The following Fedora 22 Security updates need testing:
Age URL
300
https://bodhi.fedoraproject.org/updates/FEDORA-2015-5878
echoping-6.1-0.beta.r434svn.1.fc22
249
https://bodhi.fedoraproject.org/updates/FEDORA-2015-9185
ceph-deploy-1.5.25-1.fc22
182
https://bodhi.fedoraproject.org/updates/FEDORA-2015-12781
python-kdcproxy-0.3.2-1.fc22
136
https://bodhi.fedoraproject.org/updates/FEDORA-2015-16239 nagios-4.0.8-1.fc22
130
https://bodhi.fedoraproject.org/updates/FEDORA-2015-05490fc42d
squid-3.4.13-3.fc22
124
https://bodhi.fedoraproject.org/updates/FEDORA-2015-2d37e7dacf
openstack-swift-2.2.0-6.fc22
94
https://bodhi.fedoraproject.org/updates/FEDORA-2015-0552500cd7
python-pygments-2.0.2-3.fc22
94
https://bodhi.fedoraproject.org/updates/FEDORA-2015-9039c25f1d
miniupnpc-1.9-6.fc22
76
https://bodhi.fedoraproject.org/updates/FEDORA-2015-7dfbe09bb4
libpng-1.6.16-4.fc22
76
https://bodhi.fedoraproject.org/updates/FEDORA-2015-6c07ab1fa6
libpng-1.6.16-5.fc22
58
https://bodhi.fedoraproject.org/updates/FEDORA-2015-3a5cebb105
ImageMagick-6.9.2.7-1.fc22
58
https://bodhi.fedoraproject.org/updates/FEDORA-2015-39522bb8c9
php-PHPMailer-5.2.14-1.fc22
48
https://bodhi.fedoraproject.org/updates/FEDORA-2015-6efa349a85
subversion-1.8.15-1.fc22
43
https://bodhi.fedoraproject.org/updates/FEDORA-2015-b9e4c97ff1 sos-3.2-2.fc22
17
https://bodhi.fedoraproject.org/updates/FEDORA-2015-f683150aa0
thttpd-2.25b-37.fc22
11
https://bodhi.fedoraproject.org/updates/FEDORA-2016-1323b9078a
bind99-9.9.8-2.P3.fc22
11
https://bodhi.fedoraproject.org/updates/FEDORA-2016-34bc10a2c8
ntp-4.2.6p5-36.fc22
8
https://bodhi.fedoraproject.org/updates/FEDORA-2016-3c0b37e056
imlib2-1.4.7-1.fc22
8
https://bodhi.fedoraproject.org/updates/FEDORA-2016-54dcc5d1bf
389-ds-base-1.3.4.7-1.fc22
5
https://bodhi.fedoraproject.org/updates/FEDORA-2016-bf03932bb3 nginx-1.8.1-1.fc22
5
https://bodhi.fedoraproject.org/updates/FEDORA-2016-7b9a2fe987
ecryptfs-utils-109-1.fc22
5
https://bodhi.fedoraproject.org/updates/FEDORA-2016-4c57c232c0
xulrunner-44.0-1.fc22
5
https://bodhi.fedoraproject.org/updates/FEDORA-2016-35492207cb
krb5-1.13.2-13.fc22
4
https://bodhi.fedoraproject.org/updates/FEDORA-2016-b211281b8e
claws-mail-3.13.2-1.fc22
1
https://bodhi.fedoraproject.org/updates/FEDORA-2016-143a48536c
webkitgtk4-2.10.7-1.fc22
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-3441e9da2f
nodejs-is-my-json-valid-2.12.4-1.fc22
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-52b294538d
python-pymongo-2.5.2-8.fc22
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-9d0a25ea07
wordpress-4.4.2-1.fc22
The following Fedora 22 Critical Path updates have yet to be approved:
Age URL
175
https://bodhi.fedoraproject.org/updates/FEDORA-2015-13210 yum-3.4.3-508.fc22
94
https://bodhi.fedoraproject.org/updates/FEDORA-2015-2123de044f
libgphoto2-2.5.8-1.fc22
90
https://bodhi.fedoraproject.org/updates/FEDORA-2015-48f718ed1b vim-7.4.909-1.fc22
87
https://bodhi.fedoraproject.org/updates/FEDORA-2015-069fea7e6b
livecd-tools-22.3-1.fc22
76
https://bodhi.fedoraproject.org/updates/FEDORA-2015-6c07ab1fa6
libpng-1.6.16-5.fc22
76
https://bodhi.fedoraproject.org/updates/FEDORA-2015-7dfbe09bb4
libpng-1.6.16-4.fc22
30
https://bodhi.fedoraproject.org/updates/FEDORA-2016-46b611abb8
httpd-2.4.18-1.fc22
14
https://bodhi.fedoraproject.org/updates/FEDORA-2016-825869e1a4
selinux-policy-3.13.1-128.25.fc22
10
https://bodhi.fedoraproject.org/updates/FEDORA-2016-196966efc2
spatialite-tools-4.2.0-19.fc22 sqlite-3.10.2-1.fc22
8
https://bodhi.fedoraproject.org/updates/FEDORA-2016-3c0b37e056
imlib2-1.4.7-1.fc22
8
https://bodhi.fedoraproject.org/updates/FEDORA-2016-35e3877a89
elfutils-0.165-2.fc22
8
https://bodhi.fedoraproject.org/updates/FEDORA-2016-3b8e5e8781
dnsmasq-2.75-3.fc22
6
https://bodhi.fedoraproject.org/updates/FEDORA-2016-6427e041df
libgdata-0.17.4-2.fc22
5
https://bodhi.fedoraproject.org/updates/FEDORA-2016-35492207cb
krb5-1.13.2-13.fc22
5
https://bodhi.fedoraproject.org/updates/FEDORA-2016-4c57c232c0
xulrunner-44.0-1.fc22
1
https://bodhi.fedoraproject.org/updates/FEDORA-2016-21424484be
pixman-0.34.0-1.fc22
1
https://bodhi.fedoraproject.org/updates/FEDORA-2016-16a5625f33
kernel-4.3.5-200.fc22
1
https://bodhi.fedoraproject.org/updates/FEDORA-2016-9e8671afca
gammaray-2.4.0-1.fc22 qt-4.8.7-4.fc22
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-d5fbc3b7eb
gnutls-3.3.21-1.fc22
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-d73684df54
firefox-44.0-5.fc22
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-d3fce30d64
mobile-broadband-provider-info-1.20151214-1.fc22
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-de4d7b3b1f abrt-2.6.1-8.fc22
