The following Fedora 27 Security updates need testing:
Age URL
15
https://bodhi.fedoraproject.org/updates/FEDORA-2018-969328b17c jhead-3.00-7.fc27
6
https://bodhi.fedoraproject.org/updates/FEDORA-2018-b22d46eabb
libvirt-3.7.0-4.fc27
6
https://bodhi.fedoraproject.org/updates/FEDORA-2018-9d6a122887
sblim-sfcb-1.4.9-9.fc27
6
https://bodhi.fedoraproject.org/updates/FEDORA-2018-da6f76b446
mupdf-1.12.0-5.fc27
6
https://bodhi.fedoraproject.org/updates/FEDORA-2018-b152c791cc
mingw-OpenEXR-2.2.0-7.fc27
6
https://bodhi.fedoraproject.org/updates/FEDORA-2018-ee417c4b28
suricata-4.0.4-1.fc27
5
https://bodhi.fedoraproject.org/updates/FEDORA-2018-1ec1cd6db3 bro-2.5.3-1.fc27
3
https://bodhi.fedoraproject.org/updates/FEDORA-2018-433d2dc3c7 irssi-1.0.7-1.fc27
3
https://bodhi.fedoraproject.org/updates/FEDORA-2018-5aec14e125 exim-4.90.1-2.fc27
3
https://bodhi.fedoraproject.org/updates/FEDORA-2018-2331a462fb
milkytracker-1.01.00-1.fc27
2
https://bodhi.fedoraproject.org/updates/FEDORA-2018-c6cb18d057
seamonkey-2.49.2-2.fc27
1
https://bodhi.fedoraproject.org/updates/FEDORA-2018-eb58dc8a6f
mbedtls-2.7.0-1.fc27
1
https://bodhi.fedoraproject.org/updates/FEDORA-2018-1e0e37e148
bugzilla-5.0.4-1.fc27
1
https://bodhi.fedoraproject.org/updates/FEDORA-2018-fe5a6ed3b7
knot-resolver-2.1.0-1.fc27
1
https://bodhi.fedoraproject.org/updates/FEDORA-2018-4edbabf88a
electrum-3.0.6-1.fc27
0
https://bodhi.fedoraproject.org/updates/FEDORA-2018-3ba1be2e79
wavpack-5.1.0-7.fc27
The following Fedora 27 Critical Path updates have yet to be approved:
Age URL
14
https://bodhi.fedoraproject.org/updates/FEDORA-2018-c46fa8e392
perl-5.26.1-403.fc27
8
https://bodhi.fedoraproject.org/updates/FEDORA-2018-fdb6b936e4 nss-3.35.0-1.1.fc27
nss-softokn-3.35.0-1.0.fc27 nss-util-3.35.0-1.0.fc27 nspr-4.18.0-1.fc27
8
https://bodhi.fedoraproject.org/updates/FEDORA-2018-d73421f7e6 pcre2-10.31-1.fc27
8
https://bodhi.fedoraproject.org/updates/FEDORA-2018-c9b5e3f68c
libguestfs-1.38.0-1.fc27
6
https://bodhi.fedoraproject.org/updates/FEDORA-2018-b22d46eabb
libvirt-3.7.0-4.fc27
5
https://bodhi.fedoraproject.org/updates/FEDORA-2018-20611f7cb1
breeze-icon-theme-5.43.0-1.fc27 extra-cmake-modules-5.43.0-1.fc27 kf5-5.43.0-1.fc27
kf5-attica-5.43.0-1.fc27 kf5-baloo-5.43.0-1.fc27 kf5-bluez-qt-5.43.0-1.fc27
kf5-frameworkintegration-5.43.0-2.fc27 kf5-kactivities-5.43.0-2.fc27
kf5-kactivities-stats-5.43.0-2.fc27 kf5-kapidox-5.43.0-1.fc27 kf5-karchive-5.43.0-1.fc27
kf5-kauth-5.43.0-1.fc27 kf5-kbookmarks-5.43.0-2.fc27 kf5-kcmutils-5.43.0-3.fc27
kf5-kcodecs-5.43.0-1.fc27 kf5-kcompletion-5.43.0-1.fc27 kf5-kconfig-5.43.0-1.fc27
kf5-kconfigwidgets-5.43.0-1.fc27 kf5-kcoreaddons-5.43.0-1.fc27 kf5-kcrash-5.43.0-1.fc27
kf5-kdbusaddons-5.43.0-1.fc27 kf5-kdeclarative-5.43.0-2.fc27 kf5-kded-5.43.0-3.fc27
kf5-kdelibs4support-5.43.0-3.fc27 kf5-kdesignerplugin-5.43.0-2.fc27
kf5-kdesu-5.43.0-1.fc27 kf5-kdewebkit-5.43.0-2.fc27 kf5-kdnssd-5.43.0-1.fc27
kf5-kdoctools-5.43.0-1.fc27 kf5-kemoticons-5.43.0-1.fc27 kf5-kfilemetadata-5.43.0-1.fc27
kf5-kglobalaccel-5.43.0-1.fc27 kf5-kguiad
dons-5.43.0-1.fc27 kf5-khtml-5.43.0-3.fc27 kf5-ki18n-5.43.0-1.fc27
kf5-kiconthemes-5.43.0-1.fc27 kf5-kidletime-5.43.0-1.fc27 kf5-kimageformats-5.43.0-1.fc27
kf5-kinit-5.43.0-2.fc27 kf5-kio-5.43.0-3.fc27 kf5-kirigami2-5.43.0-1.fc27
kf5-kitemmodels-5.43.0-1.fc27 kf5-kitemviews-5.43.0-1.fc27 kf5-kjobwidgets-5.43.0-1.fc27
kf5-kjs-5.43.0-1.fc27 kf5-kjsembed-5.43.0-1.fc27 kf5-kmediaplayer-5.43.0-2.fc27
kf5-knewstuff-5.43.0-2.fc27 kf5-knotifications-5.43.0-1.fc27
kf5-knotifyconfig-5.43.0-2.fc27 kf5-kpackage-5.43.0-1.fc27 kf5-kparts-5.43.0-2.fc27
kf5-kpeople-5.43.0-1.fc27 kf5-kplotting-5.43.0-1.fc27 kf5-kpty-5.43.0-1.fc27
kf5-kross-5.43.0-2.fc27 kf5-krunner-5.43.0-3.fc27 kf5-kservice-5.43.0-1.fc27
kf5-ktexteditor-5.43.0-3.fc27 kf5-ktextwidgets-5.43.0-1.fc27
