update to version 0.225.2, see
http://metadata.ftp-
master.debian.org/changelogs//main/p/pbuilder/pbuilder_0.225.2_changelog for
details. ---- This update fixes a potential security issue where copy-on-write
does not work when used with eatmydata, resulting in persistent filesystem
changes.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1358337 - pbuilder: Copy-on-write does not work when used with eatmydata
https://bugzilla.redhat.com/show_bug.cgi?id=1358337
--------------------------------------------------------------------------------
================================================================================
perl-CDB_File-0.99-1.fc24 (FEDORA-2016-89d021898f)
Perl extension for access to cdb databases
--------------------------------------------------------------------------------
Update Information:
upgrade to 0.99
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1358052 - perl-CDB_File-0.99 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1358052
--------------------------------------------------------------------------------
================================================================================
perl-CPAN-Perl-Releases-2.84-1.fc24 (FEDORA-2016-059ea7d277)
Mapping Perl releases on CPAN to the location of the tarballs
--------------------------------------------------------------------------------
Update Information:
Updated to the latest version ---- Update to the latest version
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1358548 - perl-CPAN-Perl-Releases-2.84 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1358548
[ 2 ] Bug #1357305 - perl-CPAN-Perl-Releases-2.82 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1357305
--------------------------------------------------------------------------------
================================================================================
perl-Module-CoreList-5.20160720-1.fc24 (FEDORA-2016-086fa6fe8d)
What modules are shipped with versions of perl
--------------------------------------------------------------------------------
Update Information:
This release provides data for perl 5.25.3.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1358553 - perl-Module-CoreList-5.20160720 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1358553
--------------------------------------------------------------------------------
================================================================================
perl-Pod-Constants-0.19-2.fc24 (FEDORA-2016-f80f4a57cf)
Include constants from POD
--------------------------------------------------------------------------------
Update Information:
This update contains packaging changes: - BuildRequires: perl-generators - Use
CPAN URL
--------------------------------------------------------------------------------
================================================================================
permlib-0.2.9-1.fc24 (FEDORA-2016-39d5339a57)
Library for permutation computations
--------------------------------------------------------------------------------
Update Information:
Changes in permlib 0.2.9: - Fix bug in partition backtracking code that led to
wrong results in SetImage-search for sets of size one Sympol was rebuilt for
the new permlib version, but is otherwise unchanged.
--------------------------------------------------------------------------------
================================================================================
php-5.6.24-2.fc24 (FEDORA-2016-8eb11666aa)
PHP scripting language for creating dynamic web sites
--------------------------------------------------------------------------------
Update Information:
21 Jul 2016, **PHP 5.6.24** **Core:** * Fixed bug php#71936 (Segmentation
fault destroying HTTP_RAW_POST_DATA). (mike dot laspina at gmail dot com, Remi)
* Fixed bug php#72496 (Cannot declare public method with signature incompatible
with parent private method). (Pedro Magalh��es) * Fixed bug php#72138 (Integer
Overflow in Length of String-typed ZVAL). (Stas) * Fixed bug php#72513 (Stack-
based buffer overflow vulnerability in virtual_file_ex). (loianhtuan at gmail
dot com) * Fixed bug php#72562 (Use After Free in unserialize() with Unexpected
Session Deserialization). (taoguangchen at icloud dot com) * Fixed bug php#72573
(HTTP_PROXY is improperly trusted by some PHP libraries and applications).
