The following Fedora 23 Security updates need testing: Age URL 136 https://bodhi.fedoraproject.org/updates/FEDORA-2015-16240 nagios-4.0.8-1.fc23 94 https://bodhi.fedoraproject.org/updates/FEDORA-2015-81ded368fe miniupnpc-1.9-6.fc23 66 https://bodhi.fedoraproject.org/updates/FEDORA-2015-27392b3324 jbig2dec-0.12-2.fc23 57 https://bodhi.fedoraproject.org/updates/FEDORA-2015-abf9659276 php-PHPMailer-5.2.14-1.fc23 17 https://bodhi.fedoraproject.org/updates/FEDORA-2015-dd52a54fa1 python-pymongo-3.0.3-1.fc23 17 https://bodhi.fedoraproject.org/updates/FEDORA-2015-06a7c972e8 thttpd-2.25b-37.fc23 6 https://bodhi.fedoraproject.org/updates/FEDORA-2016-b02ad4e424 ecryptfs-utils-109-1.fc23 6 https://bodhi.fedoraproject.org/updates/FEDORA-2016-a69ee02554 xulrunner-44.0-1.fc23 5 https://bodhi.fedoraproject.org/updates/FEDORA-2016-5a5c85c5a8 prosody-0.9.10-1.fc23 4 https://bodhi.fedoraproject.org/updates/FEDORA-2016-2ec7f779f2 claws-mail-3.13.2-1.fc23 2 https://bodhi.fedoraproject.org/updates/FEDORA-2016-97002ad37b rubygem-actionview-4.2.3-3.fc23 2 https://bodhi.fedoraproject.org/updates/FEDORA-2016-f486068393 rubygem-actionpack-4.2.3-4.fc23 1 https://bodhi.fedoraproject.org/updates/FEDORA-2016-4509765b4b gsi-openssh-7.1p2-3.fc23 1 https://bodhi.fedoraproject.org/updates/FEDORA-2016-eb4d6e8aab rubygem-activemodel-4.2.3-2.fc23 1 https://bodhi.fedoraproject.org/updates/FEDORA-2016-3ede04cd79 rubygem-activesupport-4.2.3-3.fc23 1 https://bodhi.fedoraproject.org/updates/FEDORA-2016-cc465a34df rubygem-activerecord-4.2.3-2.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-50abc3e885 python-pymongo-2.5.2-8.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-89968f88d2 nettle-3.2-1.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-b61929db9e wordpress-4.4.2-1.fc23
The following Fedora 23 Critical Path updates have yet to be approved: Age URL 6 https://bodhi.fedoraproject.org/updates/FEDORA-2016-a69ee02554 xulrunner-44.0-1.fc23 4 https://bodhi.fedoraproject.org/updates/FEDORA-2016-69c039b644 taglib-1.10-1.fc23 1 https://bodhi.fedoraproject.org/updates/FEDORA-2016-fd30ad26a9 kernel-4.3.5-300.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-2aa7777f21 selinux-policy-3.13.1-158.4.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-8344bd0b61 firefox-44.0-5.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-de2a3f6060 mobile-broadband-provider-info-1.20151214-1.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-ddec16b401 dbus-glib-0.106-1.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-933459f83c abrt-2.8.0-1.fc23 libreport-2.6.4-1.fc23 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-387992811b rpm-4.13.0-0.rc1.11.fc23 The following builds have been pushed to Fedora 23 updates-testing ClanLib06-0.6.5-36.fc23 abrt-2.8.0-1.fc23 boswars-2.7-9.fc23 cegui-0.8.4-15.fc23 clufter-0.56.0-1.fc23 cockpit-0.94-1.fc23 conky-1.9.0-15.20141003git30d09e.fc23 copr-cli-1.47-1.fc23 csmock-1.9.0-1.fc23 cswrap-1.3.1-1.fc23 dbus-glib-0.106-1.fc23 distribution-gpg-keys-1.3-1.fc23 dnf-1.1.6-2.fc23 easy-rsa-3.0.1-1.fc23 emacs-24.5-7.fc23 ember-0.7.2-13.fc23 fawkes-0.5.0-28.fc23 firefox-44.0-5.fc23 frescobaldi-2.18.2-1.fc23 gap-pkg-autodoc-2016.01.31-1.fc23 hamster-time-tracker-2.0-0.2.rc1.fc23 kgpg-15.12.1-2.fc23 libreport-2.6.4-1.fc23 lxqt-common-0.10.0-8.fc23 megatools-1.9.97-1.fc23 mingw-p11-kit-0.23.2-1.fc23 mobile-broadband-provider-info-1.20151214-1.fc23 msgpuck-1.0.2-1.fc23 myrepos-1.20160123-1.fc23 nautilus-image-converter-0.3.1-0.10.git430afce31.fc23 nettle-3.2-1.fc23 openstack-ceilometer-2015.1.3-1.fc23 openstack-cinder-2015.1.3-1.fc23 openstack-glance-2015.1.3-1.fc23 openstack-heat-2015.1.3-1.fc23 openstack-ironic-2015.1.3-1.fc23 openstack-keystone-2015.1.3-1.fc23 openstack-neutron-2015.1.3-1.fc23 openstack-nova-2015.1.3-1.fc23 openstack-sahara-2015.1.3-1.fc23 pagure-1.0.1-1.fc23 pcp-3.11.0-1.fc23 perl-Lingua-Stem-Ru-0.02-1.fc23 pypy-4.0.1-1.fc23 python-audioread-2.1.2-2.fc23 python-boto-2.39.0-1.fc23 python-copr-1.65-1.fc23 python-dulwich-0.12.0-1.fc23 python-hglib-2.0-1.fc23 python-mwclient-0.8.0-2.fc23 python-pymongo-2.5.2-8.fc23 python-socketIO-client-0.6.5-2.fc23 python-unittest2-1.1.0-3.fc23 rabbitmq-server-3.5.7-4.fc23 rabbitvcs-0.16.1-0.3.20160108gite8214e6.fc23 ranger-1.6.1-7.fc23 rocksndiamonds-3.3.1.2-1.fc23 rubygem-byebug-8.2.2-1.fc23 rubygem-domain_name-0.5.20160128-1.fc23 selinux-policy-3.13.1-158.4.fc23 skf-2.00.3-1.fc23 tolua++-1.0.93-17.fc23 trojita-0.6-1.fc23 udiskie-1.4.7-1.fc23 wordpress-4.4.2-1.fc23 xlogin-0-0.1.20160114git97667d7.fc23 Details about builds: ================================================================================ ClanLib06-0.6.5-36.fc23 (FEDORA-2016-19e3f4e4da) Version 0.6 of this Cross platform C++ game library -------------------------------------------------------------------------------- Update Information: The library in tolua++ had the wrong soname and file name indicating a different Lua version. Fix this and rebuild the dependent packages. -------------------------------------------------------------------------------- ================================================================================ abrt-2.8.0-1.fc23 (FEDORA-2016-933459f83c) Automatic bug detection and reporting tool -------------------------------------------------------------------------------- Update Information: ABRT ===== - ccpp: add AllowedUsers and AllowedGroups feature - ccpp: use executable name from pid - a-a-c-o-f-hw-error: do not crash on invalid unicode - configui: link GUI library with libabrt.so - ccpp: unify log message of ignored crashes - ccpp: add IgnoredPath option - a-a-save-package-data: do not blacklist firefox - Resolves: #1277872, #1287302, #1291976 libreport ======= - doc: add option -o and -O into reporter-ureport man page - rhtsupport: use problme report API to create description - bugzilla: make the event configurable - report-gtk: offer users to create private ticket - bugzilla|centos: declare 'restricted access' support - dd: allow 1 and 2 letter long element names - formatdup: more universal comment - Refactoring conditional directives that break parts of statements. - bugzilla: actualize man pages - bugzilla: don't report private problem as comment - uploader: move username and password to the advanced options - uploader: allow empty username and password - uploader: add possibility to set SSH keyfiles - desktop-utils: deal with Destkop files without command line - ureport: enable attaching of arbitrary values - uploader: save remote