kf5-kunitconversion-5.43.0-1.fc27 kf5-kwallet-5.43.0-1.fc27 kf5-kwayland-5.43.0-1.fc27
kf5-kwidgetsaddons-5.43.0-1.fc27 kf5-kwindowsystem-5.43.0-1.fc27 kf5-kxmlgui-5.43.0-1.fc27
kf5-kxmlrpcclient-5.43.0-2.fc27 kf5-modemmanager-qt-5.43.0-
1.fc27 kf5-networkmanager-qt-5.43.0-1.fc27 kf5-plasma-5.43.0-3.fc27
kf5-prison-5.43.0-1.fc27 kf5-purpose-5.43.0-1.fc27 kf5-solid-5.43.0-1.fc27
kf5-sonnet-5.43.0-1.fc27 kf5-syntax-highlighting-5.43.0-1.fc27
kf5-threadweaver-5.43.0-1.fc27 oxygen-icon-theme-5.43.0-1.fc27
qqc2-desktop-style-5.43.0-1.fc27
1
https://bodhi.fedoraproject.org/updates/FEDORA-2018-dab548649a
perl-PathTools-3.74-1.fc27
0
https://bodhi.fedoraproject.org/updates/FEDORA-2018-3ba1be2e79
wavpack-5.1.0-7.fc27
0
https://bodhi.fedoraproject.org/updates/FEDORA-2018-2f076fcd3c pcre-8.41-6.fc27
0
https://bodhi.fedoraproject.org/updates/FEDORA-2018-a9711c96b2
selinux-policy-3.13.1-283.26.fc27
0
https://bodhi.fedoraproject.org/updates/FEDORA-2018-54fb575b8a mesa-17.3.5-1.fc27
0
https://bodhi.fedoraproject.org/updates/FEDORA-2018-2db4bd7ebb
zerofree-1.1.1-1.fc27
The following builds have been pushed to Fedora 27 updates-testing
abcde-2.8.1-5.fc27
american-fuzzy-lop-2.49b-4.fc27
atomic-1.22.1-1.fc27
cabal-rpm-0.12.1-3.fc27
cryptopp-5.6.5-2.fc27
distribution-gpg-keys-1.19-1.fc27
dmlite-1.10.0-2.fc27
dnscrypt-proxy-gui-1.11.14-1.fc27
fedfind-4.1.0-1.fc27
firebird-3.0.3.32900-1.fc27
fts-monitoring-3.7.8-1.fc27
gjs-1.50.4-2.fc27
glibc-arm-linux-gnu-2.26-4.fc27
golang-github-zyedidia-terminal-0-0.1.20180126git1760577.fc27
icfg-0.9-14.fc27
js-jquery-datetimepicker-2.5.18-1.fc27
kernel-4.15.4-300.fc27
libsamplerate-0.1.9-1.fc27
meson-0.44.1-1.fc27
micro-1.4.0-1.fc27
mozilla-ublock-origin-1.15.10-1.fc27
pcs-0.9.163-1.fc27
perl-CPAN-Perl-Releases-3.48-1.fc27
perl-Mojolicious-7.67-1.fc27
perl-Term-Chrome-2.01-1.fc27
perl-libwww-perl-6.32-1.fc27
php-pear-PHP-CodeSniffer-3.2.3-1.fc27
php-phpmyadmin-motranslator-4.0-1.fc27
php-phpmyadmin-sql-parser-4.2.4-3.fc27
phpMyAdmin-4.7.8-1.fc27
pngcrush-1.8.13-1.fc27
python-certbot-dns-dnsimple-0.21.1-1.fc27
python-certbot-dns-dnsmadeeasy-0.21.1-1.fc27
python-certbot-dns-nsone-0.21.1-1.fc27
python-ipdb-0.11-1.fc27
python-mmtf-1.0.10-1.fc27
python-wikitcms-2.3.0-1.fc27
qt5-qtspeech-5.9.4-3.fc27
redhat-rpm-config-74-1.fc27
rtpproxy-2.0.0-10.fc27
rubygem-gtk2-3.2.1-5.fc27
rust-1.24.0-2.fc27
sssd-1.16.0-8.fc27
systemd-234-10.git5f8984e.fc27
testcloud-0.1.16-1.fc27
urw-base35-fonts-20170801-5.fc27
vim-8.0.1527-1.fc27
wesnoth-1.13.11-1.fc27
wine-3.2-2.fc27
yamllint-1.11.0-1.fc27
Details about builds:
================================================================================
abcde-2.8.1-5.fc27 (FEDORA-2018-0f2e0a5f5c)
A Better CD Encoder
--------------------------------------------------------------------------------
Update Information:
Add a weak dependency on twolame now that it's available in Fedora 27 and later.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1534297 - Use twolame for MP2 encoding
https://bugzilla.redhat.com/show_bug.cgi?id=1534297
--------------------------------------------------------------------------------
================================================================================
american-fuzzy-lop-2.49b-4.fc27 (FEDORA-2018-0b9a899afe)
Practical, instrumentation-driven fuzzer for binary formats
--------------------------------------------------------------------------------
Update Information:
Rebuild against clang 5 (RHBZ#1544964).
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1544964 - american-fuzzy-lop-clang-fast requires llvm-4.0, doesn't work
with 5.0
https://bugzilla.redhat.com/show_bug.cgi?id=1544964
--------------------------------------------------------------------------------
================================================================================
