The following Fedora 26 Security updates need testing: Age URL 220 https://bodhi.fedoraproject.org/updates/FEDORA-2017-1bf5a0ce01 python-XStatic-jquery-ui-1.12.0.1-2.fc26 159 https://bodhi.fedoraproject.org/updates/FEDORA-2017-2522df3526 nodejs-brace-expansion-1.1.7-1.fc26 114 https://bodhi.fedoraproject.org/updates/FEDORA-2017-1c053de325 memcached-1.4.39-1.fc26 110 https://bodhi.fedoraproject.org/updates/FEDORA-2017-ccb5c8d1e7 docker-distribution-2.6.2-1.git48294d9.fc26 39 https://bodhi.fedoraproject.org/updates/FEDORA-2017-6e6f4f95e6 ruby-2.4.2-84.fc26 25 https://bodhi.fedoraproject.org/updates/FEDORA-2017-6bff3cf26c suricata-3.2.4-1.fc26 19 https://bodhi.fedoraproject.org/updates/FEDORA-2017-b52f851dea calamares-3.1.7-1.fc26 7 https://bodhi.fedoraproject.org/updates/FEDORA-2017-45044b6b33 hostapd-2.6-6.fc26 7 https://bodhi.fedoraproject.org/updates/FEDORA-2017-fa89dbf50d php-PHPMailer-5.2.26-1.fc26 6 https://bodhi.fedoraproject.org/updates/FEDORA-2017-357fa6205d ImageMagick-6.9.9.22-1.fc26 5 https://bodhi.fedoraproject.org/updates/FEDORA-2017-31519ecf40 knot-resolver-1.5.0-1.fc26 knot-2.6.1-1.fc26 2 https://bodhi.fedoraproject.org/updates/FEDORA-2017-ea72793352 fedpkg-1.30-4.fc26 rpkg-1.51-2.fc26 2 https://bodhi.fedoraproject.org/updates/FEDORA-2017-1560290881 roundcubemail-1.3.3-1.fc26 2 https://bodhi.fedoraproject.org/updates/FEDORA-2017-69e06543c1 perl-Net-Ping-External-0.15-11.fc26 2 https://bodhi.fedoraproject.org/updates/FEDORA-2017-3915878e18 ldns-1.7.0-4.fc26 2 https://bodhi.fedoraproject.org/updates/FEDORA-2017-1f1fdab532 postgresql-9.6.6-1.fc26 2 https://bodhi.fedoraproject.org/updates/FEDORA-2017-f87ce166c5 chromium-62.0.3202.89-1.fc26 2 https://bodhi.fedoraproject.org/updates/FEDORA-2017-5f358346f5 firefox-57.0-1.fc26 2 https://bodhi.fedoraproject.org/updates/FEDORA-2017-60c61b6e79 python-copr-1.84-1.fc26 2 https://bodhi.fedoraproject.org/updates/FEDORA-2017-ebee750022 backintime-1.1.24-1.fc26 2 https://bodhi.fedoraproject.org/updates/FEDORA-2017-1f52998c8b konversation-1.7.3-1.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-13f0fd3028 jbig2dec-0.14-1.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-dbec196dd8 openssl-1.1.0g-1.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-7f30914972 compat-openssl10-1.0.2m-1.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-4d5618a962 webkitgtk4-2.18.3-1.fc26
The following Fedora 26 Critical Path updates have yet to be approved: Age URL 43 https://bodhi.fedoraproject.org/updates/FEDORA-2017-621a9b4828 iproute-4.13.0-1.fc26 34 https://bodhi.fedoraproject.org/updates/FEDORA-2017-8e91b32f31 python3-3.6.3-2.fc26 32 https://bodhi.fedoraproject.org/updates/FEDORA-2017-19f599ecd6 chrony-3.2-1.fc26 21 https://bodhi.fedoraproject.org/updates/FEDORA-2017-04dc465e5b ModemManager-1.6.10-1.fc26 19 https://bodhi.fedoraproject.org/updates/FEDORA-2017-34b7ce4fee libappstream-glib-0.7.3-1.fc26 12 https://bodhi.fedoraproject.org/updates/FEDORA-2017-861946053e python-productmd-1.9-1.fc26 10 https://bodhi.fedoraproject.org/updates/FEDORA-2017-2727dc1ce8 iio-sensor-proxy-2.4-1.fc26 10 https://bodhi.fedoraproject.org/updates/FEDORA-2017-f10b769a7e pcre2-10.23-10.fc26 10 https://bodhi.fedoraproject.org/updates/FEDORA-2017-349fb51b4d pungi-4.1.20-1.fc26 10 https://bodhi.fedoraproject.org/updates/FEDORA-2017-da5d015449 pcre-8.41-3.fc26 7 https://bodhi.fedoraproject.org/updates/FEDORA-2017-ad679ebc50 menu-cache-1.1.0-1.fc26 5 https://bodhi.fedoraproject.org/updates/FEDORA-2017-24caef8611 gnome-online-accounts-3.24.4-3.fc26 2 https://bodhi.fedoraproject.org/updates/FEDORA-2017-5f358346f5 firefox-57.0-1.fc26 2 https://bodhi.fedoraproject.org/updates/FEDORA-2017-4a095800d2 gnutls-3.5.16-2.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-928612cbf8 qt5-qtbase-5.9.2-5.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-4d5618a962 webkitgtk4-2.18.3-1.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-7f30914972 compat-openssl10-1.0.2m-1.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-dbec196dd8 openssl-1.1.0g-1.fc26 The following builds have been pushed to Fedora 26 updates-testing R-curl-3.0-1.fc26 babl-0.1.36-1.fc26 bind-9.11.1-3.P3.fc26 borgbackup-1.1.2-1.fc26 caja-1.18.5-1.fc26 cinnamon-3.6.2-1.fc26 cinnamon-control-center-3.6.2-2.fc26 cinnamon-desktop-3.6.2-3.fc26 cinnamon-screensaver-3.6.1-1.fc26 cinnamon-translations-3.6.2-1.fc26 cjs-3.6.1-1.fc26 clevis-8-1.fc26 clufter-0.77.0-1.fc26 compat-openssl10-1.0.2m-1.fc26 cri-o-1.0.4-1.git4aceede.fc26 ghc-cond-0.4.1.1-1.fc26 ghc-htoml-1.0.0.3-1.fc26 ghc-quickcheck-io-0.2.0-1.fc26 ghc-vector-algorithms-0.7.0.1-1.fc26 golang-github-asaskevich-govalidator-8-1.fc26 gxneur-0.20.0-1.fc26 haxe-3.4.4-1.fc26 impallari-raleway-fonts-3.0-2.git20161116.6c67ab1.fc26 ivykis-0.42.2-1.fc26 jbig2dec-0.14-1.fc26 latte-dock-0.7.2-1.fc26 libopusenc-0.1.1-1.fc26 lighttpd-1.4.48-1.fc26 lis-2.0.3-2.fc26 mediawriter-4.1.1-1.fc26 openssl-1.1.0g-1.fc26 perl-Finance-Quote-1.47-1.fc26 perl-Net-CalDAVTalk-0.11-1.fc26 perl-Net-CardDAVTalk-0.07-1.fc26 perl-Shipwright-2.4.42-1.fc26 pluma-1.18.3-1.fc26 psblas3-3.5.0-15.fc26 pysnmp-4.4.2-1.fc26 python-msrest-0.4.18-1.fc26 python-msrestazure-0.4.16-1.fc26 python-openidc-client-0.4.0-1.20171113git54dee6e.fc26 python-rope-0.10.7-1.fc26 python-tinydb-3.7.0-1.fc26 qcad-3.19.1.0-1.fc26 qt5-qtbase-5.9.2-5.fc26 sse2fedmsg-0.3.0-1.fc26 sway-0.15.0-2.fc26 timeline-1.16.0-1.fc26 webkitgtk4-2.18.3-1.fc26 wlc-0.0.11-1.fc26 xapps-1.0.4-1.fc26 xneur-0.20.0-1.fc26 Details about builds: ================================================================================ R-curl-3.0-1.fc26 (FEDORA-2017-02690e21b3) A Modern and Flexible Web Client for R -------------------------------------------------------------------------------- Update Information: Initial package of curl for R. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1511866 - Review Request: R-curl - A Modern and Flexible Web Client for R https://bugzilla.redhat.com/show_bug.cgi?id=1511866 -------------------------------------------------------------------------------- ================================================================================ babl-0.1.36-1.fc26 (FEDORA-2017-0af7561b55) A dynamic, any to any, pixel format conversion library -------------------------------------------------------------------------------- Update Information: Fixes performance regression in GNOME Photos. -------------------------------------------------------------------------------- ================================================================================ bind-9.11.1-3.P3.fc26 (FEDORA-2017-d9cf76b94f) The Berkeley Internet Name Domain (BIND) DNS (Domain Name System) server -------------------------------------------------------------------------------- Update Information: Include DNSKEY 20326 also in trusted-key.key (#1505476) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1505476 - bind-utils: trusted-key.key does not contain recent DNSSEC key https://bugzilla.redhat.com/show_bug.cgi?id=1505476 [ 2 ] Bug #1205168 - dhcp not working with ldap configuration https://bugzilla.redhat.com/show_bug.cgi?id=1205168 [ 3 ] Bug #1508003 - bind: default rndc key uses insecure hmac-md5 https://bugzilla.redhat.com/show_bug.cgi?id=1508003 -------------------------------------------------------------------------------- ================================================================================ borgbackup-1.1.2-1.fc26 (FEDORA-2017-ad3249c57b) A deduplicating backup program with compression and authenticated encryption -------------------------------------------------------------------------------- Update Information: upstream version 1.1.2 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1473973 - Add zsh autocompletion https://bugzilla.redhat.com/show_bug.cgi?id=1473973 [ 2 ] Bug #1509851 - borgbackup 1.1.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=1509851 -------------------------------------------------------------------------------- ================================================================================ caja-1.18.5-1.fc26 (FEDORA-2017-9f93d469ae) File manager for MATE -------------------------------------------------------------------------------- Update Information: - update to 1.18.5 -------------------------------------------------------------------------------- ================================================================================ cinnamon-3.6.2-1.fc26 (FEDORA-2017-ebe0c8716d) Window management and application launching for GNOME -------------------------------------------------------------------------------- Update Information: Point release update -------------------------------------------------------------------------------- References: [ 1 ] Bug #1440116 - [abrt] cinnamon: subprocess.py:398:run:subprocess.CalledProcessError: Command '['wget', 'https://open.spotify.com/300/dca2d09ce16e00b63fe40e68262d35cc64110f5f', '-O', '/tmp/EYKLYY.mediaplayer-cover']' returned non-zero exit status 8 https://bugzilla.redhat.com/show_bug.cgi?id=1440116 [ 2 ] Bug #1426984 - [abrt] cinnamon: subprocess.py:708:run:subprocess.CalledProcessError: Command '['python3', '/home/xzj83b/.local/share/cinnamon/applets/gmail@lauritsriple/getGmailFeedJson.py', '']' returned non-zero exit status 1 https://bugzilla.redhat.com/show_bug.cgi?id=1426984 [ 3 ] Bug #1425602 - [abrt] cinnamon: JsonSettingsWidgets.py:119:get_settings:Exception: Failed to parse settings JSON data for file /home/xzj83b/.cinnamon/configs/bb...@oak-wood.co.uk/7.json https://bugzilla.redhat.com/show_bug.cgi?id=1425602 [ 4 ] Bug #1412981 - [abrt] cinnamon: subprocess.py:708:run:subprocess.CalledProcessError: Command '['python', '/home/demiralp/.local/share/cinnamon/applets/fe...@jonbrettdev.wordpress.com/getFeed.py', 'http://www.iso.org/iso/rss.xml?csnumber=33656&rss=detail']' returned ... https://bugzilla.redhat.com/show_bug.cgi?id=1412981 [ 5 ] Bug #1398001 - [abrt] cinnamon: g_desktop_app_info_get_is_hidden(): cinnamon killed by SIGSEGV https://bugzilla.redhat.com/show_bug.cgi?id=1398001 [ 6 ] Bug #1509706 - xapps: Requires both Python 2 and Python 3 https://bugzilla.redhat.com/show_bug.cgi?id=1509706 -------------------------------------------------------------------------------- ================================================================================ cinnamon-control-center-3.6.2-2.fc26 (FEDORA-2017-ebe0c8716d) Utilities to configure the Cinnamon desktop -------------------------------------------------------------------------------- Update Information: Point release update -------------------------------------------------------------------------------- References: [ 1 ] Bug #1440116 - [abrt] cinnamon: subprocess.py:398:run:subprocess.CalledProcessError: Command '['wget', 'https://open.spotify.com/300/dca2d09ce16e00b63fe40e68262d35cc64110f5f', '-O', '/tmp/EYKLYY.mediaplayer-cover']' returned non-zero exit status 8 https://bugzilla.redhat.com/show_bug.cgi?id=1440116 [ 2 ] Bug #1426984 - [abrt] cinnamon: subprocess.py:708:run:subprocess.CalledProcessError: Command '['python3', '/home/xzj83b/.local/share/cinnamon/applets/gmail@lauritsriple/getGmailFeedJson.py', '']' returned non-zero exit status 1 https://bugzilla.redhat.com/show_bug.cgi?id=1426984 [ 3 ] Bug #1425602 - [abrt] cinnamon: JsonSettingsWidgets.py:119:get_settings:Exception: Failed to parse settings JSON data for file /home/xzj83b/.cinnamon/configs/bb...