The following Fedora 25 Security updates need testing:
Age URL
137
https://bodhi.fedoraproject.org/updates/FEDORA-2016-9b3ed5f170
chicken-4.11.0-3.fc25
89
https://bodhi.fedoraproject.org/updates/FEDORA-2016-6dd3bc37c3
compat-guile18-1.8.8-14.fc25
20
https://bodhi.fedoraproject.org/updates/FEDORA-2016-c614315d29
squid-4.0.17-1.fc25
13
https://bodhi.fedoraproject.org/updates/FEDORA-2016-d79ba708cb exim-4.87.1-1.fc25
9
https://bodhi.fedoraproject.org/updates/FEDORA-2016-87dc28b1a0
w3m-0.5.3-27.git20161120.fc25
6
https://bodhi.fedoraproject.org/updates/FEDORA-2017-f0d976df9e
mingw-flac-1.3.2-1.fc25
5
https://bodhi.fedoraproject.org/updates/FEDORA-2017-7b181f9c98
qpid-java-6.0.4-5.fc25
5
https://bodhi.fedoraproject.org/updates/FEDORA-2017-16a7aa8e4f
springframework-security-3.2.10-1.fc25
4
https://bodhi.fedoraproject.org/updates/FEDORA-2017-e6a9108cce
onionshare-0.9.1-1.fc25
3
https://bodhi.fedoraproject.org/updates/FEDORA-2017-6a2709f065
SimGear-2016.3.1-3.fc25
0
https://bodhi.fedoraproject.org/updates/FEDORA-2017-3d7734a8b2
icoutils-0.31.1-1.fc25
0
https://bodhi.fedoraproject.org/updates/FEDORA-2017-21edf966b0
mingw-libgsf-1.14.41-1.fc25
The following Fedora 25 Critical Path updates have yet to be approved:
Age URL
44
https://bodhi.fedoraproject.org/updates/FEDORA-2016-a1231ada78
python-productmd-1.3-1.fc25
44
https://bodhi.fedoraproject.org/updates/FEDORA-2016-940ecb5c59
wpa_supplicant-2.6-1.fc25
31
https://bodhi.fedoraproject.org/updates/FEDORA-2016-9c25320b71
pungi-4.1.11-3.fc25
9
https://bodhi.fedoraproject.org/updates/FEDORA-2016-ab324eaf7a
libnl3-3.2.29-1.fc25
2
https://bodhi.fedoraproject.org/updates/FEDORA-2017-ed34b2ad09
osinfo-db-20170107-1.fc25
1
https://bodhi.fedoraproject.org/updates/FEDORA-2017-e84f443a20 gdb-7.12-35.fc25
1
https://bodhi.fedoraproject.org/updates/FEDORA-2017-3d1ca4f647
kernel-4.8.16-300.fc25
0
https://bodhi.fedoraproject.org/updates/FEDORA-2017-a42cba00c1
python-lxml-3.7.2-1.fc25
0
https://bodhi.fedoraproject.org/updates/FEDORA-2017-e633bb634e
appstream-data-25-13.fc25
0
https://bodhi.fedoraproject.org/updates/FEDORA-2017-5758dfef76
tigervnc-1.7.0-6.fc25
0
https://bodhi.fedoraproject.org/updates/FEDORA-2017-45f2145839
libproxy-0.4.14-1.fc25
0
https://bodhi.fedoraproject.org/updates/FEDORA-2017-88f1664dd4
gnutls-3.5.8-1.fc25
0
https://bodhi.fedoraproject.org/updates/FEDORA-2017-e3e8050136 vim-8.0.160-1.fc25
0
https://bodhi.fedoraproject.org/updates/FEDORA-2017-db33e6c6f4
thunderbird-45.6.0-3.fc25
0
https://bodhi.fedoraproject.org/updates/FEDORA-2017-aaeb168173
libX11-1.6.4-3.fc25
0
https://bodhi.fedoraproject.org/updates/FEDORA-2017-66d634473a
selinux-policy-3.13.1-225.6.fc25
The following builds have been pushed to Fedora 25 updates-testing
ETL-0.04.22-1.fc25
OpenSceneGraph-3.4.0-7.fc25
ansible-review-0.13.0-2.fc25
appstream-data-25-13.fc25
asl-1.42-0.29.bld114.fc25
bitlbee-3.5-1.fc25
cinnamon-themes-2016.12.07-1.fc25
cmake-elementary-0.1.0-0.bzr27.1.fc25
cockpit-127-1.fc25
cowsay-3.04-4.fc25
gambit-c-4.8.7-1.fc25
gnutls-3.5.8-1.fc25
golang-github-onsi-ginkgo-1.1.0-11.fc25
golang-github-onsi-gomega-1.0-0.1.git2152b45.fc25
icoutils-0.31.1-1.fc25
lftp-4.7.5-1.fc25
libX11-1.6.4-3.fc25
libproxy-0.4.14-1.fc25
mate-settings-daemon-1.16.0-3.fc25
mbuffer-20161115-1.fc25
mingw-libgsf-1.14.41-1.fc25
mint-x-icons-1.4.0-1.fc25
mint-y-icons-1.0.4-1.fc25
mod_auth_mellon-0.12.0-3.fc25
nitrokey-app-0.6.2-1.fc25
notmuch-0.23.5-1.fc25
obnam-1.21-1.fc25
pan-0.141-1.fc25
pcsc-lite-ccid-1.4.26-1.fc25
perl-CPAN-2.11-367.fc25
perl-Number-Bytes-Human-0.11-1.fc25
php-PHPMailer-5.2.22-1.fc25
php-symfony-2.8.15-4.fc25
php-twig-1.30.0-1.fc25
php-twig2-2.0.0-1.fc25
pidgin-libnotify-0.14-18.fc25
python-ECPy-0.8.1-1.fc25
python-click-6.7-2.fc25
python-coverage-test-runner-1.11-1.fc25
python-lxml-3.7.2-1.fc25
python-phabricator-0.7.0-1.fc25
python-streamlink-0.2.0-3.fc25
python-tracing-0.9-1.fc25
python-ttystatus-0.34-1.fc25
qemu-2.7.1-1.fc25
selinux-policy-3.13.1-225.6.fc25
sheepdog-1.0.1-2.fc25
stoken-0.91-1.fc25
switchboard-2.2.0-4.fc25
synfig-1.2.0-1.fc25
synfigstudio-1.2.0-1.fc25
thunderbird-45.6.0-3.fc25
tigervnc-1.7.0-6.fc25
vim-8.0.160-1.fc25
wine-2.0-0.1.rc4.fc25
wingpanel-2.0.1-9.fc25
xorg-x11-drv-vmware-13.2.1-1.fc25
Details about builds:
================================================================================
ETL-0.04.22-1.fc25 (FEDORA-2017-ba92e7d6e5)
Extended Template Library
--------------------------------------------------------------------------------
Update Information:
1.2.0
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1411005 - synfigstudio-1.2.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1411005
[ 2 ] Bug #1411004 - synfig-1.2.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1411004
--------------------------------------------------------------------------------
================================================================================
OpenSceneGraph-3.4.0-7.fc25 (FEDORA-2017-c6c89282a6)
High performance real-time graphics toolkit
--------------------------------------------------------------------------------
Update Information:
--------------------------------------------------------------------------------
================================================================================
ansible-review-0.13.0-2.fc25 (FEDORA-2017-09d1d0f7d9)
Reviews Ansible playbooks, roles and inventory and suggests improvements
--------------------------------------------------------------------------------
Update Information:
RHBZ#1410896: depend on python-flake8
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1410896 - ansible-review doesn't work, unless I manually install
python2-flake8
https://bugzilla.redhat.com/show_bug.cgi?id=1410896
--------------------------------------------------------------------------------
================================================================================
appstream-data-25-13.fc25 (FEDORA-2017-e633bb634e)
Fedora AppStream metadata
--------------------------------------------------------------------------------
Update Information:
New metadata version
--------------------------------------------------------------------------------
================================================================================
asl-1.42-0.29.bld114.fc25 (FEDORA-2017-633d909a18)
Macro Assembler AS
--------------------------------------------------------------------------------
Update Information:
fix build on s390(x) ---- Updated to latest upstream snapshot. Added patch for
CDP180[456] scal instruction.
--------------------------------------------------------------------------------
