The following Fedora 24 Security updates need testing:
Age URL
26
https://bodhi.fedoraproject.org/updates/FEDORA-2016-71b4804526
imlib2-1.4.8-1.fc24
24
https://bodhi.fedoraproject.org/updates/FEDORA-2016-2e339a7779
optipng-0.7.6-1.fc24
24
https://bodhi.fedoraproject.org/updates/FEDORA-2016-c3387a7dad
squid-3.5.16-1.fc24
8
https://bodhi.fedoraproject.org/updates/FEDORA-2016-aff691237e
roundcubemail-1.1.5-1.fc24
2
https://bodhi.fedoraproject.org/updates/FEDORA-2016-f3b40fcbc3
jenkins-mailer-plugin-1.17-1.fc24 jenkins-credentials-plugin-1.27-1.fc24
jenkins-script-security-plugin-1.18.1-1.fc24 jenkins-junit-plugin-1.12-1.fc24
jenkins-1.651.1-1.fc24 stapler-1.242-1.fc24 tiger-types-2.2-1.fc24
owasp-java-html-sanitizer-20160422.1-1.fc24 jenkins-remoting-2.57-1.fc24
2
https://bodhi.fedoraproject.org/updates/FEDORA-2016-8f4b54b005
pgpdump-0.30-1.fc24
2
https://bodhi.fedoraproject.org/updates/FEDORA-2016-f4e73663f4 php-5.6.21-1.fc24
The following Fedora 24 Critical Path updates have yet to be approved:
Age URL
26
https://bodhi.fedoraproject.org/updates/FEDORA-2016-71b4804526
imlib2-1.4.8-1.fc24
10
https://bodhi.fedoraproject.org/updates/FEDORA-2016-5e070dcb15 lorax-24.18-1.fc24
1
https://bodhi.fedoraproject.org/updates/FEDORA-2016-8fad3111e6
openldap-2.4.43-4.fc24
1
https://bodhi.fedoraproject.org/updates/FEDORA-2016-72ba8169a1
openssh-7.2p2-6.fc24
1
https://bodhi.fedoraproject.org/updates/FEDORA-2016-7a3619a46d
thunderbird-45.0-4.fc24
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-2f1d9fb2cf
lxsession-0.5.2-9.fc24
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-84dddf1760
phonon-4.9.0-2.fc24
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-66d3344495
pungi-4.0.15-1.fc24
0
https://bodhi.fedoraproject.org/updates/FEDORA-2016-f8bfa5e03d audit-2.5.2-1.fc24
The following builds have been pushed to Fedora 24 updates-testing
MUMPS-5.0.1-20.fc24
atanua-1.3.141220-5.fc24
audit-2.5.2-1.fc24
composer-1.0.3-1.fc24
cxxtools-2.2.1-11.fc24
ddrescue-1.21-1.fc24
gimpfx-foundry-2.6.1-5.fc24
kde-l10n-16.04.0-1.fc24
kicad-4.0.2-2.fc24
logisim-2.7.1-4.fc24
lxsession-0.5.2-9.fc24
meshlab-1.3.2-10.fc24
mopac7-1.15-23.fc24
odb-2.4.0-12.fc24
openvas-cli-1.4.4-1.fc24
openvas-gsa-6.0.10-3.fc24
openvas-manager-6.0.8-2.fc24
os-autoinst-4.3-10.20160408gitff760a3.fc24
phonon-4.9.0-2.fc24
pungi-4.0.15-1.fc24
pyliblo-0.10.0-1.fc24
python-regex-2016.04.25-1.fc24
re2-20160401-2.fc24
ruby-2.3.1-55.fc24
scalpel-2.1-0.rc1.2.47815c2.fc24
tilda-1.3.3-1.fc24
vdr-epg-daemon-1.0.48-1.fc24
virglrenderer-0.5.0-1.20160411git61846f92f.fc24
wxsqlite3-3.3.2-0.1gitb05867d.fc24
yad-0.36.1-1.fc24
Details about builds:
================================================================================
MUMPS-5.0.1-20.fc24 (FEDORA-2016-c118a56132)
A MUltifrontal Massively Parallel sparse direct Solver
--------------------------------------------------------------------------------
Update Information:
- Build MPICH libraries on PPC64* except EPEL6
--------------------------------------------------------------------------------
================================================================================
atanua-1.3.141220-5.fc24 (FEDORA-2016-73b0c25164)
Real Time Logic Simulator
--------------------------------------------------------------------------------
Update Information:
Add appdata to some EDA tools.
