The following Fedora 24 Security updates need testing:
Age URL
145
https://bodhi.fedoraproject.org/updates/FEDORA-2016-32eaf0c41e redis-3.2.3-1.fc24
128
https://bodhi.fedoraproject.org/updates/FEDORA-2016-0ef628998f
chicken-4.11.0-3.fc24
79
https://bodhi.fedoraproject.org/updates/FEDORA-2016-990e2012ea
compat-guile18-1.8.8-14.fc24
42
https://bodhi.fedoraproject.org/updates/FEDORA-2016-93679a91df
jenkins-1.651.3-2.fc24 jenkins-remoting-2.62.3-1.fc24
15
https://bodhi.fedoraproject.org/updates/FEDORA-2016-a1f774c3d7
FlightGear-2016.1.2-5.fc24
12
https://bodhi.fedoraproject.org/updates/FEDORA-2016-d337166907
freeipa-4.3.2-4.fc24
12
https://bodhi.fedoraproject.org/updates/FEDORA-2016-3b7f39a8c1
openjpeg2-2.1.2-3.fc24
12
https://bodhi.fedoraproject.org/updates/FEDORA-2016-52a1b18397
mingw-openjpeg2-2.1.2-3.fc24
11
https://bodhi.fedoraproject.org/updates/FEDORA-2016-09dc3efcd2 samba-4.4.8-0.fc24
11
https://bodhi.fedoraproject.org/updates/FEDORA-2016-26f9817b08
squid-3.5.23-1.fc24
6
https://bodhi.fedoraproject.org/updates/FEDORA-2016-55f912fcdc
seamonkey-2.46-1.fc24
4
https://bodhi.fedoraproject.org/updates/FEDORA-2016-3b51e954fd
borgbackup-1.0.9-1.fc24
4
https://bodhi.fedoraproject.org/updates/FEDORA-2016-eaaa9c4a08 exim-4.87.1-1.fc24
1
https://bodhi.fedoraproject.org/updates/FEDORA-2016-0b6ee25a07
php-PHPMailer-5.2.21-1.fc24
1
https://bodhi.fedoraproject.org/updates/FEDORA-2016-c6ae9b6cf8 sway-0.11-4.fc24
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-76d9809fd4
w3m-0.5.3-27.git20161120.fc24
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-b65e546846
php-swiftmailer-5.4.5-1.fc24
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-1a7e14d084
libpng10-1.0.67-1.fc24
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-12c22499dd
libpng-1.6.27-1.fc24
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-0eb1d4ad19
mingw-libpng-1.6.27-1.fc24
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-fd44637912
bzip2-1.0.6-21.fc24
The following Fedora 24 Critical Path updates have yet to be approved:
Age URL
44
https://bodhi.fedoraproject.org/updates/FEDORA-2016-cddf0ec383
nss-3.27.0-1.3.fc24
24
https://bodhi.fedoraproject.org/updates/FEDORA-2016-90bd4d7d33
selinux-policy-3.13.1-191.23.fc24
12
https://bodhi.fedoraproject.org/updates/FEDORA-2016-0281ab71ff vim-8.0.134-2.fc24
12
https://bodhi.fedoraproject.org/updates/FEDORA-2016-ab5b9ae96b audit-2.7-1.fc24
12
https://bodhi.fedoraproject.org/updates/FEDORA-2016-8b3063d71c meson-0.36.0-4.fc24
redhat-rpm-config-42-2.fc24
11
https://bodhi.fedoraproject.org/updates/FEDORA-2016-09dc3efcd2 samba-4.4.8-0.fc24
11
https://bodhi.fedoraproject.org/updates/FEDORA-2016-85dffa754f
perl-5.22.2-365.fc24
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-fd44637912
bzip2-1.0.6-21.fc24
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-9992b4e054
desktop-file-utils-0.23-2.fc24
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-12c22499dd
libpng-1.6.27-1.fc24
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-1979eafeae
libgweather-3.20.4-1.fc24
The following builds have been pushed to Fedora 24 updates-testing
bird-1.6.3-1.fc24
bzip2-1.0.6-21.fc24
desktop-file-utils-0.23-2.fc24
hatari-2.0.0-4.fc24
python-jinja2-2.8.1-1.fc24
python-sphinx-1.4.8-2.fc24
rubygem-domain_name-0.5.20161129-1.fc24
rubygem-rake-compiler-1.0.3-1.fc24
Details about builds:
================================================================================
bird-1.6.3-1.fc24 (FEDORA-2016-0430dea01d)
BIRD Internet Routing Daemon
--------------------------------------------------------------------------------
Update Information:
BIRD 1.6.3 (2016-12-22) ======================= * Large BGP communities *
BFD authentication (MD5, SHA1) * SHA1 and SHA2 authentication for RIP and OSPF
* Improved documentation * Several bug fixes BIRD 1.6.2 (2016-09-29)
======================= * Fixes serious bug introduced in the previous
version BIRD 1.6.1 (2016-09-22) ======================= * Support for IPv6
ECMP * Better handling of IPv6 tentative addresses * Several updates and
fixes in Babel protocol * Filter: New !~ operator * Filter: ASN ranges in
bgpmask * KRT: New kernel protocol option 'metric' * KRT: New route
attribute 'krt_scope' * Improved BIRD help messages * Fixes memory leak in