libreport-2.6.4-1.fc22
The following builds have been pushed to Fedora 22 updates-testing
abrt-2.6.1-8.fc22
clufter-0.56.0-1.fc22
copr-cli-1.47-1.fc22
csmock-1.9.0-1.fc22
cswrap-1.3.1-1.fc22
distribution-gpg-keys-1.3-1.fc22
dnf-1.1.6-2.fc22
dnf-plugins-core-0.1.16-1.fc22
firefox-44.0-5.fc22
frescobaldi-2.18.2-1.fc22
gnutls-3.3.21-1.fc22
hamster-time-tracker-2.0-0.2.rc1.fc22
libreport-2.6.4-1.fc22
lxqt-common-0.10.0-8.fc22
megatools-1.9.97-1.fc22
mobile-broadband-provider-info-1.20151214-1.fc22
msgpuck-1.0.2-1.fc22
nodejs-is-my-json-valid-2.12.4-1.fc22
openstack-ceilometer-2014.2.4-1.fc22
openstack-cinder-2014.2.4-1.fc22
openstack-glance-2014.2.4-1.fc22
openstack-heat-2014.2.4-1.fc22
openstack-neutron-2014.2.4-2.fc22
openstack-nova-2014.2.4-1.fc22
openstack-sahara-2014.2.4-1.fc22
pagure-1.0.1-1.fc22
pcp-3.11.0-1.fc22
perl-Lingua-Stem-Ru-0.02-1.fc22
python-audioread-2.1.2-2.fc22
python-boto-2.39.0-1.fc22
python-copr-1.65-1.fc22
python-hglib-2.0-1.fc22
python-mwclient-0.8.0-2.fc22
python-pymongo-2.5.2-8.fc22
rabbitmq-server-3.5.7-4.fc22
rabbitvcs-0.16.1-0.3.20160108gite8214e6.fc22
ranger-1.6.1-7.fc22
rocksndiamonds-3.3.1.2-1.fc22
rubygem-domain_name-0.5.20160128-1.fc22
skf-2.00.3-1.fc22
udiskie-1.4.7-1.fc22
wordpress-4.4.2-1.fc22
xlogin-0-0.1.20160114git97667d7.fc22
Details about builds:
================================================================================
abrt-2.6.1-8.fc22 (FEDORA-2016-de4d7b3b1f)
Automatic bug detection and reporting tool
--------------------------------------------------------------------------------
Update Information:
ABRT ===== - do not blacklist firefox libreport ======= - doc: add option -o
and -O into reporter-ureport man page - rhtsupport: use problme report API to
create description - bugzilla: make the event configurable - report-gtk: offer
users to create private ticket - bugzilla|centos: declare 'restricted access'
support - dd: allow 1 and 2 letter long element names - formatdup: more
universal comment - Refactoring conditional directives that break parts of
statements. - bugzilla: actualize man pages - bugzilla: don't report private
problem as comment - uploader: move username and password to the advanced
options - uploader: allow empty username and password - uploader: add
possibility to set SSH keyfiles - desktop-utils: deal with Destkop files without
command line - ureport: enable attaching of arbitrary values - uploader: save
remote name in reported_to - curl: return URLs without userinfo - Resolves
#1275824 ---- - CVE-2015-5287: ignore crashes of abrt tools if DebugLevel =
0 - CVE-2015-5273: create own random temporary directory - make crashes of
processes with locked memory not-reportable - detect xorg backtraces from
journald - fix the coredumpctl integration tool
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1275824 - [abrt] gnome-abrt: remove_quotes(): python3.4 killed by SIGSEGV
https://bugzilla.redhat.com/show_bug.cgi?id=1275824
[ 2 ] Bug #1284557 - CVE-2015-5273 abrt: Insecure temporary directory usage in
abrt-action-install-debuginfo-to-abrt-cache [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1284557
[ 3 ] Bug #1262252 - CVE-2015-5273 abrt: Insecure temporary directory usage in
abrt-action-install-debuginfo-to-abrt-cache
https://bugzilla.redhat.com/show_bug.cgi?id=1262252
--------------------------------------------------------------------------------
================================================================================
clufter-0.56.0-1.fc22 (FEDORA-2016-5e1249e461)
Tool/library for transforming/analyzing cluster configuration formats
--------------------------------------------------------------------------------
Update Information:
- move `entry_points.txt` to `clufter-cli` sub-package - general spec file
refresh (`pagure.io` as a default project base, etc.) - bump upstream package,
see
https://github.com/jnpkrn/clufter/releases/tag/v0.56.0
--------------------------------------------------------------------------------
================================================================================
copr-cli-1.47-1.fc22 (FEDORA-2016-1fc476e069)
Command line interface for COPR
--------------------------------------------------------------------------------
Update Information:
Bug fixes.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1261125 - Use requests-toolbelt to upload srpms
https://bugzilla.redhat.com/show_bug.cgi?id=1261125
[ 2 ] Bug #1292033 - copr-cli ignores multiple package arguments if the first is a local
file
https://bugzilla.redhat.com/show_bug.cgi?id=1292033
[ 3 ] Bug #1298672 - copr-cli create raises TypeError
