The following Fedora 25 Security updates need testing:
Age URL
22
https://bodhi.fedoraproject.org/updates/FEDORA-2016-9b17661de5
jasper-1.900.1-33.fc25
9
https://bodhi.fedoraproject.org/updates/FEDORA-2016-9b3ed5f170
chicken-4.11.0-3.fc25
5
https://bodhi.fedoraproject.org/updates/FEDORA-2016-49e1e93a66
phpMyAdmin-4.6.4-2.fc25
5
https://bodhi.fedoraproject.org/updates/FEDORA-2016-9299ce1c7d
mediawiki-1.27.1-1.fc25
3
https://bodhi.fedoraproject.org/updates/FEDORA-2016-1b7e66c08b slock-1.3-2.fc25
2
https://bodhi.fedoraproject.org/updates/FEDORA-2016-385de3ac17
python-jwcrypto-0.3.2-1.fc25
2
https://bodhi.fedoraproject.org/updates/FEDORA-2016-03518b366b php-7.0.10-1.fc25
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-80a1d6211a
wordpress-4.6-2.fc25
The following Fedora 25 Critical Path updates have yet to be approved:
Age URL
22
https://bodhi.fedoraproject.org/updates/FEDORA-2016-d1392ad5ad nss-3.26.0-1.0.fc25
nss-softokn-3.26.0-1.0.fc25 nss-util-3.26.0-1.0.fc25
22
https://bodhi.fedoraproject.org/updates/FEDORA-2016-9b17661de5
jasper-1.900.1-33.fc25
9
https://bodhi.fedoraproject.org/updates/FEDORA-2016-37c9db36c2 dracut-044-77.fc25
9
https://bodhi.fedoraproject.org/updates/FEDORA-2016-cbdde50ec4
selinux-policy-3.13.1-211.fc25
7
https://bodhi.fedoraproject.org/updates/FEDORA-2016-5e40d80b1c
livecd-tools-23.4-1.fc25
7
https://bodhi.fedoraproject.org/updates/FEDORA-2016-4976a748a1
libtasn1-4.9-1.fc25
6
https://bodhi.fedoraproject.org/updates/FEDORA-2016-e4e1add318
pcmanfm-1.2.4-3.fc25
6
https://bodhi.fedoraproject.org/updates/FEDORA-2016-bf60f55f04
lxsession-0.5.2-11.D20160817git699c1695c2.fc25
5
https://bodhi.fedoraproject.org/updates/FEDORA-2016-66cab49b1f
gnutls-3.5.3-2.fc25
5
https://bodhi.fedoraproject.org/updates/FEDORA-2016-383ce09620
xorg-x11-xinit-1.3.4-12.fc25
3
https://bodhi.fedoraproject.org/updates/FEDORA-2016-caadc0de09 orc-0.4.26-1.fc25
3
https://bodhi.fedoraproject.org/updates/FEDORA-2016-29e8824407
libcdio-0.93-8.fc25
3
https://bodhi.fedoraproject.org/updates/FEDORA-2016-38e924ab91
libtdb-1.3.11-1.fc25
3
https://bodhi.fedoraproject.org/updates/FEDORA-2016-4f0cc1cc10 pcre-8.39-3.fc25
3
https://bodhi.fedoraproject.org/updates/FEDORA-2016-7f4512e707
iso-codes-3.70-1.fc25
2
https://bodhi.fedoraproject.org/updates/FEDORA-2016-1d85ca2583
xorg-x11-server-1.18.4-5.fc25
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-95013ec797 gcc-6.2.1-1.fc25
gcc-python-plugin-0.15-7.fc25 libtool-2.4.6-12.fc25
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-1791da4add
python-2.7.12-6.fc25
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-a697f807ad
libfm-1.2.4-7.D20160627git2a537414de.fc25
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-c1271b0fee systemd-231-4.fc25
The following builds have been pushed to Fedora 25 updates-testing
NetworkManager-sstp-1.2.0-1.fc25
acpica-tools-20160831-1.fc25
frama-c-1.13-3.fc25
gcc-6.2.1-1.fc25
gcc-python-plugin-0.15-7.fc25
ibus-typing-booster-1.5.3-1.fc25
icecat-45.3.0-0.3.beta.fc25
libtool-2.4.6-12.fc25
mame-0.177-1.fc25
mod_auth_cas-1.1-3.fc25
nagios-plugins-check-updates-1.6.18-2.fc25
nodejs-caller-path-2.0.0-1.fc25
nodejs-figures-1.7.0-2.fc25
nodejs-grunt-contrib-cssmin-0.14.0-4.fc25
nodejs-grunt-contrib-uglify-0.11.1-4.fc25
nodejs-grunt-lib-contrib-0.7.1-2.fc25
nodejs-maxmin-2.1.0-1.fc25
playonlinux-4.2.10-8.fc25
pluma-1.15.2-1.fc25
poedit-1.8.9-1.fc25
python-2.7.12-6.fc25
python-fadvise-5.0.0-1.fc25
python-scandir-1.3-1.fc25
python-sphinx-1.4.6-1.fc25
qmc2-0.67-1.fc25
why-2.35-18.fc25
why3-0.87.2-1.fc25
wordpress-4.6-2.fc25
Details about builds:
================================================================================
NetworkManager-sstp-1.2.0-1.fc25 (FEDORA-2016-dc25b53d8d)
NetworkManager VPN plugin for SSTP
--------------------------------------------------------------------------------
Update Information:
The first version in the official Fedora repository.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1229903 - Review Request: NetworkManager-sstp - NetworkManager VPN plugin for
