The following Fedora 22 Security updates need testing:
Age URL
344
https://bodhi.fedoraproject.org/updates/FEDORA-2015-5878
echoping-6.1-0.beta.r434svn.1.fc22
293
https://bodhi.fedoraproject.org/updates/FEDORA-2015-9185
ceph-deploy-1.5.25-1.fc22
226
https://bodhi.fedoraproject.org/updates/FEDORA-2015-12781
python-kdcproxy-0.3.2-1.fc22
180
https://bodhi.fedoraproject.org/updates/FEDORA-2015-16239 nagios-4.0.8-1.fc22
168
https://bodhi.fedoraproject.org/updates/FEDORA-2015-2d37e7dacf
openstack-swift-2.2.0-6.fc22
138
https://bodhi.fedoraproject.org/updates/FEDORA-2015-9039c25f1d
miniupnpc-1.9-6.fc22
120
https://bodhi.fedoraproject.org/updates/FEDORA-2015-7dfbe09bb4
libpng-1.6.16-4.fc22
120
https://bodhi.fedoraproject.org/updates/FEDORA-2015-6c07ab1fa6
libpng-1.6.16-5.fc22
102
https://bodhi.fedoraproject.org/updates/FEDORA-2015-3a5cebb105
ImageMagick-6.9.2.7-1.fc22
87
https://bodhi.fedoraproject.org/updates/FEDORA-2015-b9e4c97ff1 sos-3.2-2.fc22
61
https://bodhi.fedoraproject.org/updates/FEDORA-2015-f683150aa0
thttpd-2.25b-37.fc22
49
https://bodhi.fedoraproject.org/updates/FEDORA-2016-4c57c232c0
xulrunner-44.0-1.fc22
37
https://bodhi.fedoraproject.org/updates/FEDORA-2016-560802e52b
xdelta-3.0.7-7.fc22
26
https://bodhi.fedoraproject.org/updates/FEDORA-2016-24d134e494
mingw-nsis-2.50-1.fc22
18
https://bodhi.fedoraproject.org/updates/FEDORA-2016-338a7e9925
graphite2-1.3.6-1.fc22
15
https://bodhi.fedoraproject.org/updates/FEDORA-2016-11537160e9
websvn-2.3.3-12.fc22
13
https://bodhi.fedoraproject.org/updates/FEDORA-2016-3cbe9ad765
python-pygments-2.1.3-1.fc22
9
https://bodhi.fedoraproject.org/updates/FEDORA-2016-7b40eb9e29
libecap-1.0.0-1.fc22 squid-3.5.10-1.fc22
9
https://bodhi.fedoraproject.org/updates/FEDORA-2016-c71532c5e2 putty-0.67-1.fc22
8
https://bodhi.fedoraproject.org/updates/FEDORA-2016-bb7bdd7063
php-pecl-http-2.5.6-1.fc22
8
https://bodhi.fedoraproject.org/updates/FEDORA-2016-5f44e89fe0
python-tgcaptcha2-0.3.1-1.fc22
6
https://bodhi.fedoraproject.org/updates/FEDORA-2016-d339d610c1
openssh-6.9p1-11.fc22
6
https://bodhi.fedoraproject.org/updates/FEDORA-2016-dc3740c56e
apache-commons-collections-3.2.2-1.fc22
6
https://bodhi.fedoraproject.org/updates/FEDORA-2016-e6651efbaf
tomcat-7.0.68-3.fc22
6
https://bodhi.fedoraproject.org/updates/FEDORA-2016-161b73fc2c
bind99-9.9.8-4.P4.fc22
6
https://bodhi.fedoraproject.org/updates/FEDORA-2016-f95d8ea3ad
proftpd-1.3.5b-1.fc22
6
https://bodhi.fedoraproject.org/updates/FEDORA-2016-364c0a9df4
bind-9.10.3-9.P4.fc22
4
https://bodhi.fedoraproject.org/updates/FEDORA-2016-40a657cee1
dropbear-2016.72-1.fc22
2
https://bodhi.fedoraproject.org/updates/FEDORA-2016-0429f34acd
torbrowser-launcher-0.2.4-1.fc22
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-ddc8c5c950
seamonkey-2.40-1.fc22
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-47c0adc816
webkitgtk3-2.4.10-1.fc22
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-9ec1850fff
webkitgtk-2.4.10-1.fc22
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-68b43a4e0d
webkitgtk4-2.10.9-1.fc22
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-3a57b19360
kernel-4.4.6-200.fc22
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-bfaf6a133b qemu-2.3.1-13.fc22
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-cee7647200 git-2.4.11-1.fc22
The following Fedora 22 Critical Path updates have yet to be approved:
Age URL
219
https://bodhi.fedoraproject.org/updates/FEDORA-2015-13210 yum-3.4.3-508.fc22
138
https://bodhi.fedoraproject.org/updates/FEDORA-2015-2123de044f
libgphoto2-2.5.8-1.fc22
134
https://bodhi.fedoraproject.org/updates/FEDORA-2015-48f718ed1b vim-7.4.909-1.fc22
120
https://bodhi.fedoraproject.org/updates/FEDORA-2015-6c07ab1fa6
libpng-1.6.16-5.fc22
120
https://bodhi.fedoraproject.org/updates/FEDORA-2015-7dfbe09bb4
libpng-1.6.16-4.fc22
49
https://bodhi.fedoraproject.org/updates/FEDORA-2016-4c57c232c0
xulrunner-44.0-1.fc22
44
https://bodhi.fedoraproject.org/updates/FEDORA-2016-d3fce30d64
mobile-broadband-provider-info-1.20151214-1.fc22
26
https://bodhi.fedoraproject.org/updates/FEDORA-2016-ce419c9cab
selinux-policy-3.13.1-128.28.fc22
22
https://bodhi.fedoraproject.org/updates/FEDORA-2016-b37af739e7
spatialite-tools-4.2.0-20.fc22 sqlite-3.11.0-2.fc22
18
https://bodhi.fedoraproject.org/updates/FEDORA-2016-3b03252507
rpm-4.12.0.1-16.fc22
15
https://bodhi.fedoraproject.org/updates/FEDORA-2016-bf56b612e9
libbluray-0.9.2-1.fc22
15
https://bodhi.fedoraproject.org/updates/FEDORA-2016-4d5434d82f parted-3.2-16.fc22
6
https://bodhi.fedoraproject.org/updates/FEDORA-2016-364c0a9df4
bind-9.10.3-9.P4.fc22
6
https://bodhi.fedoraproject.org/updates/FEDORA-2016-11b32d067d
gtk2-2.24.30-1.fc22
6
https://bodhi.fedoraproject.org/updates/FEDORA-2016-76aa957f67
