The following Fedora 23 Security updates need testing:
Age URL
129 https://bodhi.fedoraproject.org/updates/FEDORA-2015-12739 python-kdcproxy-0.3.2-1.fc23
111 https://bodhi.fedoraproject.org/updates/FEDORA-2015-5eb2131441 conntrack-tools-1.4.2-9.fc23
82 https://bodhi.fedoraproject.org/updates/FEDORA-2015-16240 nagios-4.0.8-1.fc23
69 https://bodhi.fedoraproject.org/updates/FEDORA-2015-dd52a54fa1 python-pymongo-3.0.3-1.fc23
69 https://bodhi.fedoraproject.org/updates/FEDORA-2015-c76c1c84cf mod_nss-1.0.12-1.fc23
56 https://bodhi.fedoraproject.org/updates/FEDORA-2015-66439aa9e2 openstack-glance-2015.1.2-1.fc23
40 https://bodhi.fedoraproject.org/updates/FEDORA-2015-81ded368fe miniupnpc-1.9-6.fc23
23 https://bodhi.fedoraproject.org/updates/FEDORA-2015-28e56e52e7 seamonkey-2.39-1.fc23
22 https://bodhi.fedoraproject.org/updates/FEDORA-2015-4ad4998d00 libpng-1.6.17-3.fc23
13 https://bodhi.fedoraproject.org/updates/FEDORA-2015-27392b3324 jbig2dec-0.12-2.fc23
12 https://bodhi.fedoraproject.org/updates/FEDORA-2015-28076d0830 thttpd-2.25b-35.fc23
12 https://bodhi.fedoraproject.org/updates/FEDORA-2015-06a7c972e8 thttpd-2.25b-36.fc23
7 https://bodhi.fedoraproject.org/updates/FEDORA-2015-8c475f7169 libpng10-1.0.65-1.fc23
4 https://bodhi.fedoraproject.org/updates/FEDORA-2015-abf9659276 php-PHPMailer-5.2.14-1.fc23
4 https://bodhi.fedoraproject.org/updates/FEDORA-2015-7229638357 xsupplicant-2.2.0-13.fc23
3 https://bodhi.fedoraproject.org/updates/FEDORA-2015-2773b85b49 qemu-2.4.1-2.fc23
3 https://bodhi.fedoraproject.org/updates/FEDORA-2015-c80ec85542 libpng15-1.5.25-1.fc23
1 https://bodhi.fedoraproject.org/updates/FEDORA-2015-b2e8518b8e qemu-2.4.1-3.fc23
0 https://bodhi.fedoraproject.org/updates/FEDORA-2015-ac9a19888e kernel-4.2.7-300.fc23
0 https://bodhi.fedoraproject.org/updates/FEDORA-2015-6d473c95ee arts-1.5.10-30.fc23
0 https://bodhi.fedoraproject.org/updates/FEDORA-2015-6e50918d8e kdelibs3-3.5.10-71.fc23
0 https://bodhi.fedoraproject.org/updates/FEDORA-2015-12a089920e xen-4.5.2-5.fc23
0 https://bodhi.fedoraproject.org/updates/FEDORA-2015-1c773e8702 shellinabox-2.19-1.fc23
The following Fedora 23 Critical Path updates have yet to be approved:
Age URL
22 https://bodhi.fedoraproject.org/updates/FEDORA-2015-4ad4998d00 libpng-1.6.17-3.fc23
17 https://bodhi.fedoraproject.org/updates/FEDORA-2015-2ae867c402 NetworkManager-vpnc-1.0.8-1.fc23 NetworkManager-openconnect-1.0.8-1.fc23 NetworkManager-openvpn-1.0.8-1.fc23 NetworkManager-openswan-1.0.8-1.fc23 NetworkManager-fortisslvpn-1.0.8-1.fc23 NetworkManager-1.0.8-1.fc23
4 https://bodhi.fedoraproject.org/updates/FEDORA-2015-fece7bd0f9 perl-libwww-perl-6.15-1.fc23
3 https://bodhi.fedoraproject.org/updates/FEDORA-2015-4a9c774398 bzip2-1.0.6-18.fc23
1 https://bodhi.fedoraproject.org/updates/FEDORA-2015-a4cd75d6ca kdelibs-4.14.14-4.fc23
1 https://bodhi.fedoraproject.org/updates/FEDORA-2015-4bb606c54b qt-4.8.7-5.fc23
0 https://bodhi.fedoraproject.org/updates/FEDORA-2015-5edf8033b3 lua-5.3.2-2.fc23
0 https://bodhi.fedoraproject.org/updates/FEDORA-2015-8932b92a20 gtk2-2.24.29-1.fc23
0 https://bodhi.fedoraproject.org/updates/FEDORA-2015-584b2829d6 krb5-1.14-3.fc23
0 https://bodhi.fedoraproject.org/updates/FEDORA-2015-ac9a19888e kernel-4.2.7-300.fc23
0 https://bodhi.fedoraproject.org/updates/FEDORA-2015-adfda22f51 sqlite-3.9.0-2.fc23
0 https://bodhi.fedoraproject.org/updates/FEDORA-2015-031a00860d xorg-x11-drv-nouveau-1.0.12-1.fc23
The following builds have been pushed to Fedora 23 updates-testing
GeoIP-GeoLite-data-2015.12-1.fc23
bacula-7.2.0-2.fc23
calligra-2.9.10-1.fc23
calligra-l10n-2.9.10-1.fc23
comix-4.0.4-9.fc23
eclipse-xtext-2.9.0-1.fc23
emacs-php-mode-1.17.0-3.fc23
figlet-2.2.5-9.fc23
gtk2-2.24.29-1.fc23
hystrix-1.4.21-4.fc23
ibus-libzhuyin-1.7.6-1.fc23
indistarter-0.2.0-4.20151211svn.fc23
iwyu-0.5-1.fc23
k3d-0.8.0.5-1.fc23
libchardet-1.0.4-3.fc23
libgit2-glib-0.23.8-1.fc23
libreoffice-5.0.3.2-12.fc23
lua-5.3.2-2.fc23
luarocks-2.2.3-0.2.rc2.fc23
msgpack-1.3.0-1.fc23
ola-0.9.8-7.fc23
perl-App-grindperl-0.004-1.fc23
perl-Carton-1.0.22-1.fc23
perl-Compress-Bzip2-2.24-1.fc23
perl-ExtUtils-MakeMaker-CPANfile-0.07-1.fc23
perl-HTTP-Tinyish-0.06-2.fc23
perl-Tie-Handle-Offset-0.003-1.fc23
php-Slim-2.6.2-3.fc23
php-pear-Console-CommandLine-1.2.1-1.fc23
php-pear-PHP-CodeSniffer-2.5.0-1.fc23
python-assimulo-2.8-7.fc23
python-flask-restful-0.3.5-1.fc23
rubygem-nokogiri-1.6.7-0.3.rc3.fc23
scap-security-guide-0.1.27-1.fc23
shellinabox-2.19-1.fc23
tor-0.2.7.6-3.fc23
vertica-python-0.5.5-1.fc23
wildmagic5-5.13-13.fc23
zanata-python-client-1.4.0-1.fc23
Details about builds:
================================================================================
GeoIP-GeoLite-data-2015.12-1.fc23 (FEDORA-2015-a4ad1b7446)
Free GeoLite IP geolocation country database
--------------------------------------------------------------------------------
Update Information:
Periodic database update.
