The following Fedora 26 Security updates need testing: Age URL 124 https://bodhi.fedoraproject.org/updates/FEDORA-2017-ccb5c8d1e7 docker-distribution-2.6.2-1.git48294d9.fc26 53 https://bodhi.fedoraproject.org/updates/FEDORA-2017-6e6f4f95e6 ruby-2.4.2-84.fc26 39 https://bodhi.fedoraproject.org/updates/FEDORA-2017-6bff3cf26c suricata-3.2.4-1.fc26 17 https://bodhi.fedoraproject.org/updates/FEDORA-2017-3915878e18 ldns-1.7.0-4.fc26 17 https://bodhi.fedoraproject.org/updates/FEDORA-2017-f87ce166c5 chromium-62.0.3202.89-1.fc26 7 https://bodhi.fedoraproject.org/updates/FEDORA-2017-2522df3526 nodejs-balanced-match-0.4.2-4.fc26 nodejs-brace-expansion-1.1.7-1.fc26 6 https://bodhi.fedoraproject.org/updates/FEDORA-2017-d0a336a2a3 couchdb-1.7.1-3.fc26 erlang-jiffy-0.14.13-1.fc26 6 https://bodhi.fedoraproject.org/updates/FEDORA-2017-475529a26a moodle-3.2.6-1.fc26 6 https://bodhi.fedoraproject.org/updates/FEDORA-2017-b0b4cc40c1 transfig-3.2.6a-1.fc26 6 https://bodhi.fedoraproject.org/updates/FEDORA-2017-23c3f02995 python-werkzeug-0.12.2-1.fc26 3 https://bodhi.fedoraproject.org/updates/FEDORA-2017-e7938fd7d7 java-9-openjdk-9.0.1.11-4.fc26 3 https://bodhi.fedoraproject.org/updates/FEDORA-2017-267f37c544 mupdf-1.11-9.fc26 3 https://bodhi.fedoraproject.org/updates/FEDORA-2017-7cbd8a00b7 wildmidi-0.4.2-1.fc26 3 https://bodhi.fedoraproject.org/updates/FEDORA-2017-5808f488a5 python-sanic-0.6.0-1.fc26 3 https://bodhi.fedoraproject.org/updates/FEDORA-2017-f67f3ffb5d xrdp-0.9.4-2.fc26 3 https://bodhi.fedoraproject.org/updates/FEDORA-2017-3976710f1e docker-1.13.1-44.git584d391.fc26 3 https://bodhi.fedoraproject.org/updates/FEDORA-2017-b2f4db4def qbittorrent-4.0.1-1.fc26 rb_libtorrent-1.1.5-1.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-a253644369 linux-firmware-20171126-80.git17e62881.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-ef2108bde5 exim-4.89-6.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-774e7863a4 mongodb-3.4.10-1.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-f9cfcef9d6 collectd-5.8.0-2.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-0e4021062c fedora-arm-installer-2.1-1.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-93b6236635 erlang-19.3.6.4-1.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-3a8cbd86a1 ca-certificates-2017.2.20-1.0.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-f9f3d80442 kernel-4.13.16-200.fc26
The following Fedora 26 Critical Path updates have yet to be approved: Age URL 14 https://bodhi.fedoraproject.org/updates/FEDORA-2017-cb2da0cd93 publicsuffix-list-20171028-1.fc26 12 https://bodhi.fedoraproject.org/updates/FEDORA-2017-552febe596 nss-3.34.0-1.0.fc26 nss-softokn-3.34.0-1.0.fc26 nss-util-3.34.0-1.0.fc26 10 https://bodhi.fedoraproject.org/updates/FEDORA-2017-dcf8a3ccd9 libguestfs-1.36.11-1.fc26 6 https://bodhi.fedoraproject.org/updates/FEDORA-2017-08edc09fa0 groff-1.22.3-10.fc26 6 https://bodhi.fedoraproject.org/updates/FEDORA-2017-39e6a2f7e7 selinux-policy-3.13.1-260.17.fc26 3 https://bodhi.fedoraproject.org/updates/FEDORA-2017-487ca63bea libtiff-4.0.9-1.fc26 3 https://bodhi.fedoraproject.org/updates/FEDORA-2017-67df8072a8 pcre2-10.23-11.fc26 3 https://bodhi.fedoraproject.org/updates/FEDORA-2017-0fbd645750 man-db-2.7.6.1-7.fc26 3 https://bodhi.fedoraproject.org/updates/FEDORA-2017-9b23ff63d3 pungi-4.1.20-3.fc26 3 https://bodhi.fedoraproject.org/updates/FEDORA-2017-9a4dd70cf3 augeas-1.9.0-1.fc26 3 https://bodhi.fedoraproject.org/updates/FEDORA-2017-7aa857c238 sssd-1.16.0-3.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-f9f3d80442 kernel-4.13.16-200.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-3a8cbd86a1 ca-certificates-2017.2.20-1.0.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-1826efe3c7 vim-8.0.1351-1.