SSTP
https://bugzilla.redhat.com/show_bug.cgi?id=1229903
--------------------------------------------------------------------------------
================================================================================
acpica-tools-20160831-1.fc25 (FEDORA-2016-8389220940)
ACPICA tools for the development and debug of ACPI tables
--------------------------------------------------------------------------------
Update Information:
## 20160831 Update * Fixes FTBFS on s390x (see Fedora#1365193). * Update to
latest upstream source (see Fedora#1361737 and Fedora#1372107) ### Upstream
Changelog for 20160831 31 August 2016. Summary of changes for version 20160831:
#### ACPICA kernel-resident subsystem: * Improve support for the so-called
"module-level code", which is defined to be math, logical and control AML
opcodes that appear outside of any control method. This change improves the
support by adding more opcodes that can be executed in the manner. Some other
issues have been solved, and the ASL grammar changes to support such code under
all scope operators (Device, etc.) are complete. Lv Zheng. * UEFI support:
these OSL functions have been implemented. This is an additional step toward
supporting the AcpiExec utility natively (with full hardware access) under UEFI.
Marcelo Ferreira. * AcpiOsReadPciConfiguration *
AcpiOsWritePciConfiguration * Fixed a possible mutex error during control
method auto-serialization. Lv Zheng. * Updated support for the Generic
Address Structure by fully implementing all GAS fields when a 32-bit address is
expanded to a 64-bit GAS. Lv Zheng. * Updated the return value for the
internal _OSI method. Instead of 0xFFFFFFFF, the "Ones" value is now returned,
which is 0xFFFFFFFFFFFFFFFF for 64-bit ACPI tables. This fixes an
incompatibility with other ACPI implementations, and will be reflected and
clarified in the next version of the ACPI specification. * Implemented two new
table events that can be passed to an ACPICA table handler. These events are
used to indicate a table installation or uninstallation. These events are used
in addition to existed table load and unload events. Lv Zheng. * Implemented a
cleanup for all internal string-to-integer conversions. Consolidate multiple
versions of this functionality and limit possible bases to either 10 or 16 to
simplify the code. Adds a new file, utstrtoul64. * Cleanup the inclusion order
of the various compiler-specific headers. This simplifies build configuration
management. The compiler-specific headers are now split out from the host-
specific headers. Lv Zheng. #### iASL Compiler/Disassembler and Tools: *
iASL/AcpiExec: Added a command line option to display the build date/time of the
tool (-vd). This can be useful to verify that the correct version of the tools
are being used. * AML Debugger: Implemented a new subcommand ("execute
predef") to execute all predefined control methods and names within the current
namespace. This can be useful for debugging problems with ACPI tables and the
ACPI namespace.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1361737 - acpica-tools-20160729 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1361737
[ 2 ] Bug #1365193 - [acpica-tools] error: cast from pointer to integer of different
size
https://bugzilla.redhat.com/show_bug.cgi?id=1365193
[ 3 ] Bug #1372107 - acpica-tools-20160831 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1372107
--------------------------------------------------------------------------------
================================================================================
frama-c-1.13-3.fc25 (FEDORA-2016-f85348b906)
Framework for source code analysis of C software
--------------------------------------------------------------------------------
Update Information:
Changes in why3 0.87.2: - improved well-formedness of extracted OCaml code -
assorted bug fixes Frama-C and why are just rebuilds to the updated why3
package.