@oak-wood.co.uk/7.json https://bugzilla.redhat.com/show_bug.cgi?id=1425602 [ 4 ] Bug #1412981 - [abrt] cinnamon: subprocess.py:708:run:subprocess.CalledProcessError: Command '['python', '/home/demiralp/.local/share/cinnamon/applets/fe...@jonbrettdev.wordpress.com/getFeed.py', 'http://www.iso.org/iso/rss.xml?csnumber=33656&rss=detail']' returned ... https://bugzilla.redhat.com/show_bug.cgi?id=1412981 [ 5 ] Bug #1398001 - [abrt] cinnamon: g_desktop_app_info_get_is_hidden(): cinnamon killed by SIGSEGV https://bugzilla.redhat.com/show_bug.cgi?id=1398001 [ 6 ] Bug #1509706 - xapps: Requires both Python 2 and Python 3 https://bugzilla.redhat.com/show_bug.cgi?id=1509706 -------------------------------------------------------------------------------- ================================================================================ cinnamon-desktop-3.6.2-3.fc26 (FEDORA-2017-ebe0c8716d) Shared code among cinnamon-session, nemo, etc -------------------------------------------------------------------------------- Update Information: Point release update -------------------------------------------------------------------------------- References: [ 1 ] Bug #1440116 - [abrt] cinnamon: subprocess.py:398:run:subprocess.CalledProcessError: Command '['wget', 'https://open.spotify.com/300/dca2d09ce16e00b63fe40e68262d35cc64110f5f', '-O', '/tmp/EYKLYY.mediaplayer-cover']' returned non-zero exit status 8 https://bugzilla.redhat.com/show_bug.cgi?id=1440116 [ 2 ] Bug #1426984 - [abrt] cinnamon: subprocess.py:708:run:subprocess.CalledProcessError: Command '['python3', '/home/xzj83b/.local/share/cinnamon/applets/gmail@lauritsriple/getGmailFeedJson.py', '']' returned non-zero exit status 1 https://bugzilla.redhat.com/show_bug.cgi?id=1426984 [ 3 ] Bug #1425602 - [abrt] cinnamon: JsonSettingsWidgets.py:119:get_settings:Exception: Failed to parse settings JSON data for file /home/xzj83b/.cinnamon/configs/bb...@oak-wood.co.uk/7.json https://bugzilla.redhat.com/show_bug.cgi?id=1425602 [ 4 ] Bug #1412981 - [abrt] cinnamon: subprocess.py:708:run:subprocess.CalledProcessError: Command '['python', '/home/demiralp/.local/share/cinnamon/applets/fe...@jonbrettdev.wordpress.com/getFeed.py', 'http://www.iso.org/iso/rss.xml?csnumber=33656&rss=detail']' returned ... https://bugzilla.redhat.com/show_bug.cgi?id=1412981 [ 5 ] Bug #1398001 - [abrt] cinnamon: g_desktop_app_info_get_is_hidden(): cinnamon killed by SIGSEGV https://bugzilla.redhat.com/show_bug.cgi?id=1398001 [ 6 ] Bug #1509706 - xapps: Requires both Python 2 and Python 3 https://bugzilla.redhat.com/show_bug.cgi?id=1509706 -------------------------------------------------------------------------------- ================================================================================ cinnamon-screensaver-3.6.1-1.fc26 (FEDORA-2017-ebe0c8716d) Cinnamon Screensaver -------------------------------------------------------------------------------- Update Information: Point release update -------------------------------------------------------------------------------- References: [ 1 ] Bug #1440116 - [abrt] cinnamon: subprocess.py:398:run:subprocess.CalledProcessError: Command '['wget', 'https://open.spotify.com/300/dca2d09ce16e00b63fe40e68262d35cc64110f5f', '-O', '/tmp/EYKLYY.mediaplayer-cover']' returned non-zero exit status 8 https://bugzilla.redhat.com/show_bug.cgi?id=1440116 [ 2 ] Bug #1426984 - [abrt] cinnamon: subprocess.py:708:run:subprocess.CalledProcessError: Command '['python3', '/home/xzj83b/.local/share/cinnamon/applets/gmail@lauritsriple/getGmailFeedJson.py', '']' returned non-zero exit status 1 https://bugzilla.redhat.com/show_bug.cgi?id=1426984 [ 3 ] Bug #1425602 - [abrt] cinnamon: JsonSettingsWidgets.py:119:get_settings:Exception: Failed to parse settings JSON data for file /home/xzj83b/.cinnamon/configs/bb...@oak-wood.co.uk/7.json https://bugzilla.redhat.com/show_bug.cgi?id=1425602 [ 4 ] Bug #1412981 - [abrt] cinnamon: subprocess.py:708:run:subprocess.CalledProcessError: Command '['python', '/home/demiralp/.local/share/cinnamon/applets/fe...@jonbrettdev.wordpress.com/getFeed.py', 'http://www.iso.org/iso/rss.xml?csnumber=33656&rss=detail']' returned ... https://bugzilla.redhat.com/show_bug.cgi?id=1412981 [ 5 ] Bug #1398001 - [abrt] cinnamon: g_desktop_app_info_get_is_hidden(): cinnamon killed by SIGSEGV https://bugzilla.redhat.com/show_bug.cgi?id=1398001 [ 6 ] Bug #1509706 - xapps: Requires both Python 2 and Python 3 https://bugzilla.redhat.com/show_bug.cgi?id=1509706 -------------------------------------------------------------------------------- ================================================================================ cinnamon-translations-3.6.2-1.fc26 (FEDORA-2017-ebe0c8716d) Translations for Cinnamon and Nemo -------------------------------------------------------------------------------- Update Information: Point release update -------------------------------------------------------------------------------- References: [ 1 ] Bug #1440116 - [abrt] cinnamon: subprocess.py:398:run:subprocess.CalledProcessError: Command '['wget', 'https://open.spotify.com/300/dca2d09ce16e00b63fe40e68262d35cc64110f5f', '-O', '/tmp/EYKLYY.mediaplayer-cover']' returned non-zero exit status 8 https://bugzilla.redhat.com/show_bug.cgi?id=1440116 [ 2 ] Bug #1426984 - [abrt] cinnamon: subprocess.py:708:run:subprocess.CalledProcessError: Command '['python3', '/home/xzj83b/.local/share/cinnamon/applets/gmail@lauritsriple/getGmailFeedJson.py', '']' returned non-zero exit status 1 https://bugzilla.redhat.com/show_bug.cgi?id=1426984 [ 3 ] Bug #1425602 - [abrt] cinnamon: JsonSettingsWidgets.py:119:get_settings:Exception: Failed to parse settings JSON data for file /home/xzj83b/.cinnamon/configs/bb...