https://bugzilla.redhat.com/show_bug.cgi?id=1298672
[ 4 ] Bug #1298674 - copr-cli build hangs during upload
https://bugzilla.redhat.com/show_bug.cgi?id=1298674
[ 5 ] Bug #1302615 - UnboundLocalError: local variable 'bar' referenced before
assignment when building from URLs
https://bugzilla.redhat.com/show_bug.cgi?id=1302615
[ 6 ] Bug #1276105 - copr-cli 1.45 errors on el6
https://bugzilla.redhat.com/show_bug.cgi?id=1276105
[ 7 ] Bug #1299243 - RFE: New version of copr-cli (requires rebase of python-copr too)
https://bugzilla.redhat.com/show_bug.cgi?id=1299243
--------------------------------------------------------------------------------
================================================================================
csmock-1.9.0-1.fc22 (FEDORA-2016-119c2ee766)
A mock wrapper for Static Analysis tools
--------------------------------------------------------------------------------
Update Information:
update to latest upstream
--------------------------------------------------------------------------------
================================================================================
cswrap-1.3.1-1.fc22 (FEDORA-2016-119c2ee766)
Generic compiler wrapper
--------------------------------------------------------------------------------
Update Information:
update to latest upstream
--------------------------------------------------------------------------------
================================================================================
distribution-gpg-keys-1.3-1.fc22 (FEDORA-2016-94be7b241c)
Keys of various Linux distributions
--------------------------------------------------------------------------------
Update Information:
Added obsolete keys and Copr keys.
--------------------------------------------------------------------------------
================================================================================
dnf-1.1.6-2.fc22 (FEDORA-2016-573eba7b37)
Package manager forked from Yum, using libsolv as a dependency resolver
--------------------------------------------------------------------------------
Update Information:
Regular DNF bugfix release.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1303149 - dnf history info failing
https://bugzilla.redhat.com/show_bug.cgi?id=1303149
[ 2 ] Bug #1302934 - Malformed translations in 1.1.6
https://bugzilla.redhat.com/show_bug.cgi?id=1302934
[ 3 ] Bug #1292475 - RFE: dnf repoquery options "--queryformat" and
"--latest-limit" should be usable together
https://bugzilla.redhat.com/show_bug.cgi?id=1292475
[ 4 ] Bug #1297511 - noroot configure causes a traceback when plugins are loaded without
a cli
https://bugzilla.redhat.com/show_bug.cgi?id=1297511
[ 5 ] Bug #1239274 - dnf history does not show command line
https://bugzilla.redhat.com/show_bug.cgi?id=1239274
[ 6 ] Bug #1275878 - [abrt] dnf: rpmsack.py:288:_delete:AttributeError: Cannot delete
attribute installed_by on <dnf.yum.rpmsack.RPMDBAdditionalDataPackage object at
0x7f10c32f15d0>
https://bugzilla.redhat.com/show_bug.cgi?id=1275878
[ 7 ] Bug #1226322 - dnf clean all does not clean package metadata for local repos
https://bugzilla.redhat.com/show_bug.cgi?id=1226322
[ 8 ] Bug #1294355 - German translation incomplete on delta RPMS
https://bugzilla.redhat.com/show_bug.cgi?id=1294355
[ 9 ] Bug #1289166 - dnf makecache triggers a python exception
https://bugzilla.redhat.com/show_bug.cgi?id=1289166
[ 10 ] Bug #1294241 - file /var/lib/dnf/* is not owned by any package
https://bugzilla.redhat.com/show_bug.cgi?id=1294241
[ 11 ] Bug #1277360 - doc: update specifying the packages in commands
https://bugzilla.redhat.com/show_bug.cgi?id=1277360
[ 12 ] Bug #1287221 - dnf stutters when writing in /var/log/dnf.rpm.log
https://bugzilla.redhat.com/show_bug.cgi?id=1287221
[ 13 ] Bug #1256587 - The proxy option in dnf.conf doesn't support socks5
https://bugzilla.redhat.com/show_bug.cgi?id=1256587
[ 14 ] Bug #1291895 - DNF history failure if no history
https://bugzilla.redhat.com/show_bug.cgi?id=1291895
--------------------------------------------------------------------------------
================================================================================
dnf-plugins-core-0.1.16-1.fc22 (FEDORA-2016-573eba7b37)
Core Plugins for DNF
--------------------------------------------------------------------------------
Update Information:
Regular DNF bugfix release.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1303149 - dnf history info failing
https://bugzilla.redhat.com/show_bug.cgi?id=1303149
[ 2 ] Bug #1302934 - Malformed translations in 1.1.6
https://bugzilla.redhat.com/show_bug.cgi?id=1302934