--------------------------------------------------------------------------------
================================================================================
bacula-7.2.0-2.fc23 (FEDORA-2015-a455e496d4)
Cross platform network backup for Linux, Unix, Mac and Windows
--------------------------------------------------------------------------------
Update Information:
Assorted upstream bugfixes from the upstream 7.2 branch.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1168872 - None
https://bugzilla.redhat.com/show_bug.cgi?id=1168872
--------------------------------------------------------------------------------
================================================================================
calligra-2.9.10-1.fc23 (FEDORA-2015-91cd57fd1e)
An integrated office suite
--------------------------------------------------------------------------------
Update Information:
New stable upstream release, see also
https://www.calligra.org/news/calligra-2-9-10-released/
--------------------------------------------------------------------------------
================================================================================
calligra-l10n-2.9.10-1.fc23 (FEDORA-2015-91cd57fd1e)
Language files for calligra
--------------------------------------------------------------------------------
Update Information:
New stable upstream release, see also
https://www.calligra.org/news/calligra-2-9-10-released/
--------------------------------------------------------------------------------
================================================================================
comix-4.0.4-9.fc23 (FEDORA-2015-f0fd9c8ee5)
A user-friendly, customizable image viewer
--------------------------------------------------------------------------------
Update Information:
F-23 PIL removed some API and current comix emits some warnings for that. This
new rpm fixes this issue.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1290632 - xception: tostring() has been removed. Please call tobytes() instead.
https://bugzilla.redhat.com/show_bug.cgi?id=1290632
--------------------------------------------------------------------------------
================================================================================
eclipse-xtext-2.9.0-1.fc23 (FEDORA-2015-a4b56c1d77)
Xtext is a framework for development of programming languages
--------------------------------------------------------------------------------
Update Information:
upgrade to 2.9.0
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1287385 - eclipse-xtext-v2.9.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1287385
--------------------------------------------------------------------------------
================================================================================
emacs-php-mode-1.17.0-3.fc23 (FEDORA-2015-6f5065fb9c)
Major GNU Emacs mode for editing PHP code
--------------------------------------------------------------------------------
Update Information:
emacs-php-mode - Major GNU Emacs mode for editing PHP code
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1289860 - Review Request: emacs-php-mode - Major GNU Emacs mode for editing PHP code
https://bugzilla.redhat.com/show_bug.cgi?id=1289860
--------------------------------------------------------------------------------
================================================================================
figlet-2.2.5-9.fc23 (FEDORA-2015-c9f4782b2a)
A program for making large letters out of ordinary text
--------------------------------------------------------------------------------
Update Information:
Fix memory corruption.
--------------------------------------------------------------------------------
================================================================================
gtk2-2.24.29-1.fc23 (FEDORA-2015-8932b92a20)
The GIMP ToolKit (GTK+), a library for creating GUIs for X
--------------------------------------------------------------------------------
Update Information:
gtk+ 2.24.29 release. Bug fixes: - 345345 PrintOperation::paginate is not
emitted for class handler - 745127 Changing order of file in "Places" crashes
the application - 749507 gtk-2.0.m4 fails to detect a prefixed pkg-config -
752638 notebook tab dragging doesn't work on Quartz (patches... - 753644
Switching from Multipress input method to None immedi... - 753691 make install
-j2 fails when building for MinGW - 753992 im-quartz discard_preedit
segmentation fault - 754046 annotate gtk_color_button_get_color Translation
updates: - Occitan
--------------------------------------------------------------------------------
================================================================================
hystrix-1.4.21-4.fc23 (FEDORA-2015-35994552ed)
Library for Latency and Fault Tolerance in Distributed Systems
--------------------------------------------------------------------------------
Update Information:
Add hystrix to f23
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1289478 - Review Request: hystrix - Library for Latency and Fault Tolerance in Distributed Systems
https://bugzilla.redhat.com/show_bug.cgi?id=1289478
--------------------------------------------------------------------------------
================================================================================
ibus-libzhuyin-1.7.6-1.fc23 (FEDORA-2015-7dbb9cd657)
New Zhuyin engine based on libzhuyin for IBus
--------------------------------------------------------------------------------
Update Information:
new upstream release.
--------------------------------------------------------------------------------
================================================================================
indistarter-0.2.0-4.20151211svn.fc23 (FEDORA-2015-1b6b52d7e8)
GUI to start, stop and control an INDI server
--------------------------------------------------------------------------------
Update Information:
Initial release for Fedora
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1236488 - Review Request: indistarter - GUI for Indi Server
https://bugzilla.redhat.com/show_bug.cgi?id=1236488
--------------------------------------------------------------------------------
================================================================================
iwyu-0.5-1.fc23 (FEDORA-2015-b6e24a67fd)
C/C++ source files #include analyzer based on clang
--------------------------------------------------------------------------------
Update Information:
Update to [0.5 (clang 3.7)](https://github.com/include-what-you-use/include-
what-you-use/compare/clang_3.6...clang_3.7).
--------------------------------------------------------------------------------
================================================================================
k3d-0.8.0.5-1.fc23 (FEDORA-2015-6a5c98ecd9)
A 3D Modeling, Animation and Rendering System
--------------------------------------------------------------------------------
Update Information:
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1088763 - Missing yafray for k3d/update k3d to 0.8.0.3
https://bugzilla.redhat.com/show_bug.cgi?id=1088763
--------------------------------------------------------------------------------
================================================================================
libchardet-1.0.4-3.fc23 (FEDORA-2015-caa387608a)
Mozilla's universal character set detector
--------------------------------------------------------------------------------
Update Information:
%changelog * Fri Dec 11 2015 Martin Gansser <martinkg(a)fedoraproject.org> -
1.0.4-3 - renamed %%version macro for patches - added BR glibc-common - added BR
coreutils - added BR make - added BR findutils - added BR gcc - added BR gcc-c++
- added BR sed - added BR perl - moved Korean manual pages to devel sub-package
--------------------------------------------------------------------------------
================================================================================
libgit2-glib-0.23.8-1.fc23 (FEDORA-2015-6d15841168)
Git library for GLib
--------------------------------------------------------------------------------
Update Information:
libgit2-glib 0.23.8 release with misc. bug fixes.
