The following Fedora 25 Security updates need testing: Age URL 227 https://bodhi.fedoraproject.org/updates/FEDORA-2016-d79ba708cb exim-4.87.1-1.fc25 126 https://bodhi.fedoraproject.org/updates/FEDORA-2017-e2d17af41e python-XStatic-jquery-ui-1.12.0.1-4.fc25 65 https://bodhi.fedoraproject.org/updates/FEDORA-2017-5d7498559f nodejs-brace-expansion-1.1.7-1.fc25 30 https://bodhi.fedoraproject.org/updates/FEDORA-2017-33c8085c5d groovy18-1.8.9-28.fc25 25 https://bodhi.fedoraproject.org/updates/FEDORA-2017-86cfcbbae8 libstaroffice-0.0.4-1.fc25 19 https://bodhi.fedoraproject.org/updates/FEDORA-2017-82b5035f76 chicken-4.12.0-3.fc25 19 https://bodhi.fedoraproject.org/updates/FEDORA-2017-99c0118c0c memcached-1.4.39-1.fc25 19 https://bodhi.fedoraproject.org/updates/FEDORA-2017-fe04b06b64 python-tablib-0.11.5-1.fc25 16 https://bodhi.fedoraproject.org/updates/FEDORA-2017-2232fe97b4 docker-distribution-2.6.2-1.git48294d9.fc25 16 https://bodhi.fedoraproject.org/updates/FEDORA-2017-a1fe6d2b86 nasm-2.13.01-3.fc25 16 https://bodhi.fedoraproject.org/updates/FEDORA-2017-56b8f257af sscep-0.6.1-5.20160525git2052ee1.fc25 10 https://bodhi.fedoraproject.org/updates/FEDORA-2017-be3df4fe14 java-1.8.0-openjdk-aarch32-1.8.0.141-1.170721.fc25 7 https://bodhi.fedoraproject.org/updates/FEDORA-2017-bfbc5de1b1 varnish-5.0.0-4.fc25 4 https://bodhi.fedoraproject.org/updates/FEDORA-2017-d7739ff31b potrace-1.15-1.fc25 1 https://bodhi.fedoraproject.org/updates/FEDORA-2017-a05e2b8545 cups-filters-1.10.0-4.fc25 qpdf-6.0.0-6.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-866fc566e0 torbrowser-launcher-0.2.8-1.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-571e659c85 sqlite-3.14.2-3.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-f318871e3b ruby-2.3.4-63.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-f2df9d7772 curl-7.51.0-9.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-3df020e756 firefox-55.0-5.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-f6e3215f2b mingw-openjpeg2-2.2.0-1.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-872a0a9a85 libsoup-2.56.1-1.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-c9d8011d69 mingw-libsoup-2.56.1-1.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-8ba7572cfd git-2.9.5-1.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-9148fe36b9 postgresql-9.5.8-1.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-1d1a38bdd1 subversion-1.9.7-1.fc25
The following Fedora 25 Critical Path updates have yet to be approved: Age URL 69 https://bodhi.fedoraproject.org/updates/FEDORA-2017-613a72e282 lorax-25.22-1.fc25 25 https://bodhi.fedoraproject.org/updates/FEDORA-2017-e2312ac9d9 pungi-4.1.17-1.fc25 22 https://bodhi.fedoraproject.org/updates/FEDORA-2017-6b67562744 ca-certificates-2017.2.16-1.0.fc25 4 https://bodhi.fedoraproject.org/updates/FEDORA-2017-226cbd995b libvirt-2.2.1-3.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-05fd3372ce dracut-046-2.git20170811.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-8ba7572cfd git-2.9.5-1.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-872a0a9a85 libsoup-2.56.1-1.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-65e9bfa56d openjpeg2-2.2.0-1.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-3df020e756 firefox-55.0-5.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-f2df9d7772 curl-7.51.0-9.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-ac2cad8705 gdk-pixbuf2-2.36.8-1.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-571e659c85 sqlite-3.14.2-3.fc25 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-dd9ceeda89 vim-8.0.885-1.fc25
The following builds have been pushed to Fedora 25 updates-testing
COPASI-4.20.158-3.fc25 GitPython-2.1.5-1.fc25 admeshgui-1.0.1-7.fc25 ccnet-6.1.0-1.fc25 cinnamon-3.4.6-3.fc25 cinnamon-screensaver-3.4.2-1.fc25 cinnamon-session-3.4.2-1.fc25 cinnamon-settings-daemon-3.4.4-1.fc25 cjs-3.4.4-1.fc25 composer-1.5.1-1.fc25 copr-cli-1.62-1.fc25 copr-frontend-1.118-1.fc25 curl-7.51.0-9.fc25 dracut-046-2.git20170811.fc25 eclipse-usage-4.5.0-1.fc25 email2trac-2.11.0-1.fc25 fedrepo-req-0.6.0-1.fc25 fedrepo-req-1.0.0-1.fc25 firefox-55.0-5.fc25 gala-0.3.0-0.git120.87f5a.1.fc25 gdk-pixbuf2-2.36.8-1.fc25 git-2.9.5-1.fc25 glade3-3.8.6-1.fc25 gnome-shell-extension-media-player-indicator-0-0.16.20170809git4e69776.fc25 golang-github-cznic-golex-0-0.2.20170803.git4ab7c5e.fc25 golang-github-d4l3k-messagediff-1.1.0-0.2.git29f32d8.fc25 grip-3.5.2-1.fc25 gsequencer-0.9.5-1.fc25 ibus-chewing-1.6.1-1.fc25 icecream-1.1-1.fc25 intel-cmt-cat-1.1.0-1.fc25 latexmk-4.53a-1.fc25 libreswan-3.21-1.fc25 libsoup-2.56.1-1.fc25 lilypond-2.19.65-1.fc25 lilypond-doc-2.19.65-1.fc25 mame-0.188-1.fc25 mingw-libsoup-2.56.1-1.fc25 mingw-openjpeg2-2.2.0-1.fc25 mirrormanager2-0.8.1-1.fc25 mksh-56-1.fc25 muffin-3.4.1-1.fc25 nemo-3.4.7-2.fc25 open-vm-tools-10.1.10-1.fc25 openjpeg2-2.2.0-1.fc25 oz-0.16.0-1.fc25 perl-Cwd-utf8-0.011-1.fc25 perl-Devel-Size-0.81-1.fc25 perl-File-Find-utf8-0.013-1.fc25 perl-File-Tail-1.3-7.fc25 perl-Mail-JMAPTalk-0.08-1.fc25 perl-Time-OlsonTZ-Download-0.006-1.fc25 pesign-0.112-6.fc25 postgresql-9.5.8-1.fc25 pyrit-0.5.0-1.fc25 python-copr-1.79-1.fc25 python-django-classy-tags-0.7.2-3.fc25 python-fedmsg-meta-fedora-infrastructure-0.19.0-1.fc25 python-gitdb-2.0.2-1.fc25 python-hwdata-2.3.5-1.fc25 python-smmap-2.0.3-1.fc25 python-social-auth-0.2.19-2.fc25 python-urllib2_kerberos-0.1.6-22.fc25 python-xlrd-1.0.0-6.fc25 python-zaqarclient-1.0.0-4.fc25 qpid-proton-0.17.0-5.fc25 root-6.10.04-1.fc25 ruby-2.3.4-63.fc25 seafile-6.1.0-1.fc25 seafile-client-6.1.0-1.fc25 snapd-2.27-1.fc25 snapd-glib-1.16-1.fc25 sqlite-3.14.2-3.fc25 standard-test-roles-2.3-1.fc25 subversion-1.9.7-1.fc25 techtalk-pse-1.2.0-1.fc25 torbrowser-launcher-0.2.8-1.fc25 ucarp-1.5.2-20.fc25 vim-8.0.885-1.fc25 virt-manager-1.4.2-1.fc25 xlockmore-5.55-1.fc25 xnec2c-3.5.1-1.fc25 xrdp-0.9.3-1.fc25
Details about builds:
================================================================================ COPASI-4.20.158-3.fc25 (FEDORA-2017-9ccd9d5995) Biochemical network simulator -------------------------------------------------------------------------------- Update Information:
- Reintroduce command to disable generation of the debuginfo package on s390x (bz#1478284) ---- - Make a new conditional macro to control stripping of symbols from object files - 4.20.158-1 - Update to version 4.20 -build 158 - Debuginfo packages built -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1478284 - failure when extracting debuginfos https://bugzilla.redhat.com/show_bug.cgi?id=1478284 --------------------------------------------------------------------------------
================================================================================ GitPython-2.1.5-1.fc25 (FEDORA-2017-d1574b9ff5) Python Git Library -------------------------------------------------------------------------------- Update Information:
Update GitPython stack for latest fixes. -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1460465 - GitPython-2.1.5 is available https://bugzilla.redhat.com/show_bug.cgi?id=1460465 --------------------------------------------------------------------------------
================================================================================ admeshgui-1.0.1-7.fc25 (FEDORA-2017-31c89e32ad) STL viewer and manipulation tool -------------------------------------------------------------------------------- Update Information:
Fix FTBFS -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1423206 - admeshgui: FTBFS in rawhide https://bugzilla.redhat.com/show_bug.cgi?id=1423206 --------------------------------------------------------------------------------
================================================================================ ccnet-6.1.0-1.fc25 (FEDORA-2017-c07ac7ec2c) A framework for writing networked applications in C -------------------------------------------------------------------------------- Update Information:
Update to 6.1.0 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1466307 - ccnet-6.1.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1466307 --------------------------------------------------------------------------------
================================================================================ cinnamon-3.4.6-3.fc25 (FEDORA-2017-bbc00c8f8f) Window management and application launching for GNOME -------------------------------------------------------------------------------- Update Information:
Update ---- Patch to fix 1472008 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1472008 - [abrt] cinnamon: js::GCMethods<JSObject*>::needsPostBarrier(): cinnamon killed by signal 11 https://bugzilla.redhat.com/show_bug.cgi?id=1472008 --------------------------------------------------------------------------------
================================================================================ cinnamon-screensaver-3.4.2-1.fc25 (FEDORA-2017-bbc00c8f8f) Cinnamon Screensaver -------------------------------------------------------------------------------- Update Information:
Update ---- Patch to fix 1472008 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1472008 - [abrt] cinnamon: js::GCMethods<JSObject*>::needsPostBarrier(): cinnamon killed by signal 11 https://bugzilla.redhat.com/show_bug.cgi?id=1472008 --------------------------------------------------------------------------------
================================================================================ cinnamon-session-3.4.2-1.fc25 (FEDORA-2017-bbc00c8f8f) Cinnamon session manager -------------------------------------------------------------------------------- Update Information:
Update ---- Patch to fix 1472008 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1472008 - [abrt] cinnamon: js::GCMethods<JSObject*>::needsPostBarrier(): cinnamon killed by signal 11 https://bugzilla.redhat.com/show_bug.cgi?id=1472008 --------------------------------------------------------------------------------
================================================================================ cinnamon-settings-daemon-3.4.4-1.fc25 (FEDORA-2017-bbc00c8f8f) The daemon sharing settings from CINNAMON to GTK+/KDE applications -------------------------------------------------------------------------------- Update Information:
Update ---- Patch to fix 1472008 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1472008 - [abrt] cinnamon: js::GCMethods<JSObject*>::needsPostBarrier(): cinnamon killed by signal 11 https://bugzilla.redhat.com/show_bug.cgi?id=1472008 --------------------------------------------------------------------------------
================================================================================ cjs-3.4.4-1.fc25 (FEDORA-2017-bbc00c8f8f) Javascript Bindings for Cinnamon -------------------------------------------------------------------------------- Update Information:
Update ---- Patch to fix 1472008 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1472008 - [abrt] cinnamon: js::GCMethods<JSObject*>::needsPostBarrier(): cinnamon killed by signal 11 https://bugzilla.redhat.com/show_bug.cgi?id=1472008 --------------------------------------------------------------------------------
================================================================================ composer-1.5.1-1.fc25 (FEDORA-2017-a9e6b56a16) Dependency Manager for PHP -------------------------------------------------------------------------------- Update Information:
**Version 1.5.1** - 2017-08-09 * Fixed regression in GitLabDriver with repos containing >100 branches or tags * Fixed sub-directory call support to respect the COMPOSER env var ---- **Version 1.5.0** - 2017-08-08 * Changed the package install order to ensure that plugins are always installed as soon as possible * Added ability to call composer from within sub-directories of a project * Added support for GitLab API v4 * Added support for GitLab sub- groups * Added some more rules to composer validate * Added support for reading the `USER` env when guessing the username in `composer init` * Added warning when uncompressing files with the same name but difference cases on case insensitive filesystems * Added `htaccess-protect` option / `COMPOSER_HTACCESS_PROTECT` env var to disable the .htaccess creation in home dir (defaults to true) * Improved `clear-cache` command * Minor improvements/fixes and many documentation updates ---- **Version 1.4.3** - 2017-08-06 * Fixed GitLab URLs * Fixed root package version detection using latest git versions * Fixed inconsistencies in date format in composer.lock when installing from source * Fixed Mercurial support regression * Fixed exclude-from-classmap not being applied when autoloading files for Composer plugins * Fixed exclude-from-classmap being ignored when cwd has the wrong case on case insensitive filesystems * Fixed several other minor issues --------------------------------------------------------------------------------
================================================================================ copr-cli-1.62-1.fc25 (FEDORA-2017-7ea136db8a) Command line interface for COPR -------------------------------------------------------------------------------- Update Information:
- allow to modify copr chroots with copr modify cmd --------------------------------------------------------------------------------
================================================================================ copr-frontend-1.118-1.fc25 (FEDORA-2017-ab1891c41b) Frontend for Copr -------------------------------------------------------------------------------- Update Information:
- fork all succeeded buildchroots in RawhideToRelease - follow Fedora branching project's option added - allow to modify copr chroots - syntax highlight in project description and instructions - fix 500 on /api/coprs/build/ for auto- rebuilds - Bug 1409894 - COPR invalidly renders markdown - basic rebuild all packages feature added ---- - Bug 1473361 - New SCM 2 build does not recall the 'Subdirectory' setting - Deprecation warnings on F25 - hotfix for monitor page with jinja 2.9 - bug 1460399 - Build breadcrumb incorrect for group project --------------------------------------------------------------------------------
================================================================================ curl-7.51.0-9.fc25 (FEDORA-2017-f2df9d7772) A utility for getting files from remote servers (FTP, HTTP, and others) -------------------------------------------------------------------------------- Update Information:
Security fixes for CVE-2017-1000100 and CVE-2017-1000101 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1478309 - CVE-2017-1000101 curl: URL globbing out of bounds read https://bugzilla.redhat.com/show_bug.cgi?id=1478309 [ 2 ] Bug #1478310 - CVE-2017-1000100 curl: TFTP sends more than buffer size https://bugzilla.redhat.com/show_bug.cgi?id=1478310 --------------------------------------------------------------------------------