BGP multipath * Fixes handling of empty path segments in BGP AS_PATH *
Several bug fixes
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1378434 - bird-1.6.3 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1378434
--------------------------------------------------------------------------------
================================================================================
bzip2-1.0.6-21.fc24 (FEDORA-2016-fd44637912)
A file compression utility
--------------------------------------------------------------------------------
Update Information:
CVE-2016-3189 bzip2: heap use after free in bzip2recover
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1348179 - CVE-2016-3189 bzip2: heap use after free in bzip2recover
[fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1348179
--------------------------------------------------------------------------------
================================================================================
desktop-file-utils-0.23-2.fc24 (FEDORA-2016-9992b4e054)
Utilities for manipulating .desktop files
--------------------------------------------------------------------------------
Update Information:
This update adds Pantheon to the list of valid desktop environments. (This
change was already accepted upstream and committed to the upstream git.)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1333550 - Pantheon not a valid "registered value" for desktop
environment
https://bugzilla.redhat.com/show_bug.cgi?id=1333550
--------------------------------------------------------------------------------
================================================================================
hatari-2.0.0-4.fc24 (FEDORA-2016-313293b569)
An Atari ST/STE/TT/Falcon emulator suitable for playing games
--------------------------------------------------------------------------------
Update Information:
* Support both hatari config file locations in hatariui * Support hatari v2.0
option changes in hatariui
--------------------------------------------------------------------------------
================================================================================
python-jinja2-2.8.1-1.fc24 (FEDORA-2016-f872680c5f)
General purpose template engine
--------------------------------------------------------------------------------
Update Information:
#### Jinja2 2.8.1 #### * Fixed the for_qs flag for urlencode. * Fixed
regression when applying int to non-string values. * SECURITY: if the sandbox
mode is used format expressions are now sandboxed with the same rules as in
Jinja. This solves various information leakage problems that can occur with
format strings.
--------------------------------------------------------------------------------
================================================================================
python-sphinx-1.4.8-2.fc24 (FEDORA-2016-cfda867334)
Python documentation generator
--------------------------------------------------------------------------------
Update Information:
Replaces use of alternatives with environment modules so that users do not need
root access to switch between python2 and python3 versions of the sphinx
programs.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1382405 - sphinx-quickstart not working. Alternatives is not the right
solution
https://bugzilla.redhat.com/show_bug.cgi?id=1382405
--------------------------------------------------------------------------------
================================================================================
rubygem-domain_name-0.5.20161129-1.fc24 (FEDORA-2016-23f9edd554)
Domain Name manipulation library for Ruby
--------------------------------------------------------------------------------
Update Information:
New version 0.5.20161129 is released.
--------------------------------------------------------------------------------
================================================================================
rubygem-rake-compiler-1.0.3-1.fc24 (FEDORA-2016-38982a7b6c)
Rake-based Ruby C Extension task generator
--------------------------------------------------------------------------------
Update Information:
New version 1.0.3 is released.
--------------------------------------------------------------------------------