[ 3 ] Bug #1292475 - RFE: dnf repoquery options "--queryformat" and
"--latest-limit" should be usable together
https://bugzilla.redhat.com/show_bug.cgi?id=1292475
[ 4 ] Bug #1297511 - noroot configure causes a traceback when plugins are loaded without
a cli
https://bugzilla.redhat.com/show_bug.cgi?id=1297511
[ 5 ] Bug #1239274 - dnf history does not show command line
https://bugzilla.redhat.com/show_bug.cgi?id=1239274
[ 6 ] Bug #1275878 - [abrt] dnf: rpmsack.py:288:_delete:AttributeError: Cannot delete
attribute installed_by on <dnf.yum.rpmsack.RPMDBAdditionalDataPackage object at
0x7f10c32f15d0>
https://bugzilla.redhat.com/show_bug.cgi?id=1275878
[ 7 ] Bug #1226322 - dnf clean all does not clean package metadata for local repos
https://bugzilla.redhat.com/show_bug.cgi?id=1226322
[ 8 ] Bug #1294355 - German translation incomplete on delta RPMS
https://bugzilla.redhat.com/show_bug.cgi?id=1294355
[ 9 ] Bug #1289166 - dnf makecache triggers a python exception
https://bugzilla.redhat.com/show_bug.cgi?id=1289166
[ 10 ] Bug #1294241 - file /var/lib/dnf/* is not owned by any package
https://bugzilla.redhat.com/show_bug.cgi?id=1294241
[ 11 ] Bug #1277360 - doc: update specifying the packages in commands
https://bugzilla.redhat.com/show_bug.cgi?id=1277360
[ 12 ] Bug #1287221 - dnf stutters when writing in /var/log/dnf.rpm.log
https://bugzilla.redhat.com/show_bug.cgi?id=1287221
[ 13 ] Bug #1256587 - The proxy option in dnf.conf doesn't support socks5
https://bugzilla.redhat.com/show_bug.cgi?id=1256587
[ 14 ] Bug #1291895 - DNF history failure if no history
https://bugzilla.redhat.com/show_bug.cgi?id=1291895
--------------------------------------------------------------------------------
================================================================================
firefox-44.0-5.fc22 (FEDORA-2016-d73684df54)
Mozilla Firefox Web browser
--------------------------------------------------------------------------------
Update Information:
We see many Gtk3 crashes in recent Firefox but it can't be analyzed by Mozilla
crash tool. So this release disables Mozilla crash reporter and sends crash
stats directly at ABRT retrace server which is able to get backtraces of Gtk3
and other system libraries.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1303621 - [GCC 6.0] Firefox fails to build
https://bugzilla.redhat.com/show_bug.cgi?id=1303621
--------------------------------------------------------------------------------
================================================================================
frescobaldi-2.18.2-1.fc22 (FEDORA-2016-e69fa10555)
Edit LilyPond sheet music with ease!
--------------------------------------------------------------------------------
Update Information:
Latest upstream.
--------------------------------------------------------------------------------
================================================================================
gnutls-3.3.21-1.fc22 (FEDORA-2016-d5fbc3b7eb)
A TLS protocol implementation
--------------------------------------------------------------------------------
Update Information:
updated to 3.3.21
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1303355 - gnutls: Broken Key Usage flags in certificates created with
certtool
https://bugzilla.redhat.com/show_bug.cgi?id=1303355
--------------------------------------------------------------------------------
================================================================================
hamster-time-tracker-2.0-0.2.rc1.fc22 (FEDORA-2016-01bd33e7e6)
The Linux time tracker
--------------------------------------------------------------------------------
Update Information:
version 2.0 rc1 - - This release candidate marks the transition to Gtk3, and
includes all the other feature additions and bugfixes that have been submitted
since then and are too countless to list here. - Fix dependency to python-dbus,
rhbz#1285405
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1285405 - hamster requires python dbus module which is not installed
https://bugzilla.redhat.com/show_bug.cgi?id=1285405
[ 2 ] Bug #1281826 - [abrt] hamster-time-tracker: invalid syntax (hamster, line 165)
https://bugzilla.redhat.com/show_bug.cgi?id=1281826
[ 3 ] Bug #1271526 - [abrt] hamster-time-tracker:
connection.py:651:call_blocking:DBusException: org.freedesktop.DBus.Python.TypeError:
Traceback (most recent call last):
https://bugzilla.redhat.com/show_bug.cgi?id=1271526
[ 4 ] Bug #1269568 - [abrt] hamster-time-tracker: configuration.py:188:__init__:GError:
Configuration server couldn't be contacted: D-BUS error: The GConf daemon is currently
shutting down.