--------------------------------------------------------------------------------
================================================================================
libreoffice-5.0.3.2-12.fc23 (FEDORA-2015-73116e9d95)
Free Software Productivity Suite
--------------------------------------------------------------------------------
Update Information:
+ fix wheel scrolling under wayland + backport tweaks for size allocation under
wayland
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1278885 - black/absent widgetry only with libreoffice-gtk3 installed
https://bugzilla.redhat.com/show_bug.cgi?id=1278885
[ 2 ] Bug #1289398 - [gtk3] [wayland] unable to scroll
https://bugzilla.redhat.com/show_bug.cgi?id=1289398
--------------------------------------------------------------------------------
================================================================================
lua-5.3.2-2.fc23 (FEDORA-2015-5edf8033b3)
Powerful light-weight programming language
--------------------------------------------------------------------------------
Update Information:
Update lua to 5.3.2. Fix multi-lib support.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1173984 - Version's OLD
https://bugzilla.redhat.com/show_bug.cgi?id=1173984
[ 2 ] Bug #1229992 - lua-devel package is not mutilib compatible
https://bugzilla.redhat.com/show_bug.cgi?id=1229992
[ 3 ] Bug #1039249 - lua-5.3.2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1039249
--------------------------------------------------------------------------------
================================================================================
luarocks-2.2.3-0.2.rc2.fc23 (FEDORA-2015-8bf175462a)
A deployment and management system for Lua modules
--------------------------------------------------------------------------------
Update Information:
Fix luarocks to be an arch-specific package and to properly install components
into the lua system path (when installing as root).
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1073462 - luarocks package doesn't support multilib
https://bugzilla.redhat.com/show_bug.cgi?id=1073462
--------------------------------------------------------------------------------
================================================================================
msgpack-1.3.0-1.fc23 (FEDORA-2015-0c3aa02031)
Binary-based efficient object serialization library
--------------------------------------------------------------------------------
Update Information:
new upstream release
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1290571 - msgpack 1.3.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1290571
--------------------------------------------------------------------------------
================================================================================
ola-0.9.8-7.fc23 (FEDORA-2015-345b8c49d1)
Open Lighting Architecture
--------------------------------------------------------------------------------
Update Information:
This is a new package. The Open Lighting Architecture is a framework for
lighting control information. It supports a range of protocols and over a dozen
USB devices. It can run as a standalone service, which is useful for converting
signals between protocols, or alternatively using the OLA API, it can be used as
the back-end for lighting control software. OLA runs on many different platforms
including ARM, which makes it a perfect fit for low cost Ethernet to DMX
gateways.
--------------------------------------------------------------------------------
================================================================================
perl-App-grindperl-0.004-1.fc23 (FEDORA-2015-aec44e5e02)
Command-line tool to help build and test blead perl
--------------------------------------------------------------------------------
Update Information:
This release adds "-A" option for specifying additinonal Configure options.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1290609 - perl-App-grindperl-0.004 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1290609
--------------------------------------------------------------------------------
================================================================================
perl-Carton-1.0.22-1.fc23 (FEDORA-2015-2568a025b0)
Perl module dependency manager (aka Bundler for Perl)
--------------------------------------------------------------------------------
Update Information:
carton is a command line tool to track the Perl module dependencies for your
Perl application. Dependencies are declared using cpanfile format, and the
managed dependencies are tracked in a cpanfile.snapshot file, which is meant to
be version controlled, and the snapshot file allows other developers of your
application to have the exact same versions of the modules.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1290544 - Review Request: perl-Carton - Perl module dependency manager (aka Bundler for Perl)
https://bugzilla.redhat.com/show_bug.cgi?id=1290544
--------------------------------------------------------------------------------
================================================================================
perl-Compress-Bzip2-2.24-1.fc23 (FEDORA-2015-27b106fada)
Interface to Bzip2 compression library
--------------------------------------------------------------------------------
Update Information:
This release improves build script and fixes some compiler warnings.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1289785 - perl-Compress-Bzip2-2.24 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1289785
--------------------------------------------------------------------------------
================================================================================
perl-ExtUtils-MakeMaker-CPANfile-0.07-1.fc23 (FEDORA-2015-68de4af920)
CPANfile support for ExtUtils::MakeMaker
--------------------------------------------------------------------------------
Update Information:
This release adds support for recommends, suggests, and conflicts directives.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1290614 - perl-ExtUtils-MakeMaker-CPANfile-0.07 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1290614
--------------------------------------------------------------------------------
================================================================================
perl-HTTP-Tinyish-0.06-2.fc23 (FEDORA-2015-58cb37300f)
HTTP::Tiny compatible HTTP client wrappers
--------------------------------------------------------------------------------
Update Information:
HTTP::Tinyish is a wrapper module for HTTP client modules LWP, HTTP::Tiny and
HTTP client software curl and wget.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1290537 - Review Request: perl-HTTP-Tinyish - HTTP::Tiny compatible HTTP client wrappers
https://bugzilla.redhat.com/show_bug.cgi?id=1290537
--------------------------------------------------------------------------------
================================================================================
perl-Tie-Handle-Offset-0.003-1.fc23 (FEDORA-2015-cfafdd23e0)
Tied handle that hides the beginning of a file
--------------------------------------------------------------------------------
