The following Fedora 27 Security updates need testing:
Age URL
10 https://bodhi.fedoraproject.org/updates/FEDORA-2017-b444c3b9c5 libwmf-0.2.8.4-53.fc27
8 https://bodhi.fedoraproject.org/updates/FEDORA-2017-15819d2c37 jasper-2.0.14-1.fc27
6 https://bodhi.fedoraproject.org/updates/FEDORA-2017-0cc84101de python-jwt-1.5.3-1.fc27
3 https://bodhi.fedoraproject.org/updates/FEDORA-2017-7af44272e2 ImageMagick-6.9.9.13-1.fc27 rubygem-rmagick-2.16.0-6.fc27
3 https://bodhi.fedoraproject.org/updates/FEDORA-2017-1136e13b6a php-horde-Horde-Image-2.5.2-1.fc27
3 https://bodhi.fedoraproject.org/updates/FEDORA-2017-aaefb84ff3 wordpress-4.8.2-1.fc27
1 https://bodhi.fedoraproject.org/updates/FEDORA-2017-23dba9fb5d kernel-4.13.3-300.fc27
1 https://bodhi.fedoraproject.org/updates/FEDORA-2017-d270e932a3 nagios-4.3.4-3.fc27
1 https://bodhi.fedoraproject.org/updates/FEDORA-2017-e3fcecbae7 php-horde-passwd-5.0.7-1.fc27
1 https://bodhi.fedoraproject.org/updates/FEDORA-2017-346d6e00dd php-horde-wicked-2.0.8-1.fc27
1 https://bodhi.fedoraproject.org/updates/FEDORA-2017-52ed023208 php-horde-nag-4.2.17-1.fc27
1 https://bodhi.fedoraproject.org/updates/FEDORA-2017-fdd3a98e8f httpd-2.4.27-8.fc27
1 https://bodhi.fedoraproject.org/updates/FEDORA-2017-f0c18420e8 samba-4.7.0-12.fc27
1 https://bodhi.fedoraproject.org/updates/FEDORA-2017-0348398d64 LibRaw-0.18.5-1.fc27
The following builds have been pushed to Fedora 27 updates-testing
FlightGear-2017.3.1-1.fc27
FlightGear-data-2017.3.1-1.fc27
OpenSceneGraph-3.4.1-1.fc27
SDL2-2.0.6-1.fc27
SimGear-2017.3.1-1.fc27
atomic-1.19.1-4.fc27
bodhi-2.11.0-2.fc27
certbot-0.18.2-1.fc27
fedora-repos-27-0.5
fgrun-2016.3.1-15.fc27
golang-github-prometheus-common-0-0.11.git49fee29.fc27
humanity-icon-theme-0.6.13-1.fc27
libguestfs-1.37.27-1.fc27
libreoffice-5.4.2.1-1.fc27
light-themes-16.10-1.20170918bzr563.fc27
nfs-ganesha-2.5.2-5.fc27
osgearth-2.7-15.fc27
php-SymfonyCmfRouting-1.4.1-1.fc27
python-acme-0.18.2-1.fc27
python-certbot-apache-0.18.2-1.fc27
python-certbot-nginx-0.18.2-1.fc27
python-paramiko-2.3.1-1.fc27
python-pymod2pkg-0.10.1-1.fc27
qcad-3.18.0.0-1.fc27
speed-dreams-2.2.1-6.fc27
veusz-2.0.1-1.fc27
xorgxrdp-0.2.4-3.fc27
youtube-dl-2017.09.15-1.fc27
Details about builds:
================================================================================
FlightGear-2017.3.1-1.fc27 (FEDORA-2017-fb5de406e4)
The FlightGear Flight Simulator
--------------------------------------------------------------------------------
Update Information:
- Rebuild for OpenSceneGraph-3.4.1 - Update SimGear, FiightGear, FlightGear-data
--------------------------------------------------------------------------------
================================================================================
FlightGear-data-2017.3.1-1.fc27 (FEDORA-2017-fb5de406e4)
FlightGear base scenery and data files
--------------------------------------------------------------------------------
Update Information:
- Rebuild for OpenSceneGraph-3.4.1 - Update SimGear, FiightGear, FlightGear-data
--------------------------------------------------------------------------------
================================================================================
OpenSceneGraph-3.4.1-1.fc27 (FEDORA-2017-fb5de406e4)
High performance real-time graphics toolkit
--------------------------------------------------------------------------------
Update Information:
- Rebuild for OpenSceneGraph-3.4.1 - Update SimGear, FiightGear, FlightGear-data
--------------------------------------------------------------------------------
================================================================================
SDL2-2.0.6-1.fc27 (FEDORA-2017-edb5706dac)
A cross-platform multimedia library
--------------------------------------------------------------------------------
Update Information:
- Added cross-platform Vulkan graphics support in `SDL_vulkan.h` -
SDL_Vulkan_LoadLibrary() - SDL_Vulkan_GetVkGetInstanceProcAddr() -
SDL_Vulkan_GetInstanceExtensions() - SDL_Vulkan_CreateSurface() -
SDL_Vulkan_GetDrawableSize() - SDL_Vulkan_UnloadLibrary() - Added
`SDL_ComposeCustomBlendMode()` to create custom blend modes for 2D rendering -
Added `SDL_HasNEON()` which returns whether the CPU has NEON instruction support
- Added support for many game controllers, including the Nintendo Switch Pro
Controller - Added support for inverted axes and separate axis directions in
game controller mappings - Added functions to return information about a
joystick before it���s opened: - SDL_JoystickGetDeviceVendor() -
SDL_JoystickGetDeviceProduct() - SDL_JoystickGetDeviceProductVersion() -
SDL_JoystickGetDeviceType() - SDL_JoystickGetDeviceInstanceID() - Added
functions to return information about an open joystick: -
SDL_JoystickGetVendor() - SDL_JoystickGetProduct() -
SDL_JoystickGetProductVersion() - SDL_JoystickGetType() -
SDL_JoystickGetAxisInitialState() - Added functions to return information about
an open game controller: - SDL_GameControllerGetVendor() -
SDL_GameControllerGetProduct() - SDL_GameControllerGetProductVersion() -
Added `SDL_GameControllerNumMappings()` and
`SDL_GameControllerMappingForIndex()` to be able to enumerate the built-in game
controller mappings - Added `SDL_LoadFile()` and `SDL_LoadFile_RW()` to load a
file into memory - Added `SDL_DuplicateSurface()` to make a copy of a surface -
Added an experimental JACK audio driver - Implemented non-power-of-two audio
resampling, optionally using libsamplerate to perform the resampling - Added the
hint `SDL_HINT_AUDIO_RESAMPLING_MODE` to control the quality of resampling -
Added the hint `SDL_HINT_RENDER_LOGICAL_SIZE_MODE` to control the scaling policy
for `SDL_RenderSetLogicalSize()`: - ���0��� or ���letterbox��� - Uses
letterbox/sidebars to fit the entire rendering on screen (the default) - ���1���
or ���overscan��� - Will zoom the rendering so it fills the entire screen, allowing
edges to be drawn offscreen - Added the hints
`SDL_HINT_MOUSE_NORMAL_SPEED_SCALE` and `SDL_HINT_MOUSE_RELATIVE_SPEED_SCALE` to
scale the mouse speed when being read from raw mouse input - Added the hint
`SDL_HINT_TOUCH_MOUSE_EVENTS` to control whether SDL will synthesize mouse
events from touch events - Updated the GUID format for game controller mappings,
older mappings will be automatically converted on load - Added an experimental
KMS/DRM video driver for embedded development
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1494769 - SDL2-2.0.6 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1494769
--------------------------------------------------------------------------------
================================================================================
SimGear-2017.3.1-1.fc27 (FEDORA-2017-fb5de406e4)
Simulation library components
--------------------------------------------------------------------------------
Update Information:
- Rebuild for OpenSceneGraph-3.4.1 - Update SimGear, FiightGear, FlightGear-data
--------------------------------------------------------------------------------
================================================================================
atomic-1.19.1-4.fc27 (FEDORA-2017-fc3f7b24f6)
Tool for managing ProjectAtomic systems and containers
--------------------------------------------------------------------------------
Update Information:
Addition of remediate ---- New atomic and registries code ---- Addition of
run for system containers
--------------------------------------------------------------------------------
================================================================================
bodhi-2.11.0-2.fc27 (FEDORA-2017-ab5f75bb11)
A modular framework that facilitates publishing software updates
--------------------------------------------------------------------------------
Update Information:
Retry auth upon captcha failures. ---- Update to
[bodhi-2.11.0](https://github.com/fedora-infra/bodhi/releases/tag/2.11.0).
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1494644 - fedora.client.bodhi.BodhiClientException: You must provide a captcha_key
https://bugzilla.redhat.com/show_bug.cgi?id=1494644
[ 2 ] Bug #1493587 - bodhi-2.11.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1493587
--------------------------------------------------------------------------------
================================================================================
certbot-0.18.2-1.fc27 (FEDORA-2017-10686cbc6b)
A free, automated certificate authority client
--------------------------------------------------------------------------------
Update Information:
Update to 0.18.2
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1493796 - python-certbot-nginx-0.18.2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1493796
[ 2 ] Bug #1493795 - python-certbot-apache-0.18.2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1493795
[ 3 ] Bug #1493794 - certbot-0.18.2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1493794
[ 4 ] Bug #1493792 - python-acme-0.18.2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1493792
--------------------------------------------------------------------------------
================================================================================
fedora-repos-27-0.5 (FEDORA-2017-eb3af17400)
Fedora package repositories
--------------------------------------------------------------------------------
Update Information:
Split out GPG keys into fedora-gpg-keys
--------------------------------------------------------------------------------
================================================================================
fgrun-2016.3.1-15.fc27 (FEDORA-2017-fb5de406e4)
Graphical front-end for launching FlightGear flight simulator
--------------------------------------------------------------------------------
Update Information:
- Rebuild for OpenSceneGraph-3.4.1 - Update SimGear, FiightGear, FlightGear-data
--------------------------------------------------------------------------------
================================================================================
golang-github-prometheus-common-0-0.11.git49fee29.fc27 (FEDORA-2017-7493543848)
Go libraries shared across Prometheus components and libraries
--------------------------------------------------------------------------------
Update Information:
add missing dependency
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1315096 - Tracker for golang-github-prometheus-common
https://bugzilla.redhat.com/show_bug.cgi?id=1315096
--------------------------------------------------------------------------------
================================================================================
humanity-icon-theme-0.6.13-1.fc27 (FEDORA-2017-695ecc1028)
Humanity icon theme
--------------------------------------------------------------------------------
Update Information:
This update provides the latest version of the Humanity icon theme and the Light
themes, as provided by latest prereleases of Ubuntu 17.10. This new version
supports GTK >= 3.22.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1493162 - Please update to the latest upstream version
https://bugzilla.redhat.com/show_bug.cgi?id=1493162
[ 2 ] Bug #1470595 - This theme is not working with GTK 3.20+
https://bugzilla.redhat.com/show_bug.cgi?id=1470595
--------------------------------------------------------------------------------
================================================================================
libguestfs-1.37.27-1.fc27 (FEDORA-2017-cc1d2e1667)
Access and modify virtual machine disk images
--------------------------------------------------------------------------------
Update Information:
New upstream version 1.37.27.