--------------------------------------------------------------------------------
================================================================================
audit-2.5.2-1.fc24 (FEDORA-2016-f8bfa5e03d)
User space tools for 2.6 kernel auditing
--------------------------------------------------------------------------------
Update Information:
This update fixes a memory leak in the auparse library python bindings. It also
adds 2 new auditd config options.
--------------------------------------------------------------------------------
================================================================================
composer-1.0.3-1.fc24 (FEDORA-2016-99283edf6a)
Dependency Manager for PHP
--------------------------------------------------------------------------------
Update Information:
**Version 1.0.3** - 2016-04-29 * Security: Fixed possible command injection
from the env vars into our sudo detection * Fixed interactive authentication
with gitlab * Fixed class name replacement in plugins * Fixed classmap
generation mistakenly detecting anonymous classes * Fixed auto-detection of
stability flags in complex constraints like `2.0-dev || ^1.5` * Fixed content-
length handling when redirecting to very small responses ---- **Version
1.0.2** * Fixed regression in 1.0.1 on systems with mbstring.func_overload
enabled * Fixed regression in 1.0.1 that made dev packages update to the
latest reference even if not whitelisted in a partial update * Fixed init
command ignoring the COMPOSER env var for choosing the json file name * Fixed
error reporting bug when the dependency resolution fails * Fixed handling of
$ sign in composer config command in some cases it could corrupt the json file
---- **Version 1.0.1** * Fixed URL updating when a package's URL changes,
composer.lock now contains the right URL including correct reference * Fixed URL
updating of the origin git remote as well for packages installed as git clone *
Fixed binary .bat files generated from linux being incompatible with windows cmd
* Fixed handling of paths with trailing slashes in path repository * Fixed
create-project not using platform config when selecting a package * Fixed self-
update not showing the channel it uses to perform the update * Fixed file
downloads not failing loudly when the content does not match the Content-Length
header * Fixed secure-http detecting some malformed URLs as insecure * Updated
CA bundle Notice system CA is always preferred, bundled copy is only used as a
last chance fallback.
--------------------------------------------------------------------------------
================================================================================
cxxtools-2.2.1-11.fc24 (FEDORA-2016-a093b35f89)
A collection of general-purpose C++ classes
--------------------------------------------------------------------------------
Update Information:
fix the rounding errors on ppc
--------------------------------------------------------------------------------
================================================================================
ddrescue-1.21-1.fc24 (FEDORA-2016-96de4c3a31)
Data recovery tool trying hard to rescue data in case of read errors
--------------------------------------------------------------------------------
Update Information:
Bump to new upstream bigfix release.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1319360 - ddrescue-1.21 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1319360
--------------------------------------------------------------------------------
================================================================================
gimpfx-foundry-2.6.1-5.fc24 (FEDORA-2016-7d82f63f92)
Additional GIMP plugins
--------------------------------------------------------------------------------
Update Information:
gimpfx-foundry plugin for GIMP returns in the repository
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1327929 - Review Request: gimpfx-foundry - Additional plugins for GIMP
https://bugzilla.redhat.com/show_bug.cgi?id=1327929
--------------------------------------------------------------------------------
================================================================================
kde-l10n-16.04.0-1.fc24 (FEDORA-2016-18ce77ef1b)
Internationalization support for KDE Applications
--------------------------------------------------------------------------------
Update Information:
Latest translations as part of kde-applications-16.04.0 release, see also
https://www.kde.org/announcements/announce-applications-16.04.0.php
--------------------------------------------------------------------------------
================================================================================
kicad-4.0.2-2.fc24 (FEDORA-2016-73b0c25164)
EDA software suite for creation of schematic diagrams and PCBs
--------------------------------------------------------------------------------
Update Information:
Add appdata to some EDA tools.
