The following Fedora 23 Security updates need testing:
Age URL
152
https://bodhi.fedoraproject.org/updates/FEDORA-2015-12739
python-kdcproxy-0.3.2-1.fc23
106
https://bodhi.fedoraproject.org/updates/FEDORA-2015-16240 nagios-4.0.8-1.fc23
92
https://bodhi.fedoraproject.org/updates/FEDORA-2015-dd52a54fa1
python-pymongo-3.0.3-1.fc23
92
https://bodhi.fedoraproject.org/updates/FEDORA-2015-c76c1c84cf
mod_nss-1.0.12-1.fc23
80
https://bodhi.fedoraproject.org/updates/FEDORA-2015-66439aa9e2
openstack-glance-2015.1.2-1.fc23
63
https://bodhi.fedoraproject.org/updates/FEDORA-2015-81ded368fe
miniupnpc-1.9-6.fc23
46
https://bodhi.fedoraproject.org/updates/FEDORA-2015-4ad4998d00
libpng-1.6.17-3.fc23
36
https://bodhi.fedoraproject.org/updates/FEDORA-2015-27392b3324
jbig2dec-0.12-2.fc23
35
https://bodhi.fedoraproject.org/updates/FEDORA-2015-28076d0830
thttpd-2.25b-35.fc23
35
https://bodhi.fedoraproject.org/updates/FEDORA-2015-06a7c972e8
thttpd-2.25b-36.fc23
27
https://bodhi.fedoraproject.org/updates/FEDORA-2015-abf9659276
php-PHPMailer-5.2.14-1.fc23
23
https://bodhi.fedoraproject.org/updates/FEDORA-2015-1c773e8702
shellinabox-2.19-1.fc23
10
https://bodhi.fedoraproject.org/updates/FEDORA-2015-247b517a18
bugzilla-4.4.11-1.fc23
6
https://bodhi.fedoraproject.org/updates/FEDORA-2015-6e299214b8
roundcubemail-1.1.4-2.fc23
2
https://bodhi.fedoraproject.org/updates/FEDORA-2015-aa3a69bdc3 kea-1.0.0-1.fc23
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-54f85ec6e8
nghttp2-1.6.0-1.fc23
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-e91ca003d4
openvpn-2.3.10-1.fc23
The following Fedora 23 Critical Path updates have yet to be approved:
Age URL
46
https://bodhi.fedoraproject.org/updates/FEDORA-2015-4ad4998d00
libpng-1.6.17-3.fc23
26
https://bodhi.fedoraproject.org/updates/FEDORA-2015-4a9c774398
bzip2-1.0.6-18.fc23
10
https://bodhi.fedoraproject.org/updates/FEDORA-2015-2ae867c402
NetworkManager-1.0.10-1.fc23 NetworkManager-fortisslvpn-1.0.8-1.fc23
NetworkManager-openconnect-1.0.8-1.fc23 NetworkManager-openswan-1.0.8-1.fc23
NetworkManager-openvpn-1.0.8-1.fc23 NetworkManager-vpnc-1.0.8-1.fc23
network-manager-applet-1.0.10-1.fc23
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-a3025d7c05
tigervnc-1.6.0-1.fc23
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-61b86643d4 glibc-2.22-7.fc23
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-41d91f9c64
httpd-2.4.18-1.fc23
The following builds have been pushed to Fedora 23 updates-testing
argus-3.0.8-4.fc23
ascend-0.9.10-5.20151003svn3100.fc23
blivet-gui-1.0.3-1.fc23
bombardier-0.8.3-1.fc23
glibc-2.22-7.fc23
gpaw-0.11.0.13004-18.fc23
gssdp-0.14.13-1.fc23
gupnp-0.20.15-1.fc23
httpd-2.4.18-1.fc23
libsigrok-0.3.0-4.fc23
mono-4.0.5-3.fc23
netresolve-0.0.1-0.10.20151111git.fc23
nghttp2-1.6.0-1.fc23
nodejs-fs2-0.2.3-1.fc23
octave-symbolic-2.2.4-3.fc23
ola-0.10.0-1.fc23
openpgpkey-milter-0.5-1.fc23
openvpn-2.3.10-1.fc23
perl-CPAN-Uploader-0.103012-1.fc23
perl-Crypt-ScryptKDF-0.010-1.fc23
perl-Net-GitHub-0.81-1.fc23
python-django-1.8.8-1.fc23
python-supersmoother-0.3.2-1.fc23
python-vxi11-0.8-1.fc23
rachota-2.3-10.20130104cvs.fc23
thunderbird-enigmail-1.8.2-4.fc23
tigervnc-1.6.0-1.fc23
viking-1.6.2-1.fc23
zaz-1.0.0-15.fc23
Details about builds:
================================================================================
argus-3.0.8-4.fc23 (FEDORA-2016-5416b72c53)
Network transaction audit tool
--------------------------------------------------------------------------------
Update Information:
Move from cron to logrotate.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1266304 - argus-3.0.8-3 /etc/cron.daily/argus sends error messages on each
cron.daily run
https://bugzilla.redhat.com/show_bug.cgi?id=1266304
--------------------------------------------------------------------------------
================================================================================
ascend-0.9.10-5.20151003svn3100.fc23 (FEDORA-2016-1ed082ae30)
ASCEND modelling environment
--------------------------------------------------------------------------------
Update Information:
- Pre-filtering removed
--------------------------------------------------------------------------------
================================================================================
blivet-gui-1.0.3-1.fc23 (FEDORA-2016-8a9237c084)
Tool for data storage configuration
--------------------------------------------------------------------------------
Update Information:
Fix visualization of raw format LUKS devices (#1288943) (vtrefny)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1288943 - [abrt] blivet-gui: AttributeError: 'NoneType' object has no
attribute 'format'
https://bugzilla.redhat.com/show_bug.cgi?id=1288943
