Fedora 27 updates-testing report
by updates@fedoraproject.org
The following Fedora 27 Security updates need testing:
Age URL
36 https://bodhi.fedoraproject.org/updates/FEDORA-2017-2d4c9a6e37 monit-5.25.1-1.fc27
9 https://bodhi.fedoraproject.org/updates/FEDORA-2018-d553b29a30 community-mysql-5.7.21-1.fc27
9 https://bodhi.fedoraproject.org/updates/FEDORA-2018-4fabf63492 squid-4.0.23-2.fc27
8 https://bodhi.fedoraproject.org/updates/FEDORA-2018-be361f407a knot-resolver-1.5.3-1.fc27
6 https://bodhi.fedoraproject.org/updates/FEDORA-2018-e4b025841e jackson-databind-2.7.6-8.fc27
3 https://bodhi.fedoraproject.org/updates/FEDORA-2018-0ad6e73ac0 w3m-0.5.3-36.git20180125.fc27
3 https://bodhi.fedoraproject.org/updates/FEDORA-2018-5b2e981f14 mujs-0-11.20180129git25821e6.fc27
0 https://bodhi.fedoraproject.org/updates/FEDORA-2018-7b1517bc6e tomcat-native-1.2.16-1.fc27
0 https://bodhi.fedoraproject.org/updates/FEDORA-2018-ec93095a73 sox-14.4.2.0-16.fc27
The following Fedora 27 Critical Path updates have yet to be approved:
Age URL
8 https://bodhi.fedoraproject.org/updates/FEDORA-2018-fbcc83aa97 grub2-2.02-22.fc27
6 https://bodhi.fedoraproject.org/updates/FEDORA-2018-cda38a39cf libguestfs-1.37.36-1.fc27
3 https://bodhi.fedoraproject.org/updates/FEDORA-2018-3c21305b93 analitza-17.12.1-2.fc27 calibre-3.12.0-2.fc27 deepin-tool-kit-0.3.3-4.fc27 dnscrypt-proxy-gui-1.11.11-2.fc27 gammaray-2.8.1-3.fc27 gsettings-qt-0-0.7.20170715bzr83.fc27 kf5-akonadi-server-17.12.1-2.fc27 kf5-frameworkintegration-5.42.0-2.fc27 kf5-kdeclarative-5.42.0-2.fc27 kf5-kwayland-5.42.0-2.fc27 kwin-5.11.5-2.fc27 libfm-qt-0.11.2-8.fc27 libqtxdg-2.0.0-8.fc27 lxqt-qtplugin-0.11.1-8.fc27 mscore-2.1.0-8.fc27 plasma-integration-5.11.5-2.fc27 postbooks-4.10.1-16.fc27 pyotherside-1.5.3-3.fc27 python-qt5-5.9.1-2.fc27 pythonqt-3.2-5.fc27 qgnomeplatform-0.3-6.fc27 qstardict-1.2-7.fc27 qt-creator-4.5.0-3.fc27.1 qt5-5.9.4-2.fc27 qt5-qt3d-5.9.4-1.fc27 qt5-qtbase-5.9.4-1.fc27 qt5-qtcanvas3d-5.9.4-1.fc27 qt5-qtcharts-5.9.4-1.fc27 qt5-qtconnectivity-5.9.4-1.fc27 qt5-qtdatavis3d-5.9.4-1.fc27 qt5-qtdeclarative-5.9.4-1.fc27 qt5-qtdoc-5.9.4-1.fc27 qt5-qtgamepad-5.9.4-1.fc27 qt5-qtgraphicaleffects-5.9.4-1.fc27 qt5-qtimageformats-5
.9.4-1.fc27 qt5-qtlocation-5.9.4-1.fc27 qt5-qtmultimedia-5.9.4-1.fc27 qt5-qtquickcontrols-5.9.4-1.fc27 qt5-qtquickcontrols2-5.9.4-1.fc27 qt5-qtremoteobjects-5.9.4-1.fc27 qt5-qtscript-5.9.4-1.fc27 qt5-qtscxml-5.9.4-1.fc27 qt5-qtsensors-5.9.4-1.fc27 qt5-qtserialport-5.9.4-1.fc27 qt5-qtspeech-5.9.4-2.fc27 qt5-qtstyleplugins-5.0.0-22.fc27 qt5-qtsvg-5.9.4-1.fc27 qt5-qttools-5.9.4-1.fc27 qt5-qttranslations-5.9.4-1.fc27 qt5-qtvirtualkeyboard-5.9.4-1.fc27 qt5-qtwayland-5.9.4-1.fc27 qt5-qtwebchannel-5.9.4-1.fc27 qt5-qtwebengine-5.10.0-2.fc27 qt5-qtwebkit-5.212.0-0.15.alpha2.fc27 qt5-qtwebsockets-5.9.4-1.fc27 qt5-qtwebview-5.9.4-1.fc27 qt5-qtx11extras-5.9.4-1.fc27 qt5-qtxmlpatterns-5.9.4-1.fc27 qt5ct-0.34-2.fc27 skrooge-2.10.5-2.fc27 ugene-1.28.1-2.fc27 xdg-desktop-portal-kde-5.11.5-2.fc27 yarock-1.3.0-2.fc27
2 https://bodhi.fedoraproject.org/updates/FEDORA-2018-9856876fc9 krb5-1.15.2-5.fc27
0 https://bodhi.fedoraproject.org/updates/FEDORA-2018-d81fb8369e pcre2-10.30-6.fc27
0 https://bodhi.fedoraproject.org/updates/FEDORA-2018-cf91c45f15 rpm-4.14.1-1.fc27
The following builds have been pushed to Fedora 27 updates-testing
adapta-gtk-theme-3.93.0.103-1.fc27
ansible-2.4.3.0-1.fc27
atomic-1.21.1-1.fc27
discount-2.2.2-4.fc27
ghc-listsafe-0.1.0.1-1.fc27
gnome-logs-3.26.3-1.fc27
libmicrohttpd-0.9.59-1.fc27
llvm-5.0.1-2.fc27
mate-control-center-1.19.3-2.fc27
mypaint-1.2.1-8.fc27
nheko-0.1.0-16.20180202git73bc1ff.fc27
openssh-7.6p1-5.fc27
otter-browser-0.9.95-0.1.rc5git406ad76.fc27
perl-Bot-BasicBot-0.92-1.fc27
perl-bignum-0.48-1.fc27
php-bartlett-php-compatinfo-db-1.29.0-1.fc27
php-sebastian-comparator2-2.1.3-1.fc27
php-tracy-2.4.11-1.fc27
php-zendframework-zend-validator-2.10.2-1.fc27
retrace-server-1.18.0-1.fc27
rubygem-review-2.4.0-4.fc27
salt-2017.7.3-1.fc27
siril-0.9.8-1.fc27
srm-ifce-1.24.3-1.fc27
tomcat-8.0.49-1.fc27
zanata-platform-4.4.1-1.fc27
zziplib-0.13.67-1.fc27
Details about builds:
================================================================================
adapta-gtk-theme-3.93.0.103-1.fc27 (FEDORA-2018-2fd9e8c50f)
An adaptive Gtk+ theme based on Material Design Guidelines