gnutls-3.3.22-1.fc22
6
https://bodhi.fedoraproject.org/updates/FEDORA-2016-d339d610c1
openssh-6.9p1-11.fc22
6
https://bodhi.fedoraproject.org/updates/FEDORA-2016-4072c51267 dracut-041-15.fc22
2
https://bodhi.fedoraproject.org/updates/FEDORA-2016-d4e6e32c1c
upower-0.99.3-2.fc22
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-3a57b19360
kernel-4.4.6-200.fc22
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-dbc09943ac
ca-certificates-2016.2.7-1.0.fc22
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-4e719508d2 pcre-8.38-4.fc22
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-47c0adc816
webkitgtk3-2.4.10-1.fc22
The following builds have been pushed to Fedora 22 updates-testing
acpid-2.0.27-1.fc22
ca-certificates-2016.2.7-1.0.fc22
carbon-c-relay-1.10-1.fc22
eclipse-dltk-5.4.0-2.fc22
eclipse-xsd-2.11.0-3.fc22
elementary-1.17.0-1.fc22
emerald-0.8.12.2-1.fc22
evas-generic-loaders-1.17.0-1.fc22
fedpkg-1.22-2.fc22
fusion-icon-0.2.2-1.fc22
gimp-separate+-0.5.8-16.fc22
git-2.4.11-1.fc22
global-6.5.2-1.fc22
gnome-commander-1.4.8-1.fc22
golang-github-codegangsta-cli-1.2.0-9.fc22
golang-github-docker-go-1.5.1-0.2.gitd30aec9.fc22
golang-github-go-fsnotify-fsnotify-1.2.0-0.4.git96c060f.fc22
golang-github-opencontainers-specs-0.4.0-0.1.git3ce138b.fc22
golang-github-tchap-go-patricia-1.0.1-8.fc22
gtick-0.5.4-1.fc22
ibus-table-1.9.12-1.fc22
inxi-2.2.35-1.fc22
kernel-4.4.6-200.fc22
libvirt-1.2.13.2-3.fc22
mozilla-noscript-2.9.0.5-1.fc22
munin-2.0.25-11.fc22
openblas-0.2.16-2.fc22
openvswitch-2.5.0-2.fc22
packagedb-cli-2.12-1.fc22
pcre-8.38-4.fc22
perl-DateTime-TimeZone-1.96-1.fc22
php-horde-Horde-Crypt-2.7.2-1.fc22
php-horde-Horde-Service-Weather-2.3.3-1.fc22
php-icewind-smb-1.0.8-1.fc22
php-icewind-streams-0.4.0-1.fc22
php-league-flysystem-1.0.20-1.fc22
php-pecl-mongo-1.6.13-1.fc22
pki-core-10.2.6-12.fc22
projectM-libvisual-2.0.1-14.fc22
purple-telegram-1.2.6-1.fc22
python-justbases-0.6-1.fc22
qbittorrent-3.3.3-11.fc22
qemu-2.3.1-13.fc22
qgis-2.8.4-2.fc22
qtsingleapplication-2.6.1-28.fc22
rb_libtorrent-1.0.9-2.fc22
rear-1.18-1.fc22
rebase-helper-0.7.2-1.fc22
rpkg-1.42-1.fc22
seamonkey-2.40-1.fc22
tomcatjss-7.1.2-2.fc22
tzdata-2016b-1.fc22
webkitgtk-2.4.10-1.fc22
webkitgtk3-2.4.10-1.fc22
webkitgtk4-2.10.9-1.fc22
xboxdrv-0.8.8-2.fc22
yumex-dnf-4.1.6-1.fc22
Details about builds:
================================================================================
acpid-2.0.27-1.fc22 (FEDORA-2016-343ea29049)
ACPI Event Daemon
--------------------------------------------------------------------------------
Update Information:
This is an minor bugfix update, for details see changelog.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1299109 - acpid-2.0.27 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1299109
--------------------------------------------------------------------------------
================================================================================
ca-certificates-2016.2.7-1.0.fc22 (FEDORA-2016-dbc09943ac)
The Mozilla CA root certificate bundle
--------------------------------------------------------------------------------
Update Information:
This is an update to the Mozilla CA certificates list version 2.7, which has
been published as part of Mozilla NSS 3.23. As in previous versions of the ca-
certificates package, the CA list has been modified to keep several legacy CAs
still trusted for compatibility reasons. Please refer to
https://fedoraproject.org/wiki/CA-Certificates for details. If you prefer to
use the unchanged list provided by Mozilla, and if you accept any compatibility
issues it may cause, an administrator may configure the system by executing the
"ca-legacy disable" command. Please refer to the manual page of the ca-legacy
command for additional details.
--------------------------------------------------------------------------------
================================================================================
carbon-c-relay-1.10-1.fc22 (FEDORA-2016-38da722911)
Enhanced C implementation of Carbon relay, aggregator and rewriter
--------------------------------------------------------------------------------
Update Information:
Update to upstream 1.10
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1315289 - carbon-c-relay-v1.10 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1315289
--------------------------------------------------------------------------------
================================================================================
eclipse-dltk-5.4.0-2.fc22 (FEDORA-2016-e9c1426be2)
Dynamic Languages Toolkit (DLTK) Eclipse plug-in
--------------------------------------------------------------------------------
Update Information:
Update to Mars.2 release.
