The following Fedora 22 Security updates need testing:
Age URL
261
https://bodhi.fedoraproject.org/updates/FEDORA-2015-5878
echoping-6.1-0.beta.r434svn.1.fc22
210
https://bodhi.fedoraproject.org/updates/FEDORA-2015-9185
ceph-deploy-1.5.25-1.fc22
143
https://bodhi.fedoraproject.org/updates/FEDORA-2015-12781
python-kdcproxy-0.3.2-1.fc22
127
https://bodhi.fedoraproject.org/updates/FEDORA-2015-1aee5e6f0b
conntrack-tools-1.4.2-9.fc22
97
https://bodhi.fedoraproject.org/updates/FEDORA-2015-16239 nagios-4.0.8-1.fc22
91
https://bodhi.fedoraproject.org/updates/FEDORA-2015-05490fc42d
squid-3.4.13-3.fc22
85
https://bodhi.fedoraproject.org/updates/FEDORA-2015-2d37e7dacf
openstack-swift-2.2.0-6.fc22
84
https://bodhi.fedoraproject.org/updates/FEDORA-2015-3e4043f088
python-pymongo-3.0.3-1.fc22
61
https://bodhi.fedoraproject.org/updates/FEDORA-2015-de44abca87
ntp-4.2.6p5-34.fc22
55
https://bodhi.fedoraproject.org/updates/FEDORA-2015-0552500cd7
python-pygments-2.0.2-3.fc22
55
https://bodhi.fedoraproject.org/updates/FEDORA-2015-9039c25f1d
miniupnpc-1.9-6.fc22
37
https://bodhi.fedoraproject.org/updates/FEDORA-2015-7dfbe09bb4
libpng-1.6.16-4.fc22
37
https://bodhi.fedoraproject.org/updates/FEDORA-2015-6c07ab1fa6
libpng-1.6.16-5.fc22
30
https://bodhi.fedoraproject.org/updates/FEDORA-2015-8413bdd343 abrt-2.6.1-7.fc22
27
https://bodhi.fedoraproject.org/updates/FEDORA-2015-f683150aa0
thttpd-2.25b-36.fc22
23
https://bodhi.fedoraproject.org/updates/FEDORA-2015-6d64c257cf
thunderbird-38.4.0-1.fc22
19
https://bodhi.fedoraproject.org/updates/FEDORA-2015-3a5cebb105
ImageMagick-6.9.2.7-1.fc22
19
https://bodhi.fedoraproject.org/updates/FEDORA-2015-39522bb8c9
php-PHPMailer-5.2.14-1.fc22
18
https://bodhi.fedoraproject.org/updates/FEDORA-2015-686f289aa5 qemu-2.3.1-8.fc22
18
https://bodhi.fedoraproject.org/updates/FEDORA-2015-233750b6ab
libpng15-1.5.25-1.fc22
15
https://bodhi.fedoraproject.org/updates/FEDORA-2015-8dd01b09a9
arts-1.5.10-30.fc22
15
https://bodhi.fedoraproject.org/updates/FEDORA-2015-2f4b92ed2e
kdelibs3-3.5.10-71.fc22
14
https://bodhi.fedoraproject.org/updates/FEDORA-2015-463143720f
shellinabox-2.19-1.fc22
13
https://bodhi.fedoraproject.org/updates/FEDORA-2015-20df66892b
gwenhywfar-4.13.1-5.fc22
10
