The following Fedora 24 Security updates need testing:
Age URL
119
https://bodhi.fedoraproject.org/updates/FEDORA-2016-26f9817b08
squid-3.5.23-1.fc24
113
https://bodhi.fedoraproject.org/updates/FEDORA-2016-eaaa9c4a08 exim-4.87.1-1.fc24
75
https://bodhi.fedoraproject.org/updates/FEDORA-2017-ece16ba6ba
runc-1.0.0-5.rc2.gitc91b5be.fc24
55
https://bodhi.fedoraproject.org/updates/FEDORA-2017-4b176c1694 redis-3.2.8-1.fc24
25
https://bodhi.fedoraproject.org/updates/FEDORA-2017-0f5fe1913f
sane-backends-1.0.25-7.fc24
18
https://bodhi.fedoraproject.org/updates/FEDORA-2017-ec01954fe9
chromium-57.0.2987.133-1.fc24
12
https://bodhi.fedoraproject.org/updates/FEDORA-2017-a66ca10c22
tigervnc-1.7.1-4.fc24
12
https://bodhi.fedoraproject.org/updates/FEDORA-2017-7de130a80d tnef-1.4.14-1.fc24
11
https://bodhi.fedoraproject.org/updates/FEDORA-2017-8330a48ca2
python-XStatic-jquery-ui-1.12.0.1-1.fc24
7
https://bodhi.fedoraproject.org/updates/FEDORA-2017-d9d620366e
php-pear-CAS-1.3.5-1.fc24
6
https://bodhi.fedoraproject.org/updates/FEDORA-2017-5764721de5
xstream-1.4.9-5.fc24
6
https://bodhi.fedoraproject.org/updates/FEDORA-2017-db6864b797
jenkins-xstream-1.4.7-11.jenkins1.fc24
5
https://bodhi.fedoraproject.org/updates/FEDORA-2017-da4ed58fd5
dovecot-2.2.29.1-1.fc24
5
https://bodhi.fedoraproject.org/updates/FEDORA-2017-7c9a9b2b36
backintime-1.1.20-1.fc24
5
https://bodhi.fedoraproject.org/updates/FEDORA-2017-33355c425d
ansible-2.3.0.0-1.fc24
4
https://bodhi.fedoraproject.org/updates/FEDORA-2017-9941306740 yara-3.5.0-7.fc24
3
https://bodhi.fedoraproject.org/updates/FEDORA-2017-6b639afc9c
collectd-5.6.2-1.fc24
2
https://bodhi.fedoraproject.org/updates/FEDORA-2017-374389c196 qemu-2.6.2-8.fc24
1
https://bodhi.fedoraproject.org/updates/FEDORA-2017-d5aa7c77d6
tomcat-8.0.43-1.fc24
0
https://bodhi.fedoraproject.org/updates/FEDORA-2017-0a876b0ba5
bind-9.10.4-3.P8.fc24
0
https://bodhi.fedoraproject.org/updates/FEDORA-2017-edce28f24b
bind99-9.9.9-4.P8.fc24
0
https://bodhi.fedoraproject.org/updates/FEDORA-2017-2c4ddb3ca2
pcre2-10.21-18.fc24
0
https://bodhi.fedoraproject.org/updates/FEDORA-2017-7a5363b41d
libnl3-3.2.28-5.fc24
The following Fedora 24 Critical Path updates have yet to be approved:
Age URL
15
https://bodhi.fedoraproject.org/updates/FEDORA-2017-c372fa4dbc
sudo-1.8.19p2-1.fc24
12
https://bodhi.fedoraproject.org/updates/FEDORA-2017-a66ca10c22
tigervnc-1.7.1-4.fc24
11
https://bodhi.fedoraproject.org/updates/FEDORA-2017-a90e43dc1b
thunderbird-52.0-1.fc24
11
https://bodhi.fedoraproject.org/updates/FEDORA-2017-185a953346 libfm-1.2.5-3.fc24
10
https://bodhi.fedoraproject.org/updates/FEDORA-2017-6ec305fa93
dbus-1.11.12-1.fc24
7
https://bodhi.fedoraproject.org/updates/FEDORA-2017-ae0e285fc1
libdrm-2.4.79-1.fc24
5
https://bodhi.fedoraproject.org/updates/FEDORA-2017-c8186b8423 audit-2.7.5-1.fc24
0
https://bodhi.fedoraproject.org/updates/FEDORA-2017-b50889d720
kernel-4.10.11-100.fc24
0
https://bodhi.fedoraproject.org/updates/FEDORA-2017-01fa93cbeb
menu-cache-1.0.2-2.D20170417git54ab9e4576.fc24
The following builds have been pushed to Fedora 24 updates-testing
fedfind-3.5.4-1.fc24
kernel-4.10.11-100.fc24
libnl3-3.2.28-5.fc24
libyui-3.3.2-1.fc24
lziprecover-1.19-1.fc24
numix-gtk-theme-2.6.6-2.fc24
numix-icon-theme-0.1.0-15.git271471c.fc24
numix-icon-theme-circle-0.1.0-13.git5a11140.fc24
pcre2-10.21-18.fc24
perl-Getopt-Lucid-1.08-1.fc24
perl-Perl-Critic-Pulp-93-1.fc24
rsyslog-8.26.0-1.fc24
stress-ng-0.07.29-1.fc24
Details about builds:
================================================================================
fedfind-3.5.4-1.fc24 (FEDORA-2017-0668d69a63)
Fedora compose and image finder
--------------------------------------------------------------------------------
Update Information:
This new version of fedfind handles an unusual situation where its local cache
directory (which is usually `~/.cache/fedfind`, but can be a temporary directory
if that location is not writeable) disappears during the lifetime of a fedfind-
using process. Previously, this would cause the process to crash, as fedfind
wasn't written to handle this eventuality. There are no other changes in this
update.
