The following Fedora 22 Security updates need testing:
Age URL
239
https://bodhi.fedoraproject.org/updates/FEDORA-2015-5878
echoping-6.1-0.beta.r434svn.1.fc22
188
https://bodhi.fedoraproject.org/updates/FEDORA-2015-9185
ceph-deploy-1.5.25-1.fc22
120
https://bodhi.fedoraproject.org/updates/FEDORA-2015-12781
python-kdcproxy-0.3.2-1.fc22
105
https://bodhi.fedoraproject.org/updates/FEDORA-2015-13823
python-django-1.8.4-1.fc22
104
https://bodhi.fedoraproject.org/updates/FEDORA-2015-1aee5e6f0b
conntrack-tools-1.4.2-9.fc22
75
https://bodhi.fedoraproject.org/updates/FEDORA-2015-16239 nagios-4.0.8-1.fc22
68
https://bodhi.fedoraproject.org/updates/FEDORA-2015-05490fc42d
squid-3.4.13-3.fc22
68
https://bodhi.fedoraproject.org/updates/FEDORA-2015-be2c11d456
subversion-1.8.14-1.fc22
63
https://bodhi.fedoraproject.org/updates/FEDORA-2015-2d37e7dacf
openstack-swift-2.2.0-6.fc22
61
https://bodhi.fedoraproject.org/updates/FEDORA-2015-3e4043f088
python-pymongo-3.0.3-1.fc22
53
https://bodhi.fedoraproject.org/updates/FEDORA-2015-4bc7688b3e
audiofile-0.3.6-9.fc22
39
https://bodhi.fedoraproject.org/updates/FEDORA-2015-de44abca87
ntp-4.2.6p5-34.fc22
32
https://bodhi.fedoraproject.org/updates/FEDORA-2015-0552500cd7
python-pygments-2.0.2-3.fc22
32
https://bodhi.fedoraproject.org/updates/FEDORA-2015-9039c25f1d
miniupnpc-1.9-6.fc22
19
https://bodhi.fedoraproject.org/updates/FEDORA-2015-89ee6b7f82
potrace-1.13-2.fc22
15
https://bodhi.fedoraproject.org/updates/FEDORA-2015-c7b1be8823
seamonkey-2.39-1.fc22
15
https://bodhi.fedoraproject.org/updates/FEDORA-2015-7dfbe09bb4
libpng-1.6.16-4.fc22
15
https://bodhi.fedoraproject.org/updates/FEDORA-2015-6c07ab1fa6
libpng-1.6.16-5.fc22
15
https://bodhi.fedoraproject.org/updates/FEDORA-2015-e5e4ecf80d
libpng15-1.5.21-2.fc22
8
https://bodhi.fedoraproject.org/updates/FEDORA-2015-8413bdd343 abrt-2.6.1-7.fc22
8
https://bodhi.fedoraproject.org/updates/FEDORA-2015-b5a8f09e32 knot-1.6.6-1.fc22
7
https://bodhi.fedoraproject.org/updates/FEDORA-2015-0b89738311
php-symfony-2.7.7-2.fc22 php-twig-1.23.1-2.fc22
7
https://bodhi.fedoraproject.org/updates/FEDORA-2015-afafa29551 pcre-8.37-7.fc22
6
https://bodhi.fedoraproject.org/updates/FEDORA-2015-89468612f5
jenkins-1.609.3-4.fc22
5
https://bodhi.fedoraproject.org/updates/FEDORA-2015-fff2073f50 wget-1.16.3-2.fc22
4
https://bodhi.fedoraproject.org/updates/FEDORA-2015-f683150aa0
thttpd-2.25b-36.fc22
2
https://bodhi.fedoraproject.org/updates/FEDORA-2015-6565f29415
pax-utils-1.1.4-1.fc22
1
https://bodhi.fedoraproject.org/updates/FEDORA-2015-6d64c257cf
thunderbird-38.4.0-1.fc22
1
https://bodhi.fedoraproject.org/updates/FEDORA-2015-a288773b9a
LibRaw-0.16.2-3.fc22
1
https://bodhi.fedoraproject.org/updates/FEDORA-2015-97055df8a0
proftpd-1.3.5a-5.fc22
0
https://bodhi.fedoraproject.org/updates/FEDORA-2015-3461e976cb
libpng10-1.0.65-1.fc22
0
https://bodhi.fedoraproject.org/updates/FEDORA-2015-2ebdd4ad8f
moodle-2.8.9-1.fc22
The following Fedora 22 Critical Path updates have yet to be approved:
Age URL
114
https://bodhi.fedoraproject.org/updates/FEDORA-2015-13210 yum-3.4.3-508.fc22
99
https://bodhi.fedoraproject.org/updates/FEDORA-2015-14218 xulrunner-40.0-1.fc22
32
https://bodhi.fedoraproject.org/updates/FEDORA-2015-2123de044f
libgphoto2-2.5.8-1.fc22
29
https://bodhi.fedoraproject.org/updates/FEDORA-2015-48f718ed1b vim-7.4.909-1.fc22
26
https://bodhi.fedoraproject.org/updates/FEDORA-2015-069fea7e6b
livecd-tools-22.3-1.fc22
20
https://bodhi.fedoraproject.org/updates/FEDORA-2015-5aaff55f5c vte3-0.36.5-1.fc22
15
https://bodhi.fedoraproject.org/updates/FEDORA-2015-6c07ab1fa6
libpng-1.6.16-5.fc22
15
https://bodhi.fedoraproject.org/updates/FEDORA-2015-7dfbe09bb4
libpng-1.6.16-4.fc22
15
https://bodhi.fedoraproject.org/updates/FEDORA-2015-82b7665427 koji-1.10.1-1.fc22
14
https://bodhi.fedoraproject.org/updates/FEDORA-2015-d96e31cecd
perl-Socket-2.021-1.fc22
10
https://bodhi.fedoraproject.org/updates/FEDORA-2015-1d21e7f650 unzip-6.0-23.fc22
8
https://bodhi.fedoraproject.org/updates/FEDORA-2015-4f500b833b
systemd-219-26.fc22
8
https://bodhi.fedoraproject.org/updates/FEDORA-2015-efc06edc85
NetworkManager-vpnc-1.0.8-1.fc22 NetworkManager-openconnect-1.0.8-1.fc22
NetworkManager-openvpn-1.0.8-1.fc22 NetworkManager-openswan-1.0.8-1.fc22
NetworkManager-fortisslvpn-1.0.8-1.fc22 NetworkManager-1.0.8-1.fc22
7
https://bodhi.fedoraproject.org/updates/FEDORA-2015-afafa29551 pcre-8.37-7.fc22
1
https://bodhi.fedoraproject.org/updates/FEDORA-2015-bee294be57 grep-2.21-6.fc22
1
https://bodhi.fedoraproject.org/updates/FEDORA-2015-f194dc9900
librsvg2-2.40.12-1.fc22
1
https://bodhi.fedoraproject.org/updates/FEDORA-2015-6d64c257cf
thunderbird-38.4.0-1.fc22
0
https://bodhi.fedoraproject.org/updates/FEDORA-2015-74751a6fd5
chkconfig-1.7-1.fc22
The following builds have been pushed to Fedora 22 updates-testing
audacity-2.1.2-0.7.rc1.fc22
copy-jdk-configs-1.1-1.fc22
cycle-0.3.1-18.fc22
gogoc-1.2-49.fc22
hawaii-shell-0.5.92-3.fc22
kf5-plasma-5.16.0-3.fc22
libetonyek-0.1.5-1.fc22
libpinyin-1.3.0-1.fc22
libpng10-1.0.65-1.fc22
moarvm-0.2015.11-1.fc22
moodle-2.8.9-1.fc22
nqp-0.0.2015.11-1.fc22
openscap-1.2.7-1.fc22
perl-ExtUtils-MakeMaker-7.04-2.fc22
perl-File-Touch-0.10-1.fc22
php-latte-2.3.8-1.fc22
php-nette-database-2.3.8-1.fc22
php-nette-di-2.3.7-1.fc22
php-nette-php-generator-2.3.5-1.fc22
python-requests-mock-0.7.0-1.fc22
python-tambo-0.2.0-1.fc22
rakudo-star-0.0.2015.11-1.fc22
Details about builds:
================================================================================
audacity-2.1.2-0.7.rc1.fc22 (FEDORA-2015-4320723725)
Multitrack audio editor
--------------------------------------------------------------------------------
Update Information:
2.1.2 Release Candidate 1 The final release is imminent, so we need a variety
of testers to see that the big upstream change to using wxWidgets 3 is working
properly for Fedora users. People with existing Audacity bugzilla reports may
also try this build to determine whether their bug is still reproducible.