--------------------------------------------------------------------------------
Update Information:
- New upstream release
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1537086 - adapta-gtk-theme-3.93.0.86 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1537086
[ 2 ] Bug #1539334 - adapta-gtk-theme-3.93.0.90 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1539334
[ 3 ] Bug #1540388 - adapta-gtk-theme-3.93.0.103 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1540388
--------------------------------------------------------------------------------
================================================================================
ansible-2.4.3.0-1.fc27 (FEDORA-2018-dfc1b92cf6)
SSH-based configuration management, deployment, and task execution system
--------------------------------------------------------------------------------
Update Information:
Update to 2.4.3.0 bugfix release. See
https://github.com/ansible/ansible/blob/stable-2.4/CHANGELOG.md for full
changes.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1540767 - ansible-2.4.3.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1540767
--------------------------------------------------------------------------------
================================================================================
atomic-1.21.1-1.fc27 (FEDORA-2018-4f13a4fda6)
Tool for managing ProjectAtomic systems and containers
--------------------------------------------------------------------------------
Update Information:
New version v1.21.1
--------------------------------------------------------------------------------
================================================================================
discount-2.2.2-4.fc27 (FEDORA-2018-d4041f1c13)
A command-line utility for converting Markdown files into HTML
--------------------------------------------------------------------------------
Update Information:
Enable building and installing pkg-config file.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1536988 - built without pkg-config file
https://bugzilla.redhat.com/show_bug.cgi?id=1536988
--------------------------------------------------------------------------------
================================================================================
ghc-listsafe-0.1.0.1-1.fc27 (FEDORA-2018-55ac90e798)
Safe wrappers for partial list functions, supporting MonadThrow
--------------------------------------------------------------------------------
Update Information:
New package ghc-listsafe
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1540314 - Review Request: ghc-listsafe - Safe wrappers for partial list functions, supporting MonadThrow
https://bugzilla.redhat.com/show_bug.cgi?id=1540314
--------------------------------------------------------------------------------
================================================================================
gnome-logs-3.26.3-1.fc27 (FEDORA-2018-b5260e6a0e)
Log viewer for the systemd journal
--------------------------------------------------------------------------------
Update Information:
gnome-logs 3.26.3 release. * avoid using hard-coded colors from Jakub Steiner *
update to Norwegian bokm��l translation
--------------------------------------------------------------------------------
================================================================================
libmicrohttpd-0.9.59-1.fc27 (FEDORA-2018-523a6058ef)
Lightweight library for embedding a webserver in applications
--------------------------------------------------------------------------------
Update Information:
Update to 0.9.59
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1541193 - libmicrohttpd-0.9.59 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1541193
--------------------------------------------------------------------------------
================================================================================
llvm-5.0.1-2.fc27 (FEDORA-2018-24116112c9)
The Low Level Virtual Machine
--------------------------------------------------------------------------------
Update Information:
Backport a fix for rust.
--------------------------------------------------------------------------------
================================================================================
mate-control-center-1.19.3-2.fc27 (FEDORA-2018-51e9ddf1ab)
