The following Fedora 23 Security updates need testing: Age URL 116 https://bodhi.fedoraproject.org/updates/FEDORA-2015-12739 python-kdcproxy-0.3.2-1.fc23 98 https://bodhi.fedoraproject.org/updates/FEDORA-2015-5eb2131441 conntrack-tools-1.4.2-9.fc23 69 https://bodhi.fedoraproject.org/updates/FEDORA-2015-16240 nagios-4.0.8-1.fc23 56 https://bodhi.fedoraproject.org/updates/FEDORA-2015-dd52a54fa1 python-pymongo-3.0.3-1.fc23 56 https://bodhi.fedoraproject.org/updates/FEDORA-2015-c76c1c84cf mod_nss-1.0.12-1.fc23 43 https://bodhi.fedoraproject.org/updates/FEDORA-2015-66439aa9e2 openstack-glance-2015.1.2-1.fc23 27 https://bodhi.fedoraproject.org/updates/FEDORA-2015-84a95e39d4 perl-HTML-Scrubber-0.15-1.fc23 27 https://bodhi.fedoraproject.org/updates/FEDORA-2015-81ded368fe miniupnpc-1.9-6.fc23 18 https://bodhi.fedoraproject.org/updates/FEDORA-2015-3d17682c15 putty-0.66-1.fc23 13 https://bodhi.fedoraproject.org/updates/FEDORA-2015-7852ea201b potrace-1.13-2.fc23 10 https://bodhi.fedoraproject.org/updates/FEDORA-2015-28e56e52e7 seamonkey-2.39-1.fc23 9 https://bodhi.fedoraproject.org/updates/FEDORA-2015-8b5ea2dc53 rubygem-flexmock-2.0.2-1.fc23 9 https://bodhi.fedoraproject.org/updates/FEDORA-2015-4ad4998d00 libpng-1.6.17-3.fc23 9 https://bodhi.fedoraproject.org/updates/FEDORA-2015-1943310658 libpng15-1.5.22-3.fc23 9 https://bodhi.fedoraproject.org/updates/FEDORA-2015-5d1f935811 imapsync-1.644-2.fc23 4 https://bodhi.fedoraproject.org/updates/FEDORA-2015-e3ec4cbf8f lxdm-0.5.3-1.fc23 3 https://bodhi.fedoraproject.org/updates/FEDORA-2015-a8c8f60fbd python-django-1.8.7-1.fc23 3 https://bodhi.fedoraproject.org/updates/FEDORA-2015-df0f324367 knot-2.0.2-1.fc23 2 https://bodhi.fedoraproject.org/updates/FEDORA-2015-0efcb5fbc5 php-symfony-2.7.7-2.fc23 php-twig-1.23.1-2.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2015-27392b3324 jbig2dec-0.12-2.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2015-10f92d4d06 wget-1.17-1.fc23
The following Fedora 23 Critical Path updates have yet to be approved: Age URL 15 https://bodhi.fedoraproject.org/updates/FEDORA-2015-37706c9c35 mash-0.6.19-1.fc23 9 https://bodhi.fedoraproject.org/updates/FEDORA-2015-cf51e6b9dc evolution-data-server-3.18.2-2.fc23 9 https://bodhi.fedoraproject.org/updates/FEDORA-2015-4ad4998d00 libpng-1.6.17-3.fc23 8 https://bodhi.fedoraproject.org/updates/FEDORA-2015-82bc055b3f perl-PathTools-3.60-1.fc23 8 https://bodhi.fedoraproject.org/updates/FEDORA-2015-22dbc37884 perl-Socket-2.021-1.fc23 5 https://bodhi.fedoraproject.org/updates/FEDORA-2015-9b1b3e9a5c xkeyboard-config-2.16-1.fc23 4 https://bodhi.fedoraproject.org/updates/FEDORA-2015-2ae867c402 NetworkManager-vpnc-1.0.8-1.fc23 NetworkManager-openconnect-1.0.8-1.fc23 NetworkManager-openvpn-1.0.8-1.fc23 NetworkManager-openswan-1.0.8-1.fc23 NetworkManager-fortisslvpn-1.0.8-1.fc23 NetworkManager-1.0.8-1.fc23 4 https://bodhi.fedoraproject.org/updates/FEDORA-2015-3e75abf2a3 krb5-1.14-2.fc23 3 https://bodhi.fedoraproject.org/updates/FEDORA-2015-498b25667e perl-BSD-Resource-1.290.900-1.fc23 1 https://bodhi.fedoraproject.org/updates/FEDORA-2015-eef23ceb81 PackageKit-1.0.11-1.fc23 1 https://bodhi.fedoraproject.org/updates/FEDORA-2015-e185ec1a6a pcre-8.38-2.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2015-18669069a5 menu-cache-1.0.0-4.D20151128git0b1e85c263.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2015-87a311850d gnome-disk-utility-3.18.3.1-1.fc23
The following builds have been pushed to Fedora 23 updates-testing
0ad-0.0.19-1.fc23 0ad-data-0.0.19-1.fc23 aws-2015-4.fc23 cockpit-0.85-1.fc23 git-2.5.0-3.fc23 glances-2.5.1-1.fc23 glpi-0.90.1-1.fc23 gnome-disk-utility-3.18.3.1-1.fc23 gnome-gmail-1.9.4-1.fc23 graphite-web-0.9.15-1.fc23 hplip-3.15.11-2.fc23 jbig2dec-0.12-2.fc23 libguestfs-1.30.5-2.fc23 menu-cache-1.0.0-4.D20151128git0b1e85c263.fc23 mingw-gnutls-3.4.7-1.fc23 mingw-nspr-4.10.10-1.fc23 mupdf-1.7a-4.fc23 nodejs-should-promised-0.3.1-1.fc23 python-PyLink-0.3.2-1.fc23 python-carbon-0.9.15-1.fc23 python-citeproc-py-0.3.0-2.fc23 python-cmigemo-0.1.6-2.fc23 python-pyrax-1.9.5-2.fc23 python-whisper-0.9.15-1.fc23 qelectrotech-0.50-1.fc23 rubygem-occi-api-4.3.3-1.fc23 rubygem-occi-cli-4.3.2-1.fc23 sayonara-0.7.1-4.svn257.fc23 tracker-1.6.1-1.fc23 wammu-0.40-2.fc23 wget-1.17-1.fc23
Details about builds:
================================================================================ 0ad-0.0.19-1.fc23 (FEDORA-2015-fbbf604cba) Cross-Platform RTS Game of Ancient Warfare -------------------------------------------------------------------------------- Update Information:
Update to 0.0.19 --------------------------------------------------------------------------------
================================================================================ 0ad-data-0.0.19-1.fc23 (FEDORA-2015-fbbf604cba) The Data Files for 0 AD -------------------------------------------------------------------------------- Update Information:
Update to 0.0.19 --------------------------------------------------------------------------------
================================================================================ aws-2015-4.fc23 (FEDORA-2015-e75625a05f) Ada Web Server -------------------------------------------------------------------------------- Update Information:
Added openldap requirement (#1285661) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1285661 - aws-devel should require openldap-devel https://bugzilla.redhat.com/show_bug.cgi?id=1285661 --------------------------------------------------------------------------------
================================================================================ cockpit-0.85-1.fc23 (FEDORA-2015-e368240084) A user interface for Linux servers -------------------------------------------------------------------------------- Update Information:
- * Allow varying user logins between dashboard machines - * Support for non- standard SSH ports on dashboard machines - * Troubleshoot buttons when machine connection problems - * Work around bug unlocking user accounts - * Work around Firefox bug causing blank screen - * Add a timeout to docker restart and stop buttons - * Fix start failure without SELinux (0.84 regression) - * Fixes for other bugs, tests, and branding -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1142234 - unlocking the user needs to be done twice after passwd -l in command line https://bugzilla.redhat.com/show_bug.cgi?id=1142234 [ 2 ] Bug #1282059 - cockpit web interface not showing any information https://bugzilla.redhat.com/show_bug.cgi?id=1282059 --------------------------------------------------------------------------------
================================================================================ git-2.5.0-3.fc23 (FEDORA-2015-5f483a3543) Fast Version Control System -------------------------------------------------------------------------------- Update Information:
Package *git-core*, which should be perl-less, contains two perl scripts in error: - /usr/share/git-core/contrib/hooks/setgitperms.perl - /usr/share/git- core/contrib/hooks/update-paranoid Moved scripts to *git* package, so git-core will be again without dependency on perl. -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1284688 - git-core depends on perl https://bugzilla.redhat.com/show_bug.cgi?id=1284688 --------------------------------------------------------------------------------
================================================================================ glances-2.5.1-1.fc23 (FEDORA-2015-e11482c23b) CLI curses based monitoring tool -------------------------------------------------------------------------------- Update Information:
Update to glances-2.5.1 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1285999 - Update to latest glances release https://bugzilla.redhat.com/show_bug.cgi?id=1285999 [ 2 ] Bug #1175164 - glances-v2.5.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1175164 --------------------------------------------------------------------------------
================================================================================ glpi-0.90.1-1.fc23 (FEDORA-2015-94cf00d47b) Free IT asset management software -------------------------------------------------------------------------------- Update Information:
**Version 0.90.1** Include bugfixes and some minor features : * More contrast * new business rule criterion : SLA * 2 new display hooks for plugins Read the full [changelog](https://github.com/glpi- project/glpi/issues?q=milestone:0.90.1) --------------------------------------------------------------------------------
================================================================================ gnome-disk-utility-3.18.3.1-1.fc23 (FEDORA-2015-87a311850d) Disks -------------------------------------------------------------------------------- Update Information:
Update to 3.18.3.1, fixing --restore-disk-image -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1285187 - --restore-disk-image no longer opens disk image restore view https://bugzilla.redhat.com/show_bug.cgi?id=1285187 --------------------------------------------------------------------------------