--------------------------------------------------------------------------------
================================================================================
eclipse-xsd-2.11.0-3.fc22 (FEDORA-2016-bd0efa340e)
XML Schema Definition (XSD) Eclipse plug-in
--------------------------------------------------------------------------------
Update Information:
Rebuilt for Mars.2 releases.
--------------------------------------------------------------------------------
================================================================================
elementary-1.17.0-1.fc22 (FEDORA-2016-ee7bda7544)
Basic widget set that is easy to use based on EFL
--------------------------------------------------------------------------------
Update Information:
Upstream update to 1.17.0
--------------------------------------------------------------------------------
================================================================================
emerald-0.8.12.2-1.fc22 (FEDORA-2016-34b7c03915)
Themeable window decorator and compositing manager for Compiz
--------------------------------------------------------------------------------
Update Information:
- emerald Fix having resize cursor activated for maximized windows. Fix right
click near top edge of maximized windows. Add an option to emerald-theme-manager
to disable shading when titlebar is scrolled. Add support for a Super Maximize
button (toggles fullscreen). Fix some memory leaks. - fusion-icon Fix a crash
in some cases caused by an error in DE detection (#1). Acknowledge fusion-icon-
panel icon in Qt backend. Some minor fixes.
--------------------------------------------------------------------------------
================================================================================
evas-generic-loaders-1.17.0-1.fc22 (FEDORA-2016-76f5054215)
Set of generic loaders for Evas
--------------------------------------------------------------------------------
Update Information:
Upstream update to 1.17.0
--------------------------------------------------------------------------------
================================================================================
fedpkg-1.22-2.fc22 (FEDORA-2016-aa071f3010)
Fedora utility for working with dist-git
--------------------------------------------------------------------------------
Update Information:
* new support for dist git namespacing * adds copr-build command
--------------------------------------------------------------------------------
================================================================================
fusion-icon-0.2.2-1.fc22 (FEDORA-2016-34b7c03915)
Compiz Fusion panel applet
--------------------------------------------------------------------------------
Update Information:
- emerald Fix having resize cursor activated for maximized windows. Fix right
click near top edge of maximized windows. Add an option to emerald-theme-manager
to disable shading when titlebar is scrolled. Add support for a Super Maximize
button (toggles fullscreen). Fix some memory leaks. - fusion-icon Fix a crash
in some cases caused by an error in DE detection (#1). Acknowledge fusion-icon-
panel icon in Qt backend. Some minor fixes.
--------------------------------------------------------------------------------
================================================================================
gimp-separate+-0.5.8-16.fc22 (FEDORA-2016-6d967f0435)
Rudimentary CMYK support for The GIMP
--------------------------------------------------------------------------------
Update Information:
Updated AppStream metadata file (rhbz#1316299): updated homepage URL and
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1316299 - Ship AppStream metadata file
https://bugzilla.redhat.com/show_bug.cgi?id=1316299
--------------------------------------------------------------------------------
================================================================================
git-2.4.11-1.fc22 (FEDORA-2016-cee7647200)
Fast Version Control System
--------------------------------------------------------------------------------
Update Information:
Security fix for CVE-2016-2315, CVE-2016-2324 (by updating to 2.4.11).
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1317981 - CVE-2016-2315 CVE-2016-2324 git: path_name() integer truncation and
overflow leading to buffer overflow
https://bugzilla.redhat.com/show_bug.cgi?id=1317981
--------------------------------------------------------------------------------
================================================================================
global-6.5.2-1.fc22 (FEDORA-2016-6397efb7ea)
Source code tag system
--------------------------------------------------------------------------------
Update Information:
- Update to 6.5.2
http://lists.gnu.org/archive/html/info-
global/2015-12/msg00000.html - global-ctags requires Python3 version of Pygments
--------------------------------------------------------------------------------
================================================================================
gnome-commander-1.4.8-1.fc22 (FEDORA-2016-292544eba4)
A nice and fast file manager for the GNOME desktop
--------------------------------------------------------------------------------
Update Information:
New version 1.4.8 is released.