--------------------------------------------------------------------------------
================================================================================
libreoffice-5.4.2.1-1.fc27 (FEDORA-2017-f7fff4c965)
Free Software Productivity Suite
--------------------------------------------------------------------------------
Update Information:
update to 5.4.2 rc1
--------------------------------------------------------------------------------
================================================================================
light-themes-16.10-1.20170918bzr563.fc27 (FEDORA-2017-695ecc1028)
Themes for Ubuntu
--------------------------------------------------------------------------------
Update Information:
This update provides the latest version of the Humanity icon theme and the Light
themes, as provided by latest prereleases of Ubuntu 17.10. This new version
supports GTK >= 3.22.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1493162 - Please update to the latest upstream version
https://bugzilla.redhat.com/show_bug.cgi?id=1493162
[ 2 ] Bug #1470595 - This theme is not working with GTK 3.20+
https://bugzilla.redhat.com/show_bug.cgi?id=1470595
--------------------------------------------------------------------------------
================================================================================
nfs-ganesha-2.5.2-5.fc27 (FEDORA-2017-8edc2c1b5f)
NFS-Ganesha is a NFS Server running in user space
--------------------------------------------------------------------------------
Update Information:
/var/log/ganesha -> ganesha_var_log_t ---- /var/log/ganesha owner
ganesha.ganesha -> ganesha.root
--------------------------------------------------------------------------------
================================================================================
osgearth-2.7-15.fc27 (FEDORA-2017-fb5de406e4)
Dynamic map generation toolkit for OpenSceneGraph
--------------------------------------------------------------------------------
Update Information:
- Rebuild for OpenSceneGraph-3.4.1 - Update SimGear, FiightGear, FlightGear-data
--------------------------------------------------------------------------------
================================================================================
php-SymfonyCmfRouting-1.4.1-1.fc27 (FEDORA-2017-5a5e16fbdf)
Extends the Symfony2 routing component for dynamic routes and chaining
--------------------------------------------------------------------------------
Update Information:
## 1.4.1 * Fix locale matching in candidates
--------------------------------------------------------------------------------
================================================================================
python-acme-0.18.2-1.fc27 (FEDORA-2017-10686cbc6b)
Python library for the ACME protocol
--------------------------------------------------------------------------------
Update Information:
Update to 0.18.2
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1493796 - python-certbot-nginx-0.18.2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1493796
[ 2 ] Bug #1493795 - python-certbot-apache-0.18.2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1493795
[ 3 ] Bug #1493794 - certbot-0.18.2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1493794
[ 4 ] Bug #1493792 - python-acme-0.18.2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1493792
--------------------------------------------------------------------------------
================================================================================
python-certbot-apache-0.18.2-1.fc27 (FEDORA-2017-10686cbc6b)
The apache plugin for certbot
--------------------------------------------------------------------------------
Update Information:
Update to 0.18.2
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1493796 - python-certbot-nginx-0.18.2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1493796
[ 2 ] Bug #1493795 - python-certbot-apache-0.18.2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1493795
[ 3 ] Bug #1493794 - certbot-0.18.2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1493794
[ 4 ] Bug #1493792 - python-acme-0.18.2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1493792
--------------------------------------------------------------------------------
================================================================================
python-certbot-nginx-0.18.2-1.fc27 (FEDORA-2017-10686cbc6b)
The nginx plugin for certbot
--------------------------------------------------------------------------------
Update Information:
Update to 0.18.2
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1493796 - python-certbot-nginx-0.18.2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1493796
[ 2 ] Bug #1493795 - python-certbot-apache-0.18.2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1493795
[ 3 ] Bug #1493794 - certbot-0.18.2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1493794
[ 4 ] Bug #1493792 - python-acme-0.18.2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1493792
--------------------------------------------------------------------------------
================================================================================
python-paramiko-2.3.1-1.fc27 (FEDORA-2017-054600e32a)
SSH2 protocol library for python
--------------------------------------------------------------------------------
Update Information:
Update to 2.3.1 (rhbz #1494764) / Fix upstream bug #1071: AttributeError:
'Ed25519Key' object has no attribute 'public_blob' ---- Current upstream
maintenance release.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1494764 - python-paramiko-2.3.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1494764
[ 2 ] Bug #1493324 - python-paramiko-2.3.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1493324
--------------------------------------------------------------------------------
================================================================================
python-pymod2pkg-0.10.1-1.fc27 (FEDORA-2017-b7185783e1)
python module name to package name map
--------------------------------------------------------------------------------
Update Information:
Updated to upstream release 0.10.1
--------------------------------------------------------------------------------
================================================================================
qcad-3.18.0.0-1.fc27 (FEDORA-2017-c900e8752f)
Powerful 2D CAD system
--------------------------------------------------------------------------------
Update Information:
- Update to 3.18.0.0
--------------------------------------------------------------------------------
================================================================================
speed-dreams-2.2.1-6.fc27 (FEDORA-2017-fb5de406e4)
The Open Racing Car Simulator
--------------------------------------------------------------------------------
Update Information:
- Rebuild for OpenSceneGraph-3.4.1 - Update SimGear, FiightGear, FlightGear-data
--------------------------------------------------------------------------------
================================================================================
veusz-2.0.1-1.fc27 (FEDORA-2017-b0f69ad07a)
GUI scientific plotting package
--------------------------------------------------------------------------------
Update Information:
Update to Veusz 2.0.1. Veusz 2.0 upgrades Veusz to use Qt5 and features an
updated manual. Veusz 2.0.1 contains bug fixes for 2.0. ---- Update to Veusz
2.0. This release upgrades Veusz to use Qt5 and features an updated manual.
--------------------------------------------------------------------------------
================================================================================
xorgxrdp-0.2.4-3.fc27 (FEDORA-2017-f834c2cd8f)
Implementation of xrdp backend as Xorg modules
--------------------------------------------------------------------------------
Update Information:
xorgxrdp v0.2.4 has been released. This version includes fixes of following
issues: - Implement disconnection by xrdp-dis command #51
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1482107 - xrdp Xorg session doesn't start after RHEL 7.3 to 7.4 update due to undefined symbol error
https://bugzilla.redhat.com/show_bug.cgi?id=1482107
[ 2 ] Bug #1493328 - xorgxrdp-0.2.4 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1493328
--------------------------------------------------------------------------------
================================================================================
youtube-dl-2017.09.15-1.fc27 (FEDORA-2017-1e78ffc3e2)
A small command-line program to download online videos
--------------------------------------------------------------------------------
Update Information:
Update to the latest upstream release.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1490153 - youtube-dl-2017.09.15 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1490153
--------------------------------------------------------------------------------
The following Fedora 25 Security updates need testing:
Age URL
269 https://bodhi.fedoraproject.org/updates/FEDORA-2016-d79ba708cb exim-4.87.1-1.fc25
168 https://bodhi.fedoraproject.org/updates/FEDORA-2017-e2d17af41e python-XStatic-jquery-ui-1.12.0.1-4.fc25
107 https://bodhi.fedoraproject.org/updates/FEDORA-2017-5d7498559f nodejs-brace-expansion-1.1.7-1.fc25
61 https://bodhi.fedoraproject.org/updates/FEDORA-2017-99c0118c0c memcached-1.4.39-1.fc25
58 https://bodhi.fedoraproject.org/updates/FEDORA-2017-2232fe97b4 docker-distribution-2.6.2-1.git48294d9.fc25
40 https://bodhi.fedoraproject.org/updates/FEDORA-2017-7e5ac0896e botan-1.10.16-1.fc25
38 https://bodhi.fedoraproject.org/updates/FEDORA-2017-fa1d8ad61a mercurial-3.8.1-4.fc25
8 https://bodhi.fedoraproject.org/updates/FEDORA-2017-6e66393536 libwpd-0.10.2-1.fc25
6 https://bodhi.fedoraproject.org/updates/FEDORA-2017-e314044789 oniguruma-6.1.3-3.fc25
6 https://bodhi.fedoraproject.org/updates/FEDORA-2017-7edc2ea787 libbson-1.3.5-4.fc25
6 https://bodhi.fedoraproject.org/updates/FEDORA-2017-f7fd3fe7eb xen-4.7.3-5.fc25
5 https://bodhi.fedoraproject.org/updates/FEDORA-2017-aa7a8871b7 mingw-LibRaw-0.17.2-3.fc25
3 https://bodhi.fedoraproject.org/updates/FEDORA-2017-b97f9d82dc libmspack-0.6-0.1.alpha.fc25
2 https://bodhi.fedoraproject.org/updates/FEDORA-2017-7b4da5faba php-horde-Horde-Image-2.5.2-1.fc25
2 https://bodhi.fedoraproject.org/updates/FEDORA-2017-3bf0bd9c0c wordpress-4.8.2-1.fc25
2 https://bodhi.fedoraproject.org/updates/FEDORA-2017-ea57ed609f pkgconf-1.3.9-1.fc25
0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-c840f79347 moodle-3.1.8-1.fc25
0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-581be259ef samba-4.5.14-0.fc25
0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-7a3ddf2484 kernel-4.12.14-200.fc25
0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-e3bf383b11 gnome-shell-3.22.3-2.fc25
0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-9d14020761 php-horde-passwd-5.0.7-1.fc25
0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-037e1b31a0 php-horde-wicked-2.0.8-1.fc25
0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-f14c38d58f php-horde-nag-4.2.17-1.fc25
0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-01ab87482e httpd-2.4.27-4.fc25
The following Fedora 25 Critical Path updates have yet to be approved:
Age URL
111 https://bodhi.fedoraproject.org/updates/FEDORA-2017-613a72e282 lorax-25.22-1.fc25
16 https://bodhi.fedoraproject.org/updates/FEDORA-2017-3d979eabcb gnome-online-accounts-3.22.7-1.fc25
16 https://bodhi.fedoraproject.org/updates/FEDORA-2017-bc3c16a54f kobo-0.6.0-1.fc25
15 https://bodhi.fedoraproject.org/updates/FEDORA-2017-504aeb74ba rpcbind-0.2.4-7.rc2.fc25
11 https://bodhi.fedoraproject.org/updates/FEDORA-2017-a44008dd1d python-pysocks-1.6.7-1.fc25
9 https://bodhi.fedoraproject.org/updates/FEDORA-2017-d41fab42fc libssh2-1.8.0-5.fc25
9 https://bodhi.fedoraproject.org/updates/FEDORA-2017-43b6d5bc6b sssd-1.15.3-4.fc25
9 https://bodhi.fedoraproject.org/updates/FEDORA-2017-27ed767ca1 upower-0.99.6-1.fc25
8 https://bodhi.fedoraproject.org/updates/FEDORA-2017-9126f38bc2 libatasmart-0.19-13.fc25
8 https://bodhi.fedoraproject.org/updates/FEDORA-2017-2802f82ef1 webkitgtk4-2.18.0-1.fc25
8 https://bodhi.fedoraproject.org/updates/FEDORA-2017-6ec9b7110a menu-cache-1.0.2-6.D20170913gitfd52af607c.fc25
6 https://bodhi.fedoraproject.org/updates/FEDORA-2017-f7fd3fe7eb xen-4.7.3-5.fc25
6 https://bodhi.fedoraproject.org/updates/FEDORA-2017-f8059ac0e5 nss-3.32.1-1.0.fc25
5 https://bodhi.fedoraproject.org/updates/FEDORA-2017-ff140ad922 libguestfs-1.36.6-1.fc25
3 https://bodhi.fedoraproject.org/updates/FEDORA-2017-235298fa58 python-cryptography-2.0.2-2.fc25 python-cryptography-vectors-2.0.2-1.fc25
3 https://bodhi.fedoraproject.org/updates/FEDORA-2017-31d7cd5eab pyOpenSSL-16.2.0-2.fc25
3 https://bodhi.fedoraproject.org/updates/FEDORA-2017-7c8a36f37e audit-2.7.8-1.fc25
3 https://bodhi.fedoraproject.org/updates/FEDORA-2017-bd488c853f libsolv-0.6.29-2.fc25
2 https://bodhi.fedoraproject.org/updates/FEDORA-2017-d2803ce4f5 linux-firmware-20170828-77.gitb78acc9.fc25
2 https://bodhi.fedoraproject.org/updates/FEDORA-2017-00cfac3370 pungi-4.1.17-4.fc25
0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-103ec7f899 cups-2.2.0-10.fc25
0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-e3bf383b11 gnome-shell-3.22.3-2.fc25
0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-7a3ddf2484 kernel-4.12.14-200.fc25
0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-581be259ef samba-4.5.14-0.fc25
The following builds have been pushed to Fedora 25 updates-testing
COPASI-4.20.165-1.fc25
bandit-1.4.0-1.fc25
buildah-0.4-1.git9cbccf8.fc25
container-selinux-2.24-1.fc25