================================================================================
bitlbee-3.5-1.fc25 (FEDORA-2017-bba0745b9a)
IRC to other chat networks gateway
--------------------------------------------------------------------------------
Update Information:
Update to the latest upstream.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1411171 - bitlbee-3.5 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1411171
--------------------------------------------------------------------------------
================================================================================
cinnamon-themes-2016.12.07-1.fc25 (FEDORA-2017-84045eb11e)
Collection of the best themes available for Cinnamon
--------------------------------------------------------------------------------
Update Information:
* Initial rpm-release
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1411153 - Review Request: mint-y-icons - The Mint-Y icon theme
https://bugzilla.redhat.com/show_bug.cgi?id=1411153
[ 2 ] Bug #1411152 - Review Request: mint-x-icons - Icon theme for Linux Mint
https://bugzilla.redhat.com/show_bug.cgi?id=1411152
[ 3 ] Bug #1411151 - Review Request: cinnamon-themes - Collection of the best themes
available for Cinnamon
https://bugzilla.redhat.com/show_bug.cgi?id=1411151
--------------------------------------------------------------------------------
================================================================================
cmake-elementary-0.1.0-0.bzr27.1.fc25 (FEDORA-2017-577d8cc25d)
CMake modules shared by elementary projects
--------------------------------------------------------------------------------
Update Information:
This is a new package for f25 proper. It was previously available via my
elementary-stable COPR repository.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1411044 - Review Request: cmake-elementary - CMake modules shared by
elementary projects
https://bugzilla.redhat.com/show_bug.cgi?id=1411044
--------------------------------------------------------------------------------
================================================================================
cockpit-127-1.fc25 (FEDORA-2017-55907eeff8)
A user interface for Linux servers
--------------------------------------------------------------------------------
Update Information:
- Cockpit respects /etc/shells - Create user accounts with a shell on Debian and
Ubuntu - Handle flakey Docker error responses about layers - Validate textual
input on Networking page properly - Remove -ti flags from the cockpit/ws
container - Hide 'Connect To' server on login screen when not usable - Add a
LoginTo option in cockpit.conf to control above display
--------------------------------------------------------------------------------
================================================================================
cowsay-3.04-4.fc25 (FEDORA-2017-8ad898cd6e)
Configurable speaking/thinking cow
--------------------------------------------------------------------------------
Update Information:
Require perl-Encode
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1411168 - Missing dependency perl-Encode for cowsay package
https://bugzilla.redhat.com/show_bug.cgi?id=1411168
--------------------------------------------------------------------------------
================================================================================
gambit-c-4.8.7-1.fc25 (FEDORA-2017-22eb411b7a)
Scheme programming system
--------------------------------------------------------------------------------
Update Information:
Update to latest Gambit release
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1323380 - gambit-c-v4.8.7-bootstrap is available
https://bugzilla.redhat.com/show_bug.cgi?id=1323380
--------------------------------------------------------------------------------
================================================================================
gnutls-3.5.8-1.fc25 (FEDORA-2017-88f1664dd4)
A TLS protocol implementation
--------------------------------------------------------------------------------
Update Information:
New upstream release
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1405959 - With FUTURE system crypto policy, connections to github,
getfedora.org fail
https://bugzilla.redhat.com/show_bug.cgi?id=1405959
--------------------------------------------------------------------------------
================================================================================
golang-github-onsi-ginkgo-1.1.0-11.fc25 (FEDORA-2017-6b1bb1986d)
A Golang BDD Testing Framework
--------------------------------------------------------------------------------
Update Information:
Add missing Provides ---- Bump to upstream
7f8ab55aaf3b86885aa55b762e803744d1674700
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1214619 - Tracker for golang-github-onsi-ginkgo
https://bugzilla.redhat.com/show_bug.cgi?id=1214619
--------------------------------------------------------------------------------
================================================================================
golang-github-onsi-gomega-1.0-0.1.git2152b45.fc25 (FEDORA-2017-6187595085)
Ginkgo's Preferred Matcher Library
--------------------------------------------------------------------------------
Update Information:
Bump to upstream 2152b45fa28a361beba9aab0885972323a444e28
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1248013 - Tracker for golang-github-onsi-gomega
https://bugzilla.redhat.com/show_bug.cgi?id=1248013
--------------------------------------------------------------------------------
================================================================================
icoutils-0.31.1-1.fc25 (FEDORA-2017-3d7734a8b2)
Utility for extracting and converting Microsoft icon and cursor files
--------------------------------------------------------------------------------
Update Information:
This new point release fixes a security vulnerability in wrestool. For further
details see
https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=850017
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1411251 - CVE-2017-5208 icoutils: Check_offset overflow on 64-bit systems
https://bugzilla.redhat.com/show_bug.cgi?id=1411251
--------------------------------------------------------------------------------
================================================================================
lftp-4.7.5-1.fc25 (FEDORA-2017-28f16245e0)
A sophisticated file transfer program
--------------------------------------------------------------------------------
Update Information:
Update to new version 4.7.5 ---- Update to new version 4.7.4
--------------------------------------------------------------------------------
================================================================================
libX11-1.6.4-3.fc25 (FEDORA-2017-aaeb168173)
Core X11 protocol client library
--------------------------------------------------------------------------------
Update Information:
Fix a bug in the memory leak fix from 1.6.4-2
--------------------------------------------------------------------------------
================================================================================
libproxy-0.4.14-1.fc25 (FEDORA-2017-45f2145839)
A library handling all the details of proxy configuration
--------------------------------------------------------------------------------
Update Information:
Update to 0.4.14
--------------------------------------------------------------------------------
================================================================================
mate-settings-daemon-1.16.0-3.fc25 (FEDORA-2017-92ffe643ea)
MATE Desktop settings daemon
--------------------------------------------------------------------------------
Update Information:
don't Require Xorg drivers that don't exist on s390(x)
--------------------------------------------------------------------------------
================================================================================
mbuffer-20161115-1.fc25 (FEDORA-2017-56196d3e1c)
Measuring Buffer is an enhanced version of buffer
--------------------------------------------------------------------------------
Update Information:
Update to new upstream version 20161115
--------------------------------------------------------------------------------
================================================================================
mingw-libgsf-1.14.41-1.fc25 (FEDORA-2017-21edf966b0)
MinGW build of structured file editing library
--------------------------------------------------------------------------------
Update Information:
Security fix for CVE-2016-9888
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1403198 - CVE-2016-9888 libgsf: Null pointer dereference in
tar_directory_for_file()
https://bugzilla.redhat.com/show_bug.cgi?id=1403198
--------------------------------------------------------------------------------
================================================================================
mint-x-icons-1.4.0-1.fc25 (FEDORA-2017-84045eb11e)
Icon theme for Linux Mint
--------------------------------------------------------------------------------
Update Information:
* Initial rpm-release
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1411153 - Review Request: mint-y-icons - The Mint-Y icon theme
https://bugzilla.redhat.com/show_bug.cgi?id=1411153
[ 2 ] Bug #1411152 - Review Request: mint-x-icons - Icon theme for Linux Mint
https://bugzilla.redhat.com/show_bug.cgi?id=1411152
[ 3 ] Bug #1411151 - Review Request: cinnamon-themes - Collection of the best themes
available for Cinnamon
https://bugzilla.redhat.com/show_bug.cgi?id=1411151
--------------------------------------------------------------------------------
================================================================================
mint-y-icons-1.0.4-1.fc25 (FEDORA-2017-84045eb11e)
The Mint-Y icon theme
--------------------------------------------------------------------------------
Update Information:
* Initial rpm-release
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1411153 - Review Request: mint-y-icons - The Mint-Y icon theme
https://bugzilla.redhat.com/show_bug.cgi?id=1411153
[ 2 ] Bug #1411152 - Review Request: mint-x-icons - Icon theme for Linux Mint
https://bugzilla.redhat.com/show_bug.cgi?id=1411152
[ 3 ] Bug #1411151 - Review Request: cinnamon-themes - Collection of the best themes
available for Cinnamon
https://bugzilla.redhat.com/show_bug.cgi?id=1411151
--------------------------------------------------------------------------------
================================================================================
mod_auth_mellon-0.12.0-3.fc25 (FEDORA-2017-e197b19422)
A SAML 2.0 authentication module for the Apache Httpd Server
--------------------------------------------------------------------------------
Update Information:
Bug fix prevents conflicts with other Apache authentication modules.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1332729 - mod_auth_mellon loaded before mod_auth_openidc makes the latter not
be recognized for "AuthType openid-connect"
https://bugzilla.redhat.com/show_bug.cgi?id=1332729
--------------------------------------------------------------------------------
================================================================================
nitrokey-app-0.6.2-1.fc25 (FEDORA-2017-7c12d0e15e)
Nitrokey's Application
--------------------------------------------------------------------------------
Update Information:
Update to 0.6.2
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1409940 - nitrokey-app-0.6.2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1409940
--------------------------------------------------------------------------------
================================================================================
notmuch-0.23.5-1.fc25 (FEDORA-2017-7ef59bcc57)
System for indexing, searching, and tagging email
--------------------------------------------------------------------------------
Update Information:
Latest upstream
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1408540 - notmuch-0.23.5 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1408540
--------------------------------------------------------------------------------
================================================================================
obnam-1.21-1.fc25 (FEDORA-2017-30bfeb7d5d)
An easy, secure backup program
--------------------------------------------------------------------------------
Update Information:
Update to latest upstream release
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1389905 - obnam-1.21 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1389905
--------------------------------------------------------------------------------
================================================================================
pan-0.141-1.fc25 (FEDORA-2017-a50c540b85)
A Usenet newsreader for GNOME/GTK+
--------------------------------------------------------------------------------
Update Information:
The pan package has been upgraded to upstream version 0.141, which provides a
number of bug fixes and enhancements over the previous version.
