The following Fedora 27 Security updates need testing: Age URL 192 https://bodhi.fedoraproject.org/updates/FEDORA-2018-1ec1cd6db3 bro-2.5.3-1.fc27 124 https://bodhi.fedoraproject.org/updates/FEDORA-2018-8dc6395408 dpdk-17.08.2-1.fc27 87 https://bodhi.fedoraproject.org/updates/FEDORA-2018-3b33f65b01 nodejs-brace-expansion-1.1.11-1.fc27 79 https://bodhi.fedoraproject.org/updates/FEDORA-2018-a748acc219 unrtf-0.21.9-8.fc27 55 https://bodhi.fedoraproject.org/updates/FEDORA-2018-f6ccdeb750 mailman-2.1.21-9.fc27 55 https://bodhi.fedoraproject.org/updates/FEDORA-2018-bc864bb9e1 openslp-2.0.0-15.fc27 13 https://bodhi.fedoraproject.org/updates/FEDORA-2018-21ffebf41c tomcat-8.0.53-1.fc27 13 https://bodhi.fedoraproject.org/updates/FEDORA-2018-e8533a3ef1 unixODBC-2.3.7-1.fc27 12 https://bodhi.fedoraproject.org/updates/FEDORA-2018-7051d682fa ntp-4.2.8p12-1.fc27 11 https://bodhi.fedoraproject.org/updates/FEDORA-2018-915602df63 xen-4.9.2-7.fc27 6 https://bodhi.fedoraproject.org/updates/FEDORA-2018-d1c4a4ca50 mariadb-10.2.17-1.fc27 5 https://bodhi.fedoraproject.org/updates/FEDORA-2018-e914e7a9e2 chromium-68.0.3440.106-3.fc27 4 https://bodhi.fedoraproject.org/updates/FEDORA-2018-fac5420dd1 obs-build-20180816-291.1.1.fc27 osc-0.163.0-237.1.1.fc27 4 https://bodhi.fedoraproject.org/updates/FEDORA-2018-3a3c660bfa community-mysql-5.7.23-1.fc27 2 https://bodhi.fedoraproject.org/updates/FEDORA-2018-11ed8d95e2 libxkbcommon-0.8.2-1.fc27 1 https://bodhi.fedoraproject.org/updates/FEDORA-2018-fe437a98d6 dolphin-emu-5.0-24.fc27 1 https://bodhi.fedoraproject.org/updates/FEDORA-2018-f56ded11c4 openssh-7.6p1-6.fc27
The following Fedora 27 Critical Path updates have yet to be approved: Age URL 108 https://bodhi.fedoraproject.org/updates/FEDORA-2018-25d5c86330 libidn-1.34-2.fc27 mcabber-1.1.0-1.fc27.1 pidgin-2.13.0-1.fc27.1 python-slixmpp-1.3.0-5.fc27.1 68 https://bodhi.fedoraproject.org/updates/FEDORA-2018-200dba6b93 upower-0.99.8-1.fc27 32 https://bodhi.fedoraproject.org/updates/FEDORA-2018-05a68ea22e geoclue2-2.4.11-1.fc27 13 https://bodhi.fedoraproject.org/updates/FEDORA-2018-20c3deae24 iproute-4.17.0-1.fc27 13 https://bodhi.fedoraproject.org/updates/FEDORA-2018-c0b9b16dee python-productmd-1.16-1.fc27 13 https://bodhi.fedoraproject.org/updates/FEDORA-2018-c6400790b5 libguestfs-1.38.4-1.fc27 11 https://bodhi.fedoraproject.org/updates/FEDORA-2018-915602df63 xen-4.9.2-7.fc27 10 https://bodhi.fedoraproject.org/updates/FEDORA-2018-9320eeea0a pungi-4.1.27-1.fc27 6 https://bodhi.fedoraproject.org/updates/FEDORA-2018-344f454318 sssd-1.16.3-2.fc27 6 https://bodhi.fedoraproject.org/updates/FEDORA-2018-6499677be6 firefox-61.0.2-3.fc27 6 https://bodhi.fedoraproject.org/updates/FEDORA-2018-90a16ffef6 ostree-2018.7-1.fc27 flatpak-builder-1.0.0-1.fc27 flatpak-1.0.0-1.fc27 5 https://bodhi.fedoraproject.org/updates/FEDORA-2018-95a86db5ae fedora-repos-27-4 5 https://bodhi.fedoraproject.org/updates/FEDORA-2018-91f97e9d4f glusterfs-3.12.13-1.fc27 2 https://bodhi.fedoraproject.org/updates/FEDORA-2018-a39edb9f02 kernel-headers-4.17.19-1.fc27 kernel-tools-4.17.19-100.fc27 kernel-4.17.19-100.fc27 2 https://bodhi.fedoraproject.org/updates/FEDORA-2018-11ed8d95e2 libxkbcommon-0.8.2-1.fc27 1 https://bodhi.fedoraproject.org/updates/FEDORA-2018-f56ded11c4 openssh-7.6p1-6.fc27
The following builds have been pushed to Fedora 27 updates-testing
armadillo-9.100.5-1.fc27 dokuwiki-20180422a-1.fc27 duplicity-0.7.18.1-1.fc27 gdal-2.1.4-6.1.fc27 globus-gsi-proxy-core-8.6-8.fc27 globus-gssapi-gsi-13.8-3.fc27 globus-proxy-utils-6.19-8.fc27 golang-github-git-lfs-netrc-0-0.1.20180827gite0e9ca4.fc27 magic-8.2.66-1.fc27 mlpack-2.0.1-9.fc27 mmseq-1.0.8a-27.fc27 myproxy-6.1.30-3.fc27 nordugrid-arc-5.4.2-9.fc27 perl-Storable-3.11-3.fc27 postgresql-9.6.10-3.fc27 python-dns-lexicon-2.7.0-2.fc27 root-6.14.04-1.fc27 switchboard-plug-sound-0.1.1-1.fc27 tcpflow-1.5.0-2.fc27 upx-3.95-1.fc27 vim-8.1.328-1.fc27 yara-3.8.1-1.fc27
Details about builds:
================================================================================ armadillo-9.100.5-1.fc27 (FEDORA-2018-617c7d4ba8) Fast C++ matrix library with syntax similar to MATLAB and Octave -------------------------------------------------------------------------------- Update Information:
Update to the latest stable version of armadillo. The changes are: * faster handling of symmetric/hermitian positive definite matrices by `solve()` * faster handling of `inv_sympd()` in compound expressions * added `.is_symmetric()` * added `.is_hermitian()` * expanded `spsolve()` to optionally allow keeping solutions of systems singular to working precision * new configuration options `ARMA_OPTIMISE_SOLVE_BAND` and `ARMA_OPTIMISE_SOLVE_SYMPD` * smarter use of the element cache in sparse matrices -------------------------------------------------------------------------------- ChangeLog:
* Fri Aug 17 2018 Jos�� Matos jamatos@fedoraproject.org - 9.100.5-1 - update to 9.100.5 - add white lines to improve spec file readability * Fri Aug 10 2018 Jos�� Matos jamatos@fedoraproject.org - 8.600.1-1 - update to 8.600.1 * Thu Jul 12 2018 Fedora Release Engineering releng@fedoraproject.org - 8.600.0-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild * Sat Jun 30 2018 Jos�� Matos jamatos@fedoraproject.org - 8.600.0-1 - Update to 8.600.0 - Make calls to ldconfig conditional (not needed for Fedora >= 28) * Thu Apr 26 2018 Richard Shaw hobbes1069@gmail.com - 8.300.0-3.1 - Rebuild for fixed soname in SuperLU 5.2.1. * Wed Apr 25 2018 Richard Shaw hobbes1069@gmail.com - 8.300.0-3 - Rebuild for SuperLU 5.2.1. * Wed Feb 7 2018 Fedora Release Engineering releng@fedoraproject.org - 8.300.0-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild * Thu Nov 30 2017 Ryan Curtin ryan@ratml.org - 8.300.0-1 - Update Armadillo to 8.300.0. * Thu Oct 26 2017 Ryan Curtin ryan@ratml.org - 8.200.1-1 - Update Armadillo to 8.200.1. * Sun Sep 17 2017 Rex Dieter rdieter@fedoraproject.org - 8.100.1-2 - tighten %files to track library soname * Wed Sep 13 2017 Ryan Curtin ryan@ratml.org - 8.100.1-1 - Update Armadillo to 8.100.1. -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1616257 - armadillo-9.100.5 is available https://bugzilla.redhat.com/show_bug.cgi?id=1616257 --------------------------------------------------------------------------------
================================================================================ dokuwiki-20180422a-1.fc27 (FEDORA-2018-59285e9fa0) Standards compliant simple to use wiki -------------------------------------------------------------------------------- Update Information:
Update to upstream version 2018-04-22a -------------------------------------------------------------------------------- ChangeLog:
* Sat Aug 25 2018 Artur Iwicki fedora@svgames.pl - 20180422a-1 - Change the versioning scheme * Mon Aug 20 2018 Artur Iwicki fedora@svgames.pl - 0-0.32.20180422a - Remove the "Group:" tag (no longer used in Fedora) - Replace the hand-written %releasetag with one generated from %releasenum * Fri Jul 13 2018 Peter 'Pessoft' Kol��nek fedora@pessoft.com - 0-0.31.20180422a - Update to the latest stable upstream 2018-04-22a "Greebo" (#1390291: CVE-2016-7964, CVE-2016-7965, CVE-2017-12583, CVE-2017-12979, CVE-2017-12980, CVE-2017-18123) - Fix missing vendor directory issue (#1372948) - Fix Apache config file for access to conf and bin - Replace more bundled code in vendor directory with Fedora packages (lesserphp, random_compat, phpseclib, simplepie) - Fix source to HTTPS * Fri Mar 30 2018 Iryna Shcherbina ishcherb@redhat.com - 0-0.30.20150810a - Update Python 2 dependency declarations to new packaging standards (See https://fedoraproject.org/wiki/FinalizingFedoraSwitchtoPython3) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1390291 - CVE-2016-7964 CVE-2016-7965 CVE-2017-12583 CVE-2017-12979 CVE-2017-12980 CVE-2017-18123 dokuwiki: Various flaws [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1390291 [ 2 ] Bug #1372948 - Error 500 due to missing vendor directory /usr/share/dokuwiki/vendor https://bugzilla.redhat.com/show_bug.cgi?id=1372948 --------------------------------------------------------------------------------
