The following Fedora 21 Security updates need testing:
Age URL
279
https://bodhi.fedoraproject.org/updates/FEDORA-2015-1467
openstack-glance-2014.1.3-4.fc21
159
https://bodhi.fedoraproject.org/updates/FEDORA-2015-9141
ceph-deploy-1.5.25-1.fc21
148
https://bodhi.fedoraproject.org/updates/FEDORA-2015-9744 squid-3.4.13-1.fc21
92
https://bodhi.fedoraproject.org/updates/FEDORA-2015-12773
python-kdcproxy-0.3.2-1.fc21
75
https://bodhi.fedoraproject.org/updates/FEDORA-2015-1fed73bab8
conntrack-tools-1.4.2-9.fc21
71
https://bodhi.fedoraproject.org/updates/FEDORA-2015-14179 libreswan-3.15-1.fc21
71
https://bodhi.fedoraproject.org/updates/FEDORA-2015-14200 sblim-sfcb-1.4.8-5.fc21
63
https://bodhi.fedoraproject.org/updates/FEDORA-2015-14852 libwmf-0.2.8.4-46.fc21
46
https://bodhi.fedoraproject.org/updates/FEDORA-2015-16238 nagios-4.0.8-1.fc21
32
https://bodhi.fedoraproject.org/updates/FEDORA-2015-af1b712fce
python-pymongo-3.0.3-1.fc21
32
https://bodhi.fedoraproject.org/updates/FEDORA-2015-d292a98f01
cyrus-imapd-2.4.18-1.fc21
32
https://bodhi.fedoraproject.org/updates/FEDORA-2015-048e95ac1d
thunderbird-38.3.0-1.fc21
27
https://bodhi.fedoraproject.org/updates/FEDORA-2015-d683ebb786
postgresql-9.3.10-1.fc21
25
https://bodhi.fedoraproject.org/updates/FEDORA-2015-1f9e79df21
audiofile-0.3.6-9.fc21
21
https://bodhi.fedoraproject.org/updates/FEDORA-2015-15290 ipsilon-1.1.1-2.fc21
19
https://bodhi.fedoraproject.org/updates/FEDORA-2015-6542ab6d3a
libreport-2.3.0-10.fc21 abrt-2.3.0-12.fc21
8
https://bodhi.fedoraproject.org/updates/FEDORA-2015-ebfe46536f lxc-1.0.7-4.fc21
8
https://bodhi.fedoraproject.org/updates/FEDORA-2015-f1e18131bc
php-ZendFramework-1.12.16-1.fc21
8
https://bodhi.fedoraproject.org/updates/FEDORA-2015-5c06260c4b
php-udan11-sql-parser-3.0.4-1.fc21 phpMyAdmin-4.5.1-1.fc21
3
https://bodhi.fedoraproject.org/updates/FEDORA-2015-47cf97f125 git-2.1.0-6.fc21
3
https://bodhi.fedoraproject.org/updates/FEDORA-2015-0253d1f070
kernel-4.1.12-101.fc21
3
https://bodhi.fedoraproject.org/updates/FEDORA-2015-780302029a
dovecot-2.2.19-1.fc21
3
https://bodhi.fedoraproject.org/updates/FEDORA-2015-fed35dffd7
perl-HTML-Scrubber-0.15-1.fc21
3
https://bodhi.fedoraproject.org/updates/FEDORA-2015-242be2c240 xen-4.4.3-7.fc21
3
https://bodhi.fedoraproject.org/updates/FEDORA-2015-69e6c3607f
miniupnpc-1.9-6.fc21
3
https://bodhi.fedoraproject.org/updates/FEDORA-2015-d0e48b2eb1
icecat-38.3.0-10.fc21
2
https://bodhi.fedoraproject.org/updates/FEDORA-2015-cfea96144a
wpa_supplicant-2.0-16.fc21
2
https://bodhi.fedoraproject.org/updates/FEDORA-2015-fb3360fc0a firefox-42.0-2.fc21
nspr-4.10.10-1.fc21 nss-3.20.1-1.0.fc21 nss-softokn-3.20.1-1.0.fc21
nss-util-3.20.1-1.0.fc21
2
https://bodhi.fedoraproject.org/updates/FEDORA-2015-240dd21cb6
perl-IPTables-Parse-1.5-2.fc21
1
https://bodhi.fedoraproject.org/updates/FEDORA-2015-19dc86f49b metis-5.1.0-7.fc21
0
https://bodhi.fedoraproject.org/updates/FEDORA-2015-bf4adb12aa
drupal7-jquery_update-2.7-1.fc21