--------------------------------------------------------------------------------
================================================================================
pcsc-lite-ccid-1.4.26-1.fc25 (FEDORA-2017-bf5c27db38)
Generic USB CCID smart card reader driver
--------------------------------------------------------------------------------
Update Information:
Updated to 1.4.26
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1380615 - Coolkey cards do not work in Fedora
https://bugzilla.redhat.com/show_bug.cgi?id=1380615
[ 2 ] Bug #1411063 - pcsc-lite-ccid-1.4.26 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1411063
--------------------------------------------------------------------------------
================================================================================
perl-CPAN-2.11-367.fc25 (FEDORA-2017-a620cd0a64)
Query, download and build perl modules from CPAN sites
--------------------------------------------------------------------------------
Update Information:
This release fixes CVE-2016-1238 vulnerability i the CPAN client, loading
optional modules from current working directory. It also corrects logging fatal
errors through Log::Log4pel back end.
--------------------------------------------------------------------------------
================================================================================
perl-Number-Bytes-Human-0.11-1.fc25 (FEDORA-2017-bea5544c80)
Convert byte count to human readable format
--------------------------------------------------------------------------------
Update Information:
Updte to latest upstream release 0.11 (rhbz#1411308)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1411308 - perl-Number-Bytes-Human-0.11 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1411308
--------------------------------------------------------------------------------
================================================================================
php-PHPMailer-5.2.22-1.fc25 (FEDORA-2017-9166f6b7ed)
PHP email transport class with a lot of features
--------------------------------------------------------------------------------
Update Information:
**Version 5.2.22** (January 5th 2017) * **SECURITY** Fix
[
CVE-2017-5223](https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2017-...,
local file disclosure vulnerability if content passed to `msgHTML()` is sourced
from unfiltered user input. Reported by Yongxiang Li of Asiasecurity. The fix
for this means that calls to `msgHTML()` without a `$basedir` will not import
images with relative URLs, and relative URLs containing `..` will be ignored. *
Add simple contact form example * Emoji in test content
--------------------------------------------------------------------------------
================================================================================
php-symfony-2.8.15-4.fc25 (FEDORA-2017-cf56c0425f)
PHP framework for web projects
--------------------------------------------------------------------------------
Update Information:
**Version 2.8.15** (2016-12-13) * bug #20714 [FrameworkBundle] Fix unresolved
parameters from default configs in debug:config (chalasr) * bug #20442
[FrameworkBundle] Bundle commands are not available via find() (julienfalque) *
bug #20840 [WebProfilerBundle] add dependency on Twig (xabbuh) * bug #20828
[Validator] Fix init of YamlFileLoader::$classes for empty files (nicolas-
grekas) * bug #20539 Cast result to int before adding to it (alcaeus) * bug
#20831 [Twig] Fix deprecations with Twig 1.29 (nicolas-grekas) * bug #20767
[Cache] Fix dumping SplDoublyLinkedList iter mode (nicolas-grekas) * bug #20736
[Console] fixed PHP7 Errors when not using Dispatcher (keradus) * bug #20755
[HttpKernel] Regression test for missing controller arguments (iltar) * bug
#20418 [Form][DX] FileType "multiple" fixes (yceruto) * bug #19902
[DependencyInjection] PhpDumper.php: hasReference() shouldn't search references
in lazy service. (antanas-arvasevicius) * bug #20704 [Console] Fix wrong
handling of multiline arg/opt descriptions (ogizanagi) * bug #20712
[TwigBundle] Fix twig loader registered twice (ogizanagi) * bug #20716
[WebProfilerBundle] Fix dump block is unfairly restrained (ogizanagi) * bug
#20671 [Config] ConfigCache::isFresh() should return false when unserialize()
fails (nicolas-grekas) * bug #20676 [ClassLoader] Use only forward slashes in
generated class map (nicolas-grekas) * bug #20664 [Validator] ensure the proper
context for nested validations (xabbuh) * bug #20661 bug #20653
[WebProfilerBundle] Profiler includes ghost panels (jzawadzki) * bug #20374
[FrameworkBundle] Improve performance of ControllerNameParser (enumag) * bug
#20474 [Routing] Fail properly when a route parameter name cannot be used as a
PCRE subpattern name (fancyweb) * bug #20566 [DI] Initialize properties before
method calls (ro0NL) * bug #20609 [DI] Fixed custom services definition BC
break introduced in ec7e70fb��� (kiler129) * bug #20598 [DI] Aliases should
preserve the aliased invalid behavior (nicolas-grekas) * bug #20602
[HttpKernel] Revert BC breaking change of Request::isMethodSafe() (nicolas-
grekas) * bug #20499 [Doctrine][Form] support large integers (xabbuh) * bug
#20576 [Process] Do feat test before enabling TTY mode (nicolas-grekas) ----
**Version 2.8.14** (2016-11-21) * bug #20543 [DI] Fix error when trying to
resolve a DefinitionDecorator (nicolas-grekas) * bug #20544 [PhpUnitBridge] Fix
time-sensitive tests that use data providers (julienfalque) * bug #20484 bumped