--------------------------------------------------------------------------------
================================================================================
gcc-6.2.1-1.fc25 (FEDORA-2016-95013ec797)
Various compilers (C, C++, Objective-C, Java, ...)
--------------------------------------------------------------------------------
Update Information:
Fixed bugs (
http://gcc.gnu.org/PRNNNNN): 52746, 55922, 62171, 63151, 67410,
68273, 68542, 68724, 69223, 69281, 70040, 70524, 70677, 70709, 70778, 70842,
70895, 70940, 70955, 71014, 71042, 71077, 71083, 71123, 71151, 71216, 71338,
71350, 71512, 71576, 71630, 71700, 71728, 71738, 71748, 71795, 71807, 71833,
71869, 71881, 71883, 71906, 71910, 71913, 71936, 71953, 71964, 71972, 71976,
71981, 72103, 72415, 72457, 72698, 72744, 72765, 72767, 72800, 72802, 72805,
72816, 72819, 72824, 72843, 72851, 72853, 72863, 72866, 72867, 72868, 73142,
73434, 73456, 76342, 76490, 76783, 77034, 77259, 77270, 77279, 77281, 77334,
77352, 77358, 77363, 77374, 77377, 77395, 77403
--------------------------------------------------------------------------------
================================================================================
gcc-python-plugin-0.15-7.fc25 (FEDORA-2016-95013ec797)
GCC plugin that embeds Python
--------------------------------------------------------------------------------
Update Information:
Fixed bugs (
http://gcc.gnu.org/PRNNNNN): 52746, 55922, 62171, 63151, 67410,
68273, 68542, 68724, 69223, 69281, 70040, 70524, 70677, 70709, 70778, 70842,
70895, 70940, 70955, 71014, 71042, 71077, 71083, 71123, 71151, 71216, 71338,
71350, 71512, 71576, 71630, 71700, 71728, 71738, 71748, 71795, 71807, 71833,
71869, 71881, 71883, 71906, 71910, 71913, 71936, 71953, 71964, 71972, 71976,
71981, 72103, 72415, 72457, 72698, 72744, 72765, 72767, 72800, 72802, 72805,
72816, 72819, 72824, 72843, 72851, 72853, 72863, 72866, 72867, 72868, 73142,
73434, 73456, 76342, 76490, 76783, 77034, 77259, 77270, 77279, 77281, 77334,
77352, 77358, 77363, 77374, 77377, 77395, 77403
--------------------------------------------------------------------------------
================================================================================
ibus-typing-booster-1.5.3-1.fc25 (FEDORA-2016-2a29779919)
A typing booster engine for the IBus platform
--------------------------------------------------------------------------------
Update Information:
update to 1.5.3
--------------------------------------------------------------------------------
================================================================================
icecat-45.3.0-0.3.beta.fc25 (FEDORA-2016-ee5d106746)
GNU version of Firefox browser
--------------------------------------------------------------------------------
Update Information:
- Update desktop file's translations - Enable jemalloc ---- - Update to 45.3.0
(beta) - Drop old patches - Filtering private libraries - Disable optimization
on ARM
--------------------------------------------------------------------------------
================================================================================
libtool-2.4.6-12.fc25 (FEDORA-2016-95013ec797)
The GNU Portable Library Tool
--------------------------------------------------------------------------------
Update Information:
Fixed bugs (
http://gcc.gnu.org/PRNNNNN): 52746, 55922, 62171, 63151, 67410,
68273, 68542, 68724, 69223, 69281, 70040, 70524, 70677, 70709, 70778, 70842,
70895, 70940, 70955, 71014, 71042, 71077, 71083, 71123, 71151, 71216, 71338,
71350, 71512, 71576, 71630, 71700, 71728, 71738, 71748, 71795, 71807, 71833,
71869, 71881, 71883, 71906, 71910, 71913, 71936, 71953, 71964, 71972, 71976,
71981, 72103, 72415, 72457, 72698, 72744, 72765, 72767, 72800, 72802, 72805,
72816, 72819, 72824, 72843, 72851, 72853, 72863, 72866, 72867, 72868, 73142,
73434, 73456, 76342, 76490, 76783, 77034, 77259, 77270, 77279, 77281, 77334,
77352, 77358, 77363, 77374, 77377, 77395, 77403
--------------------------------------------------------------------------------
================================================================================
mame-0.177-1.fc25 (FEDORA-2016-8da1e4673c)
Multiple Arcade Machine Emulator
--------------------------------------------------------------------------------
Update Information:
An update to the latest mame release: *
http://mamedev.org/?p=430
--------------------------------------------------------------------------------
================================================================================
mod_auth_cas-1.1-3.fc25 (FEDORA-2016-fe566c7cc3)
Apache 2.2/2.4 compliant module that supports the CASv1 and CASv2 protocols
