The following Fedora 25 Security updates need testing:
Age URL
141
https://bodhi.fedoraproject.org/updates/FEDORA-2016-9b3ed5f170
chicken-4.11.0-3.fc25
23
https://bodhi.fedoraproject.org/updates/FEDORA-2016-c614315d29
squid-4.0.17-1.fc25
17
https://bodhi.fedoraproject.org/updates/FEDORA-2016-d79ba708cb exim-4.87.1-1.fc25
13
https://bodhi.fedoraproject.org/updates/FEDORA-2016-87dc28b1a0
w3m-0.5.3-27.git20161120.fc25
6
https://bodhi.fedoraproject.org/updates/FEDORA-2017-6a2709f065
SimGear-2016.3.1-3.fc25
3
https://bodhi.fedoraproject.org/updates/FEDORA-2017-3d7734a8b2
icoutils-0.31.1-1.fc25
3
https://bodhi.fedoraproject.org/updates/FEDORA-2017-21edf966b0
mingw-libgsf-1.14.41-1.fc25
2
https://bodhi.fedoraproject.org/updates/FEDORA-2017-77ab791c90 ark-16.08.3-2.fc25
1
https://bodhi.fedoraproject.org/updates/FEDORA-2017-9784ee67f2
ca-certificates-2017.2.11-1.0.fc25
1
https://bodhi.fedoraproject.org/updates/FEDORA-2017-fcd02e2c2d
docker-latest-1.12.6-2.git51ef5a8.fc25
1
https://bodhi.fedoraproject.org/updates/FEDORA-2017-0200646669
runc-1.0.0-3.rc2.gitc91b5be.fc25
0
https://bodhi.fedoraproject.org/updates/FEDORA-2017-c756d37779
ikiwiki-3.20170111-1.fc25
0
https://bodhi.fedoraproject.org/updates/FEDORA-2017-e02ec160d8
wordpress-4.7.1-1.fc25
0
https://bodhi.fedoraproject.org/updates/FEDORA-2017-87992a0557
bind-9.10.4-3.P5.fc25
0
https://bodhi.fedoraproject.org/updates/FEDORA-2017-f44f2f5a48
bind99-9.9.9-4.P5.fc25
The following Fedora 25 Critical Path updates have yet to be approved:
Age URL
47
https://bodhi.fedoraproject.org/updates/FEDORA-2016-940ecb5c59
wpa_supplicant-2.6-1.fc25
34
https://bodhi.fedoraproject.org/updates/FEDORA-2016-9c25320b71
pungi-4.1.11-3.fc25
3
https://bodhi.fedoraproject.org/updates/FEDORA-2017-a42cba00c1
python-lxml-3.7.2-1.fc25
2
https://bodhi.fedoraproject.org/updates/FEDORA-2017-47f2b2e9ae
kernel-4.9.2-200.fc25
2
https://bodhi.fedoraproject.org/updates/FEDORA-2017-70547b9af8
python-productmd-1.4-1.fc25
1
https://bodhi.fedoraproject.org/updates/FEDORA-2017-ef5050fde2
xfsprogs-4.9.0-1.fc25
1
https://bodhi.fedoraproject.org/updates/FEDORA-2017-e1e6c0fe97
gnome-online-accounts-3.22.4-1.fc25
1
https://bodhi.fedoraproject.org/updates/FEDORA-2017-9784ee67f2
ca-certificates-2017.2.11-1.0.fc25
1
https://bodhi.fedoraproject.org/updates/FEDORA-2017-1e88986ac9 llvm-3.8.1-2.fc25
0
https://bodhi.fedoraproject.org/updates/FEDORA-2017-f44f2f5a48
bind99-9.9.9-4.P5.fc25
0
https://bodhi.fedoraproject.org/updates/FEDORA-2017-36eb70354b
libappstream-glib-0.6.7-1.fc25
0
https://bodhi.fedoraproject.org/updates/FEDORA-2017-6e2d5caccb pcre-8.40-1.fc25
0
https://bodhi.fedoraproject.org/updates/FEDORA-2017-32fddcfb44
systemd-231-11.fc25
0
https://bodhi.fedoraproject.org/updates/FEDORA-2017-5b5728af66
pcre2-10.22-10.fc25
0
https://bodhi.fedoraproject.org/updates/FEDORA-2017-e82f844a8d
evolution-3.22.3-2.fc25
The following builds have been pushed to Fedora 25 updates-testing
RBTools-0.7.8-1.fc25
appcenter-0.1.3-3.fc25
bind-9.10.4-3.P5.fc25
bind99-9.9.9-4.P5.fc25
ceph-10.2.4-2.fc25
cockpit-128-1.fc25
csvdiff-0.3.1-1.fc25
drupal7-honeypot-1.22-1.fc25
ecj-4.6.2-1.fc25
eclipse-4.6.2-3.fc25
eclipse-dltk-5.7.0-1.fc25
eclipse-ecf-3.13.3-1.fc25
eclipse-egit-4.6.0-1.fc25
eclipse-egit-github-4.6.0-1.fc25
eclipse-epp-logging-2.0.3-2.fc25
eclipse-jgit-4.6.0-2.fc25
eclipse-mpc-1.5.3-1.fc25
eclipse-pdt-4.2.0-1.fc25
electrum-2.7.17-1.fc25
erlang-19.2-1.fc25
evolution-3.22.3-2.fc25
fawkes-1.0.0-2.fc25
flr-0.0.1-1.fc25
golang-github-go-ini-ini-1.21.1-0.1.git6e4869b.fc25
golang-github-hashicorp-errwrap-0-0.5.git7554cd9.fc25
golang-github-hashicorp-go-multierror-0-0.9.gitd30f099.fc25
golang-github-jtolds-gls-0-0.7.git9a4a02d.fc25
golang-github-smartystreets-assertions-1.6.0-0.3.git287b434.fc25
golang-github-smartystreets-goconvey-1.6.1-0.3.gitbf58a9a.fc25
graphene-1.5.4-1.fc25
hitch-1.4.4-2.fc25
ikiwiki-3.20170111-1.fc25
jemalloc-4.4.0-2.fc25
libappstream-glib-0.6.7-1.fc25
libpeas-1.20.0-3.fc25
lmdb-0.9.20-1.fc25
lucene4-4.10.4-7.fc25
mysqltuner-1.6.18-1.git.401cb54.fc25
owncloud-client-2.2.4-5.fc25
pcre-8.40-1.fc25
pcre2-10.22-10.fc25
perl-Math-BigInt-1.9997.27-2.fc25
perl-RDF-NS-20170111-1.fc25
php-alcaeus-mongo-php-adapter-1.0.8-1.fc25
php-pdepend-PHP-Depend-2.4.1-1.fc25
php-twig-1.31.0-1.fc25
php-twig-extensions-1.4.1-2.fc25
php-twig2-2.1.0-1.fc25
php-zendframework-zend-expressive-platesrenderer-1.2.0-1.fc25
php-zendframework-zend-expressive-router-1.3.2-1.fc25
php-zendframework-zend-expressive-template-1.0.4-1.fc25
php-zendframework-zend-expressive-twigrenderer-1.2.1-1.fc25
php-zendframework-zend-expressive-zendviewrenderer-1.2.0-1.fc25
php-zendframework-zend-file-2.7.1-1.fc25
plasma-applet-weather-widget-1.6.8-1.fc25
prosody-0.9.12-1.fc25
python-cvss-1.7-1.fc25
python-neovim-0.1.13-1.fc25
python-num2words-0.5.4-1.fc25
python-windtalker-0.0.4-2.fc25
qcad-3.16.4.0-1.fc25
rocksndiamonds-4.0.0.1-1.fc25
slingshot-launcher-2.0.1-2.fc25
sway-0.11-5.fc25
systemd-231-11.fc25
wordpress-4.7.1-1.fc25
youtube-dl-2017.01.10-1.fc25
Details about builds:
================================================================================
RBTools-0.7.8-1.fc25 (FEDORA-2017-bba4d02de1)
Tools for use with ReviewBoard
--------------------------------------------------------------------------------
Update Information:
https://www.reviewboard.org/docs/releasenotes/rbtools/0.7.8/ ---- Fix missing
dependency on python-tqdm ----
https://www.reviewboard.org/docs/releasenotes/rbtools/0.7.7/
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1409935 - [abrt] RBTools: __init__.py:829:resolve:DistributionNotFound: The
'tqdm' distribution was not found and is required by RBTools
https://bugzilla.redhat.com/show_bug.cgi?id=1409935
--------------------------------------------------------------------------------
================================================================================
appcenter-0.1.3-3.fc25 (FEDORA-2017-9684d7eccb)
Software Center for the Pantheon desktop
--------------------------------------------------------------------------------
Update Information:
This is a new package for f25 proper. It was previously available via my
elementary-stable COPR repository.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1412732 - Review Request: appcenter - Software Center for the Pantheon
desktop
https://bugzilla.redhat.com/show_bug.cgi?id=1412732
--------------------------------------------------------------------------------
