The following Fedora 24 Security updates need testing: Age URL 4 https://bodhi.fedoraproject.org/updates/FEDORA-2016-a07cf79284 pdfbox-1.8.11-2.fc24 3 https://bodhi.fedoraproject.org/updates/FEDORA-2016-dede12f0a2 pagure-2.2.2-1.fc24 3 https://bodhi.fedoraproject.org/updates/FEDORA-2016-8fa7ced365 mingw-openjpeg2-2.1.1-1.fc24 3 https://bodhi.fedoraproject.org/updates/FEDORA-2016-485dff6060 perl-5.22.2-361.fc24 3 https://bodhi.fedoraproject.org/updates/FEDORA-2016-904ed1d231 tcpreplay-4.1.1-2.fc24 1 https://bodhi.fedoraproject.org/updates/FEDORA-2016-f0c8b7b115 php-doctrine-orm-2.4.8-1.fc24 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-9a16b2e14e kernel-4.6.4-301.fc24 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-4738cb1a2c mingw-gnutls-3.4.14-1.fc24
The following Fedora 24 Critical Path updates have yet to be approved: Age URL 3 https://bodhi.fedoraproject.org/updates/FEDORA-2016-6e292f9d34 lorax-24.20-1.fc24 3 https://bodhi.fedoraproject.org/updates/FEDORA-2016-895474af8c libtasn1-4.8-2.fc24 3 https://bodhi.fedoraproject.org/updates/FEDORA-2016-485dff6060 perl-5.22.2-361.fc24 1 https://bodhi.fedoraproject.org/updates/FEDORA-2016-8aabc73dbf xorg-x11-drv-intel-2.99.917-24.20160712.fc24 1 https://bodhi.fedoraproject.org/updates/FEDORA-2016-e993068d6d poppler-0.41.0-2.fc24 1 https://bodhi.fedoraproject.org/updates/FEDORA-2016-0da627fe73 selinux-policy-3.13.1-191.5.fc24 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-598e0c4ebc gnome-session-3.20.2-1.fc24 0 https://bodhi.fedoraproject.org/updates/FEDORA-2016-9a16b2e14e kernel-4.6.4-301.fc24 The following builds have been pushed to Fedora 24 updates-testing armadillo-7.200.2-5.fc24 cinnamon-session-3.0.1-3.fc24 cockpit-0.114-1.fc24 cross-gcc-6.1.1-2.fc24 dconf-editor-3.20.3-1.fc24 docker-1.10.3-24.git29066b4.fc24 gnome-session-3.20.2-1.fc24 gphoto2-2.5.10-1.fc24 kernel-4.6.4-301.fc24 libgphoto2-2.5.10-1.fc24 libinvm-cim-1.0.0.1041-1.fc24 mingw-gnutls-3.4.14-1.fc24 nitroshare-0.3.2-9.fc24 openscap-1.2.10-1.fc24 php-horde-Horde-Image-2.3.6-1.fc24 php-horde-Horde-Memcache-2.1.1-1.fc24 python-libcloud-1.1.0-1.fc24 python-pyrtlsdr-0.2.2-6.fc24 qgnomeplatform-0.2-7.20160621git.fc24 qhttpengine-0.1.0-1.fc24 rubygem-json-1.8.3-103.fc24 storaged-2.5.2-2.fc24 ufraw-0.22-2.fc24 Details about builds: ================================================================================ armadillo-7.200.2-5.fc24 (FEDORA-2016-9bbf3bf99e) Fast C++ matrix library with interfaces to LAPACK and ATLAS -------------------------------------------------------------------------------- Update Information: fix build on s390(x) and ppc64 - disable openblas support -------------------------------------------------------------------------------- ================================================================================ cinnamon-session-3.0.1-3.fc24 (FEDORA-2016-ca8cbcb6be) Cinnamon session manager -------------------------------------------------------------------------------- Update Information: Make QT5 apps configurable using the qt5ct tool -------------------------------------------------------------------------------- ================================================================================ cockpit-0.114-1.fc24 (FEDORA-2016-100edbbd70) A user interface for Linux servers -------------------------------------------------------------------------------- Update Information: - .104 - * Network configuration of the Ethernet MTU - * Red Hat Subscriptions can now specify activation keys and orgs - * Start integration testing on CentOS - * SSH Host keys are show on system page - * Machine ID is shown on system page - * Show intelligent password score error messages ---- - * Show timer information for systemd timer jobs - * Use 'active-backup' as the default for new network bonds - * When changing system time check formats properly - * Hide the machine asset tag when no asset exists - * Disable the network on/off switch for unknown or unmanaged interfaces - * Show full string for system hardware info and operating system name -------------------------------------------------------------------------------- ================================================================================ cross-gcc-6.1.1-2.fc24 (FEDORA-2016-4472e6b30f) Cross C compiler -------------------------------------------------------------------------------- Update Information: Sync with gcc-6.1.1-3, which fixes a bug that causes u-boot for Allwinner/sunxi devices not to build. Compiler plugin support is now enabled. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1353858 - Please sync with normal gcc https://bugzilla.redhat.com/show_bug.cgi?id=1353858 -------------------------------------------------------------------------------- ================================================================================ dconf-editor-3.20.3-1.fc24 (FEDORA-2016-5b2a5a15fe) Configuration editor for dconf -------------------------------------------------------------------------------- Update Information: dconf-editor 3.20.3 release. For details, see https://mail.gnome.org/archives /ftp-release-list/2016-June/msg00097.html -------------------------------------------------------------------------------- ================================================================================ docker-1.10.3-24.git29066b4.fc24 (FEDORA-2016-e1f273d893) Automates deployment of containerized applications -------------------------------------------------------------------------------- Update Information: built docker @projectatomic/fedora-1.10.3 commit 29066b4 ---- built docker @projectatomic/fedora-1.10.3 commit 971d3bf ---- built docker @projectatomic/fedora-1.10.3 commit 3b3d748 -------------------------------------------------------------------------------- ================================================================================ gnome-session-3.20.2-1.fc24 (FEDORA-2016-598e0c4ebc) GNOME session manager -------------------------------------------------------------------------------- Update Information: gnome-session 3.20.2 release. - Fixes to D-Bus activation environment - Compiler warning fixes - Fail whale localization fix - Fix heap corruption in dbus-launch wrapper code - Translation updates -------------------------------------------------------------------------------- ================================================================================ gphoto2-2.5.10-1.fc24 (FEDORA-2016-a85f6cac4e) Software for accessing digital cameras -------------------------------------------------------------------------------- Update Information: update to 2.5.10 -------------------------------------------------------------------------------- ================================================================================ kernel-4.6.4-301.fc24 (FEDORA-2016-9a16b2e14e) The Linux kernel -------------------------------------------------------------------------------- Update Information: Update to latest upstream stable release, Linux v4.6.4 For those with Skylake CPUs, please note that there may be instability with a recent microcode update. Read https://www.happyassassin.net/2016/07/07/psa-failure-to-boot-after-kernel- update-on-skylake-systems/ and look for a system firmware update before installing the kernel. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1354708 - CVE-2016-5696 kernel: challenge ACK counter information disclosure. https://bugzilla.redhat.com/show_bug.cgi?id=1354708 [ 2 ] Bug #1353490 - CVE-2016-6156 kernel: Race condition vulnerability in Chrome driver https://bugzilla.redhat.com/show_bug.cgi?id=1353490 [ 3 ] Bug #1350845 - CVE-2016-1237 kernel: Missing check for permissions when setting ACL https://bugzilla.redhat.com/show_bug.cgi?id=1350845 [ 4 ] Bug #1350509 - CVE-2016-5829 kernel: Heap buffer overflow in hiddev driver https://bugzilla.redhat.com/show_bug.cgi?id=1350509 -------------------------------------------------------------------------------- ================================================================================ libgphoto2-2.5.10-1.fc24 (FEDORA-2016-a85f6cac4e) Library for accessing digital cameras -------------------------------------------------------------------------------- Update Information: update to 2.5.10 -------------------------------------------------------------------------------- ================================================================================ libinvm-cim-1.0.0.1041-1.fc24 (FEDORA-2016-eef1cb4280) Framework for Storage CIM Providers -------------------------------------------------------------------------------- Update Information: Initial rpm submission to Fedora -------------------------------------------------------------------------------- References: [ 1 ] Bug #1326931 - None https://bugzilla.redhat.com/show_bug.cgi?id=1326931 -------------------------------------------------------------------------------- ================================================================================ mingw-gnutls-3.4.14-1.fc24 (FEDORA-2016-4738cb1a2c) MinGW GnuTLS TLS/SSL encryption library -------------------------------------------------------------------------------- Update Information: Security update -------------------------------------------------------------------------------- References: [ 1 ] Bug #1353843 - gnutls: Certificate verification issue when used with the p11-kit trust module https://bugzilla.redhat.com/show_bug.cgi?id=1353843 -------------------------------------------------------------------------------- ================================================================================ nitroshare-0.3.2-9.fc24 (FEDORA-2016-68d6628c64) Transfer files from one device to another made extremely simple -------------------------------------------------------------------------------- Update Information: NitroShare v0.3.2 - - fixes rhbz#1354081 - provide support for HTTP and SSL - add subpackages with extensions for nautilus, nemo and caja - drop icons subpackages - provide translations (add Qt5LinguistTools) - try to fix systray icon in plasma5 QHttpEngine - initial package, rhbz#1354184 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1354081 - nitroshare-0.3.