https://bodhi.fedoraproject.org/updates/FEDORA-2015-998911cf3f
cups-filters-1.4.0-1.fc22
9
https://bodhi.fedoraproject.org/updates/FEDORA-2015-6efa349a85
subversion-1.8.15-1.fc22
9
https://bodhi.fedoraproject.org/updates/FEDORA-2015-e278e12ebc dhcp-4.3.2-6.fc22
bind99-9.9.8-1.P2.fc22
8
https://bodhi.fedoraproject.org/updates/FEDORA-2015-0be7a2e1b8
libsndfile-1.0.25-18.fc22
4
https://bodhi.fedoraproject.org/updates/FEDORA-2015-d799a5e72b
php-horde-Horde-Core-2.22.4-1.fc22 php-horde-Horde-Perms-2.1.6-1.fc22
php-horde-Horde-Service-Weather-2.3.1-1.fc22
4
https://bodhi.fedoraproject.org/updates/FEDORA-2015-323274d412
python-django-1.8.7-1.fc22
4
https://bodhi.fedoraproject.org/updates/FEDORA-2015-eb896290d3 pcre-8.38-1.fc22
4
https://bodhi.fedoraproject.org/updates/FEDORA-2015-0a543024bf
libpng10-1.0.66-1.fc22
4
https://bodhi.fedoraproject.org/updates/FEDORA-2015-b9e4c97ff1 sos-3.2-2.fc22
4
https://bodhi.fedoraproject.org/updates/FEDORA-2015-c44bd3e0fa xen-4.5.2-6.fc22
4
https://bodhi.fedoraproject.org/updates/FEDORA-2015-ac8100927a
libpng12-1.2.56-1.fc22
4
https://bodhi.fedoraproject.org/updates/FEDORA-2015-938c70c840
jenkins-1.609.3-5.fc22
0
https://bodhi.fedoraproject.org/updates/FEDORA-2015-7d95466eda
bouncycastle-1.50-8.fc22
0
https://bodhi.fedoraproject.org/updates/FEDORA-2015-3a073171c3
claws-mail-3.13.1-4.fc22
0
https://bodhi.fedoraproject.org/updates/FEDORA-2015-d423b3276f
mingw-giflib-5.0.5-4.fc22
The following Fedora 22 Critical Path updates have yet to be approved:
Age URL
136
https://bodhi.fedoraproject.org/updates/FEDORA-2015-13210 yum-3.4.3-508.fc22
122
https://bodhi.fedoraproject.org/updates/FEDORA-2015-14218 xulrunner-40.0-1.fc22
55
https://bodhi.fedoraproject.org/updates/FEDORA-2015-2123de044f
libgphoto2-2.5.8-1.fc22
51
https://bodhi.fedoraproject.org/updates/FEDORA-2015-48f718ed1b vim-7.4.909-1.fc22
48
https://bodhi.fedoraproject.org/updates/FEDORA-2015-069fea7e6b
livecd-tools-22.3-1.fc22
37
https://bodhi.fedoraproject.org/updates/FEDORA-2015-6c07ab1fa6
libpng-1.6.16-5.fc22
37
https://bodhi.fedoraproject.org/updates/FEDORA-2015-7dfbe09bb4
libpng-1.6.16-4.fc22
23
https://bodhi.fedoraproject.org/updates/FEDORA-2015-6d64c257cf
thunderbird-38.4.0-1.fc22
17
