The following Fedora 26 Security updates need testing:
Age URL
194
https://bodhi.fedoraproject.org/updates/FEDORA-2017-ccb5c8d1e7
docker-distribution-2.6.2-1.git48294d9.fc26
86
https://bodhi.fedoraproject.org/updates/FEDORA-2017-3915878e18 ldns-1.7.0-4.fc26
40
https://bodhi.fedoraproject.org/updates/FEDORA-2017-d75a88f263
monit-5.25.1-1.fc26
32
https://bodhi.fedoraproject.org/updates/FEDORA-2018-ccef1ced42 gimp-2.8.22-3.fc26
25
https://bodhi.fedoraproject.org/updates/FEDORA-2018-66b885ae3c
keycloak-httpd-client-install-0.8-1.fc26
24
https://bodhi.fedoraproject.org/updates/FEDORA-2018-0db545e976 ruby-2.4.3-86.fc26
13
https://bodhi.fedoraproject.org/updates/FEDORA-2018-b166805347
transmission-2.92-12.fc26
13
https://bodhi.fedoraproject.org/updates/FEDORA-2018-4f8a78a5ef
squid-4.0.23-1.fc26
12
https://bodhi.fedoraproject.org/updates/FEDORA-2018-f73abc5680
knot-resolver-1.5.3-1.fc26
12
https://bodhi.fedoraproject.org/updates/FEDORA-2018-a6b59d8f78
libxml2-2.9.7-1.fc26
7
https://bodhi.fedoraproject.org/updates/FEDORA-2018-d4746c772f
mujs-0-11.20180129git25821e6.fc26
6
https://bodhi.fedoraproject.org/updates/FEDORA-2018-c7c6160e65
thunderbird-52.6.0-1.fc26
5
https://bodhi.fedoraproject.org/updates/FEDORA-2018-48d385a6fd
apache-commons-email-1.5-1.fc26
4
https://bodhi.fedoraproject.org/updates/FEDORA-2018-318b5d74bd
tomcat-native-1.2.16-1.fc26
4
https://bodhi.fedoraproject.org/updates/FEDORA-2018-790e7e720d
sox-14.4.2.0-16.fc26
3
https://bodhi.fedoraproject.org/updates/FEDORA-2018-ac2e276c76
tomcat-8.0.49-1.fc26
The following Fedora 26 Critical Path updates have yet to be approved:
Age URL
32
https://bodhi.fedoraproject.org/updates/FEDORA-2018-c2eed6bd99
iproute-4.14.1-4.fc26
13
https://bodhi.fedoraproject.org/updates/FEDORA-2018-f200f504b3 dtc-1.4.6-1.fc26
12
https://bodhi.fedoraproject.org/updates/FEDORA-2018-a6b59d8f78
libxml2-2.9.7-1.fc26
10
https://bodhi.fedoraproject.org/updates/FEDORA-2018-49cd53ff36
libguestfs-1.36.13-1.fc26
10
https://bodhi.fedoraproject.org/updates/FEDORA-2018-be2cb3e65a xen-4.8.3-2.fc26
6
https://bodhi.fedoraproject.org/updates/FEDORA-2018-c7c6160e65
thunderbird-52.6.0-1.fc26
6
https://bodhi.fedoraproject.org/updates/FEDORA-2018-0f5d497bce krb5-1.15.2-5.fc26
1
https://bodhi.fedoraproject.org/updates/FEDORA-2018-40497e6b72
analitza-16.12.3-2.fc26 calibre-3.12.0-2.fc26 dnscrypt-proxy-gui-1.11.11-2.fc26
gammaray-2.8.1-3.fc26 kf5-akonadi-server-17.12.1-2.fc26
kf5-frameworkintegration-5.42.0-2.fc26 kf5-kdeclarative-5.42.0-2.fc26
kf5-kwayland-5.42.0-2.fc26 kwin-5.10.5-3.fc26 libfm-qt-0.11.2-8.fc26 libqtxdg-2.0.0-8.fc26
lxqt-qtplugin-0.11.1-8.fc26 mscore-2.1.0-8.fc26 plasma-integration-5.10.5-3.fc26
postbooks-4.10.1-16.fc26 pyotherside-1.5.3-3.fc26 python-qt5-5.9.1-2.fc26
pythonqt-3.2-5.fc26 qgnomeplatform-0.3-6.fc26 qstardict-1.2-7.fc26
qt-creator-4.5.0-2.fc26.1 qt5-5.9.4-2.fc26 qt5-qt3d-5.9.4-1.fc26 qt5-qtbase-5.9.4-2.fc26
qt5-qtcanvas3d-5.9.4-1.fc26 qt5-qtcharts-5.9.4-1.fc26 qt5-qtconnectivity-5.9.4-1.fc26
qt5-qtdatavis3d-5.9.4-1.fc26 qt5-qtdeclarative-5.9.4-1.fc26 qt5-qtdoc-5.9.4-1.fc26
qt5-qtgamepad-5.9.4-1.fc26 qt5-qtgraphicaleffects-5.9.4-1.fc26
qt5-qtimageformats-5.9.4-1.fc26 qt5-qtlocation-5.9.4-1.fc26 qt5-qtmultimedia-5.9.4-1.fc
26 qt5-qtquickcontrols-5.9.4-1.fc26 qt5-qtquickcontrols2-5.9.4-1.fc26
qt5-qtremoteobjects-5.9.4-1.fc26 qt5-qtscript-5.9.4-1.fc26 qt5-qtscxml-5.9.4-1.fc26