MATE Desktop control-center
--------------------------------------------------------------------------------
Update Information:
- probably fix for rhbz (#1540878)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1540878 - [abrt] mate-control-center: g_settings_schema_get_value(): mate-window-properties killed by SIGTRAP
https://bugzilla.redhat.com/show_bug.cgi?id=1540878
--------------------------------------------------------------------------------
================================================================================
mypaint-1.2.1-8.fc27 (FEDORA-2018-c10be4cc31)
A fast and easy graphics application for digital painters
--------------------------------------------------------------------------------
Update Information:
Updated after recent changes of scons package
--------------------------------------------------------------------------------
================================================================================
nheko-0.1.0-16.20180202git73bc1ff.fc27 (FEDORA-2018-534452b0c2)
Desktop client for the Matrix protocol
--------------------------------------------------------------------------------
Update Information:
New package.
--------------------------------------------------------------------------------
================================================================================
openssh-7.6p1-5.fc27 (FEDORA-2018-621b9a9095)
An open source implementation of SSH protocol version 2
--------------------------------------------------------------------------------
Update Information:
This update brings some of the fixes from rawhide, mostly related to audit
messages.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1524392 - sshd dies with "fatal: privsep_preauth: preauth child terminated by signal 31"
https://bugzilla.redhat.com/show_bug.cgi?id=1524392
--------------------------------------------------------------------------------
================================================================================
otter-browser-0.9.95-0.1.rc5git406ad76.fc27 (FEDORA-2018-64d33a100b)
Web browser controlled by the user, not vice-versa
--------------------------------------------------------------------------------
Update Information:
Update to 0.9.95-0.1.rc5git406ad76
--------------------------------------------------------------------------------
================================================================================
perl-Bot-BasicBot-0.92-1.fc27 (FEDORA-2018-8648fe19fc)
Simple IRC bot base class
--------------------------------------------------------------------------------
Update Information:
This release adds support for mode change notifications. It also improves
logging.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1541190 - perl-Bot-BasicBot-0.92 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1541190
--------------------------------------------------------------------------------
================================================================================
perl-bignum-0.48-1.fc27 (FEDORA-2018-3b2b0981cb)
Transparent big number support for Perl
--------------------------------------------------------------------------------
Update Information:
This release corrects required minimal Perl version.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1541186 - perl-bignum-0.48 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1541186
--------------------------------------------------------------------------------
================================================================================
php-bartlett-php-compatinfo-db-1.29.0-1.fc27 (FEDORA-2018-7e140aa7e0)
Reference Database to be used with php-compatinfo library
--------------------------------------------------------------------------------
Update Information:
**Version 1.29.0** - 2018-02-01 * **Added** - Support to PHP 7.1.14 *
**Changed** - Xdebug reference updated to version 2.6.0 (stable) *
**Fixed** - issue [GH-241](https://github.com/llaville/php-compat-
info/issues/241) about imagepng (declared in php-compat-info project) -
issue [GH-12](https://github.com/llaville/php-compatinfo-db/issues/12)
$escape_char param of fputcsv() requires PHP = 5.5.4
--------------------------------------------------------------------------------
================================================================================