--------------------------------------------------------------------------------
================================================================================
golang-github-codegangsta-cli-1.2.0-9.fc22 (FEDORA-2016-3d0f9d35c6)
Package for building command line apps in Go
--------------------------------------------------------------------------------
Update Information:
Update ---- Needed by runc
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1248680 - Tracker for golang-github-codegangsta-cli
https://bugzilla.redhat.com/show_bug.cgi?id=1248680
--------------------------------------------------------------------------------
================================================================================
golang-github-docker-go-1.5.1-0.2.gitd30aec9.fc22 (FEDORA-2016-82db92772f)
Go packages with small patches autogenerated
--------------------------------------------------------------------------------
Update Information:
Update ---- New package
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1313942 - Review Request: golang-github-docker-go - Go packages with small
patches autogenerated
https://bugzilla.redhat.com/show_bug.cgi?id=1313942
--------------------------------------------------------------------------------
================================================================================
golang-github-go-fsnotify-fsnotify-1.2.0-0.4.git96c060f.fc22 (FEDORA-2016-2b8e447a89)
File system notifications for Go
--------------------------------------------------------------------------------
Update Information:
Update ---- First package for Fedora
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1318299 - Tracker for golang-github-go-fsnotify-fsnotify
https://bugzilla.redhat.com/show_bug.cgi?id=1318299
[ 2 ] Bug #1262426 - Review Request: golang-github-go-fsnotify-fsnotify - File system
notifications for Go
https://bugzilla.redhat.com/show_bug.cgi?id=1262426
--------------------------------------------------------------------------------
================================================================================
golang-github-opencontainers-specs-0.4.0-0.1.git3ce138b.fc22 (FEDORA-2016-24bb8c5ef5)
Open Container Specification
--------------------------------------------------------------------------------
Update Information:
Update to 0.4.0
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1286185 - Tracker for golang-github-opencontainers-specs
https://bugzilla.redhat.com/show_bug.cgi?id=1286185
--------------------------------------------------------------------------------
================================================================================
golang-github-tchap-go-patricia-1.0.1-8.fc22 (FEDORA-2016-2142d90739)
A generic patricia trie implemented in Go
--------------------------------------------------------------------------------
Update Information:
polish the spec file
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1318341 - Tracker for golang-github-tchap-go-patricia
https://bugzilla.redhat.com/show_bug.cgi?id=1318341
[ 2 ] Bug #1307582 - golang-github-tchap-go-patricia: FTBFS in rawhide
https://bugzilla.redhat.com/show_bug.cgi?id=1307582
--------------------------------------------------------------------------------
================================================================================
gtick-0.5.4-1.fc22 (FEDORA-2016-025909109c)
Metronome application
--------------------------------------------------------------------------------
Update Information:
Update to upstream version 0.5.4 with translations updates and bugfixes.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1317224 - update 0.5.4
https://bugzilla.redhat.com/show_bug.cgi?id=1317224
[ 2 ] Bug #1157536 - Application icon is too small to be used in the software center
https://bugzilla.redhat.com/show_bug.cgi?id=1157536
--------------------------------------------------------------------------------
================================================================================
ibus-table-1.9.12-1.fc22 (FEDORA-2016-9668f9969e)
The Table engine for IBus platform
--------------------------------------------------------------------------------
Update Information:
update to 1.9.12; Show the table code in the candidate list when pinyin mode is
used
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1318109 - [RFE] Please show Wubi table code when in pinyin mode
https://bugzilla.redhat.com/show_bug.cgi?id=1318109
--------------------------------------------------------------------------------
================================================================================
inxi-2.2.35-1.fc22 (FEDORA-2016-fae6ae5cba)
A full featured system information script
--------------------------------------------------------------------------------
Update Information:
Update to 2.2.35.
--------------------------------------------------------------------------------
================================================================================
kernel-4.4.6-200.fc22 (FEDORA-2016-3a57b19360)
The Linux kernel
--------------------------------------------------------------------------------
Update Information:
The 4.4.6 update contains a number of important fixes across the tree
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1318172 - CVE-2016-3156 kernel: ipv4: denial of service when destroying a
network interface
https://bugzilla.redhat.com/show_bug.cgi?id=1318172
[ 2 ] Bug #1317383 - CVE-2016-3134 kernel: netfilter: missing bounds check in ipt_entry
structure
https://bugzilla.redhat.com/show_bug.cgi?id=1317383
[ 3 ] Bug #1317386 - CVE-2016-3135 kernel: netfilter: size overflow in x_tables
https://bugzilla.redhat.com/show_bug.cgi?id=1317386
--------------------------------------------------------------------------------
================================================================================
libvirt-1.2.13.2-3.fc22 (FEDORA-2016-8d287c777d)
Library providing a simple virtualization API
--------------------------------------------------------------------------------
Update Information:
* Fix qemu:///session connect race failures (bz #1271183) * driver: log missing
modules as INFO, not WARN (bz #1274849)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1274849 - Don't warn about nonexisting connection drivers
https://bugzilla.redhat.com/show_bug.cgi?id=1274849
--------------------------------------------------------------------------------
================================================================================
mozilla-noscript-2.9.0.5-1.fc22 (FEDORA-2016-2ee6f1470e)
JavaScript white list extension for Mozilla Firefox
--------------------------------------------------------------------------------
Update Information:
Changes since 2.9.0.4: * [XSS] Improved detection of computed property
accessors (thanks Emanuel Bronshtein @e3amn2l for report) * [HTTPS] Fixed
httpsDefWhitelist breaking OCSP (thanks al_9x for reporting) * [HTTPS] Fixed
httpsDefWhitelist breaking
yui.yahooapis.com (thanks Rob Greenberg for reporting
* [XSS] Fixed OpenID-related false positive * Restored Nightly compatibility
broken by bug 1253016 * Fixed regression in HTTPS enforcing exceptions *
[Surrogate] Updated googletag replacement (thanks barbaz) * [Surrogate] Updated
ga replacement (thanks barbaz) * [XSS] Improved replacement for dangerous
keywords/built-in properties (thanks Emanuel Bronshtein @e3amn2l for report) *
[HTTPS] noscript.httpsDefWhitelist option to automatically upgrade to HTTPS
sites found in the default whitelist (enabled by default, thanks Mazin Ahmed
for reporting)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1318460 - mozilla-noscript-2.9.0.5 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1318460
--------------------------------------------------------------------------------
================================================================================
munin-2.0.25-11.fc22 (FEDORA-2016-41976a321c)
Network-wide graphing framework (grapher/gatherer)
--------------------------------------------------------------------------------
Update Information:
EL5/6 do not need to install firewalld files BZ# 1312121 - Munin dynamic graph
zoom (dynazoom) failing due to Apache config. BZ# 1210767 - At least one file
seems corrupt in version 2.0.25-2 and earlier BZ# 1269230 - hddtemp_smartctl
fails to parse temperature from output ---- EL5/6 do not need to install
firewalld files BZ# 1315810 - postgresql plugin default configuration (contrib)
BZ# 1315990 - Please remove unnecessary requirements for munin-node BZ# 1315951
- move /etc/tmpfiles.d/munin.conf to /usr/lib/tmpfiles.d Remove firewalld
Require and associated script. EPEL7 does not have them. BZ# 1300379 - Please
include firewalld service file for munin-node in RPM package BZ# 1262751 -
munin-common should be requires(pre) shadow-utils package Brought forward
munin-2.0.26-406c67e ---- BZ# 1262751 - munin-common should be requires(pre)
shadow-utils package
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1312121 - Munin dynamic graph zoom (dynazoom) failing due to Apache config.