--------------------------------------------------------------------------------
================================================================================
logisim-2.7.1-4.fc24 (FEDORA-2016-73b0c25164)
Educational tool for simulating digital logic circuits
--------------------------------------------------------------------------------
Update Information:
Add appdata to some EDA tools.
--------------------------------------------------------------------------------
================================================================================
lxsession-0.5.2-9.fc24 (FEDORA-2016-2f1d9fb2cf)
Lightweight X11 session manager
--------------------------------------------------------------------------------
Update Information:
A bug was reported that editing LXDE desktop.conf can cause CPU exhaustion by
lxsession process. This new rpm should fix this issue.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1294579 - lxsession Consumes 100% CPU
https://bugzilla.redhat.com/show_bug.cgi?id=1294579
--------------------------------------------------------------------------------
================================================================================
meshlab-1.3.2-10.fc24 (FEDORA-2016-97738a09ea)
A system for processing and editing unstructured 3D triangular meshes
--------------------------------------------------------------------------------
Update Information:
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1305224 - meshlab: FTBFS in rawhide
https://bugzilla.redhat.com/show_bug.cgi?id=1305224
--------------------------------------------------------------------------------
================================================================================
mopac7-1.15-23.fc24 (FEDORA-2016-37194f9c8b)
Semi-empirical quantum mechanics suite
--------------------------------------------------------------------------------
Update Information:
binutils issue has been resolved
--------------------------------------------------------------------------------
================================================================================
odb-2.4.0-12.fc24 (FEDORA-2016-da049e4e92)
Object-relational mapping (ORM) system for C++
--------------------------------------------------------------------------------
Update Information:
Rebuild for gcc update
--------------------------------------------------------------------------------
================================================================================
openvas-cli-1.4.4-1.fc24 (FEDORA-2016-9bc2ad7d3f)
Command-line tool to drive OpenVAS Manager
--------------------------------------------------------------------------------
Update Information:
Update to upstream bugfix releases.
--------------------------------------------------------------------------------
================================================================================
openvas-gsa-6.0.10-3.fc24 (FEDORA-2016-9bc2ad7d3f)
Greenbone Security Assistant (GSA) is GUI to the OpenVAS
--------------------------------------------------------------------------------
Update Information:
Update to upstream bugfix releases.
--------------------------------------------------------------------------------
================================================================================
openvas-manager-6.0.8-2.fc24 (FEDORA-2016-9bc2ad7d3f)
Manager Module for the Open Vulnerability Assessment System (OpenVAS)
--------------------------------------------------------------------------------
Update Information:
Update to upstream bugfix releases.
--------------------------------------------------------------------------------
================================================================================
os-autoinst-4.3-10.20160408gitff760a3.fc24 (FEDORA-2016-0d320deaa5)
OS-level test automation
--------------------------------------------------------------------------------
Update Information:
This update corrects the path to the `os-autoinst-openvswitch` binary in the
systemd service file; this prevented the service from running correctly. It also
makes it possible to pass an optional argument to the `upload_logs` subroutine
to make it tolerate a failed upload.