[ 2 ] Bug #1286616 - [abrt] blivet-gui: AttributeError: 'BIOSBoot' object has no
attribute 'updateSizeInfo'
https://bugzilla.redhat.com/show_bug.cgi?id=1286616
--------------------------------------------------------------------------------
================================================================================
bombardier-0.8.3-1.fc23 (FEDORA-2016-a4947f241b)
The GNU Bombing utility
--------------------------------------------------------------------------------
Update Information:
Latest upstream.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1295157 - update 0.8.3
https://bugzilla.redhat.com/show_bug.cgi?id=1295157
--------------------------------------------------------------------------------
================================================================================
glibc-2.22-7.fc23 (FEDORA-2016-61b86643d4)
The GNU libc libraries
--------------------------------------------------------------------------------
Update Information:
This update fixes a bug where calling `fork` could hang when the process was
creating many threads concurrently to the `fork` operation.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1295189 - fork hangs after mallocs in multithreaded processes
https://bugzilla.redhat.com/show_bug.cgi?id=1295189
--------------------------------------------------------------------------------
================================================================================
gpaw-0.11.0.13004-18.fc23 (FEDORA-2016-c9c02fba95)
A grid-based real-space PAW method DFT code
--------------------------------------------------------------------------------
Update Information:
get rid of old mpich globals
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1291383 - gpaw FTBFS on aarch64
https://bugzilla.redhat.com/show_bug.cgi?id=1291383
--------------------------------------------------------------------------------
================================================================================
gssdp-0.14.13-1.fc23 (FEDORA-2016-65e20b5418)
Resource discovery and announcement over SSDP
--------------------------------------------------------------------------------
Update Information:
gssdp 0.14.13 and gupnp 0.20.15 releases
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1295019 - gupnp-0.20.15 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1295019
[ 2 ] Bug #1295022 - gssdp-0.14.13 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1295022
--------------------------------------------------------------------------------
================================================================================
gupnp-0.20.15-1.fc23 (FEDORA-2016-65e20b5418)
A framework for creating UPnP devices & control points
--------------------------------------------------------------------------------
Update Information:
gssdp 0.14.13 and gupnp 0.20.15 releases
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1295019 - gupnp-0.20.15 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1295019
[ 2 ] Bug #1295022 - gssdp-0.14.13 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1295022
--------------------------------------------------------------------------------
================================================================================
httpd-2.4.18-1.fc23 (FEDORA-2016-41d91f9c64)
Apache HTTP Server
--------------------------------------------------------------------------------
Update Information:
Update to new upstream version 2.4.18.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1290980 - httpd-2.4.18 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1290980
--------------------------------------------------------------------------------
================================================================================
libsigrok-0.3.0-4.fc23 (FEDORA-2016-e837dcccc6)
Basic hardware access drivers for logic analyzers
--------------------------------------------------------------------------------
Update Information:
Fix udev rules to use "uaccess" tag instead of "plugdev" group
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1270102 - udev rules need to be fixed (obsolete plugdev->uaccess tag)
https://bugzilla.redhat.com/show_bug.cgi?id=1270102
--------------------------------------------------------------------------------
================================================================================
mono-4.0.5-3.fc23 (FEDORA-2016-f2e62e4a3d)
Cross-platform, Open Source, .NET development framework
--------------------------------------------------------------------------------
Update Information:
apply patch to fix issues with libgdiplus.so.0 (#1251756)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1251756 - Missing dependency on /usr/lib/libgdiplus.so