cups-2.2.0-10.fc25
fedpkg-1.29-5.fc25
gnome-shell-extension-pomodoro-0.13.3-1.fc25
golang-github-bgentry-speakeasy-0-0.11.git4aabc24.fc25
golang-github-coreos-go-semver-0-0.14.git8ab6407.fc25
golang-github-golang-time-0-0.5.gitc06e80d.fc25
golang-github-grpc-ecosystem-grpc-gateway-1.0.0-0.7.git18d1596.fc25
golang-github-grpc-grpc-go-1.0.0-0.7.git8050b9c.fc25
golang-github-kr-pty-0-0.34.git2c10821.fc25
golang-github-mattn-go-runewidth-0-0.8.git9e777a8.fc25
golang-github-prometheus-client_model-0-0.12.git6f38060.fc25
golang-github-prometheus-common-0-0.10.git49fee29.fc25
golang-github-prometheus-procfs-0-0.20.gita1dba9c.fc25
golang-gopkg-yaml-1-19.fc25
libsodium-1.0.14-1.fc25
mailx-12.5-23.fc25
php-symfony-psr-http-message-bridge-1.0.0-3.fc25
php-symfony-security-acl-2.8.0-4.fc25
python-sphinx-1.5.2-3.fc25
switchboard-plug-about-0.2.4-1.fc25
urw-base35-fonts-20170801-1.fc25
Details about builds:
================================================================================
COPASI-4.20.165-1.fc25 (FEDORA-2017-d2b647ee0a)
Biochemical network simulator
--------------------------------------------------------------------------------
Update Information:
- Update to the build #365
--------------------------------------------------------------------------------
================================================================================
bandit-1.4.0-1.fc25 (FEDORA-2017-1873c409a6)
A framework for performing security analysis of Python source code
--------------------------------------------------------------------------------
Update Information:
New version 1.4.0
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1255723 - bandit-1.4.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1255723
--------------------------------------------------------------------------------
================================================================================
buildah-0.4-1.git9cbccf8.fc25 (FEDORA-2017-0c835725e7)
A command line tool used for creating OCI Images
--------------------------------------------------------------------------------
Update Information:
Lots of new features including support for creds
--------------------------------------------------------------------------------
================================================================================
container-selinux-2.24-1.fc25 (FEDORA-2017-c280874eff)
SELinux policies for container runtimes
--------------------------------------------------------------------------------
Update Information:
Fixes for NO_NEW_PRIVS Flags
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1494427 - Child type container_t exceeds bounds of parent container_runtime_t
https://bugzilla.redhat.com/show_bug.cgi?id=1494427
[ 2 ] Bug #1489199 - Docker selinux problem; can't bind pty.sock
https://bugzilla.redhat.com/show_bug.cgi?id=1489199
[ 3 ] Bug #1486923 - SELinux is preventing runc:[2:INIT] from using the 'transition' accesses on a process.
https://bugzilla.redhat.com/show_bug.cgi?id=1486923
--------------------------------------------------------------------------------
================================================================================
cups-2.2.0-10.fc25 (FEDORA-2017-103ec7f899)
CUPS printing system
--------------------------------------------------------------------------------
Update Information:
1494558 - CUPS may fail to start if NIS groups are used
--------------------------------------------------------------------------------
================================================================================
fedpkg-1.29-5.fc25 (FEDORA-2017-24cd027bd9)
Fedora utility for working with dist-git
--------------------------------------------------------------------------------
Update Information:
Use correct build target for containers
--------------------------------------------------------------------------------
================================================================================
gnome-shell-extension-pomodoro-0.13.3-1.fc25 (FEDORA-2017-3a1b577a91)
A time management utility for GNOME
--------------------------------------------------------------------------------
Update Information:
Adds support for the latest versions of GNOME Shell.
--------------------------------------------------------------------------------
================================================================================
golang-github-bgentry-speakeasy-0-0.11.git4aabc24.fc25 (FEDORA-2017-e42cd098f6)
Golang helpers for reading password input without cgo
--------------------------------------------------------------------------------
Update Information:
Bump to upstream 4aabc24848ce5fd31929f7d1e4ea74d3709c14cd
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1250454 - Tracker for golang-github-bgentry-speakeasy
https://bugzilla.redhat.com/show_bug.cgi?id=1250454
--------------------------------------------------------------------------------
================================================================================
golang-github-coreos-go-semver-0-0.14.git8ab6407.fc25 (FEDORA-2017-9c94907b53)
Go semantic versioning library
--------------------------------------------------------------------------------
Update Information:
Bump to upstream 8ab6407b697782a06568d4b7f1db25550ec2e4c6
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1248718 - Tracker for golang-github-coreos-go-semver
https://bugzilla.redhat.com/show_bug.cgi?id=1248718
--------------------------------------------------------------------------------
================================================================================
golang-github-golang-time-0-0.5.gitc06e80d.fc25 (FEDORA-2017-3eebfb4dbd)
Go supplementary time packages
--------------------------------------------------------------------------------
Update Information:
Bump to upstream c06e80d9300e4443158a03817b8a8cb37d230320
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1494518 - Tracker for golang-github-golang-time
https://bugzilla.redhat.com/show_bug.cgi?id=1494518
--------------------------------------------------------------------------------
================================================================================
golang-github-grpc-ecosystem-grpc-gateway-1.0.0-0.7.git18d1596.fc25 (FEDORA-2017-53352429b7)
GRPC to JSON proxy generator
--------------------------------------------------------------------------------
Update Information:
Bump to upstream 18d159699f2e83fc5bb9ef2f79465ca3f3122676
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1405682 - Tracker for golang-github-grpc-ecosystem-grpc-gateway
https://bugzilla.redhat.com/show_bug.cgi?id=1405682
--------------------------------------------------------------------------------
================================================================================
golang-github-grpc-grpc-go-1.0.0-0.7.git8050b9c.fc25 (FEDORA-2017-acc063e8c2)
The Go language implementation of gRPC. HTTP/2 based RPC
--------------------------------------------------------------------------------
Update Information:
Bump to upstream 777daa17ff9b5daef1cfdf915088a2ada3332bf0
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1250461 - Tracker for golang-github-grpc-grpc-go
https://bugzilla.redhat.com/show_bug.cgi?id=1250461
--------------------------------------------------------------------------------
================================================================================
golang-github-kr-pty-0-0.34.git2c10821.fc25 (FEDORA-2017-563b212365)
PTY interface for Go
--------------------------------------------------------------------------------
Update Information:
Bump to upstream 2c10821df3c3cf905230d078702dfbe9404c9b23
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1313956 - Missing rpm because of typo in spec file
https://bugzilla.redhat.com/show_bug.cgi?id=1313956
--------------------------------------------------------------------------------
================================================================================
golang-github-mattn-go-runewidth-0-0.8.git9e777a8.fc25 (FEDORA-2017-f53c8ee997)
Functions for getting fixed width of the character or string
--------------------------------------------------------------------------------
Update Information:
Bump to upstream 9e777a8366cce605130a531d2cd6363d07ad7317
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1405690 - Tracker for golang-github-mattn-go-runewidth
https://bugzilla.redhat.com/show_bug.cgi?id=1405690
--------------------------------------------------------------------------------
================================================================================
golang-github-prometheus-client_model-0-0.12.git6f38060.fc25 (FEDORA-2017-f890047c2a)
Data model artifacts for Prometheus
--------------------------------------------------------------------------------
Update Information:
Bump to upstream 6f3806018612930941127f2a7c6c453ba2c527d2
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1250496 - Tracker for golang-github-prometheus-client_model
https://bugzilla.redhat.com/show_bug.cgi?id=1250496
--------------------------------------------------------------------------------
================================================================================
golang-github-prometheus-common-0-0.10.git49fee29.fc25 (FEDORA-2017-ea4c021461)
Go libraries shared across Prometheus components and libraries
--------------------------------------------------------------------------------
Update Information:
Bump to upstream 49fee292b27bfff7f354ee0f64e1bc4850462edf
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1315096 - Tracker for golang-github-prometheus-common
https://bugzilla.redhat.com/show_bug.cgi?id=1315096
--------------------------------------------------------------------------------
================================================================================
golang-github-prometheus-procfs-0-0.20.gita1dba9c.fc25 (FEDORA-2017-e2909b3e02)
Functions to retrieve system, kernel and process metrics from the /proc fs
--------------------------------------------------------------------------------
Update Information:
Bump to upstream a1dba9ce8baed984a2495b658c82687f8157b98f
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1326057 - buggy spec for s390x/gcc-go
https://bugzilla.redhat.com/show_bug.cgi?id=1326057
--------------------------------------------------------------------------------
================================================================================
golang-gopkg-yaml-1-19.fc25 (FEDORA-2017-bcec5064c7)
Enables Go programs to comfortably encode and decode YAML values
--------------------------------------------------------------------------------
Update Information:
Bump to upstream cd8b52f8269e0feb286dfeef29f8fe4d5b397e0b
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1250524 - Tracker for golang-gopkg-yaml
https://bugzilla.redhat.com/show_bug.cgi?id=1250524
--------------------------------------------------------------------------------
================================================================================
libsodium-1.0.14-1.fc25 (FEDORA-2017-fe34cd4c93)
The Sodium crypto library
--------------------------------------------------------------------------------
Update Information:
** Version 1.0.14** - WebAssembly is now officially supported. Special thanks
to facekapow and pepyakin who helped to make it happen. - Internal consistency
checks failing and primitives used with dangerous/out-of-bounds/invalid
parameters used to call abort(3). Now, a custom handler *that doesn't return*
can be set with the `set_sodium_misuse()` function. It still aborts by default
or if the handler ever returns. This is not a replacement for non-fatal,
expected runtime errors. This handler will be only called in unexpected
situations due to potential bugs in the library or in language bindings. -
`*_MESSAGEBYTES_MAX` macros (and the corresponding `_messagebytes_max()`
symbols) have been added to represent the maximum message size that can be
safely handled by a primitive. Language bindings are encouraged to check user
inputs against these maximum lengths. - The test suite has been extended to
cover more edge cases. - crypto_sign_ed25519_pk_to_curve25519() now rejects
points that are not on the curve, or not in the main subgroup. - Further
changes have been made to ensure that smart compilers will not optimize out code
that we don't want to be optimized. - Visual Studio solutions are now included
in distribution tarballs. - The `sodium_runtime_has_*` symbols for CPU features
detection are now defined as weak symbols, i.e. they can be replaced with an
application-defined implementation. This can be useful to disable AVX* when
temperature/power consumption is a concern. - `crypto_kx_*()` now aborts if
called with no non-NULL pointers to store keys to. - SSE2 implementations of
`crypto_verify_*()` have been added. - Passwords can be hashed using a specific
algorithm with the new `crypto_pwhash_str_alg()` function. - Due to popular
demand, base64 encoding (`sodium_bin2base64()`) and decoding
(`sodium_base642bin()`) have been implemented. - A new
`crypto_secretstream_*()` API was added to safely encrypt files and multi-part
messages. - The `sodium_pad()` and `sodium_unpad()` helper functions have been
added in order to add & remove padding. - An AVX512 optimized implementation of
Argon2 has been added (written by Ondrej Mosn����ek, thanks!) - The
`crypto_pwhash_str_needs_rehash()` function was added to check if a password
hash string matches the given parameters, or if it needs an update. - The
library can now be compiled with recent versions of emscripten/binaryen that
don't allow multiple variables declarations using a single `var` statement.