min version of Twig to 1.28 (fabpot) * bug #20519 [Debug] Remove GLOBALS from
exception context to avoid endless recursion (Seldaek) * bug #20455
[ClassLoader] Fix ClassCollectionLoader inlining with __halt_compiler
(giosh94mhz) * bug #20307 [Form] Fix Date\TimeType marked as invalid on request
with single_text and zero seconds (LuisDeimos) * bug #20466 [Translation] fixed
nested fallback catalogue using multiple locales. (aitboudad) * bug #20465
[#18637][TranslationDebug] workaround for getFallbackLocales. (aitboudad) * bug
#20440 [TwigBridge][TwigBundle][HttpKernel] prefer getSourceContext() over
getSource() (xabbuh) * bug #20422 [Translation][fallback] add missing resources
in parent catalogues. (aitboudad) * bug #20378 [Form] Fixed show float values
as choice value in ChoiceType (yceruto) * bug #20294 Improved the design of the
metrics in the profiler (javiereguiluz) * bug #20375 [HttpFoundation][Session]
Fix memcache session handler (klandaika) * bug #20377 [Console] Fix infinite
loop on missing input (chalasr) * bug #20372 [Console] simplified code (fabpot)
* bug #20342 [Form] Fix UrlType transforms valid protocols (ogizanagi) * bug
#20292 Enhance GAE compat by removing some realpath() (nicolas-grekas) * bug
#20326 [VarDumper] Fix dumping Twig source in stack traces (nicolas-grekas) *
bug #20321 Compatibility with Twig 1.27 (xkobal) ---- **Version 2.8.13**
(2016-10-27) * bug #20289 Fix edge case with StreamedResponse where headers
are sent twice (Nicofuma) * bug #20267 [DependencyInjection] A decorated
service should not keep the autowiring types (chalasr) * bug #20278
[DependencyInjection] merge tags instead of completely replacing them (xabbuh)
* bug #20271 Changes related to Twig 1.27 (fabpot) * bug #20252 Trim constant
values in XmlFileLoader (lstrojny) * bug #20253 [TwigBridge] Use non-deprecated
Twig_Node::getTemplateLine() (fabpot) * bug #20243 [WebProfilerBundle][btn-
link] add `cursor: pointer` (aitboudad) * bug #20175 [VarDumper] Fix source
links with latests Twig versions (nicolas-grekas) * bug #20235 [DomCrawler]
Allow pipe (|) character in link tags when using Xpath expressions (klausi,
nicolas-grekas) * bug #20224 [Twig] removed deprecations added in Twig 1.27
(fabpot) * bug #19478 fixed Filesystem:makePathRelative and added 2 more
testcases (muhammedeminakbulut) * bug #20218 [HttpFoundation] no 304 response
if method is not cacheable (xabbuh) * bug #20207 [DependencyInjection] move
tags from decorated to decorating service (xabbuh) * bug #20205 [HttpCache]
fix: do not cache OPTIONS request (dmaicher) * bug #20146 [Validator] Prevent
infinite loop in PropertyMetadata (wesleylancel) * bug #20184 [FrameworkBundle]
Convert null prefix to an empty string in translation:update (chalasr) * bug
#20154 [PropertyInfo] Fix edge cases in ReflectionExtractor (nicolas-grekas) *
bug #19725 [Security] $attributes can be anything, but RoleVoter assumes strings
(Jonatan M��nnchen) * bug #20127 [HttpFoundation] JSONP callback validation
(ro0NL) * bug #20163 add missing use statement (xabbuh) * bug #19961 [Console]
Escape question text and default value in SymfonyStyle::ask() (chalasr) * bug
#20141 [Console] Fix validation of empty values using
SymfonyQuestionHelper::ask() (chalasr) * bug #20147 [FrameworkBundle] Alter
container class instead of kernel name in cache:clear command (nicolas-grekas)
--------------------------------------------------------------------------------
================================================================================
php-twig-1.30.0-1.fc25 (FEDORA-2017-c7e88c1fd9)
The flexible, fast, and secure template engine for PHP
--------------------------------------------------------------------------------
Update Information:
**Version 1.30.0**** (2016-12-23) * added Twig_FactoryRuntimeLoader *
deprecated function/test/filter/tag overriding * deprecated the
"disable_c_ext"
attribute on Twig_Node_Expression_GetAttr ---- **Version 1.29.0** (2016-12-13)
* fixed sandbox being left enabled if an exception is thrown while rendering *
marked some classes as being final (via @final) * made Twig_Error report real
source path when possible * added support for {{ _self }} to provide an upgrade
path from 1.x to 2.0 (replaces {{ _self.templateName }}) * deprecated silent
display of undefined blocks * deprecated support for mbstring.func_overload !=
0 ---- **Version 1.28.2** (2016-11-23) * fixed precedence between getFoo()
and isFoo() in Twig_Template::getAttribute() * improved a deprecation message
---- **Version 1.28.1**** (2016-11-18) * fixed block() function when used
with a template argument ---- **Version 1.28.0** (2016-11-17) * added
support for the PHP 7 null coalescing operator for the ?? Twig implementation *
exposed a way to access template data and methods in a portable way * changed
context access to use the PHP 7 null coalescing operator when available * added
the "with" tag * added support for a custom template on the block() function
*
added "is defined" support for block() and constant() * optimized the way
attributes are fetched ---- **Version 1.27.0* (2016-10-25) * deprecated
Twig_Parser::getEnvironment() * deprecated Twig_Parser::addHandler() and
Twig_Parser::addNodeVisitor() * deprecated Twig_Compiler::addIndentation() *
fixed regression when registering two extensions having the same class name *
deprecated Twig_LoaderInterface::getSource() (implement
Twig_SourceContextLoaderInterface instead) * fixed the filesystem loader with