Update Information:
This modules provides a file handle that hides the beginning of a file. After
opening, the file is positioned at the offset location. seek() and tell() calls
are modified to preserve the offset.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1290495 - Review Request: perl-Tie-Handle-Offset - Tied handle that hides the beginning of a file
https://bugzilla.redhat.com/show_bug.cgi?id=1290495
--------------------------------------------------------------------------------
================================================================================
php-Slim-2.6.2-3.fc23 (FEDORA-2015-ca810195ec)
PHP micro framework
--------------------------------------------------------------------------------
Update Information:
* fix autoloader name ---- php-Slim-2.6.2-1.fc22 - Last upstream release
php-Slim-2.6.2-1.fc23 - Last upstream release ---- php-Slim-2.6.2-2.fc22
- provide php-composer(slim/slim) - don't ignore test suite result - add a
simpler autoloader php-Slim-2.6.2-2.fc23 - provide php-composer(slim/slim) -
don't ignore test suite result - add a simpler autoloader
--------------------------------------------------------------------------------
================================================================================
php-pear-Console-CommandLine-1.2.1-1.fc23 (FEDORA-2015-3185900577)
A full featured command line options and arguments parser
--------------------------------------------------------------------------------
Update Information:
**Upstream changelog:** * Fixed bug #18397: List action example is wrong
[cweiske] * Fixed bug #18682: columnWrap() in refault renderer eats up lines
with only a EOL [izi, thanks Helgi] * Fixed bug #18703: No way to override
reading of stdin with - [izi, thanks Gwynne Raskind] * Fixed bug #19683: Unit
tests are broken [farell] * Fixed bug #19921: package dependencies don't include
dom [cweiske] * Fixed unit tests [izi] * Fixed comparison on PHP 7 [Jan Olsen] *
Allow multiple instances of the parser by making static variables private [Greg
Oriol] * Add composer support
--------------------------------------------------------------------------------
================================================================================
php-pear-PHP-CodeSniffer-2.5.0-1.fc23 (FEDORA-2015-795078b33a)
PHP coding standards enforcement tool
--------------------------------------------------------------------------------
Update Information:
**Upstream changelog:** - PHPCS will now look for a phpcs.xml file in parent
directories as well as the current directory (request #626) - PHPCS will now use
a phpcs.xml file even if files are specified on the command line. This file is
still only used if no standard is specified on the command line - Added support
for a phpcs.xml.dist file (request #583). If both a phpcs.xml and phpcs.xml.dist
file are present, the phpcs.xml file will be used - Added support for setting
PHP ini values in ruleset.xml files (request #560). Setting the value of the new
ini tags to name="memory_limit" value="32M" is the same as -d memory_limit=32M -
Added support for one or more bootstrap files to be run before processing
begins. Use the --bootstrap=file,file,file command line argument to include
bootstrap files. Useful if you want to override some of the high-level settings
of PHPCS or PHPCBF. Thanks to John Maguire for the patch - Added additional
verbose output for CSS tokenizing - Squiz ComparisonOperatorUsageSniff now
checks FOR, WHILE and DO-WHILE statements. Thanks to Arnout Boks for the patch -
Fixed bug #660 : Syntax checks can fail on Windows with PHP5.6 - Fixed bug #784
: $this->trait is seen as a T_TRAIT token - Fixed bug #786 : Switch indent issue
with short array notation - Fixed bug #787 : SpacingAfterDefaultBreak confused
by multi-line statements - Fixed bug #797 : Parsing CSS url() value breaks
further parsing - Fixed bug #805 :
Squiz.Commenting.FunctionComment.InvalidTypeHint on Scalar types on PHP7 - Fixed
bug #807 : Cannot fix line endings when open PHP tag is not on the first line -
Fixed bug #808 : JS tokeniser incorrectly setting some function and class names
to control structure tokens - Fixed bug #809 : PHPCBF can break a require_once
statement with a space before the open parenthesis - Fixed bug #813 : PEAR
FunctionCallSignature checks wrong indent when first token on line is part of a
multi-line string
--------------------------------------------------------------------------------
================================================================================
python-assimulo-2.8-7.fc23 (FEDORA-2015-5af8739110)
Ordinary differential and differential algebraic equations solver
--------------------------------------------------------------------------------
Update Information:
- New Python package
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1215354 - Review Request: python-assimulo - Ordinary differential and differential algebraic equations solver
https://bugzilla.redhat.com/show_bug.cgi?id=1215354
--------------------------------------------------------------------------------
================================================================================
python-flask-restful-0.3.5-1.fc23 (FEDORA-2015-983dd0be9f)
Simple framework for creating REST APIs for Flask
--------------------------------------------------------------------------------
Update Information:
update to newest version
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1290616 - python-flask-restful-0.3.5 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1290616
--------------------------------------------------------------------------------
================================================================================
rubygem-nokogiri-1.6.7-0.3.rc3.fc23 (FEDORA-2015-f0db66d199)
An HTML, XML, SAX, and Reader parser
--------------------------------------------------------------------------------
Update Information:
libxml2 version unmatching warning is not needed and it is killed with this rpm.
--------------------------------------------------------------------------------
================================================================================
scap-security-guide-0.1.27-1.fc23 (FEDORA-2015-617a36b611)
Security guidance and baselines in SCAP formats
--------------------------------------------------------------------------------
Update Information:
update to the latest upstream release
--------------------------------------------------------------------------------
================================================================================
shellinabox-2.19-1.fc23 (FEDORA-2015-1c773e8702)
Web based AJAX terminal emulator
--------------------------------------------------------------------------------
Update Information:
* Added support for middle-click paste * Improved iOS support * New logic to
enable soft keyboard icon * Disable HTTPS fallback using the URL /plain.
Consequently disables automatic upgrades from HTTP to HTTPS (CVE-2015-8400)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1287579 - CVE-2015-8400 shellinabox: DNS rebinding attack due to HTTP fallback [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1287579