(CVE-2016-5385) (Stas) **bz2:** * Fixed bug php#72447 (Type Confusion in
php_bz2_filter_create()). (gogil at stealien dot com). * Fixed bug php#72613
(Inadequate error handling in bzread()). (Stas) **EXIF:** * Fixed bug
php#50845 (exif_read_data() returns corrupted exif headers). (Bartosz
Dziewo��ski) * Fixed bug php#72603 (Out of bound read in
exif_process_IFD_in_MAKERNOTE). (Stas) * Fixed bug #72618 (NULL Pointer
Dereference in exif_process_user_comment). (Stas) **Intl:** * Fixed bug
php#72533 (locale_accept_from_http out-of-bounds access). (Stas) **ODBC:** *
Fixed bug php#69975 (PHP segfaults when accessing nvarchar(max) defined columns)
**OpenSSL:** * Fixed bug php#71915 (openssl_random_pseudo_bytes is not fork-
safe). (Jakub Zelenka) * Fixed bug php#72336 (openssl_pkey_new does not fail for
invalid DSA params). (Jakub Zelenka) **SNMP:** * Fixed bug php#72479 (Use
After Free Vulnerability in SNMP with GC and unserialize()). (taoguangchen at
icloud dot com) **SPL:** * Fixed bug php#55701 (GlobIterator throws
LogicException). (Valentin V��LCIU) **SQLite3:** * Fixed bug php#70628
(Clearing bindings on an SQLite3 statement doesn't work). (cmb) **Streams:** *
Fixed bug php#72439 (Stream socket with remote address leads to a segmentation
fault). (Laruence) **Xmlrpc:** * Fixed bug php#72606 (heap-buffer-overflow
(write) simplestring_addn simplestring.c). (Stas)
--------------------------------------------------------------------------------
================================================================================
php-consolidation-annotated-command-1.0.1-1.fc24 (FEDORA-2016-9f13c81220)
Initialize Symfony Console commands from annotated command class methods
--------------------------------------------------------------------------------
Update Information:
Initialize Symfony Console commands from annotated command class methods
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1357978 - Review Request: php-consolidation-annotated-command - Initialize
Symfony Console commands from annotated command class methods
https://bugzilla.redhat.com/show_bug.cgi?id=1357978
--------------------------------------------------------------------------------
================================================================================
php-consolidation-output-formatters-1.0.0-1.fc24 (FEDORA-2016-d53b35d568)
Format text by applying transformations provided by plug-in formatters
--------------------------------------------------------------------------------
Update Information:
Format text by applying transformations provided by plug-in formatters
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1357977 - Review Request: php-consolidation-output-formatters - Format text
by applying transformations provided by plug-in formatters
https://bugzilla.redhat.com/show_bug.cgi?id=1357977
--------------------------------------------------------------------------------
================================================================================
php-dnoegel-php-xdg-base-dir-0.1-1.fc24 (FEDORA-2016-92ad6b2778)
Implementation of the XDG Base Directory Specification for PHP
--------------------------------------------------------------------------------
Update Information:
### php-dnoegel-php-xdg-base-dir Implementation of the XDG Base Directory
Specification for PHP ### php-jakub-onderka-php-console-color Simple library
for creating colored console output ### php-jakub-onderka-php-console-
highlighter Highlight PHP code in console (terminal) ### psysh A runtime
developer console, interactive debugger and REPL for PHP
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1357876 - Review Request: psysh - A runtime developer console, interactive
debugger and REPL for PHP
https://bugzilla.redhat.com/show_bug.cgi?id=1357876
[ 2 ] Bug #1357873 - Review Request: php-jakub-onderka-php-console-highlighter -
Highlight PHP code in console (terminal)
https://bugzilla.redhat.com/show_bug.cgi?id=1357873
[ 3 ] Bug #1357871 - Review Request: php-jakub-onderka-php-console-color - Simple
library for creating colored console output
https://bugzilla.redhat.com/show_bug.cgi?id=1357871
[ 4 ] Bug #1357875 - Review Request: php-dnoegel-php-xdg-base-dir - Implementation of
the XDG Base Directory Specification for PHP
https://bugzilla.redhat.com/show_bug.cgi?id=1357875
--------------------------------------------------------------------------------
================================================================================
php-jakub-onderka-php-console-color-0.1-1.fc24 (FEDORA-2016-92ad6b2778)