--------------------------------------------------------------------------------
Update Information:
Fix cache dir permissions issue, fix packaging for EPEL6.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #708550 - mod_auth_cas cannot be loaded after update to RHEL 6.1
https://bugzilla.redhat.com/show_bug.cgi?id=708550
[ 2 ] Bug #1368448 - Owner of cache directory
https://bugzilla.redhat.com/show_bug.cgi?id=1368448
--------------------------------------------------------------------------------
================================================================================
nagios-plugins-check-updates-1.6.18-2.fc25 (FEDORA-2016-ec86d04525)
A Nagios plugin to check if Red Hat or Fedora system is up-to-date
--------------------------------------------------------------------------------
Update Information:
Add missing requirement: perl(Monitoring::Plugin)
--------------------------------------------------------------------------------
================================================================================
nodejs-caller-path-2.0.0-1.fc25 (FEDORA-2016-85f0284e38)
Get the path of the caller module
--------------------------------------------------------------------------------
Update Information:
update to 2.0.0 release
--------------------------------------------------------------------------------
================================================================================
nodejs-figures-1.7.0-2.fc25 (FEDORA-2016-a192028863)
Unicode symbols with Windows CMD fallbacks
--------------------------------------------------------------------------------
Update Information:
Update to address items from package review
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1295295 - uglify task fails: An error occurred while processing a template:
<template function> has no method 'indexOf'
https://bugzilla.redhat.com/show_bug.cgi?id=1295295
--------------------------------------------------------------------------------
================================================================================
nodejs-grunt-contrib-cssmin-0.14.0-4.fc25 (FEDORA-2016-8b748dae8e)
Compress CSS files
--------------------------------------------------------------------------------
Update Information:
Update npm(maxmin) dependency
--------------------------------------------------------------------------------
================================================================================
nodejs-grunt-contrib-uglify-0.11.1-4.fc25 (FEDORA-2016-4461aff258)
Minify files with UglifyJS
--------------------------------------------------------------------------------
Update Information:
Update npm(maxmin) dependency
--------------------------------------------------------------------------------
================================================================================
nodejs-grunt-lib-contrib-0.7.1-2.fc25 (FEDORA-2016-39c0423532)
Common functionality shared across grunt-contrib tasks
--------------------------------------------------------------------------------
Update Information:
Fixdep maxmin and strip-path
--------------------------------------------------------------------------------
================================================================================
nodejs-maxmin-2.1.0-1.fc25 (FEDORA-2016-d6c3bb68a2)
Get pretty output of the original, minified gzipped size of a string/buffer
--------------------------------------------------------------------------------
Update Information:
Update to 2.1.0 upstream release
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1295295 - uglify task fails: An error occurred while processing a template:
<template function> has no method 'indexOf'
https://bugzilla.redhat.com/show_bug.cgi?id=1295295
--------------------------------------------------------------------------------
================================================================================
playonlinux-4.2.10-8.fc25 (FEDORA-2016-c17ee3ca29)
Graphical front-end for Wine
--------------------------------------------------------------------------------
Update Information:
Add new patch for the updated appdata.xml file
--------------------------------------------------------------------------------
================================================================================
pluma-1.15.2-1.fc25 (FEDORA-2016-0317a65651)
Text editor for the MATE desktop
--------------------------------------------------------------------------------
Update Information:
- update to 1.15.2 release
--------------------------------------------------------------------------------
================================================================================
poedit-1.8.9-1.fc25 (FEDORA-2016-2ba9ad9c41)