0
https://bodhi.fedoraproject.org/updates/FEDORA-2015-bd6d51590e
wildmagic5-5.13-12.fc21
0
https://bodhi.fedoraproject.org/updates/FEDORA-2015-136a34204f MUMPS-5.0.1-4.fc21
0
https://bodhi.fedoraproject.org/updates/FEDORA-2015-3471dfb5b4
snappy-player-1.0-7.20151010git166a98.fc21
0
https://bodhi.fedoraproject.org/updates/FEDORA-2015-a117082cd2
owncloud-8.0.9-1.fc21
0
https://bodhi.fedoraproject.org/updates/FEDORA-2015-0080239274 sudo-1.8.15-1.fc21
0
https://bodhi.fedoraproject.org/updates/FEDORA-2015-446074b60f
m2crypto-0.22.5-2.fc21
The following Fedora 21 Critical Path updates have yet to be approved:
Age URL
97
https://bodhi.fedoraproject.org/updates/FEDORA-2015-12402
gstreamer1-plugins-good-1.4.5-3.fc21
85
https://bodhi.fedoraproject.org/updates/FEDORA-2015-13239 yum-3.4.3-154.fc21
75
https://bodhi.fedoraproject.org/updates/FEDORA-2015-13877 libteam-1.18-1.fc21
75
https://bodhi.fedoraproject.org/updates/FEDORA-2015-13805 tigervnc-1.5.0-2.fc21
75
https://bodhi.fedoraproject.org/updates/FEDORA-2015-90d3a9ce48
dracut-038-40.git20150819.fc21
75
https://bodhi.fedoraproject.org/updates/FEDORA-2015-37e78bb9af
btrfs-progs-4.1.2-1.fc21
32
https://bodhi.fedoraproject.org/updates/FEDORA-2015-048e95ac1d
thunderbird-38.3.0-1.fc21
32
https://bodhi.fedoraproject.org/updates/FEDORA-2015-ff9eaa3e01
device-mapper-multipath-0.4.9-68.fc21.6
29
https://bodhi.fedoraproject.org/updates/FEDORA-2015-9e6a99b895
gnome-terminal-3.14.3-2.fc21
20
https://bodhi.fedoraproject.org/updates/FEDORA-2015-f01da0e4b8
spatialite-tools-4.2.0-15.fc21 sqlite-3.9.0-1.fc21
19
https://bodhi.fedoraproject.org/updates/FEDORA-2015-6542ab6d3a
libreport-2.3.0-10.fc21 abrt-2.3.0-12.fc21
10
https://bodhi.fedoraproject.org/updates/FEDORA-2015-311e897518
dnsmasq-2.75-2.fc21
10
https://bodhi.fedoraproject.org/updates/FEDORA-2015-830a68baaa
createrepo_c-0.9.1-1.fc21
8
https://bodhi.fedoraproject.org/updates/FEDORA-2015-272674923f
perl-Thread-Queue-3.07-1.fc21
8
https://bodhi.fedoraproject.org/updates/FEDORA-2015-06f119f03c
hwdata-0.283-1.fc21
3
https://bodhi.fedoraproject.org/updates/FEDORA-2015-2a2f9442ac
mingw-libwebp-0.4.4-1.fc21 libwebp-0.4.4-1.fc21
3
https://bodhi.fedoraproject.org/updates/FEDORA-2015-38c68e7875
linux-firmware-20151030-58.git66d3d8d7.fc21
3
https://bodhi.fedoraproject.org/updates/FEDORA-2015-607cc1b079 gdisk-1.0.1-1.fc21
3
https://bodhi.fedoraproject.org/updates/FEDORA-2015-0253d1f070
kernel-4.1.12-101.fc21
2
https://bodhi.fedoraproject.org/updates/FEDORA-2015-fb3360fc0a firefox-42.0-2.fc21
nspr-4.10.10-1.fc21 nss-3.20.1-1.0.fc21 nss-softokn-3.20.1-1.0.fc21
nss-util-3.20.1-1.0.fc21
2
https://bodhi.fedoraproject.org/updates/FEDORA-2015-cfea96144a
wpa_supplicant-2.0-16.fc21
2
https://bodhi.fedoraproject.org/updates/FEDORA-2015-cd8384936c
perl-Getopt-Long-2.48-1.fc21
1
https://bodhi.fedoraproject.org/updates/FEDORA-2015-315b5f87f0 vim-7.4.909-1.fc21
1
https://bodhi.fedoraproject.org/updates/FEDORA-2015-64068a1f08