Simple library for creating colored console ouput
--------------------------------------------------------------------------------
Update Information:
### php-dnoegel-php-xdg-base-dir Implementation of the XDG Base Directory
Specification for PHP ### php-jakub-onderka-php-console-color Simple library
for creating colored console output ### php-jakub-onderka-php-console-
highlighter Highlight PHP code in console (terminal) ### psysh A runtime
developer console, interactive debugger and REPL for PHP
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1357876 - Review Request: psysh - A runtime developer console, interactive
debugger and REPL for PHP
https://bugzilla.redhat.com/show_bug.cgi?id=1357876
[ 2 ] Bug #1357873 - Review Request: php-jakub-onderka-php-console-highlighter -
Highlight PHP code in console (terminal)
https://bugzilla.redhat.com/show_bug.cgi?id=1357873
[ 3 ] Bug #1357871 - Review Request: php-jakub-onderka-php-console-color - Simple
library for creating colored console output
https://bugzilla.redhat.com/show_bug.cgi?id=1357871
[ 4 ] Bug #1357875 - Review Request: php-dnoegel-php-xdg-base-dir - Implementation of
the XDG Base Directory Specification for PHP
https://bugzilla.redhat.com/show_bug.cgi?id=1357875
--------------------------------------------------------------------------------
================================================================================
php-jakub-onderka-php-console-highlighter-0.3.2-1.fc24 (FEDORA-2016-92ad6b2778)
Highlight PHP code in console (terminal)
--------------------------------------------------------------------------------
Update Information:
### php-dnoegel-php-xdg-base-dir Implementation of the XDG Base Directory
Specification for PHP ### php-jakub-onderka-php-console-color Simple library
for creating colored console output ### php-jakub-onderka-php-console-
highlighter Highlight PHP code in console (terminal) ### psysh A runtime
developer console, interactive debugger and REPL for PHP
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1357876 - Review Request: psysh - A runtime developer console, interactive
debugger and REPL for PHP
https://bugzilla.redhat.com/show_bug.cgi?id=1357876
[ 2 ] Bug #1357873 - Review Request: php-jakub-onderka-php-console-highlighter -
Highlight PHP code in console (terminal)
https://bugzilla.redhat.com/show_bug.cgi?id=1357873
[ 3 ] Bug #1357871 - Review Request: php-jakub-onderka-php-console-color - Simple
library for creating colored console output
https://bugzilla.redhat.com/show_bug.cgi?id=1357871
[ 4 ] Bug #1357875 - Review Request: php-dnoegel-php-xdg-base-dir - Implementation of
the XDG Base Directory Specification for PHP
https://bugzilla.redhat.com/show_bug.cgi?id=1357875
--------------------------------------------------------------------------------
================================================================================
php-pecl-zip-1.13.4-1.fc24 (FEDORA-2016-3af39b1fcb)
A ZIP archive management extension
--------------------------------------------------------------------------------
Update Information:
**Version 1.13.4** - Fixed bug php#72520 (Stack-based buffer overflow
vulnerability in php_stream_zip_opener). (Stas)
--------------------------------------------------------------------------------
================================================================================
psysh-0.7.2-2.fc24 (FEDORA-2016-92ad6b2778)
A runtime developer console, interactive debugger and REPL for PHP
--------------------------------------------------------------------------------
Update Information:
### php-dnoegel-php-xdg-base-dir Implementation of the XDG Base Directory
Specification for PHP ### php-jakub-onderka-php-console-color Simple library
for creating colored console output ### php-jakub-onderka-php-console-
highlighter Highlight PHP code in console (terminal) ### psysh A runtime
developer console, interactive debugger and REPL for PHP
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1357876 - Review Request: psysh - A runtime developer console, interactive
debugger and REPL for PHP
https://bugzilla.redhat.com/show_bug.cgi?id=1357876
[ 2 ] Bug #1357873 - Review Request: php-jakub-onderka-php-console-highlighter -
Highlight PHP code in console (terminal)
https://bugzilla.redhat.com/show_bug.cgi?id=1357873
[ 3 ] Bug #1357871 - Review Request: php-jakub-onderka-php-console-color - Simple
library for creating colored console output
https://bugzilla.redhat.com/show_bug.cgi?id=1357871
[ 4 ] Bug #1357875 - Review Request: php-dnoegel-php-xdg-base-dir - Implementation of