https://bugzilla.redhat.com/show_bug.cgi?id=1251756
--------------------------------------------------------------------------------
================================================================================
netresolve-0.0.1-0.10.20151111git.fc23 (FEDORA-2016-48c471c774)
Generic name resolution library
--------------------------------------------------------------------------------
Update Information:
netresolve-0.0.1-0.10.20151111git.fc23
--------------------------------------------------------------------------------
================================================================================
nghttp2-1.6.0-1.fc23 (FEDORA-2016-54f85ec6e8)
Experimental HTTP/2 client, server and proxy
--------------------------------------------------------------------------------
Update Information:
- update to nghttp2-1.6.0 (fixes CVE-2015-8659)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1295351 - CVE-2015-8659 nghttp2: heap-use-after-free flaw in idle stream
handling code
https://bugzilla.redhat.com/show_bug.cgi?id=1295351
--------------------------------------------------------------------------------
================================================================================
nodejs-fs2-0.2.3-1.fc23 (FEDORA-2016-fa251adeb2)
Node.js fs (file system package) extensions
--------------------------------------------------------------------------------
Update Information:
Initial package
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1293058 - Review Request: nodejs-fs2 - Node.js fs (file system package)
extensions
https://bugzilla.redhat.com/show_bug.cgi?id=1293058
--------------------------------------------------------------------------------
================================================================================
octave-symbolic-2.2.4-3.fc23 (FEDORA-2016-73fa22ddc1)
Symbolic computations for Octave
--------------------------------------------------------------------------------
Update Information:
Should appear as an "Add-on" to Octave in Gnome Software
--------------------------------------------------------------------------------
================================================================================
ola-0.10.0-1.fc23 (FEDORA-2016-acb4ce1bb6)
Open Lighting Architecture
--------------------------------------------------------------------------------
Update Information:
This is a version upgrade from 0.9.8 to 0.10.0. For the full changelog look
[
here](https://github.com/OpenLightingProject/ola/releases/tag/0.10.0)
--------------------------------------------------------------------------------
================================================================================
openpgpkey-milter-0.5-1.fc23 (FEDORA-2016-c4df085e29)
OPENPGPKEY basd automatic encryption of emails using the milter API
--------------------------------------------------------------------------------
Update Information:
Updated to 0.5 which implements draft 06, uses lowercased LHS
--------------------------------------------------------------------------------
================================================================================
openvpn-2.3.10-1.fc23 (FEDORA-2016-e91ca003d4)
A full-featured SSL VPN solution
--------------------------------------------------------------------------------
Update Information:
https://community.openvpn.net/openvpn/wiki/ChangesInOpenvpn23
--------------------------------------------------------------------------------
================================================================================
perl-CPAN-Uploader-0.103012-1.fc23 (FEDORA-2016-526eb196d0)
Upload things to the CPAN
--------------------------------------------------------------------------------
Update Information:
A new version of CPAN::Uploader is available. This release fixes a warning
emitted when an undefined value was handled.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1295049 - perl-CPAN-Uploader-0.103012 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1295049
--------------------------------------------------------------------------------
================================================================================
perl-Crypt-ScryptKDF-0.010-1.fc23 (FEDORA-2016-4c738a5536)
Scrypt password based key derivation function
--------------------------------------------------------------------------------
Update Information:
Update to 0.010 version
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1287337 - perl-Crypt-ScryptKDF-0.010 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1287337
--------------------------------------------------------------------------------
================================================================================