atomic-1.22.1-1.fc27 (FEDORA-2018-00cb9ce36b)
Tool for managing ProjectAtomic systems and containers
--------------------------------------------------------------------------------
Update Information:
v1.22.1 release
--------------------------------------------------------------------------------
================================================================================
cabal-rpm-0.12.1-3.fc27 (FEDORA-2018-92b4416fc4)
RPM packaging tool for Haskell Cabal-based packages
--------------------------------------------------------------------------------
Update Information:
- new option --missing: comments out missing dependencies - put license files in
lib subpackage - no longer append %_isa to C BuildRequires - no longer leave
leftover tmpdirs
--------------------------------------------------------------------------------
================================================================================
cryptopp-5.6.5-2.fc27 (FEDORA-2018-a0a356fb68)
C++ class library of cryptographic schemes
--------------------------------------------------------------------------------
Update Information:
Update cryptopp to 5.6.5 security release. * fixed CVE-2016-7420 (Issue 277,
document NDEBUG for production/release) * fixed CVE-2016-7544 (Issue 302, avoid
_malloca and _freea for MSC compilers) * Shipped library in recommended state
backwards compatibility achieved with <config.compat> * improved Testing and QA
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1376698 - CVE-2016-7420 cryptopp: Library documentation lacks treatment of
-DNDEBUG and Static Initialization [epel-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1376698
[ 2 ] Bug #1376697 - CVE-2016-7420 cryptopp: Library documentation lacks treatment of
-DNDEBUG and Static Initialization [fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1376697
[ 3 ] Bug #1375180 - CryptoPP::CMAC_Base::Update assert failed with tegrarcm
https://bugzilla.redhat.com/show_bug.cgi?id=1375180
[ 4 ] Bug #1401407 - Cryptopp 5.6.5 released, Fedora Rawhide currently on 5.6.3
https://bugzilla.redhat.com/show_bug.cgi?id=1401407
--------------------------------------------------------------------------------
================================================================================
distribution-gpg-keys-1.19-1.fc27 (FEDORA-2018-748bb979c9)
GPG keys of various Linux distributions
--------------------------------------------------------------------------------
Update Information:
- updated copr keys
--------------------------------------------------------------------------------
================================================================================
dmlite-1.10.0-2.fc27 (FEDORA-2018-7d439aa38d)
Lcgdm grid data management and storage framework
--------------------------------------------------------------------------------
Update Information:
* new upstream release
--------------------------------------------------------------------------------
================================================================================
dnscrypt-proxy-gui-1.11.14-1.fc27 (FEDORA-2018-3df685b098)
GUI wrapper for dnscrypt-proxy
--------------------------------------------------------------------------------
Update Information:
some enhancements;
--------------------------------------------------------------------------------
================================================================================
fedfind-4.1.0-1.fc27 (FEDORA-2018-3016d030be)
Fedora compose and image finder
--------------------------------------------------------------------------------
Update Information:
This update provides a new (fully backwards compatible) release of fedfind. The
major change is to reintroduce the PDC-based implementation of
`get_package_nvras()` as a separate method, `get_package_nevras_pdc()`, only for
`Pungi4Release` classes.