crda-3.18_2015.10.22-1.fc21
0
https://bodhi.fedoraproject.org/updates/FEDORA-2015-0080239274 sudo-1.8.15-1.fc21
The following builds have been pushed to Fedora 21 updates-testing
MUMPS-5.0.1-4.fc21
abi-dumper-0.99.12-1.fc21.1
drupal7-jquery_update-2.7-1.fc21
gajim-0.16.4-3.fc21
layla-fonts-1.6-2.fc21
m2crypto-0.22.5-2.fc21
owncloud-8.0.9-1.fc21
php-composer-installers-1.0.22-1.fc21
php-guzzlehttp-psr7-1.2.1-1.fc21
python-nbxmpp-0.5.3-1.fc21
rubygem-sequel-4.27.0-1.fc21
snappy-player-1.0-7.20151010git166a98.fc21
sudo-1.8.15-1.fc21
wildmagic5-5.13-12.fc21
Details about builds:
================================================================================
MUMPS-5.0.1-4.fc21 (FEDORA-2015-136a34204f)
A MUltifrontal Massively Parallel sparse direct Solver
--------------------------------------------------------------------------------
Update Information:
MUMPS-5.0.1-4.fc23 - Hardened builds on <F23 MUMPS-5.0.1-4.fc21 - Hardened
builds on <F23 MUMPS-5.0.1-4.fc22 - Hardened builds on <F23
MUMPS-5.0.1-4.el6 - Hardened builds on <F23 MUMPS-5.0.1-4.el7 - Hardened
builds on <F23
--------------------------------------------------------------------------------
================================================================================
abi-dumper-0.99.12-1.fc21.1 (FEDORA-2015-33c56a8825)
Tool to dump ABI of an ELF object containing DWARF debug info
--------------------------------------------------------------------------------
Update Information:
abi-dumper-0.99.12-1.fc21.1 - Update to latest upstream release. ---- -
Fixed reading of GNU_IFUNC and TLS symbols. Fixed detection of symbol versions.
- Fixed detection of symbol headers. Fixed reading of debug_loc section.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1272801 - abi-dumper-0.99.11 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1272801
--------------------------------------------------------------------------------
================================================================================
drupal7-jquery_update-2.7-1.fc21 (FEDORA-2015-bf4adb12aa)
Upgrades the version of jQuery in Drupal core to a newer version of jQuery
--------------------------------------------------------------------------------
Update Information:
See [jQuery Update - Less Critical - Open Redirect - SA-
CONTRIB-2015-158](https://www.drupal.org/node/2598426)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1273670 - drupal7-jquery_update-2.7 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1273670
--------------------------------------------------------------------------------
================================================================================
gajim-0.16.4-3.fc21 (FEDORA-2015-699b50f601)
Jabber client written in PyGTK
--------------------------------------------------------------------------------
Update Information:
Gajim 0.16.4 is an upstream bugfix release. To see the changelog and the list of
fixed bugs, visit
http://gajim.org/.