--------------------------------------------------------------------------------
================================================================================
mailx-12.5-23.fc25 (FEDORA-2017-f4036b1131)
Enhanced implementation of the mailx command
--------------------------------------------------------------------------------
Update Information:
Fix multi-byte encoded line-folding
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1494559 - mailx is not properly encoding multibyte subjects
https://bugzilla.redhat.com/show_bug.cgi?id=1494559
--------------------------------------------------------------------------------
================================================================================
php-symfony-psr-http-message-bridge-1.0.0-3.fc25 (FEDORA-2017-fb5a627c07)
Symfony PSR HTTP message bridge
--------------------------------------------------------------------------------
Update Information:
RPM only release - Allow Symfony 3 - Modify tests - Apply patch to fix test
suite with !el6 and zendframework/zend-diactoros
--------------------------------------------------------------------------------
================================================================================
php-symfony-security-acl-2.8.0-4.fc25 (FEDORA-2017-a424d7f124)
Symfony Security Component - ACL (Access Control List)
--------------------------------------------------------------------------------
Update Information:
RPM only release - Add max versions to BuildRequires - Switch autoloader to
fedora/autoloader - Remove Conflicts for Suggests - Test with SCLs if available
--------------------------------------------------------------------------------
================================================================================
python-sphinx-1.5.2-3.fc25 (FEDORA-2017-ad8f604f74)
Python documentation generator
--------------------------------------------------------------------------------
Update Information:
Fix a crash on parallel build.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1494276 - Parallel build throws EOF exception
https://bugzilla.redhat.com/show_bug.cgi?id=1494276
--------------------------------------------------------------------------------
================================================================================
switchboard-plug-about-0.2.4-1.fc25 (FEDORA-2017-4fc40be754)
Switchboard System Information plug
--------------------------------------------------------------------------------
Update Information:
Update to version 0.2.4.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1494298 - switchboard-plug-about-0.2.4 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1494298
--------------------------------------------------------------------------------
================================================================================
urw-base35-fonts-20170801-1.fc25 (FEDORA-2017-612c622a20)
Core Font Set containing 35 freely distributable fonts from (URW)++
--------------------------------------------------------------------------------
Update Information:
This is a replacement package for now obsoleted `urw-fonts` package. More info
in Pagure: https://src.fedoraproject.org/rpms/urw-base35-fonts
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1458840 - Review Request: urw-base35-fonts - Level 2 Core Font Set for Ghostscript
https://bugzilla.redhat.com/show_bug.cgi?id=1458840
--------------------------------------------------------------------------------
The following Fedora 26 Security updates need testing:
Age URL
168 https://bodhi.fedoraproject.org/updates/FEDORA-2017-1bf5a0ce01 python-XStatic-jquery-ui-1.12.0.1-2.fc26
107 https://bodhi.fedoraproject.org/updates/FEDORA-2017-2522df3526 nodejs-brace-expansion-1.1.7-1.fc26
70 https://bodhi.fedoraproject.org/updates/FEDORA-2017-690a2548ba openvswitch-2.7.1-2.fc26
61 https://bodhi.fedoraproject.org/updates/FEDORA-2017-1c053de325 memcached-1.4.39-1.fc26
58 https://bodhi.fedoraproject.org/updates/FEDORA-2017-ccb5c8d1e7 docker-distribution-2.6.2-1.git48294d9.fc26
39 https://bodhi.fedoraproject.org/updates/FEDORA-2017-d4248ba346 botan-1.10.16-1.fc26
6 https://bodhi.fedoraproject.org/updates/FEDORA-2017-a4cf96bcca libbson-1.6.3-2.fc26
6 https://bodhi.fedoraproject.org/updates/FEDORA-2017-7a9447c0af pure-ftpd-1.0.46-2.fc26
5 https://bodhi.fedoraproject.org/updates/FEDORA-2017-b9f07dfaca python-jwt-1.5.3-1.fc26
3 https://bodhi.fedoraproject.org/updates/FEDORA-2017-982bfabc4e libmspack-0.6-0.1.alpha.fc26
2 https://bodhi.fedoraproject.org/updates/FEDORA-2017-4655504984 php-horde-Horde-Image-2.5.2-1.fc26
2 https://bodhi.fedoraproject.org/updates/FEDORA-2017-4e01259678 wordpress-4.8.2-1.fc26
2 https://bodhi.fedoraproject.org/updates/FEDORA-2017-11afc3cde9 pkgconf-1.3.9-1.fc26
2 https://bodhi.fedoraproject.org/updates/FEDORA-2017-9a452dc893 moodle-3.2.5-1.fc26
0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-3202aed903 kernel-4.12.14-300.fc26
0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-51b91fc4a9 php-horde-passwd-5.0.7-1.fc26
0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-3ab0ac4a6a php-horde-wicked-2.0.8-1.fc26
0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-041ee90a8b php-horde-nag-4.2.17-1.fc26
0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-90500f87f3 LibRaw-0.18.5-1.fc26
The following Fedora 26 Critical Path updates have yet to be approved:
Age URL
16 https://bodhi.fedoraproject.org/updates/FEDORA-2017-6b7dcfe861 kobo-0.6.0-1.fc26
9 https://bodhi.fedoraproject.org/updates/FEDORA-2017-148849f8bd libssh2-1.8.0-5.fc26
9 https://bodhi.fedoraproject.org/updates/FEDORA-2017-4a479d6a57 sssd-1.15.3-4.fc26
8 https://bodhi.fedoraproject.org/updates/FEDORA-2017-368b385c04 webkitgtk4-2.18.0-1.fc26
8 https://bodhi.fedoraproject.org/updates/FEDORA-2017-5d62dd0192 menu-cache-1.0.2-6.D20170913gitfd52af607c.fc26
6 https://bodhi.fedoraproject.org/updates/FEDORA-2017-d3f4fcd0b8 nss-3.32.1-1.0.fc26
5 https://bodhi.fedoraproject.org/updates/FEDORA-2017-ff7b30a42d libvirt-3.2.1-6.fc26
5 https://bodhi.fedoraproject.org/updates/FEDORA-2017-3cb490f3fc libguestfs-1.36.6-1.fc26
3 https://bodhi.fedoraproject.org/updates/FEDORA-2017-eaaa4b2079 supermin-5.1.19-1.fc26
3 https://bodhi.fedoraproject.org/updates/FEDORA-2017-22e54382f0 python-blivet-2.1.11-1.fc26
3 https://bodhi.fedoraproject.org/updates/FEDORA-2017-feb5e04f8d blivet-gui-2.1.7-1.fc26
2 https://bodhi.fedoraproject.org/updates/FEDORA-2017-5d0014f404 pungi-4.1.19-1.fc26
2 https://bodhi.fedoraproject.org/updates/FEDORA-2017-11afc3cde9 pkgconf-1.3.9-1.fc26
0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-21119b637e python3-3.6.2-7.fc26
0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-be922337bd util-linux-2.30.2-1.fc26
0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-2205bd4ea4 kexec-tools-2.0.15-1.fc26.4
0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-3202aed903 kernel-4.12.14-300.fc26
0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-9684858af6 ibus-1.5.16-11.fc26
The following builds have been pushed to Fedora 26 updates-testing
COPASI-4.20.165-1.fc26
LibRaw-0.18.5-1.fc26
atomic-reactor-1.6.25.1-1.fc26
bandit-1.4.0-1.fc26
buildah-0.4-1.git9cbccf8.fc26
container-selinux-2.24-1.fc26
eclipse-photran-9.1.3-1.fc26
erlang-fuse-2.4.0-1.fc26
fedpkg-1.29-5.fc26
gnome-shell-extension-pomodoro-0.13.3-1.fc26
golang-github-bgentry-speakeasy-0-0.11.git4aabc24.fc26
golang-github-coreos-go-semver-0-0.14.git8ab6407.fc26
golang-github-golang-time-0-0.5.gitc06e80d.fc26
golang-github-grpc-ecosystem-grpc-gateway-1.0.0-0.7.git18d1596.fc26
golang-github-grpc-grpc-go-1.0.0-0.7.git8050b9c.fc26
golang-github-kr-pty-0-0.34.git2c10821.fc26
golang-github-mattn-go-colorable-0-0.5.20170816gitad5389d.fc26
golang-github-mattn-go-runewidth-0-0.8.git9e777a8.fc26
golang-github-prometheus-client_model-0-0.12.git6f38060.fc26
golang-github-prometheus-common-0-0.10.git49fee29.fc26
golang-github-prometheus-procfs-0-0.20.gita1dba9c.fc26
golang-gopkg-yaml-1-19.fc26
hyperscan-4.6.0-1.fc26
libad9361-0-0.2.20170207git6027674.fc26
libsodium-1.0.14-1.fc26
mailx-12.5-23.fc26
monodevelop-debugger-gdb-5.0.1-1.fc26
php-symfony-psr-http-message-bridge-1.0.0-3.fc26
php-symfony-security-acl-2.8.0-4.fc26
python-metakernel-0.20.7-1.fc26
python-pymongo-3.4.0-6.fc26
python-sphinx-1.5.2-4.fc26
python3-3.6.2-7.fc26
rakudo-MIME-Base64-1.2.1-1.fc26
switchboard-plug-about-0.2.4-1.fc26
urw-base35-fonts-20170801-1.fc26
util-linux-2.30.2-1.fc26
Details about builds:
================================================================================
COPASI-4.20.165-1.fc26 (FEDORA-2017-affc7207fd)
Biochemical network simulator
--------------------------------------------------------------------------------
Update Information:
- Update to the build #365
--------------------------------------------------------------------------------
================================================================================
LibRaw-0.18.5-1.fc26 (FEDORA-2017-90500f87f3)
Library for reading RAW files obtained from digital photo cameras
--------------------------------------------------------------------------------
Update Information:
Fix for possible buffer overrun in kodak_65000 decoder Fix for possible
heap overrun in Canon makernotes parser Fix for CVE-2017-13735
CVE-2017-14265: Additional check for X-Trans CFA pattern data ---- Patch for
CVE-2017-14348
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1488947 - CVE-2017-13735 libraw: Floating point exception in kodak_radc_load_raw function in internal/dcraw_common.cpp [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1488947
[ 2 ] Bug #1494522 - LibRaw-0.18.5 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1494522
[ 3 ] Bug #1492122 - CVE-2017-14348 libraw: Heap-based 1 byte buffer over-write in processCanonCameraInfo function in internal/dcraw_common.cpp [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1492122
--------------------------------------------------------------------------------
================================================================================
atomic-reactor-1.6.25.1-1.fc26 (FEDORA-2017-7b4f055041)
Improved builder for Docker images
--------------------------------------------------------------------------------
Update Information:
Update to upstream version 1.6.25
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1420728 - atomic-reactor-1.6.23.2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1420728
[ 2 ] Bug #1304907 - atomic-reactor-1.6.4 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1304907
--------------------------------------------------------------------------------
================================================================================
bandit-1.4.0-1.fc26 (FEDORA-2017-b7c043b69c)
A framework for performing security analysis of Python source code
--------------------------------------------------------------------------------
Update Information:
New version 1.4.0
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1255723 - bandit-1.4.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1255723
--------------------------------------------------------------------------------
================================================================================
buildah-0.4-1.git9cbccf8.fc26 (FEDORA-2017-c3a4c24103)
A command line tool used for creating OCI Images
--------------------------------------------------------------------------------
Update Information:
Lots of new features including support for creds
--------------------------------------------------------------------------------
================================================================================
container-selinux-2.24-1.fc26 (FEDORA-2017-85a3632156)
SELinux policies for container runtimes
--------------------------------------------------------------------------------
Update Information:
Fixes for NO_NEW_PRIVS Flags
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1494427 - Child type container_t exceeds bounds of parent container_runtime_t
https://bugzilla.redhat.com/show_bug.cgi?id=1494427
[ 2 ] Bug #1489199 - Docker selinux problem; can't bind pty.sock
https://bugzilla.redhat.com/show_bug.cgi?id=1489199
[ 3 ] Bug #1486923 - SELinux is preventing runc:[2:INIT] from using the 'transition' accesses on a process.