the XDG Base Directory Specification for PHP
https://bugzilla.redhat.com/show_bug.cgi?id=1357875
--------------------------------------------------------------------------------
================================================================================
python-django-1.9.8-1.fc24 (FEDORA-2016-b7e31a0b9a)
A high-level Python Web framework
--------------------------------------------------------------------------------
Update Information:
fix CVE-2016-6186 (rhbz#1357701)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1357701 - CVE-2016-6186 python-django: django: XSS in admin's add/change
related popup [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1357701
--------------------------------------------------------------------------------
================================================================================
python-docs-2.7.12-1.fc24 (FEDORA-2016-cf10f29237)
Documentation for the Python programming language
--------------------------------------------------------------------------------
Update Information:
2.7.12.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1358471 - Please upgrade to 2.7.12
https://bugzilla.redhat.com/show_bug.cgi?id=1358471
--------------------------------------------------------------------------------
================================================================================
python-pytest-spec-1.0.1-1.fc24 (FEDORA-2016-b5c0206817)
Pytest plugin to display test execution output like a SPECIFICATION
--------------------------------------------------------------------------------
Update Information:
Initial package.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1358242 - Review Request: python-pytest-spec - Pytest plugin to display test
execution output like a SPECIFICATION
https://bugzilla.redhat.com/show_bug.cgi?id=1358242
--------------------------------------------------------------------------------
================================================================================
python-simpleeval-0.8.7-2.fc24 (FEDORA-2016-354f13806a)
An expression evaluator library for Python
--------------------------------------------------------------------------------
Update Information:
new deps for Tryton
--------------------------------------------------------------------------------
================================================================================
python-stdnum-1.3-2.fc24 (FEDORA-2016-354f13806a)
Python module to handle standardized numbers and codes
--------------------------------------------------------------------------------
Update Information:
new deps for Tryton
--------------------------------------------------------------------------------
================================================================================
pytz-2016.6.1-1.fc24 (FEDORA-2016-c3adebc746)
World Timezone Definitions for Python
--------------------------------------------------------------------------------
Update Information:
Update to the latest upstream.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1356337 - pytz-2016.6.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1356337
--------------------------------------------------------------------------------
================================================================================
sanlock-3.4.0-1.fc24 (FEDORA-2016-f53a1433fd)
A shared storage lock manager
--------------------------------------------------------------------------------
Update Information:
sanlock: renewal history, libsanlock: ignore EINTR
--------------------------------------------------------------------------------
================================================================================
skrooge-2.4.0-1.fc24 (FEDORA-2016-42224091e0)
Personal finances manager
--------------------------------------------------------------------------------
Update Information:
Update to latest stable release.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1310483 - skrooge-2.4.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1310483
--------------------------------------------------------------------------------
================================================================================
sympol-0.1.9-2.fc24 (FEDORA-2016-39d5339a57)
Symmetric polyhedra tool
--------------------------------------------------------------------------------
Update Information:
Changes in permlib 0.2.9: - Fix bug in partition backtracking code that led to
wrong results in SetImage-search for sets of size one Sympol was rebuilt for
the new permlib version, but is otherwise unchanged.