@oak-wood.co.uk/7.json https://bugzilla.redhat.com/show_bug.cgi?id=1425602 [ 4 ] Bug #1412981 - [abrt] cinnamon: subprocess.py:708:run:subprocess.CalledProcessError: Command '['python', '/home/demiralp/.local/share/cinnamon/applets/fe...@jonbrettdev.wordpress.com/getFeed.py', 'http://www.iso.org/iso/rss.xml?csnumber=33656&rss=detail']' returned ... https://bugzilla.redhat.com/show_bug.cgi?id=1412981 [ 5 ] Bug #1398001 - [abrt] cinnamon: g_desktop_app_info_get_is_hidden(): cinnamon killed by SIGSEGV https://bugzilla.redhat.com/show_bug.cgi?id=1398001 [ 6 ] Bug #1509706 - xapps: Requires both Python 2 and Python 3 https://bugzilla.redhat.com/show_bug.cgi?id=1509706 -------------------------------------------------------------------------------- ================================================================================ cjs-3.6.1-1.fc26 (FEDORA-2017-ebe0c8716d) Javascript Bindings for Cinnamon -------------------------------------------------------------------------------- Update Information: Point release update -------------------------------------------------------------------------------- References: [ 1 ] Bug #1440116 - [abrt] cinnamon: subprocess.py:398:run:subprocess.CalledProcessError: Command '['wget', 'https://open.spotify.com/300/dca2d09ce16e00b63fe40e68262d35cc64110f5f', '-O', '/tmp/EYKLYY.mediaplayer-cover']' returned non-zero exit status 8 https://bugzilla.redhat.com/show_bug.cgi?id=1440116 [ 2 ] Bug #1426984 - [abrt] cinnamon: subprocess.py:708:run:subprocess.CalledProcessError: Command '['python3', '/home/xzj83b/.local/share/cinnamon/applets/gmail@lauritsriple/getGmailFeedJson.py', '']' returned non-zero exit status 1 https://bugzilla.redhat.com/show_bug.cgi?id=1426984 [ 3 ] Bug #1425602 - [abrt] cinnamon: JsonSettingsWidgets.py:119:get_settings:Exception: Failed to parse settings JSON data for file /home/xzj83b/.cinnamon/configs/bb...@oak-wood.co.uk/7.json https://bugzilla.redhat.com/show_bug.cgi?id=1425602 [ 4 ] Bug #1412981 - [abrt] cinnamon: subprocess.py:708:run:subprocess.CalledProcessError: Command '['python', '/home/demiralp/.local/share/cinnamon/applets/fe...@jonbrettdev.wordpress.com/getFeed.py', 'http://www.iso.org/iso/rss.xml?csnumber=33656&rss=detail']' returned ... https://bugzilla.redhat.com/show_bug.cgi?id=1412981 [ 5 ] Bug #1398001 - [abrt] cinnamon: g_desktop_app_info_get_is_hidden(): cinnamon killed by SIGSEGV https://bugzilla.redhat.com/show_bug.cgi?id=1398001 [ 6 ] Bug #1509706 - xapps: Requires both Python 2 and Python 3 https://bugzilla.redhat.com/show_bug.cgi?id=1509706 -------------------------------------------------------------------------------- ================================================================================ clevis-8-1.fc26 (FEDORA-2017-92e0f8dcdb) Automated decryption framework -------------------------------------------------------------------------------- Update Information: Update to v8 -------------------------------------------------------------------------------- ================================================================================ clufter-0.77.0-1.fc26 (FEDORA-2017-036122eba0) Tool/library for transforming/analyzing cluster configuration formats -------------------------------------------------------------------------------- Update Information: - bump upstream package, see https://pagure.io/clufter/releases -------------------------------------------------------------------------------- References: [ 1 ] Bug #1512139 - clufter-0.77.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1512139 -------------------------------------------------------------------------------- ================================================================================ compat-openssl10-1.0.2m-1.fc26 (FEDORA-2017-7f30914972) Compatibility version of the OpenSSL library -------------------------------------------------------------------------------- Update Information: Minor update release 1.0.2m from upstream. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1486146 - CVE-2017-3735 CVE-2017-3736 openssl: various flaws [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1486146 -------------------------------------------------------------------------------- ================================================================================ cri-o-1.0.4-1.git4aceede.fc26 (FEDORA-2017-3386c64c2c) CRI-O is the Kubernetes Container Runtime Interface for OCI-based containers -------------------------------------------------------------------------------- Update Information: - Add crictl.yaml - Add prometheous end points - Several bug fixes ---- bump to v1.0.3 -------------------------------------------------------------------------------- ================================================================================ ghc-cond-0.4.1.1-1.fc26 (FEDORA-2017-c5976dc82b) Basic conditional and boolean operators with monadic variants -------------------------------------------------------------------------------- Update Information: New package ghc-cond -------------------------------------------------------------------------------- References: [ 1 ] Bug #1511674 - None https://bugzilla.redhat.com/show_bug.cgi?id=1511674 -------------------------------------------------------------------------------- ================================================================================ ghc-htoml-1.0.0.3-1.fc26 (FEDORA-2017-b19ed59a09) Parser for TOML files -------------------------------------------------------------------------------- Update Information: New package ghc-htoml -------------------------------------------------------------------------------- References: [ 1 ] Bug #1511675 - Review Request: ghc-htoml - Parser for TOML files https://bugzilla.redhat.com/show_bug.cgi?id=1511675 -------------------------------------------------------------------------------- ================================================================================ ghc-quickcheck-io-0.2.0-1.fc26 (FEDORA-2017-3cf1584097) Use HUnit assertions as QuickCheck properties -------------------------------------------------------------------------------- Update Information: New package ghc-quickcheck-io -------------------------------------------------------------------------------- References: [ 1 ] Bug #1512062 - Review Request: ghc-quickcheck-io - Use HUnit assertions as QuickCheck properties https://bugzilla.redhat.com/show_bug.cgi?id=1512062 -------------------------------------------------------------------------------- ================================================================================ ghc-vector-algorithms-0.7.0.1-1.fc26 (FEDORA-2017-6e134e7355) Efficient algorithms for vector arrays -------------------------------------------------------------------------------- Update Information: New package ghc-vector-algorithms -------------------------------------------------------------------------------- References: [ 1 ] Bug #1511664 - Review Request: ghc-vector-algorithms - Efficient algorithms for vector arrays https://bugzilla.redhat.com/show_bug.cgi?id=1511664 -------------------------------------------------------------------------------- ================================================================================ golang-github-asaskevich-govalidator-8-1.fc26 (FEDORA-2017-f5d6bf129c) Validators and sanitizers for strings, numerics, slices and structs -------------------------------------------------------------------------------- Update Information: Update to latest upstream release. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1512279 - golang-github-asaskevich-govalidator-8 is available https://bugzilla.redhat.com/show_bug.cgi?id=1512279 -------------------------------------------------------------------------------- ================================================================================ gxneur-0.20.0-1.fc26 (FEDORA-2017-110de71419) GTK front-end for X Neural Switcher (xneur) -------------------------------------------------------------------------------- Update Information: Update to version 0.20.0 with hope it also fixes two errors too. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1466303 - [abrt] gxneur: strlen(): gxneur killed by SIGSEGV https://bugzilla.redhat.com/show_bug.cgi?id=1466303 [ 2 ] Bug #1479874 - update 0.20 https://bugzilla.redhat.com/show_bug.cgi?id=1479874 [ 3 ] Bug #1466304 - Xneur find duplicates key map. https://bugzilla.redhat.com/show_bug.cgi?id=1466304 -------------------------------------------------------------------------------- ================================================================================ haxe-3.4.4-1.fc26 (FEDORA-2017-3c0f74b35d) Multi-target universal programming language -------------------------------------------------------------------------------- Update Information: Haxe 3.4.4 is mainly a bugfix release over 3.4.2, notably a number of php target fixes. The complete changelog can be found at https://github.com/HaxeFoundation/haxe/blob/3.4.4/extra/CHANGES.txt. -------------------------------------------------------------------------------- ================================================================================ impallari-raleway-fonts-3.0-2.git20161116.6c67ab1.fc26 (FEDORA-2017-4cd3cd2d22) Elegant sans-serif typeface family -------------------------------------------------------------------------------- Update Information: Fix SemiBold font installation. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1505179 - impallari-raleway-fonts: SemiBold are not installed https://bugzilla.redhat.com/show_bug.cgi?id=1505179 -------------------------------------------------------------------------------- ================================================================================ ivykis-0.42.2-1.fc26 (FEDORA-2017-b9498321a8) Library for asynchronous I/O readiness notification -------------------------------------------------------------------------------- Update Information: Update to 0.42.2 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1504354 - ivykis-0.42.2 is available https://bugzilla.redhat.com/show_bug.cgi?id=1504354 -------------------------------------------------------------------------------- ================================================================================ jbig2dec-0.14-1.fc26 (FEDORA-2017-13f0fd3028) A decoder implementation of the JBIG2 image compression format -------------------------------------------------------------------------------- Update Information: update to 0.14 (bugfix release) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1456730 - CVE-2017-9216 jbig2dec: Null pointer dereference in jbig2_huffman_get() [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1456730 -------------------------------------------------------------------------------- ================================================================================ latte-dock-0.7.2-1.fc26 (FEDORA-2017-4b48c38c56) Latte is a dock based on plasma frameworks -------------------------------------------------------------------------------- Update Information: Upgrade to version 0.7.2 -------------------------------------------------------------------------------- ================================================================================ libopusenc-0.1.1-1.fc26 (FEDORA-2017-b6981fd683) A library that provides an easy way to encode Ogg Opus files -------------------------------------------------------------------------------- Update Information: New upstream 0.1.1 release -------------------------------------------------------------------------------- ================================================================================ lighttpd-1.4.48-1.fc26 (FEDORA-2017-ef288496b8) Lightning fast webserver with light system requirements -------------------------------------------------------------------------------- Update Information: https://www.lighttpd.net/2017/11/11/1.4.48/ -------------------------------------------------------------------------------- References: [ 1 ] Bug #1512281 - lighttpd-1.4.48 is available https://bugzilla.redhat.com/show_bug.cgi?id=1512281 -------------------------------------------------------------------------------- ================================================================================ lis-2.0.3-2.fc26 (FEDORA-2017-18bf03eaa2) A library for solving linear equations and eigenvalue problems -------------------------------------------------------------------------------- Update Information: Include new binaries ---- Update to 1.7.30 -------------------------------------------------------------------------------- ================================================================================ mediawriter-4.1.1-1.fc26 (FEDORA-2017-fbb5267b3f) Fedora Media Writer -------------------------------------------------------------------------------- Update Information: Update to 4.1.1 -------------------------------------------------------------------------------- ================================================================================ openssl-1.1.0g-1.fc26 (FEDORA-2017-dbec196dd8) Utilities from the general purpose cryptography library with TLS implementation -------------------------------------------------------------------------------- Update Information: Minor security update release 1.1.0g. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1486146 - CVE-2017-3735 CVE-2017-3736 openssl: various flaws [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1486146 -------------------------------------------------------------------------------- ================================================================================ perl-Finance-Quote-1.47-1.fc26 (FEDORA-2017-e5b17ca891) A Perl module that retrieves stock and mutual fund quotes -------------------------------------------------------------------------------- Update Information: Current upstream maintenance release. Various sources fixed, new source AlphaVantage added. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1509722 - perl-Finance-Quote-1.40 is available https://bugzilla.redhat.com/show_bug.cgi?id=1509722 [ 2 ] Bug #1510220 - perl-Finance-Quote-1.42 is available https://bugzilla.redhat.com/show_bug.cgi?id=1510220 [ 3 ] Bug #1510678 - perl-Finance-Quote-1.44 is available https://bugzilla.redhat.com/show_bug.cgi?id=1510678 [ 4 ] Bug #1511240 - perl-Finance-Quote-1.45 is available https://bugzilla.redhat.com/show_bug.cgi?id=1511240 [ 5 ] Bug #1512341 - perl-Finance-Quote-1.47 is available https://bugzilla.redhat.com/show_bug.cgi?id=1512341 -------------------------------------------------------------------------------- ================================================================================ perl-Net-CalDAVTalk-0.11-1.fc26 (FEDORA-2017-93e7348d12) CalDAV client with JSON data interface -------------------------------------------------------------------------------- Update Information: This release adds support for GetEventLinks, GetEventsMulti, and SyncEventLinks. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1512523 - perl-Net-CalDAVTalk-0.11 is available https://bugzilla.redhat.com/show_bug.cgi?id=1512523 -------------------------------------------------------------------------------- ================================================================================ perl-Net-CardDAVTalk-0.07-1.fc26 (FEDORA-2017-94ae0dcdfa) CardDAV client -------------------------------------------------------------------------------- Update Information: This release brings support for GetContactsMulti, SyncContactLinks, and GetContactLinks. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1512284 - perl-Net-CardDAVTalk-0.07 is available https://bugzilla.redhat.com/show_bug.cgi?id=1512284 -------------------------------------------------------------------------------- ================================================================================ perl-Shipwright-2.4.42-1.fc26 (FEDORA-2017-04f04ea4ab) Build and Manage Self-contained Software Bundle -------------------------------------------------------------------------------- Update Information: This release adds support for https schema. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1512192 - perl-Shipwright-2.4.42 is available https://bugzilla.redhat.com/show_bug.cgi?id=1512192 -------------------------------------------------------------------------------- ================================================================================ pluma-1.18.3-1.fc26 (FEDORA-2017-160e9f045d) Text editor for the MATE desktop -------------------------------------------------------------------------------- Update Information: - update to 1.18.3 -------------------------------------------------------------------------------- ================================================================================ psblas3-3.5.0-15.fc26 (FEDORA-2017-9343eba0b8) Parallel Sparse Basic Linear Algebra Subroutines -------------------------------------------------------------------------------- Update Information: - Update to post-release 3.5.0-1 -------------------------------------------------------------------------------- ================================================================================ pysnmp-4.4.2-1.fc26 (FEDORA-2017-0bc3b493d3) An SNMP engine written in Python -------------------------------------------------------------------------------- Update Information: Updated to new upstream version 4.4.2 -------------------------------------------------------------------------------- ================================================================================ python-msrest-0.4.18-1.fc26 (FEDORA-2017-d38fbe0208) AutoRest swagger generator Python client runtime -------------------------------------------------------------------------------- Update Information: #python-msrest 0.4.18 ##Features * Add ApiKeyCredentials class. This can be used to support OpenAPI ApiKey feature. * Add CognitiveServicesAuthentication class. Pre-declared ApiKeyCredentials class for Cognitive Services. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1508202 - python-msrest-v0.4.18 is available https://bugzilla.redhat.com/show_bug.cgi?id=1508202 -------------------------------------------------------------------------------- ================================================================================ python-msrestazure-0.4.16-1.fc26 (FEDORA-2017-e0e440365b) AutoRest swagger generator Python client runtime (Azure-specific module) -------------------------------------------------------------------------------- Update Information: # python-msrestazure 0.4.16 ##Bugfixes * Fix AttributeError if input JSON is not a dict ([#54](https://github.com/Azure/msrestazure-for-python/issues/54)) -------------------------------------------------------------------------------- ================================================================================ python-openidc-client-0.4.0-1.20171113git54dee6e.fc26 (FEDORA-2017-8488192117) Python OpenID Connect client with token caching and management -------------------------------------------------------------------------------- Update Information: python-openidc-client-v0.4.0 is available Add Requests AuthBase wrapper Allow specifying to not get new tokens in auther -------------------------------------------------------------------------------- References: [ 1 ] Bug #1455728 - python-openidc-client-v0.4.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1455728 -------------------------------------------------------------------------------- ================================================================================ python-rope-0.10.7-1.fc26 (FEDORA-2017-5140927041) Python Code Refactoring Library -------------------------------------------------------------------------------- Update Information: - Update to 0.10.7 - This update introduces python3 subpackage. -------------------------------------------------------------------------------- ================================================================================ python-tinydb-3.7.0-1.fc26 (FEDORA-2017-8368abb3ad) TinyDB is a tiny, document oriented database -------------------------------------------------------------------------------- Update Information: Update to latest version -------------------------------------------------------------------------------- References: [ 1 ] Bug #1512243 - python-tinydb-3.7.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1512243 -------------------------------------------------------------------------------- ================================================================================ qcad-3.19.1.0-1.fc26 (FEDORA-2017-d397e5c0f2) Powerful 2D CAD system -------------------------------------------------------------------------------- Update Information: - Update to 3.19.1.0 -------------------------------------------------------------------------------- ================================================================================ qt5-qtbase-5.9.2-5.fc26 (FEDORA-2017-928612cbf8) Qt5 - QtBase components -------------------------------------------------------------------------------- Update Information: Use categorized logging for xcb entries (default off), see also https://bugreports.qt.io/browse/QTBUG-55167 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1497564 - QXcbConnection: XCB error: 2 (BadValue), sequence: 34905, resource id: 16777232, major code: 141 (Unknown), minor code: 3 https://bugzilla.redhat.com/show_bug.cgi?id=1497564 -------------------------------------------------------------------------------- ================================================================================ sse2fedmsg-0.3.0-1.fc26 (FEDORA-2017-16ef75e280) Translates Server-Sent Events to ZeroMQ fedmsgs -------------------------------------------------------------------------------- Update Information: Update to latest upstream -------------------------------------------------------------------------------- ================================================================================ sway-0.15.0-2.fc26 (FEDORA-2017-fd077d15d0) i3-compatible window manager for Wayland -------------------------------------------------------------------------------- Update Information: Update -------------------------------------------------------------------------------- References: [ 1 ] Bug #1510233 - wlc-0.0.11 is available https://bugzilla.redhat.com/show_bug.cgi?id=1510233 [ 2 ] Bug #1510446 - sway-0.15.