https://bugzilla.redhat.com/show_bug.cgi?id=1486923
--------------------------------------------------------------------------------
================================================================================
eclipse-photran-9.1.3-1.fc26 (FEDORA-2017-7e5a2e0982)
Fortran Development Tools (Photran) for Eclipse
--------------------------------------------------------------------------------
Update Information:
Updates to Oxygen.1 release of Photran.
--------------------------------------------------------------------------------
================================================================================
erlang-fuse-2.4.0-1.fc26 (FEDORA-2017-1dc00215c3)
A Circuit Breaker for Erlang
--------------------------------------------------------------------------------
Update Information:
* Initial build
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1494018 - Review Request: erlang-fuse - A Circuit Breaker for Erlang
https://bugzilla.redhat.com/show_bug.cgi?id=1494018
--------------------------------------------------------------------------------
================================================================================
fedpkg-1.29-5.fc26 (FEDORA-2017-51eef99bf1)
Fedora utility for working with dist-git
--------------------------------------------------------------------------------
Update Information:
Use correct build target for containers
--------------------------------------------------------------------------------
================================================================================
gnome-shell-extension-pomodoro-0.13.3-1.fc26 (FEDORA-2017-66ac5d5f69)
A time management utility for GNOME
--------------------------------------------------------------------------------
Update Information:
Adds support for the latest versions of GNOME Shell.
--------------------------------------------------------------------------------
================================================================================
golang-github-bgentry-speakeasy-0-0.11.git4aabc24.fc26 (FEDORA-2017-0d7e2bd890)
Golang helpers for reading password input without cgo
--------------------------------------------------------------------------------
Update Information:
Bump to upstream 4aabc24848ce5fd31929f7d1e4ea74d3709c14cd
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1250454 - Tracker for golang-github-bgentry-speakeasy
https://bugzilla.redhat.com/show_bug.cgi?id=1250454
--------------------------------------------------------------------------------
================================================================================
golang-github-coreos-go-semver-0-0.14.git8ab6407.fc26 (FEDORA-2017-c9fd4510d3)
Go semantic versioning library
--------------------------------------------------------------------------------
Update Information:
Bump to upstream 8ab6407b697782a06568d4b7f1db25550ec2e4c6
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1248718 - Tracker for golang-github-coreos-go-semver
https://bugzilla.redhat.com/show_bug.cgi?id=1248718
--------------------------------------------------------------------------------
================================================================================
golang-github-golang-time-0-0.5.gitc06e80d.fc26 (FEDORA-2017-435a13f1d3)
Go supplementary time packages
--------------------------------------------------------------------------------
Update Information:
Bump to upstream c06e80d9300e4443158a03817b8a8cb37d230320
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1494518 - Tracker for golang-github-golang-time
https://bugzilla.redhat.com/show_bug.cgi?id=1494518
--------------------------------------------------------------------------------
================================================================================
golang-github-grpc-ecosystem-grpc-gateway-1.0.0-0.7.git18d1596.fc26 (FEDORA-2017-56dbc4c86d)
GRPC to JSON proxy generator
--------------------------------------------------------------------------------
Update Information:
Bump to upstream 18d159699f2e83fc5bb9ef2f79465ca3f3122676
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1405682 - Tracker for golang-github-grpc-ecosystem-grpc-gateway
https://bugzilla.redhat.com/show_bug.cgi?id=1405682
--------------------------------------------------------------------------------
================================================================================
golang-github-grpc-grpc-go-1.0.0-0.7.git8050b9c.fc26 (FEDORA-2017-4fffc7b049)
The Go language implementation of gRPC. HTTP/2 based RPC
--------------------------------------------------------------------------------
Update Information:
Bump to upstream 777daa17ff9b5daef1cfdf915088a2ada3332bf0
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1250461 - Tracker for golang-github-grpc-grpc-go
https://bugzilla.redhat.com/show_bug.cgi?id=1250461
--------------------------------------------------------------------------------
================================================================================
golang-github-kr-pty-0-0.34.git2c10821.fc26 (FEDORA-2017-f9214a8acc)
PTY interface for Go
--------------------------------------------------------------------------------
Update Information:
Bump to upstream 2c10821df3c3cf905230d078702dfbe9404c9b23
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1313956 - Missing rpm because of typo in spec file
https://bugzilla.redhat.com/show_bug.cgi?id=1313956
--------------------------------------------------------------------------------
================================================================================
golang-github-mattn-go-colorable-0-0.5.20170816gitad5389d.fc26 (FEDORA-2017-1767a27810)
Common Functions in Go
--------------------------------------------------------------------------------
Update Information:
add requirement to golang-github-mattn-go-isatty (rhbz#1494218) ---- fix
import path (rhbz#1493760) ---- update to latest commit
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1494218 - go-colorable test failure
https://bugzilla.redhat.com/show_bug.cgi?id=1494218
[ 2 ] Bug #1493760 - go-colorable import path points to gopkg.in instead of github.comhttps://bugzilla.redhat.com/show_bug.cgi?id=1493760
[ 3 ] Bug #1376412 - Review Request: golang-github-mattn-go-colorable - Colorable writer for windows.
https://bugzilla.redhat.com/show_bug.cgi?id=1376412
--------------------------------------------------------------------------------
================================================================================
golang-github-mattn-go-runewidth-0-0.8.git9e777a8.fc26 (FEDORA-2017-da15d3f07a)
Functions for getting fixed width of the character or string
--------------------------------------------------------------------------------
Update Information:
Bump to upstream 9e777a8366cce605130a531d2cd6363d07ad7317
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1405690 - Tracker for golang-github-mattn-go-runewidth
https://bugzilla.redhat.com/show_bug.cgi?id=1405690
--------------------------------------------------------------------------------
================================================================================
golang-github-prometheus-client_model-0-0.12.git6f38060.fc26 (FEDORA-2017-ebddd91414)
Data model artifacts for Prometheus
--------------------------------------------------------------------------------
Update Information:
Bump to upstream 6f3806018612930941127f2a7c6c453ba2c527d2
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1250496 - Tracker for golang-github-prometheus-client_model
https://bugzilla.redhat.com/show_bug.cgi?id=1250496
--------------------------------------------------------------------------------
================================================================================
golang-github-prometheus-common-0-0.10.git49fee29.fc26 (FEDORA-2017-f4de21929a)
Go libraries shared across Prometheus components and libraries
--------------------------------------------------------------------------------
Update Information:
Bump to upstream 49fee292b27bfff7f354ee0f64e1bc4850462edf
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1315096 - Tracker for golang-github-prometheus-common
https://bugzilla.redhat.com/show_bug.cgi?id=1315096
--------------------------------------------------------------------------------
================================================================================
golang-github-prometheus-procfs-0-0.20.gita1dba9c.fc26 (FEDORA-2017-f4bf9c9abd)
Functions to retrieve system, kernel and process metrics from the /proc fs
--------------------------------------------------------------------------------
Update Information:
Bump to upstream a1dba9ce8baed984a2495b658c82687f8157b98f
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1326057 - buggy spec for s390x/gcc-go
https://bugzilla.redhat.com/show_bug.cgi?id=1326057
--------------------------------------------------------------------------------
================================================================================
golang-gopkg-yaml-1-19.fc26 (FEDORA-2017-78f96e3214)
Enables Go programs to comfortably encode and decode YAML values
--------------------------------------------------------------------------------
Update Information:
Bump to upstream cd8b52f8269e0feb286dfeef29f8fe4d5b397e0b
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1250524 - Tracker for golang-gopkg-yaml
https://bugzilla.redhat.com/show_bug.cgi?id=1250524
--------------------------------------------------------------------------------
================================================================================
hyperscan-4.6.0-1.fc26 (FEDORA-2017-737c8a42db)
High-performance regular expression matching library
--------------------------------------------------------------------------------
Update Information:
latest upstream release
--------------------------------------------------------------------------------
================================================================================
libad9361-0-0.2.20170207git6027674.fc26 (FEDORA-2017-5eb8d5c004)
Library for access to Analog Devices AD9361 radio IC
--------------------------------------------------------------------------------
Update Information:
Library for access to Analog Devices AD9361 radio IC
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1482246 - Review Request: libad9361 - Library for access to Analog Devices AD9361 radio IC
https://bugzilla.redhat.com/show_bug.cgi?id=1482246
--------------------------------------------------------------------------------
================================================================================
libsodium-1.0.14-1.fc26 (FEDORA-2017-8498c9b4f5)
The Sodium crypto library
--------------------------------------------------------------------------------
Update Information:
** Version 1.0.14** - WebAssembly is now officially supported. Special thanks
to facekapow and pepyakin who helped to make it happen. - Internal consistency
checks failing and primitives used with dangerous/out-of-bounds/invalid
parameters used to call abort(3). Now, a custom handler *that doesn't return*
can be set with the `set_sodium_misuse()` function. It still aborts by default
or if the handler ever returns. This is not a replacement for non-fatal,
expected runtime errors. This handler will be only called in unexpected
situations due to potential bugs in the library or in language bindings. -
`*_MESSAGEBYTES_MAX` macros (and the corresponding `_messagebytes_max()`
symbols) have been added to represent the maximum message size that can be
safely handled by a primitive. Language bindings are encouraged to check user
inputs against these maximum lengths. - The test suite has been extended to
cover more edge cases. - crypto_sign_ed25519_pk_to_curve25519() now rejects
points that are not on the curve, or not in the main subgroup. - Further
changes have been made to ensure that smart compilers will not optimize out code
that we don't want to be optimized. - Visual Studio solutions are now included
in distribution tarballs. - The `sodium_runtime_has_*` symbols for CPU features
detection are now defined as weak symbols, i.e. they can be replaced with an
application-defined implementation. This can be useful to disable AVX* when
temperature/power consumption is a concern. - `crypto_kx_*()` now aborts if
called with no non-NULL pointers to store keys to. - SSE2 implementations of
`crypto_verify_*()` have been added. - Passwords can be hashed using a specific
algorithm with the new `crypto_pwhash_str_alg()` function. - Due to popular
demand, base64 encoding (`sodium_bin2base64()`) and decoding
(`sodium_base642bin()`) have been implemented. - A new
`crypto_secretstream_*()` API was added to safely encrypt files and multi-part
messages. - The `sodium_pad()` and `sodium_unpad()` helper functions have been
added in order to add & remove padding. - An AVX512 optimized implementation of
Argon2 has been added (written by Ondrej Mosn����ek, thanks!) - The
`crypto_pwhash_str_needs_rehash()` function was added to check if a password
hash string matches the given parameters, or if it needs an update. - The
library can now be compiled with recent versions of emscripten/binaryen that
don't allow multiple variables declarations using a single `var` statement.