--------------------------------------------------------------------------------
================================================================================
systemd-229-9.fc24 (FEDORA-2016-47bda25e7a)
A System and Service Manager
--------------------------------------------------------------------------------
Update Information:
Backport several patches from upstream: - core: make sure to close connection
fd when we fail to activate a per-connection service ( rhbz#1310608) - device:
Ensure we have sysfs path before comparing. ( rhbz#1321392) - networkctl: split
out system status stuff into its own function ( rhbz#1325462) - systemd --user:
call pam_loginuid when creating user@.service ( rhbz#1328947) - systemctl:
suppress no-[Install] hint when --quiet is used ( rhbz#1336960) - systemctl:
make sure we terminate the bus connection first, and then close the pager (
rhbz#1341179) - core: move start ratelimiting check after condition checks (
rhbz#1350686) - strbuf: set the proper character when creating new nodes (
rhbz#1357822) - fix: networkctl status: abort, munmap_chunk(): invalid pointer (
rhbz#1339131) - networkd: bump MTU to 1280 for interfaces which have IPv6
enabled ( rhbz#1352378) - networkd: disable IPv6 for bridge slave (
rhbz#1352378)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1352378 - systemd-networkd bridged intefaces still get RA ipv6 addresses:
backport upstream fix
https://bugzilla.redhat.com/show_bug.cgi?id=1352378
[ 2 ] Bug #1339131 - networkctl status: abort, munmap_chunk(): invalid pointer
https://bugzilla.redhat.com/show_bug.cgi?id=1339131
[ 3 ] Bug #1357822 - systemd-udev needs a patch backported due to string error, causes
shenanigans with rules
https://bugzilla.redhat.com/show_bug.cgi?id=1357822
[ 4 ] Bug #1350686 - Systemd issues after upgrade to Fedora 24
https://bugzilla.redhat.com/show_bug.cgi?id=1350686
[ 5 ] Bug #1341179 - systemctl --host / -H returns output for some commands after long
time
https://bugzilla.redhat.com/show_bug.cgi?id=1341179
[ 6 ] Bug #1336960 - systemctl preset fails due to missing [Install] section in unit
file
https://bugzilla.redhat.com/show_bug.cgi?id=1336960
[ 7 ] Bug #1328947 - [gnome-terminal] /proc/self/loginuid contains 0xffffffffh
https://bugzilla.redhat.com/show_bug.cgi?id=1328947
[ 8 ] Bug #1325462 - [abrt] systemd: strv_clear(): networkctl killed by SIGABRT
https://bugzilla.redhat.com/show_bug.cgi?id=1325462
[ 9 ] Bug #1321392 - [abrt] systemd: log_assert_failed(): systemd killed by SIGABRT
https://bugzilla.redhat.com/show_bug.cgi?id=1321392
[ 10 ] Bug #1310608 - Very slow shutdown, it takes 1 minute 30 seconds
https://bugzilla.redhat.com/show_bug.cgi?id=1310608
--------------------------------------------------------------------------------
================================================================================
vagrant-hostmanager-1.8.5-1.fc24 (FEDORA-2016-fd84596dde)
Vagrant plugin to manage /etc/hosts
--------------------------------------------------------------------------------
Update Information:
Update to 1.8.5 (#1358110). ---- Update to 1.8.3 (#1356344).
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1358110 - vagrant-hostmanager-1.8.5 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1358110
[ 2 ] Bug #1356344 - vagrant-hostmanager-1.8.3 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1356344
--------------------------------------------------------------------------------
================================================================================
valgrind-3.11.0-24.fc24 (FEDORA-2016-ba9d55d86e)
Tool for finding memory management bugs in programs
--------------------------------------------------------------------------------
Update Information:
Various bugfixes. memcheck false positive with shr %edx. Enable PCMPxSTRx cases
0x70 and 0x19. Invalid write to stack location reported after signal handler
runs. Internal valgrind memory leak.
--------------------------------------------------------------------------------
================================================================================
vdr-epg-daemon-1.1.8-1.fc24 (FEDORA-2016-9587784955)
A daemon to download EPG data from internet and manage it in a mysql database
--------------------------------------------------------------------------------
Update Information:
Update to 1.1.8 ---- Update to 1.1.7 ---- Update to 1.1.6
--------------------------------------------------------------------------------