The following Fedora 23 Security updates need testing:
Age URL
133
https://bodhi.fedoraproject.org/updates/FEDORA-2015-16240 nagios-4.0.8-1.fc23
91
https://bodhi.fedoraproject.org/updates/FEDORA-2015-81ded368fe
miniupnpc-1.9-6.fc23
64
https://bodhi.fedoraproject.org/updates/FEDORA-2015-27392b3324
jbig2dec-0.12-2.fc23
55
https://bodhi.fedoraproject.org/updates/FEDORA-2015-abf9659276
php-PHPMailer-5.2.14-1.fc23
14
https://bodhi.fedoraproject.org/updates/FEDORA-2015-dd52a54fa1
python-pymongo-3.0.3-1.fc23
14
https://bodhi.fedoraproject.org/updates/FEDORA-2015-06a7c972e8
thttpd-2.25b-37.fc23
8
https://bodhi.fedoraproject.org/updates/FEDORA-2016-2256c80a94
openstack-swift-2.3.0-3.fc23
6
https://bodhi.fedoraproject.org/updates/FEDORA-2016-fe5b9da308
openstack-heat-2015.1.2-2.fc23
5
https://bodhi.fedoraproject.org/updates/FEDORA-2016-25ab518a58
nodejs-is-my-json-valid-2.12.4-1.fc23
3
https://bodhi.fedoraproject.org/updates/FEDORA-2016-b02ad4e424
ecryptfs-utils-109-1.fc23
3
https://bodhi.fedoraproject.org/updates/FEDORA-2016-a69ee02554
xulrunner-44.0-1.fc23
3
https://bodhi.fedoraproject.org/updates/FEDORA-2016-5a5c85c5a8
prosody-0.9.10-1.fc23
1
https://bodhi.fedoraproject.org/updates/FEDORA-2016-e55278763e
phpMyAdmin-4.5.4.1-1.fc23
1
https://bodhi.fedoraproject.org/updates/FEDORA-2016-4509765b4b
gsi-openssh-7.1p2-2.fc23
1
https://bodhi.fedoraproject.org/updates/FEDORA-2016-2ec7f779f2
claws-mail-3.13.2-1.fc23
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-97002ad37b
rubygem-actionview-4.2.3-3.fc23
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-f486068393
rubygem-actionpack-4.2.3-4.fc23
The following Fedora 23 Critical Path updates have yet to be approved:
Age URL
3
https://bodhi.fedoraproject.org/updates/FEDORA-2016-a69ee02554
xulrunner-44.0-1.fc23
1
https://bodhi.fedoraproject.org/updates/FEDORA-2016-9f1ca30913
perl-IO-Socket-SSL-2.023-1.fc23
1
https://bodhi.fedoraproject.org/updates/FEDORA-2016-69c039b644 taglib-1.10-1.fc23
The following builds have been pushed to Fedora 23 updates-testing
boinc-client-7.2.42-8.gitdd0d630.fc23
boomaga-0.7.1-6.git9a6aa75.fc23
carbon-c-relay-1.7-1.fc23
lis-1.5.63-1.fc23
novprog-3.1.0-1.fc23
numptyphysics-0.4-0.9.20151231gitc0abd47.fc23
perl-Apache-LogFormat-Compiler-0.33-1.fc23
python-sqlacodegen-1.1.6-1.fc23
rubygem-actionpack-4.2.3-4.fc23
rubygem-actionview-4.2.3-3.fc23
simsu-1.3.2-1.fc23
Details about builds:
================================================================================
boinc-client-7.2.42-8.gitdd0d630.fc23 (FEDORA-2016-6295cd35af)
The BOINC client core
--------------------------------------------------------------------------------
Update Information:
Fixes #1192799 Directory is owned which shouldn't
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1192799 - Directory is owned which shouldn't
https://bugzilla.redhat.com/show_bug.cgi?id=1192799
--------------------------------------------------------------------------------
================================================================================
boomaga-0.7.1-6.git9a6aa75.fc23 (FEDORA-2016-8485a79b9e)
A virtual printer for viewing a document before printing
--------------------------------------------------------------------------------
Update Information:
- Dropped %%Patch0 - Update to new git version
--------------------------------------------------------------------------------
================================================================================
carbon-c-relay-1.7-1.fc23 (FEDORA-2016-d4c9ac1909)
Enhanced C implementation of Carbon relay, aggregator and rewriter
--------------------------------------------------------------------------------
Update Information:
Update to upstream 1.7
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1302471 - carbon-c-relay-v1.7 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1302471
--------------------------------------------------------------------------------
================================================================================
lis-1.5.63-1.fc23 (FEDORA-2016-3c19e71c94)
A library for solving linear equations and eigenvalue problems
--------------------------------------------------------------------------------
Update Information:
Update to 1.5.63 ---- Get rid of RPATHs
--------------------------------------------------------------------------------