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-00d820a2a4 breeze-icon-theme-5.40.0-1.fc26 extra-cmake-modules-5.40.0-1.fc26 kf5-5.40.0-1.fc26 kf5-attica-5.40.0-1.fc26 kf5-baloo-5.40.0-1.fc26 kf5-bluez-qt-5.40.0-1.fc26 kf5-frameworkintegration-5.40.0-1.fc26 kf5-kactivities-5.40.0-1.fc26 kf5-kactivities-stats-5.40.0-1.fc26 kf5-kapidox-5.40.0-1.fc26 kf5-karchive-5.40.0-1.fc26 kf5-kauth-5.40.0-1.fc26 kf5-kbookmarks-5.40.0-1.fc26 kf5-kcmutils-5.40.0-1.fc26 kf5-kcodecs-5.40.0-1.fc26 kf5-kcompletion-5.40.0-1.fc26 kf5-kconfig-5.40.0-1.fc26 kf5-kconfigwidgets-5.40.0-1.fc26 kf5-kcoreaddons-5.40.0-1.fc26 kf5-kcrash-5.40.0-1.fc26 kf5-kdbusaddons-5.40.0-1.fc26 kf5-kdeclarative-5.40.0-1.fc26 kf5-kded-5.40.0-1.fc26 kf5-kdelibs4support-5.40.0-1.fc26 kf5-kdesignerplugin-5.40.0-1.fc26 kf5-kdesu-5.40.0-1.fc26 kf5-kdewebkit-5.40.0-1.fc26 kf5-kdnssd-5.40.0-1.fc26 kf5-kdoctools-5.40.0-1.fc26 kf5-kemoticons-5.40.0-1.fc26 kf5-kfilemetadata-5.40.0-1.fc26 kf5-kglobalaccel-5.40.0-1.fc26 kf5-kguiad dons-5.40.0-1.fc26 kf5-khtml-5.40.0-1.fc26 kf5-ki18n-5.40.0-1.fc26 kf5-kiconthemes-5.40.0-1.fc26 kf5-kidletime-5.40.0-1.fc26 kf5-kimageformats-5.40.0-1.fc26 kf5-kinit-5.40.0-1.fc26 kf5-kio-5.40.0-2.fc26 kf5-kirigami2-5.40.0-1.fc26 kf5-kitemmodels-5.40.0-1.fc26 kf5-kitemviews-5.40.0-1.fc26 kf5-kjobwidgets-5.40.0-1.fc26 kf5-kjs-5.40.0-1.fc26 kf5-kjsembed-5.40.0-1.fc26 kf5-kmediaplayer-5.40.0-1.fc26 kf5-knewstuff-5.40.0-1.fc26 kf5-knotifications-5.40.0-1.fc26 kf5-knotifyconfig-5.40.0-1.fc26 kf5-kpackage-5.40.0-1.fc26 kf5-kparts-5.40.0-1.fc26 kf5-kpeople-5.40.0-1.fc26 kf5-kplotting-5.40.0-1.fc26 kf5-kpty-5.40.0-1.fc26 kf5-kross-5.40.0-1.fc26 kf5-krunner-5.40.0-1.fc26 kf5-kservice-5.40.0-1.fc26 kf5-ktexteditor-5.40.0-1.fc26 kf5-ktextwidgets-5.40.0-1.fc26 kf5-kunitconversion-5.40.0-1.fc26 kf5-kwallet-5.40.0-1.fc26 kf5-kwayland-5.40.0-1.fc26 kf5-kwidgetsaddons-5.40.0-1.fc26 kf5-kwindowsystem-5.40.0-1.fc26 kf5-kxmlgui-5.40.0-1.fc26 kf5-kxmlrpcclient-5.40.0-1.fc26 kf5-modemmanager-qt-5.40.0- 1.fc26 kf5-networkmanager-qt-5.40.0-1.fc26 kf5-plasma-5.40.0-1.fc26 kf5-prison-5.40.0-1.fc26 kf5-solid-5.40.0-1.fc26 kf5-sonnet-5.40.0-1.fc26 kf5-syntax-highlighting-5.40.0-1.fc26 kf5-threadweaver-5.40.0-1.fc26 oxygen-icon-theme-5.40.0-1.fc26 qqc2-desktop-style-5.40.0-1.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-a253644369 linux-firmware-20171126-80.git17e62881.fc26 0 https://bodhi.fedoraproject.org/updates/FEDORA-2017-d9fb12e2aa syslinux-6.04-0.7.fc26 The following builds have been pushed to Fedora 26 updates-testing acpica-tools-20171110-1.fc26 ca-certificates-2017.2.20-1.0.fc26 collectd-5.8.0-2.fc26 container-selinux-2.36-1.fc26 copr-cli-1.65-1.fc26 erlang-19.3.6.4-1.fc26 fedora-arm-installer-2.1-1.fc26 kernel-4.13.16-200.fc26 keychecker-1.0-3.fc26 mongodb-3.4.10-1.fc26 php-phpunit-php-code-coverage5-5.2.4-1.fc26 php-zendframework-zend-servicemanager-3.3.1-1.fc26 python-pathlib2-2.3.0-1.fc26 vim-8.0.1351-1.fc26 Details about builds: ================================================================================ acpica-tools-20171110-1.fc26 (FEDORA-2017-9fcf1a2f15) ACPICA tools for the development and debug of ACPI tables -------------------------------------------------------------------------------- Update Information: 1) ACPICA kernel-resident subsystem: This release implements full support for ACPI 6.2A: * NFIT - Added a new subtable, "Platform Capabilities Structure" * No other changes to ACPICA were required, since ACPI 6.2A is primarily an errata release of the specification. Other ACPI table changes: * IORT: Added the SMMUv3 Device ID mapping index. Hanjun Guo * PPTT: Added cache attribute flag definitions to actbl1.h. Jeremy Linton Utilities: Modified the string/integer conversion functions to use internal 64-bit divide support instead of a native divide. On 32-bit platforms, a 64-bit divide typically requires a library function which may not be present in the build (kernel or otherwise). Implemented a targeted error message for timeouts returned from the Embedded Controller device driver. This is seen frequently enough to special-case an AE_TIME returned from an EC operation region access: "Timeout from EC hardware or EC device driver" Changed the "ACPI Exception" message prefix to "ACPI Error" so that all runtime error messages have the identical prefix. 