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=1354081 [ 2 ] Bug #1354184 - Review Request: qhttpengine - HTTP server for Qt applications https://bugzilla.redhat.com/show_bug.cgi?id=1354184 -------------------------------------------------------------------------------- ================================================================================ openscap-1.2.10-1.fc24 (FEDORA-2016-adc1278910) Set of open source libraries enabling integration of the SCAP line of standards -------------------------------------------------------------------------------- Update Information: upgrade to the latest upstream release -------------------------------------------------------------------------------- ================================================================================ php-horde-Horde-Image-2.3.6-1.fc24 (FEDORA-2016-bad4d90314) Horde Image API -------------------------------------------------------------------------------- Update Information: **Horde_Image 2.3.6** * [jan] Fix parsing GPS exif data of a certain format. -------------------------------------------------------------------------------- ================================================================================ php-horde-Horde-Memcache-2.1.1-1.fc24 (FEDORA-2016-d291916f4f) Horde Memcache API -------------------------------------------------------------------------------- Update Information: **Horde_Memcache 2.1.1** * [jan] Fix setting compression threshold when using the memcache extension (Bug #14421). ---- **Horde_Memcache 2.1.0** * [jan] Fix locking. * [jan] Add support for memcached extension and PHP 7. -------------------------------------------------------------------------------- ================================================================================ python-libcloud-1.1.0-1.fc24 (FEDORA-2016-fc04b71837) A Python library to address multiple cloud provider APIs -------------------------------------------------------------------------------- Update Information: Python Libcloud 1.1.0 release -------------------------------------------------------------------------------- ================================================================================ python-pyrtlsdr-0.2.2-6.fc24 (FEDORA-2016-d63dedba0c) Python binding for librtlsdr -------------------------------------------------------------------------------- Update Information: This is an update fixing rtlsdrtcp location. ---- This is an update fixing upgrade path from f23. -------------------------------------------------------------------------------- ================================================================================ qgnomeplatform-0.2-7.20160621git.fc24 (FEDORA-2016-ee12b70c69) Qt Platform Theme aimed to accommodate Gnome settings -------------------------------------------------------------------------------- Update Information: Drop dependency on GDM -------------------------------------------------------------------------------- ================================================================================ qhttpengine-0.1.0-1.fc24 (FEDORA-2016-68d6628c64) HTTP server for Qt applications -------------------------------------------------------------------------------- Update Information: NitroShare v0.3.2 - - fixes rhbz#1354081 - provide support for HTTP and SSL - add subpackages with extensions for nautilus, nemo and caja - drop icons subpackages - provide translations (add Qt5LinguistTools) - try to fix systray icon in plasma5 QHttpEngine - initial package, rhbz#1354184 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1354081 - nitroshare-0.3.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=1354081 [ 2 ] Bug #1354184 - Review Request: qhttpengine - HTTP server for Qt applications https://bugzilla.redhat.com/show_bug.cgi?id=1354184 -------------------------------------------------------------------------------- ================================================================================ rubygem-json-1.8.3-103.fc24 (FEDORA-2016-7ed6b78f4b) A JSON implementation in Ruby -------------------------------------------------------------------------------- Update Information: Make symlinks for json gem. -------------------------------------------------------------------------------- ================================================================================ storaged-2.5.2-2.fc24 (FEDORA-2016-126de75eb5) Disk Manager -------------------------------------------------------------------------------- Update Information: Despite the rebase, this is only a bugfixing update. -------------------------------------------------------------------------------- ================================================================================ ufraw-0.22-2.fc24 (FEDORA-2016-ff63d7ba2f) Raw image data retrieval tool for digital cameras -------------------------------------------------------------------------------- Update Information: Build without lensfun, rhbz 1350210, until we find a fix. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1350210 - [abrt] ufraw: lfModifier::~lfModifier(): ufraw killed by SIGSEGV https://bugzilla.redhat.com/show_bug.cgi?id=1350210 -------------------------------------------------------------------------------- -- test mailing list test@lists.fedoraproject.org To unsubscribe: https://lists.fedoraproject.org/admin/lists/test@lists.fedoraproject.org