[ 2 ] Bug #1287578 - CVE-2015-8400 shellinabox: DNS rebinding attack due to HTTP fallback [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1287578
--------------------------------------------------------------------------------
================================================================================
tor-0.2.7.6-3.fc23 (FEDORA-2015-c13ba0f430)
Anonymizing overlay network for TCP
--------------------------------------------------------------------------------
Update Information:
update to 0.2.7.6 ---- improve systemd scriptlets and service file ----
update to 0.2.7.5
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1288644 - tor multi-instance service fails to reload ('systemctl reload tor@foo')
https://bugzilla.redhat.com/show_bug.cgi?id=1288644
[ 2 ] Bug #1282022 - tor fails to start at boot if ORPort/DirPort is specified with IP address
https://bugzilla.redhat.com/show_bug.cgi?id=1282022
[ 3 ] Bug #1286359 - tor multi-instance services do not restart/reload when they should
https://bugzilla.redhat.com/show_bug.cgi?id=1286359
--------------------------------------------------------------------------------
================================================================================
vertica-python-0.5.5-1.fc23 (FEDORA-2015-0cc8357de8)
A native Python adapter for the Vertica database
--------------------------------------------------------------------------------
Update Information:
update to version 0.5.5 ---- update to version 0.5.4
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1285768 - vertica-python-0.5.4 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1285768
[ 2 ] Bug #1287914 - vertica-python-0.5.5 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1287914
--------------------------------------------------------------------------------
================================================================================
wildmagic5-5.13-13.fc23 (FEDORA-2015-1a45344354)
Wild Magic libraries
--------------------------------------------------------------------------------
Update Information:
- Fix compilation flags of 'libWm5Applications.so' library
--------------------------------------------------------------------------------
================================================================================
zanata-python-client-1.4.0-1.fc23 (FEDORA-2015-a5290df188)
Python Client for Zanata Server
--------------------------------------------------------------------------------
Update Information:
Upstream update to 1.4.0
--------------------------------------------------------------------------------
The following Fedora 22 Security updates need testing:
Age URL
246 https://bodhi.fedoraproject.org/updates/FEDORA-2015-5878 echoping-6.1-0.beta.r434svn.1.fc22
195 https://bodhi.fedoraproject.org/updates/FEDORA-2015-9185 ceph-deploy-1.5.25-1.fc22
128 https://bodhi.fedoraproject.org/updates/FEDORA-2015-12781 python-kdcproxy-0.3.2-1.fc22
113 https://bodhi.fedoraproject.org/updates/FEDORA-2015-13823 python-django-1.8.4-1.fc22
112 https://bodhi.fedoraproject.org/updates/FEDORA-2015-1aee5e6f0b conntrack-tools-1.4.2-9.fc22
82 https://bodhi.fedoraproject.org/updates/FEDORA-2015-16239 nagios-4.0.8-1.fc22
76 https://bodhi.fedoraproject.org/updates/FEDORA-2015-05490fc42d squid-3.4.13-3.fc22
76 https://bodhi.fedoraproject.org/updates/FEDORA-2015-be2c11d456 subversion-1.8.14-1.fc22
71 https://bodhi.fedoraproject.org/updates/FEDORA-2015-2d37e7dacf openstack-swift-2.2.0-6.fc22
69 https://bodhi.fedoraproject.org/updates/FEDORA-2015-3e4043f088 python-pymongo-3.0.3-1.fc22
46 https://bodhi.fedoraproject.org/updates/FEDORA-2015-de44abca87 ntp-4.2.6p5-34.fc22
40 https://bodhi.fedoraproject.org/updates/FEDORA-2015-0552500cd7 python-pygments-2.0.2-3.fc22
40 https://bodhi.fedoraproject.org/updates/FEDORA-2015-9039c25f1d miniupnpc-1.9-6.fc22
23 https://bodhi.fedoraproject.org/updates/FEDORA-2015-c7b1be8823 seamonkey-2.39-1.fc22
22 https://bodhi.fedoraproject.org/updates/FEDORA-2015-7dfbe09bb4 libpng-1.6.16-4.fc22
22 https://bodhi.fedoraproject.org/updates/FEDORA-2015-6c07ab1fa6 libpng-1.6.16-5.fc22
16 https://bodhi.fedoraproject.org/updates/FEDORA-2015-8413bdd343 abrt-2.6.1-7.fc22
14 https://bodhi.fedoraproject.org/updates/FEDORA-2015-89468612f5 jenkins-1.609.3-4.fc22
13 https://bodhi.fedoraproject.org/updates/FEDORA-2015-fff2073f50 wget-1.16.3-2.fc22
12 https://bodhi.fedoraproject.org/updates/FEDORA-2015-f683150aa0 thttpd-2.25b-36.fc22
9 https://bodhi.fedoraproject.org/updates/FEDORA-2015-6565f29415 pax-utils-1.1.4-1.fc22
8 https://bodhi.fedoraproject.org/updates/FEDORA-2015-6d64c257cf thunderbird-38.4.0-1.fc22
7 https://bodhi.fedoraproject.org/updates/FEDORA-2015-3461e976cb libpng10-1.0.65-1.fc22
5 https://bodhi.fedoraproject.org/updates/FEDORA-2015-d87d60b9a9 openssl-1.0.1k-13.fc22
4 https://bodhi.fedoraproject.org/updates/FEDORA-2015-d5cc306730 p7zip-15.09-4.fc22
4 https://bodhi.fedoraproject.org/updates/FEDORA-2015-3a5cebb105 ImageMagick-6.9.2.7-1.fc22
4 https://bodhi.fedoraproject.org/updates/FEDORA-2015-39522bb8c9 php-PHPMailer-5.2.14-1.fc22
4 https://bodhi.fedoraproject.org/updates/FEDORA-2015-020f4b9400 xsupplicant-2.2.0-13.fc22
3 https://bodhi.fedoraproject.org/updates/FEDORA-2015-686f289aa5 qemu-2.3.1-8.fc22
3 https://bodhi.fedoraproject.org/updates/FEDORA-2015-233750b6ab libpng15-1.5.25-1.fc22
2 https://bodhi.fedoraproject.org/updates/FEDORA-2015-b406a8e4f2 qemu-2.3.1-9.fc22
0 https://bodhi.fedoraproject.org/updates/FEDORA-2015-c4ed00a68f kernel-4.2.7-200.fc22
0 https://bodhi.fedoraproject.org/updates/FEDORA-2015-8dd01b09a9 arts-1.5.10-30.fc22
0 https://bodhi.fedoraproject.org/updates/FEDORA-2015-2f4b92ed2e kdelibs3-3.5.10-71.fc22
0 https://bodhi.fedoraproject.org/updates/FEDORA-2015-08e4af5a20 xen-4.5.2-5.fc22
0 https://bodhi.fedoraproject.org/updates/FEDORA-2015-90c27b6e91 grub2-2.02-0.18.fc22
0 https://bodhi.fedoraproject.org/updates/FEDORA-2015-463143720f shellinabox-2.19-1.fc22
The following Fedora 22 Critical Path updates have yet to be approved:
Age URL
121 https://bodhi.fedoraproject.org/updates/FEDORA-2015-13210 yum-3.4.3-508.fc22
107 https://bodhi.fedoraproject.org/updates/FEDORA-2015-14218 xulrunner-40.0-1.fc22
40 https://bodhi.fedoraproject.org/updates/FEDORA-2015-2123de044f libgphoto2-2.5.8-1.fc22
36 https://bodhi.fedoraproject.org/updates/FEDORA-2015-48f718ed1b vim-7.4.909-1.fc22
33 https://bodhi.fedoraproject.org/updates/FEDORA-2015-069fea7e6b livecd-tools-22.3-1.fc22
22 https://bodhi.fedoraproject.org/updates/FEDORA-2015-6c07ab1fa6 libpng-1.6.16-5.fc22
22 https://bodhi.fedoraproject.org/updates/FEDORA-2015-7dfbe09bb4 libpng-1.6.16-4.fc22
22 https://bodhi.fedoraproject.org/updates/FEDORA-2015-82b7665427 koji-1.10.1-1.fc22
18 https://bodhi.fedoraproject.org/updates/FEDORA-2015-1d21e7f650 unzip-6.0-23.fc22
16 https://bodhi.fedoraproject.org/updates/FEDORA-2015-efc06edc85 NetworkManager-vpnc-1.0.8-1.fc22 NetworkManager-openconnect-1.0.8-1.fc22 NetworkManager-openvpn-1.0.8-1.fc22 NetworkManager-openswan-1.0.8-1.fc22 NetworkManager-fortisslvpn-1.0.8-1.fc22 NetworkManager-1.0.8-1.fc22
8 https://bodhi.fedoraproject.org/updates/FEDORA-2015-f194dc9900 librsvg2-2.40.12-1.fc22
8 https://bodhi.fedoraproject.org/updates/FEDORA-2015-6d64c257cf thunderbird-38.4.0-1.fc22