================================================================================
novprog-3.1.0-1.fc23 (FEDORA-2016-1b77fd4629)
Tool to graph your progress in writing a NaNoWriMo style novel
--------------------------------------------------------------------------------
Update Information:
* New upstream version * FIXED: Compile error with Qt 5 * FIXED: Application
layout did not respect RTL languages * Added support for high DPI displays *
Improved Linux desktop integration * Translation updates: Greek, Hebrew,
Lithuanian
--------------------------------------------------------------------------------
================================================================================
numptyphysics-0.4-0.9.20151231gitc0abd47.fc23 (FEDORA-2016-0e9872fc8b)
A crayon-drawing based physics puzzle game
--------------------------------------------------------------------------------
Update Information:
Fix a crash on startup.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1299186 - [abrt] numptyphysics: std::__throw_out_of_range_fmt():
numptyphysics killed by SIGABRT
https://bugzilla.redhat.com/show_bug.cgi?id=1299186
--------------------------------------------------------------------------------
================================================================================
perl-Apache-LogFormat-Compiler-0.33-1.fc23 (FEDORA-2016-73288655c8)
Compile a log format string to perl-code
--------------------------------------------------------------------------------
Update Information:
--------------------------------------------------------------------------------
================================================================================
python-sqlacodegen-1.1.6-1.fc23 (FEDORA-2016-98950303d4)
Automatic model code generator for SQLAlchemy
--------------------------------------------------------------------------------
Update Information:
New package
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1302872 - Review Request: python-sqlacodegen - Automatic model code generator
for SQLAlchemy
https://bugzilla.redhat.com/show_bug.cgi?id=1302872
--------------------------------------------------------------------------------
================================================================================
rubygem-actionpack-4.2.3-4.fc23 (FEDORA-2016-f486068393)
Web-flow and rendering framework putting the VC in MVC
--------------------------------------------------------------------------------
Update Information:
Security fix for CVE-2015-7581 Security fix for CVE-2016-0751 Security fix for
CVE-2015-7576
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1301933 - CVE-2015-7576 rubygem-actionpack: Timing attack vulnerability in
basic authentication in Action Controller
https://bugzilla.redhat.com/show_bug.cgi?id=1301933
[ 2 ] Bug #1301946 - CVE-2016-0751 rubygem-actionpack: Possible Object Leak and Denial
of Service attack in Action Pack
https://bugzilla.redhat.com/show_bug.cgi?id=1301946
[ 3 ] Bug #1301981 - CVE-2015-7581 rubygem-actionpack: Object leak vulnerability for
wildcard controller routes in Action Pack
https://bugzilla.redhat.com/show_bug.cgi?id=1301981
--------------------------------------------------------------------------------
================================================================================
rubygem-actionview-4.2.3-3.fc23 (FEDORA-2016-97002ad37b)
Rendering framework putting the V in MVC (part of Rails)
--------------------------------------------------------------------------------
Update Information:
Security fix for CVE-2016-0752
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1301963 - CVE-2016-0752 rubygem-actionview: Possible Information Leak
Vulnerability in Action View
https://bugzilla.redhat.com/show_bug.cgi?id=1301963
--------------------------------------------------------------------------------
================================================================================
simsu-1.3.2-1.fc23 (FEDORA-2016-00b50e0a90)
Basic Sudoku game
--------------------------------------------------------------------------------
Update Information:
* New upstream version * FIXED: Switching keys was slow * FIXED: Moving focus
betweens cells was slow * FIXED: Success message was not high DPI * Translation
updates: Bulgarian, Catalan, German, Greek, Polish, Portuguese, Spanish
--------------------------------------------------------------------------------