================================================================================
bind-9.10.4-3.P5.fc25 (FEDORA-2017-87992a0557)
The Berkeley Internet Name Domain (BIND) DNS (Domain Name System) server
--------------------------------------------------------------------------------
Update Information:
Security fix for CVE-2016-9131, CVE-2016-9147, CVE-2016-9444
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1411348 - CVE-2016-9131 bind: assertion failure while processing response to
an ANY query
https://bugzilla.redhat.com/show_bug.cgi?id=1411348
[ 2 ] Bug #1411367 - CVE-2016-9147 bind: assertion failure while handling a query
response containing inconsistent DNSSEC information
https://bugzilla.redhat.com/show_bug.cgi?id=1411367
[ 3 ] Bug #1411377 - CVE-2016-9444 bind: assertion failure while handling an
unusually-formed DS record response
https://bugzilla.redhat.com/show_bug.cgi?id=1411377
--------------------------------------------------------------------------------
================================================================================
bind99-9.9.9-4.P5.fc25 (FEDORA-2017-f44f2f5a48)
The Berkeley Internet Name Domain (BIND) DNS (Domain Name System) libraries
--------------------------------------------------------------------------------
Update Information:
Security fix for CVE-2016-9131, CVE-2016-9147, CVE-2016-9444
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1411348 - CVE-2016-9131 bind: assertion failure while processing response to
an ANY query
https://bugzilla.redhat.com/show_bug.cgi?id=1411348
[ 2 ] Bug #1411367 - CVE-2016-9147 bind: assertion failure while handling a query
response containing inconsistent DNSSEC information
https://bugzilla.redhat.com/show_bug.cgi?id=1411367
[ 3 ] Bug #1411377 - CVE-2016-9444 bind: assertion failure while handling an
unusually-formed DS record response
https://bugzilla.redhat.com/show_bug.cgi?id=1411377
--------------------------------------------------------------------------------
================================================================================
ceph-10.2.4-2.fc25 (FEDORA-2017-598e3c5542)
User space components of the Ceph file system
--------------------------------------------------------------------------------
Update Information:
New package that should fix the update issues with the -devel packages
installed.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1403662 - Ceph update not installable
https://bugzilla.redhat.com/show_bug.cgi?id=1403662
--------------------------------------------------------------------------------
================================================================================
cockpit-128-1.fc25 (FEDORA-2017-5f863e8f0d)
A user interface for Linux servers
--------------------------------------------------------------------------------
Update Information:
- Support for Rebasing OSTrees and configuring OSTree Remotes - Split out the
remote host functionality into its own package - Fix issue upgrading from 126 on
Debian and Ubuntu - Many packaging fixes and tweaks on Debian and Ubuntu
--------------------------------------------------------------------------------
================================================================================
csvdiff-0.3.1-1.fc25 (FEDORA-2017-0723637dd8)
Generate a diff between two CSV files on the command-line
--------------------------------------------------------------------------------
Update Information:
Update to v0.3.1
--------------------------------------------------------------------------------
================================================================================
drupal7-honeypot-1.22-1.fc25 (FEDORA-2017-03d04b1d48)
Mitigates spam form submissions using the honeypot method
--------------------------------------------------------------------------------
Update Information:
Honeypot uses both the honeypot and timestamp methods of deterring spam bots
from completing forms on your Drupal site (read more here). These methods are
effective against many spam bots, and are not as intrusive as CAPTCHAs or other
methods which punish the user [YouTube]. The module currently supports enabling
for all forms on the site, or particular forms like user registration or
password reset forms, webforms, contact forms, node forms, and comment forms.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1100973 - Review Request: drupal7-honeypot - Honeypot uses both the honeypot
and timestamp methods of deterring spam bots
https://bugzilla.redhat.com/show_bug.cgi?id=1100973
--------------------------------------------------------------------------------
================================================================================
ecj-4.6.2-1.fc25 (FEDORA-2017-ddde4436aa)
Eclipse Compiler for Java
--------------------------------------------------------------------------------
Update Information:
Various updates to Neon.2 versions Fixes DLTK indexing failures (especially
apparent in PHP tooling) Fixes Lucene index reading errors when AERI
synchronises problem lists Fix "workbench.xmi" errors observed sometimes when
DTP or other users of javax.annotations APIs are present
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1398889 - Eclipse Error
https://bugzilla.redhat.com/show_bug.cgi?id=1398889
[ 2 ] Bug #1397238 - An internal error occurred during: "Open Call Hierarchy
action".
https://bugzilla.redhat.com/show_bug.cgi?id=1397238
[ 3 ] Bug #1392150 - Eclipse doesn't start with a special workspace configuration
https://bugzilla.redhat.com/show_bug.cgi?id=1392150
[ 4 ] Bug #1391773 - webtools seems to cause eclipse to fail to launch
https://bugzilla.redhat.com/show_bug.cgi?id=1391773
--------------------------------------------------------------------------------
================================================================================
eclipse-4.6.2-3.fc25 (FEDORA-2017-ddde4436aa)
An open, extensible IDE
--------------------------------------------------------------------------------
Update Information:
Various updates to Neon.2 versions Fixes DLTK indexing failures (especially
apparent in PHP tooling) Fixes Lucene index reading errors when AERI
synchronises problem lists Fix "workbench.xmi" errors observed sometimes when
DTP or other users of javax.annotations APIs are present
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1398889 - Eclipse Error
https://bugzilla.redhat.com/show_bug.cgi?id=1398889
[ 2 ] Bug #1397238 - An internal error occurred during: "Open Call Hierarchy
action".