--------------------------------------------------------------------------------
================================================================================
mailx-12.5-23.fc26 (FEDORA-2017-a3cc30fa29)
Enhanced implementation of the mailx command
--------------------------------------------------------------------------------
Update Information:
Fix multi-byte encoded line-folding
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1494559 - mailx is not properly encoding multibyte subjects
https://bugzilla.redhat.com/show_bug.cgi?id=1494559
--------------------------------------------------------------------------------
================================================================================
monodevelop-debugger-gdb-5.0.1-1.fc26 (FEDORA-2017-27b5c0ed70)
MonoDevelop gdb Debugger Add-in
--------------------------------------------------------------------------------
Update Information:
Update to 5.0.1-2
--------------------------------------------------------------------------------
================================================================================
php-symfony-psr-http-message-bridge-1.0.0-3.fc26 (FEDORA-2017-834c15ec1b)
Symfony PSR HTTP message bridge
--------------------------------------------------------------------------------
Update Information:
RPM only release - Allow Symfony 3 - Modify tests - Apply patch to fix test
suite with !el6 and zendframework/zend-diactoros
--------------------------------------------------------------------------------
================================================================================
php-symfony-security-acl-2.8.0-4.fc26 (FEDORA-2017-4a1bc3476e)
Symfony Security Component - ACL (Access Control List)
--------------------------------------------------------------------------------
Update Information:
RPM only release - Add max versions to BuildRequires - Switch autoloader to
fedora/autoloader - Remove Conflicts for Suggests - Test with SCLs if available
--------------------------------------------------------------------------------
================================================================================
python-metakernel-0.20.7-1.fc26 (FEDORA-2017-57f1d697fd)
Metakernel for Jupyter
--------------------------------------------------------------------------------
Update Information:
New version.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1492262 - python-metakernel-v0.20.7 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1492262
--------------------------------------------------------------------------------
================================================================================
python-pymongo-3.4.0-6.fc26 (FEDORA-2017-cbbddc15e1)
Python driver for MongoDB
--------------------------------------------------------------------------------
Update Information:
Fix build failure because of sphinx 1.6.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1494188 - python-pymongo: FTBFS in Fedora rawhide
https://bugzilla.redhat.com/show_bug.cgi?id=1494188
--------------------------------------------------------------------------------
================================================================================
python-sphinx-1.5.2-4.fc26 (FEDORA-2017-c2b9e27465)
Python documentation generator
--------------------------------------------------------------------------------
Update Information:
Fix a crash on parallel build. ---- Provide the epoch tag in order to
downgrade at Fedora 26 since the update broke many packages
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1494276 - Parallel build throws EOF exception
https://bugzilla.redhat.com/show_bug.cgi?id=1494276
--------------------------------------------------------------------------------
================================================================================
python3-3.6.2-7.fc26 (FEDORA-2017-21119b637e)
Version 3 of the Python programming language aka Python 3000
--------------------------------------------------------------------------------
Update Information:
Include `-g` in the flags sent to the linker (LDFLAGS)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1483222 - GDB doesn't find Python 3 debug symbols even though they are installed
https://bugzilla.redhat.com/show_bug.cgi?id=1483222
[ 2 ] Bug #1458122 - Subclass of distutils.unixccompiler.UnixCCompiler causes "maximum recursion depth exceeded" error
https://bugzilla.redhat.com/show_bug.cgi?id=1458122
--------------------------------------------------------------------------------
================================================================================
rakudo-MIME-Base64-1.2.1-1.fc26 (FEDORA-2017-dafceccea4)
A Perl6 implementation of MIME::Base64 for ASCII strings
--------------------------------------------------------------------------------
Update Information:
add initial build to f26
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1494162 - Review Request: rakudo-MIME-Base64 - A Perl6 implementation of MIME::Base64 for ASCII strings
https://bugzilla.redhat.com/show_bug.cgi?id=1494162
--------------------------------------------------------------------------------
================================================================================
switchboard-plug-about-0.2.4-1.fc26 (FEDORA-2017-bed4c244a2)
Switchboard System Information plug
--------------------------------------------------------------------------------
Update Information:
Update to version 0.2.4.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1494298 - switchboard-plug-about-0.2.4 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1494298
--------------------------------------------------------------------------------
================================================================================
urw-base35-fonts-20170801-1.fc26 (FEDORA-2017-fbf9678db3)
Core Font Set containing 35 freely distributable fonts from (URW)++
--------------------------------------------------------------------------------
Update Information:
This is a replacement package for now obsoleted `urw-fonts` package. More info
in Pagure: https://src.fedoraproject.org/rpms/urw-base35-fonts
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1458840 - Review Request: urw-base35-fonts - Level 2 Core Font Set for Ghostscript
https://bugzilla.redhat.com/show_bug.cgi?id=1458840
--------------------------------------------------------------------------------
================================================================================
util-linux-2.30.2-1.fc26 (FEDORA-2017-be922337bd)
A collection of basic system utilities
--------------------------------------------------------------------------------
Update Information:
upgrade to v2.30.2
--------------------------------------------------------------------------------
The following Fedora 27 Security updates need testing:
Age URL
9 https://bodhi.fedoraproject.org/updates/FEDORA-2017-b444c3b9c5 libwmf-0.2.8.4-53.fc27
7 https://bodhi.fedoraproject.org/updates/FEDORA-2017-15819d2c37 jasper-2.0.14-1.fc27
5 https://bodhi.fedoraproject.org/updates/FEDORA-2017-0cc84101de python-jwt-1.5.3-1.fc27
2 https://bodhi.fedoraproject.org/updates/FEDORA-2017-7af44272e2 ImageMagick-6.9.9.13-1.fc27 rubygem-rmagick-2.16.0-6.fc27
2 https://bodhi.fedoraproject.org/updates/FEDORA-2017-1136e13b6a php-horde-Horde-Image-2.5.2-1.fc27
2 https://bodhi.fedoraproject.org/updates/FEDORA-2017-aaefb84ff3 wordpress-4.8.2-1.fc27
0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-23dba9fb5d kernel-4.13.3-300.fc27
0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-d270e932a3 nagios-4.3.4-3.fc27
0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-e3fcecbae7 php-horde-passwd-5.0.7-1.fc27
0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-346d6e00dd php-horde-wicked-2.0.8-1.fc27
0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-52ed023208 php-horde-nag-4.2.17-1.fc27
0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-fdd3a98e8f httpd-2.4.27-8.fc27
0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-f0c18420e8 samba-4.7.0-12.fc27
0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-0348398d64 LibRaw-0.18.5-1.fc27
The following builds have been pushed to Fedora 27 updates-testing
CGAL-4.11-1.fc27
COPASI-4.20.165-1.fc27
FlightGear-2017.3.1-1.fc27
LibRaw-0.18.5-1.fc27
OpenSceneGraph-3.4.1-1.fc27
SimGear-2017.3.1-1.fc27
bandit-1.4.0-1.fc27
buildah-0.4-1.git9cbccf8.fc27
cmake-3.9.3-1.fc27
container-selinux-2.24-1.fc27
eclipse-photran-9.1.3-1.fc27
erlang-fuse-2.4.0-1.fc27
fgrun-2016.3.1-15.fc27
gnome-shell-extension-pomodoro-0.13.3-1.fc27
golang-github-bgentry-speakeasy-0-0.11.git4aabc24.fc27
golang-github-coreos-go-semver-0-0.14.git8ab6407.fc27
golang-github-golang-time-0-0.5.gitc06e80d.fc27
golang-github-grpc-ecosystem-grpc-gateway-1.0.0-0.7.git18d1596.fc27
golang-github-grpc-grpc-go-1.0.0-0.7.git8050b9c.fc27
golang-github-kr-pty-0-0.34.git2c10821.fc27
golang-github-mattn-go-runewidth-0-0.8.git9e777a8.fc27
golang-github-prometheus-client_model-0-0.12.git6f38060.fc27
golang-github-prometheus-common-0-0.10.git49fee29.fc27
golang-github-prometheus-procfs-0-0.20.gita1dba9c.fc27
golang-gopkg-yaml-1-19.fc27
hyperscan-4.6.0-1.fc27
libad9361-0-0.2.20170207git6027674.fc27
libsodium-1.0.14-1.fc27
libxml2-2.9.5-2.fc27
lucene3-3.6.2-11.fc27
mailx-12.5-23.fc27
mesa-17.2.1-1.fc27
mycila-pom-6-5.fc27
ndctl-58.2-1.fc27
nfs-ganesha-2.5.2-4.fc27
ngspice-27-1.fc27
osgearth-2.7-15.fc27
perl-Alien-pkgconf-0.10-12.fc27
perl-Test-Moose-More-0.050-1.fc27
perl-libwww-perl-6.27-2.fc27
php-symfony-psr-http-message-bridge-1.0.0-3.fc27
php-symfony-security-acl-2.8.0-4.fc27
python-metakernel-0.20.7-1.fc27
python-pymongo-3.5.1-1.fc27
rakudo-MIME-Base64-1.2.1-1.fc27
rubygem-test-unit-3.2.6-100.fc27
selinux-policy-3.13.1-283.4.fc27
speed-dreams-2.2.1-6.fc27
switchboard-plug-about-0.2.4-1.fc27
urw-base35-fonts-20170801-1.fc27
util-linux-2.30.2-1.fc27
Details about builds:
================================================================================
CGAL-4.11-1.fc27 (FEDORA-2017-c86f3fa8bb)
Computational Geometry Algorithms Library
--------------------------------------------------------------------------------
Update Information:
New upstream release CGAL-4.11 See the [release
notes](https://www.cgal.org/2017/09/21/cgal411/).