php-sebastian-comparator2-2.1.3-1.fc27 (FEDORA-2018-665091a97b)
Compare PHP values for equality
--------------------------------------------------------------------------------
Update Information:
**Version 2.1.3** - 2018-02-01 * **Changed** * This component is now
compatible with version 3 of `sebastian/diff`
--------------------------------------------------------------------------------
================================================================================
php-tracy-2.4.11-1.fc27 (FEDORA-2018-13af20c4b4)
Tracy: useful PHP debugger
--------------------------------------------------------------------------------
Update Information:
** Released version 2.4.11** * Bar: fixed Undefined index #271 *
TracyExtension: add configuration directive maxLength #274 (#275) *
shortcuts: added function dumpe(), shortcut for dump() & exit() * Better
exception messages for invalid logging directory * Debugger::dispatch() is
ignored in CLI * Bar: added info about OPcache * Bar: removed HHVM version
from info panel * Bar: info panel counts only user defined
classes/interfaces/traits * Debugger: added support for custom JS via
$customJsFiles #265 * Debugger: added support for custom CSS via
$customCssFiles #27 * Debugger: error handler context argument optional for
compatibility with PHP 7.2 (#264)
--------------------------------------------------------------------------------
================================================================================
php-zendframework-zend-validator-2.10.2-1.fc27 (FEDORA-2018-727bd20f6c)
Zend Framework Validator component
--------------------------------------------------------------------------------
Update Information:
**Version 2.10.2** - 2018-02-01 * **Added** -
[#202](https://github.com/zendframework/zend-validator/pull/202) adds the
ability to use custom constant types in extensions of
`Zend\Validator\CreditCard`, fixing an issue where users were unable to add new
brands as they are created. - [#203](https://github.com/zendframework/zend-
validator/pull/203) adds support for the new Russian bank card "Mir". -
[#204](https://github.com/zendframework/zend-validator/pull/204) adds support
to the IBAN validator for performing SEPA validation against Croatia and San
Marino. - [#209](https://github.com/zendframework/zend-validator/pull/209) adds
documentation for the `Explode` validator. * **Fixed** -
[#195](https://github.com/zendframework/zend-validator/pull/195) adds missing
`GpsPoint` validator entries to the `ValidatorPluginManager`, ensuring they may
be retrieved from it correctly. - [#212](https://github.com/zendframework
/zend-validator/pull/212) updates the `CSRF` validator to automatically mark
any non-string values as invalid, preventing errors such as array to string
conversion.
--------------------------------------------------------------------------------
================================================================================
retrace-server-1.18.0-1.fc27 (FEDORA-2018-e5741ca105)
Application for remote coredump analysis
--------------------------------------------------------------------------------
Update Information:
Rebase to new upstream release. Including: - Specfiles improvements
- Update Python 2 dependency declarations to new packaging standards
- Remove duplicate RetraceWorker._fail call when start_vmcore fails
- Add md5sum and kernelver to email notifications, help text to failing
notification - Convert notify_email_success and notify_email_fail to a single
method - Create notify_email_success / notify_email_fail helpers
- Enable packages with epoch
- Update to new mock
- Set kernelver and vmlinux as soon as possible
- reposync: Cleanup is not done by default in createrepo
- Explicitly state python version in shebangs
- Fix unreadable crash subdirectory when tarball is submitted without group read
permissions - Try noarch when checking for package
- Add pylintrc
- Use dnf in mock config on Fedora
- Update mock config for new mock version
- Pylint updates
- Add commandline client
- Add aliases into FAF reposync
- Cleanup tmp FAF repository after failing
- Write coresize for vmcores
- Change error message
- Fix wrong html tag
- Set zero to non-existing type of tasks
- Fix typeo in manager.wsgi which creates a backtrace on non-ftp tasks.