https://bugzilla.redhat.com/show_bug.cgi?id=1312121
[ 2 ] Bug #1210767 - At least one file seems corrupt in version 2.0.25-2 and earlier
https://bugzilla.redhat.com/show_bug.cgi?id=1210767
[ 3 ] Bug #1269230 - hddtemp_smartctl fails to parse temperature from output
https://bugzilla.redhat.com/show_bug.cgi?id=1269230
[ 4 ] Bug #1315810 - postgresql plugin default configuration
https://bugzilla.redhat.com/show_bug.cgi?id=1315810
[ 5 ] Bug #1315990 - Please remove unnecessary requirements for munin-node
https://bugzilla.redhat.com/show_bug.cgi?id=1315990
[ 6 ] Bug #1315951 - move /etc/tmpfiles.d/munin.conf to /usr/lib/tmpfiles.d
https://bugzilla.redhat.com/show_bug.cgi?id=1315951
[ 7 ] Bug #1300379 - Please include firewalld service file for munin-node in RPM
package
https://bugzilla.redhat.com/show_bug.cgi?id=1300379
[ 8 ] Bug #1262751 - munin-common should be requires(pre) shadow-utils package
https://bugzilla.redhat.com/show_bug.cgi?id=1262751
--------------------------------------------------------------------------------
================================================================================
openblas-0.2.16-2.fc22 (FEDORA-2016-8a162107dc)
An optimized BLAS library based on GotoBLAS2
--------------------------------------------------------------------------------
Update Information:
Update to 0.2.16, bringing in LAPACK bugfixes and some more optimizations. Full
changelog available at
https://github.com/xianyi/OpenBLAS/blob/develop/Changelog.txt
--------------------------------------------------------------------------------
================================================================================
openvswitch-2.5.0-2.fc22 (FEDORA-2016-02d04a604a)
Open vSwitch daemon/database/utilities
--------------------------------------------------------------------------------
Update Information:
This update brings openvswitch to the latest stable release 2.5.0, including
numerous new features such as connection tracking. For further details see the
upstream announcement:
http://openvswitch.org/pipermail/announce/2016-February/000081.html
--------------------------------------------------------------------------------
================================================================================
packagedb-cli-2.12-1.fc22 (FEDORA-2016-7db7313315)
A CLI for pkgdb
--------------------------------------------------------------------------------
Update Information:
Update to 2.12 - Improved README for running pkgdb-cli/admin from the sources -
Ensure the fedora-review flag has been touched when processing a new package
request - Fix creating new packages with monitoring and koschei statuses
provided ---- - Update to 2.11 - Fix processing all the pending actions (Till
Maas) - Improved py3 support - When processing a request, show the tests
performed (Till Maas) - Fix encoding for package description or user that are
not only ascii - Improve the checks performed when processing a new package
request - Let the users control the limit argument when retrieving all the
packages (Ralph Bean) - Add support for pkgdb2's namespacing - Port to
openidbaseclient from python-fedora (Ralph Bean) - Show the FAS user's username
from their bugzilla email when processing requests (Till Maas) - Include
monitoring information if any are provided when creating a package - If there
are co-maintainers specified in the new package request, grant them ACLs
--------------------------------------------------------------------------------
================================================================================
pcre-8.38-4.fc22 (FEDORA-2016-4e719508d2)
Perl-compatible regular expression library
--------------------------------------------------------------------------------
Update Information:
This release fixes a non-diagnosis of missing assertion after (?(?C) that could
corrupt a process stack. It also corrects a typo in pcre_study() code that did
not have any bad impact probably.
--------------------------------------------------------------------------------
================================================================================
perl-DateTime-TimeZone-1.96-1.fc22 (FEDORA-2016-3908dc06f4)
Time zone object base class and factory
--------------------------------------------------------------------------------
Update Information:
Updated to the latest version
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1318069 - perl-DateTime-TimeZone-1.96 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1318069
--------------------------------------------------------------------------------
================================================================================
php-horde-Horde-Crypt-2.7.2-1.fc22 (FEDORA-2016-cd32eb98bb)
Horde Cryptography API
--------------------------------------------------------------------------------
Update Information:
**Horde_Crypt 2.7.2** * [jan] Fix throwing exception if verifying a PGP
signature failed. ---- **Horde_Crypt 2.7.1** * [jan] Update Greek
translation (Limperis Antonis). * [jan] Try three times to retrieve public PGP
if the keyserver pool contains broken servers.
--------------------------------------------------------------------------------
================================================================================
php-horde-Horde-Service-Weather-2.3.3-1.fc22 (FEDORA-2016-6e2d56f216)
Horde Weather Provider
--------------------------------------------------------------------------------
Update Information:
**Horde_Service_Weather 2.3.3** * [mjr] Fix fatal error related to setting
timezone in WWO driver (Bug #14289).