https://bugzilla.redhat.com/show_bug.cgi?id=1397238
[ 3 ] Bug #1392150 - Eclipse doesn't start with a special workspace configuration
https://bugzilla.redhat.com/show_bug.cgi?id=1392150
[ 4 ] Bug #1391773 - webtools seems to cause eclipse to fail to launch
https://bugzilla.redhat.com/show_bug.cgi?id=1391773
--------------------------------------------------------------------------------
================================================================================
eclipse-dltk-5.7.0-1.fc25 (FEDORA-2017-ddde4436aa)
Dynamic Languages Toolkit (DLTK) Eclipse plug-in
--------------------------------------------------------------------------------
Update Information:
Various updates to Neon.2 versions Fixes DLTK indexing failures (especially
apparent in PHP tooling) Fixes Lucene index reading errors when AERI
synchronises problem lists Fix "workbench.xmi" errors observed sometimes when
DTP or other users of javax.annotations APIs are present
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1398889 - Eclipse Error
https://bugzilla.redhat.com/show_bug.cgi?id=1398889
[ 2 ] Bug #1397238 - An internal error occurred during: "Open Call Hierarchy
action".
https://bugzilla.redhat.com/show_bug.cgi?id=1397238
[ 3 ] Bug #1392150 - Eclipse doesn't start with a special workspace configuration
https://bugzilla.redhat.com/show_bug.cgi?id=1392150
[ 4 ] Bug #1391773 - webtools seems to cause eclipse to fail to launch
https://bugzilla.redhat.com/show_bug.cgi?id=1391773
--------------------------------------------------------------------------------
================================================================================
eclipse-ecf-3.13.3-1.fc25 (FEDORA-2017-ddde4436aa)
Eclipse Communication Framework (ECF) Eclipse plug-in
--------------------------------------------------------------------------------
Update Information:
Various updates to Neon.2 versions Fixes DLTK indexing failures (especially
apparent in PHP tooling) Fixes Lucene index reading errors when AERI
synchronises problem lists Fix "workbench.xmi" errors observed sometimes when
DTP or other users of javax.annotations APIs are present
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1398889 - Eclipse Error
https://bugzilla.redhat.com/show_bug.cgi?id=1398889
[ 2 ] Bug #1397238 - An internal error occurred during: "Open Call Hierarchy
action".
https://bugzilla.redhat.com/show_bug.cgi?id=1397238
[ 3 ] Bug #1392150 - Eclipse doesn't start with a special workspace configuration
https://bugzilla.redhat.com/show_bug.cgi?id=1392150
[ 4 ] Bug #1391773 - webtools seems to cause eclipse to fail to launch
https://bugzilla.redhat.com/show_bug.cgi?id=1391773
--------------------------------------------------------------------------------
================================================================================
eclipse-egit-4.6.0-1.fc25 (FEDORA-2017-ddde4436aa)
Eclipse Git Integration
--------------------------------------------------------------------------------
Update Information:
Various updates to Neon.2 versions Fixes DLTK indexing failures (especially
apparent in PHP tooling) Fixes Lucene index reading errors when AERI
synchronises problem lists Fix "workbench.xmi" errors observed sometimes when
DTP or other users of javax.annotations APIs are present
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1398889 - Eclipse Error
https://bugzilla.redhat.com/show_bug.cgi?id=1398889
[ 2 ] Bug #1397238 - An internal error occurred during: "Open Call Hierarchy
action".
https://bugzilla.redhat.com/show_bug.cgi?id=1397238
[ 3 ] Bug #1392150 - Eclipse doesn't start with a special workspace configuration
https://bugzilla.redhat.com/show_bug.cgi?id=1392150
[ 4 ] Bug #1391773 - webtools seems to cause eclipse to fail to launch
https://bugzilla.redhat.com/show_bug.cgi?id=1391773
--------------------------------------------------------------------------------
================================================================================
eclipse-egit-github-4.6.0-1.fc25 (FEDORA-2017-ddde4436aa)
Eclipse EGit Mylyn GitHub Connector
--------------------------------------------------------------------------------
Update Information:
Various updates to Neon.2 versions Fixes DLTK indexing failures (especially
apparent in PHP tooling) Fixes Lucene index reading errors when AERI
synchronises problem lists Fix "workbench.xmi" errors observed sometimes when
DTP or other users of javax.annotations APIs are present
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1398889 - Eclipse Error
https://bugzilla.redhat.com/show_bug.cgi?id=1398889
[ 2 ] Bug #1397238 - An internal error occurred during: "Open Call Hierarchy
action".
https://bugzilla.redhat.com/show_bug.cgi?id=1397238
[ 3 ] Bug #1392150 - Eclipse doesn't start with a special workspace configuration
https://bugzilla.redhat.com/show_bug.cgi?id=1392150
[ 4 ] Bug #1391773 - webtools seems to cause eclipse to fail to launch
https://bugzilla.redhat.com/show_bug.cgi?id=1391773
--------------------------------------------------------------------------------
================================================================================
eclipse-epp-logging-2.0.3-2.fc25 (FEDORA-2017-ddde4436aa)
Eclipse Error Reporting tool
--------------------------------------------------------------------------------
Update Information:
Various updates to Neon.2 versions Fixes DLTK indexing failures (especially
apparent in PHP tooling) Fixes Lucene index reading errors when AERI
synchronises problem lists Fix "workbench.xmi" errors observed sometimes when
DTP or other users of javax.annotations APIs are present
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1398889 - Eclipse Error
https://bugzilla.redhat.com/show_bug.cgi?id=1398889
[ 2 ] Bug #1397238 - An internal error occurred during: "Open Call Hierarchy
action".
https://bugzilla.redhat.com/show_bug.cgi?id=1397238
[ 3 ] Bug #1392150 - Eclipse doesn't start with a special workspace configuration
https://bugzilla.redhat.com/show_bug.cgi?id=1392150
[ 4 ] Bug #1391773 - webtools seems to cause eclipse to fail to launch
https://bugzilla.redhat.com/show_bug.cgi?id=1391773
--------------------------------------------------------------------------------
================================================================================
eclipse-jgit-4.6.0-2.fc25 (FEDORA-2017-ddde4436aa)
Eclipse JGit
--------------------------------------------------------------------------------
Update Information:
Various updates to Neon.2 versions Fixes DLTK indexing failures (especially
apparent in PHP tooling) Fixes Lucene index reading errors when AERI
synchronises problem lists Fix "workbench.xmi" errors observed sometimes when
DTP or other users of javax.annotations APIs are present
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1398889 - Eclipse Error
https://bugzilla.redhat.com/show_bug.cgi?id=1398889
[ 2 ] Bug #1397238 - An internal error occurred during: "Open Call Hierarchy
action".
https://bugzilla.redhat.com/show_bug.cgi?id=1397238
[ 3 ] Bug #1392150 - Eclipse doesn't start with a special workspace configuration
https://bugzilla.redhat.com/show_bug.cgi?id=1392150
[ 4 ] Bug #1391773 - webtools seems to cause eclipse to fail to launch
https://bugzilla.redhat.com/show_bug.cgi?id=1391773
--------------------------------------------------------------------------------
================================================================================
eclipse-mpc-1.5.3-1.fc25 (FEDORA-2017-ddde4436aa)
Eclipse Marketplace Client
--------------------------------------------------------------------------------
Update Information:
Various updates to Neon.2 versions Fixes DLTK indexing failures (especially
apparent in PHP tooling) Fixes Lucene index reading errors when AERI
synchronises problem lists Fix "workbench.xmi" errors observed sometimes when
DTP or other users of javax.annotations APIs are present
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1398889 - Eclipse Error
https://bugzilla.redhat.com/show_bug.cgi?id=1398889
[ 2 ] Bug #1397238 - An internal error occurred during: "Open Call Hierarchy
action".