================================================================================ dracut-046-2.git20170811.fc25 (FEDORA-2017-05fd3372ce) Initramfs generator using udev -------------------------------------------------------------------------------- Update Information:
dracut version 046 fixes several bugs and add some enhancements see https://git.kernel.org/pub/scm/boot/dracut/dracut.git/tree/NEWS --------------------------------------------------------------------------------
================================================================================ eclipse-usage-4.5.0-1.fc25 (FEDORA-2017-21bed7dae1) Usage reporting plug-ins for Eclipse -------------------------------------------------------------------------------- Update Information:
Updates to latest release of the opt-in usage monitoring plug-in. -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1465816 - None https://bugzilla.redhat.com/show_bug.cgi?id=1465816 --------------------------------------------------------------------------------
================================================================================ email2trac-2.11.0-1.fc25 (FEDORA-2017-3b88dcd5ec) Utilities for converting emails to trac tickets -------------------------------------------------------------------------------- Update Information:
#### 2.11.0 #### * Remove bloodhound code.<br> Author: Bas van der Vlies * Fixed a typo version must be "1.2" instead of "1,2"<br> Reported by: Marco Antonio Islas Cruz<br> Fixed by: Bas van der Vlies * Fixed crash in email2trac when subject line contatins multiple '?'<br> Reported and Patch by: hjuergs add holgerjuergs dot de<br> Applied by: Bas van der Vlies --------------------------------------------------------------------------------
================================================================================ fedrepo-req-0.6.0-1.fc25 (FEDORA-2017-edece2ed51) CLI for Fedora package repo requests -------------------------------------------------------------------------------- Update Information:
Initial release --------------------------------------------------------------------------------
================================================================================ fedrepo-req-1.0.0-1.fc25 (FEDORA-2017-5ed619673f) CLI for Fedora package repo requests -------------------------------------------------------------------------------- Update Information:
Initial release ---- Initial Release -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1469331 - Review Request: fedrepo-req - A CLI tool that provides an easy way to submit ticket requests for packaging tasks in Fedora https://bugzilla.redhat.com/show_bug.cgi?id=1469331 --------------------------------------------------------------------------------
================================================================================ firefox-55.0-5.fc25 (FEDORA-2017-3df020e756) Mozilla Firefox Web browser -------------------------------------------------------------------------------- Update Information:
- new upstream version (55.0) --------------------------------------------------------------------------------
================================================================================ gala-0.3.0-0.git120.87f5a.1.fc25 (FEDORA-2017-db38df51cf) Gala window manager -------------------------------------------------------------------------------- Update Information:
Bump to commit 87f5a. --------------------------------------------------------------------------------
================================================================================ gdk-pixbuf2-2.36.8-1.fc25 (FEDORA-2017-ac2cad8705) An image loading library -------------------------------------------------------------------------------- Update Information:
gdk-pixbuf 2.36.8 release. * jpeg: restore grayscale image support (#785171) * bmp: Tighten image dimension checks (#776694) * ico: Fixo icon quality sorting (#785447) * Various other leak and overflow fixes (#765094, #783538, #778204) * Add some assertion to help static analysis (#778943) * Remove support for building on various obsolete platforms * Translation updates --------------------------------------------------------------------------------
================================================================================ git-2.9.5-1.fc25 (FEDORA-2017-8ba7572cfd) Fast Version Control System -------------------------------------------------------------------------------- Update Information:
Resolve an arbitrary code execution vulnerability via crafted "ssh://" URL (CVE-2017-1000117). From the [release announcement](https://public- inbox.org/git/xmqqh8xf482j.fsf@gitster.mtv.corp.google.com/): A malicious third-party can give a crafted "ssh://..." URL to an unsuspecting victim, and an attempt to visit the URL can result in any program that exists on the victim's machine being executed. Such a URL could be placed in the .gitmodules file of a malicious project, and an unsuspecting victim could be tricked into running "git clone --recurse-submodules" to trigger the vulnerability. Credits to find and fix the issue go to Brian Neel at GitLab, Joern Schneeweisz of Recurity Labs and Jeff King at GitHub. -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1480386 - CVE-2017-1000117 git: Command injection via malicious ssh URLs https://bugzilla.redhat.com/show_bug.cgi?id=1480386 --------------------------------------------------------------------------------
================================================================================ glade3-3.8.6-1.fc25 (FEDORA-2017-ba1ad462ed) User Interface Designer for GTK+ 2 -------------------------------------------------------------------------------- Update Information:
glade3 3.8.6 release with various bug fixes. For details, see https://mail.gnome.org/archives/ftp-release-list/2017-August/msg00033.html --------------------------------------------------------------------------------
================================================================================ gnome-shell-extension-media-player-indicator-0-0.16.20170809git4e69776.fc25 (FEDORA-2017-0a94d4ca76) Control MPRIS2 capable media players: Rhythmbox, Banshee, Clementine and more -------------------------------------------------------------------------------- Update Information:
Update to 0-0.16.20170809git4e69776 --------------------------------------------------------------------------------
================================================================================ golang-github-cznic-golex-0-0.2.20170803.git4ab7c5e.fc25 (FEDORA-2017-3465b180b7) Lex/Flex-like utility written in Go -------------------------------------------------------------------------------- Update Information:
Bump to commit 4ab7c5e. --------------------------------------------------------------------------------
================================================================================ golang-github-d4l3k-messagediff-1.1.0-0.2.git29f32d8.fc25 (FEDORA-2017-c4accb5faf) Generate diffs of arbitrary structs in Go -------------------------------------------------------------------------------- Update Information:
Bump to commit 29f32d8. --------------------------------------------------------------------------------