--------------------------------------------------------------------------------
================================================================================
php-icewind-smb-1.0.8-1.fc22 (FEDORA-2016-cfafb06893)
php wrapper for smbclient and libsmbclient-php
--------------------------------------------------------------------------------
Update Information:
** icewind/smb 1.0.8** * Workaround for an upstream bug using fstat and dfs
shares --- ** icewind/smb 1.0.7** * only set minumum required streams version
--- ** icewind/smb 1.0.6** * Properly handle errors in stream_stat --- **
icewind/smb 1.0.5** * Improved detection and reporting of errors ---
**icewin/streams 0.4.0** * Add RetryWrapper to work with remote streams that
don't return all the requested data --- **icewin/streams 0.3.0** * Add
Path object to wrap a stream in a string-like variable to pass to functions. *
Add UrlCallBack wrapper that provides callbacks for fopen, unlink, etc * Add
folder support to callback wrapper
--------------------------------------------------------------------------------
================================================================================
php-icewind-streams-0.4.0-1.fc22 (FEDORA-2016-cfafb06893)
A set of generic stream wrappers
--------------------------------------------------------------------------------
Update Information:
** icewind/smb 1.0.8** * Workaround for an upstream bug using fstat and dfs
shares --- ** icewind/smb 1.0.7** * only set minumum required streams version
--- ** icewind/smb 1.0.6** * Properly handle errors in stream_stat --- **
icewind/smb 1.0.5** * Improved detection and reporting of errors ---
**icewin/streams 0.4.0** * Add RetryWrapper to work with remote streams that
don't return all the requested data --- **icewin/streams 0.3.0** * Add
Path object to wrap a stream in a string-like variable to pass to functions. *
Add UrlCallBack wrapper that provides callbacks for fopen, unlink, etc * Add
folder support to callback wrapper
--------------------------------------------------------------------------------
================================================================================
php-league-flysystem-1.0.20-1.fc22 (FEDORA-2016-2f8a1ce610)
Filesystem abstraction: Many filesystems, one API
--------------------------------------------------------------------------------
Update Information:
**Version 1.0.20** * MimeType detection now falls back on extension guessing
when the contents is a resource. --- **Version 1.0.19** *
[Util::normalizeRelativePath] '.' didn't normalize to '', this is now
fixed.
---- **Version 1.0.18** * Revert "Simplified Util::pathinfo, dirname key
always exists."
--------------------------------------------------------------------------------
================================================================================
php-pecl-mongo-1.6.13-1.fc22 (FEDORA-2016-6222c7c82c)
PHP MongoDB database driver
--------------------------------------------------------------------------------
Update Information:
**Version 1.6.13** * [PHP-1483] - GridFS file storage fails on big endian
platform * [PHP-1500] - Socket timeout not applied to initial command cursor
query * [PHP-1501] - Rephrase unsupported/corrupt BSON messages * [PHP-1504] -
Segfault connecting to authenticated RS after non-auth connections * [PHP-1505]
- negative files.length when storing file with size > 2GB in gridfs
--------------------------------------------------------------------------------
================================================================================
pki-core-10.2.6-12.fc22 (FEDORA-2016-c9a44b20fd)
Certificate System - PKI Core Components
--------------------------------------------------------------------------------
Update Information:
Bugzilla Bug #1245786 - Build failure on F23 (backported to coincide with Tomcat
version change to 7.0.68) ---- PKI TRAC Tickets #1714, 456, 1681, 1682, 2040
---- PKI TRAC Ticket #1700,1702
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1245786 - Build failure on F23
https://bugzilla.redhat.com/show_bug.cgi?id=1245786
--------------------------------------------------------------------------------
================================================================================
projectM-libvisual-2.0.1-14.fc22 (FEDORA-2016-592dc31a6b)
The projectM visualization plugin for libvisual
--------------------------------------------------------------------------------
Update Information:
Fix FTBFS (#1239797) and (#1307877)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1239797 - projectM-libvisual: FTBFS in rawhide
https://bugzilla.redhat.com/show_bug.cgi?id=1239797
[ 2 ] Bug #1307877 - projectM-libvisual: FTBFS in rawhide
https://bugzilla.redhat.com/show_bug.cgi?id=1307877
--------------------------------------------------------------------------------
================================================================================
purple-telegram-1.2.6-1.fc22 (FEDORA-2016-15cceb9286)
Libpurple protocol plugin for Telegram support
--------------------------------------------------------------------------------
Update Information:
Include libtgl bugfix "use-after-not-created for photos"
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1296158 - [abrt] pidgin: tree_insert_peer_by_name(): pidgin killed by
SIGABRT
https://bugzilla.redhat.com/show_bug.cgi?id=1296158
[ 2 ] Bug #1317105 - purple-telegram-v1.2.6 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1317105
--------------------------------------------------------------------------------
================================================================================
python-justbases-0.6-1.fc22 (FEDORA-2016-7c14fd2795)
A small library for precise conversion between arbitrary bases
--------------------------------------------------------------------------------
Update Information:
Initial Fedora package of reasonably mature upstream.
--------------------------------------------------------------------------------
================================================================================
qbittorrent-3.3.3-11.fc22 (FEDORA-2016-a455be1c2d)
A Bittorrent Client
--------------------------------------------------------------------------------
Update Information:
Fix multiple bugs in those packages
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1294336 - Headless qbittorrent has gui as prerequisite
https://bugzilla.redhat.com/show_bug.cgi?id=1294336
[ 2 ] Bug #1301942 - rb_libtorrent-1.0.9 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1301942
[ 3 ] Bug #1317676 - rb_libtorrent Python 3 binding is missing a library
https://bugzilla.redhat.com/show_bug.cgi?id=1317676
--------------------------------------------------------------------------------
================================================================================
qemu-2.3.1-13.fc22 (FEDORA-2016-bfaf6a133b)
QEMU is a FAST! processor emulator
--------------------------------------------------------------------------------
Update Information:
* CVE-2016-2538: Integer overflow in usb module (bz #1305815) * CVE-2016-2841:
ne2000: infinite loop (bz #1304047) * CVE-2016-2857: net: out of bounds read (bz
#1309564) * CVE-2016-2392: usb: null pointer dereference (bz #1307115) * spice:
fix spice_chr_add_watch() crash (bz #1315049)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1303120 - CVE-2016-2538 Qemu: usb: integer overflow in remote NDIS control
message handling
https://bugzilla.redhat.com/show_bug.cgi?id=1303120
[ 2 ] Bug #1303106 - CVE-2016-2841 Qemu: net: ne2000: infinite loop in ne2000_receive
https://bugzilla.redhat.com/show_bug.cgi?id=1303106
[ 3 ] Bug #1296567 - CVE-2016-2857 Qemu: net: out of bounds read in
net_checksum_calculate()
https://bugzilla.redhat.com/show_bug.cgi?id=1296567
[ 4 ] Bug #1302299 - CVE-2016-2392 Qemu: usb: null pointer dereference in remote NDIS
control message handling
https://bugzilla.redhat.com/show_bug.cgi?id=1302299
--------------------------------------------------------------------------------
================================================================================
qgis-2.8.4-2.fc22 (FEDORA-2016-dcc3ce7a2f)
A user friendly Open Source Geographic Information System
--------------------------------------------------------------------------------
Update Information:
Some libraries were not scanned for their dependencies, which could lead to
situations where libgsl was not installed and the georeferencer plug-in would
therefore refuse to work.