--------------------------------------------------------------------------------
================================================================================
kernel-4.10.11-100.fc24 (FEDORA-2017-b50889d720)
The Linux kernel
--------------------------------------------------------------------------------
Update Information:
The 4.10.11 stable kernel update contains a number of important fixes across the
tree.
--------------------------------------------------------------------------------
================================================================================
libnl3-3.2.28-5.fc24 (FEDORA-2017-7a5363b41d)
Convenience library for kernel netlink sockets
--------------------------------------------------------------------------------
Update Information:
lib: check for integer overflow in nlmsg_reserve() (rh#1440788, rh#1440789,
CVE-2017-0553)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1440789 - CVE-2017-0553 libnl3: libnl: Integer overflow in nlmsg_reserve()
[fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1440789
--------------------------------------------------------------------------------
================================================================================
libyui-3.3.2-1.fc24 (FEDORA-2017-81d1ab179a)
GUI-abstraction library
--------------------------------------------------------------------------------
Update Information:
* New upstream release * Set preferred UI-plugin using
$YUI_PREFERRED_BACKEND in $ENV * Avoid several warnings from CMake * Improve
macros-file
--------------------------------------------------------------------------------
================================================================================
lziprecover-1.19-1.fc24 (FEDORA-2017-d9f8ec0d0a)
Data recovery tool and decompressor for files in the lzip compressed format
--------------------------------------------------------------------------------
Update Information:
1.19
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1442896 - lziprecover-1.19 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1442896
--------------------------------------------------------------------------------
================================================================================
numix-gtk-theme-2.6.6-2.fc24 (FEDORA-2017-ca8e3b178c)
Numix Gtk Theme
--------------------------------------------------------------------------------
Update Information:
move directories prior to symlink creation
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1352499 - numix-gtk-theme-2.6.6 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1352499
[ 2 ] Bug #1379883 - File conflict file /usr/share/themes/Numix/gtk-3.0/assets with
latest update
https://bugzilla.redhat.com/show_bug.cgi?id=1379883
[ 3 ] Bug #1405837 - Numix theme messes up the desktop icons in Xfce
https://bugzilla.redhat.com/show_bug.cgi?id=1405837
--------------------------------------------------------------------------------
================================================================================
numix-icon-theme-0.1.0-15.git271471c.fc24 (FEDORA-2017-83f5caeadc)
Numix Project icon theme
--------------------------------------------------------------------------------
Update Information:
rebuilt ---- rebuilt
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1439707 - numix-icon-theme-17-04-05 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1439707
--------------------------------------------------------------------------------
================================================================================
numix-icon-theme-circle-0.1.0-13.git5a11140.fc24 (FEDORA-2017-a39ff424e6)
Numix Project circle icon theme
--------------------------------------------------------------------------------
Update Information:
rebuilt ---- rebuilt
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1391795 - numix-icon-theme-circle-17-04-05 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1391795
[ 2 ] Bug #1365120 - numix-icon-theme-circle-16-09-07 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1365120
--------------------------------------------------------------------------------
================================================================================
pcre2-10.21-18.fc24 (FEDORA-2017-2c4ddb3ca2)
Perl-compatible regular expression library
--------------------------------------------------------------------------------
Update Information:
This release fixes a crash when finding a Unicode property for a character with
a code point greater than 0x10ffff in UTF-32 library while UTF mode is disabled
and JIT mode is enabled. It also fixes an incortect cast in UTF validation
routine.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1434504 - CVE-2017-7186 pcre: Invalid Unicode property lookup (8.41/7,
10.24/2)
https://bugzilla.redhat.com/show_bug.cgi?id=1434504
--------------------------------------------------------------------------------
================================================================================
perl-Getopt-Lucid-1.08-1.fc24 (FEDORA-2017-0efa774969)
Clear, readable syntax for command line processing
--------------------------------------------------------------------------------
Update Information:
This release fixes building on Perl without "." in @INC path.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1442608 - perl-Getopt-Lucid-1.08 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1442608
--------------------------------------------------------------------------------
================================================================================
perl-Perl-Critic-Pulp-93-1.fc24 (FEDORA-2017-40653a8e64)
Some add-on perlcritic policies
--------------------------------------------------------------------------------
Update Information:
This release improves a build script. We deliver it only to provide up-to-date
version string.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1442380 - perl-Perl-Critic-Pulp-93 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1442380
--------------------------------------------------------------------------------
================================================================================
rsyslog-8.26.0-1.fc24 (FEDORA-2017-b03fcf614b)
Enhanced system logging and kernel message trapping daemon
--------------------------------------------------------------------------------
Update Information:
rebase to 8.26.0
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1436113 - rsyslog documentation manual page horribly out-of-date
https://bugzilla.redhat.com/show_bug.cgi?id=1436113
[ 2 ] Bug #1438789 - rsyslog-8.26.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1438789
--------------------------------------------------------------------------------
================================================================================
stress-ng-0.07.29-1.fc24 (FEDORA-2017-9f60124841)
Stress test a computer system in various ways
--------------------------------------------------------------------------------
Update Information:
new version ---- initial version
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1398624 - stress-ng-0.07.29 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1398624
[ 2 ] Bug #1346407 - Review Request: stress-ng - Stress test a computer system in
various ways
https://bugzilla.redhat.com/show_bug.cgi?id=1346407
--------------------------------------------------------------------------------