https://bugzilla.redhat.com/show_bug.cgi?id=1397238
[ 3 ] Bug #1392150 - Eclipse doesn't start with a special workspace configuration
https://bugzilla.redhat.com/show_bug.cgi?id=1392150
[ 4 ] Bug #1391773 - webtools seems to cause eclipse to fail to launch
https://bugzilla.redhat.com/show_bug.cgi?id=1391773
--------------------------------------------------------------------------------
================================================================================
eclipse-pdt-4.2.0-1.fc25 (FEDORA-2017-ddde4436aa)
PHP Development Tools (PDT) Eclipse plug-in
--------------------------------------------------------------------------------
Update Information:
Various updates to Neon.2 versions Fixes DLTK indexing failures (especially
apparent in PHP tooling) Fixes Lucene index reading errors when AERI
synchronises problem lists Fix "workbench.xmi" errors observed sometimes when
DTP or other users of javax.annotations APIs are present
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1398889 - Eclipse Error
https://bugzilla.redhat.com/show_bug.cgi?id=1398889
[ 2 ] Bug #1397238 - An internal error occurred during: "Open Call Hierarchy
action".
https://bugzilla.redhat.com/show_bug.cgi?id=1397238
[ 3 ] Bug #1392150 - Eclipse doesn't start with a special workspace configuration
https://bugzilla.redhat.com/show_bug.cgi?id=1392150
[ 4 ] Bug #1391773 - webtools seems to cause eclipse to fail to launch
https://bugzilla.redhat.com/show_bug.cgi?id=1391773
--------------------------------------------------------------------------------
================================================================================
electrum-2.7.17-1.fc25 (FEDORA-2017-75602362c8)
A lightweight Bitcoin Client
--------------------------------------------------------------------------------
Update Information:
new version ---- new version
--------------------------------------------------------------------------------
================================================================================
erlang-19.2-1.fc25 (FEDORA-2017-3a6e67b6ea)
General-purpose programming language and runtime environment
--------------------------------------------------------------------------------
Update Information:
* Ver. 19.2
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1400080 - erlang-19.2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1400080
--------------------------------------------------------------------------------
================================================================================
evolution-3.22.3-2.fc25 (FEDORA-2017-e82f844a8d)
Mail and calendar client for GNOME
--------------------------------------------------------------------------------
Update Information:
Fixes a crash pasting specific content into the editor window.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1406510 - [abrt] Crash on paste of a vCard into a message composer body
https://bugzilla.redhat.com/show_bug.cgi?id=1406510
--------------------------------------------------------------------------------
================================================================================
fawkes-1.0.0-2.fc25 (FEDORA-2017-8234e6770c)
Robot Software Framework
--------------------------------------------------------------------------------
Update Information:
Upgrade to latest stable release 1.0.0
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1392129 - FTBFS fawkes failes to build with openssl 1.1.0
https://bugzilla.redhat.com/show_bug.cgi?id=1392129
--------------------------------------------------------------------------------
================================================================================
flr-0.0.1-1.fc25 (FEDORA-2017-2aded42557)
Fedora Releng python libraries and command line tools
--------------------------------------------------------------------------------
Update Information:
First release of flr for Fedora.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1411502 - Review Request: flr - Fedora RelEng python libraries and command
line tools
https://bugzilla.redhat.com/show_bug.cgi?id=1411502
--------------------------------------------------------------------------------
================================================================================
golang-github-go-ini-ini-1.21.1-0.1.git6e4869b.fc25 (FEDORA-2017-08b7c8d62b)
Package ini provides INI file read and write functionality in Go
--------------------------------------------------------------------------------
Update Information:
Bump to upstream 6e4869b434bd001f6983749881c7ead3545887d8
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1412590 - Tracker for golang-github-go-ini-ini
https://bugzilla.redhat.com/show_bug.cgi?id=1412590
--------------------------------------------------------------------------------
================================================================================
golang-github-hashicorp-errwrap-0-0.5.git7554cd9.fc25 (FEDORA-2017-bb4a511f89)
Errwrap is a Go (golang) library for wrapping and querying errors
--------------------------------------------------------------------------------
Update Information:
Polish the spec file
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1412620 - Tracker for golang-github-hashicorp-errwrap
https://bugzilla.redhat.com/show_bug.cgi?id=1412620
--------------------------------------------------------------------------------
================================================================================
golang-github-hashicorp-go-multierror-0-0.9.gitd30f099.fc25 (FEDORA-2017-1bf116b3a0)
Package for representing a list of errors as a single error
--------------------------------------------------------------------------------
Update Information:
Polish the spec file
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1250466 - Tracker for golang-github-hashicorp-go-multierror
https://bugzilla.redhat.com/show_bug.cgi?id=1250466
--------------------------------------------------------------------------------
================================================================================
golang-github-jtolds-gls-0-0.7.git9a4a02d.fc25 (FEDORA-2017-ce4d3a241d)
Goroutine local storage
--------------------------------------------------------------------------------
Update Information:
Polish the spec file
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1250490 - Tracker for golang-github-jtolds-gls
https://bugzilla.redhat.com/show_bug.cgi?id=1250490
--------------------------------------------------------------------------------
================================================================================
golang-github-smartystreets-assertions-1.6.0-0.3.git287b434.fc25
(FEDORA-2017-e6724453f6)
Fluent assertion-style functions
--------------------------------------------------------------------------------
Update Information:
Polish the spec file
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1250509 - Tracker for golang-github-smartystreets-assertions
https://bugzilla.redhat.com/show_bug.cgi?id=1250509
--------------------------------------------------------------------------------
================================================================================
golang-github-smartystreets-goconvey-1.6.1-0.3.gitbf58a9a.fc25 (FEDORA-2017-806fe195ec)
Behavioral testing in the browser, integrates with go test
--------------------------------------------------------------------------------
Update Information:
Polish the spec file
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1250511 - Tracker for golang-github-smartystreets-goconvey
https://bugzilla.redhat.com/show_bug.cgi?id=1250511
--------------------------------------------------------------------------------
================================================================================
graphene-1.5.4-1.fc25 (FEDORA-2017-386001d69a)
Thin layer of types for graphic libraries
--------------------------------------------------------------------------------
Update Information:
graphene 1.5.4 release. For details, see
https://github.com/ebassi/graphene/releases/tag/1.5.4
--------------------------------------------------------------------------------
================================================================================
hitch-1.4.4-2.fc25 (FEDORA-2017-eef6872fa4)
Network proxy that terminates TLS/SSL connections
--------------------------------------------------------------------------------
Update Information:
New upstream release. A bugfix and comptibility release. From the upstream
changelog: * OpenSSL 1.1.0 compatibility fixes. OpenSSL 1.1.0 is now fully
supported with Hitch. * Fix a bug in the OCSP refresh code that could make it
loop with immediate refreshes flooding an OCSP responder. * Force the
SSL_OP_SINGLE_DH_USE setting. This protects against an OpenSSL vulnerability
where a remote attacker could discover private DH exponents (CVE-2016-0701).