--------------------------------------------------------------------------------
================================================================================
firebird-3.0.3.32900-1.fc27 (FEDORA-2018-f8000f5ce2)
SQL relational database management system
--------------------------------------------------------------------------------
Update Information:
new upstream release.
--------------------------------------------------------------------------------
================================================================================
fts-monitoring-3.7.8-1.fc27 (FEDORA-2018-6a5ded43c9)
FTS3 Web Application for monitoring
--------------------------------------------------------------------------------
Update Information:
* new upstream release
--------------------------------------------------------------------------------
================================================================================
gjs-1.50.4-2.fc27 (FEDORA-2018-245c0155e9)
Javascript Bindings for GNOME
--------------------------------------------------------------------------------
Update Information:
Avoid emitting critical warnings for already finalized object access errors. As
gnome-shell has a number of unfixed issues, this was causing significant spam in
the system journal. As a workaround, this changes gjs to only log the traces on
DEBUG level.
--------------------------------------------------------------------------------
================================================================================
glibc-arm-linux-gnu-2.26-4.fc27 (FEDORA-2018-81e1618ab9)
Cross Compiled GNU C Library targeted at arm-linux-gnu
--------------------------------------------------------------------------------
Update Information:
Security fix for CVE-2018-1000001.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1533836 - CVE-2018-1000001 glibc: realpath() buffer underflow when getcwd()
returns relative path allows privilege escalation
https://bugzilla.redhat.com/show_bug.cgi?id=1533836
--------------------------------------------------------------------------------
================================================================================
golang-github-zyedidia-terminal-0-0.1.20180126git1760577.fc27 (FEDORA-2018-cbf443fefa)
Vt10x terminal emulation backend
--------------------------------------------------------------------------------
Update Information:
Initial package for Fedora
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1539190 - Review Request: golang-github-zyedidia-terminal - Vt10x terminal
emulation backend
https://bugzilla.redhat.com/show_bug.cgi?id=1539190
--------------------------------------------------------------------------------
================================================================================
icfg-0.9-14.fc27 (FEDORA-2018-b20638a40a)
Command line utility to edit network configuration (icfg-*) files
--------------------------------------------------------------------------------
Update Information:
update for python3
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1546736 - icfg: icfg requires both Python 2 and Python 3
https://bugzilla.redhat.com/show_bug.cgi?id=1546736
--------------------------------------------------------------------------------
================================================================================
js-jquery-datetimepicker-2.5.18-1.fc27 (FEDORA-2018-7cb24e06b5)
jQuery Plugin Date and Time Picker
--------------------------------------------------------------------------------
Update Information:
Update to
[
2.5.18](https://github.com/xdan/datetimepicker/compare/2.5.17...2.5.18).
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1546511 - js-jquery-datetimepicker-2.5.18 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1546511
--------------------------------------------------------------------------------
================================================================================
kernel-4.15.4-300.fc27 (FEDORA-2018-7a62047e30)
The Linux kernel
--------------------------------------------------------------------------------
Update Information:
The 4.15.4 update contains a number of important fixes across the tree
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1541846 - CVE-2018-1000026 kernel: Improper validation in bnx2x network card
driver can allow for denial of service attacks via crafted packet
https://bugzilla.redhat.com/show_bug.cgi?id=1541846
--------------------------------------------------------------------------------
================================================================================
libsamplerate-0.1.9-1.fc27 (FEDORA-2018-418e67c843)
Sample rate conversion library for audio data
--------------------------------------------------------------------------------
Update Information:
New upstream bug fix release. This version includes a fix for CVE-2017-7697.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1441644 - CVE-2017-7697 libsamplerate: Buffer overflow in calc_output_single
[fedora-all]
https://bugzilla.redhat.com/show_bug.cgi?id=1441644
--------------------------------------------------------------------------------
================================================================================
meson-0.44.1-1.fc27 (FEDORA-2018-20c6cef5b8)
High productivity build system
--------------------------------------------------------------------------------
Update Information:
Update to 0.44.1
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1539287 - [abrt] meson: detect_meson_py_location():
mesonlib.py:51:detect_meson_py_location:RuntimeError: Could not determine how to run
Meson. Please file a bug with details.