perl-Net-GitHub-0.81-1.fc23 (FEDORA-2016-50e5fd23eb)
Perl interface for
github.com
--------------------------------------------------------------------------------
Update Information:
A new version of Net::GitHub is available. This release adds support for
repository stats.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1294485 - perl-Net-GitHub-0.81 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1294485
--------------------------------------------------------------------------------
================================================================================
python-django-1.8.8-1.fc23 (FEDORA-2016-d3fb80a7a5)
A high-level Python Web framework
--------------------------------------------------------------------------------
Update Information:
update to 1.8.8
--------------------------------------------------------------------------------
================================================================================
python-supersmoother-0.3.2-1.fc23 (FEDORA-2016-7b4e97d71f)
Python implementation of Friedman's Supersmoother
--------------------------------------------------------------------------------
Update Information:
Initial package
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1295237 - Review Request: python-supersmoother - Python implementation of
Friedman's Supersmoother
https://bugzilla.redhat.com/show_bug.cgi?id=1295237
--------------------------------------------------------------------------------
================================================================================
python-vxi11-0.8-1.fc23 (FEDORA-2016-c9ca26819f)
Python implementation of the VXI-11 protocol
--------------------------------------------------------------------------------
Update Information:
- New Python package
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1294277 - Review Request: python-vxi11 - Python implementation of the VXI-11
protocol
https://bugzilla.redhat.com/show_bug.cgi?id=1294277
--------------------------------------------------------------------------------
================================================================================
rachota-2.3-10.20130104cvs.fc23 (FEDORA-2016-bcd535f7ee)
Straightforward timetracking
--------------------------------------------------------------------------------
Update Information:
Fixed build failure due to doclint
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1239872 - rachota: FTBFS in rawhide
https://bugzilla.redhat.com/show_bug.cgi?id=1239872
--------------------------------------------------------------------------------
================================================================================
thunderbird-enigmail-1.8.2-4.fc23 (FEDORA-2016-c4b763efcf)
Authentication and encryption extension for Mozilla Thunderbird
--------------------------------------------------------------------------------
Update Information:
Include Appstream metadata for thunderbird-enigmail
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1267628 - [PATCH] Include Appstream metadata for thunderbird-enigmail
https://bugzilla.redhat.com/show_bug.cgi?id=1267628
--------------------------------------------------------------------------------
================================================================================
tigervnc-1.6.0-1.fc23 (FEDORA-2016-a3025d7c05)
A TigerVNC remote display system
--------------------------------------------------------------------------------
Update Information:
Tigervnc 1.6.0 release. See
https://github.com/TigerVNC/tigervnc/releases/tag/v1.6.0 for more information.
--------------------------------------------------------------------------------
================================================================================
viking-1.6.2-1.fc23 (FEDORA-2016-eda1ceb892)
GPS data editor and analyzer
--------------------------------------------------------------------------------
Update Information:
Update to new upstream version 1.6.2
--------------------------------------------------------------------------------
================================================================================
zaz-1.0.0-15.fc23 (FEDORA-2016-306922fcd4)
A puzzle game where the player has to arrange balls in triplets
--------------------------------------------------------------------------------
Update Information:
* Fixed upstream homepage * Added patches from Debian * Added man page from
Debian * Added appdata thanks to Richard Hughes (#1185980) * Added 128x128px
icon thanks to Zbigniew J��drzejewski-Szmek (#1185980)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1185980 - zaz: appdata file and icon
https://bugzilla.redhat.com/show_bug.cgi?id=1185980
--------------------------------------------------------------------------------