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1405948 - OSCP stapling not working by default
https://bugzilla.redhat.com/show_bug.cgi?id=1405948
--------------------------------------------------------------------------------
================================================================================
ikiwiki-3.20170111-1.fc25 (FEDORA-2017-c756d37779)
A wiki compiler
--------------------------------------------------------------------------------
Update Information:
Update to the latest stable version. See
https://ikiwiki.info/news/ for the list
of changes. Security fix for CVE-2016-10026, CVE-2016-9646, CVE-2017-0356.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1409556 - CVE-2016-9646 ikiwiki: Commit metadata forgery
https://bugzilla.redhat.com/show_bug.cgi?id=1409556
[ 2 ] Bug #1406693 - CVE-2016-10026 ikiwiki: Authorization bypass when reverting
changes
https://bugzilla.redhat.com/show_bug.cgi?id=1406693
[ 3 ] Bug #1412698 - CVE-2017-0356 ikiwiki: Authentication bypass via repeated
parameters
https://bugzilla.redhat.com/show_bug.cgi?id=1412698
--------------------------------------------------------------------------------
================================================================================
jemalloc-4.4.0-2.fc25 (FEDORA-2017-49cfaa7362)
General-purpose scalable concurrent malloc implementation
--------------------------------------------------------------------------------
Update Information:
Disable transparent hugepages on systems not supporting them, including aarch64,
armv7, and ppc64le
--------------------------------------------------------------------------------
================================================================================
libappstream-glib-0.6.7-1.fc25 (FEDORA-2017-36eb70354b)
Library for AppStream metadata
--------------------------------------------------------------------------------
Update Information:
New upstream release Add AsRequire as a way to store runtime requirements Add
support for "+" at the end of SPDX license identifiers Allow loading
application
XPM icons Fix a crash when using as_release_get_location_default() Fix dep
extraction when multiple versions are available Only fail to validate <icon> in
AppData desktop components Scan /usr/share/metainfo as well when building
appstream-data Update the SPDX licence list to v2.5
--------------------------------------------------------------------------------
================================================================================
libpeas-1.20.0-3.fc25 (FEDORA-2017-67a55ca087)
Plug-ins implementation convenience library
--------------------------------------------------------------------------------
Update Information:
This update splits out a libpeas-gtk subpackage, so that command line apps that
use libpeas, such as microdnf, wouldn't pull in the whole gtk+ stack through
dependencies.
--------------------------------------------------------------------------------
================================================================================
lmdb-0.9.20-1.fc25 (FEDORA-2017-dbd588e397)
Memory-mapped key-value database
--------------------------------------------------------------------------------
Update Information:
Update to the latest upstream version.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1412404 - lmdb-0.9.20 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1412404
--------------------------------------------------------------------------------
================================================================================
lucene4-4.10.4-7.fc25 (FEDORA-2017-ddde4436aa)
High-performance, full-featured text search engine
--------------------------------------------------------------------------------
Update Information:
Various updates to Neon.2 versions Fixes DLTK indexing failures (especially
apparent in PHP tooling) Fixes Lucene index reading errors when AERI
synchronises problem lists Fix "workbench.xmi" errors observed sometimes when
DTP or other users of javax.annotations APIs are present
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1398889 - Eclipse Error
https://bugzilla.redhat.com/show_bug.cgi?id=1398889
[ 2 ] Bug #1397238 - An internal error occurred during: "Open Call Hierarchy
action".
https://bugzilla.redhat.com/show_bug.cgi?id=1397238
[ 3 ] Bug #1392150 - Eclipse doesn't start with a special workspace configuration
https://bugzilla.redhat.com/show_bug.cgi?id=1392150
[ 4 ] Bug #1391773 - webtools seems to cause eclipse to fail to launch
https://bugzilla.redhat.com/show_bug.cgi?id=1391773
--------------------------------------------------------------------------------
================================================================================
mysqltuner-1.6.18-1.git.401cb54.fc25 (FEDORA-2017-4e25567a6d)
MySQL configuration assistant
--------------------------------------------------------------------------------
Update Information:
bump version + fix download-url
--------------------------------------------------------------------------------
================================================================================
owncloud-client-2.2.4-5.fc25 (FEDORA-2017-6b1a98c60d)
The ownCloud Client
--------------------------------------------------------------------------------
Update Information:
Add caja extension ---- Fix the appdata file so that owncloud would show up in
GNOME and KDE software centers.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1404756 - owncloud-client dont have extension for caja file using as default
in Mate desktop
https://bugzilla.redhat.com/show_bug.cgi?id=1404756
--------------------------------------------------------------------------------
================================================================================
pcre-8.40-1.fc25 (FEDORA-2017-6e2d5caccb)
Perl-compatible regular expression library
--------------------------------------------------------------------------------
Update Information:
This release fixes showing captures for DFA matching and JIT unaligned access on
x86 platform.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1412411 - pcre-8.40 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1412411
--------------------------------------------------------------------------------
================================================================================
pcre2-10.22-10.fc25 (FEDORA-2017-5b5728af66)
Perl-compatible regular expression library
--------------------------------------------------------------------------------
Update Information:
This release fixes compiling a class with Unicode properties and without UTF
mode. It also fixes an ouf-of-bound read in pcre2test tool within POSIX mode.
--------------------------------------------------------------------------------
================================================================================
perl-Math-BigInt-1.9997.27-2.fc25 (FEDORA-2017-3384698335)
Arbitrary-size integer and float mathematics
--------------------------------------------------------------------------------
Update Information:
This release fixes accepting numbers surrounded with a white space.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1412052 - perl Math::BigInt regression in ignoring white space with
non-decimal numbers
https://bugzilla.redhat.com/show_bug.cgi?id=1412052
--------------------------------------------------------------------------------
================================================================================
perl-RDF-NS-20170111-1.fc25 (FEDORA-2017-fc7060ebfd)
Popular RDF name space prefixes from prefix.cc
--------------------------------------------------------------------------------
Update Information:
This release updates database of RDF name space prefixes.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1412415 - perl-RDF-NS-20170111 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1412415
--------------------------------------------------------------------------------
================================================================================
php-alcaeus-mongo-php-adapter-1.0.8-1.fc25 (FEDORA-2017-8845d4ed99)
Mongo PHP Adapter
--------------------------------------------------------------------------------
Update Information:
1.0.8 (2017-01-11) ------------------ All issues and pull requests under this
release may be found under the [
1.0.8](https://github.com/alcaeus/mongo-php-
adapter/issues?q=milestone%3A1.0.8) milestone. *
[#151](https://github.com/alcaeus/mongo-php-adapter/pull/151) allows using
boolean values when passing a write concern option to an insert or update. While
never documented, this was happily accepted by the legacy driver. *
[#150](https://github.com/alcaeus/mongo-php-adapter/pull/150) adds missing
options to `MongoCollection::indexInfo`. * [#149](https://github.com/alcaeus
/mongo-php-adapter/pull/149) fixes calls to `MongoDB::getDBRef` with references
containing a `$db` field with a different value than the current database. *
[#145](https://github.com/alcaeus/mongo-php-adapter/pull/145) fixes query
projections in the legacy syntax. While never documented, this was happily
accepted by the legacy driver.