================================================================================ duplicity-0.7.18.1-1.fc27 (FEDORA-2018-1cc479d095) Encrypted bandwidth-efficient backup using rsync algorithm -------------------------------------------------------------------------------- Update Information:
https://launchpad.net/duplicity/+announcement/15047 -------------------------------------------------------------------------------- ChangeLog:
* Mon Aug 27 2018 Gwyn Ciesla limburgher@gmail.com - 0.7.18.1-1 - Patch for crash. * Wed Aug 22 2018 Gwyn Ciesla limburgher@gmail.com - 0.7.18-1 - 0.7.18. * Thu Jul 12 2018 Fedora Release Engineering releng@fedoraproject.org - 0.7.17-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1622232 - New crash with 0.7.18 https://bugzilla.redhat.com/show_bug.cgi?id=1622232 --------------------------------------------------------------------------------
================================================================================ gdal-2.1.4-6.1.fc27 (FEDORA-2018-617c7d4ba8) GIS file format library -------------------------------------------------------------------------------- Update Information:
Update to the latest stable version of armadillo. The changes are: * faster handling of symmetric/hermitian positive definite matrices by `solve()` * faster handling of `inv_sympd()` in compound expressions * added `.is_symmetric()` * added `.is_hermitian()` * expanded `spsolve()` to optionally allow keeping solutions of systems singular to working precision * new configuration options `ARMA_OPTIMISE_SOLVE_BAND` and `ARMA_OPTIMISE_SOLVE_SYMPD` * smarter use of the element cache in sparse matrices -------------------------------------------------------------------------------- ChangeLog:
* Mon Aug 27 2018 Jos�� Ab��lio Matos jamatos@fc.up.pt - 2.1.4-6.1 - rebuild for armadillo soname bump -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1616257 - armadillo-9.100.5 is available https://bugzilla.redhat.com/show_bug.cgi?id=1616257 --------------------------------------------------------------------------------
================================================================================ globus-gsi-proxy-core-8.6-8.fc27 (FEDORA-2018-11b5ae5326) Globus Toolkit - Globus GSI Proxy Core Library -------------------------------------------------------------------------------- Update Information:
Increase default proxy key size to 2048 bits. Avoid TLS 1.3 in globus-gssapi- gsi - needs porting. -------------------------------------------------------------------------------- ChangeLog:
* Sun Aug 26 2018 Mattias Ellert mattias.ellert@physics.uu.se - 8.6-8 - Increase default proxy key size to 2048 bits * Fri Jul 13 2018 Fedora Release Engineering releng@fedoraproject.org - 8.6-7 - Rebuilt for https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild * Wed Feb 7 2018 Fedora Release Engineering releng@fedoraproject.org - 8.6-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild --------------------------------------------------------------------------------
================================================================================ globus-gssapi-gsi-13.8-3.fc27 (FEDORA-2018-11b5ae5326) Globus Toolkit - GSSAPI library -------------------------------------------------------------------------------- Update Information:
Increase default proxy key size to 2048 bits. Avoid TLS 1.3 in globus-gssapi- gsi - needs porting. -------------------------------------------------------------------------------- ChangeLog:
* Sun Aug 26 2018 Mattias Ellert mattias.ellert@physics.uu.se - 13.8-3 - Avoid TLS 1.3 - needs porting * Fri Jul 13 2018 Fedora Release Engineering releng@fedoraproject.org - 13.8-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild --------------------------------------------------------------------------------