https://bodhi.fedoraproject.org/updates/FEDORA-2015-3c934e07c3
kdelibs-4.14.14-4.fc22
17
https://bodhi.fedoraproject.org/updates/FEDORA-2015-8083abc683
selinux-policy-3.13.1-128.22.fc22
15
https://bodhi.fedoraproject.org/updates/FEDORA-2015-473007accf
util-linux-2.26.2-4.fc22
14
https://bodhi.fedoraproject.org/updates/FEDORA-2015-d68f8a1cba lua-5.3.2-2.fc22
9
https://bodhi.fedoraproject.org/updates/FEDORA-2015-e278e12ebc dhcp-4.3.2-6.fc22
bind99-9.9.8-1.P2.fc22
8
https://bodhi.fedoraproject.org/updates/FEDORA-2015-0be7a2e1b8
libsndfile-1.0.25-18.fc22
8
https://bodhi.fedoraproject.org/updates/FEDORA-2015-70703562be
libass-0.13.1-1.fc22
4
https://bodhi.fedoraproject.org/updates/FEDORA-2015-4f47edb066
gnupg-1.4.20-1.fc22
4
https://bodhi.fedoraproject.org/updates/FEDORA-2015-c48d0abc71
sqlite-3.9.2-1.fc22
4
https://bodhi.fedoraproject.org/updates/FEDORA-2015-ffde97af06 audit-2.4.5-1.fc22
4
https://bodhi.fedoraproject.org/updates/FEDORA-2015-f1e8f462c2
konsole-4.14.3-10.fc22
4
https://bodhi.fedoraproject.org/updates/FEDORA-2015-68f4868a14
kate-15.08.3-3.fc22
4
https://bodhi.fedoraproject.org/updates/FEDORA-2015-2e21b2b270
linux-firmware-20151214-60.gitbbe4917c.fc22
4
https://bodhi.fedoraproject.org/updates/FEDORA-2015-eb896290d3 pcre-8.38-1.fc22
4
https://bodhi.fedoraproject.org/updates/FEDORA-2015-9cf3a4375d
breeze-icon-theme-5.17.0-1.fc22 extra-cmake-modules-5.17.0-1.fc22
kapptemplate-15.12.0-1.fc22 kdeplasma-addons-5.5.0-3.fc22 kf5-5.17.0-1.fc22
kf5-attica-5.17.0-1.fc22 kf5-baloo-5.17.0-1.fc22 kf5-bluez-qt-5.17.0-1.fc22
kf5-frameworkintegration-5.17.0-1.fc22 kf5-kactivities-5.17.0-1.fc22
kf5-kapidox-5.17.0-1.fc22 kf5-karchive-5.17.0-1.fc22 kf5-kauth-5.17.0-1.fc22
kf5-kbookmarks-5.17.0-1.fc22 kf5-kcmutils-5.17.0-1.fc22 kf5-kcodecs-5.17.0-1.fc22
kf5-kcompletion-5.17.0-1.fc22 kf5-kconfig-5.17.0-1.fc22 kf5-kconfigwidgets-5.17.0-1.fc22
kf5-kcoreaddons-5.17.0-1.fc22 kf5-kcrash-5.17.0-1.fc22 kf5-kdbusaddons-5.17.0-1.fc22
kf5-kdeclarative-5.17.0-1.fc22 kf5-kded-5.17.0-1.fc22 kf5-kdelibs4support-5.17.0-1.fc22
kf5-kdesignerplugin-5.17.0-1.fc22 kf5-kdesu-5.17.0-1.fc22 kf5-kdewebkit-5.17.0-1.fc22
kf5-kdnssd-5.17.0-1.fc22 kf5-kdoctools-5.17.0-1.fc22 kf5-kemoticons-5.17.0-1.fc22
kf5-kfilemetadata-5.17.0-1.fc22 kf5-kglobal
accel-5.