https://bugzilla.redhat.com/show_bug.cgi?id=1269568
[ 5 ] Bug #1262661 - [abrt] hamster-time-tracker:
today.py:429:on_toggle_called:AttributeError: 'NoneType' object has no attribute
'present'
https://bugzilla.redhat.com/show_bug.cgi?id=1262661
[ 6 ] Bug #1235881 - [abrt] hamster-time-tracker: stats.py:300:stats:ZeroDivisionError:
integer division or modulo by zero
https://bugzilla.redhat.com/show_bug.cgi?id=1235881
[ 7 ] Bug #1231989 - [abrt] hamster-time-tracker:
activityentry.py:340:_on_tree_button_press_event:TypeError: iter must be a GtkTreeIter
https://bugzilla.redhat.com/show_bug.cgi?id=1231989
[ 8 ] Bug #1293039 - hamster version 2.0-rc1
https://bugzilla.redhat.com/show_bug.cgi?id=1293039
[ 9 ] Bug #1231392 - [abrt] hamster-time-tracker:
configuration.py:111:show:AttributeError: 'About' object has no attribute
'connect'
https://bugzilla.redhat.com/show_bug.cgi?id=1231392
[ 10 ] Bug #1293000 - [abrt] hamster-time-tracker:
activityentry.py:214:complete_inline:UnicodeDecodeError: 'utf8' codec can't
decode byte 0xd1 in position 0: unexpected end of data
https://bugzilla.redhat.com/show_bug.cgi?id=1293000
--------------------------------------------------------------------------------
================================================================================
libreport-2.6.4-1.fc22 (FEDORA-2016-de4d7b3b1f)
Generic library for reporting various problems
--------------------------------------------------------------------------------
Update Information:
ABRT ===== - do not blacklist firefox libreport ======= - doc: add option -o
and -O into reporter-ureport man page - rhtsupport: use problme report API to
create description - bugzilla: make the event configurable - report-gtk: offer
users to create private ticket - bugzilla|centos: declare 'restricted access'
support - dd: allow 1 and 2 letter long element names - formatdup: more
universal comment - Refactoring conditional directives that break parts of
statements. - bugzilla: actualize man pages - bugzilla: don't report private
problem as comment - uploader: move username and password to the advanced
options - uploader: allow empty username and password - uploader: add
possibility to set SSH keyfiles - desktop-utils: deal with Destkop files without
command line - ureport: enable attaching of arbitrary values - uploader: save
remote name in reported_to - curl: return URLs without userinfo - Resolves
#1275824 ---- - CVE-2015-5287: ignore crashes of abrt tools if DebugLevel =
0 - CVE-2015-5273: create own random temporary directory - make crashes of
processes with locked memory not-reportable - detect xorg backtraces from
journald - fix the coredumpctl integration tool
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1275824 - [abrt] gnome-abrt: remove_quotes(): python3.4 killed by SIGSEGV
https://bugzilla.redhat.com/show_bug.cgi?id=1275824
[ 2 ] Bug #1284557 - CVE-2015-5273 abrt: Insecure temporary directory usage in
abrt-action-install-debuginfo-to-abrt-cache [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1284557
[ 3 ] Bug #1262252 - CVE-2015-5273 abrt: Insecure temporary directory usage in
abrt-action-install-debuginfo-to-abrt-cache
https://bugzilla.redhat.com/show_bug.cgi?id=1262252
--------------------------------------------------------------------------------
================================================================================
lxqt-common-0.10.0-8.fc22 (FEDORA-2016-1e516ca440)
Common resources for LXQt desktop suite
--------------------------------------------------------------------------------
Update Information:
Panel does not show main menu entries, rhbz#1252581
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1252581 - Panel does not show main menu entries
https://bugzilla.redhat.com/show_bug.cgi?id=1252581
--------------------------------------------------------------------------------
================================================================================
megatools-1.9.97-1.fc22 (FEDORA-2016-7e63a2a95e)
Command line client for MEGA
--------------------------------------------------------------------------------
Update Information:
Upstream release rhbz#1304133
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1304133 - megatools-1.9.97 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1304133
--------------------------------------------------------------------------------
================================================================================
mobile-broadband-provider-info-1.20151214-1.fc22 (FEDORA-2016-d3fce30d64)
Mobile broadband provider database
--------------------------------------------------------------------------------
Update Information:
Update to latest upstream release 20151214
--------------------------------------------------------------------------------
================================================================================
msgpuck-1.0.2-1.fc22 (FEDORA-2016-6a17cb3306)
MsgPack binary serialization library in a self-contained header
--------------------------------------------------------------------------------
Update Information:
Review fixes
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1295217 - Review Request: msgpuck - a MsgPack serialization library in a
self-contained header file
https://bugzilla.redhat.com/show_bug.cgi?id=1295217
--------------------------------------------------------------------------------
================================================================================