https://bugzilla.redhat.com/show_bug.cgi?id=1539287
[ 2 ] Bug #1547304 - meson-0.44.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1547304
--------------------------------------------------------------------------------
================================================================================
micro-1.4.0-1.fc27 (FEDORA-2018-dbbcc57a04)
A modern and intuitive terminal-based text editor
--------------------------------------------------------------------------------
Update Information:
Upstream release 1.4.0
--------------------------------------------------------------------------------
================================================================================
mozilla-ublock-origin-1.15.10-1.fc27 (FEDORA-2018-cb07085d40)
An efficient blocker for Firefox
--------------------------------------------------------------------------------
Update Information:
**NOTE:** All packaged Firefox add-ons are affected by Firefox bug
fedora#1508827 . A workaround is provided in the bug report. Please do not give
negative karma just because of that bug. Many bugfixes and enhancements since
1.14.24. Please read full release notes on
[
Github](https://github.com/gorhill/uBlock/releases).
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1530092 - mozilla-ublock-origin-1.15.10 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1530092
--------------------------------------------------------------------------------
================================================================================
pcs-0.9.163-1.fc27 (FEDORA-2018-08e191c702)
Pacemaker Configuration System
--------------------------------------------------------------------------------
Update Information:
Rebased to latest upstream sources
--------------------------------------------------------------------------------
================================================================================
perl-CPAN-Perl-Releases-3.48-1.fc27 (FEDORA-2018-dfcf7fbede)
Mapping Perl releases on CPAN to the location of the tarballs
--------------------------------------------------------------------------------
Update Information:
Updated to the latest version
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1547288 - perl-CPAN-Perl-Releases-3.48 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1547288
--------------------------------------------------------------------------------
================================================================================
perl-Mojolicious-7.67-1.fc27 (FEDORA-2018-b8d9444a47)
A next generation web framework for Perl
--------------------------------------------------------------------------------
Update Information:
Upstream released version 7.66 of Mojolicious, urging everyone to update for
security reasons.
http://cpansearch.perl.org/src/SRI/Mojolicious-7.66/Changes
This update upgrades perl-Mojolicious to 7.67.
--------------------------------------------------------------------------------
================================================================================
perl-Term-Chrome-2.01-1.fc27 (FEDORA-2018-8d941fccb8)
DSL for colors and other terminal chrome
--------------------------------------------------------------------------------
Update Information:
This release fixes reverse color mode.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1547462 - perl-Term-Chrome-2.01 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1547462
--------------------------------------------------------------------------------
================================================================================
perl-libwww-perl-6.32-1.fc27 (FEDORA-2018-e9e19ba764)
A Perl interface to the World-Wide Web
--------------------------------------------------------------------------------
Update Information:
This release allows to control sending Transfer-Encoding with a new send_te
option.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1547296 - perl-libwww-perl-6.32 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1547296
--------------------------------------------------------------------------------
================================================================================
php-pear-PHP-CodeSniffer-3.2.3-1.fc27 (FEDORA-2018-fb8f96727d)
PHP coding standards enforcement tool
--------------------------------------------------------------------------------
Update Information:
**Version 3.2.3** Changelog: - The new phpcs: comment syntax can now be
prefixed with an at symbol ( `@phpcs:` ) - This restores the behaviour of
the previous syntax where these comments are ignored by doc generators - The
current PHP version ID is now used to generate cache files - This ensures
that only cache files generated by the current PHP version are selected -
This change fixes caching issues when using sniffs that produce errors based on
the current PHP version - A new Tokens::$phpcsCommentTokens array is now
available for sniff developers to detect phpcs: comment syntax - Thanks to
Juliette Reinders Folmer for the patch - The
PEAR.Commenting.FunctionComment.Missing error message now includes the name of
the function - Thanks to Yorman Arias for the patch - The
PEAR.Commenting.ClassComment.Missing and Squiz.Commenting.ClassComment.Missing
error messages now include the name of the class - Thanks to Yorman Arias
for the patch - PEAR.Functions.FunctionCallSignature now only forces alignment
at a specific tab stop while fixing - It was enforcing this during checking,