================================================================================ gnome-gmail-1.9.4-1.fc23 (FEDORA-2015-558f7e7de3) Integrate GMail into the GNOME desktop -------------------------------------------------------------------------------- Update Information:
Expand the use of the GMail API * Changes to support Python3 (thanks to Ville Skytt��/scop) * New translations: - cs - Thanks Kuvaly - hr - Thanks kvaju - ru - Thanks Kirill Babeev - si * Expanded testing, using pytest * Rework setup.py for portability ---- Fix bug and #1268672 & #1283415. -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1268672 - gnome-gmail version 1.9.3.1-1.fc22 noarch crashes ! https://bugzilla.redhat.com/show_bug.cgi?id=1268672 [ 2 ] Bug #1283415 - Incorrect dependencies for gnome-gmail 1.9.3 https://bugzilla.redhat.com/show_bug.cgi?id=1283415 [ 3 ] Bug #1286309 - gnome-gmail-1.9.4 is available https://bugzilla.redhat.com/show_bug.cgi?id=1286309 --------------------------------------------------------------------------------
================================================================================ graphite-web-0.9.15-1.fc23 (FEDORA-2015-fd28bc7826) A Django web application for enterprise scalable realtime graphing -------------------------------------------------------------------------------- Update Information:
Graphite packages 0.9.15 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1279310 - Please upgrade to upstream version https://bugzilla.redhat.com/show_bug.cgi?id=1279310 --------------------------------------------------------------------------------
================================================================================ hplip-3.15.11-2.fc23 (FEDORA-2015-70717b092e) HP Linux Imaging and Printing Project -------------------------------------------------------------------------------- Update Information:
New upstream release. --------------------------------------------------------------------------------
================================================================================ jbig2dec-0.12-2.fc23 (FEDORA-2015-27392b3324) A decoder implementation of the JBIG2 image compression format -------------------------------------------------------------------------------- Update Information:
New release (#1208076) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1208075 - jbig2dec: heap-based buffer overflow in jbig2_decode_symbol_dict() https://bugzilla.redhat.com/show_bug.cgi?id=1208075 --------------------------------------------------------------------------------
================================================================================ libguestfs-1.30.5-2.fc23 (FEDORA-2015-943e9fb63b) Access and modify virtual machine disk images -------------------------------------------------------------------------------- Update Information:
Fix data loss bug in virt-resize (RHBZ#1285847, RHBZ#1266658). -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1285847 - virt-resize does not copy logical partitions https://bugzilla.redhat.com/show_bug.cgi?id=1285847 [ 2 ] Bug #1266658 - virt-builder ubuntu-14.04 --size fails: Extended partition already exists. https://bugzilla.redhat.com/show_bug.cgi?id=1266658 [ 3 ] Bug #1280029 - libguestfs can run commands with stdin not open (or worse still, connected to arbitrary guest-chosen random devices) https://bugzilla.redhat.com/show_bug.cgi?id=1280029 --------------------------------------------------------------------------------
================================================================================ menu-cache-1.0.0-4.D20151128git0b1e85c263.fc23 (FEDORA-2015-18669069a5) Caching mechanism for freedesktop.org compliant menus -------------------------------------------------------------------------------- Update Information:
Many fixes are included in this rpm with regard to memory corruption on parsing desktop files and so on. -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1264489 - [abrt] menu-cache: fm_xml_file_item_get_tag(): menu-cache-gen killed by SIGSEGV https://bugzilla.redhat.com/show_bug.cgi?id=1264489 --------------------------------------------------------------------------------
================================================================================ mingw-gnutls-3.4.7-1.fc23 (FEDORA-2015-5d92f6481b) MinGW GnuTLS TLS/SSL encryption library -------------------------------------------------------------------------------- Update Information:
* Stop linking against iconv/libintl * Use Windows trust store by default instead of p11-kit * Drop C++ library -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1284810 - mingw-gnutls links with unneeded libraries https://bugzilla.redhat.com/show_bug.cgi?id=1284810 --------------------------------------------------------------------------------
================================================================================ mingw-nspr-4.10.10-1.fc23 (FEDORA-2015-84a0a3a39b) MinGW build of Netscape Portable Runtime -------------------------------------------------------------------------------- Update Information:
Initial build based on Greg Hellings' and OpenSuSE ones -------------------------------------------------------------------------------- References:
[ 1 ] Bug #886320 - Review Request: mingw-nspr - MinGW build of Netscape Portable Runtime https://bugzilla.redhat.com/show_bug.cgi?id=886320 --------------------------------------------------------------------------------
================================================================================ mupdf-1.7a-4.fc23 (FEDORA-2015-9e7f9aa970) A lightweight PDF viewer and toolkit -------------------------------------------------------------------------------- Update Information:
Rebuild with new jbig2dec --------------------------------------------------------------------------------
================================================================================ nodejs-should-promised-0.3.1-1.fc23 (FEDORA-2015-57deac291a) Some sort of promise assertion helpers -------------------------------------------------------------------------------- Update Information:
Initial package -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1283218 - Review Request: nodejs-should-promised - Some sort of promise assertion helpers https://bugzilla.redhat.com/show_bug.cgi?id=1283218 --------------------------------------------------------------------------------
================================================================================ python-PyLink-0.3.2-1.fc23 (FEDORA-2015-b8c0075b4d) Universal communication interface using File-Like API -------------------------------------------------------------------------------- Update Information:
Initial package -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1280482 - Review Request: python-PyLink - Universal communication interface using File-Like API https://bugzilla.redhat.com/show_bug.cgi?id=1280482 --------------------------------------------------------------------------------
================================================================================ python-carbon-0.9.15-1.fc23 (FEDORA-2015-fd28bc7826) Back-end data caching and persistence daemon for Graphite -------------------------------------------------------------------------------- Update Information:
Graphite packages 0.9.15 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1279310 - Please upgrade to upstream version https://bugzilla.redhat.com/show_bug.cgi?id=1279310 --------------------------------------------------------------------------------
================================================================================ python-citeproc-py-0.3.0-2.fc23 (FEDORA-2015-92e495c2e6) Yet another Python CSL Processor -------------------------------------------------------------------------------- Update Information:
New package -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1280464 - Review Request: python-citeproc-py - Yet another Python CSL Processor https://bugzilla.redhat.com/show_bug.cgi?id=1280464 --------------------------------------------------------------------------------
================================================================================ python-cmigemo-0.1.6-2.fc23 (FEDORA-2015-ebbae6069f) A pure python binding for C/Migemo -------------------------------------------------------------------------------- Update Information:
New package python-cmigemo for Fedora -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1249313 - Review Request: python-cmigemo - A pure python binding for C/Migemo https://bugzilla.redhat.com/show_bug.cgi?id=1249313 --------------------------------------------------------------------------------
================================================================================ python-pyrax-1.9.5-2.fc23 (FEDORA-2015-ff5c771597) Python language bindings for OpenStack Clouds -------------------------------------------------------------------------------- Update Information:
Reverted https://github.com/rackspace/pyrax/commit/2901b9c for old versions of novaclient (Fedora 23 or older) ---- Updated to 1.9.5 --------------------------------------------------------------------------------