--------------------------------------------------------------------------------
================================================================================
php-pdepend-PHP-Depend-2.4.1-1.fc25 (FEDORA-2017-ad08f81125)
PHP_Depend design quality metrics for PHP package
--------------------------------------------------------------------------------
Update Information:
**pdepend-2.4.1** (2017/01/11) This release closes a bug within PDepend's
parser when keywords are used as method or constant names in PHP 7.0 - Fixes
an issue with methods or constants with keyword identifiers called/accessed
in PHP 7. ---- **pdepend-2.4.0** (2017/01/10) This release implements
language features like Anonymous Classes, Group use Declarations, Uniform
Variable Syntax or Loosening Reserved Word Restrictions that were introduced
with PHP 7.0, so that PDepend 2.4 is now PHP 7.0 compatible. - Fixed #281: PHP
7 - Anonymous Class - Internal parser state issues - Fixed #285: Parse the
magic constant __TRAIT__ - Fixed #210: Partial Class Namespace is Calculated
Twice: in Global and it's Own Namespace - Implemented #280: Refactor
SymbolTable - Implemented #282: PHP 7 - Group use declarations - Implemented
#269: Unexpected token: :: (implicit object / method usage) - Implemented
#204: Support for the ... operator in function calls - Implemented #290:
Unexpected token: ARRAY (reserved keyword as a class constant)
--------------------------------------------------------------------------------
================================================================================
php-twig-1.31.0-1.fc25 (FEDORA-2017-93919c0beb)
The flexible, fast, and secure template engine for PHP
--------------------------------------------------------------------------------
Update Information:
# php-twig **Version 1.31.0** (2017-01-11) * added Twig_NodeCaptureInterface
for nodes that capture all output * fixed marking the environment as
initialized too early * fixed C89 compat for the C extension * turned fatal
error into exception when a previously generated cache is corrupted * fixed
offline cache warm-ups for embedded templates ---- **Version 1.30.0**
(2016-12-23) * added Twig_FactoryRuntimeLoader * deprecated
function/test/filter/tag overriding * deprecated the "disable_c_ext" attribute
on Twig_Node_Expression_GetAttr ---- **Version 1.29.0** (2016-12-13) * fixed
sandbox being left enabled if an exception is thrown while rendering * marked
some classes as being final (via @final) * made Twig_Error report real source
path when possible * added support for {{ _self }} to provide an upgrade path
from 1.x to 2.0 (replaces {{ _self.templateName }}) * deprecated silent display
of undefined blocks * deprecated support for mbstring.func_overload != 0 ----
**Version 1.28.2** (2016-11-23) * fixed precedence between getFoo() and
isFoo() in Twig_Template::getAttribute() * improved a deprecation message ----
**Version 1.28.1** (2016-11-18) * fixed block() function when used with a
template argument ---- **Version 1.28.0** (2016-11-17) * added support for
the PHP 7 null coalescing operator for the ?? Twig implementation * exposed a
way to access template data and methods in a portable way * changed context
access to use the PHP 7 null coalescing operator when available * added the
"with" tag * added support for a custom template on the block() function *
added "is defined" support for block() and constant() * optimized the way
attributes are fetched ---- **Version 1.27.0** (2016-10-25) * deprecated
Twig_Parser::getEnvironment() * deprecated Twig_Parser::addHandler() and
Twig_Parser::addNodeVisitor() * deprecated Twig_Compiler::addIndentation() *
fixed regression when registering two extensions having the same class name *
deprecated Twig_LoaderInterface::getSource() (implement
Twig_SourceContextLoaderInterface instead) * fixed the filesystem loader with
relative paths * deprecated Twig_Node::getLine() in favor of
Twig_Node::getTemplateLine() * deprecated Twig_Template::getSource() in favor
of Twig_Template::getSourceContext() * deprecated Twig_Node::getFilename() in
favor of Twig_Node::getTemplateName() * deprecated the "filename" escaping
strategy (use "name" instead) * added Twig_Source to hold information about
the
original template * deprecated Twig_Error::getTemplateFile() and
Twig_Error::setTemplateFile() in favor of Twig_Error::getTemplateName() and
Twig_Error::setTemplateName() * deprecated Parser::getFilename() * fixed
template paths when a template name contains a protocol like vfs:// * improved
debugging with Twig_Sandbox_SecurityError exceptions for disallowed methods and
properties # php-twig-extensions
https://github.com/twigphp/Twig-
extensions/compare/v1.3.0...v1.4.1
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1378643 - php-twig-extensions-1.4.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1378643
--------------------------------------------------------------------------------
================================================================================
php-twig-extensions-1.4.1-2.fc25 (FEDORA-2017-93919c0beb)
Twig extensions
--------------------------------------------------------------------------------
Update Information:
# php-twig **Version 1.31.0** (2017-01-11) * added Twig_NodeCaptureInterface
for nodes that capture all output * fixed marking the environment as
initialized too early * fixed C89 compat for the C extension * turned fatal
error into exception when a previously generated cache is corrupted * fixed
offline cache warm-ups for embedded templates ---- **Version 1.30.0**
(2016-12-23) * added Twig_FactoryRuntimeLoader * deprecated
function/test/filter/tag overriding * deprecated the "disable_c_ext" attribute
on Twig_Node_Expression_GetAttr ---- **Version 1.29.0** (2016-12-13) * fixed
sandbox being left enabled if an exception is thrown while rendering * marked
some classes as being final (via @final) * made Twig_Error report real source
path when possible * added support for {{ _self }} to provide an upgrade path
from 1.x to 2.0 (replaces {{ _self.templateName }}) * deprecated silent display
of undefined blocks * deprecated support for mbstring.func_overload != 0 ----
**Version 1.28.2** (2016-11-23) * fixed precedence between getFoo() and
isFoo() in Twig_Template::getAttribute() * improved a deprecation message ----
**Version 1.28.1** (2016-11-18) * fixed block() function when used with a
template argument ---- **Version 1.28.0** (2016-11-17) * added support for
the PHP 7 null coalescing operator for the ?? Twig implementation * exposed a
way to access template data and methods in a portable way * changed context
access to use the PHP 7 null coalescing operator when available * added the
"with" tag * added support for a custom template on the block() function *
added "is defined" support for block() and constant() * optimized the way
attributes are fetched ---- **Version 1.27.0** (2016-10-25) * deprecated
Twig_Parser::getEnvironment() * deprecated Twig_Parser::addHandler() and
Twig_Parser::addNodeVisitor() * deprecated Twig_Compiler::addIndentation() *
fixed regression when registering two extensions having the same class name *
deprecated Twig_LoaderInterface::getSource() (implement
Twig_SourceContextLoaderInterface instead) * fixed the filesystem loader with
relative paths * deprecated Twig_Node::getLine() in favor of
Twig_Node::getTemplateLine() * deprecated Twig_Template::getSource() in favor
of Twig_Template::getSourceContext() * deprecated Twig_Node::getFilename() in
favor of Twig_Node::getTemplateName() * deprecated the "filename" escaping
strategy (use "name" instead) * added Twig_Source to hold information about
the
original template * deprecated Twig_Error::getTemplateFile() and
Twig_Error::setTemplateFile() in favor of Twig_Error::getTemplateName() and
Twig_Error::setTemplateName() * deprecated Parser::getFilename() * fixed
template paths when a template name contains a protocol like vfs:// * improved
debugging with Twig_Sandbox_SecurityError exceptions for disallowed methods and
properties # php-twig-extensions
https://github.com/twigphp/Twig-
extensions/compare/v1.3.0...v1.4.1
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1378643 - php-twig-extensions-1.4.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1378643
--------------------------------------------------------------------------------
================================================================================
php-twig2-2.1.0-1.fc25 (FEDORA-2017-78eea6cf5e)
The flexible, fast, and secure template engine for PHP
--------------------------------------------------------------------------------
Update Information:
The flexible, fast, and secure template engine for PHP. * Fast: Twig compiles
templates down to plain optimized PHP code. The overhead compared to regular
PHP code was reduced to the very minimum. * Secure: Twig has a sandbox mode to
evaluate untrusted template code. This allows Twig to be used as a template
language for applications where users may modify the template design. *
Flexible: Twig is powered by a flexible lexer and parser. This allows the
developer to define its own custom tags and filters, and create its own DSL.