--------------------------------------------------------------------------------
================================================================================
qtsingleapplication-2.6.1-28.fc22 (FEDORA-2016-a455be1c2d)
Qt library to start applications only once per user
--------------------------------------------------------------------------------
Update Information:
Fix multiple bugs in those packages
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1294336 - Headless qbittorrent has gui as prerequisite
https://bugzilla.redhat.com/show_bug.cgi?id=1294336
[ 2 ] Bug #1301942 - rb_libtorrent-1.0.9 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1301942
[ 3 ] Bug #1317676 - rb_libtorrent Python 3 binding is missing a library
https://bugzilla.redhat.com/show_bug.cgi?id=1317676
--------------------------------------------------------------------------------
================================================================================
rb_libtorrent-1.0.9-2.fc22 (FEDORA-2016-a455be1c2d)
A C++ BitTorrent library aiming to be the best alternative
--------------------------------------------------------------------------------
Update Information:
Fix multiple bugs in those packages
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1294336 - Headless qbittorrent has gui as prerequisite
https://bugzilla.redhat.com/show_bug.cgi?id=1294336
[ 2 ] Bug #1301942 - rb_libtorrent-1.0.9 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1301942
[ 3 ] Bug #1317676 - rb_libtorrent Python 3 binding is missing a library
https://bugzilla.redhat.com/show_bug.cgi?id=1317676
--------------------------------------------------------------------------------
================================================================================
rear-1.18-1.fc22 (FEDORA-2016-41a845dead)
Relax-and-Recover is a Linux disaster recovery and system migration tool
--------------------------------------------------------------------------------
Update Information:
For a changelog see the rear-release-notes.txt file.
--------------------------------------------------------------------------------
================================================================================
rebase-helper-0.7.2-1.fc22 (FEDORA-2016-54cd353fa9)
The tool which helps you with rebase package
--------------------------------------------------------------------------------
Update Information:
New upstream release 0.7.2 ---- New upstream version 0.7.1 (#1310640) ----
new upstream release 0.7.0
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1318134 - rebase-helper-0.7.2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1318134
[ 2 ] Bug #1310640 - rebase-helper-0.7.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1310640
[ 3 ] Bug #1298403 - rebase-helper-0.7.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1298403
--------------------------------------------------------------------------------
================================================================================
rpkg-1.42-1.fc22 (FEDORA-2016-aa071f3010)
Utility for interacting with rpm+git packaging systems
--------------------------------------------------------------------------------
Update Information:
* new support for dist git namespacing * adds copr-build command
--------------------------------------------------------------------------------
================================================================================
seamonkey-2.40-1.fc22 (FEDORA-2016-ddc8c5c950)
Web browser, e-mail, news, IRC client, HTML editor
--------------------------------------------------------------------------------
Update Information:
Update to 2.40 Fixes various security issues, see
http://www.mozilla.org/security/known-vulnerabilities/seamonkey.html for more
info.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1318592 - seamonkey: 2.40 version release
https://bugzilla.redhat.com/show_bug.cgi?id=1318592
--------------------------------------------------------------------------------
================================================================================
tomcatjss-7.1.2-2.fc22 (FEDORA-2016-f00f8e2144)
JSSE implementation using JSS for Tomcat
--------------------------------------------------------------------------------
Update Information:
Bugzilla Bug #1245786 -Build failure on F23 (backported to F22 to coincide with
Tomcat version change to 7.0.68)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1245786 - Build failure on F23
https://bugzilla.redhat.com/show_bug.cgi?id=1245786
--------------------------------------------------------------------------------
================================================================================
tzdata-2016b-1.fc22 (FEDORA-2016-4764858ab5)
Timezone data
--------------------------------------------------------------------------------
Update Information:
- Rebase to 2016b - New zones Europe/Astrakhan and Europe/Ulyanovsk for
Astrakhan and Ulyanovsk Oblasts, Russia, both of which will switch from +03
to +04 on 2016-03-27 at 02:00 local time. They need distinct zones since
their post-1970 histories disagree. New zone Asia/Barnaul for Altai Krai
and Altai Republic, Russia, which will switch from +06 to +07 on the same
date and local time. The Astrakhan change is already official; the others
have passed the first reading in the State Duma and are extremely likely.
Also, Asia/Sakhalin moves from +10 to +11 on 2016-03-27 at 02:00. - As a trial
of a new system that needs less information to be made up, the new zones use
numeric time zone abbreviations like "+04" instead of invented
abbreviations
like "ASTT". - Haiti will not observe DST in 2016. - Palestine's
spring-
forward transition on 2016-03-26 is at 01:00, not 00:00. Guess future
transitions will be March's last Saturday at 01:00, not March's last Friday
at 24:00.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1317720 - tzdata-2016b is available
https://bugzilla.redhat.com/show_bug.cgi?id=1317720
--------------------------------------------------------------------------------
================================================================================
webkitgtk-2.4.10-1.fc22 (FEDORA-2016-9ec1850fff)
GTK+ Web content engine library
--------------------------------------------------------------------------------
Update Information:
This update addresses the following vulnerabilities: *
[
CVE-2015-1120](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1120) *
[
CVE-2015-1076](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1076) *
[
CVE-2015-1071](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1071) *
[
CVE-2015-1081](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1081) *
[
CVE-2015-1122](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1122) *
[
CVE-2015-1155](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1155) *
[
CVE-2014-1748](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1748) *
[
CVE-2015-3752](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3752) *
[
CVE-2015-5809](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5809) *
[
CVE-2015-5928](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5928) *
[
CVE-2015-3749](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3749) *
[
CVE-2015-3659](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3659) *
[
CVE-2015-3748](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3748) *
[
CVE-2015-3743](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3743) *
[
CVE-2015-3731](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3731) *
[
CVE-2015-3745](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3745) *
[
CVE-2015-5822](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5822) *
[
CVE-2015-3658](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3658) *
[
CVE-2015-3741](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3741) *
[
CVE-2015-3727](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3727) *
[
CVE-2015-5801](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5801) *
[
CVE-2015-5788](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5788) *
[
CVE-2015-3747](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3747) *
[
CVE-2015-5794](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5794) *
[
CVE-2015-1127](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1127) *
[
CVE-2015-1153](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1153) *
[
CVE-2015-1083](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1083)
Additional fixes: * Fix crashes on PowerPC 64. * Fix the build on PowerPC 32.