================================================================================ grip-3.5.2-1.fc25 (FEDORA-2017-935f9d0309) Front-end for CD rippers and Ogg Vorbis encoders -------------------------------------------------------------------------------- Update Information:
Updated to 3.5.2 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1476533 - grip-3.5.1 is available https://bugzilla.redhat.com/show_bug.cgi?id=1476533 --------------------------------------------------------------------------------
================================================================================ gsequencer-0.9.5-1.fc25 (FEDORA-2017-f14789e7b5) Advanced Gtk+ Sequencer audio processing engine -------------------------------------------------------------------------------- Update Information:
new upstream ---- new upstream ---- modified version because bug fixes available ---- modified version because new features available --------------------------------------------------------------------------------
================================================================================ ibus-chewing-1.6.1-1.fc25 (FEDORA-2017-59124943f7) The Chewing engine for IBus input platform -------------------------------------------------------------------------------- Update Information:
- Fixed RHBZ#1411189 - ibus-engine-chewing killed by SIGSEGV when receiving KP_Insert - Update cmake-fedora to 2.9.3 - Fixed pre-commit so it does not chop directory -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1411189 - ibus-engine-chewing killed by SIGSEGV when receiving KP_Insert https://bugzilla.redhat.com/show_bug.cgi?id=1411189 [ 2 ] Bug #1182819 - None https://bugzilla.redhat.com/show_bug.cgi?id=1182819 --------------------------------------------------------------------------------
================================================================================ icecream-1.1-1.fc25 (FEDORA-2017-45e3e90f38) Distributed compiler -------------------------------------------------------------------------------- Update Information:
icecream 1.1 has been released. Fedora already shipped a pre-release version of 1.1, so this is mainly a bugfix update. For an upstream list of changes see: ht tps://github.com/icecc/icecream/blob/8954f27aee0955053ef29493d8de8832d1d84d69/NE WS --------------------------------------------------------------------------------
================================================================================ intel-cmt-cat-1.1.0-1.fc25 (FEDORA-2017-663b520316) Provides command line interface to CMT, MBM, CAT, CDP and MBA technologies -------------------------------------------------------------------------------- Update Information:
- Added PID support for L2CAT, L3CAT and CDP - Added support for multiple PID's to rdtset utility - Minor bug fixes -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1415656 - Please update to latest version https://bugzilla.redhat.com/show_bug.cgi?id=1415656 --------------------------------------------------------------------------------
================================================================================ latexmk-4.53a-1.fc25 (FEDORA-2017-9d9e788d69) A make-like utility for LaTeX files -------------------------------------------------------------------------------- Update Information:
Changes in version 4.53a: - Document $kpsewhich_show variable. - In deps_list, correct bug in identifying generated files. Otherwise, generated files could have been identified as true source files. - Correct ordering of list of options given by -help. - Fix incorrect deletion of non-generated aux files. - Optimize away current directory string in $out_dir and $aux_dir. --------------------------------------------------------------------------------
================================================================================ libreswan-3.21-1.fc25 (FEDORA-2017-f1e296eafc) IPsec implementation with IKEv1 and IKEv2 keying protocols -------------------------------------------------------------------------------- Update Information:
Updated to 3.21 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1480031 - None https://bugzilla.redhat.com/show_bug.cgi?id=1480031 --------------------------------------------------------------------------------
================================================================================ libsoup-2.56.1-1.fc25 (FEDORA-2017-872a0a9a85) Soup, an HTTP library implementation -------------------------------------------------------------------------------- Update Information:
Security fix for CVE-2017-2885 (stack based buffer overflow with HTTP Chunked Encoding). -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1479281 - CVE-2017-2885 libsoup: Stack based buffer overflow with HTTP Chunked Encoding https://bugzilla.redhat.com/show_bug.cgi?id=1479281 --------------------------------------------------------------------------------
================================================================================ lilypond-2.19.65-1.fc25 (FEDORA-2017-9f83a707bc) A typesetting system for music notation -------------------------------------------------------------------------------- Update Information:
2.19.65 --------------------------------------------------------------------------------
================================================================================ lilypond-doc-2.19.65-1.fc25 (FEDORA-2017-9f83a707bc) HTML documentation for LilyPond -------------------------------------------------------------------------------- Update Information:
2.19.65 --------------------------------------------------------------------------------
================================================================================ mame-0.188-1.fc25 (FEDORA-2017-8a54b82a2a) Multiple Arcade Machine Emulator -------------------------------------------------------------------------------- Update Information:
An update to the latest mame release: * http://mamedev.org/?p=445 --------------------------------------------------------------------------------
================================================================================ mingw-libsoup-2.56.1-1.fc25 (FEDORA-2017-c9d8011d69) MinGW library for HTTP and XML-RPC functionality -------------------------------------------------------------------------------- Update Information:
Security fix for CVE-2017-2885 (stack based buffer overflow with HTTP Chunked Encoding). -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1480240 - CVE-2017-2885 mingw-libsoup: libsoup: Stack based buffer overflow with HTTP Chunked Encoding [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1480240 --------------------------------------------------------------------------------
================================================================================ mingw-openjpeg2-2.2.0-1.fc25 (FEDORA-2017-f6e3215f2b) MinGW Windows openjpeg2 library -------------------------------------------------------------------------------- Update Information:
Update to version 2.2.0, see https://github.com/uclouvain/openjpeg/blob/v2.2.0/NEWS.md for details. -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1390235 - CVE-2016-9112 CVE-2016-9113 CVE-2016-9114 CVE-2016-9115 CVE-2016-9116 CVE-2016-9117 CVE-2016-9118 mingw-openjpeg2: openjpeg2: Multiple security issues [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1390235 [ 2 ] Bug #1418151 - CVE-2016-9112 mingw-openjpeg: openjpeg2: Floating point exception vulnerability in openjpeg2 when processing untrusted images [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1418151 --------------------------------------------------------------------------------