GUI editor for GNU gettext .po files
--------------------------------------------------------------------------------
Update Information:
* New upstream version * Added latest features to the appdata file: translation
hints, keywords, donations
--------------------------------------------------------------------------------
================================================================================
python-2.7.12-6.fc25 (FEDORA-2016-1791da4add)
An interpreted, interactive, object-oriented programming language
--------------------------------------------------------------------------------
Update Information:
Remove unversioned Obsoletes ---- Rebase rewheel patch so it applies properly
(rhbz#1372183)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1372183 - python-libs rewheel/__init__.py is missing last 15 lines
https://bugzilla.redhat.com/show_bug.cgi?id=1372183
--------------------------------------------------------------------------------
================================================================================
python-fadvise-5.0.0-1.fc25 (FEDORA-2016-d6fcbadcf1)
Python interface to posix_fadvise(2)
--------------------------------------------------------------------------------
Update Information:
Update to 5.0.0
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1361340 - Review Request: python-fadvise - Python interface to
posix_fadvise(2)
https://bugzilla.redhat.com/show_bug.cgi?id=1361340
--------------------------------------------------------------------------------
================================================================================
python-scandir-1.3-1.fc25 (FEDORA-2016-45c0c805ab)
A better directory iterator and faster os.walk() for Python
--------------------------------------------------------------------------------
Update Information:
Updated to 1.3 (bz#1370901)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1370901 - python-scandir-v1.3 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1370901
--------------------------------------------------------------------------------
================================================================================
python-sphinx-1.4.6-1.fc25 (FEDORA-2016-a721e79f06)
Python documentation generator
--------------------------------------------------------------------------------
Update Information:
Update to 1.4.6 (bz#1370810)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1370810 - python-sphinx-1.4.6 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1370810
--------------------------------------------------------------------------------
================================================================================
qmc2-0.67-1.fc25 (FEDORA-2016-55d2623125)
M.A.M.E. Catalog / Launcher II
--------------------------------------------------------------------------------
Update Information:
Update to the latest qmc2 release: *
http://qmc2.batcom-
it.net/index.php/2016/09/01/qmc2-0-67-released/#more-2355
--------------------------------------------------------------------------------
================================================================================
why-2.35-18.fc25 (FEDORA-2016-f85348b906)
Software verification platform
--------------------------------------------------------------------------------
Update Information:
Changes in why3 0.87.2: - improved well-formedness of extracted OCaml code -
assorted bug fixes Frama-C and why are just rebuilds to the updated why3
package.
--------------------------------------------------------------------------------
================================================================================
why3-0.87.2-1.fc25 (FEDORA-2016-f85348b906)
Software verification platform
--------------------------------------------------------------------------------
Update Information:
Changes in why3 0.87.2: - improved well-formedness of extracted OCaml code -
assorted bug fixes Frama-C and why are just rebuilds to the updated why3
package.
--------------------------------------------------------------------------------
================================================================================
wordpress-4.6-2.fc25 (FEDORA-2016-80a1d6211a)
Blog tool and publishing platform
--------------------------------------------------------------------------------
Update Information:
See upstream announcement: [WordPress 4.6
���Pepper���](https://wordpress.org/news/2016/08/pepper/)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1369119 - CVE-2016-6896 CVE-2016-6897 wordpress: Multiple vulnerabilities
fixed in wordpress 4.6
https://bugzilla.redhat.com/show_bug.cgi?id=1369119
--------------------------------------------------------------------------------