================================================================================ python-whisper-0.9.15-1.fc23 (FEDORA-2015-fd28bc7826) Simple database library for storing time-series data -------------------------------------------------------------------------------- Update Information:
Graphite packages 0.9.15 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1279310 - Please upgrade to upstream version https://bugzilla.redhat.com/show_bug.cgi?id=1279310 --------------------------------------------------------------------------------
================================================================================ qelectrotech-0.50-1.fc23 (FEDORA-2015-fd54f794cf) An electric diagrams editor -------------------------------------------------------------------------------- Update Information:
Update to upstream **version 0.5** --------------------------------------------------------------------------------
================================================================================ rubygem-occi-api-4.3.3-1.fc23 (FEDORA-2015-73975be6b4) OCCI development library providing a high-level client API -------------------------------------------------------------------------------- Update Information:
New upstream versions fixing HTTP status check. -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1285912 - rubygem-occi-cli-v4.3.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=1285912 [ 2 ] Bug #1285911 - rubygem-occi-api-4.3.3 is available https://bugzilla.redhat.com/show_bug.cgi?id=1285911 --------------------------------------------------------------------------------
================================================================================ rubygem-occi-cli-4.3.2-1.fc23 (FEDORA-2015-73975be6b4) Executable OCCI client -------------------------------------------------------------------------------- Update Information:
New upstream versions fixing HTTP status check. -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1285912 - rubygem-occi-cli-v4.3.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=1285912 [ 2 ] Bug #1285911 - rubygem-occi-api-4.3.3 is available https://bugzilla.redhat.com/show_bug.cgi?id=1285911 --------------------------------------------------------------------------------
================================================================================ sayonara-0.7.1-4.svn257.fc23 (FEDORA-2015-8dcb168c8e) A lightweight Qt Audio player -------------------------------------------------------------------------------- Update Information:
rebuild for new svn release --------------------------------------------------------------------------------
================================================================================ tracker-1.6.1-1.fc23 (FEDORA-2015-419728c3fb) Desktop-neutral search tool and indexer -------------------------------------------------------------------------------- Update Information:
Tracker 1.6.1 release. * tracker tool: Fixes to UID detection * libtracker- miner: Fix cancellation of tasks during TrackerFileNotifier destruction * libtracker-miner: Handle failure to get a TrackerSparqlConnection * libtracker-common: Fix buffer overrun in libunistring-based unaccenting * libtracker-control: Documentation fixes * tracker-extract: Photo orientation extraction fixes (TIFF, XMP) * Many fixes to functional tests --------------------------------------------------------------------------------
================================================================================ wammu-0.40-2.fc23 (FEDORA-2015-5e27f17652) Mobile Phone Manager - Gammu GUI -------------------------------------------------------------------------------- Update Information:
Update to wammu-0.40, added PyBluez support. --------------------------------------------------------------------------------
================================================================================ wget-1.17-1.fc23 (FEDORA-2015-10f92d4d06) A utility for retrieving files using the HTTP or FTP protocols -------------------------------------------------------------------------------- Update Information:
- new version -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1260925 - wget: IP address exposure via FTP PORT command [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1260925 [ 2 ] Bug #1281829 - Harden all packages: wget should be a position-independent executable https://bugzilla.redhat.com/show_bug.cgi?id=1281829 [ 3 ] Bug #1286008 - wget-1.17 is available https://bugzilla.redhat.com/show_bug.cgi?id=1286008 --------------------------------------------------------------------------------