--------------------------------------------------------------------------------
================================================================================
phonon-4.9.0-2.fc24 (FEDORA-2016-84dddf1760)
Multimedia framework api
--------------------------------------------------------------------------------
Update Information:
Revert upstream commit causing audio notifications to not play properly,
http://bugs.kde.org/337276
--------------------------------------------------------------------------------
================================================================================
pungi-4.0.15-1.fc24 (FEDORA-2016-66d3344495)
Distribution compose tool
--------------------------------------------------------------------------------
Update Information:
[createiso] Add back running isohybrid on x86 disk images (dennis) [createiso]
Remove chdir() (lsedlar) Pungi should log when it tries to publish
notifications. (rbean) [createrepo] Use more verbose output (lsedlar) [ostree-
installer] Drop filename setting (lsedlar) [ostree] Set each repo to point to
current compose (lsedlar) [ostree-installer] Install ostree in runroot (lsedlar)
[pkgset] Print more detailed logs when rpm is not found (lsedlar) [ostree-
installer] Clone repo with templates (lsedlar)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1331317 - Server-dvd doesn't boot from flash drive created by dd
https://bugzilla.redhat.com/show_bug.cgi?id=1331317
--------------------------------------------------------------------------------
================================================================================
pyliblo-0.10.0-1.fc24 (FEDORA-2016-7d9012a311)
Python bindings for the liblo OSC library
--------------------------------------------------------------------------------
Update Information:
py3 support (rhbz#1322496)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1322496 - pyliblo: Provide a Python 3 subpackage
https://bugzilla.redhat.com/show_bug.cgi?id=1322496
--------------------------------------------------------------------------------
================================================================================
python-regex-2016.04.25-1.fc24 (FEDORA-2016-68e0d3271c)
Alternative regular expression module, to replace re
--------------------------------------------------------------------------------
Update Information:
Update regex to the latest released version.
--------------------------------------------------------------------------------
================================================================================
re2-20160401-2.fc24 (FEDORA-2016-6fc4ebaf21)
C++ fast alternative to backtracking RE engines
--------------------------------------------------------------------------------
Update Information:
Update to 20160401, primarily for chromium.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1307988 - re2: FTBFS in rawhide
https://bugzilla.redhat.com/show_bug.cgi?id=1307988
--------------------------------------------------------------------------------
================================================================================
ruby-2.3.1-55.fc24 (FEDORA-2016-5e81eef397)
An interpreter of object-oriented scripting language
--------------------------------------------------------------------------------
Update Information:
Update to Ruby 2.3.1.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1330538 - ruby-2.3.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1330538
--------------------------------------------------------------------------------
================================================================================
scalpel-2.1-0.rc1.2.47815c2.fc24 (FEDORA-2016-ab4560ce23)
Fast file carver working on disk images
--------------------------------------------------------------------------------
Update Information:
Fixed build in rawhide/f24
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1308111 - scalpel: FTBFS in rawhide
https://bugzilla.redhat.com/show_bug.cgi?id=1308111
--------------------------------------------------------------------------------
================================================================================
tilda-1.3.3-1.fc24 (FEDORA-2016-3811adc67d)
A Gtk based drop down terminal for Linux and Unix
--------------------------------------------------------------------------------
Update Information:
- update to 1.3.3
--------------------------------------------------------------------------------
================================================================================
vdr-epg-daemon-1.0.48-1.fc24 (FEDORA-2016-95815cb9a9)
A daemon to download EPG data from internet and manage it in a mysql database
--------------------------------------------------------------------------------
Update Information:
Update to 1.0.48 ---- Update to 1.0.47 ---- Update to 1.0.46 ---- Update
to 1.0.45 Added missing epghttpd.service file ---- Update to 1.0.43 ----
Update to 1.0.41 ---- Update to 1.0.40 ---- Update to 1.0.39 ---- Update
to 1.0.38 ---- Update to 1.0.37 ---- Update to 1.0.37 ---- Update to
1.0.34 ---- - Update to 1.0.27 ---- - Update to 1.0.23 ---- - Update to
1.0.31
--------------------------------------------------------------------------------
================================================================================
virglrenderer-0.5.0-1.20160411git61846f92f.fc24 (FEDORA-2016-4f68133957)
Virgl Rendering library.
--------------------------------------------------------------------------------
Update Information:
upstream 0.5.0 release
--------------------------------------------------------------------------------
================================================================================
wxsqlite3-3.3.2-0.1gitb05867d.fc24 (FEDORA-2016-edafa30b70)
C++ wrapper around the SQLite 3.x database
--------------------------------------------------------------------------------
Update Information:
- switched to github - added BR doxygen - spec file cleanup
--------------------------------------------------------------------------------
================================================================================
yad-0.36.1-1.fc24 (FEDORA-2016-80b65d98eb)
Display graphical dialogs from shell scripts or command line
--------------------------------------------------------------------------------
Update Information:
Yad update to 0.36.1
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1330795 - yad-0.36.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1330795
--------------------------------------------------------------------------------