qt5-qtsensors-5.9.4-1.fc26 qt5-qtserialport-5.9.4-1.fc26 qt5-qtspeech-5.9.4-2.fc26
qt5-qtstyleplugins-5.0.0-22.fc26 qt5-qtsvg-5.9.4-1.fc26 qt5-qttools-5.9.4-1.fc26
qt5-qttranslations-5.9.4-1.fc26 qt5-qtvirtualkeyboard-5.9.4-1.fc26
qt5-qtwayland-5.9.4-1.fc26 qt5-qtwebengine-5.10.0-2.fc26
qt5-qtwebkit-5.212.0-0.15.alpha2.fc26 qt5-qtwebsockets-5.9.4-1.fc26
qt5-qtwebview-5.9.4-1.fc26 qt5-qtx11extras-5.9.4-1.fc26 qt5-qtxmlpatterns-5.9.4-1.fc26
qt5ct-0.34-2.fc26 skrooge-2.10.5-2.fc26 ugene-1.28.1-2.fc26 yarock-1.3.0-2.fc26
0
https://bodhi.fedoraproject.org/updates/FEDORA-2018-8879f542a7
hwdata-0.309-1.fc26
0
https://bodhi.fedoraproject.org/updates/FEDORA-2018-f0ad9c0f9c
pungi-4.1.22-2.fc26
The following builds have been pushed to Fedora 26 updates-testing
adapta-gtk-theme-3.93.0.110-1.fc26
buildah-0.11-2.git6bad262.fc26
clamav-0.99.3-4.fc26
clover2-3.5.6-2.20180202git93d24a6.fc26
crypto-utils-2.5-1.fc26
ipvsadm-1.29-3.fc26
ixpdimm_sw-01.00.00.2422-1.fc26
jhead-3.00-7.fc26
libinput-1.9.4-2.fc26
magic-8.1.199-1.fc26
pysvn-1.9.5-1.fc26
xrootd-4.8.1-1.fc26
Details about builds:
================================================================================
adapta-gtk-theme-3.93.0.110-1.fc26 (FEDORA-2018-ea5a7ed657)
An adaptive Gtk+ theme based on Material Design Guidelines
--------------------------------------------------------------------------------
Update Information:
- New upstream release
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1539334 - adapta-gtk-theme-3.93.0.90 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1539334
[ 2 ] Bug #1537086 - adapta-gtk-theme-3.93.0.86 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1537086
[ 3 ] Bug #1540388 - adapta-gtk-theme-3.93.0.103 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1540388
[ 4 ] Bug #1542020 - adapta-gtk-theme-3.93.0.110 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1542020
--------------------------------------------------------------------------------
================================================================================
buildah-0.11-2.git6bad262.fc26 (FEDORA-2018-ada8572632)
A command line tool used for creating OCI Images
--------------------------------------------------------------------------------
Update Information:
Resolves: upstream gh#432
--------------------------------------------------------------------------------
================================================================================
clamav-0.99.3-4.fc26 (FEDORA-2018-231c059bb4)
End-user tools for the Clam Antivirus scanner
--------------------------------------------------------------------------------
Update Information:
- Remove TCP_wrappers (BR _includedir/tcpd.h) due:
https://fedoraproject.org/wiki/Changes/Deprecate_TCP_wrappers - Fix and organize
systemd scriptlets, clamd@.service missed systemd_preun_macro and had a wrong
systemd_postun_with_restart - Remove triggerin macros that aren't need it
anymore - Fix scriplet - Organize startup scriptlets - Exclude one file listed
twice
--------------------------------------------------------------------------------
================================================================================
clover2-3.5.6-2.20180202git93d24a6.fc26 (FEDORA-2018-184260832d)
Yet another compiler language
--------------------------------------------------------------------------------
Update Information:
This is a new package.