but this meant invalid errors if the OpeningIndent message was being muted -
This fixes incorrect errors when using the PSR2 standard with some code blocks -
Generic.Files.LineLength now ignores lines that only contain phpcs: annotation
comments - Thanks to Juliette Reinders Folmer for the patch -
Generic.Formatting.MultipleStatementAlignment now skips over arrays containing
comments - Thanks to Juliette Reinders Folmer for the patch -
Generic.PHP.Syntax now forces display_errors to ON when linting - Thanks to
Ra��l Arellano for the patch - PSR2.Namespaces.UseDeclaration has improved syntax
error handling and closure detection - Thanks to Juliette Reinders Folmer
for the patch - Squiz.PHP.CommentedOutCode now has improved comment block
detection for improved accuracy - Thanks to Juliette Reinders Folmer for the
patch - Squiz.PHP.NonExecutableCode could fatal error while fixing file with
syntax error - Squiz.PHP.NonExecutableCode now detects unreachable code after a
goto statement - Thanks to Juliette Reinders Folmer for the patch -
Squiz.WhiteSpace.LanguageConstructSpacing has improved syntax error handling
while fixing - Thanks to Juliette Reinders Folmer for the patch - Improved
phpcs: annotation syntax handling for a number of sniffs - Thanks to
Juliette Reinders Folmer for the patch - Improved auto-fixing of files with
incomplete comment blocks for various commenting sniffs - Thanks to
Juliette Reinders Folmer for the patch - Fixed test suite compatibility with
PHPUnit 7 - Fixed bug #1793 : PSR2 forcing exact indent for function call
opening statements - Fixed bug #1803 : Squiz.WhiteSpace.ScopeKeywordSpacing
removes member var name while fixing if no space after scope keyword - Fixed bug
#1817 : Blank line not enforced after control structure if comment on same line
as closing brace - Fixed bug #1827 : A phpcs:enable comment is not tokenized
correctly if it is outside a phpcs:disable block - Thanks to Juliette
Reinders Folmer for the patch - Fixed bug #1828 :
Squiz.WhiteSpace.SuperfluousWhiteSpace ignoreBlankLines property ignores
whitespace after single line comments - Thanks to Juliette Reinders Folmer
for the patch - Fixed bug #1840 : When a comment has too many asterisks, phpcbf
gives FAILED TO FIX error - Fixed bug #1867 : Cant use phpcs:ignore where the
next line is HTML - Fixed bug #1870 : Invalid warning in multiple assignments
alignment with closure or anon class - Fixed bug #1890 : Incorrect
Squiz.WhiteSpace.ControlStructureSpacing.NoLineAfterClose error between catch
and finally statements - Fixed bug #1891 : Comment on last USE statement causes
false positive for PSR2.Namespaces.UseDeclaration.SpaceAfterLastUse - Thanks
to Matt Coleman, Daniel Hensby, and Juliette Reinders Folmer for the patch -
Fixed bug #1901 : Fixed PHPCS annotations in multi-line tab-indented comments +
not ignoring whole line for phpcs:set - Thanks to Juliette Reinders Folmer
for the patch
--------------------------------------------------------------------------------
================================================================================
php-phpmyadmin-motranslator-4.0-1.fc27 (FEDORA-2018-a1650ed14f)
Translation API for PHP using Gettext MO files
--------------------------------------------------------------------------------
Update Information:
From upstream announcement: **Security fix: phpMyAdmin 4.7.8 is released**
Welcome to phpMyAdmin 4.7.8, a security releaes also containing regular
maintenance bug fixes. The security fix relates to a self-XSS vulnerability in
the central columns feature that is reported as PMASA-2018-1
https://www.phpmyadmin.net/security/PMASA-2018-1/. Thanks to Mayur Udiniya
https://www.linkedin.com/in/mayur-udiniya-09247b129/ for finding and responsibly
disclosing this flaw. We recommend all users upgrade to resolve this security
problem. A complete list of new features and bugs that have been fixed is
available in the ChangeLog file or changelog.php included with this release.
Notable changes since 4.7.7: * Fixed error handling with PHP 7.2 * Fixed
resetting default setting values * Fixed fallback value for collation
connection Additionally, there have been continuous improvements to many of the
translations. If you don't see your language or find a problem, you can
contribute too; see
https://www.phpmyadmin.net/translate/ for details.
--------------------------------------------------------------------------------
================================================================================
php-phpmyadmin-sql-parser-4.2.4-3.fc27 (FEDORA-2018-a1650ed14f)
A validating SQL lexer and parser with a focus on MySQL dialect
--------------------------------------------------------------------------------
Update Information:
From upstream announcement: **Security fix: phpMyAdmin 4.7.8 is released**
Welcome to phpMyAdmin 4.7.8, a security releaes also containing regular
maintenance bug fixes. The security fix relates to a self-XSS vulnerability in
the central columns feature that is reported as PMASA-2018-1
https://www.phpmyadmin.net/security/PMASA-2018-1/. Thanks to Mayur Udiniya
https://www.linkedin.com/in/mayur-udiniya-09247b129/ for finding and responsibly
disclosing this flaw. We recommend all users upgrade to resolve this security
problem. A complete list of new features and bugs that have been fixed is
available in the ChangeLog file or changelog.php included with this release.