relative paths * deprecated Twig_Node::getLine() in favor of
Twig_Node::getTemplateLine() * deprecated Twig_Template::getSource() in favor
of Twig_Template::getSourceContext() * deprecated Twig_Node::getFilename() in
favor of Twig_Node::getTemplateName() * deprecated the "filename" escaping
strategy (use "name" instead) * added Twig_Source to hold information about
the
original template * deprecated Twig_Error::getTemplateFile() and
Twig_Error::setTemplateFile() in favor of Twig_Error::getTemplateName() and
Twig_Error::setTemplateName() * deprecated Parser::getFilename() * fixed
template paths when a template name contains a protocol like vfs:// * improved
debugging with Twig_Sandbox_SecurityError exceptions for disallowed methods and
properties
--------------------------------------------------------------------------------
================================================================================
php-twig2-2.0.0-1.fc25 (FEDORA-2017-78eea6cf5e)
The flexible, fast, and secure template engine for PHP
--------------------------------------------------------------------------------
Update Information:
The flexible, fast, and secure template engine for PHP. * Fast: Twig compiles
templates down to plain optimized PHP code. The overhead compared to regular
PHP code was reduced to the very minimum. * Secure: Twig has a sandbox mode to
evaluate untrusted template code. This allows Twig to be used as a template
language for applications where users may modify the template design. *
Flexible: Twig is powered by a flexible lexer and parser. This allows the
developer to define its own custom tags and filters, and create its own DSL.
Autoloader: /usr/share/php/Twig2/autoload.php
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1410985 - Review Request: php-twig2 - The flexible, fast, and secure template
engine for PHP
https://bugzilla.redhat.com/show_bug.cgi?id=1410985
--------------------------------------------------------------------------------
================================================================================
pidgin-libnotify-0.14-18.fc25 (FEDORA-2017-fe225bd488)
Libnotify Pidgin plugin
--------------------------------------------------------------------------------
Update Information:
Add AppData file.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1295181 - Ship AppStream metadata file
https://bugzilla.redhat.com/show_bug.cgi?id=1295181
--------------------------------------------------------------------------------
================================================================================
python-ECPy-0.8.1-1.fc25 (FEDORA-2017-fd373eb763)
Python Elliptic Curve Library
--------------------------------------------------------------------------------
Update Information:
Initial packaging for Fedora
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1411036 - Review Request: python-ECPy - Pure Python Elliptic Curve Library
https://bugzilla.redhat.com/show_bug.cgi?id=1411036
--------------------------------------------------------------------------------
================================================================================
python-click-6.7-2.fc25 (FEDORA-2017-f84e38f4fe)
Simple wrapper around optparse for powerful command line utilities
--------------------------------------------------------------------------------
Update Information:
Do not provide python-click from python3-click ---- - Update to 6.7 - Conform
to packaging guidelines
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1411169 - python3-click provides python-click
https://bugzilla.redhat.com/show_bug.cgi?id=1411169
[ 2 ] Bug #1410957 - python-click-6.7 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1410957
--------------------------------------------------------------------------------
================================================================================
python-coverage-test-runner-1.11-1.fc25 (FEDORA-2017-ee93959464)
Python module for enforcing code coverage completeness
--------------------------------------------------------------------------------
Update Information:
Update to latest upstream release
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1275121 - python-coverage-test-runner-1.11.orig is available
https://bugzilla.redhat.com/show_bug.cgi?id=1275121
--------------------------------------------------------------------------------
================================================================================
python-lxml-3.7.2-1.fc25 (FEDORA-2017-a42cba00c1)
XML processing library combining libxml2/libxslt with the ElementTree API
--------------------------------------------------------------------------------
Update Information:
update to 3.7.2
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1411177 - python-lxml-3.7.2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1411177
--------------------------------------------------------------------------------
================================================================================
python-phabricator-0.7.0-1.fc25 (FEDORA-2017-63b2e1beca)
Phabricator API Bindings
--------------------------------------------------------------------------------
Update Information:
New package
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1410989 - Review Request: python-phabricator - Phabricator API Bindings
https://bugzilla.redhat.com/show_bug.cgi?id=1410989
--------------------------------------------------------------------------------
================================================================================