* Add ARM64 build support. Translation updates * German * Spanish * French
* Italian * Korean * Brazilian Portuguese * Russian * Chinese.
--------------------------------------------------------------------------------
================================================================================
webkitgtk3-2.4.10-1.fc22 (FEDORA-2016-47c0adc816)
GTK+ Web content engine library
--------------------------------------------------------------------------------
Update Information:
This update addresses the following vulnerabilities: *
[
CVE-2015-1120](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1120) *
[
CVE-2015-1076](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1076) *
[
CVE-2015-1071](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1071) *
[
CVE-2015-1081](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1081) *
[
CVE-2015-1122](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1122) *
[
CVE-2015-1155](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1155) *
[
CVE-2014-1748](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2014-1748) *
[
CVE-2015-3752](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3752) *
[
CVE-2015-5809](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5809) *
[
CVE-2015-5928](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5928) *
[
CVE-2015-3749](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3749) *
[
CVE-2015-3659](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3659) *
[
CVE-2015-3748](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3748) *
[
CVE-2015-3743](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3743) *
[
CVE-2015-3731](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3731) *
[
CVE-2015-3745](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3745) *
[
CVE-2015-5822](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5822) *
[
CVE-2015-3658](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3658) *
[
CVE-2015-3741](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3741) *
[
CVE-2015-3727](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3727) *
[
CVE-2015-5801](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5801) *
[
CVE-2015-5788](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5788) *
[
CVE-2015-3747](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-3747) *
[
CVE-2015-5794](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-5794) *
[
CVE-2015-1127](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1127) *
[
CVE-2015-1153](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1153) *
[
CVE-2015-1083](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2015-1083)
Additional fixes: * Fix rendering of form controls and scrollbars with GTK+ >=
3.19 * Fix crashes on PowerPC 64. * Fix the build on PowerPC 32. * Add ARM64
build support. Translation updates * German * Spanish * French * Italian
* Korean * Brazilian Portuguese * Russian * Chinese.
--------------------------------------------------------------------------------
================================================================================
webkitgtk4-2.10.9-1.fc22 (FEDORA-2016-68b43a4e0d)
GTK+ Web content engine library
--------------------------------------------------------------------------------
Update Information:
This update together with the previous release brings the following fixes *
Security fixes: CVE-2016-1726 * Limit the number of tiles according to the
visible area. This was causing a huge memory consumption with some websites. *
Fix rendering of form controls and scrollbars with GTK+ >= 3.19. * Fix HTTP
authentication dialog rendering when accelerated compositing mode is enabled. *
Fix rendering artifacts when using a web view background color. * Fix a crash
when creating a WebKitWebView without providing a WebKitWebContext. * Fix the
build with musl libc library. * Fix the build with clang-3.8. * Fix several
crashes and rendering issues.
--------------------------------------------------------------------------------
================================================================================
xboxdrv-0.8.8-2.fc22 (FEDORA-2016-33af56cc6a)
Userspace Xbox/Xbox360 Gamepad Driver for Linux
--------------------------------------------------------------------------------
Update Information:
- Made xboxdrv.conf file and moved into /etc
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1247744 - xboxdrv systemd unit should include -c /etc/xboxdrv
https://bugzilla.redhat.com/show_bug.cgi?id=1247744
--------------------------------------------------------------------------------
================================================================================
yumex-dnf-4.1.6-1.fc22 (FEDORA-2016-927d14cf42)
Yum Extender graphical package management tool
--------------------------------------------------------------------------------
Update Information:
###Update to 4.1.6 * always return 0 as 00 (hex) in color code * workaround for
changes in Gtk 3.19.x * fix problem with color to hex convertion * Cleanup old
instonly packages is enabled by default * fix possible traceback * don't use
deprecated GObject.SIGNAL_RUN_FIRST
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1294377 - yumex-dnf doesn't open its main window (TypeError: %X format:
an integer is required, not float)
https://bugzilla.redhat.com/show_bug.cgi?id=1294377
[ 2 ] Bug #1316624 - [abrt] yumex-dnf: misc.py:114:rgb_to_hex:TypeError: %X format: an
integer is required, not float
https://bugzilla.redhat.com/show_bug.cgi?id=1316624
[ 3 ] Bug #1279992 - [abrt] yumex-dnf: dbus_status.py:197:error_notify:GLib.Error:
g-dbus-error-quark: GDBus.Error:org.freedesktop.DBus.Error.ServiceUnknown: The name
org.freedesktop.Notifications was not provided by any .service files (2)
https://bugzilla.redhat.com/show_bug.cgi?id=1279992
[ 4 ] Bug #1289824 - yumex-dnf will not start
https://bugzilla.redhat.com/show_bug.cgi?id=1289824
[ 5 ] Bug #1253630 - [abrt] yumex-dnf: widgets.py:307:_is_fedora_pkg:AttributeError:
'NoneType' object has no attribute 'repository'
https://bugzilla.redhat.com/show_bug.cgi?id=1253630
--------------------------------------------------------------------------------