nodejs-is-my-json-valid-2.12.4-1.fc22 (FEDORA-2016-3441e9da2f)
A JSONSchema validator that uses code generation to be extremely fast
--------------------------------------------------------------------------------
Update Information:
Security fix for Regular expression DoS using utc-millisec format
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1299498 - nodejs-is-my-json-valid: Regular expression DoS using utc-millisec
format
https://bugzilla.redhat.com/show_bug.cgi?id=1299498
--------------------------------------------------------------------------------
================================================================================
openstack-ceilometer-2014.2.4-1.fc22 (FEDORA-2016-fbeb475153)
OpenStack measurement collection service
--------------------------------------------------------------------------------
Update Information:
Rebase to 2014.2.4 and 2015.1.3
--------------------------------------------------------------------------------
================================================================================
openstack-cinder-2014.2.4-1.fc22 (FEDORA-2016-fbeb475153)
OpenStack Volume service
--------------------------------------------------------------------------------
Update Information:
Rebase to 2014.2.4 and 2015.1.3
--------------------------------------------------------------------------------
================================================================================
openstack-glance-2014.2.4-1.fc22 (FEDORA-2016-fbeb475153)
OpenStack Image Service
--------------------------------------------------------------------------------
Update Information:
Rebase to 2014.2.4 and 2015.1.3
--------------------------------------------------------------------------------
================================================================================
openstack-heat-2014.2.4-1.fc22 (FEDORA-2016-fbeb475153)
OpenStack Orchestration (heat)
--------------------------------------------------------------------------------
Update Information:
Rebase to 2014.2.4 and 2015.1.3
--------------------------------------------------------------------------------
================================================================================
openstack-neutron-2014.2.4-2.fc22 (FEDORA-2016-fbeb475153)
OpenStack Networking Service
--------------------------------------------------------------------------------
Update Information:
Rebase to 2014.2.4 and 2015.1.3
--------------------------------------------------------------------------------
================================================================================
openstack-nova-2014.2.4-1.fc22 (FEDORA-2016-fbeb475153)
OpenStack Compute (nova)
--------------------------------------------------------------------------------
Update Information:
Rebase to 2014.2.4 and 2015.1.3
--------------------------------------------------------------------------------
================================================================================
openstack-sahara-2014.2.4-1.fc22 (FEDORA-2016-fbeb475153)
Apache Hadoop cluster management on OpenStack
--------------------------------------------------------------------------------
Update Information:
Rebase to 2014.2.4 and 2015.1.3
--------------------------------------------------------------------------------
================================================================================
pagure-1.0.1-1.fc22 (FEDORA-2016-6876920801)
A git-centered forge
--------------------------------------------------------------------------------
Update Information:
Updates to the latest version of pagure: 1.0.1 beware this is a very large
update!
--------------------------------------------------------------------------------
================================================================================
pcp-3.11.0-1.fc22 (FEDORA-2016-f20d80b6af)
System-level performance monitoring and performance management
--------------------------------------------------------------------------------
Update Information:
* containers: add a pcp-pmwebd container image * pmcd: start PMDAs via pmdaroot,
allowing restart on PMDA failure without restarting pmcd itself * pmcd: tenfold
speed up of the shutdown process * pmcd: ensure startup before zabbix-agent,
with systemd * pmdafreebsd: use getifaddrs() for network interface * pmdalinux:
fix /proc/interrupts parsing on s390x platforms * pmdalinux: fix i386 buffer
overflow in softnet stats * pmdalinux: support additional vmstat kernel metrics
(virt balloon, transparent-huge-page zero page alloc counters) * pmdaxfs:
support the per-device XFS metrics * pmdanamed: fix SELinux AVC denials during
Install * pmdavmware: updates to work with current VMWare perl API * libpcp:
improvements to derived metrics error handling * libpcp: rework interp logic
arond <mark> records * libpcp: fix bug in interp mode record caching * libpcp:
pthread_mutexattr_destroy, pthread_mutex_destroy calls * libpcp: added a new
fetchgroup API * libpcp: fix dup-context-with-attrs memory corruption bug *
libpcp: fix derived metric PMNS navigation mem leak * libpcp: unconditional
registration of anon (event.*) metrics * pcp-iostat: use py3 and py3 compatible
pipe exception handlers * pcp-iostat: improve incorrect counter rate conversion
* pcp-iostat: improve BrokenPipeError exception handling * pmmgr: add general
monitor-program launching option * pmmgr: resolved a couple of small memory
leaks * pmrep: fix first sample reporting, instant/discrete metrics * pmrep: fix
