The following Fedora 26 Security updates need testing: Age URL 305 https://bodhi.fedoraproject.org/updates/FEDORA-2017-ccb5c8d1e7 docker-distribution-2.6.2-1.git48294d9.fc26 136 https://bodhi.fedoraproject.org/updates/FEDORA-2018-66b885ae3c keycloak-httpd-client-install-0.8-1.fc26 124 https://bodhi.fedoraproject.org/updates/FEDORA-2018-4f8a78a5ef squid-4.0.23-1.fc26 99 https://bodhi.fedoraproject.org/updates/FEDORA-2018-db5041e661 bro-2.5.3-1.fc26 40 https://bodhi.fedoraproject.org/updates/FEDORA-2018-8ba4601398 dovecot-2.2.35-1.fc26 37 https://bodhi.fedoraproject.org/updates/FEDORA-2018-7be77249d4 ruby-2.4.4-88.fc26 18 https://bodhi.fedoraproject.org/updates/FEDORA-2018-77c0da8eea blktrace-1.2.0-6.fc26 9 https://bodhi.fedoraproject.org/updates/FEDORA-2018-32a88d0540 ca-certificates-2018.2.24-1.0.fc26 5 https://bodhi.fedoraproject.org/updates/FEDORA-2018-bc04d8bfe8 vim-syntastic-3.9.0-1.fc26 5 https://bodhi.fedoraproject.org/updates/FEDORA-2018-9cf836a54a nodejs-base64-url-2.2.0-1.fc26 4 https://bodhi.fedoraproject.org/updates/FEDORA-2018-6367a17aa3 kernel-4.16.11-100.fc26 4 https://bodhi.fedoraproject.org/updates/FEDORA-2018-1ec08a2143 xmlrpc-3.1.3-20.fc26 3 https://bodhi.fedoraproject.org/updates/FEDORA-2018-feaf34dc57 thunderbird-52.8.0-1.fc26 1 https://bodhi.fedoraproject.org/updates/FEDORA-2018-1f83cbeb3c chromium-66.0.3359.181-2.fc26
The following Fedora 26 Critical Path updates have yet to be approved: Age URL 102 https://bodhi.fedoraproject.org/updates/FEDORA-2018-ddd1e5c30a iproute-4.14.1-5.fc26 13 https://bodhi.fedoraproject.org/updates/FEDORA-2018-70b0c4dca9 osinfo-db-20180514-1.fc26 12 https://bodhi.fedoraproject.org/updates/FEDORA-2018-e8706010aa vim-8.0.1842-1.fc26 9 https://bodhi.fedoraproject.org/updates/FEDORA-2018-32a88d0540 ca-certificates-2018.2.24-1.0.fc26 9 https://bodhi.fedoraproject.org/updates/FEDORA-2018-b9585aa356 sssd-1.16.1-8.fc26 6 https://bodhi.fedoraproject.org/updates/FEDORA-2018-5e05834bb7 volume_key-0.3.10-1.fc26 6 https://bodhi.fedoraproject.org/updates/FEDORA-2018-21a38db20b libidn2-2.0.5-1.fc26 5 https://bodhi.fedoraproject.org/updates/FEDORA-2018-1486702873 vino-3.22.0-8.fc26 5 https://bodhi.fedoraproject.org/updates/FEDORA-2018-eb2435dd6a ntfs-3g-2017.3.23-6.fc26 4 https://bodhi.fedoraproject.org/updates/FEDORA-2018-6367a17aa3 kernel-4.16.11-100.fc26 3 https://bodhi.fedoraproject.org/updates/FEDORA-2018-feaf34dc57 thunderbird-52.8.0-1.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2018-45bc8cfc20 xdg-utils-1.1.3-2.fc26
The following builds have been pushed to Fedora 26 updates-testing
cobbler-2.8.3-2.fc26 firefox-60.0.1-3.fc26 gpxsee-5.12-1.fc26 libunistring-0.9.10-1.fc26 python-fedmsg-meta-fedora-infrastructure-0.25.0-1.fc26 thunderbird-enigmail-2.0.6-1.fc26
Details about builds:
================================================================================ cobbler-2.8.3-2.fc26 (FEDORA-2018-10ff087f17) Boot server configurator -------------------------------------------------------------------------------- Update Information:
Update to 2.8.3 - Fix security issue -------------------------------------------------------------------------------- ChangeLog:
* Mon May 28 2018 Nicolas Chauvet kwizart@gmail.com - 2.8.3-2 - Restore mergeability with epel7 * Mon May 28 2018 Nicolas Chauvet kwizart@gmail.com - 2.8.3-1 - Update to 2.8.3 - security bugfix * Wed Feb 21 2018 Orion Poplawski orion@nwra.com - 2.8.2-6 - Really fix django requires for Fedora 28+ * Tue Feb 20 2018 Orion Poplawski orion@nwra.com - 2.8.2-5 - Fix django requires for Fedora 28+ * Fri Feb 9 2018 Igor Gnatenko ignatenkobrain@fedoraproject.org - 2.8.2-4 - Escape macros in %changelog * Wed Feb 7 2018 Fedora Release Engineering releng@fedoraproject.org - 2.8.2-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild * Tue Feb 6 2018 Iryna Shcherbina ishcherb@redhat.com - 2.8.2-2 - Update Python 2 dependency declarations to new packaging standards (See https://fedoraproject.org/wiki/FinalizingFedoraSwitchtoPython3) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1532470 - CVE-2017-1000469 cobbler: Command injection in the "add repo" component allows for remote code execution [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1532470 --------------------------------------------------------------------------------