5 https://bodhi.fedoraproject.org/updates/FEDORA-2015-4daef06c07 nautilus-3.16.3-1.fc22
5 https://bodhi.fedoraproject.org/updates/FEDORA-2015-d87d60b9a9 openssl-1.0.1k-13.fc22
4 https://bodhi.fedoraproject.org/updates/FEDORA-2015-f03bcc3731 perl-libwww-perl-6.15-1.fc22
3 https://bodhi.fedoraproject.org/updates/FEDORA-2015-1b2b67ac30 gnome-online-accounts-3.16.5-1.fc22
2 https://bodhi.fedoraproject.org/updates/FEDORA-2015-3c934e07c3 kdelibs-4.14.14-4.fc22
2 https://bodhi.fedoraproject.org/updates/FEDORA-2015-8083abc683 selinux-policy-3.13.1-128.22.fc22
0 https://bodhi.fedoraproject.org/updates/FEDORA-2015-d68f8a1cba lua-5.3.2-2.fc22
0 https://bodhi.fedoraproject.org/updates/FEDORA-2015-c2041fe5a6 gtk2-2.24.29-1.fc22
0 https://bodhi.fedoraproject.org/updates/FEDORA-2015-8be6e502c3 gcc-5.3.1-2.fc22 gcc-python-plugin-0.14-4.2.fc22 libtool-2.4.2-35.fc22
0 https://bodhi.fedoraproject.org/updates/FEDORA-2015-c4ed00a68f kernel-4.2.7-200.fc22
0 https://bodhi.fedoraproject.org/updates/FEDORA-2015-1c93bbd1a7 sqlite-3.9.0-2.fc22
0 https://bodhi.fedoraproject.org/updates/FEDORA-2015-473007accf util-linux-2.26.2-4.fc22
The following builds have been pushed to Fedora 22 updates-testing
GeoIP-GeoLite-data-2015.12-1.fc22
calligra-2.9.10-1.fc22
calligra-l10n-2.9.10-1.fc22
emacs-php-mode-1.17.0-3.fc22
figlet-2.2.5-9.fc22
gtk2-2.24.29-1.fc22
ibus-libzhuyin-1.7.6-1.fc22
k3d-0.8.0.5-1.fc22
lua-5.3.2-2.fc22
luarocks-2.2.3-0.2.rc2.fc22
ola-0.9.8-7.fc22
perl-App-grindperl-0.004-1.fc22
perl-Compress-Bzip2-2.24-1.fc22
perl-ExtUtils-MakeMaker-CPANfile-0.07-1.fc22
php-Slim-2.6.2-3.fc22
php-pear-Console-CommandLine-1.2.1-1.fc22
php-pear-PHP-CodeSniffer-2.5.0-1.fc22
python-assimulo-2.8-7.fc22
python-flask-restful-0.3.5-1.fc22
rubygem-nokogiri-1.6.6.4-1.fc22
shellinabox-2.19-1.fc22
tor-0.2.7.6-3.fc22
vertica-python-0.5.5-1.fc22
wildmagic5-5.13-13.fc22
zanata-python-client-1.4.0-1.fc22
Details about builds:
================================================================================
GeoIP-GeoLite-data-2015.12-1.fc22 (FEDORA-2015-f7d2b8c448)
Free GeoLite IP geolocation country database
--------------------------------------------------------------------------------
Update Information:
Periodic database update.
--------------------------------------------------------------------------------
================================================================================
calligra-2.9.10-1.fc22 (FEDORA-2015-881786d0d2)
An integrated office suite
--------------------------------------------------------------------------------
Update Information:
New stable upstream release, see also
https://www.calligra.org/news/calligra-2-9-10-released/
--------------------------------------------------------------------------------
================================================================================
calligra-l10n-2.9.10-1.fc22 (FEDORA-2015-881786d0d2)
Language files for calligra
--------------------------------------------------------------------------------
Update Information:
New stable upstream release, see also
https://www.calligra.org/news/calligra-2-9-10-released/
--------------------------------------------------------------------------------
================================================================================
emacs-php-mode-1.17.0-3.fc22 (FEDORA-2015-249309599b)
Major GNU Emacs mode for editing PHP code
--------------------------------------------------------------------------------
Update Information:
emacs-php-mode - Major GNU Emacs mode for editing PHP code
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1289860 - Review Request: emacs-php-mode - Major GNU Emacs mode for editing PHP code
https://bugzilla.redhat.com/show_bug.cgi?id=1289860
--------------------------------------------------------------------------------
================================================================================
figlet-2.2.5-9.fc22 (FEDORA-2015-2fd4c2bca6)
A program for making large letters out of ordinary text
--------------------------------------------------------------------------------
Update Information:
Fix memory corruption.
--------------------------------------------------------------------------------
================================================================================
gtk2-2.24.29-1.fc22 (FEDORA-2015-c2041fe5a6)
The GIMP ToolKit (GTK+), a library for creating GUIs for X
--------------------------------------------------------------------------------
Update Information:
gtk+ 2.24.29 release. Bug fixes: - 345345 PrintOperation::paginate is not
emitted for class handler - 745127 Changing order of file in "Places" crashes
the application - 749507 gtk-2.0.m4 fails to detect a prefixed pkg-config -
752638 notebook tab dragging doesn't work on Quartz (patches... - 753644
Switching from Multipress input method to None immedi... - 753691 make install
-j2 fails when building for MinGW - 753992 im-quartz discard_preedit
segmentation fault - 754046 annotate gtk_color_button_get_color Translation
updates: - Occitan
--------------------------------------------------------------------------------
================================================================================
ibus-libzhuyin-1.7.6-1.fc22 (FEDORA-2015-f2726a71f7)
New Zhuyin engine based on libzhuyin for IBus
--------------------------------------------------------------------------------
Update Information:
new upstream release. ---- Fixes crash
--------------------------------------------------------------------------------
================================================================================
k3d-0.8.0.5-1.fc22 (FEDORA-2015-afac462fa7)
A 3D Modeling, Animation and Rendering System
--------------------------------------------------------------------------------
Update Information:
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1088763 - Missing yafray for k3d/update k3d to 0.8.0.3
https://bugzilla.redhat.com/show_bug.cgi?id=1088763
--------------------------------------------------------------------------------
================================================================================
lua-5.3.2-2.fc22 (FEDORA-2015-d68f8a1cba)
Powerful light-weight programming language
--------------------------------------------------------------------------------
Update Information:
Update lua to 5.3.2. Fix multi-lib support.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1173984 - Version's OLD
https://bugzilla.redhat.com/show_bug.cgi?id=1173984
[ 2 ] Bug #1229992 - lua-devel package is not mutilib compatible
https://bugzilla.redhat.com/show_bug.cgi?id=1229992
[ 3 ] Bug #1039249 - lua-5.3.2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1039249
--------------------------------------------------------------------------------
================================================================================
luarocks-2.2.3-0.2.rc2.fc22 (FEDORA-2015-1b10c6bdc6)
A deployment and management system for Lua modules
--------------------------------------------------------------------------------
Update Information:
Fix luarocks to be an arch-specific package and to properly install components
into the lua system path (when installing as root).