Please create bugs for any crashes, hangs or problems you see.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1219922 - segfaults if I press ESC
https://bugzilla.redhat.com/show_bug.cgi?id=1219922
[ 2 ] Bug #1251591 - audacity: xcb_io.c:179: dequeue_pending_request: Assertion
`!xcb_xlib_unknown_req_in_deq' failed.
https://bugzilla.redhat.com/show_bug.cgi?id=1251591
[ 3 ] Bug #1258250 - audacity fails to start - exits with code 255
https://bugzilla.redhat.com/show_bug.cgi?id=1258250
[ 4 ] Bug #1270555 - [abrt] audacity: SpectrumAnalyst::GetProcessedValue(): audacity
killed by SIGSEGV
https://bugzilla.redhat.com/show_bug.cgi?id=1270555
[ 5 ] Bug #1189444 - Audacity cannot play audio
https://bugzilla.redhat.com/show_bug.cgi?id=1189444
--------------------------------------------------------------------------------
================================================================================
copy-jdk-configs-1.1-1.fc22 (FEDORA-2015-2f6c7508b7)
JDKs configuration files copier
--------------------------------------------------------------------------------
Update Information:
initial package
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1287756 - Review Request: copy-jdk-configs - JDK config files copier
https://bugzilla.redhat.com/show_bug.cgi?id=1287756
--------------------------------------------------------------------------------
================================================================================
cycle-0.3.1-18.fc22 (FEDORA-2015-5796d8fc07)
Calendar program for women
--------------------------------------------------------------------------------
Update Information:
Make the package buildable on recent Fedoras with wxPython 3.*
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1190942 - cycle: doesn't start with wxPython 3.0
https://bugzilla.redhat.com/show_bug.cgi?id=1190942
--------------------------------------------------------------------------------
================================================================================
gogoc-1.2-49.fc22 (FEDORA-2015-245d764be1)
IPv6 TSP client for gogo6
--------------------------------------------------------------------------------
Update Information:
Add CAP_DAC_OVERRIDE
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1224471 - gogoc generates incorrect configuration for radvd when configured
as a router
https://bugzilla.redhat.com/show_bug.cgi?id=1224471
--------------------------------------------------------------------------------
================================================================================
hawaii-shell-0.5.92-3.fc22 (FEDORA-2015-a64838f416)
Hawaii shell for desktop, netbook and tablet
--------------------------------------------------------------------------------
Update Information:
Move Hawaii QtQuick components to a separate package (hawaii-components) making
the SDDM theme work without installing unnecessary parts.
--------------------------------------------------------------------------------
================================================================================
kf5-plasma-5.16.0-3.fc22 (FEDORA-2015-4d7e966de2)
KDE Frameworks 5 Tier 3 framework is foundation to build a primary user interface
--------------------------------------------------------------------------------
Update Information:
Revert network icons to fix missing icons in plasma-nm
--------------------------------------------------------------------------------
================================================================================
libetonyek-0.1.5-1.fc22 (FEDORA-2015-fc16bdf917)
A library for import of Apple iWork documents
--------------------------------------------------------------------------------
Update Information:
new upstream release ---- new upstream release
--------------------------------------------------------------------------------
================================================================================
libpinyin-1.3.0-1.fc22 (FEDORA-2015-ef78b6642f)
Library to deal with pinyin
--------------------------------------------------------------------------------
Update Information:
Fixes double pinyin parser.
--------------------------------------------------------------------------------
================================================================================
libpng10-1.0.65-1.fc22 (FEDORA-2015-3461e976cb)
Old version of libpng, needed to run old binaries
--------------------------------------------------------------------------------
Update Information:
The fix for CVE-8126 was incomplete in the previous 1.0.64 update.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1281756 - CVE-2015-8126 libpng: Buffer overflow vulnerabilities in
png_get_PLTE/png_set_PLTE functions
https://bugzilla.redhat.com/show_bug.cgi?id=1281756
--------------------------------------------------------------------------------
================================================================================
moarvm-0.2015.11-1.fc22 (FEDORA-2015-698dba581b)
Meta-model On A Runtime Virtual Machine
--------------------------------------------------------------------------------
Update Information:
update to 2015.11
--------------------------------------------------------------------------------
================================================================================
moodle-2.8.9-1.fc22 (FEDORA-2015-2ebdd4ad8f)
A Course Management System
--------------------------------------------------------------------------------
Update Information:
Security update.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1288159 - CVE-2015-5331 CVE-2015-5332 CVE-2015-5335 CVE-2015-5336
CVE-2015-5337 CVE-2015-5338 CVE-2015-5339 CVE-2015-5340 CVE-2015-5341 CVE-2015-5342
moodle: Multiple security issues fixed in 2.7.11, 2.8.9, 2.9.3 [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1288159
[ 2 ] Bug #1264868 - CVE-2015-5264 CVE-2015-5265 CVE-2015-5266 CVE-2015-5267
CVE-2015-5272 CVE-2015-5268 CVE-2015-5269 moodle: Multiple security issues (MSA-15-0030,
MSA-15-0031, MSA-15-0032, MSA-15-0033, MSA-15-0034, MSA-15-0035, MSA-15-0036)
[fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1264868
--------------------------------------------------------------------------------
================================================================================
nqp-0.0.2015.11-1.fc22 (FEDORA-2015-18964c8cc5)
Not Quite Perl (6)
--------------------------------------------------------------------------------
Update Information:
- update to 2015.11 - build on all architectures
--------------------------------------------------------------------------------
================================================================================
openscap-1.2.7-1.fc22 (FEDORA-2015-1d1965c0a7)
Set of open source libraries enabling integration of the SCAP line of standards
--------------------------------------------------------------------------------
Update Information:
upgrade to the latest upstream release
--------------------------------------------------------------------------------
================================================================================
perl-ExtUtils-MakeMaker-7.04-2.fc22 (FEDORA-2015-88bac67fd9)
Create a module Makefile
--------------------------------------------------------------------------------
Update Information:
This release declares optional modules as recommended run-time dependency. Some
of the are needed for generating META files when building CPAN distribution
archives.