Autoloader: /usr/share/php/Twig2/autoload.php
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1410985 - Review Request: php-twig2 - The flexible, fast, and secure template
engine for PHP
https://bugzilla.redhat.com/show_bug.cgi?id=1410985
--------------------------------------------------------------------------------
================================================================================
php-zendframework-zend-expressive-platesrenderer-1.2.0-1.fc25 (FEDORA-2017-637ab9794b)
Plates integration for Expressive
--------------------------------------------------------------------------------
Update Information:
**Version 1.2.0** - 2017-01-11 - [#11](https://github.com/zendframework/zend-
expressive-platesrenderer/pull/11) adds support for zend-expressive-helpers
3.0.0 (and, consequently, zend-expressive-router 2.0.0). Users may now pass
additional arguments to the `url()` helper. If you are still using the zend-
expressive-helpers 2.2 series and/or zend-expressive-router 1.0 series, all
parameters provided after the `$routeParams` will be ignored. -
[#14](https://github.com/zendframework/zend-expressive-platesrenderer/pull/14)
removes support for PHP 5.5.
--------------------------------------------------------------------------------
================================================================================
php-zendframework-zend-expressive-router-1.3.2-1.fc25 (FEDORA-2017-f0bf60a0ad)
Router subcomponent for Expressive
--------------------------------------------------------------------------------
Update Information:
**Version 1.3.2** - 2016-12-14 - [#29](https://github.com/zendframework/zend-
expressive-router/pull/29) removes the patch introduced with
[#27](https://github.com/zendframework/zend-expressive-router/pull/27) and
1.3.1, as it causes `Zend\Expressive\Application` to raise exceptions
regarding duplicate routes, and because some implementations, including
FastRoute, also raise errors on duplication. It will be up to individual
routers to determine how to handle implicit HEAD and OPTIONS support. ----
**Version 1.3.1** - 2016-12-13 - [#27](https://github.com/zendframework/zend-
expressive-router/pull/27) fixes the behavior of `Route` to _always_ register
`HEAD` and `OPTIONS` as allowed methods; this was the original intent of
[#24](https://github.com/zendframework/zend-expressive-router/pull/24). -----
**Version 1.3.0** - 2016-12-13 - [#23](https://github.com/zendframework/zend-
expressive-router/pull/23) adds a new static method on the `RouteResult`
class, `fromRoute(Route $route, array $params = [])`, for creating a new
`RouteResult` instance. It also adds `getMatchedRoute()` for retrieving the
`Route` instance provided to that method. Doing so allows retrieving the list
of supported HTTP methods, path, and route options from the matched route. -
[#24](https://github.com/zendframework/zend-expressive-router/pull/24) adds
two new methods to the `Route` class, `implicitHead()` and
`implicitOptions()`. These can be used by routers or dispatchers to determine
if a match based on `HEAD` or `OPTIONS` requests was due to the developer
specifying the methods explicitly when creating the route (the `implicit*()`
methods will return `false` if explicitly specified). -
[#23](https://github.com/zendframework/zend-expressive-router/pull/23)
deprecates `RouteResult::fromRouteMatch()` in favor of the new `fromRoute()`
method.
--------------------------------------------------------------------------------
================================================================================
php-zendframework-zend-expressive-template-1.0.4-1.fc25 (FEDORA-2017-41d8b90af5)
Template subcomponent for Expressive
--------------------------------------------------------------------------------
Update Information:
**Version 1.0.4** - 2017-01-11 - [#10](https://github.com/zendframework/zend-
expressive-template/pull/10) fixes the logic for merging default parameters
with those passed when rendering in `DefaultParamsTrait::mergeParams()` to
correctly replace values when duplicate entries are found.
--------------------------------------------------------------------------------
================================================================================
php-zendframework-zend-expressive-twigrenderer-1.2.1-1.fc25 (FEDORA-2017-e1b2b250cb)
Twig integration for Expressive
--------------------------------------------------------------------------------
Update Information:
**Version 1.2.1** - 2017-01-12 - [#26](https://github.com/zendframework/zend-
expressive-twigrenderer/pull/26) fixes the zend-expressive-router constrain in
composer.json. ---- **Version 1.2.0** - 2017-01-11 -
[#12](https://github.com/zendframework/zend-expressive-twigrenderer/pull/12)
adds the ability to provide a default timezone to use with Twig. Provide it
via the `twig.timezone` setting. - [#15](https://github.com/zendframework
/zend-expressive-twigrenderer/pull/15) extracts a new factory,
`TwigEnvironmentFactory`, from the `TwigRendererFactory`. This new factory is
now responsible for creating and configuring the `Twig_Environment` instance.
While users may continue to use existing configuration, which omits
registration of the `Twig_Environment` service with this new factory, doing so
now emits a deprecation notice, indicating they should update their dependency
configuration. This also means that users may override the `Twig_Environment`
service to provide alternate instantiation of that class, or add delegator
factories in order to further configure the Twig environment. -
[#23](https://github.com/zendframework/zend-expressive-twigrenderer/pull/23)
adds the ability to provide Twig runtime loaders via configuration. These may
be provided as either instances or service names, under the
`twig.runtime_loaders` setting. - [#18](https://github.com/zendframework/zend-
expressive-twigrenderer/pull/18) adds support for zend-expressive-helpers 3.0.
- [#18](https://github.com/zendframework/zend-expressive-twigrenderer/pull/18)
adds support for zend-expressive-router 2.0. -
[#18](https://github.com/zendframework/zend-expressive-twigrenderer/pull/18)
adds new parameters to the included `path()` extension. It now accepts the
arguments The new arguments are the query parameters, fragment, and router
options. - This release removes support for PHP 5.5. -
[#19](https://github.com/zendframework/zend-expressive-twigrenderer/pull/19)
fixes how the factories test for prior registration of an extension.
Previously, they pulled the extension name using the extension's `getName()`
method; however, as of Twig 1.26, that method is deprecated from
`Twig_ExtensionInterface`, and no longer used internally. This package's
factories now use the class name of the extension to perform the checks.
--------------------------------------------------------------------------------
================================================================================
php-zendframework-zend-expressive-zendviewrenderer-1.2.0-1.fc25 (FEDORA-2017-c0b65a42ff)
zend-view PhpRenderer integration for Expressive
--------------------------------------------------------------------------------
Update Information:
**Version 1.2.0** - 2017-01-11 - [#30](https://github.com/zendframework/zend-
expressive-zendviewrenderer/pull/30) adds support for zend-expressive-router
2.0. - [#30](https://github.com/zendframework/zend-expressive-
zendviewrenderer/pull/30) adds support for zend-expressive-helpers 2.2 and
3.0. - [#30](https://github.com/zendframework/zend-expressive-
zendviewrenderer/pull/30) adds new arguments to the `url()` helper. If using
zend-expressive-router versions prior to 2.0 and/or zend-expressive-helpers
versions prior to 3.0, arguments after `$routeParams` will be ignored. -
[#26](https://github.com/zendframework/zend-expressive-zendviewrenderer/pull/26)
updated the zend-view dependency to 2.8.1+. -
[#26](https://github.com/zendframework/zend-expressive-zendviewrenderer/pull/26)
removes the dependencies for the zend-i18n and zend-filter packages, as they
are no longer required by the minimum version of zend-view supported. If you
depended on features of these, you may need to re-add them to your
application. - This release removes support for PHP 5.5.