--------------------------------------------------------------------------------
================================================================================
COPASI-4.20.165-1.fc27 (FEDORA-2017-7dd3f6b762)
Biochemical network simulator
--------------------------------------------------------------------------------
Update Information:
- Update to the build #365
--------------------------------------------------------------------------------
================================================================================
FlightGear-2017.3.1-1.fc27 (FEDORA-2017-fb5de406e4)
The FlightGear Flight Simulator
--------------------------------------------------------------------------------
Update Information:
- Rebuild for OpenSceneGraph-3.4.1 - Update SimGear, FiightGear
--------------------------------------------------------------------------------
================================================================================
LibRaw-0.18.5-1.fc27 (FEDORA-2017-0348398d64)
Library for reading RAW files obtained from digital photo cameras
--------------------------------------------------------------------------------
Update Information:
Fix for possible buffer overrun in kodak_65000 decoder Fix for possible
heap overrun in Canon makernotes parser Fix for CVE-2017-13735
CVE-2017-14265: Additional check for X-Trans CFA pattern data
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1488947 - CVE-2017-13735 libraw: Floating point exception in kodak_radc_load_raw function in internal/dcraw_common.cpp [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1488947
[ 2 ] Bug #1494522 - LibRaw-0.18.5 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1494522
--------------------------------------------------------------------------------
================================================================================
OpenSceneGraph-3.4.1-1.fc27 (FEDORA-2017-fb5de406e4)
High performance real-time graphics toolkit
--------------------------------------------------------------------------------
Update Information:
- Rebuild for OpenSceneGraph-3.4.1 - Update SimGear, FiightGear
--------------------------------------------------------------------------------
================================================================================
SimGear-2017.3.1-1.fc27 (FEDORA-2017-fb5de406e4)
Simulation library components
--------------------------------------------------------------------------------
Update Information:
- Rebuild for OpenSceneGraph-3.4.1 - Update SimGear, FiightGear
--------------------------------------------------------------------------------
================================================================================
bandit-1.4.0-1.fc27 (FEDORA-2017-f8c99f9eaa)
A framework for performing security analysis of Python source code
--------------------------------------------------------------------------------
Update Information:
New version 1.4.0
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1255723 - bandit-1.4.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1255723
--------------------------------------------------------------------------------
================================================================================
buildah-0.4-1.git9cbccf8.fc27 (FEDORA-2017-cf41805b84)
A command line tool used for creating OCI Images
--------------------------------------------------------------------------------
Update Information:
Lots of new features including support for creds
--------------------------------------------------------------------------------
================================================================================
cmake-3.9.3-1.fc27 (FEDORA-2017-4435f8433a)
Cross-platform make system
--------------------------------------------------------------------------------
Update Information:
Update to 3.9.3
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1489620 - cmake-3.9.3 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1489620
--------------------------------------------------------------------------------
================================================================================
container-selinux-2.24-1.fc27 (FEDORA-2017-90d5ed7a4c)
SELinux policies for container runtimes
--------------------------------------------------------------------------------
Update Information:
Fixes for NO_NEW_PRIVS Flags ---- Fix labeling for CRI-O
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1494427 - Child type container_t exceeds bounds of parent container_runtime_t
https://bugzilla.redhat.com/show_bug.cgi?id=1494427
[ 2 ] Bug #1489199 - Docker selinux problem; can't bind pty.sock
https://bugzilla.redhat.com/show_bug.cgi?id=1489199
[ 3 ] Bug #1486923 - SELinux is preventing runc:[2:INIT] from using the 'transition' accesses on a process.
https://bugzilla.redhat.com/show_bug.cgi?id=1486923
--------------------------------------------------------------------------------
================================================================================
eclipse-photran-9.1.3-1.fc27 (FEDORA-2017-2658929bde)
Fortran Development Tools (Photran) for Eclipse
--------------------------------------------------------------------------------
Update Information:
Updates to Oxygen.1 release of Photran.
--------------------------------------------------------------------------------
================================================================================
erlang-fuse-2.4.0-1.fc27 (FEDORA-2017-451cb45c06)
A Circuit Breaker for Erlang
--------------------------------------------------------------------------------
Update Information:
* Initial build
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1494018 - Review Request: erlang-fuse - A Circuit Breaker for Erlang
https://bugzilla.redhat.com/show_bug.cgi?id=1494018
--------------------------------------------------------------------------------
================================================================================
fgrun-2016.3.1-15.fc27 (FEDORA-2017-fb5de406e4)
Graphical front-end for launching FlightGear flight simulator
--------------------------------------------------------------------------------
Update Information:
- Rebuild for OpenSceneGraph-3.4.1 - Update SimGear, FiightGear
--------------------------------------------------------------------------------
================================================================================
gnome-shell-extension-pomodoro-0.13.3-1.fc27 (FEDORA-2017-92cc297c9c)
A time management utility for GNOME
--------------------------------------------------------------------------------
Update Information:
Adds support for the latest versions of GNOME Shell.
--------------------------------------------------------------------------------
================================================================================
golang-github-bgentry-speakeasy-0-0.11.git4aabc24.fc27 (FEDORA-2017-c9c584b7a7)
Golang helpers for reading password input without cgo
--------------------------------------------------------------------------------
Update Information:
Bump to upstream 4aabc24848ce5fd31929f7d1e4ea74d3709c14cd
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1250454 - Tracker for golang-github-bgentry-speakeasy
https://bugzilla.redhat.com/show_bug.cgi?id=1250454
--------------------------------------------------------------------------------
================================================================================
golang-github-coreos-go-semver-0-0.14.git8ab6407.fc27 (FEDORA-2017-c1aac014db)
Go semantic versioning library
--------------------------------------------------------------------------------
Update Information:
Bump to upstream 8ab6407b697782a06568d4b7f1db25550ec2e4c6
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1248718 - Tracker for golang-github-coreos-go-semver
https://bugzilla.redhat.com/show_bug.cgi?id=1248718
--------------------------------------------------------------------------------
================================================================================
golang-github-golang-time-0-0.5.gitc06e80d.fc27 (FEDORA-2017-4508070e14)
Go supplementary time packages
--------------------------------------------------------------------------------
Update Information:
Bump to upstream c06e80d9300e4443158a03817b8a8cb37d230320
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1494518 - Tracker for golang-github-golang-time
https://bugzilla.redhat.com/show_bug.cgi?id=1494518
--------------------------------------------------------------------------------
================================================================================
golang-github-grpc-ecosystem-grpc-gateway-1.0.0-0.7.git18d1596.fc27 (FEDORA-2017-ff380c3f14)
GRPC to JSON proxy generator
--------------------------------------------------------------------------------
Update Information:
Bump to upstream 18d159699f2e83fc5bb9ef2f79465ca3f3122676
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1405682 - Tracker for golang-github-grpc-ecosystem-grpc-gateway
https://bugzilla.redhat.com/show_bug.cgi?id=1405682
--------------------------------------------------------------------------------
================================================================================
golang-github-grpc-grpc-go-1.0.0-0.7.git8050b9c.fc27 (FEDORA-2017-30421e8099)
The Go language implementation of gRPC. HTTP/2 based RPC
--------------------------------------------------------------------------------
Update Information:
Bump to upstream 777daa17ff9b5daef1cfdf915088a2ada3332bf0
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1250461 - Tracker for golang-github-grpc-grpc-go
https://bugzilla.redhat.com/show_bug.cgi?id=1250461
--------------------------------------------------------------------------------
================================================================================
golang-github-kr-pty-0-0.34.git2c10821.fc27 (FEDORA-2017-294e19689e)
PTY interface for Go
--------------------------------------------------------------------------------
Update Information:
Bump to upstream 2c10821df3c3cf905230d078702dfbe9404c9b23
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1313956 - Missing rpm because of typo in spec file
https://bugzilla.redhat.com/show_bug.cgi?id=1313956
--------------------------------------------------------------------------------
================================================================================
golang-github-mattn-go-runewidth-0-0.8.git9e777a8.fc27 (FEDORA-2017-3ba9a959c7)
Functions for getting fixed width of the character or string
--------------------------------------------------------------------------------
Update Information:
Bump to upstream 9e777a8366cce605130a531d2cd6363d07ad7317
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1405690 - Tracker for golang-github-mattn-go-runewidth
https://bugzilla.redhat.com/show_bug.cgi?id=1405690
--------------------------------------------------------------------------------
================================================================================
golang-github-prometheus-client_model-0-0.12.git6f38060.fc27 (FEDORA-2017-b05d7c8e0b)
Data model artifacts for Prometheus
--------------------------------------------------------------------------------
Update Information:
Bump to upstream 6f3806018612930941127f2a7c6c453ba2c527d2
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1250496 - Tracker for golang-github-prometheus-client_model
https://bugzilla.redhat.com/show_bug.cgi?id=1250496
--------------------------------------------------------------------------------
================================================================================
golang-github-prometheus-common-0-0.10.git49fee29.fc27 (FEDORA-2017-7b2a75ca46)
Go libraries shared across Prometheus components and libraries
--------------------------------------------------------------------------------
Update Information:
Bump to upstream 49fee292b27bfff7f354ee0f64e1bc4850462edf
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1315096 - Tracker for golang-github-prometheus-common
https://bugzilla.redhat.com/show_bug.cgi?id=1315096
--------------------------------------------------------------------------------
================================================================================
golang-github-prometheus-procfs-0-0.20.gita1dba9c.fc27 (FEDORA-2017-b2ef04ed53)
Functions to retrieve system, kernel and process metrics from the /proc fs
--------------------------------------------------------------------------------
Update Information:
Bump to upstream a1dba9ce8baed984a2495b658c82687f8157b98f
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1326057 - buggy spec for s390x/gcc-go
https://bugzilla.redhat.com/show_bug.cgi?id=1326057
--------------------------------------------------------------------------------
================================================================================
golang-gopkg-yaml-1-19.fc27 (FEDORA-2017-562bc660ea)
Enables Go programs to comfortably encode and decode YAML values
--------------------------------------------------------------------------------
Update Information:
Bump to upstream cd8b52f8269e0feb286dfeef29f8fe4d5b397e0b
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1250524 - Tracker for golang-gopkg-yaml
https://bugzilla.redhat.com/show_bug.cgi?id=1250524
--------------------------------------------------------------------------------
================================================================================
hyperscan-4.6.0-1.fc27 (FEDORA-2017-edb5f1c67b)
High-performance regular expression matching library
--------------------------------------------------------------------------------
Update Information:
latest upstream release
--------------------------------------------------------------------------------
================================================================================
libad9361-0-0.2.20170207git6027674.fc27 (FEDORA-2017-2bbbedaa96)
Library for access to Analog Devices AD9361 radio IC
--------------------------------------------------------------------------------
Update Information:
Library for access to Analog Devices AD9361 radio IC
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1482246 - Review Request: libad9361 - Library for access to Analog Devices AD9361 radio IC
https://bugzilla.redhat.com/show_bug.cgi?id=1482246
--------------------------------------------------------------------------------
================================================================================
libsodium-1.0.14-1.fc27 (FEDORA-2017-f1a0c3d9e2)
The Sodium crypto library
--------------------------------------------------------------------------------
Update Information:
** Version 1.0.14** - WebAssembly is now officially supported. Special thanks
to facekapow and pepyakin who helped to make it happen. - Internal consistency
checks failing and primitives used with dangerous/out-of-bounds/invalid
parameters used to call abort(3). Now, a custom handler *that doesn't return*
can be set with the `set_sodium_misuse()` function. It still aborts by default
or if the handler ever returns. This is not a replacement for non-fatal,
expected runtime errors. This handler will be only called in unexpected
situations due to potential bugs in the library or in language bindings. -
`*_MESSAGEBYTES_MAX` macros (and the corresponding `_messagebytes_max()`
symbols) have been added to represent the maximum message size that can be
safely handled by a primitive. Language bindings are encouraged to check user
inputs against these maximum lengths. - The test suite has been extended to
cover more edge cases. - crypto_sign_ed25519_pk_to_curve25519() now rejects
points that are not on the curve, or not in the main subgroup. - Further
changes have been made to ensure that smart compilers will not optimize out code
that we don't want to be optimized. - Visual Studio solutions are now included
in distribution tarballs. - The `sodium_runtime_has_*` symbols for CPU features
detection are now defined as weak symbols, i.e. they can be replaced with an
application-defined implementation. This can be useful to disable AVX* when
temperature/power consumption is a concern. - `crypto_kx_*()` now aborts if
called with no non-NULL pointers to store keys to. - SSE2 implementations of
`crypto_verify_*()` have been added. - Passwords can be hashed using a specific
algorithm with the new `crypto_pwhash_str_alg()` function. - Due to popular
demand, base64 encoding (`sodium_bin2base64()`) and decoding
(`sodium_base642bin()`) have been implemented. - A new
`crypto_secretstream_*()` API was added to safely encrypt files and multi-part
messages. - The `sodium_pad()` and `sodium_unpad()` helper functions have been
added in order to add & remove padding. - An AVX512 optimized implementation of
Argon2 has been added (written by Ondrej Mosn����ek, thanks!) - The
`crypto_pwhash_str_needs_rehash()` function was added to check if a password
hash string matches the given parameters, or if it needs an update. - The
library can now be compiled with recent versions of emscripten/binaryen that
don't allow multiple variables declarations using a single `var` statement.