python-streamlink-0.2.0-3.fc25 (FEDORA-2017-27bc8c9511)
Python library for extracting streams from various websites
--------------------------------------------------------------------------------
Update Information:
Streamlink is a command-line utility that pipes video streams from various
services into a video player, such as VLC. The main purpose of Streamlink is to
allow the user to avoid buggy and CPU heavy flash plugins but still be able to
enjoy various streamed content. There is also an API available for developers
who want access to the video stream data. This project was forked from
Livestreamer, which is no longer maintained.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1405271 - Review Request: python-streamlink - Python library for extracting
streams from various websites
https://bugzilla.redhat.com/show_bug.cgi?id=1405271
--------------------------------------------------------------------------------
================================================================================
python-tracing-0.9-1.fc25 (FEDORA-2017-b4c22a0c37)
Python debug logging helper
--------------------------------------------------------------------------------
Update Information:
Update to latest upstream release
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1275120 - python-tracing-0.9.orig is available
https://bugzilla.redhat.com/show_bug.cgi?id=1275120
--------------------------------------------------------------------------------
================================================================================
python-ttystatus-0.34-1.fc25 (FEDORA-2017-ca47f64ec6)
Progress and status updates on terminals for Python
--------------------------------------------------------------------------------
Update Information:
Update to latest upstream release
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1408688 - python-ttystatus-0.34.orig is available
https://bugzilla.redhat.com/show_bug.cgi?id=1408688
--------------------------------------------------------------------------------
================================================================================
qemu-2.7.1-1.fc25 (FEDORA-2017-eb75fa4238)
QEMU is a FAST! processor emulator
--------------------------------------------------------------------------------
Update Information:
* Update to qemu 2.7.1
--------------------------------------------------------------------------------
================================================================================
selinux-policy-3.13.1-225.6.fc25 (FEDORA-2017-66d634473a)
SELinux policy configuration
--------------------------------------------------------------------------------
Update Information:
More info:
https://koji.fedoraproject.org/koji/buildinfo?buildID=831999
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1378323 - Conflicting labels for /usr/sbin/ldconfig and /usr/sbin/sln
https://bugzilla.redhat.com/show_bug.cgi?id=1378323
[ 2 ] Bug #1398813 - SELinux is preventing tumblerd from 'sendto' accesses on
the unix_dgram_socket /run/systemd/journal/socket.
https://bugzilla.redhat.com/show_bug.cgi?id=1398813
[ 3 ] Bug #1401625 - user_r can't run systemctl --user
https://bugzilla.redhat.com/show_bug.cgi?id=1401625
[ 4 ] Bug #1403102 - SELinux is preventing x86_energy_perf from 'open' accesses
on the chr_file /dev/cpu/0/msr.
https://bugzilla.redhat.com/show_bug.cgi?id=1403102
[ 5 ] Bug #1403103 - SELinux is preventing x86_energy_perf from read, write access on
the chr_file msr.
https://bugzilla.redhat.com/show_bug.cgi?id=1403103
[ 6 ] Bug #1403462 - SELinux is preventing iw from 'getattr' accesses on the
netlink_generic_socket Unknown.
https://bugzilla.redhat.com/show_bug.cgi?id=1403462
[ 7 ] Bug #1403486 - SELinux is preventing iw from 'open' accesses on the file
/proc/<pid>/net/psched.
https://bugzilla.redhat.com/show_bug.cgi?id=1403486
[ 8 ] Bug #1403487 - SELinux is preventing iw from 'getattr' accesses on the
file /proc/<pid>/net/psched.
https://bugzilla.redhat.com/show_bug.cgi?id=1403487
[ 9 ] Bug #1403488 - SELinux is preventing iw from 'create' accesses on the
netlink_generic_socket Unknown.
https://bugzilla.redhat.com/show_bug.cgi?id=1403488
[ 10 ] Bug #1403489 - SELinux is preventing iw from 'setopt' accesses on the
netlink_generic_socket Unknown.
https://bugzilla.redhat.com/show_bug.cgi?id=1403489
[ 11 ] Bug #1403490 - SELinux is preventing iw from 'bind' accesses on the
netlink_generic_socket Unknown.
https://bugzilla.redhat.com/show_bug.cgi?id=1403490
[ 12 ] Bug #1403909 - SELinux is preventing systemd-gpt-aut from 'open' accesses
on the file
/sys/firmware/efi/efivars/LoaderDevicePartUUID-4a67b082-0a4c-41cf-b6c7-440b29bb8c4f.
https://bugzilla.redhat.com/show_bug.cgi?id=1403909
[ 13 ] Bug #1404248 - SELinux is preventing pptpcm from 'open' accesses on the
chr_file /dev/random.
https://bugzilla.redhat.com/show_bug.cgi?id=1404248
[ 14 ] Bug #1408626 - SELinux is preventing wicd from 'getattr' accesses on the
lnk_file /var/lib/wicd/resolv.conf.orig.
https://bugzilla.redhat.com/show_bug.cgi?id=1408626
[ 15 ] Bug #1409130 - SELinux is preventing rm from 'remove_name' accesses on
the directory rfkill-saved.
https://bugzilla.redhat.com/show_bug.cgi?id=1409130
[ 16 ] Bug #1409131 - SELinux is preventing rm from 'write' accesses on the
directory /var/lib/tlp.
https://bugzilla.redhat.com/show_bug.cgi?id=1409131
[ 17 ] Bug #1409198 - SELinux is preventing tlp from 'add_name' accesses on the
directory rfkill-saved.