name in reported_to - curl: return URLs without userinfo - Resolves #1072874 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1291976 - [abrt] abrt-addon-vmcore: codecs.py:319:decode:UnicodeDecodeError: 'utf-8' codec can't decode byte 0xe7 in position 5582: invalid continuation byte https://bugzilla.redhat.com/show_bug.cgi?id=1291976 [ 2 ] Bug #1287302 - [abrt] abrt-addon-vmcore: codecs.py:319:decode:UnicodeDecodeError: 'utf-8' codec can't decode byte 0x99 in position 6089: invalid start byte https://bugzilla.redhat.com/show_bug.cgi?id=1287302 [ 3 ] Bug #1277872 - Abrt leaks sensitive data when adding a comment to another bug report https://bugzilla.redhat.com/show_bug.cgi?id=1277872 [ 4 ] Bug #1072874 - Slightly misleading comment "Another user experienced a similar problem" https://bugzilla.redhat.com/show_bug.cgi?id=1072874 -------------------------------------------------------------------------------- ================================================================================ boswars-2.7-9.fc23 (FEDORA-2016-19e3f4e4da) Bos Wars is a futuristic real-time strategy game -------------------------------------------------------------------------------- Update Information: The library in tolua++ had the wrong soname and file name indicating a different Lua version. Fix this and rebuild the dependent packages. -------------------------------------------------------------------------------- ================================================================================ cegui-0.8.4-15.fc23 (FEDORA-2016-19e3f4e4da) Free library providing windowing and widgets for graphics APIs / engines -------------------------------------------------------------------------------- Update Information: The library in tolua++ had the wrong soname and file name indicating a different Lua version. Fix this and rebuild the dependent packages. -------------------------------------------------------------------------------- ================================================================================ clufter-0.56.0-1.fc23 (FEDORA-2016-0fb46d536a) Tool/library for transforming/analyzing cluster configuration formats -------------------------------------------------------------------------------- Update Information: - move `entry_points.txt` to `clufter-cli` sub-package - general spec file refresh (`pagure.io` as a default project base, etc.) - bump upstream package, see https://github.com/jnpkrn/clufter/releases/tag/v0.56.0 -------------------------------------------------------------------------------- ================================================================================ cockpit-0.94-1.fc23 (FEDORA-2016-0c9eefa5c5) A user interface for Linux servers -------------------------------------------------------------------------------- Update Information: - * Handle interruptions during cockpit-ws start while reading from /dev/urandom - * Remove BIOS display from Server Summary page - * Support tuned descriptions - * Fix Content-Security-Policy in example manifest.json files -------------------------------------------------------------------------------- ================================================================================ conky-1.9.0-15.20141003git30d09e.fc23 (FEDORA-2016-19e3f4e4da) A system monitor for X -------------------------------------------------------------------------------- Update Information: The library in tolua++ had the wrong soname and file name indicating a different Lua version. Fix this and rebuild the dependent packages. -------------------------------------------------------------------------------- ================================================================================ copr-cli-1.47-1.fc23 (FEDORA-2016-b8100b8c0e) Command line interface for COPR -------------------------------------------------------------------------------- Update Information: Bug fixes. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1261125 - Use requests-toolbelt to upload srpms https://bugzilla.redhat.com/show_bug.cgi?id=1261125 [ 2 ] Bug #1292033 - copr-cli ignores multiple package arguments if the first is a local file https://bugzilla.redhat.com/show_bug.cgi?id=1292033 [ 3 ] Bug #1298672 - copr-cli create raises TypeError https://bugzilla.redhat.com/show_bug.cgi?id=1298672 [ 4 ] Bug #1298674 - copr-cli build hangs during upload https://bugzilla.redhat.com/show_bug.cgi?id=1298674 [ 5 ] Bug #1302615 - UnboundLocalError: local variable 'bar' referenced before assignment when building from URLs https://bugzilla.redhat.com/show_bug.cgi?id=1302615 [ 6 ] Bug #1276105 - copr-cli 1.45 errors on el6 https://bugzilla.redhat.com/show_bug.cgi?id=1276105 [ 7 ] Bug #1299243 - RFE: New version of copr-cli (requires rebase of python-copr too) https://bugzilla.redhat.com/show_bug.cgi?id=1299243 -------------------------------------------------------------------------------- ================================================================================ csmock-1.9.0-1.fc23 (FEDORA-2016-2a8415b68c) A mock wrapper for Static Analysis tools -------------------------------------------------------------------------------- Update Information: update to latest upstream -------------------------------------------------------------------------------- ================================================================================ cswrap-1.3.1-1.fc23 (FEDORA-2016-2a8415b68c) Generic compiler wrapper -------------------------------------------------------------------------------- Update Information: update to latest upstream -------------------------------------------------------------------------------- ================================================================================ dbus-glib-0.106-1.fc23 (FEDORA-2016-ddec16b401) GLib bindings for D-Bus -------------------------------------------------------------------------------- Update Information: Update to 0.106 -------------------------------------------------------------------------------- ================================================================================ distribution-gpg-keys-1.3-1.fc23 (FEDORA-2016-1a7ed2ffe8) Keys of various Linux distributions -------------------------------------------------------------------------------- Update Information: Added obsolete keys and Copr keys. -------------------------------------------------------------------------------- ================================================================================ dnf-1.1.6-2.fc23 (FEDORA-2016-10da20f298) Package manager forked from Yum, using libsolv as a dependency resolver -------------------------------------------------------------------------------- Update Information: This updates fixes issues with history info command and malformed translations. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1303149 - dnf history info failing https://bugzilla.redhat.com/show_bug.cgi?id=1303149 [ 2 ] Bug #1302934 - Malformed translations in 1.1.6 https://bugzilla.redhat.com/show_bug.cgi?id=1302934 -------------------------------------------------------------------------------- ================================================================================ easy-rsa-3.0.1-1.fc23 (FEDORA-2016-045f70c4bf) Simple shell based CA utility -------------------------------------------------------------------------------- Update Information: Latest upstream. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1304339 - update to 3.0.1 https://bugzilla.redhat.com/show_bug.cgi?id=1304339 -------------------------------------------------------------------------------- ================================================================================ emacs-24.5-7.fc23 (FEDORA-2016-37ae1c1888) GNU Emacs text editor -------------------------------------------------------------------------------- Update Information: * rhbz#1283412 - GDB interface gets confused by non-ASCII * rhbz#1232422 - emacs "deadlocked" after using mercurial with huge amounts of ignored files in the repository -------------------------------------------------------------------------------- References: [ 1 ] Bug #1283412 - GDB interface gets confused by non-ASCII https://bugzilla.redhat.com/show_bug.cgi?id=1283412 [ 2 ] Bug #1232422 - emacs "deadlocked" after using mercurial with huge amounts of ignored files in the repository https://bugzilla.redhat.com/show_bug.cgi?id=1232422 -------------------------------------------------------------------------------- ================================================================================ ember-0.7.2-13.fc23 (FEDORA-2016-19e3f4e4da) 3D client for WorldForge -------------------------------------------------------------------------------- Update Information: The library in tolua++ had the wrong soname and file name indicating a different Lua version. Fix this and rebuild the dependent packages. -------------------------------------------------------------------------------- ================================================================================ fawkes-0.5.0-28.fc23 (FEDORA-2016-19e3f4e4da) Robot Software Framework -------------------------------------------------------------------------------- Update Information: The library in tolua++ had the wrong soname and file name indicating a different Lua version. Fix this and rebuild the dependent packages. -------------------------------------------------------------------------------- ================================================================================ firefox-44.0-5.fc23 (FEDORA-2016-8344bd0b61) Mozilla Firefox Web browser -------------------------------------------------------------------------------- Update Information: We see many Gtk3 crashes in recent Firefox but it can't be analyzed by Mozilla crash tool. So this release disables Mozilla crash reporter and sends crash stats directly at ABRT retrace server which is able to get backtraces of Gtk3 and other system libraries. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1303621 - [GCC 6.0] Firefox fails to build https://bugzilla.redhat.com/show_bug.cgi?id=1303621 -------------------------------------------------------------------------------- ================================================================================ frescobaldi-2.18.2-1.fc23 (FEDORA-2016-1d578ada7c) Edit LilyPond sheet music with ease! -------------------------------------------------------------------------------- Update Information: Latest upstream. -------------------------------------------------------------------------------- ================================================================================ gap-pkg-autodoc-2016.01.31-1.fc23 (FEDORA-2016-4f33e01562) Generate documentation from GAP source code -------------------------------------------------------------------------------- Update Information: gap-pkg-autodoc-2016.01.31-1.fc23: - Be a bit more paranoid when reading PackageInfo.g files - Issue a warning when used on packages with multiple books - Fix creation of .lab files - AUTODOC_PROCESS_INTRO_STRINGS: turn tree into an explicit parameter - AutoDocScanFiles: take tree and package name as explicit args - CreateMainPage: turn bookname and dir into explicit parameters - CreateTitlePage: make doc parameter explicit -------------------------------------------------------------------------------- References: [ 1 ] Bug #1303471 - gap-pkg-autodoc-2016.01.31. is available https://bugzilla.redhat.com/show_bug.cgi?id=1303471 -------------------------------------------------------------------------------- ================================================================================ hamster-time-tracker-2.0-0.2.rc1.fc23 (FEDORA-2016-e7bfef7108) The Linux time tracker -------------------------------------------------------------------------------- Update Information: version 2.0 rc1 - - This release candidate marks the transition to Gtk3, and includes all the other feature additions and bugfixes that have been submitted since then and are too countless to list here. - Fix dependency to python-dbus, rhbz#1285405 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1285405 - hamster requires python dbus module which is not installed https://bugzilla.redhat.com/show_bug.cgi?id=1285405 [ 2 ] Bug #1281826 - [abrt] hamster-time-tracker: invalid syntax (hamster, line 165) https://bugzilla.redhat.com/show_bug.cgi?id=1281826 [ 3 ] Bug #1271526 - [abrt] hamster-time-tracker: connection.py:651:call_blocking:DBusException: org.freedesktop.DBus.Python.TypeError: Traceback (most recent call last): https://bugzilla.redhat.com/show_bug.cgi?id=1271526 [ 4 ] Bug #1269568 - [abrt] hamster-time-tracker: configuration.py:188:__init__:GError: Configuration server couldn't be contacted: D-BUS error: The GConf daemon is currently shutting down. https://bugzilla.redhat.com/show_bug.cgi?id=1269568 [ 5 ] Bug #1262661 - [abrt] hamster-time-tracker: today.py:429:on_toggle_called:AttributeError: 'NoneType' object has no attribute 'present' https://bugzilla.redhat.com/show_bug.cgi?id=1262661 [ 6 ] Bug #1235881 - [abrt] hamster-time-tracker: stats.py:300:stats:ZeroDivisionError: integer division or modulo by zero https://bugzilla.redhat.com/show_bug.cgi?id=1235881 [ 7 ] Bug #1231989 - [abrt] hamster-time-tracker: activityentry.py:340:_on_tree_button_press_event:TypeError: iter must be a GtkTreeIter https://bugzilla.redhat.com/show_bug.cgi?id=1231989 [ 8 ] Bug #1293039 - hamster version 2.0-rc1 https://bugzilla.redhat.com/show_bug.cgi?id=1293039 [ 9 ] Bug #1231392 - [abrt] hamster-time-tracker: configuration.py:111:show:AttributeError: 'About' object has no attribute 'connect' https://bugzilla.redhat.com/show_bug.cgi?id=1231392 [ 10 ] Bug #1287272 - [abrt] hamster-time-tracker: connection.py:651:call_blocking:DBusException: org.freedesktop.DBus.Error.NoReply: Did not receive a reply. Possible causes include: the remote application did not send a reply, the message bus security policy blocked the ... https://bugzilla.redhat.com/show_bug.cgi?id=1287272 -------------------------------------------------------------------------------- ================================================================================ kgpg-15.12.1-2.fc23 (FEDORA-2016-5c0fb7bf81) Manage GPG encryption keys -------------------------------------------------------------------------------- Update Information: Add support for kf5 service menus. -------------------------------------------------------------------------------- ================================================================================ libreport-2.6.4-1.fc23 (FEDORA-2016-933459f83c) Generic library for reporting various problems -------------------------------------------------------------------------------- Update Information: ABRT ===== - ccpp: add AllowedUsers and AllowedGroups feature - ccpp: use executable name from pid - a-a-c-o-f-hw-error: do not crash on invalid unicode - configui: link GUI library with libabrt.so - ccpp: unify log message of ignored crashes - ccpp: add IgnoredPath option - a-a-save-package-data: do not blacklist firefox - Resolves: #1277872, #1287302, #1291976 libreport ======= - doc: add option -o and -O into reporter-ureport man page - rhtsupport: use problme report API to create description - bugzilla: make the event configurable - report-gtk: offer users to create private ticket - bugzilla|centos: declare 'restricted access' support - dd: allow 1 and 2 letter long element names - formatdup: more universal comment - Refactoring conditional directives that break parts of statements. - bugzilla: actualize man pages - bugzilla: don't report private problem as comment - uploader: move username and password to the advanced options - uploader: allow empty username and password - uploader: add possibility to set SSH keyfiles - desktop-utils: deal with Destkop files without command line - ureport: enable attaching of arbitrary values - uploader: save remote name in reported_to - curl: return URLs without userinfo - Resolves #1072874 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1291976 - [abrt] abrt-addon-vmcore: codecs.py:319:decode:UnicodeDecodeError: 'utf-8' codec can't decode byte 0xe7 in position 5582: invalid continuation byte https://bugzilla.redhat.com/show_bug.cgi?id=1291976 [ 2 ] Bug #1287302 - [abrt] abrt-addon-vmcore: codecs.py:319:decode:UnicodeDecodeError: 'utf-8' codec can't decode byte 0x99 in position 6089: invalid start byte https://bugzilla.redhat.com/show_bug.cgi?id=1287302 [ 3 ] Bug #1277872 - Abrt leaks sensitive data when adding a comment to another bug report https://bugzilla.redhat.com/show_bug.cgi?id=1277872 [ 4 ] Bug #1072874 - Slightly misleading comment "Another user experienced a similar problem" https://bugzilla.redhat.com/show_bug.cgi?id=1072874 -------------------------------------------------------------------------------- ================================================================================ lxqt-common-0.10.0-8.fc23 (FEDORA-2016-f7705f4141) Common resources for LXQt desktop suite -------------------------------------------------------------------------------- Update Information: Panel does not show main menu entries, rhbz#1252581 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1252581 - Panel does not show main menu entries https://bugzilla.redhat.com/show_bug.cgi?id=1252581 -------------------------------------------------------------------------------- ================================================================================ megatools-1.9.97-1.fc23 (FEDORA-2016-9d9b478e3b) Command line client for MEGA -------------------------------------------------------------------------------- Update Information: Upstream release rhbz#1304133 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1304133 - megatools-1.9.97 is available https://bugzilla.redhat.com/show_bug.cgi?id=1304133 -------------------------------------------------------------------------------- ================================================================================ mingw-p11-kit-0.23.2-1.fc23 (FEDORA-2016-90c5375443) MinGW Library for loading and sharing PKCS#11 modules -------------------------------------------------------------------------------- Update Information: http://lists.freedesktop.org/archives/p11-glue/2015-December/000586.html -------------------------------------------------------------------------------- ================================================================================ mobile-broadband-provider-info-1.20151214-1.fc23 (FEDORA-2016-de2a3f6060) Mobile broadband provider database -------------------------------------------------------------------------------- Update Information: Update to latest upstream release 20151214 -------------------------------------------------------------------------------- ================================================================================ msgpuck-1.0.2-1.fc23 (FEDORA-2016-01e318faa8) MsgPack binary serialization library in a self-contained header -------------------------------------------------------------------------------- Update Information: Review fixes ---- I fixed problem with msgpuck-devel dependency on msgpuck. Sorry for that. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1295217 - Review Request: msgpuck - a MsgPack serialization library in a self-contained header file https://bugzilla.redhat.com/show_bug.cgi?id=1295217 -------------------------------------------------------------------------------- ================================================================================ myrepos-1.20160123-1.fc23 (FEDORA-2016-803a14f79e) A multiple SCM repository management tool -------------------------------------------------------------------------------- Update Information: Update to new upstream version 1.20160123 -------------------------------------------------------------------------------- ================================================================================ nautilus-image-converter-0.3.1-0.10.git430afce31.fc23 (FEDORA-2016-5465796f58) Nautilus extension to mass resize images -------------------------------------------------------------------------------- Update Information: Fixes a bug with the Rotate Images Menu and ship a AppStream metadata file to make program discovery easier. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1297803 - Rotate images menu option doesn't work https://bugzilla.redhat.com/show_bug.cgi?id=1297803 [ 2 ] Bug #1301337 - Ship AppStream metadata file https://bugzilla.redhat.com/show_bug.cgi?id=1301337 -------------------------------------------------------------------------------- ================================================================================ nettle-3.2-1.fc23 (FEDORA-2016-89968f88d2) A low-level cryptographic library -------------------------------------------------------------------------------- Update Information: updated to 3.2 (#1301310) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1304303 - CVE-2015-8803 nettle: secp256 calculation bug https://bugzilla.redhat.com/show_bug.cgi?id=1304303 -------------------------------------------------------------------------------- ================================================================================ openstack-ceilometer-2015.1.3-1.fc23 (FEDORA-2016-657afe7e2d) OpenStack measurement collection service -------------------------------------------------------------------------------- Update Information: Rebase to 2014.2.4 and 2015.1.3 -------------------------------------------------------------------------------- ================================================================================ openstack-cinder-2015.1.3-1.fc23 (FEDORA-2016-657afe7e2d) OpenStack Volume service -------------------------------------------------------------------------------- Update Information: Rebase to 2014.2.4 and 2015.1.3 -------------------------------------------------------------------------------- ================================================================================ openstack-glance-2015.1.3-1.fc23 (FEDORA-2016-657afe7e2d) OpenStack Image Service -------------------------------------------------------------------------------- Update Information: Rebase to 2014.2.4 and 2015.1.3 -------------------------------------------------------------------------------- ================================================================================ openstack-heat-2015.1.3-1.fc23 (FEDORA-2016-657afe7e2d) OpenStack Orchestration (heat) -------------------------------------------------------------------------------- Update Information: Rebase to 2014.2.4 and 2015.1.3 -------------------------------------------------------------------------------- ================================================================================ openstack-ironic-2015.1.3-1.fc23 (FEDORA-2016-657afe7e2d) OpenStack Baremetal Hypervisor API (ironic) -------------------------------------------------------------------------------- Update Information: Rebase to 2014.2.4 and 2015.1.3 -------------------------------------------------------------------------------- ================================================================================ openstack-keystone-2015.1.3-1.fc23 (FEDORA-2016-657afe7e2d) OpenStack Identity Service -------------------------------------------------------------------------------- Update Information: Rebase to 2014.2.4 and 2015.1.3 -------------------------------------------------------------------------------- ================================================================================ openstack-neutron-2015.1.3-1.fc23 (FEDORA-2016-657afe7e2d) OpenStack Networking Service -------------------------------------------------------------------------------- Update Information: Rebase to 2014.2.4 and 2015.1.3 -------------------------------------------------------------------------------- ================================================================================ openstack-nova-2015.1.3-1.fc23 (FEDORA-2016-657afe7e2d) OpenStack Compute (nova) -------------------------------------------------------------------------------- Update Information: Rebase to 2014.2.4 and 2015.1.3 -------------------------------------------------------------------------------- ================================================================================ openstack-sahara-2015.1.3-1.fc23 (FEDORA-2016-657afe7e2d) Apache Hadoop cluster management on OpenStack -------------------------------------------------------------------------------- Update Information: Rebase to 2014.2.4 and 2015.1.3 -------------------------------------------------------------------------------- ================================================================================ pagure-1.0.1-1.fc23 (FEDORA-2016-709356de28) A git-centered forge -------------------------------------------------------------------------------- Update Information: Updates pagure to 1.0.1 which is a fairly big change compare to what we had in the repo so far. -------------------------------------------------------------------------------- ================================================================================ pcp-3.11.0-1.fc23 (FEDORA-2016-5bfb0546b8) System-level performance monitoring and performance management -------------------------------------------------------------------------------- Update Information: * containers: add a pcp-pmwebd container image * pmcd: start PMDAs via pmdaroot, allowing restart on PMDA failure without restarting pmcd itself * pmcd: tenfold speed up of the shutdown process * pmcd: ensure startup before zabbix-agent, with systemd * pmdafreebsd: use getifaddrs() for network interface * pmdalinux: fix /proc/interrupts parsing on s390x platforms * pmdalinux: fix i386 buffer overflow in softnet stats * pmdalinux: support additional vmstat kernel metrics (virt balloon, transparent-huge-page zero page alloc counters) * pmdaxfs: support the per-device XFS metrics * pmdanamed: fix SELinux AVC denials during Install * pmdavmware: updates to work with current VMWare perl API * libpcp: improvements to derived metrics error handling * libpcp: rework interp logic arond <mark> records * libpcp: fix bug in interp mode record caching * libpcp: pthread_mutexattr_destroy, pthread_mutex_destroy calls * libpcp: added a new fetchgroup API * libpcp: fix dup-context-with-attrs memory corruption bug * libpcp: fix derived metric PMNS navigation mem leak * libpcp: unconditional registration of anon (event.