Notable changes since 4.7.7: * Fixed error handling with PHP 7.2 * Fixed
resetting default setting values * Fixed fallback value for collation
connection Additionally, there have been continuous improvements to many of the
translations. If you don't see your language or find a problem, you can
contribute too; see
https://www.phpmyadmin.net/translate/ for details.
--------------------------------------------------------------------------------
================================================================================
phpMyAdmin-4.7.8-1.fc27 (FEDORA-2018-a1650ed14f)
Handle the administration of MySQL over the World Wide Web
--------------------------------------------------------------------------------
Update Information:
From upstream announcement: **Security fix: phpMyAdmin 4.7.8 is released**
Welcome to phpMyAdmin 4.7.8, a security releaes also containing regular
maintenance bug fixes. The security fix relates to a self-XSS vulnerability in
the central columns feature that is reported as PMASA-2018-1
https://www.phpmyadmin.net/security/PMASA-2018-1/. Thanks to Mayur Udiniya
https://www.linkedin.com/in/mayur-udiniya-09247b129/ for finding and responsibly
disclosing this flaw. We recommend all users upgrade to resolve this security
problem. A complete list of new features and bugs that have been fixed is
available in the ChangeLog file or changelog.php included with this release.
Notable changes since 4.7.7: * Fixed error handling with PHP 7.2 * Fixed
resetting default setting values * Fixed fallback value for collation
connection Additionally, there have been continuous improvements to many of the
translations. If you don't see your language or find a problem, you can
contribute too; see
https://www.phpmyadmin.net/translate/ for details.
--------------------------------------------------------------------------------
================================================================================
pngcrush-1.8.13-1.fc27 (FEDORA-2018-efc0271d77)
Optimizer for PNG (Portable Network Graphics) files
--------------------------------------------------------------------------------
Update Information:
Update bugfix and enhancement release. This release reduces default verbosity
of the tool, increase to old levels by adding `-v` on the command line.
--------------------------------------------------------------------------------
================================================================================
python-certbot-dns-dnsimple-0.21.1-1.fc27 (FEDORA-2018-656ca83273)
DNSimple DNS Authenticator plugin for Certbot
--------------------------------------------------------------------------------
Update Information:
Initial build
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1547122 - Review Request: python-certbot-dns-dnsimple - DNSimple DNS
Authenticator plugin for Certbot
https://bugzilla.redhat.com/show_bug.cgi?id=1547122
--------------------------------------------------------------------------------
================================================================================
python-certbot-dns-dnsmadeeasy-0.21.1-1.fc27 (FEDORA-2018-9507cac181)
DNS Made Easy DNS Authenticator plugin for Certbot
--------------------------------------------------------------------------------
Update Information:
Initial build
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1546851 - Review Request: python-certbot-dns-dnsmadeeasy - DNS Made Easy DNS
Authenticator plugin for Certbot
https://bugzilla.redhat.com/show_bug.cgi?id=1546851
--------------------------------------------------------------------------------
================================================================================
python-certbot-dns-nsone-0.21.1-1.fc27 (FEDORA-2018-5b4536078b)
NS1 DNS Authenticator plugin for Certbot
--------------------------------------------------------------------------------
Update Information:
Initial build
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1547135 - Review Request: python-certbot-dns-nsone - NS1 DNS Authenticator
plugin for Certbot
https://bugzilla.redhat.com/show_bug.cgi?id=1547135
--------------------------------------------------------------------------------
================================================================================
python-ipdb-0.11-1.fc27 (FEDORA-2018-a53c6e40fa)
IPython enabled Python debugger
--------------------------------------------------------------------------------
Update Information:
Update to [
0.11](https://github.com/gotcha/ipdb/blob/0.1/HISTORY.txt).
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1546586 - python-ipdb-0.11 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1546586
--------------------------------------------------------------------------------
================================================================================
python-mmtf-1.0.10-1.fc27 (FEDORA-2018-38cd31cc06)
A decoding library for the macromolecular transmission format (MMTF)
--------------------------------------------------------------------------------
Update Information:
Fixes open file handles leak.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1531012 - python-mmtf-1.0.10 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1531012
--------------------------------------------------------------------------------
================================================================================
python-wikitcms-2.3.0-1.fc27 (FEDORA-2018-65fb83014f)
Fedora QA wiki test management Python library
--------------------------------------------------------------------------------
Update Information:
This update provides a new release of python-wikitcms. The main changes in this
release relate to improving handling of the tricky corner cases around event
creation for new candidate composes.