================================================================================ mirrormanager2-0.8.1-1.fc25 (FEDORA-2017-64d38fd4dc) Mirror management application -------------------------------------------------------------------------------- Update Information:
Update to 0.8.1 --------------------------------------------------------------------------------
================================================================================ mksh-56-1.fc25 (FEDORA-2017-e2168704bd) MirBSD enhanced version of the Korn Shell -------------------------------------------------------------------------------- Update Information:
* Do not apply alias name restrictions to hash/tilde tracking * Restore ���.���, ���:��� and ���[��� in alias names (���[[��� is still forbidden) * Fix accidentally defanged $PATHSEP test * On ^C (INTR and QUIT edchars), shove edit line into history * Begin porting to z/OS using EBCDIC encoding, incomplete * Redo fast character classes code, adding POSIX and other helpers * bind parses backslash-escaped ���^��� (and ���\���) as escaped * Building with -DMKSH_ASSUME_UTF8=0 no longer causes a known failure in the testsuite * re_format(7) BSD: [[ $x = *[[:<:]]foo[[:>:]]* ]] * Use Config in check.pl only if it exists * New matching code for bracket expressions, full POSIX (8bit) * Exclude FAT/HPFS/NTFS-unsafe tests on OS/2 (and Cygwin/MSYS) * Update to Unicode 10.0.0 * Make readonly idempotent * When truncating the persistent history, do not change the underlying file, do all operations on the locked one; do not stop using the history at all if it has been truncated * Turn off UTF-8 mode upon turning on POSIX mode * In POSIX mode, make the exec builtin force a $PATH search plus execve * Fix GCC 7, Coverity Scan warnings * Track background process PIDs even interactive * Always expose mksh���s hexdump shell function; speed it up by working on the input in chunks; use character classes to make it EBCDIC safe * Revamp dot.mkshrc default editor selection mechanism -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1479320 - None https://bugzilla.redhat.com/show_bug.cgi?id=1479320 --------------------------------------------------------------------------------
================================================================================ muffin-3.4.1-1.fc25 (FEDORA-2017-bbc00c8f8f) Window and compositing manager based on Clutter -------------------------------------------------------------------------------- Update Information:
Update ---- Patch to fix 1472008 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1472008 - [abrt] cinnamon: js::GCMethods<JSObject*>::needsPostBarrier(): cinnamon killed by signal 11 https://bugzilla.redhat.com/show_bug.cgi?id=1472008 --------------------------------------------------------------------------------
================================================================================ nemo-3.4.7-2.fc25 (FEDORA-2017-bbc00c8f8f) File manager for Cinnamon -------------------------------------------------------------------------------- Update Information:
Update ---- Patch to fix 1472008 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1472008 - [abrt] cinnamon: js::GCMethods<JSObject*>::needsPostBarrier(): cinnamon killed by signal 11 https://bugzilla.redhat.com/show_bug.cgi?id=1472008 --------------------------------------------------------------------------------
================================================================================ open-vm-tools-10.1.10-1.fc25 (FEDORA-2017-dee49ba859) Open Virtual Machine Tools for virtual machines hosted on VMware -------------------------------------------------------------------------------- Update Information:
Package new upstream version open-vm-tools-10.1.10-6082533. --------------------------------------------------------------------------------
================================================================================ openjpeg2-2.2.0-1.fc25 (FEDORA-2017-65e9bfa56d) C-Library for JPEG 2000 -------------------------------------------------------------------------------- Update Information:
Update to version 2.2.0, see https://github.com/uclouvain/openjpeg/blob/v2.2.0/NEWS.md for details. -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1390234 - CVE-2016-9112 CVE-2016-9113 CVE-2016-9114 CVE-2016-9115 CVE-2016-9116 CVE-2016-9117 CVE-2016-9118 openjpeg2: Multiple security issues [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1390234 [ 2 ] Bug #1435072 - CVE-2016-5139 openjpeg2: chromium-browser, openjpeg: Heap overflow in parsing of JPEG2000 precincts [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1435072 [ 3 ] Bug #1435071 - CVE-2016-5158 openjpeg2: chromium-browser, openjpeg: heap overflow due to unsafe use of opj_aligned_malloc [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1435071 [ 4 ] Bug #1435070 - CVE-2016-5159 openjpeg2: chromium-browser, openjpeg: heap overflow in parsing of JPEG2000 code blocks [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1435070 [ 5 ] Bug #1418150 - CVE-2016-9112 openjpeg2: Floating point exception vulnerability in openjpeg2 when processing untrusted images [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1418150 --------------------------------------------------------------------------------
================================================================================ oz-0.16.0-1.fc25 (FEDORA-2017-b3367f0c2c) Library and utilities for automated guest OS installs -------------------------------------------------------------------------------- Update Information:
Release 0.16.0 --------------------------------------------------------------------------------
================================================================================ perl-Cwd-utf8-0.011-1.fc25 (FEDORA-2017-384b31eca2) Fully UTF-8 aware Cwd -------------------------------------------------------------------------------- Update Information:
This release corrects lists of build-time dependencies. We deliver it provide up-to-date version string. --------------------------------------------------------------------------------
================================================================================ perl-Devel-Size-0.81-1.fc25 (FEDORA-2017-319aff08ee) Perl extension for finding the memory usage of Perl variables -------------------------------------------------------------------------------- Update Information:
This release correct tests. --------------------------------------------------------------------------------
================================================================================ perl-File-Find-utf8-0.013-1.fc25 (FEDORA-2017-4cd1bd0f4e) Fully UTF-8 aware File::Find -------------------------------------------------------------------------------- Update Information:
This release fixes build-time dependency list. We deliver it only to provide up- to-date version string. --------------------------------------------------------------------------------
================================================================================ perl-File-Tail-1.3-7.fc25 (FEDORA-2017-b25ad12e0c) Perl extension for reading from continously updated files -------------------------------------------------------------------------------- Update Information:
Add sanity checks to not use possibly uninitialized vars. -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1283764 - Use of uninitialized value in numeric eq (==) at /usr/share/perl5/vendor_perl/File/Tail.pm line 391 https://bugzilla.redhat.com/show_bug.cgi?id=1283764 --------------------------------------------------------------------------------
================================================================================ perl-Mail-JMAPTalk-0.08-1.fc25 (FEDORA-2017-309ef6e4ea) Perl client for JMAP protocol -------------------------------------------------------------------------------- Update Information:
This release adds support for accountId in blob upload. --------------------------------------------------------------------------------
================================================================================ perl-Time-OlsonTZ-Download-0.006-1.fc25 (FEDORA-2017-fb5504bdff) Olson time zone database from source -------------------------------------------------------------------------------- Update Information:
This release fixes parsing iso3166.tab with non-ASCII characters. It also improves documentation. -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1479680 - None https://bugzilla.redhat.com/show_bug.cgi?id=1479680 --------------------------------------------------------------------------------
================================================================================ pesign-0.112-6.fc25 (FEDORA-2017-8976ad052b) Signing utility for UEFI binaries -------------------------------------------------------------------------------- Update Information:
Update to make the kernel builders work again with newer opensc (I think) libraries. ---- This removes the dependencies on pkcs11 module providers; those need to be handled elsewhere so as to only pull in the modules required on a given system. -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1349073 - pesign: should not require coolkey https://bugzilla.redhat.com/show_bug.cgi?id=1349073 --------------------------------------------------------------------------------
================================================================================ postgresql-9.5.8-1.fc25 (FEDORA-2017-9148fe36b9) PostgreSQL client programs -------------------------------------------------------------------------------- Update Information:
rebase: update to 9.5.8, security fix for CVE-2017-7546 CVE-2017-7547 CVE-2017-7548 Per release notes: http://www.postgresql.org/docs/9.5/static/release-9-5-8.html -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1477187 - CVE-2017-7548 postgresql: lo_put() function ignores ACLs https://bugzilla.redhat.com/show_bug.cgi?id=1477187 [ 2 ] Bug #1477185 - CVE-2017-7547 postgresql: pg_user_mappings view discloses passwords to users lacking server privileges https://bugzilla.redhat.com/show_bug.cgi?id=1477185 [ 3 ] Bug #1477184 - CVE-2017-7546 postgresql: Empty password accepted in some authentication methods https://bugzilla.redhat.com/show_bug.cgi?id=1477184 --------------------------------------------------------------------------------
================================================================================ pyrit-0.5.0-1.fc25 (FEDORA-2017-3598c18a4c) A GPGPU-driven WPA/WPA2-PSK key cracker -------------------------------------------------------------------------------- Update Information:
Update to 0.5.0. --------------------------------------------------------------------------------
================================================================================ python-copr-1.79-1.fc25 (FEDORA-2017-7ea136db8a) Python interface for Copr -------------------------------------------------------------------------------- Update Information:
- allow to modify copr chroots with copr modify cmd --------------------------------------------------------------------------------
================================================================================ python-django-classy-tags-0.7.2-3.fc25 (FEDORA-2017-df544957b0) Class based template tags for Django -------------------------------------------------------------------------------- Update Information:
Fix python-* provides. --------------------------------------------------------------------------------
================================================================================ python-fedmsg-meta-fedora-infrastructure-0.19.0-1.fc25 (FEDORA-2017-00f8bfbbfc) Metadata providers for Fedora Infrastructure's fedmsg deployment -------------------------------------------------------------------------------- Update Information:
Update to 0.19.0 Release note at: https://github.com/fedora- infra/fedmsg_meta_fedora_infrastructure/blob/develop/CHANGELOG.rst#0190 --------------------------------------------------------------------------------
================================================================================ python-gitdb-2.0.2-1.fc25 (FEDORA-2017-d1574b9ff5) Git Object Database -------------------------------------------------------------------------------- Update Information:
Update GitPython stack for latest fixes. -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1460465 - GitPython-2.1.5 is available https://bugzilla.redhat.com/show_bug.cgi?id=1460465 --------------------------------------------------------------------------------
================================================================================ python-hwdata-2.3.5-1.fc25 (FEDORA-2017-066cc51979) Python bindings to hwdata package -------------------------------------------------------------------------------- Update Information:
added python2 subpackage --------------------------------------------------------------------------------
================================================================================ python-smmap-2.0.3-1.fc25 (FEDORA-2017-d1574b9ff5) Sliding window memory map manager -------------------------------------------------------------------------------- Update Information:
Update GitPython stack for latest fixes. -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1460465 - GitPython-2.1.5 is available https://bugzilla.redhat.com/show_bug.cgi?id=1460465 --------------------------------------------------------------------------------
================================================================================ python-social-auth-0.2.19-2.fc25 (FEDORA-2017-249743281c) Social auth made simple -------------------------------------------------------------------------------- Update Information:
Fix python-* provides. --------------------------------------------------------------------------------
================================================================================ python-urllib2_kerberos-0.1.6-22.fc25 (FEDORA-2017-c9d245b8e1) Kerberos over HTTP Negotiate/SPNEGO support for urllib2 -------------------------------------------------------------------------------- Update Information:
Add a build-time dependency on python2-devel and modernize spec file --------------------------------------------------------------------------------
================================================================================ python-xlrd-1.0.0-6.fc25 (FEDORA-2017-76b2ca627c) Library to extract data from Microsoft Excel (TM) spreadsheet files -------------------------------------------------------------------------------- Update Information:
New version: 1.0.0 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1475573 - Python xlrd 1.0.0 is available https://bugzilla.redhat.com/show_bug.cgi?id=1475573 --------------------------------------------------------------------------------