*) metrics * pcp-iostat: use py3 and py3 compatible pipe exception handlers * pcp-iostat: improve incorrect counter rate conversion * pcp-iostat: improve BrokenPipeError exception handling * pmmgr: add general monitor-program launching option * pmmgr: resolved a couple of small memory leaks * pmrep: fix first sample reporting, instant/discrete metrics * pmrep: fix string valued metric reporting, with python3 * pmval: improve reporting in the region of <mark> records * pmwebd: add an option to disable service advertising * pmwebd: support for http compression * pmwebd: add units/sem to legend in graphite/png mode * pmwebd: enable graphite image-mode caching via redirection * pmwebd: add an option for alternative name encodings * sar2pcp: support additional mem.util metrics * docs: updates to the system CPU performance tutorial * packaging: add missing dependencies on some perl modules * packaging: drop the pcp-compat subpackage -------------------------------------------------------------------------------- ================================================================================ perl-Lingua-Stem-Ru-0.02-1.fc23 (FEDORA-2016-2b8f743260) Porter's stemming algorithm for Russian (KOI8-R only) -------------------------------------------------------------------------------- Update Information: This release adds enables warnings, rephrases license declaration and modernizes build script. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1304359 - perl-Lingua-Stem-Ru-0.02 is available https://bugzilla.redhat.com/show_bug.cgi?id=1304359 -------------------------------------------------------------------------------- ================================================================================ pypy-4.0.1-1.fc23 (FEDORA-2016-d61891682b) Python implementation with a Just-In-Time compiler -------------------------------------------------------------------------------- Update Information: Update to version 4.0.1 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1275454 - pypy-4.0.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1275454 -------------------------------------------------------------------------------- ================================================================================ python-audioread-2.1.2-2.fc23 (FEDORA-2016-9209b7b422) Multi-library, cross-platform audio decoding in Python -------------------------------------------------------------------------------- Update Information: Update to latest upstream release audioread 2.1.2. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1303724 - python-audioread-2.1.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=1303724 -------------------------------------------------------------------------------- ================================================================================ python-boto-2.39.0-1.fc23 (FEDORA-2016-6caaee01a2) A simple, lightweight interface to Amazon Web Services -------------------------------------------------------------------------------- Update Information: This update fixes several bugs and adds support for the new ap-northeast-2 AWS region. For more details, see the [full changelog](http://boto.cloudhackers.com/en/latest/releasenotes/v2.39.0.html) from upstream. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1300424 - Update python-boto to 2.39 https://bugzilla.redhat.com/show_bug.cgi?id=1300424 -------------------------------------------------------------------------------- ================================================================================ python-copr-1.65-1.fc23 (FEDORA-2016-b8100b8c0e) Python interface for Copr -------------------------------------------------------------------------------- Update Information: Bug fixes. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1261125 - Use requests-toolbelt to upload srpms https://bugzilla.redhat.com/show_bug.cgi?id=1261125 [ 2 ] Bug #1292033 - copr-cli ignores multiple package arguments if the first is a local file https://bugzilla.redhat.com/show_bug.cgi?id=1292033 [ 3 ] Bug #1298672 - copr-cli create raises TypeError https://bugzilla.redhat.com/show_bug.cgi?id=1298672 [ 4 ] Bug #1298674 - copr-cli build hangs during upload https://bugzilla.redhat.com/show_bug.cgi?id=1298674 [ 5 ] Bug #1302615 - UnboundLocalError: local variable 'bar' referenced before assignment when building from URLs https://bugzilla.redhat.com/show_bug.cgi?id=1302615 [ 6 ] Bug #1276105 - copr-cli 1.45 errors on el6 https://bugzilla.redhat.com/show_bug.cgi?id=1276105 [ 7 ] Bug #1299243 - RFE: New version of copr-cli (requires rebase of python-copr too) https://bugzilla.redhat.com/show_bug.cgi?id=1299243 -------------------------------------------------------------------------------- ================================================================================ python-dulwich-0.12.0-1.fc23 (FEDORA-2016-9c0d6e5296) A python implementation of the Git file formats and protocols -------------------------------------------------------------------------------- Update Information: Update to new upstream version 0.12.0 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1304050 - python-dulwich version 0.12.0 https://bugzilla.redhat.com/show_bug.cgi?id=1304050 -------------------------------------------------------------------------------- ================================================================================ python-hglib-2.0-1.fc23 (FEDORA-2016-91b9823359) Mercurial Python library -------------------------------------------------------------------------------- Update Information: Update to latest upstream release python-hglib 2.0 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1303920 - python-hglib-2.