================================================================================ globus-proxy-utils-6.19-8.fc27 (FEDORA-2018-11b5ae5326) Globus Toolkit - Globus GSI Proxy Utility Programs -------------------------------------------------------------------------------- Update Information:
Increase default proxy key size to 2048 bits. Avoid TLS 1.3 in globus-gssapi- gsi - needs porting. -------------------------------------------------------------------------------- ChangeLog:
* Sun Aug 26 2018 Mattias Ellert mattias.ellert@physics.uu.se - 6.19-8 - Increase default proxy key size to 2048 bits * Fri Jul 13 2018 Fedora Release Engineering releng@fedoraproject.org - 6.19-7 - Rebuilt for https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild * Wed Feb 7 2018 Fedora Release Engineering releng@fedoraproject.org - 6.19-6 - Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild --------------------------------------------------------------------------------
================================================================================ golang-github-git-lfs-netrc-0-0.1.20180827gite0e9ca4.fc27 (FEDORA-2018-1916746967) A Golang package for reading and writing netrc files -------------------------------------------------------------------------------- Update Information:
Initial package for Fedora -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1584973 - Review Request: golang-github-git-lfs-netrc - A Golang package for reading and writing netrc files https://bugzilla.redhat.com/show_bug.cgi?id=1584973 --------------------------------------------------------------------------------
================================================================================ magic-8.2.66-1.fc27 (FEDORA-2018-52472dfe9e) A very capable VLSI layout tool -------------------------------------------------------------------------------- Update Information:
New version 8.2.66 is released. -------------------------------------------------------------------------------- ChangeLog:
* Sat Aug 24 2019 Mamoru TASAKA mtasaka@fedoraproject.org - 8.2.66-1 - 8.2.66 * Tue Jul 31 2018 Florian Weimer fweimer@redhat.com - 8.2.65-2 - Rebuild with fixed binutils --------------------------------------------------------------------------------
================================================================================ mlpack-2.0.1-9.fc27 (FEDORA-2018-617c7d4ba8) Scalable, fast C++ machine learning library -------------------------------------------------------------------------------- Update Information:
Update to the latest stable version of armadillo. The changes are: * faster handling of symmetric/hermitian positive definite matrices by `solve()` * faster handling of `inv_sympd()` in compound expressions * added `.is_symmetric()` * added `.is_hermitian()` * expanded `spsolve()` to optionally allow keeping solutions of systems singular to working precision * new configuration options `ARMA_OPTIMISE_SOLVE_BAND` and `ARMA_OPTIMISE_SOLVE_SYMPD` * smarter use of the element cache in sparse matrices -------------------------------------------------------------------------------- ChangeLog:
* Mon Aug 27 2018 Jos�� Ab��lio Matos jamatos@fc.up.pt - 2.0.1-9 - rebuild for armadillo soname bump -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1616257 - armadillo-9.100.5 is available https://bugzilla.redhat.com/show_bug.cgi?id=1616257 --------------------------------------------------------------------------------
================================================================================ mmseq-1.0.8a-27.fc27 (FEDORA-2018-617c7d4ba8) Haplotype and isoform specific expression estimation for RNA-seq -------------------------------------------------------------------------------- Update Information:
Update to the latest stable version of armadillo. The changes are: * faster handling of symmetric/hermitian positive definite matrices by `solve()` * faster handling of `inv_sympd()` in compound expressions * added `.is_symmetric()` * added `.is_hermitian()` * expanded `spsolve()` to optionally allow keeping solutions of systems singular to working precision * new configuration options `ARMA_OPTIMISE_SOLVE_BAND` and `ARMA_OPTIMISE_SOLVE_SYMPD` * smarter use of the element cache in sparse matrices -------------------------------------------------------------------------------- ChangeLog:
* Fri Aug 17 2018 Jos�� Ab��lio Matos jamatos@fc.up.pt - 1.0.8a-27 - rebuild for armadillo soname bump * Fri Jul 13 2018 Fedora Release Engineering releng@fedoraproject.org - 1.0.8a-26 - Rebuilt for https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild * Thu Feb 8 2018 Fedora Release Engineering releng@fedoraproject.org - 1.0.8a-25 - Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild * Tue Jan 23 2018 Jonathan Wakely jwakely@redhat.com - 1.0.8a-24 - Rebuilt for Boost 1.66 * Fri Sep 22 2017 Adam Huffman bloch@verdurin.com - 1.0.8a-23 - rebuilt for armadillo * Thu Aug 3 2017 Fedora Release Engineering releng@fedoraproject.org - 1.0.8a-22 - Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Binutils_Mass_Rebuild * Wed Jul 26 2017 Fedora Release Engineering releng@fedoraproject.org - 1.0.8a-21 - Rebuilt for https://fedoraproject.org/wiki/Fedora_27_Mass_Rebuild -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1616257 - armadillo-9.100.5 is available https://bugzilla.redhat.com/show_bug.cgi?id=1616257 --------------------------------------------------------------------------------
================================================================================ myproxy-6.1.30-3.fc27 (FEDORA-2018-11b5ae5326) Manage X.509 Public Key Infrastructure (PKI) security credentials -------------------------------------------------------------------------------- Update Information:
Increase default proxy key size to 2048 bits. Avoid TLS 1.3 in globus-gssapi- gsi - needs porting. -------------------------------------------------------------------------------- ChangeLog:
* Sun Aug 26 2018 Mattias Ellert mattias.ellert@physics.uu.se - 6.1.30-3 - Use 2048 bit CA key for myproxy tests * Fri Jul 13 2018 Fedora Release Engineering releng@fedoraproject.org - 6.1.30-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild --------------------------------------------------------------------------------
================================================================================ nordugrid-arc-5.4.2-9.fc27 (FEDORA-2018-60d6704c1c) Advanced Resource Connector Grid Middleware -------------------------------------------------------------------------------- Update Information:
Backported bugfixes from upstream. -------------------------------------------------------------------------------- ChangeLog:
* Fri Aug 24 2018 Mattias Ellert mattias.ellert@physics.uu.se - 5.4.2-9 - Various bugfixes from upstream - Respect s3 port number (nordugrid bugz 3701) - Adding support for RTE arguments in xRSL (nordugrid bugz 3705) - Small fix for Perl warnings (nordugrid bugz 3074) - Add empty Default-Start LSB keyword to avoid warnings - Fix shebangs to request python2 - Use consistent 'unused' python shebangs - Handle twisted API change in v18.4 (nordugrid bugz 3733) - Run sub-process with the same python executable as main process - Relax FQDN demands in condor history file (GGUS #134645) - Fix -h processing in options parser (nordugrid bugz 3725) * Mon Jul 16 2018 Mattias Ellert mattias.ellert@physics.uu.se - 5.4.2-8 - Explicitly request --with-python=python2 - Fix pylint error with new pylint * Fri Jul 13 2018 Fedora Release Engineering releng@fedoraproject.org - 5.4.2-7 - Rebuilt for https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild * Tue Jun 19 2018 Miro Hron��ok mhroncok@redhat.com - 5.4.2-6 - Rebuilt for Python 3.7 --------------------------------------------------------------------------------
================================================================================ perl-Storable-3.11-3.fc27 (FEDORA-2018-d9c172b007) Persistence for Perl data structures -------------------------------------------------------------------------------- Update Information:
This release fixes a recursion check that miscalculated the recursion depth. -------------------------------------------------------------------------------- ChangeLog:
* Mon Aug 27 2018 Petr Pisar ppisar@redhat.com - 1:3.11-3 - Fix recursion check (RT#133326) --------------------------------------------------------------------------------
================================================================================ postgresql-9.6.10-3.fc27 (FEDORA-2018-36b0b4efc9) PostgreSQL client programs -------------------------------------------------------------------------------- Update Information:
devel subpackage provides libpq-devel, postgresql-server-devel and libecpg-devel -------------------------------------------------------------------------------- ChangeLog:
* Mon Aug 27 2018 Pavel Raiskup praiskup@redhat.com - 9.6.10-3 - devel subpackage provides postgresql-server-devel and libecpg-devel (first step for rhbz#1618698) * Mon Aug 27 2018 Pavel Raiskup praiskup@redhat.com - 9.6.10-2 - devel subpackage to provide libpq-devel (first step for rhbz#1618698) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1618698 - [modularity] drop postgresql-libs - create libpq.spec and libecpg.spec instead https://bugzilla.redhat.com/show_bug.cgi?id=1618698 --------------------------------------------------------------------------------
================================================================================ python-dns-lexicon-2.7.0-2.fc27 (FEDORA-2018-327e93f5d2) Manipulate DNS records on various DNS providers in a standardized/agnostic way -------------------------------------------------------------------------------- Update Information:
Add missing dependency on python-cryptography. -------------------------------------------------------------------------------- ChangeLog:
* Mon Aug 27 2018 Eli Young elyscape@gmail.com - 2.7.0-2 - Add dependency on python-cryptography (#1622418) -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1622418 - python-dns-lexicon should require python-cryptography https://bugzilla.redhat.com/show_bug.cgi?id=1622418 --------------------------------------------------------------------------------
================================================================================ root-6.14.04-1.fc27 (FEDORA-2018-3a695de53a) Numerical data analysis framework -------------------------------------------------------------------------------- Update Information:
Root version 6.14.04. https://root.cern.ch/doc/v614/release- notes.html#release-6.1404 -------------------------------------------------------------------------------- ChangeLog:
* Fri Aug 24 2018 Mattias Ellert mattias.ellert@physics.uu.se - 6.14.04-1 - Update to 6.14.04 - Drop patch accepted upstream: root-python-3.7.patch * Thu Aug 23 2018 Nicolas Chauvet kwizart@gmail.com - 6.14.02-2 - Rebuilt for glew 2.1.0 --------------------------------------------------------------------------------
================================================================================ switchboard-plug-sound-0.1.1-1.fc27 (FEDORA-2018-3f832073c2) Switchboard Sound Plug -------------------------------------------------------------------------------- Update Information:
Update to version 0.1.1. Release notes: https://github.com/elementary /switchboard-plug-sound/releases/tag/0.1.1 -------------------------------------------------------------------------------- ChangeLog:
--------------------------------------------------------------------------------
================================================================================ tcpflow-1.5.0-2.fc27 (FEDORA-2018-4f0b7d1251) Network traffic recorder -------------------------------------------------------------------------------- Update Information:
Update to latest upstream release tcpflow 1.5.0. -------------------------------------------------------------------------------- ChangeLog:
* Mon Aug 27 2018 Terje Rosten terje.rosten@ntnu.no - 1.5.0-2 - Still issue with check * Mon Aug 27 2018 Terje Rosten terje.rosten@ntnu.no - 1.5.0-1 - 1.5.0 (includes fix for rhbz#1614046 * Mon Jul 16 2018 Terje Rosten terje.rosten@ntnu.no - 1.4.5-9 - Add C++ compiler * Sat Jul 14 2018 Fedora Release Engineering releng@fedoraproject.org - 1.4.5-8 - Rebuilt for https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild * Fri Feb 9 2018 Fedora Release Engineering releng@fedoraproject.org - 1.4.5-7 - Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1614046 - CVE-2018-14938 tcpflow: integer overflow vulnerability in wifipacp.cpp [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1614046 --------------------------------------------------------------------------------
================================================================================ upx-3.95-1.fc27 (FEDORA-2018-a8ddebe734) Ultimate Packer for eXecutables -------------------------------------------------------------------------------- Update Information:
3.95, fixes segfault issues. Also migrated to upstream's lzma fork. -------------------------------------------------------------------------------- ChangeLog:
* Mon Aug 27 2018 Gwyn Ciesla limburgher@gmail - 3.95-1 - 3.95. - Switch to upstream's lzma fork. * Sat Jul 14 2018 Fedora Release Engineering releng@fedoraproject.org - 3.94-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild * Fri Feb 9 2018 Fedora Release Engineering releng@fedoraproject.org - 3.94-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1612455 - upx (fedora 29) files generated are segfaulting https://bugzilla.redhat.com/show_bug.cgi?id=1612455 [ 2 ] Bug #1550187 - Upx needs patch to work with new version of lzma-sdk https://bugzilla.redhat.com/show_bug.cgi?id=1550187 --------------------------------------------------------------------------------
================================================================================ vim-8.1.328-1.fc27 (FEDORA-2018-53d71963af) The VIM editor -------------------------------------------------------------------------------- Update Information:
The newest upstream commit -------------------------------------------------------------------------------- ChangeLog:
* Mon Aug 27 2018 Zdenek Dohnal zdohnal@redhat.com - 2:8.1.328-1 - patchlevel 328 * Wed Aug 15 2018 Zdenek Dohnal zdohnal@redhat.com - 2:8.1.287-2 - vim-update.sh - add f29 branch * Wed Aug 15 2018 Zdenek Dohnal zdohnal@redhat.com - 2:8.1.287-1 - patchlevel 287 --------------------------------------------------------------------------------
================================================================================ yara-3.8.1-1.fc27 (FEDORA-2018-7626df1731) Pattern matching Swiss knife for malware researchers -------------------------------------------------------------------------------- Update Information:
bump to 3.8.1, fix CVE-2018-12034 and CVE-2018-12035 -------------------------------------------------------------------------------- ChangeLog:
* Mon Aug 27 2018 Michal Ambroz <rebus at, seznam.cz> - 3.8.1-1 - bump to 3.8.1 release (#1613093) * Sat Jul 14 2018 Fedora Release Engineering releng@fedoraproject.org - 3.7.1-3 - Rebuilt for https://fedoraproject.org/wiki/Fedora_29_Mass_Rebuild * Fri Feb 9 2018 Fedora Release Engineering releng@fedoraproject.org - 3.7.1-2 - Rebuilt for https://fedoraproject.org/wiki/Fedora_28_Mass_Rebuild -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1591947 - CVE-2018-12034 yara: out of bounds read in yr_execute_code in libyara/exec.c. [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=1591947 [ 2 ] Bug #1591946 - CVE-2018-12035 yara: out of bounds write in yr_execute_code in libyara/exec.c [epel-all] https://bugzilla.redhat.com/show_bug.cgi?id=1591946 [ 3 ] Bug #1591948 - CVE-2018-12034 yara: out of bounds read in yr_execute_code in libyara/exec.c. [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1591948 [ 4 ] Bug #1591945 - CVE-2018-12035 yara: out of bounds write in yr_execute_code in libyara/exec.c [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1591945 [ 5 ] Bug #1613093 - yara-3.8.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1613093 --------------------------------------------------------------------------------