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1073462 - luarocks package doesn't support multilib
https://bugzilla.redhat.com/show_bug.cgi?id=1073462
--------------------------------------------------------------------------------
================================================================================
ola-0.9.8-7.fc22 (FEDORA-2015-dc1a9bc6d3)
Open Lighting Architecture
--------------------------------------------------------------------------------
Update Information:
This is a new package. The Open Lighting Architecture is a framework for
lighting control information. It supports a range of protocols and over a dozen
USB devices. It can run as a standalone service, which is useful for converting
signals between protocols, or alternatively using the OLA API, it can be used as
the back-end for lighting control software. OLA runs on many different platforms
including ARM, which makes it a perfect fit for low cost Ethernet to DMX
gateways.
--------------------------------------------------------------------------------
================================================================================
perl-App-grindperl-0.004-1.fc22 (FEDORA-2015-02678a16bd)
Command-line tool to help build and test blead perl
--------------------------------------------------------------------------------
Update Information:
This release adds "-A" option for specifying additinonal Configure options.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1290609 - perl-App-grindperl-0.004 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1290609
--------------------------------------------------------------------------------
================================================================================
perl-Compress-Bzip2-2.24-1.fc22 (FEDORA-2015-26121b9061)
Interface to Bzip2 compression library
--------------------------------------------------------------------------------
Update Information:
This release improves build script and fixes some compiler warnings.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1289785 - perl-Compress-Bzip2-2.24 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1289785
--------------------------------------------------------------------------------
================================================================================
perl-ExtUtils-MakeMaker-CPANfile-0.07-1.fc22 (FEDORA-2015-f79c3f0a99)
CPANfile support for ExtUtils::MakeMaker
--------------------------------------------------------------------------------
Update Information:
This release adds support for recommends, suggests, and conflicts directives.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1290614 - perl-ExtUtils-MakeMaker-CPANfile-0.07 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1290614
--------------------------------------------------------------------------------
================================================================================
php-Slim-2.6.2-3.fc22 (FEDORA-2015-c363d57481)
PHP micro framework
--------------------------------------------------------------------------------
Update Information:
* fix autoloader name ---- php-Slim-2.6.2-1.fc22 - Last upstream release
php-Slim-2.6.2-1.fc23 - Last upstream release ---- php-Slim-2.6.2-2.fc22
- provide php-composer(slim/slim) - don't ignore test suite result - add a
simpler autoloader php-Slim-2.6.2-2.fc23 - provide php-composer(slim/slim) -
don't ignore test suite result - add a simpler autoloader
--------------------------------------------------------------------------------
================================================================================
php-pear-Console-CommandLine-1.2.1-1.fc22 (FEDORA-2015-07fea65284)
A full featured command line options and arguments parser
--------------------------------------------------------------------------------
Update Information:
**Upstream changelog:** * Fixed bug #18397: List action example is wrong
[cweiske] * Fixed bug #18682: columnWrap() in refault renderer eats up lines
with only a EOL [izi, thanks Helgi] * Fixed bug #18703: No way to override
reading of stdin with - [izi, thanks Gwynne Raskind] * Fixed bug #19683: Unit
tests are broken [farell] * Fixed bug #19921: package dependencies don't include
dom [cweiske] * Fixed unit tests [izi] * Fixed comparison on PHP 7 [Jan Olsen] *
Allow multiple instances of the parser by making static variables private [Greg
Oriol] * Add composer support
--------------------------------------------------------------------------------
================================================================================
php-pear-PHP-CodeSniffer-2.5.0-1.fc22 (FEDORA-2015-d17240a787)
PHP coding standards enforcement tool
--------------------------------------------------------------------------------
Update Information:
**Upstream changelog:** - PHPCS will now look for a phpcs.xml file in parent
directories as well as the current directory (request #626) - PHPCS will now use
a phpcs.xml file even if files are specified on the command line. This file is
still only used if no standard is specified on the command line - Added support
for a phpcs.xml.dist file (request #583). If both a phpcs.xml and phpcs.xml.dist
file are present, the phpcs.xml file will be used - Added support for setting
PHP ini values in ruleset.xml files (request #560). Setting the value of the new
ini tags to name="memory_limit" value="32M" is the same as -d memory_limit=32M -
Added support for one or more bootstrap files to be run before processing
begins. Use the --bootstrap=file,file,file command line argument to include
bootstrap files. Useful if you want to override some of the high-level settings
of PHPCS or PHPCBF. Thanks to John Maguire for the patch - Added additional
verbose output for CSS tokenizing - Squiz ComparisonOperatorUsageSniff now
checks FOR, WHILE and DO-WHILE statements. Thanks to Arnout Boks for the patch -
Fixed bug #660 : Syntax checks can fail on Windows with PHP5.6 - Fixed bug #784
: $this->trait is seen as a T_TRAIT token - Fixed bug #786 : Switch indent issue
with short array notation - Fixed bug #787 : SpacingAfterDefaultBreak confused
by multi-line statements - Fixed bug #797 : Parsing CSS url() value breaks
further parsing - Fixed bug #805 :
Squiz.Commenting.FunctionComment.InvalidTypeHint on Scalar types on PHP7 - Fixed
bug #807 : Cannot fix line endings when open PHP tag is not on the first line -
Fixed bug #808 : JS tokeniser incorrectly setting some function and class names
to control structure tokens - Fixed bug #809 : PHPCBF can break a require_once
statement with a space before the open parenthesis - Fixed bug #813 : PEAR
FunctionCallSignature checks wrong indent when first token on line is part of a
multi-line string
--------------------------------------------------------------------------------
================================================================================
python-assimulo-2.8-7.fc22 (FEDORA-2015-2aa8ee8762)
Ordinary differential and differential algebraic equations solver
--------------------------------------------------------------------------------
Update Information:
- New Python package
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1215354 - Review Request: python-assimulo - Ordinary differential and differential algebraic equations solver
https://bugzilla.redhat.com/show_bug.cgi?id=1215354
--------------------------------------------------------------------------------
================================================================================
python-flask-restful-0.3.5-1.fc22 (FEDORA-2015-fe85615fcf)
Simple framework for creating REST APIs for Flask
--------------------------------------------------------------------------------
Update Information:
update to newest version
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1290616 - python-flask-restful-0.3.5 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1290616
--------------------------------------------------------------------------------
================================================================================
rubygem-nokogiri-1.6.6.4-1.fc22 (FEDORA-2015-ee99449ea1)
An HTML, XML, SAX, and Reader parser
--------------------------------------------------------------------------------
Update Information:
libxml2 version unmatching warning is not needed and it is killed with this rpm.
nokogiri is updaed to 1.6.6.4 (but actually no source change)
--------------------------------------------------------------------------------
================================================================================
shellinabox-2.19-1.fc22 (FEDORA-2015-463143720f)
Web based AJAX terminal emulator
--------------------------------------------------------------------------------
Update Information:
* Added support for middle-click paste * Improved iOS support * New logic to
enable soft keyboard icon * Disable HTTPS fallback using the URL /plain.