--------------------------------------------------------------------------------
================================================================================
php-zendframework-zend-file-2.7.1-1.fc25 (FEDORA-2017-aa528d1c46)
Zend Framework File component
--------------------------------------------------------------------------------
Update Information:
**Version 2.7.1** - 2017-01-11 - [#34](https://github.com/zendframework/zend-
file/pull/34) ensures that anonymous classes are ignored by the
`ClassFileLocator` when identifying files with class declarations.
--------------------------------------------------------------------------------
================================================================================
plasma-applet-weather-widget-1.6.8-1.fc25 (FEDORA-2017-d2e582e10e)
Plasma applet for displaying weather information
--------------------------------------------------------------------------------
Update Information:
Upstream Release: rhbz#1409528
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1409528 - plasma-applet-weather-widget-v1.6.8 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1409528
--------------------------------------------------------------------------------
================================================================================
prosody-0.9.12-1.fc25 (FEDORA-2017-a882f92848)
Flexible communications server for Jabber/XMPP
--------------------------------------------------------------------------------
Update Information:
Prosody 0.9.12 ============== A summary of changes in this release: *
Dependencies: Fix certificate verification failures when using LuaSec 0.6 (fixes
#781) * mod_s2s: Lower log message to 'warn' level, standard for remotely-
triggered protocol issues * certs/Makefile: Remove -c flag from chmod call (a
GNU extension) * Networking: Prevent writes after a handler is closed (fixes
#783)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1412102 - prosody-0.9.12 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1412102
--------------------------------------------------------------------------------
================================================================================
python-cvss-1.7-1.fc25 (FEDORA-2017-4c85d336e3)
CVSS2/3 library with interactive calculator
--------------------------------------------------------------------------------
Update Information:
- New release v1.7 - Fixes regression introduced in v1.5. Interactive calculator
failed for CVSS3 as it did not provide mandatory prefix. ---- - New release
v1.6. - Fix to ensure cvss2 score is never negative.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1402174 - python-cvss-v1.6 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1402174
[ 2 ] Bug #1412158 - python-cvss-v1.7 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1412158
--------------------------------------------------------------------------------
================================================================================
python-neovim-0.1.13-1.fc25 (FEDORA-2017-d48ffe73f1)
Python client to Neovim
--------------------------------------------------------------------------------
Update Information:
Update to 0.1.13
--------------------------------------------------------------------------------
================================================================================
python-num2words-0.5.4-1.fc25 (FEDORA-2017-9baefcfe41)
Python 2 modules to convert numbers to words
--------------------------------------------------------------------------------
Update Information:
Update to v0.5.4
--------------------------------------------------------------------------------
================================================================================
python-windtalker-0.0.4-2.fc25 (FEDORA-2017-019a7d20a4)
Super easy-to-use encryption and decryption tool
--------------------------------------------------------------------------------
Update Information:
New package
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1361891 - Review Request: python-windtalker - Super easy-to-use encryption
and decryption tool
https://bugzilla.redhat.com/show_bug.cgi?id=1361891
--------------------------------------------------------------------------------
================================================================================
qcad-3.16.4.0-1.fc25 (FEDORA-2017-e0364719c9)
Powerful 2D CAD system
--------------------------------------------------------------------------------
Update Information:
- Update to 3.16.4.0 ---- - Add quazip as Requires package
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1411131 - error while loading shared libraries: libquazip.so.1: cannot open
shared object file: No such file or directory
https://bugzilla.redhat.com/show_bug.cgi?id=1411131
--------------------------------------------------------------------------------
================================================================================
rocksndiamonds-4.0.0.1-1.fc25 (FEDORA-2017-e3cf2fd48f)
Underground digging game
--------------------------------------------------------------------------------
Update Information:
Update to 4.0.0.1 (SDL2).
--------------------------------------------------------------------------------
================================================================================
slingshot-launcher-2.0.1-2.fc25 (FEDORA-2017-9d3bb89be1)
Lightweight and stylish app launcher
--------------------------------------------------------------------------------
Update Information:
This is a new package for f25 proper. It was previously available via my
elementary-stable COPR repository.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1412737 - Review Request: slingshot-launcher - Lightweight and stylish app
launcher
https://bugzilla.redhat.com/show_bug.cgi?id=1412737
--------------------------------------------------------------------------------
================================================================================
sway-0.11-5.fc25 (FEDORA-2017-43a398a2fc)
i3-compatible window manager for Wayland
--------------------------------------------------------------------------------
Update Information:
fix bug 1008
--------------------------------------------------------------------------------
================================================================================
systemd-231-11.fc25 (FEDORA-2017-32fddcfb44)
A System and Service Manager
--------------------------------------------------------------------------------
Update Information:
Fix missing systemd-nspawn manpage in systemd-container. (rhbz #1411269)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1411269 - the systemd-nspawn manpage is not installed (is not included in
binary package)
https://bugzilla.redhat.com/show_bug.cgi?id=1411269
--------------------------------------------------------------------------------
================================================================================
wordpress-4.7.1-1.fc25 (FEDORA-2017-e02ec160d8)
Blog tool and publishing platform
--------------------------------------------------------------------------------
Update Information:
**WordPress 4.7.1** Security and Maintenance Release This is a security release
for all previous versions and we strongly encourage you to update your sites
immediately. WordPress versions 4.7 and earlier are affected by eight security
issues: * Remote code execution (RCE) in PHPMailer ��� No specific issue
appears to affect WordPress or any of the major plugins we investigated but, out
of an abundance of caution, we updated PHPMailer in this release. This issue was
reported to PHPMailer by Dawid Golunski and Paul Buonopane. * The REST API
exposed user data for all users who had authored a post of a public post type.
WordPress 4.7.1 limits this to only post types which have specified that they
should be shown within the REST API. Reported by Krogsgard and Chris Jean. *
Cross-site scripting (XSS) via the plugin name or version header on update-
core.php. Reported by Dominik Schilling of the WordPress Security Team. *
Cross-site request forgery (CSRF) bypass via uploading a Flash file. Reported by
Abdullah Hussam. * Cross-site scripting (XSS) via theme name fallback.
Reported by Mehmet Ince. * Post via email checks
mail.example.com if default
settings aren���t changed. Reported by John Blackbourn of the WordPress Security
Team. * A cross-site request forgery (CSRF) was discovered in the
accessibility mode of widget editing. Reported by Ronnie Skansing. * Weak
cryptographic security for multisite activation key. Reported by Jack. Thank
you to the reporters for practicing responsible disclosure. In addition to the
security issues above, WordPress 4.7.1 fixes 62 bugs from 4.7. For more
information, see the [release
notes](https://codex.wordpress.org/Version_4.7.1)
or consult the [list of
changes](https://core.trac.wordpress.org/query?milestone=4.7.1).
--------------------------------------------------------------------------------
================================================================================
youtube-dl-2017.01.10-1.fc25 (FEDORA-2017-0cf46facbe)
A small command-line program to download online videos
--------------------------------------------------------------------------------
Update Information:
Update to new release to fix youtube support
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1412668 - youtube-dl: ERROR: Signature extraction failed
https://bugzilla.redhat.com/show_bug.cgi?id=1412668
[ 2 ] Bug #1409343 - youtube-dl-2017.01.10 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1409343
--------------------------------------------------------------------------------