17.0-1.fc22 kf5-kguiaddons-5.17.0-1.fc22 kf5-khtml-5.17.0-1.fc22 kf5-ki18n-5.17.0-1.fc22
kf5-kiconthemes-5.17.0-1.fc22 kf5-kidletime-5.17.0-1.fc22 kf5-kimageformats-5.17.0-1.fc22
kf5-kinit-5.17.0-1.fc22 kf5-kio-5.17.0-2.fc22 kf5-kitemmodels-5.17.0-1.fc22
kf5-kitemviews-5.17.0-1.fc22 kf5-kjobwidgets-5.17.0-1.fc22 kf5-kjs-5.17.0-1.fc22
kf5-kjsembed-5.17.0-1.fc22 kf5-kmediaplayer-5.17.0-1.fc22 kf5-knewstuff-5.17.0-1.fc22
kf5-knotifications-5.17.0-1.fc22 kf5-knotifyconfig-5.17.0-1.fc22
kf5-kpackage-5.17.0-1.fc22 kf5-kparts-5.17.0-1.fc22 kf5-kpeople-5.17.0-1.fc22
kf5-kplotting-5.17.0-1.fc22 kf5-kpty-5.17.0-1.fc22 kf5-kross-5.17.0-1.fc22
kf5-krunner-5.17.0-1.fc22 kf5-kservice-5.17.0-2.fc22 kf5-ktexteditor-5.17.0-1.fc22
kf5-ktextwidgets-5.17.0-1.fc22 kf5-kunitconversion-5.17.0-1.fc22 kf5-kwallet-5.17.0-1.fc22
kf5-kwidgetsaddons-5.17.0-1.fc22 kf5-kwindowsystem-5.17.0-1.fc22 kf5-kxmlgui-5.17.0-1.fc22
kf5-kxmlrpcclient-5.17.0-1.fc22 kf5-modemmanager-qt-5.17.0-1.fc22 kf5-networkmanager
-qt-5.17
.0-1.fc22 kf5-plasma-5.17.0-2.fc22 kf5-solid-5.17.0-1.fc22 kf5-sonnet-5.17.0-1.fc22
kf5-threadweaver-5.17.0-1.fc22 oxygen-icon-theme-5.17.0-1.fc22
0
https://bodhi.fedoraproject.org/updates/FEDORA-2015-95d1b16c34
libassuan-2.4.2-1.fc22
0
https://bodhi.fedoraproject.org/updates/FEDORA-2015-9f3e0bc76d
libgpg-error-1.21-1.fc22
The following builds have been pushed to Fedora 22 updates-testing
anki-2.0.33-1.fc22
blt-2.4-47.z.fc22
bouncycastle-1.50-8.fc22
claws-mail-3.13.1-4.fc22
java-1.8.0-openjdk-1.8.0.65-14.b17.fc22
kopete-15.08.3-1.fc22
libassuan-2.4.2-1.fc22
libgpg-error-1.21-1.fc22
libinput-1.1.4-1.fc22
mingw-giflib-5.0.5-4.fc22
perl-Module-CoreList-5.20151220-1.fc22
python-pbr-0.10.8-2.fc22
qxmpp-0.9.3-1.fc22
tlsdate-0.0.13-1.fc22
Details about builds:
================================================================================
anki-2.0.33-1.fc22 (FEDORA-2015-944414fbba)
Flashcard program for using space repetition learning
--------------------------------------------------------------------------------
Update Information:
Update to new bugfix upstream release 2.0.33. Please see
http://www.ankisrs.net/docs/changes.html for details.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1270574 - anki-2.0.33 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1270574
--------------------------------------------------------------------------------
================================================================================
blt-2.4-47.z.fc22 (FEDORA-2015-6ec19b0161)
Widget extension to the Tcl/Tk scripting language
--------------------------------------------------------------------------------
Update Information:
- Make -doc noarch and not to require the main package. - Add Require to -devel:
tcl-devel. - "define" -> "global".