--------------------------------------------------------------------------------
================================================================================
layla-fonts-1.6-2.fc21 (FEDORA-2015-148484b583)
A collection of traditional Arabic fonts
--------------------------------------------------------------------------------
Update Information:
Added Digital font
--------------------------------------------------------------------------------
================================================================================
m2crypto-0.22.5-2.fc21 (FEDORA-2015-446074b60f)
Support for using OpenSSL in python scripts
--------------------------------------------------------------------------------
Update Information:
Fixes a buffer overflow in EVP.pbkdf2.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1271165 - m2crypto: pbkdf2 function crashes when given 74 byte result as
argument
https://bugzilla.redhat.com/show_bug.cgi?id=1271165
--------------------------------------------------------------------------------
================================================================================
owncloud-8.0.9-1.fc21 (FEDORA-2015-a117082cd2)
Private file sync and share server
--------------------------------------------------------------------------------
Update Information:
This update provides the latest upstream release of ownCloud in the current
minor series - 8.0.9 for all releases but EPEL 6, 7.0.11 for EPEL 6. These
releases come with unspecified "security improvements", so updating quickly is
recommended. As usual, a minor update should apply smoothly, but we advise you
back up user data, configuration, and database contents before applying the
update.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1278121 - owncloud: Unspecified security issues fixed in owncloud 7.0.11,
8.0.9 and 8.1.4
https://bugzilla.redhat.com/show_bug.cgi?id=1278121
--------------------------------------------------------------------------------
================================================================================
php-composer-installers-1.0.22-1.fc21 (FEDORA-2015-af2c5ec5ea)
A multi-framework Composer library installer
--------------------------------------------------------------------------------
Update Information:
1.0.21 to 1.0.22 diff:
https://github.com/composer/installers/compare/v1.0.21...v1.0.22
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1276816 - php-composer-installers-v1.0.22 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1276816
--------------------------------------------------------------------------------
================================================================================
php-guzzlehttp-psr7-1.2.1-1.fc21 (FEDORA-2015-1046883fcf)
PSR-7 message implementation
--------------------------------------------------------------------------------
Update Information:
### 1.2.1 - 2015-11-02 * Now supporting negative offsets when seeking to
SEEK_END.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1277467 - php-guzzlehttp-psr7-1.2.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1277467
--------------------------------------------------------------------------------
================================================================================
python-nbxmpp-0.5.3-1.fc21 (FEDORA-2015-699b50f601)
Python library for non-blocking use of Jabber/XMPP
--------------------------------------------------------------------------------
Update Information:
Gajim 0.16.4 is an upstream bugfix release. To see the changelog and the list of
fixed bugs, visit
http://gajim.org/.
--------------------------------------------------------------------------------
================================================================================
rubygem-sequel-4.27.0-1.fc21 (FEDORA-2015-6783f0076b)
The Database Toolkit for Ruby
--------------------------------------------------------------------------------
Update Information:
Update to sequel 4.27.0
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1238506 - rubygem-sequel-4.28.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1238506
--------------------------------------------------------------------------------
================================================================================
snappy-player-1.0-7.20151010git166a98.fc21 (FEDORA-2015-3471dfb5b4)
A Gnome media player
--------------------------------------------------------------------------------
Update Information:
snappy-player-1.0-7.20151010git166a98.fc23 - Update to commit #166a98 -
Hardened build activated on <F23 snappy-player-1.0-7.20151010git166a98.fc21 -
Update to commit #166a98 - Hardened build activated on <F23 snappy-
player-1.0-7.20151010git166a98.fc22 - Update to commit #166a98 - Hardened build
activated on <F23
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1242179 - [abrt] snappy-player: __pthread_mutex_lock(): snappy killed by
SIGSEGV
https://bugzilla.redhat.com/show_bug.cgi?id=1242179
--------------------------------------------------------------------------------
================================================================================
sudo-1.8.15-1.fc21 (FEDORA-2015-0080239274)
Allows restricted root access for specified users
--------------------------------------------------------------------------------
Update Information:
sudo-1.8.15-1.fc21 - update to 1.8.15 - fixes CVE-2015-5602
sudo-1.8.15-1.fc22 - update to 1.8.15 - fixes CVE-2015-5602
sudo-1.8.15-1.fc23 - update to 1.8.15 - fixes CVE-2015-5602
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1277426 - CVE-2015-5602 sudo: Unauthorized privilege escalation in sudoedit
https://bugzilla.redhat.com/show_bug.cgi?id=1277426
--------------------------------------------------------------------------------
================================================================================
wildmagic5-5.13-12.fc21 (FEDORA-2015-bd6d51590e)
Wild Magic libraries
--------------------------------------------------------------------------------
Update Information:
wildmagic5-5.13-12.fc23 - Rebuild with -fPIC - Hardened builds on <F23
wildmagic5-5.13-12.fc21 - Rebuild with -fPIC - Hardened builds on <F23
wildmagic5-5.13-12.fc22 - Rebuild with -fPIC - Hardened builds on <F23
wildmagic5-5.13-12.el6 - Rebuild with -fPIC - Hardened builds on <F23
wildmagic5-5.13-12.el7 - Rebuild with -fPIC - Hardened builds on <F23
--------------------------------------------------------------------------------