--------------------------------------------------------------------------------
================================================================================
qt5-qtspeech-5.9.4-3.fc27 (FEDORA-2018-df2dba5a2b)
Qt5 - Speech component
--------------------------------------------------------------------------------
Update Information:
Provide a -speechd subpackage for speech-dispatcher plugin, which can be
removed.
--------------------------------------------------------------------------------
================================================================================
redhat-rpm-config-74-1.fc27 (FEDORA-2018-ad05c5a71e)
Red Hat specific rpm configuration files
--------------------------------------------------------------------------------
Update Information:
* Backport `%set_build_flags` * Backport macroizing build root policies * %end
ldconfig scriptlets immediately (to not pull comments in spec into scriptlet)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1546643 - backport %set_build_flags from F28
https://bugzilla.redhat.com/show_bug.cgi?id=1546643
--------------------------------------------------------------------------------
================================================================================
rtpproxy-2.0.0-10.fc27 (FEDORA-2018-977a84a5e7)
A symmetric RTP proxy
--------------------------------------------------------------------------------
Update Information:
* Enable g.729 support
--------------------------------------------------------------------------------
================================================================================
rubygem-gtk2-3.2.1-5.fc27 (FEDORA-2018-d5a58a025f)
Ruby binding of GTK+-2.x
--------------------------------------------------------------------------------
Update Information:
Fix for possible sort issue in ruby gtk2
--------------------------------------------------------------------------------
================================================================================
rust-1.24.0-2.fc27 (FEDORA-2018-dd9a7d3cf9)
The Rust Programming Language
--------------------------------------------------------------------------------
Update Information:
New version of Rust -- see the release notes for [1.24](https://blog.rust-
lang.org/2018/02/15/Rust-1.24.html).
--------------------------------------------------------------------------------
================================================================================
sssd-1.16.0-8.fc27 (FEDORA-2018-a6b436d186)
System Security Services Daemon
--------------------------------------------------------------------------------
Update Information:
Resolves: rhbz#1538643 - SSSD crashes when retrieving a Desktop Profile with no
specific host/hostgroup set Resolves: upstream#3621 - FleetCommander
integration must not require capability DAC_OVERRIDE
--------------------------------------------------------------------------------
================================================================================
systemd-234-10.git5f8984e.fc27 (FEDORA-2018-eea8cb8b0e)
System and Service Manager
--------------------------------------------------------------------------------
Update Information:
- a few memory leaks and unitialized memory accesses - systemd-networkd Remote=
must be a unicast address (upstream issue #8088) - add /run/systemd/user to the
unit lookup path (upstream issue #8119) - various fixes for journalctl leaking
file descriptors on very quick file rotation (upstream issues #7998, #8198) -
systemd-resolved aborting on malformed packets (upstream issue #7888, oss-fuzz
issue #5465) No need to reboot or logout.
--------------------------------------------------------------------------------
================================================================================
testcloud-0.1.16-1.fc27 (FEDORA-2018-7f635af225)
Tool for running cloud images locally
--------------------------------------------------------------------------------
Update Information:
Retry to stop instance when host is busy
--------------------------------------------------------------------------------
================================================================================
urw-base35-fonts-20170801-5.fc27 (FEDORA-2018-a7c7e608d3)
Core Font Set containing 35 freely distributable fonts from (URW)++
--------------------------------------------------------------------------------
Update Information:
Small update to enable *(URW)++* fonts to be visible in the *Gnome Software*
center.
--------------------------------------------------------------------------------
================================================================================
vim-8.0.1527-1.fc27 (FEDORA-2018-0c35631ec6)
The VIM editor
--------------------------------------------------------------------------------
Update Information:
The newest upstream commit
--------------------------------------------------------------------------------
================================================================================
wesnoth-1.13.11-1.fc27 (FEDORA-2018-4ee56ee710)
Turn-based strategy game with a fantasy theme
--------------------------------------------------------------------------------
Update Information:
1.13.11
--------------------------------------------------------------------------------
================================================================================
wine-3.2-2.fc27 (FEDORA-2018-1d93f407cb)
A compatibility layer for windows applications
--------------------------------------------------------------------------------
Update Information:
- Separate implementation of USER controls for ComCtl32 v6. - Multisample
texture support in Direct3D. - Support for HID gamepads. - More event
support in MSHTML. - Obsolete DOS code removed. - Various bug fixes.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1547137 - Incorrect obsoletes in stable Fedora
https://bugzilla.redhat.com/show_bug.cgi?id=1547137
--------------------------------------------------------------------------------
================================================================================
yamllint-1.11.0-1.fc27 (FEDORA-2018-85db2a6580)
A linter for YAML files
--------------------------------------------------------------------------------
Update Information:
Update to latest upstream version
--------------------------------------------------------------------------------