--------------------------------------------------------------------------------
================================================================================
crypto-utils-2.5-1.fc26 (FEDORA-2018-650a6bd4fc)
SSL certificate and key management utilities
--------------------------------------------------------------------------------
Update Information:
In this update, the `certwatch --keydbprefix` argument was renamed from
`--keydbprexix`, and various spelling and grammatical fixes are corrected.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1431612 - crypto-utils-2.4.1-65.fc27 FTBFS: format not a string literal and
no format arguments [-Werror=format-security]
https://bugzilla.redhat.com/show_bug.cgi?id=1431612
--------------------------------------------------------------------------------
================================================================================
ipvsadm-1.29-3.fc26 (FEDORA-2018-ecbad1f5b3)
Utility to administer the Linux Virtual Server
--------------------------------------------------------------------------------
Update Information:
Catch the original errno from netlink answer in order to report correct error
messages.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1526813 - ipsvadm reports wrong error messages
https://bugzilla.redhat.com/show_bug.cgi?id=1526813
--------------------------------------------------------------------------------
================================================================================
ixpdimm_sw-01.00.00.2422-1.fc26 (FEDORA-2018-babf9e06b6)
API for development of IXPDIMM management utilities
--------------------------------------------------------------------------------
Update Information:
Release v01.00.00.2422
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1540768 - ixpdimm_sw-01.00.00.2420 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1540768
--------------------------------------------------------------------------------
================================================================================
jhead-3.00-7.fc26 (FEDORA-2018-fff755ee8e)
Tool for displaying EXIF data embedded in JPEG images
--------------------------------------------------------------------------------
Update Information:
Added Debian patch to fix CVE-2018-6612 (#1542049)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1542049 - CVE-2018-6612 jhead: Integer underflow in the process_EXIF
function
https://bugzilla.redhat.com/show_bug.cgi?id=1542049
--------------------------------------------------------------------------------
================================================================================
libinput-1.9.4-2.fc26 (FEDORA-2018-162d48a296)
Input device library
--------------------------------------------------------------------------------
Update Information:
Fix crasher on first event from tablets not supported by libwacom ----
libinput 1.9.4, brings a few bug fixes to the table
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1535755 - [abrt] xorg-x11-server-Xorg: tablet_update_artpen_rotation(): Xorg
killed by SIGSEGV
https://bugzilla.redhat.com/show_bug.cgi?id=1535755
--------------------------------------------------------------------------------
================================================================================
magic-8.1.199-1.fc26 (FEDORA-2018-43c2da2591)
A very capable VLSI layout tool
--------------------------------------------------------------------------------
Update Information:
New version 8.1.199 is released.
--------------------------------------------------------------------------------
================================================================================
pysvn-1.9.5-1.fc26 (FEDORA-2018-612cb614d2)
Pythonic style bindings for Subversion
--------------------------------------------------------------------------------
Update Information:
Update PySVN to 1.9.5
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1541765 - pysvn is out of date and missing important fixes
https://bugzilla.redhat.com/show_bug.cgi?id=1541765
--------------------------------------------------------------------------------
================================================================================
xrootd-4.8.1-1.fc26 (FEDORA-2018-dad1d4a55e)
Extended ROOT file server
--------------------------------------------------------------------------------
Update Information:
## Version 4.8.1 **Major bug fixes** * **[XrdCl]** Try all IP addresses in
case posix connect fails. * **[XrdCl]** Fix checksuming in xrdcp for local
files. * **[Py]** Make sure FileSystem::Copy returns a tuple, fixes #633. *
**[Py]** Make sure empty strings are not converted to None. * **[SSI]** Unbind
the request prior to teardown. * **[SSI]** Avoid SEGV when generating a
request for a new TCP connection. * **[SSI]** Fix race
condition that can cause a SEGV during parallel execution. *
**[SSI]** Allow zero length requests to be passed to servers.
Fixes #640 * **[SSI]** Make sure to avoid object refs after Finished() is
called to avoid SEGV. **Minor bug fixes** * **[XrdPosix]** Fix
various memory related issues. * **[XrdCrypto]** Fix various small issues. *
**[Server]** Fix overlapping string copy. Fixes #643 * **[XrdCl]** Provide
compatibility between root://localfile and file://.
--------------------------------------------------------------------------------