string valued metric reporting, with python3 * pmval: improve reporting in the
region of <mark> records * pmwebd: add an option to disable service advertising
* pmwebd: support for http compression * pmwebd: add units/sem to legend in
graphite/png mode * pmwebd: enable graphite image-mode caching via redirection *
pmwebd: add an option for alternative name encodings * sar2pcp: support
additional mem.util metrics * docs: updates to the system CPU performance
tutorial * packaging: add missing dependencies on some perl modules * packaging:
drop the pcp-compat subpackage
--------------------------------------------------------------------------------
================================================================================
perl-Lingua-Stem-Ru-0.02-1.fc22 (FEDORA-2016-89fd8382bc)
Porter's stemming algorithm for Russian (KOI8-R only)
--------------------------------------------------------------------------------
Update Information:
This release adds enables warnings, rephrases license declaration and modernizes
build script.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1304359 - perl-Lingua-Stem-Ru-0.02 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1304359
--------------------------------------------------------------------------------
================================================================================
python-audioread-2.1.2-2.fc22 (FEDORA-2016-5b76f1c8c7)
Multi-library, cross-platform audio decoding in Python
--------------------------------------------------------------------------------
Update Information:
Update to latest upstream release audioread 2.1.2.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1303724 - python-audioread-2.1.2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1303724
--------------------------------------------------------------------------------
================================================================================
python-boto-2.39.0-1.fc22 (FEDORA-2016-6f5877d041)
A simple, lightweight interface to Amazon Web Services
--------------------------------------------------------------------------------
Update Information:
This update fixes several bugs and adds support for the new ap-northeast-2 AWS
region. For more details, see the [full
changelog](http://boto.cloudhackers.com/en/latest/releasenotes/v2.39.0.html)
from upstream.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1300424 - Update python-boto to 2.39
https://bugzilla.redhat.com/show_bug.cgi?id=1300424
--------------------------------------------------------------------------------
================================================================================
python-copr-1.65-1.fc22 (FEDORA-2016-1fc476e069)
Python interface for Copr
--------------------------------------------------------------------------------
Update Information:
Bug fixes.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1261125 - Use requests-toolbelt to upload srpms
https://bugzilla.redhat.com/show_bug.cgi?id=1261125
[ 2 ] Bug #1292033 - copr-cli ignores multiple package arguments if the first is a local
file
https://bugzilla.redhat.com/show_bug.cgi?id=1292033
[ 3 ] Bug #1298672 - copr-cli create raises TypeError
https://bugzilla.redhat.com/show_bug.cgi?id=1298672
[ 4 ] Bug #1298674 - copr-cli build hangs during upload
https://bugzilla.redhat.com/show_bug.cgi?id=1298674
[ 5 ] Bug #1302615 - UnboundLocalError: local variable 'bar' referenced before
assignment when building from URLs
https://bugzilla.redhat.com/show_bug.cgi?id=1302615
[ 6 ] Bug #1276105 - copr-cli 1.45 errors on el6
https://bugzilla.redhat.com/show_bug.cgi?id=1276105
[ 7 ] Bug #1299243 - RFE: New version of copr-cli (requires rebase of python-copr too)
https://bugzilla.redhat.com/show_bug.cgi?id=1299243
--------------------------------------------------------------------------------
================================================================================
python-hglib-2.0-1.fc22 (FEDORA-2016-d8f564f509)
Mercurial Python library
--------------------------------------------------------------------------------
Update Information:
Update to latest upstream release python-hglib 2.0
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1303920 - python-hglib-2.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1303920
--------------------------------------------------------------------------------
================================================================================
python-mwclient-0.8.0-2.fc22 (FEDORA-2016-a98dc2db50)
Mwclient is a client to the MediaWiki API
--------------------------------------------------------------------------------
Update Information:
This update provides the new release of python-mwclient. The major new feature
in this release is Python 3 compatibility, so a python3-mwclient subpackage is
added for Fedora releases (not yet for EPEL, as I'm waiting for the whole
question of how we're going to do Python 3 on EPEL to be nailed down). python-
mwclient is renamed to python2-mwclient, with appropriate Provides and
Obsoletes. There is one minor backwards compatibility break; `Page.save()`'s
behaviour has changed slightly, in that if you previously passed a section
number to `Page.text()`, it will not be used for a subsequent `Page.save()`
call. This change should not affect either of Fedora's packaged consumers
(parley and python-wikitcms). More details on this and the other changes in the
new release can be found in `RELEASE-NOTES.md`.