================================================================================ firefox-60.0.1-3.fc26 (FEDORA-2018-1f788d5c09) Mozilla Firefox Web browser -------------------------------------------------------------------------------- Update Information:
- Added fix for rhbz#1577277 which should fix Firefox IPC crashes. - Enabled optional Wayland backend ---- Update to latest stable upstream version. -------------------------------------------------------------------------------- ChangeLog:
* Fri May 25 2018 Martin Stransky stransky@redhat.com - 60.0.1-3 - Added fix for mozbz#1436242 (rhbz#1577277) - Firefox IPC crashes. - Added fix for mozbz#1462640 - Sandbox disables eglGetDisplay() call on Wayland/EGL backend. * Fri May 25 2018 Martin Stransky stransky@redhat.com - 60.0.1-2 - Enable Wayland backend. * Wed May 23 2018 Jan Horak jhorak@redhat.com - 60.0.1-1 - Update to 60.0.1 * Wed May 16 2018 Martin Stransky stransky@redhat.com - 60.0-6 - Added patch from rhbz#1498561 - second arch (ppc*) crashes. * Wed May 16 2018 Martin Stransky stransky@redhat.com - 60.0-5 - Disabled jemalloc on second arches. -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1577277 - Firefox 60 crashes when opening new window/tab https://bugzilla.redhat.com/show_bug.cgi?id=1577277 [ 2 ] Bug #1581441 - Firefox 60.0.1 available https://bugzilla.redhat.com/show_bug.cgi?id=1581441 --------------------------------------------------------------------------------
================================================================================ gpxsee-5.12-1.fc26 (FEDORA-2018-17f98315c9) GPS log file viewer and analyzer -------------------------------------------------------------------------------- Update Information:
News in version **5.12**: - Added support for Garmin JNX maps - Added support for GPX Garmin route extension - Several performance improvements -------------------------------------------------------------------------------- ChangeLog:
* Mon May 28 2018 Nikola Forr�� nforro@redhat.com - 5.12-1 - Update to version 5.12 resolves: #1582680 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1582680 - gpxsee-5.12 is available https://bugzilla.redhat.com/show_bug.cgi?id=1582680 --------------------------------------------------------------------------------
================================================================================ libunistring-0.9.10-1.fc26 (FEDORA-2018-549dc0ccd2) GNU Unicode string library -------------------------------------------------------------------------------- Update Information:
- Update to upstream 0.9.10 release -------------------------------------------------------------------------------- ChangeLog:
* Mon May 28 2018 Daiki Ueno dueno@redhat.com - 0.9.10-1 - Update to upstream 0.9.10 release --------------------------------------------------------------------------------
================================================================================ python-fedmsg-meta-fedora-infrastructure-0.25.0-1.fc26 (FEDORA-2018-819fa65d0d) Metadata providers for Fedora Infrastructure's fedmsg deployment -------------------------------------------------------------------------------- Update Information:
Update to 0.25.0 Changelog at: https://github.com/fedora- infra/fedmsg_meta_fedora_infrastructure/blob/develop/CHANGELOG.rst#0250 -------------------------------------------------------------------------------- ChangeLog:
* Fri May 25 2018 Pierre-Yves Chibon pingou@pingoured.fr - 0.25.0-1 - Update to 0.25.0 --------------------------------------------------------------------------------
================================================================================ thunderbird-enigmail-2.0.6-1.fc26 (FEDORA-2018-c53342d273) Authentication and encryption extension for Mozilla Thunderbird -------------------------------------------------------------------------------- Update Information:
Some more efail fixes, https://enigmail.net/index.php/en/download/changelog -------------------------------------------------------------------------------- ChangeLog:
* Mon May 28 2018 Christian Dersch lupinix@fedoraproject.org - 2.0.6-1 - new version -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1583073 - enigmail: Multiple information leaks in responses to partially encrypted messages https://bugzilla.redhat.com/show_bug.cgi?id=1583073 --------------------------------------------------------------------------------