Consequently disables automatic upgrades from HTTP to HTTPS (CVE-2015-8400)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1287579 - CVE-2015-8400 shellinabox: DNS rebinding attack due to HTTP fallback [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1287579
[ 2 ] Bug #1287578 - CVE-2015-8400 shellinabox: DNS rebinding attack due to HTTP fallback [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1287578
--------------------------------------------------------------------------------
================================================================================
tor-0.2.7.6-3.fc22 (FEDORA-2015-9c43216367)
Anonymizing overlay network for TCP
--------------------------------------------------------------------------------
Update Information:
update to 0.2.7.6 ---- improve systemd scriptlets and service file ----
update to 0.2.7.5
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1288644 - tor multi-instance service fails to reload ('systemctl reload tor@foo')
https://bugzilla.redhat.com/show_bug.cgi?id=1288644
[ 2 ] Bug #1282022 - tor fails to start at boot if ORPort/DirPort is specified with IP address
https://bugzilla.redhat.com/show_bug.cgi?id=1282022
[ 3 ] Bug #1286359 - tor multi-instance services do not restart/reload when they should
https://bugzilla.redhat.com/show_bug.cgi?id=1286359
--------------------------------------------------------------------------------
================================================================================
vertica-python-0.5.5-1.fc22 (FEDORA-2015-536149598a)
A native Python adapter for the Vertica database
--------------------------------------------------------------------------------
Update Information:
update to version 0.5.5 ---- update to version 0.5.4
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1285768 - vertica-python-0.5.4 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1285768
[ 2 ] Bug #1287914 - vertica-python-0.5.5 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1287914
--------------------------------------------------------------------------------
================================================================================
wildmagic5-5.13-13.fc22 (FEDORA-2015-6dbbb6962b)
Wild Magic libraries
--------------------------------------------------------------------------------
Update Information:
- Fix compilation flags of 'libWm5Applications.so' library
--------------------------------------------------------------------------------
================================================================================
zanata-python-client-1.4.0-1.fc22 (FEDORA-2015-9579934276)
Python Client for Zanata Server
--------------------------------------------------------------------------------
Update Information:
Upstream update to 1.4.0
--------------------------------------------------------------------------------
Hi folks! So we agreed at Monday's meeting to go ahead with the plan to
track non-media blockers using different whiteboard field magic words.
We agreed to use 'Accepted0Day' and 'AcceptedPreviousRelease' as the
magic words - 'AcceptedPreviousRelease' is a bit long and unwieldy to
type, but we agreed it'd be the most clear.
Here are the changes I propose making to the relevant wiki pages:
https://fedoraproject.org/wiki/QA:SOP_blocker_bug_process
1. Amend "Bugs that are accepted as blockers for the relevant release
will be marked with the Whiteboard field AcceptedBlocker." to read
"Bugs that are accepted as blockers for the relevant release will be
marked with the Whiteboard field text AcceptedBlocker, Accepted0Day or
AcceptedPreviousRelease (see below for details on these)."
2. Add the following as a sub-section of the 'Reviewing blocker bugs'
section:
=== Normal, 0-Day and Previous Release blockers ===
The whiteboard fields AcceptedBlocker, Accepted0Day and
AcceptedPreviousRelease are used to distinguish between three
categories of blocker bug. AcceptedBlocker is the most common case.
This is used for bugs where the fix must appear as part of the final
frozen release itself (usually, on one of the media). Accepted0Day is
used for cases where the fix does not need to appear in the final
frozen release, but must be available as an update on release day.
AcceptedPreviousRelease is used for cases where the fix must appear as
an update for one or more previous stable releases.
The most common case for both Accepted0Day and AcceptedPreviousRelease
is upgrade-related problems. For instance, there may be a bug in the
upgrade mechanism itself; this will usually need to be fixed in the
previous stable releases, not the new release. There may be a bug in a
package in the new release which prevents systems with that package
installed upgrading correctly; the fix for such a bug does not need to
be part of the frozen final release, as upgrades typically use the
online package repositories, but if the affected package is very
commonly installed, we may decide that we wish to ensure the fixed
package is available from the updates repository on release day, and
make the bug an accepted 0-Day blocker.
3. Amend "These bugs can be marked as AcceptedBlocker by..." to "These
bugs can be marked as accepted by..."
https://fedoraproject.org/wiki/QA:SOP_Blocker_Bug_Meeting
1. Add a bullet point to 'Review Proposed Blocker Bugs', after "After
discussion, the leader will seek feedback on a proposed action...":
#* If the group votes to accept the bug as a blocker, the leader should
determine whether it is a normal blocker, 0-day blocker, or previous
release blocker, and include the appropriate tag (AcceptedBlocker,
Accepted0Day, or AcceptedPreviousRelease) in the proposal
2. Amend "add the text AcceptedBlocker (with that exact spelling and
case)" to "add the text AcceptedBlocker, Accepted0Day or
AcceptedPreviousRelease - as agreed - with that exact spelling and
case"
3. Amend "...may quickly review the list of previously AcceptedBlocker
bugs..." to "...may quickly review the list of previously accepted
blocker bugs..."
4. Amend "...the secretary must add the text AcceptedBlocker or
AcceptedFreezeException..." to "...the secretary must add the text
AcceptedBlocker, Accepted0Day, AcceptedPreviousRelease or
AcceptedFreezeException..."
I believe that's all the policy/process documentation change that's
necessary. We would have to adjust any code that looks for
AcceptedBlocker also. I have a draft patch for blockerbugs that I'll
polish up and submit to phab later in the week; does anyone know of any
other code that would be affected?
Comments, questions, suggestions etc. welcome! I'll go ahead and make
these changes later this week if there's no problem with them.
--
Adam Williamson
Fedora QA Community Monkey
IRC: adamw | Twitter: AdamW_Fedora | XMPP: adamw AT happyassassin . net
http://www.happyassassin.net
Missing expected images:
Cloud_atomic disk raw x86_64
Workstation live x86_64
Workstation live i386
Kde disk raw armhfp
Kde live i386
Kde live x86_64
Images in this compose but not Rawhide 20151210:
Cloud disk raw i386
Cloud disk qcow x86_64
Xfce live x86_64
Cloud vagrant libvirt x86_64
Cloud vagrant virtualbox x86_64
Cloud disk qcow i386
Cloud disk raw x86_64
Images in Rawhide 20151210 but not this:
Security live i386
Failed openQA tests: 4 of 54
ID: 796 Test: i386 universal package_set_kde
URL: https://openqa.fedoraproject.org/tests/796
ID: 783 Test: x86_64 universal server_ext3
URL: https://openqa.fedoraproject.org/tests/783
ID: 761 Test: x86_64 universal upgrade_2_minimal_64bit
URL: https://openqa.fedoraproject.org/tests/761
ID: 747 Test: x86_64 universal package_set_kde
URL: https://openqa.fedoraproject.org/tests/747
Passed openQA tests: 50 of 54
--
Mail generated by check-compose:
https://git.fedorahosted.org/cgit/fedora-qa.git/tree/check-compose