--------------------------------------------------------------------------------
================================================================================
python-pymongo-2.5.2-8.fc22 (FEDORA-2016-52b294538d)
Python driver for MongoDB
--------------------------------------------------------------------------------
Update Information:
Security fix for CVE-2013-2099, CVE-2013-7440
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1224999 - CVE-2013-7440 python: wildcard matching rules do not follow RFC
6125
https://bugzilla.redhat.com/show_bug.cgi?id=1224999
[ 2 ] Bug #963260 - CVE-2013-2099 python: ssl.match_hostname() DoS via certificates with
specially crafted hostname wildcard patterns
https://bugzilla.redhat.com/show_bug.cgi?id=963260
--------------------------------------------------------------------------------
================================================================================
rabbitmq-server-3.5.7-4.fc22 (FEDORA-2016-2b98158285)
The RabbitMQ server
--------------------------------------------------------------------------------
Update Information:
- Fix stop / restart - Don't wait for slave stop messages forever (patches #2,
#3) - Drop dependency on syslog.target - this seems to be a leftover - Require
epmd(a)0.0.0.0 to run. This is a default value. User should override it if
necessary.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1302368 - rabbitmq-server service timeout on stop
https://bugzilla.redhat.com/show_bug.cgi?id=1302368
--------------------------------------------------------------------------------
================================================================================
rabbitvcs-0.16.1-0.3.20160108gite8214e6.fc22 (FEDORA-2016-586e9f19f4)
Graphical user interface to version control systems
--------------------------------------------------------------------------------
Update Information:
- fix nautilus plugin - disable b0rken gedit plugin ---- reanimate package - -
new upstream snapshot as pre-release - port to python3 - mark all as noarch and
adjust plugins pathes - enable debuginfo - add git and mercurial as dependencies
- fix some crashes with log command, rhbz#1141530 - fix vcs status features,
rhbz#1083043 - enable caja plugin, rhbz#1096162 - make gedit plugin work,
rhbz#1226816 - add nemo plugin
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1304050 - python-dulwich version 0.12.0
https://bugzilla.redhat.com/show_bug.cgi?id=1304050
[ 2 ] Bug #1303457 - thunarx-python version 0.3.0
https://bugzilla.redhat.com/show_bug.cgi?id=1303457
[ 3 ] Bug #1226816 - Gedit plugin not working with Gedit later than version 3.12
https://bugzilla.redhat.com/show_bug.cgi?id=1226816
[ 4 ] Bug #1141530 - [abrt] rabbitvcs-core: log.py:1598:log_factory:KeyError:
'unknown'
https://bugzilla.redhat.com/show_bug.cgi?id=1141530
[ 5 ] Bug #1228896 - [abrt] rabbitvcs-core: subprocess.py:1335:_execute_child:OSError:
[Errno 2] Datei oder Verzeichnis nicht gefunden
https://bugzilla.redhat.com/show_bug.cgi?id=1228896
[ 6 ] Bug #1226603 - [abrt] rabbitvcs-core: add.py:105:load:AttributeError: GitStage
instance has no attribute 'show_ignored'
https://bugzilla.redhat.com/show_bug.cgi?id=1226603
[ 7 ] Bug #1096162 - No support in mate caja
https://bugzilla.redhat.com/show_bug.cgi?id=1096162
[ 8 ] Bug #1083043 - Package should require python-simplejson
https://bugzilla.redhat.com/show_bug.cgi?id=1083043
--------------------------------------------------------------------------------
================================================================================
ranger-1.6.1-7.fc22 (FEDORA-2016-3b9d4bbf0d)
A flexible console file manager
--------------------------------------------------------------------------------
Update Information:
This update backports a patch from the Rawhide build that corrects the location
of `w3imgdisplay` in Fedora, thus fixing image preview.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1217910 - w3imgdisplay-based image preview not working
https://bugzilla.redhat.com/show_bug.cgi?id=1217910
--------------------------------------------------------------------------------
================================================================================
rocksndiamonds-3.3.1.2-1.fc22 (FEDORA-2016-c798b5d781)
Underground digging game
--------------------------------------------------------------------------------
Update Information:
Update to 3.3.1.2
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1294861 - update 3.3.1.2
https://bugzilla.redhat.com/show_bug.cgi?id=1294861
--------------------------------------------------------------------------------
================================================================================
rubygem-domain_name-0.5.20160128-1.fc22 (FEDORA-2016-4eef8a4ac5)
Domain Name manipulation library for Ruby
--------------------------------------------------------------------------------
Update Information:
New version 0.5.20160128 is released.
--------------------------------------------------------------------------------
================================================================================
skf-2.00.3-1.fc22 (FEDORA-2016-a102e0c14a)
Utility binary files in Simple Kanji Filter
--------------------------------------------------------------------------------
Update Information:
New version 2.00.3 is released.
--------------------------------------------------------------------------------
================================================================================
udiskie-1.4.7-1.fc22 (FEDORA-2016-eb14b5f892)
Removable disk auto-mounter
--------------------------------------------------------------------------------
Update Information:
Update to latest upstream release, with associated fixes.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1264657 - Missing Requires: libnotify
https://bugzilla.redhat.com/show_bug.cgi?id=1264657
[ 2 ] Bug #1265867 - udiskie-1.4.7 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1265867
--------------------------------------------------------------------------------
================================================================================
wordpress-4.4.2-1.fc22 (FEDORA-2016-9d0a25ea07)
Blog tool and publishing platform
--------------------------------------------------------------------------------
Update Information:
**WordPress 4.4.2 Security and Maintenance Release** WordPress 4.4.2 is now
available. This is a security release for all previous versions and we strongly
encourage you to update your sites immediately. WordPress versions 4.4.1 and
earlier are affected by two security issues: a possible SSRF for certain local
URIs, reported by Ronni Skansing; and an open redirection attack, reported by
Shailesh Suthar. Thank you to both reporters for practicing responsible
disclosure. In addition to the security issues above, WordPress 4.4.2 fixes 17
bugs from 4.4 and 4.4.1. For more information, see the [release
notes](https://codex.wordpress.org/Version_4.4.2) or consult the [list of
changes](https://core.trac.wordpress.org/query?milestone=4.4.2).
--------------------------------------------------------------------------------
================================================================================
xlogin-0-0.1.20160114git97667d7.fc22 (FEDORA-2016-48ec072ee2)
Automatic X login service for systemd
--------------------------------------------------------------------------------
Update Information:
initial package, rhbz#1298715
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1298715 - Review Request: xlogin - Automatic X login service for systemd
https://bugzilla.redhat.com/show_bug.cgi?id=1298715
--------------------------------------------------------------------------------