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1510446 -------------------------------------------------------------------------------- ================================================================================ timeline-1.16.0-1.fc26 (FEDORA-2017-9fca50b81c) Displays and navigates events on a timeline -------------------------------------------------------------------------------- Update Information: 1.16.0 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1512524 - timeline-1.16.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1512524 -------------------------------------------------------------------------------- ================================================================================ webkitgtk4-2.18.3-1.fc26 (FEDORA-2017-4d5618a962) GTK+ Web content engine library -------------------------------------------------------------------------------- Update Information: This update addresses the following vulnerabilities: * [CVE-2017-13798](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13798), [CVE-2017-13788](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13788), [CVE-2017-13803](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-13803) Additional fixes: * Improve calculation of font metrics to prevent scrollbars from being shown unnecessarily in some cases. * Fix handling of null capabilities in WebDriver implementation. -------------------------------------------------------------------------------- ================================================================================ wlc-0.0.11-1.fc26 (FEDORA-2017-fd077d15d0) Wayland compositor library -------------------------------------------------------------------------------- Update Information: Update -------------------------------------------------------------------------------- References: [ 1 ] Bug #1510233 - wlc-0.0.11 is available https://bugzilla.redhat.com/show_bug.cgi?id=1510233 [ 2 ] Bug #1510446 - sway-0.15.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1510446 -------------------------------------------------------------------------------- ================================================================================ xapps-1.0.4-1.fc26 (FEDORA-2017-ebe0c8716d) Common files for XApp desktop apps -------------------------------------------------------------------------------- Update Information: Point release update -------------------------------------------------------------------------------- ChangeLog: -------------------------------------------------------------------------------- References: [ 1 ] Bug #1440116 - [abrt] cinnamon: subprocess.py:398:run:subprocess.CalledProcessError: Command '['wget', 'https://open.spotify.com/300/dca2d09ce16e00b63fe40e68262d35cc64110f5f', '-O', '/tmp/EYKLYY.mediaplayer-cover']' returned non-zero exit status 8 https://bugzilla.redhat.com/show_bug.cgi?id=1440116 [ 2 ] Bug #1426984 - [abrt] cinnamon: subprocess.py:708:run:subprocess.CalledProcessError: Command '['python3', '/home/xzj83b/.local/share/cinnamon/applets/gmail@lauritsriple/getGmailFeedJson.py', '']' returned non-zero exit status 1 https://bugzilla.redhat.com/show_bug.cgi?id=1426984 [ 3 ] Bug #1425602 - [abrt] cinnamon: JsonSettingsWidgets.py:119:get_settings:Exception: Failed to parse settings JSON data for file /home/xzj83b/.cinnamon/configs/bb...@oak-wood.co.uk/7.json https://bugzilla.redhat.com/show_bug.cgi?id=1425602 [ 4 ] Bug #1412981 - [abrt] cinnamon: subprocess.py:708:run:subprocess.CalledProcessError: Command '['python', '/home/demiralp/.local/share/cinnamon/applets/fe...@jonbrettdev.wordpress.com/getFeed.py', 'http://www.iso.org/iso/rss.xml?csnumber=33656&rss=detail']' returned ... https://bugzilla.redhat.com/show_bug.cgi?id=1412981 [ 5 ] Bug #1398001 - [abrt] cinnamon: g_desktop_app_info_get_is_hidden(): cinnamon killed by SIGSEGV https://bugzilla.redhat.com/show_bug.cgi?id=1398001 [ 6 ] Bug #1509706 - xapps: Requires both Python 2 and Python 3 https://bugzilla.redhat.com/show_bug.cgi?id=1509706 -------------------------------------------------------------------------------- ================================================================================ xneur-0.20.0-1.fc26 (FEDORA-2017-110de71419) X Neural Switcher -------------------------------------------------------------------------------- Update Information: Update to version 0.20.0 with hope it also fixes two errors too. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1466303 - [abrt] gxneur: strlen(): gxneur killed by SIGSEGV https://bugzilla.redhat.com/show_bug.cgi?id=1466303 [ 2 ] Bug #1479874 - update 0.20 https://bugzilla.redhat.com/show_bug.cgi?id=1479874 [ 3 ] Bug #1466304 - Xneur find duplicates key map. https://bugzilla.redhat.com/show_bug.cgi?id=1466304 -------------------------------------------------------------------------------- _______________________________________________ test mailing list -- test@lists.fedoraproject.org To unsubscribe send an email to test-le...@lists.fedoraproject.org