- Bump version of gettext
- Change path for README.md
- Fix problem with missing modules on kernel versions with cached vmlinux files.
- No first retrace time when no existing task
- Make the reposync tool more verbose if required
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1440383 - RFE: Improve email notifications for failed and successful vmcores by giving suggested commands and other organizational info
https://bugzilla.redhat.com/show_bug.cgi?id=1440383
[ 2 ] Bug #1516329 - set_kernelver should be called at the bottom of get_kernel_release upon successful kernelversion detection
https://bugzilla.redhat.com/show_bug.cgi?id=1516329
[ 3 ] Bug #1481433 - retrace-server-interact fails with 'No such file or directory' due to retrace-server creating 'crash' subdirectory without group read permissions
https://bugzilla.redhat.com/show_bug.cgi?id=1481433
[ 4 ] Bug #1535485 - RetraceWorker._fail method called twice for failing vmcores
https://bugzilla.redhat.com/show_bug.cgi?id=1535485
[ 5 ] Bug #1201749 - 'coresize' field of stats sqlite database always NULL
https://bugzilla.redhat.com/show_bug.cgi?id=1201749
--------------------------------------------------------------------------------
================================================================================
rubygem-review-2.4.0-4.fc27 (FEDORA-2018-6b3aed6804)
Flexible document format/conversion system
--------------------------------------------------------------------------------
Update Information:
- Set versions of required packages ---- - Fix dependencies ---- - Update to
2.4.0
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1466317 - rubygem-review-2.3.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1466317
--------------------------------------------------------------------------------
================================================================================
salt-2017.7.3-1.fc27 (FEDORA-2018-2b087ca55e)
A parallel remote execution system
--------------------------------------------------------------------------------
Update Information:
Update to feature release 2017.7.3-1
--------------------------------------------------------------------------------
================================================================================
siril-0.9.8-1.fc27 (FEDORA-2018-914f3dbc4d)
Astronomical image processing software
--------------------------------------------------------------------------------
Update Information:
Update to 0.9.8, check release notes: https://free-
astro.org/index.php?title=Siril:0.9.8
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1540529 - New upstream version of Siril: 0.9.8
https://bugzilla.redhat.com/show_bug.cgi?id=1540529
--------------------------------------------------------------------------------
================================================================================
srm-ifce-1.24.3-1.fc27 (FEDORA-2018-9fcc1a3bfc)
SRM client side library
--------------------------------------------------------------------------------
Update Information:
* new upstream release
--------------------------------------------------------------------------------
================================================================================
tomcat-8.0.49-1.fc27 (FEDORA-2018-0b48740047)
Apache Servlet/JSP Engine, RI for Servlet 3.1/JSP 2.3 API
--------------------------------------------------------------------------------
Update Information:
This update includes a rebase from 8.0.47 to 8.0.49.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1541081 - CVE-2017-15706 tomcat: Incorrect documentation of CGI Servlet search algorithm may lead to misconfiguration [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1541081
--------------------------------------------------------------------------------
================================================================================
zanata-platform-4.4.1-1.fc27 (FEDORA-2018-a4514d7be3)
Zanata the web-based translation platform
--------------------------------------------------------------------------------
Update Information:
Upstream update to 4.4.1 ---- Upstream update to 4.3.2 However, there is no
changes for client side since 4.3.0. Thus this update has no significant impact
if you have already installed 4.3.0 and later.
--------------------------------------------------------------------------------
================================================================================
zziplib-0.13.67-1.fc27 (FEDORA-2018-a24be2586d)
Lightweight library to easily extract data from zip files
--------------------------------------------------------------------------------
Update Information:
Security fix for CVE-2018-6381
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1540183 - CVE-2018-6381 zziplib: Invalid memory access in the zzip_disk_fread function in zzip/mmapped.c
https://bugzilla.redhat.com/show_bug.cgi?id=1540183
--------------------------------------------------------------------------------