--------------------------------------------------------------------------------
================================================================================
libxml2-2.9.5-2.fc27 (FEDORA-2017-99cfe2d524)
Library providing XML and HTML support
--------------------------------------------------------------------------------
Update Information:
This release fixes reporting errors about undefined XPath variables.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1493613 - libxml2-2.9.5 stopped reporting undefined XPath variable error message
https://bugzilla.redhat.com/show_bug.cgi?id=1493613
--------------------------------------------------------------------------------
================================================================================
lucene3-3.6.2-11.fc27 (FEDORA-2017-f76e7f3f89)
High-performance, full-featured text search engine
--------------------------------------------------------------------------------
Update Information:
Fixes a packaging problem causing failure to build from source.
--------------------------------------------------------------------------------
================================================================================
mailx-12.5-23.fc27 (FEDORA-2017-e36dc3f478)
Enhanced implementation of the mailx command
--------------------------------------------------------------------------------
Update Information:
Fix multi-byte encoded line-folding
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1494559 - mailx is not properly encoding multibyte subjects
https://bugzilla.redhat.com/show_bug.cgi?id=1494559
--------------------------------------------------------------------------------
================================================================================
mesa-17.2.1-1.fc27 (FEDORA-2017-88f886b29d)
Mesa graphics libraries
--------------------------------------------------------------------------------
Update Information:
Update to 17.2.1 GA
--------------------------------------------------------------------------------
================================================================================
mycila-pom-6-5.fc27 (FEDORA-2017-c4c0aae3d7)
Mycila parent POM
--------------------------------------------------------------------------------
Update Information:
Fixes a packaging problem causing failure to build from source.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1423976 - mycila-pom: FTBFS in rawhide
https://bugzilla.redhat.com/show_bug.cgi?id=1423976
--------------------------------------------------------------------------------
================================================================================
ndctl-58.2-1.fc27 (FEDORA-2017-0e5a9df96b)
Manage "libnvdimm" subsystem devices (Non-volatile Memory)
--------------------------------------------------------------------------------
Update Information:
release v58.2
--------------------------------------------------------------------------------
================================================================================
nfs-ganesha-2.5.2-4.fc27 (FEDORA-2017-855d0225ab)
NFS-Ganesha is a NFS Server running in user space
--------------------------------------------------------------------------------
Update Information:
/var/log/ganesha owner ganesha.ganesha -> ganesha.root
--------------------------------------------------------------------------------
================================================================================
ngspice-27-1.fc27 (FEDORA-2017-6a508a1b19)
A mixed level/signal circuit simulator
--------------------------------------------------------------------------------
Update Information:
New version 27 is released.
--------------------------------------------------------------------------------
================================================================================
osgearth-2.7-15.fc27 (FEDORA-2017-fb5de406e4)
Dynamic map generation toolkit for OpenSceneGraph
--------------------------------------------------------------------------------
Update Information:
- Rebuild for OpenSceneGraph-3.4.1 - Update SimGear, FiightGear
--------------------------------------------------------------------------------
================================================================================
perl-Alien-pkgconf-0.10-12.fc27 (FEDORA-2017-5b3dd1733a)
Discover pkgconf and libpkgconf
--------------------------------------------------------------------------------
Update Information:
Rebuild for pkgconf update
--------------------------------------------------------------------------------
================================================================================
perl-Test-Moose-More-0.050-1.fc27 (FEDORA-2017-7ee35d9cdd)
More tools for testing Moose packages
--------------------------------------------------------------------------------
Update Information:
This release adds definition_context_ok() test.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1494301 - perl-Test-Moose-More-0.050 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1494301
--------------------------------------------------------------------------------
================================================================================
perl-libwww-perl-6.27-2.fc27 (FEDORA-2017-124d8d9481)
A Perl interface to the World-Wide Web
--------------------------------------------------------------------------------
Update Information:
This release fixes "lwp-request -C" command, handling undefined credentials and
parsing options in lwp-mirror tool. It also improves documentation.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1494297 - perl-libwww-perl-6.27 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1494297
--------------------------------------------------------------------------------
================================================================================
php-symfony-psr-http-message-bridge-1.0.0-3.fc27 (FEDORA-2017-3a6308ac57)
Symfony PSR HTTP message bridge
--------------------------------------------------------------------------------
Update Information:
RPM only release - Allow Symfony 3 - Modify tests - Apply patch to fix test
suite with !el6 and zendframework/zend-diactoros
--------------------------------------------------------------------------------
================================================================================
php-symfony-security-acl-2.8.0-4.fc27 (FEDORA-2017-50c811da9c)
Symfony Security Component - ACL (Access Control List)
--------------------------------------------------------------------------------
Update Information:
RPM only release - Add max versions to BuildRequires - Switch autoloader to
fedora/autoloader - Remove Conflicts for Suggests - Test with SCLs if available
--------------------------------------------------------------------------------
================================================================================
python-metakernel-0.20.7-1.fc27 (FEDORA-2017-0077cd4c01)
Metakernel for Jupyter
--------------------------------------------------------------------------------
Update Information:
New version.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1492262 - python-metakernel-v0.20.7 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1492262
--------------------------------------------------------------------------------
================================================================================
python-pymongo-3.5.1-1.fc27 (FEDORA-2017-92be42ad4d)
Python driver for MongoDB
--------------------------------------------------------------------------------
Update Information:
Fix build failure because of sphinx 1.6. Update to latest upstream release
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1494188 - python-pymongo: FTBFS in Fedora rawhide
https://bugzilla.redhat.com/show_bug.cgi?id=1494188
[ 2 ] Bug #1479606 - python-pymongo-3.5.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1479606
--------------------------------------------------------------------------------
================================================================================
rakudo-MIME-Base64-1.2.1-1.fc27 (FEDORA-2017-66165d9141)
A Perl6 implementation of MIME::Base64 for ASCII strings
--------------------------------------------------------------------------------
Update Information:
add initial build to f27
--------------------------------------------------------------------------------
================================================================================
rubygem-test-unit-3.2.6-100.fc27 (FEDORA-2017-64aaada882)
Improved version of Test::Unit bundled in Ruby 1.8.x
--------------------------------------------------------------------------------
Update Information:
New version 3.2.6 is released.
--------------------------------------------------------------------------------
================================================================================
selinux-policy-3.13.1-283.4.fc27 (FEDORA-2017-1fd5e1aff6)
SELinux policy configuration
--------------------------------------------------------------------------------
Update Information:
Update fixes all F27 Beta Blockers.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1483331 - Couldn't start mariadb.service
https://bugzilla.redhat.com/show_bug.cgi?id=1483331
[ 2 ] Bug #1491508 - [Modular Server] FreeIPA server deployment fails with SELinux in enforcing mode, despite no obvious denials
https://bugzilla.redhat.com/show_bug.cgi?id=1491508
[ 3 ] Bug #1451381 - SELinux is preventing sm-notify from using the 'dac_read_search' capabilities.
https://bugzilla.redhat.com/show_bug.cgi?id=1451381
[ 4 ] Bug #1459081 - SELinux is preventing abrt-server from using the 'dac_read_search' capabilities.
https://bugzilla.redhat.com/show_bug.cgi?id=1459081
[ 5 ] Bug #1485050 - selinux avc denial for auditd on rawhide
https://bugzilla.redhat.com/show_bug.cgi?id=1485050
[ 6 ] Bug #1494108 - On KDE, selinux prevents log in with newly created user
https://bugzilla.redhat.com/show_bug.cgi?id=1494108
--------------------------------------------------------------------------------
================================================================================
speed-dreams-2.2.1-6.fc27 (FEDORA-2017-fb5de406e4)
The Open Racing Car Simulator
--------------------------------------------------------------------------------
Update Information:
- Rebuild for OpenSceneGraph-3.4.1 - Update SimGear, FiightGear
--------------------------------------------------------------------------------
================================================================================
switchboard-plug-about-0.2.4-1.fc27 (FEDORA-2017-175123b153)
Switchboard System Information plug
--------------------------------------------------------------------------------
Update Information:
Update to version 0.2.4.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1494298 - switchboard-plug-about-0.2.4 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1494298
--------------------------------------------------------------------------------
================================================================================
urw-base35-fonts-20170801-1.fc27 (FEDORA-2017-a746305577)
Core Font Set containing 35 freely distributable fonts from (URW)++
--------------------------------------------------------------------------------
Update Information:
This is a replacement package for now obsoleted `urw-fonts` package. More info
in Pagure: https://src.fedoraproject.org/rpms/urw-base35-fonts
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1458840 - Review Request: urw-base35-fonts - Level 2 Core Font Set for Ghostscript
https://bugzilla.redhat.com/show_bug.cgi?id=1458840
--------------------------------------------------------------------------------
================================================================================
util-linux-2.30.2-1.fc27 (FEDORA-2017-4315cbc514)
A collection of basic system utilities
--------------------------------------------------------------------------------
Update Information:
upgrade to v2.30.2
--------------------------------------------------------------------------------