2) iASL Compiler/Disassembler and Tools: AcpiXtract: Fixed a problem with table header detection within the acpidump file. Processing a table could be ended early if a 0x40 (@) appears in the original binary table, resulting in the @ symbol appearing in the decoded ASCII field at the end of the acpidump text line. The symbol caused acpixtract to incorrectly think it had reached the end of the current table and the beginning of a new table. AcpiXtract: Added an option (-f) to ignore some errors during table extraction. This initial implementation ignores non-ASCII and non- printable characters found in the acpidump text file. TestSuite(ASLTS)/AcpiExec: Fixed and restored the memory usage statistics for ASLTS. This feature is used to track memory allocations from different memory caches within the ACPICA code. At the end of an ASLTS run, these memory statistics are recorded and stored in a log file. Debugger (user-space version): Implemented a simple "Background" command. Creates a new thread to execute a control method in the background, while control returns to the debugger prompt to allow additional commands. Syntax: Background <Namepath> [Arguments] -------------------------------------------------------------------------------- References: [ 1 ] Bug #1512138 - acpica-tools-20171110 is available https://bugzilla.redhat.com/show_bug.cgi?id=1512138 -------------------------------------------------------------------------------- ================================================================================ ca-certificates-2017.2.20-1.0.fc26 (FEDORA-2017-3a8cbd86a1) The Mozilla CA root certificate bundle -------------------------------------------------------------------------------- Update Information: This is a cumulative update to the Mozilla CA certificates trust list version 2.20, which has been published as part of Mozilla NSS 3.34.1. It also includes the changes that were previously released as version 2.18 as part of NSS 3.34. For additional details, please refer to the release notes of NSS 3.34.1 https://developer.mozilla.org/en- US/docs/Mozilla/Projects/NSS/NSS_3.34.1_release_notes ) and NSS 3.34 (https://developer.mozilla.org/en- US/docs/Mozilla/Projects/NSS/NSS_3.34_release_notes ). -------------------------------------------------------------------------------- ================================================================================ collectd-5.8.0-2.fc26 (FEDORA-2017-f9cfcef9d6) Statistics collection daemon for filling RRD files -------------------------------------------------------------------------------- Update Information: Upstream released new version. See https://collectd.org/news.shtml#news106 for the list of changes. Fixes CVE-2017-16820 (double free in snmp plugin) -------------------------------------------------------------------------------- References: [ 1 ] Bug #1516450 - CVE-2017-16820 collectd: double free in csnmp_read_table function in snmp.c [epel-7] https://bugzilla.redhat.com/show_bug.cgi?id=1516450 [ 2 ] Bug #1516449 - CVE-2017-16820 collectd: double free in csnmp_read_table function in snmp.c [epel-6] https://bugzilla.redhat.com/show_bug.cgi?id=1516449 [ 3 ] Bug #1516451 - CVE-2017-16820 collectd: double free in csnmp_read_table function in snmp.c [fedora-all] https://bugzilla.redhat.com/show_bug.cgi?id=1516451 -------------------------------------------------------------------------------- ================================================================================ container-selinux-2.36-1.fc26 (FEDORA-2017-acc79c0e3e) SELinux policies for container runtimes -------------------------------------------------------------------------------- Update Information: Fixes map issue when using chr_file devices. Allow containers to relabel all container_file_t file classes -------------------------------------------------------------------------------- References: [ 1 ] Bug #1517690 - `mv` in container tries to remove the MCS part of SELinux context https://bugzilla.redhat.com/show_bug.cgi?id=1517690 [ 2 ] Bug #1488406 - IPA container throws AVC when runnig docker exec https://bugzilla.redhat.com/show_bug.cgi?id=1488406 -------------------------------------------------------------------------------- ================================================================================ copr-cli-1.65-1.fc26 (FEDORA-2017-16876d1de4) Command line interface for COPR -------------------------------------------------------------------------------- Update Information: - allow to set use_bootstrap_container via API -------------------------------------------------------------------------------- ================================================================================ erlang-19.3.6.4-1.fc26 (FEDORA-2017-93b6236635) General-purpose programming language and runtime environment -------------------------------------------------------------------------------- Update Information: * Ver. 19.3.6.4 -------------------------------------------------------------------------------- ================================================================================ fedora-arm-installer-2.1-1.fc26 (FEDORA-2017-0e4021062c) Writes binary image files to any specified block device -------------------------------------------------------------------------------- Update Information: Update to 2.1 ---- Update to 2.0, Initial support for aarch64 images and associated SBCs -------------------------------------------------------------------------------- References: [ 1 ] Bug #1464968 - CVE-2017-7496 fedora-arm-installer: Unsafe mount in /tmp allows privilege escalation https://bugzilla.redhat.com/show_bug.cgi?id=1464968 -------------------------------------------------------------------------------- ================================================================================ kernel-4.13.16-200.fc26 (FEDORA-2017-f9f3d80442) The Linux kernel -------------------------------------------------------------------------------- Update Information: The 4.13.16 update contains various fixes across the tree. -------------------------------------------------------------------------------- References: [ 1 ] Bug #1516267 - CVE-2017-16649 kernel: Divide-by-zero in drivers/net/usb/cdc_ether.c https://bugzilla.redhat.com/show_bug.cgi?id=1516267 [ 2 ] Bug #1516265 - CVE-2017-16650 kernel: Divide-by-zero in drivers/net/usb/qmi_wwan.c https://bugzilla.redhat.com/show_bug.cgi?id=1516265 [ 3 ] Bug #1516273 - CVE-2017-16644 kernel: Improper error handling in drivers/media/usb/hdpvr/hdpvr-core.c https://bugzilla.redhat.com/show_bug.cgi?id=1516273 [ 4 ] Bug #1516270 - CVE-2017-16647 kernel: NULL pointer dereference in drivers/net/usb/asix_devices.c https://bugzilla.redhat.com/show_bug.cgi?id=1516270 [ 5 ] Bug #1518155 - CVE-2017-16994 kernel: mm/pagewalk.c:walk_hugetlb_range function mishandles holes in hugetlb ranges causing information leak https://bugzilla.redhat.com/show_bug.cgi?id=1518155 -------------------------------------------------------------------------------- ================================================================================ keychecker-1.0-3.fc26 (FEDORA-2017-9133e7b08a) Generate list of installed packages sorted by GPG key -------------------------------------------------------------------------------- Update Information: ``` - Use python3 on Fedora - Add requirement for python rpm module - Properly handle license file ``` -------------------------------------------------------------------------------- ================================================================================ mongodb-3.4.10-1.fc26 (FEDORA-2017-774e7863a4) High-performance, schema-free document-oriented database -------------------------------------------------------------------------------- Update Information: Security fix for CVE-2017-15535 Update to latest minor release 3.4.10 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1516183 - CVE-2017-15535 mongodb: Invalid wire protocol compression https://bugzilla.redhat.com/show_bug.cgi?id=1516183 -------------------------------------------------------------------------------- ================================================================================ php-phpunit-php-code-coverage5-5.2.4-1.fc26 (FEDORA-2017-bb4c7a7ce1) PHP code coverage information -------------------------------------------------------------------------------- Update Information: **Version 5.2.4** - 2017-11-27 * Fixed [#424](https://github.com/sebastianbergmann/php-code-coverage/issues/424): Rest of a function or method is ignored after an anonymous function * Fixed [#455](https://github.com/sebastianbergmann/php-code-coverage/issues/455): Dashboard does not handle namespaced classes properly * Fixed [#468](https://github.com/sebastianbergmann/php-code-coverage/issues/468): Global functions are not properly counted * Fixed [#560](https://github.com/sebastianbergmann/php-code-coverage/issues/560): Uncovered whitelisted files are missing from the report -------------------------------------------------------------------------------- ================================================================================ php-zendframework-zend-servicemanager-3.3.1-1.fc26 (FEDORA-2017-1da3cdc8e9) Zend Framework ServiceManager component -------------------------------------------------------------------------------- Update Information: **Version 3.3.1** - 2017-11-27 * **Added** - [#201](https://github.com/zendframework/zend-servicemanager/pull/201) and [#202](https://github.com/zendframework/zend-servicemanager/pull/202) add support for PHP versions 7.1 and 7.2. * **Fixed** - [#206](https://github.com/zendframework/zend-servicemanager/pull/206) fixes an issue where by callables in `Class::method` notation were not being honored under PHP 5.6. -------------------------------------------------------------------------------- ================================================================================ python-pathlib2-2.3.0-1.fc26 (FEDORA-2017-163fcde10f) Object-oriented filesystem paths -------------------------------------------------------------------------------- Update Information: New upstream version 2.3.0 -------------------------------------------------------------------------------- References: [ 1 ] Bug #1410657 - pathlib2 missing dependency on six https://bugzilla.redhat.com/show_bug.cgi?id=1410657 -------------------------------------------------------------------------------- ================================================================================ vim-8.0.1351-1.fc26 (FEDORA-2017-1826efe3c7) The VIM editor -------------------------------------------------------------------------------- Update Information: The newest upstream commit -------------------------------------------------------------------------------- _______________________________________________ test mailing list -- [email protected] To unsubscribe send an email to [email protected]