================================================================================ python-zaqarclient-1.0.0-4.fc25 (FEDORA-2017-e3b94303d4) Client Library for OpenStack Zaqar Queueing API -------------------------------------------------------------------------------- Update Information:
Fix python-* provides. --------------------------------------------------------------------------------
================================================================================ qpid-proton-0.17.0-5.fc25 (FEDORA-2017-78297f4ac0) A high performance, lightweight messaging library -------------------------------------------------------------------------------- Update Information:
Updated to resolve installation problem. --------------------------------------------------------------------------------
================================================================================ root-6.10.04-1.fc25 (FEDORA-2017-917de4175b) Numerical data analysis framework -------------------------------------------------------------------------------- Update Information:
ROOT 6.10.04 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1478693 - None https://bugzilla.redhat.com/show_bug.cgi?id=1478693 --------------------------------------------------------------------------------
================================================================================ ruby-2.3.4-63.fc25 (FEDORA-2017-f318871e3b) An interpreter of object-oriented scripting language -------------------------------------------------------------------------------- Update Information:
* Update to Ruby 2.3.4. * Fix SMTP command injection via CRLF sequences in RCPT TO or MAIL FROM commands in Net::SMTP (CVE-2015-9096). -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1461846 - CVE-2015-9096 ruby: SMTP command injection via CRLF sequences in RCPT TO or MAIL FROM commands in Net::SMTP https://bugzilla.redhat.com/show_bug.cgi?id=1461846 --------------------------------------------------------------------------------
================================================================================ seafile-6.1.0-1.fc25 (FEDORA-2017-386376e328) Cloud storage cli client -------------------------------------------------------------------------------- Update Information:
Update to 6.1.0 --------------------------------------------------------------------------------
================================================================================ seafile-client-6.1.0-1.fc25 (FEDORA-2017-1204436f93) Seafile cloud storage desktop client -------------------------------------------------------------------------------- Update Information:
Update to 6.1.0 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1474731 - sync failure after standby / upgrade to 6.0.7 https://bugzilla.redhat.com/show_bug.cgi?id=1474731 --------------------------------------------------------------------------------
================================================================================ snapd-2.27-1.fc25 (FEDORA-2017-4f8de51e27) A transactional software package manager -------------------------------------------------------------------------------- Update Information:
Some highlights of snapd 2.27 from upstream: * updated interfaces: `default`, `mir`, `optical-observe`, `system-observe`, `screen-inhibit-control`, `unity`, `network-control` * new interfaces: `greengrass-support`, `password-manager- service` * snapctl work inside the snap context too (outside of hooks) * forced- devmode information is available via the sysinfo API now * seccomp argument filtering re-enabled * add `--listswitch` to `snap abort` and `snap watch` * add new snap commandline aliases: `snap search` and `snap change` * many test improvements * many bugfixes * shellcheck everywhere * `snap list` now shows the snap type in the notes (if it is not `type: app`) * support "title" via the store/rest-api * `syslogIdentifier` is now written to the generated systemd unit files * make snapd itself a "type=notify" daemon * auto-import system-user assertion only from ext4,vfat partitions * show sha3-384 hash in `snap info --verbose <snapfile>` * show snap-id in snap info * make config defaults from gadget work also at first boot * add support for android-boot * implement `snap- update-ns` * use `/etc/ssl` from the core snap * implement shortcut `snap install --unaliased` to install a snap without its automatic aliases Some highlights of snapd-glib 1.16 from upstream: * Bring introspection and vapigen m4 macros into the source so can build without them installed. * Fix snapd-qt build failure due to conflict of 'signals' variable with GDBus. * Set a user agent when sending requests to snapd-glib -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1471771 - snapd-glib-1.16 is available https://bugzilla.redhat.com/show_bug.cgi?id=1471771 [ 2 ] Bug #1458086 - snapd-2.27 is available https://bugzilla.redhat.com/show_bug.cgi?id=1458086 --------------------------------------------------------------------------------
================================================================================ snapd-glib-1.16-1.fc25 (FEDORA-2017-4f8de51e27) Library providing a GLib interface to snapd -------------------------------------------------------------------------------- Update Information:
Some highlights of snapd 2.27 from upstream: * updated interfaces: `default`, `mir`, `optical-observe`, `system-observe`, `screen-inhibit-control`, `unity`, `network-control` * new interfaces: `greengrass-support`, `password-manager- service` * snapctl work inside the snap context too (outside of hooks) * forced- devmode information is available via the sysinfo API now * seccomp argument filtering re-enabled * add `--listswitch` to `snap abort` and `snap watch` * add new snap commandline aliases: `snap search` and `snap change` * many test improvements * many bugfixes * shellcheck everywhere * `snap list` now shows the snap type in the notes (if it is not `type: app`) * support "title" via the store/rest-api * `syslogIdentifier` is now written to the generated systemd unit files * make snapd itself a "type=notify" daemon * auto-import system-user assertion only from ext4,vfat partitions * show sha3-384 hash in `snap info --verbose <snapfile>` * show snap-id in snap info * make config defaults from gadget work also at first boot * add support for android-boot * implement `snap- update-ns` * use `/etc/ssl` from the core snap * implement shortcut `snap install --unaliased` to install a snap without its automatic aliases Some highlights of snapd-glib 1.16 from upstream: * Bring introspection and vapigen m4 macros into the source so can build without them installed. * Fix snapd-qt build failure due to conflict of 'signals' variable with GDBus. * Set a user agent when sending requests to snapd-glib -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1471771 - snapd-glib-1.16 is available https://bugzilla.redhat.com/show_bug.cgi?id=1471771 [ 2 ] Bug #1458086 - snapd-2.27 is available https://bugzilla.redhat.com/show_bug.cgi?id=1458086 --------------------------------------------------------------------------------
================================================================================ sqlite-3.14.2-3.fc25 (FEDORA-2017-571e659c85) Library that implements an embeddable SQL database engine -------------------------------------------------------------------------------- Update Information:
Security fix for CVE-2017-7000 -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1475207 - CVE-2017-7000 chromium-browser: pointer disclosure in sqlite https://bugzilla.redhat.com/show_bug.cgi?id=1475207 --------------------------------------------------------------------------------
================================================================================ standard-test-roles-2.3-1.fc25 (FEDORA-2017-527501fe1d) Standard Test Interface Ansible roles -------------------------------------------------------------------------------- Update Information:
Sync standard-test-roles with latest upstream release. --------------------------------------------------------------------------------
================================================================================ subversion-1.9.7-1.fc25 (FEDORA-2017-1d1a38bdd1) A Modern Concurrent Version Control System -------------------------------------------------------------------------------- Update Information:
This update includes the latest stable release of _Apache Subversion_, version **1.9.7**. #### Client-side bugfixes: * Fix arbitrary code execution vulnerability CVE-2017-9800 See https://subversion.apache.org/security/CVE-2017-9800-advisory.txt for details. -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1480402 - subversion-1.9.7 is available https://bugzilla.redhat.com/show_bug.cgi?id=1480402 [ 2 ] Bug #1480335 - CVE-2017-9800 subversion: Arbitrary code execution on clients through malicious svn+ssh URLs [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1480335 --------------------------------------------------------------------------------
================================================================================ techtalk-pse-1.2.0-1.fc25 (FEDORA-2017-cba3a638f7) Presentation software designed for technical people -------------------------------------------------------------------------------- Update Information:
New upstream version 1.2.0. -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1303944 - None https://bugzilla.redhat.com/show_bug.cgi?id=1303944 --------------------------------------------------------------------------------
================================================================================ torbrowser-launcher-0.2.8-1.fc25 (FEDORA-2017-866fc566e0) Tor Browser Bundle managing tool -------------------------------------------------------------------------------- Update Information:
Automatically refresh GPG keyring, to prevent signature verification false positives -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1463869 - torbrowser-launcher-v0.2.8 is available https://bugzilla.redhat.com/show_bug.cgi?id=1463869 --------------------------------------------------------------------------------
================================================================================ ucarp-1.5.2-20.fc25 (FEDORA-2017-6a42a67f7a) Common Address Redundancy Protocol (CARP) for Unix -------------------------------------------------------------------------------- Update Information:
Fix unit file. -------------------------------------------------------------------------------- References:
[ 1 ] Bug #1475748 - ucarp doesn't start on boot https://bugzilla.redhat.com/show_bug.cgi?id=1475748 --------------------------------------------------------------------------------
================================================================================ vim-8.0.885-1.fc25 (FEDORA-2017-dd9ceeda89) The VIM editor -------------------------------------------------------------------------------- Update Information:
The newest upstream commit. --------------------------------------------------------------------------------
================================================================================ virt-manager-1.4.2-1.fc25 (FEDORA-2017-a2b1ebf2f3) Desktop tool for managing virtual machines via libvirt -------------------------------------------------------------------------------- Update Information:
* Rebased to version 1.4.2 * New VM wixard virt-bootstrap integration (Radostin Stoyanov) * New VM wizard support for virtuozzo containers (Mikhail Feoktistov) * network UI: add support to create SR-IOV VF pool (Lin Ma) * Nicer OS list in New VM wizard (Pino Toscano) * Better defaults for UEFI secureboot builds (Pavel Hrdina) * Fix defaults for aarch64 VMs if graphics are requested * virt-install: new --memdev option (Pavel Hrdina) * virt-install: add --disk logical/physical_block_size (Yuri Arabadji) * virt-install: add --features hyperv_reset=, hyperv_synic= (Venkat Datta N H) --------------------------------------------------------------------------------
================================================================================ xlockmore-5.55-1.fc25 (FEDORA-2017-6966db0d4f) Screen lock and screen saver -------------------------------------------------------------------------------- Update Information:
updated to 5.55 --------------------------------------------------------------------------------
================================================================================ xnec2c-3.5.1-1.fc25 (FEDORA-2017-2abae187a1) GTK based graphical wrapper for nec2c -------------------------------------------------------------------------------- Update Information:
* Modified the NEC2 Editor code so that when a Geometry or Command editor window is opened, activating Apply or OK will save data in the editor window to the treeview, even if the default data is not edited. * Modified the NEC2 Editor code so that if a treeview row is removed while the relevant editor window is open, then activating Apply or OK will not attempt to save data to the treeview, since this will cause an illegal memory access and will crash xnec2c. * Fixed a bug in the Helix editor which caused incorrect calculation of the segment length as a percentage of wavelength or of the number of segments/turn that correspond to a given segment length as a percentage of wavelength. --------------------------------------------------------------------------------
================================================================================ xrdp-0.9.3-1.fc25 (FEDORA-2017-e8fe4628a7) Open source remote desktop protocol (RDP) server -------------------------------------------------------------------------------- Update Information:
New features - Log user-friendly messages when certificate/privkey is inaccessible Bugfixes - Now sesman sets mandatory LOGNAME environment variable #725 - Now sesman ensures socket directory present #801 - Exit with failure status if port already in use #644 - Eliminate some hard coded paths - Fix glitches with IPv4 struct initialization #803 - Fix some keyboard layout integration (UK, Spanish) - Fix handle OS when IPv6 disabled #714 - Fix issues around systemd session #778 - Fix protocol error when 32 bit color and non RemoteFX session #737 #804 - Fix sesadmin shows error when no sessions #797 - Fix TLS spins 100% CPU #728 - Fix Xvnc backend disconnects when some data copied to clipboard #755 - Pick up the first section if given section(domain) doesn't match anything #750 Other changes - Change xrdp-chansrv log path to include display number - Optimize startwm.sh for SUSE - Several cleanups and optimizations Known issues - Windows 10 (1703) shows black blank screen in RemoteFX mode --------------------------------------------------------------------------------