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1303920 -------------------------------------------------------------------------------- ================================================================================ python-mwclient-0.8.0-2.fc23 (FEDORA-2016-08ac84eb4f) Mwclient is a client to the MediaWiki API -------------------------------------------------------------------------------- Update Information: This update provides the new release of python-mwclient. The major new feature in this release is Python 3 compatibility, so a python3-mwclient subpackage is added for Fedora releases (not yet for EPEL, as I'm waiting for the whole question of how we're going to do Python 3 on EPEL to be nailed down). python- mwclient is renamed to python2-mwclient, with appropriate Provides and Obsoletes. There is one minor backwards compatibility break; `Page.save()`'s behaviour has changed slightly, in that if you previously passed a section number to `Page.text()`, it will not be used for a subsequent `Page.save()` call. This change should not affect either of Fedora's packaged consumers (parley and python-wikitcms). More details on this and the other changes in the new release can be found in `RELEASE-NOTES.md`. -------------------------------------------------------------------------------- ================================================================================ python-pymongo-2.5.2-8.fc23 (FEDORA-2016-50abc3e885) Python driver for MongoDB -------------------------------------------------------------------------------- Update Information: Security fix for CVE-2013-2099, CVE-2013-7440 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1224999 - CVE-2013-7440 python: wildcard matching rules do not follow RFC 6125 https://bugzilla.redhat.com/show_bug.cgi?id=1224999 [ 2 ] Bug #963260 - CVE-2013-2099 python: ssl.match_hostname() DoS via certificates with specially crafted hostname wildcard patterns https://bugzilla.redhat.com/show_bug.cgi?id=963260 -------------------------------------------------------------------------------- ================================================================================ python-socketIO-client-0.6.5-2.fc23 (FEDORA-2016-442278716c) A socket.io client library for Python -------------------------------------------------------------------------------- Update Information: New package. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1300092 - Review Request: python-socketIO-client - A socket.io client library for Python https://bugzilla.redhat.com/show_bug.cgi?id=1300092 -------------------------------------------------------------------------------- ================================================================================ python-unittest2-1.1.0-3.fc23 (FEDORA-2016-86b6acd494) The new features in unittest backported to Python 2.4+ -------------------------------------------------------------------------------- Update Information: Backwards compatbile update to fix testtools dependency (and therefore lettuce). -------------------------------------------------------------------------------- References: [ 1 ] Bug #1304117 - Lettuce fails to run https://bugzilla.redhat.com/show_bug.cgi?id=1304117 -------------------------------------------------------------------------------- ================================================================================ rabbitmq-server-3.5.7-4.fc23 (FEDORA-2016-75b9dcc7e1) The RabbitMQ server -------------------------------------------------------------------------------- Update Information: - Fix stop / restart - Don't wait for slave stop messages forever (patches #2, #3) - Drop dependency on syslog.target - this seems to be a leftover - Require epmd@0.0.0.0 to run. This is a default value. User should override it if necessary. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1302368 - rabbitmq-server service timeout on stop https://bugzilla.redhat.com/show_bug.cgi?id=1302368 -------------------------------------------------------------------------------- ================================================================================ rabbitvcs-0.16.1-0.3.20160108gite8214e6.fc23 (FEDORA-2016-6ad2cc9128) Graphical user interface to version control systems -------------------------------------------------------------------------------- Update Information: - fix nautilus plugin - disable b0rken gedit plugin ---- reanimate package - - new upstream snapshot as pre-release - port to python3 - mark all as noarch and adjust plugins pathes - enable debuginfo - add git and mercurial as dependencies - fix some crashes with log command, rhbz#1141530 - fix vcs status features, rhbz#1083043 - enable caja plugin, rhbz#1096162 - make gedit plugin work, rhbz#1226816 - add nemo plugin -------------------------------------------------------------------------------- References: [ 1 ] Bug #1304050 - python-dulwich version 0.12.0 https://bugzilla.redhat.com/show_bug.cgi?id=1304050 [ 2 ] Bug #1303457 - thunarx-python version 0.3.0 https://bugzilla.redhat.com/show_bug.cgi?id=1303457 [ 3 ] Bug #1226816 - Gedit plugin not working with Gedit later than version 3.12 https://bugzilla.redhat.com/show_bug.cgi?id=1226816 [ 4 ] Bug #1141530 - [abrt] rabbitvcs-core: log.py:1598:log_factory:KeyError: 'unknown' https://bugzilla.redhat.com/show_bug.cgi?id=1141530 [ 5 ] Bug #1228896 - [abrt] rabbitvcs-core: subprocess.py:1335:_execute_child:OSError: [Errno 2] Datei oder Verzeichnis nicht gefunden https://bugzilla.redhat.com/show_bug.cgi?id=1228896 [ 6 ] Bug #1226603 - [abrt] rabbitvcs-core: add.py:105:load:AttributeError: GitStage instance has no attribute 'show_ignored' https://bugzilla.redhat.com/show_bug.cgi?id=1226603 [ 7 ] Bug #1096162 - No support in mate caja https://bugzilla.redhat.com/show_bug.cgi?id=1096162 [ 8 ] Bug #1083043 - Package should require python-simplejson https://bugzilla.redhat.com/show_bug.cgi?id=1083043 -------------------------------------------------------------------------------- ================================================================================ ranger-1.6.1-7.fc23 (FEDORA-2016-71a5a26daf) A flexible console file manager -------------------------------------------------------------------------------- Update Information: This update backports a patch from the Rawhide build that corrects the location of `w3imgdisplay` in Fedora, thus fixing image preview. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1217910 - w3imgdisplay-based image preview not working https://bugzilla.redhat.com/show_bug.cgi?id=1217910 -------------------------------------------------------------------------------- ================================================================================ rocksndiamonds-3.3.1.2-1.fc23 (FEDORA-2016-c78d6ebd3a) Underground digging game -------------------------------------------------------------------------------- Update Information: Update to 3.3.1.2 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1294861 - update 3.3.1.2 https://bugzilla.redhat.com/show_bug.cgi?id=1294861 -------------------------------------------------------------------------------- ================================================================================ rubygem-byebug-8.2.2-1.fc23 (FEDORA-2016-3d6d36a811) Ruby 2.0 fast debugger - base + CLI -------------------------------------------------------------------------------- Update Information: New version 8.2.2 is released. -------------------------------------------------------------------------------- ================================================================================ rubygem-domain_name-0.5.20160128-1.fc23 (FEDORA-2016-dc9829993b) Domain Name manipulation library for Ruby -------------------------------------------------------------------------------- Update Information: New version 0.5.20160128 is released. -------------------------------------------------------------------------------- ================================================================================ selinux-policy-3.13.1-158.4.fc23 (FEDORA-2016-2aa7777f21) SELinux policy configuration -------------------------------------------------------------------------------- Update Information: More info: http://koji.fedoraproject.org/koji/buildinfo?buildID=715636 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1212076 - SELinux is preventing /usr/lib/systemd/systemd from 'read' accesses on the file /proc/self/ns/net. https://bugzilla.redhat.com/show_bug.cgi?id=1212076 [ 2 ] Bug #1282003 - SELinux is preventing /usr/sbin/apcaccess from 'read' accesses on the file unix. https://bugzilla.redhat.com/show_bug.cgi?id=1282003 [ 3 ] Bug #1284313 - SELinux is preventing gnome-shell from 'sendto' accesses on the unix_dgram_socket 006E7669646961313161343363646500000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000. https://bugzilla.redhat.com/show_bug.cgi?id=1284313 [ 4 ] Bug #1288776 - SELinux is preventing gdb from using the 'ptrace' accesses on a process. https://bugzilla.redhat.com/show_bug.cgi?id=1288776 [ 5 ] Bug #1289930 - Allow oddjobd to execute IPA replica connection check https://bugzilla.redhat.com/show_bug.cgi?id=1289930 [ 6 ] Bug #1296826 - SELinux blocks iptables on Fedora Atomic 23 https://bugzilla.redhat.com/show_bug.cgi?id=1296826 [ 7 ] Bug #1288111 - selinux prevents login in gnome-wayland https://bugzilla.redhat.com/show_bug.cgi?id=1288111 -------------------------------------------------------------------------------- ================================================================================ skf-2.00.3-1.fc23 (FEDORA-2016-861772644b) Utility binary files in Simple Kanji Filter -------------------------------------------------------------------------------- Update Information: New version 2.00.3 is released. -------------------------------------------------------------------------------- ================================================================================ tolua++-1.0.93-17.fc23 (FEDORA-2016-19e3f4e4da) A tool to integrate C/C++ code with Lua -------------------------------------------------------------------------------- Update Information: The library in tolua++ had the wrong soname and file name indicating a different Lua version. Fix this and rebuild the dependent packages. -------------------------------------------------------------------------------- ================================================================================ trojita-0.6-1.fc23 (FEDORA-2016-a76f1a48f8) IMAP e-mail client -------------------------------------------------------------------------------- Update Information: version 0.6 - see https://quickgit.kde.org/?p=trojita.git&a=log&h=8c1206a9325714 3c056404aaec6ec69f06e1ef6c -------------------------------------------------------------------------------- References: [ 1 ] Bug #1303554 - [abrt] trojita: QMetaObjectPrivate::disconnect(): trojita killed by SIGSEGV https://bugzilla.redhat.com/show_bug.cgi?id=1303554 [ 2 ] Bug #1301244 - trojita-0.6 is available https://bugzilla.redhat.com/show_bug.cgi?id=1301244 -------------------------------------------------------------------------------- ================================================================================ udiskie-1.4.7-1.fc23 (FEDORA-2016-c1ad03df19) Removable disk auto-mounter -------------------------------------------------------------------------------- Update Information: Update to latest upstream release, with associated fixes. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1264657 - Missing Requires: libnotify https://bugzilla.redhat.com/show_bug.cgi?id=1264657 [ 2 ] Bug #1265867 - udiskie-1.4.7 is available https://bugzilla.redhat.com/show_bug.cgi?id=1265867 -------------------------------------------------------------------------------- ================================================================================ wordpress-4.4.2-1.fc23 (FEDORA-2016-b61929db9e) Blog tool and publishing platform -------------------------------------------------------------------------------- Update Information: **WordPress 4.4.2 Security and Maintenance Release** WordPress 4.4.2 is now available. This is a security release for all previous versions and we strongly encourage you to update your sites immediately. WordPress versions 4.4.1 and earlier are affected by two security issues: a possible SSRF for certain local URIs, reported by Ronni Skansing; and an open redirection attack, reported by Shailesh Suthar. Thank you to both reporters for practicing responsible disclosure. In addition to the security issues above, WordPress 4.4.2 fixes 17 bugs from 4.4 and 4.4.1. For more information, see the [release notes](https://codex.wordpress.org/Version_4.4.2) or consult the [list of changes](https://core.trac.wordpress.org/query?milestone=4.4.2). -------------------------------------------------------------------------------- ================================================================================ xlogin-0-0.1.20160114git97667d7.fc23 (FEDORA-2016-ff96a1e0b9) Automatic X login service for systemd -------------------------------------------------------------------------------- Update Information: initial package, rhbz#1298715 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1298715 - Review Request: xlogin - Automatic X login service for systemd https://bugzilla.redhat.com/show_bug.cgi?id=1298715 -------------------------------------------------------------------------------- -- test mailing list test@lists.fedoraproject.org To unsubscribe: http://lists.fedoraproject.org/admin/lists/test@lists.fedoraproject.org