--------------------------------------------------------------------------------
================================================================================
bouncycastle-1.50-8.fc22 (FEDORA-2015-7d95466eda)
Bouncy Castle Crypto Package for Java
--------------------------------------------------------------------------------
Update Information:
Security fix for CVE-2015-7940
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1276272 - CVE-2015-7940 bouncycastle: Invalid curve attack allowing to
extract private keys
https://bugzilla.redhat.com/show_bug.cgi?id=1276272
--------------------------------------------------------------------------------
================================================================================
claws-mail-3.13.1-4.fc22 (FEDORA-2015-3a073171c3)
Email client and news reader based on GTK+
--------------------------------------------------------------------------------
Update Information:
Update from 3.12.0 to 3.13.1 for bug-fixes. Includes security fix for
CVE-2015-8614.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1293579 - CVE-2015-8614 claws-mail: Stack overflow in
conv_{jistoeuc,euctojis,sjistoeuc}
https://bugzilla.redhat.com/show_bug.cgi?id=1293579
--------------------------------------------------------------------------------
================================================================================
java-1.8.0-openjdk-1.8.0.65-14.b17.fc22 (FEDORA-2015-bde689eb98)
OpenJDK Runtime Environment
--------------------------------------------------------------------------------
Update Information:
sync with f23
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1290936 - Zero JVM on arm fails to initialize after hardened-build
https://bugzilla.redhat.com/show_bug.cgi?id=1290936
--------------------------------------------------------------------------------
================================================================================
kopete-15.08.3-1.fc22 (FEDORA-2015-23d5ef1e24)
Instant messenger
--------------------------------------------------------------------------------
Update Information:
Newer release, omit skype buttons plugin that can cause crashes.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1262715 - Kopete ships skypebuttons browser plugin that crashes Qt5WebKit -
[abrt] qt5-qtwebkit: _GLOBAL__sub_I_qprinterinfo.cpp(): QtWebPluginProcess killed by
SIGSEGV
https://bugzilla.redhat.com/show_bug.cgi?id=1262715
--------------------------------------------------------------------------------
================================================================================
libassuan-2.4.2-1.fc22 (FEDORA-2015-95d1b16c34)
GnuPG IPC library
--------------------------------------------------------------------------------
Update Information:
Update from upstream adding new API needed for new GnuPG.
--------------------------------------------------------------------------------
================================================================================
libgpg-error-1.21-1.fc22 (FEDORA-2015-9f3e0bc76d)
Library for error values used by GnuPG components
--------------------------------------------------------------------------------
Update Information:
Minor update from upstream
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1214910 - Multi-arch conflict for gpg-error.h in devel packages
https://bugzilla.redhat.com/show_bug.cgi?id=1214910
--------------------------------------------------------------------------------
================================================================================
libinput-1.1.4-1.fc22 (FEDORA-2015-b6079f1f7e)
Input device library
--------------------------------------------------------------------------------
Update Information:
libinput 1.1.4, drain the device fd of events after opening the device ----
libinput 1.1.3
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1264453 - Thinkpad X220 touchpad movement is jumpy and extremely imprecise
https://bugzilla.redhat.com/show_bug.cgi?id=1264453
--------------------------------------------------------------------------------
================================================================================
mingw-giflib-5.0.5-4.fc22 (FEDORA-2015-d423b3276f)
MinGW Windows giflib library
--------------------------------------------------------------------------------
Update Information:
Security fix for CVE-2015-7555.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1293372 - CVE-2015-7555 mingw-giflib: giflib: Heap-based buffer overflow in
giffix utility [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1293372
--------------------------------------------------------------------------------
================================================================================
perl-Module-CoreList-5.20151220-1.fc22 (FEDORA-2015-a7856de2d7)
What modules are shipped with versions of perl
--------------------------------------------------------------------------------
Update Information:
Update to the latest version
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1293613 - perl-Module-CoreList-5.20151220 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1293613
--------------------------------------------------------------------------------
================================================================================
python-pbr-0.10.8-2.fc22 (FEDORA-2015-6fd63a7773)
Python Build Reasonableness
--------------------------------------------------------------------------------
Update Information:
add requirement to python-testrepository (rhbz#1293605)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1293605 - missing dependency on the python-testrepo
https://bugzilla.redhat.com/show_bug.cgi?id=1293605
--------------------------------------------------------------------------------
================================================================================
qxmpp-0.9.3-1.fc22 (FEDORA-2015-08d8162c4b)
Qt XMPP Library
--------------------------------------------------------------------------------
Update Information:
v0.9.3
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1288271 - qxmpp-v0.9.3 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1288271
--------------------------------------------------------------------------------
================================================================================
tlsdate-0.0.13-1.fc22 (FEDORA-2015-f9908796b8)
Secure parasitic rdate replacement
--------------------------------------------------------------------------------
Update Information:
Initial release
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #969723 - Review Request: tlsdate - Secure parasitic rdate replacement
https://bugzilla.redhat.com/show_bug.cgi?id=969723
--------------------------------------------------------------------------------