https://bugzilla.redhat.com/show_bug.cgi?id=1409198
[ 18 ] Bug #1409963 - SELinux is preventing dhcpd from using the 'fowner'
capabilities.
https://bugzilla.redhat.com/show_bug.cgi?id=1409963
[ 19 ] Bug #1409977 - SELinux is preventing mkdir from 'create' accesses on the
directory tlp.
https://bugzilla.redhat.com/show_bug.cgi?id=1409977
[ 20 ] Bug #1410942 - SELinux is preventing gst-plugin-scan from 'getattr'
accesses on the netlink_kobject_uevent_socket Unknown.
https://bugzilla.redhat.com/show_bug.cgi?id=1410942
[ 21 ] Bug #1411077 - SELinux is preventing condor_procd from 'sys_ptrace'
accesses on the cap_userns Unknown.
https://bugzilla.redhat.com/show_bug.cgi?id=1411077
[ 22 ] Bug #1323518 - Zabbix agent fails to start due to being unable to disable
coredumps
https://bugzilla.redhat.com/show_bug.cgi?id=1323518
--------------------------------------------------------------------------------
================================================================================
sheepdog-1.0.1-2.fc25 (FEDORA-2017-bc521937f8)
The Sheepdog distributed storage system for KVM/QEMU
--------------------------------------------------------------------------------
Update Information:
Sheepdog was completely broken until this release, segfaulting on start. This
release fixes the bug, updates the systemd units and moves the store from /tmp
(!) to /var/lib/sheepdog.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1396430 - sheepdog broken out of the box
https://bugzilla.redhat.com/show_bug.cgi?id=1396430
--------------------------------------------------------------------------------
================================================================================
stoken-0.91-1.fc25 (FEDORA-2017-f0cee32b43)
Token code generator compatible with RSA SecurID 128-bit (AES) token
--------------------------------------------------------------------------------
Update Information:
Small bug fixes.
--------------------------------------------------------------------------------
================================================================================
switchboard-2.2.0-4.fc25 (FEDORA-2017-658c6b97cf)
Modular Desktop Settings Hub
--------------------------------------------------------------------------------
Update Information:
This is a new package for f25 proper. It was previously available via my
elementary-stable COPR repository.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1411030 - Review Request: switchboard - Modular Desktop Settings Hub
https://bugzilla.redhat.com/show_bug.cgi?id=1411030
--------------------------------------------------------------------------------
================================================================================
synfig-1.2.0-1.fc25 (FEDORA-2017-ba92e7d6e5)
Vector-based 2D animation rendering backend
--------------------------------------------------------------------------------
Update Information:
1.2.0
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1411005 - synfigstudio-1.2.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1411005
[ 2 ] Bug #1411004 - synfig-1.2.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1411004
--------------------------------------------------------------------------------
================================================================================
synfigstudio-1.2.0-1.fc25 (FEDORA-2017-ba92e7d6e5)
Vector-based 2D animation studio
--------------------------------------------------------------------------------
Update Information:
1.2.0
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1411005 - synfigstudio-1.2.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1411005
[ 2 ] Bug #1411004 - synfig-1.2.0 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1411004
--------------------------------------------------------------------------------
================================================================================
thunderbird-45.6.0-3.fc25 (FEDORA-2017-db33e6c6f4)
Mozilla Thunderbird mail/newsgroup client
--------------------------------------------------------------------------------
Update Information:
Update fixes wrong language packs for calendar extension.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1410740 - Calendar broken in Thunderbird 45.6.0-2
https://bugzilla.redhat.com/show_bug.cgi?id=1410740
--------------------------------------------------------------------------------
================================================================================
tigervnc-1.7.0-6.fc25 (FEDORA-2017-5758dfef76)
A TigerVNC remote display system
--------------------------------------------------------------------------------
Update Information:
- Fix -inetd no longer working (rhbz#1408724)
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1408724 - Xvnc -inetd in wait mode loops when a client connect
https://bugzilla.redhat.com/show_bug.cgi?id=1408724
--------------------------------------------------------------------------------
================================================================================
vim-8.0.160-1.fc25 (FEDORA-2017-e3e8050136)
The VIM editor
--------------------------------------------------------------------------------
Update Information:
New upstream conmmit
--------------------------------------------------------------------------------
================================================================================
wine-2.0-0.1.rc4.fc25 (FEDORA-2017-cd6411a92d)
A compatibility layer for windows applications
--------------------------------------------------------------------------------
Update Information:
https://www.winehq.org/announce/2.0-rc4 - Bug fixes only, we are in code
freeze.
https://wine-staging.com/news/2017-01-09-release-2.0-rc4.html -
Improved FlipToGDISurface ddraw handling. - Regression fixes. - Various smaller
improvements.
--------------------------------------------------------------------------------
================================================================================
wingpanel-2.0.1-9.fc25 (FEDORA-2017-83ec4fed39)
Stylish top panel
--------------------------------------------------------------------------------
Update Information:
This is a new package for f25 proper. It was previously available via my
elementary-stable COPR repository.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1411033 - Review Request: wingpanel - Stylish top panel
https://bugzilla.redhat.com/show_bug.cgi?id=1411033
--------------------------------------------------------------------------------
================================================================================
xorg-x11-drv-vmware-13.2.1-1.fc25 (FEDORA-2017-89a8d9cdb8)
Xorg X11 vmware video driver
--------------------------------------------------------------------------------
Update Information:
- New upstream bug-fix release 13.2.1
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1081563 - xorg-x11-drv-vmware-13.2.1 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1081563
--------------------------------------------------------------------------------