--------------------------------------------------------------------------------
================================================================================
perl-File-Touch-0.10-1.fc22 (FEDORA-2015-de38b18414)
Update access, modification timestamps, creating nonexistent files
--------------------------------------------------------------------------------
Update Information:
New upstream release: 0.10.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1285407 - Upgrade perl-File-Touch to 0.10
https://bugzilla.redhat.com/show_bug.cgi?id=1285407
--------------------------------------------------------------------------------
================================================================================
php-latte-2.3.8-1.fc22 (FEDORA-2015-1a0637b649)
Latte: the amazing template engine for PHP
--------------------------------------------------------------------------------
Update Information:
**Released version 2.3.8** * better error messages *
Engine::renderToString handles Throwable errors * Engine: improved exception
info when template contains parse error
--------------------------------------------------------------------------------
================================================================================
php-nette-database-2.3.8-1.fc22 (FEDORA-2015-03167b8e07)
Nette Database Component
--------------------------------------------------------------------------------
Update Information:
Nette provides a powerful layer for accessing your database easily. - composes
SQL queries with ease - easily fetches data - uses efficient queries and does
not transmit unnecessary data The Nette\Database\Connection class is a wrapper
around the PDO and represents a connection to the database. The core
functionality is provided by Nette\Database\Context. Nette\Database\Table layer
provides an enhanced layer for table querying. To use this library, you just
have to add, in your project: require_once
'/usr/share/php/Nette/Database/autoload.php';
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1277474 - Review Request: php-nette-database - Nette Database Component
https://bugzilla.redhat.com/show_bug.cgi?id=1277474
--------------------------------------------------------------------------------
================================================================================
php-nette-di-2.3.7-1.fc22 (FEDORA-2015-762f8c75bb)
Nette Dependency Injection Component
--------------------------------------------------------------------------------
Update Information:
Purpose of the Dependecy Injection (DI) is to free classes from the
responsibility for obtaining objects that they need for its operation (these
objects are called services). To pass them these services on their instantiation
instead. Nette DI is one of the most interesting part of framework. It is
compiled DI container, extremely fast and easy to configure. To use this
library, you just have to add, in your project: require_once
'/usr/share/php/Nette/DI/autoload.php';
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1277397 - Review Request: php-nette-di - Nette Dependency Injection
Component
https://bugzilla.redhat.com/show_bug.cgi?id=1277397
--------------------------------------------------------------------------------
================================================================================
php-nette-php-generator-2.3.5-1.fc22 (FEDORA-2015-f2f6fd2b06)
Nette PHP Generator
--------------------------------------------------------------------------------
Update Information:
**Released version 2.3.5** * ClassType, Method: class types are not
resolved when namespace is not specified [#21]
--------------------------------------------------------------------------------
================================================================================
python-requests-mock-0.7.0-1.fc22 (FEDORA-2015-6cc594b165)
A requests mocking tool for python
--------------------------------------------------------------------------------
Update Information:
Update to new version 0.7.0
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1284897 - python-requests-mock-0.7.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1284897
--------------------------------------------------------------------------------
================================================================================
python-tambo-0.2.0-1.fc22 (FEDORA-2015-8ea88437e5)
A command line object dispatcher
--------------------------------------------------------------------------------
Update Information:
python-tambo is a command line object dispatcher. Use any argument parser you
want for each sub-command. Easily manage each command as a self-contained
application.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1273020 - python-tambo-v0.2.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1273020
--------------------------------------------------------------------------------
================================================================================
rakudo-star-0.0.2015.11-1.fc22 (FEDORA-2015-6391e57da0)
Rakudo, Perl6-modules and documentation
--------------------------------------------------------------------------------
Update Information:
update to 2015.11
--------------------------------------------------------------------------------