Fix CVE-2017-6503 and CVE-2017-6504

https://github.com/projectatomic/rpm-ostree/releases/tag/v2017.3

This release includes a fix for [CVE-2017-2623](https://bugzilla.redhat.com/show_bug.cgi?id=1422157).

There are a few new features, such as `systemctl reload rpm-ostreed` now being supported. Some bugfixes such as memory leak fixes. Besides that, there’s a lot of internal refactoring going on in preparation for work on local RPM installation.

https://github.com/projectatomic/rpm-ostree/releases/tag/v2017.3

This release includes a fix for [CVE-2017-2623](https://bugzilla.redhat.com/show_bug.cgi?id=1422157).

There are a few new features, such as `systemctl reload rpm-ostreed` now being
supported. Some bugfixes such as memory leak fixes. Besides that, there’s a lot
of internal refactoring going on in preparation for work on local RPM
installation.

Fix for CVE-2017-6430

Fix for CVE-2017-6430

Core

#2889: Fixed ‘Too many files open’ errors.
#2861: Added support for python-geoip for use with libtorrent 1.1.
#2149: Fixed a single proxy entry being overwritten resulting in no proxy set.

UI

Added tracker_status translation to UIs.

GtkUI

#2901: Strip whitespace from infohash before checks.
Add missed feature autofill infohash entry from clipboard.

WebUI

#1908: Backport bind interface option for server.
Security: Fixed WebUI CSRF Vulnerability.

ConsoleUI

#2948 [Console] Fix decode error comparing non-ascii (str) torrent name.

AutoAdd? Plugin

Fixes for splitting magnets from file.
Remove duplicate magnet extension when splitting.

Core

#2889: Fixed ‘Too many files open’ errors.
#2861: Added support for python-geoip for use with libtorrent 1.1.
#2149: Fixed a single proxy entry being overwritten resulting in no proxy set.

UI

Added tracker_status translation to UIs.

GtkUI

#2901: Strip whitespace from infohash before checks.
Add missed feature autofill infohash entry from clipboard.

WebUI

#1908: Backport bind interface option for server.
Security: Fixed WebUI CSRF Vulnerability.

ConsoleUI

#2948 [Console] Fix decode error comparing non-ascii (str) torrent name.

AutoAdd? Plugin

Fixes for splitting magnets from file.
Remove duplicate magnet extension when splitting.

Security update for integer underflow

Security fix for CVE-2016-9422, CVE-2016-9423, CVE-2016-9424, CVE-2016-9425, CVE-2016-9428, CVE-2016-9426, CVE-2016-9429, CVE-2016-9430, CVE-2016-9431, CVE-2016-9432, CVE-2016-9433, CVE-2016-9434, CVE-2016-9435, CVE-2016-9436, CVE-2016-9437, CVE-2016-9438, CVE-2016-9439, CVE-2016-9440, CVE-2016-9441, CVE-2016-9442, CVE-2016-9443, CVE-2016-9622, CVE-2016-9623, CVE-2016-9624, CVE-2016-9625, CVE-2016-9626, CVE-2016-9627, CVE-2016-9628, CVE-2016-9629, CVE-2016-9631, CVE-2016-9630, CVE-2016-9632, CVE-2016-9633

—-

Update to latest upstream gitrev 20170102

Security fix for CVE-2016-9422, CVE-2016-9423, CVE-2016-9424, CVE-2016-9425, CVE-2016-9428, CVE-2016-9426, CVE-2016-9429, CVE-2016-9430, CVE-2016-9431, CVE-2016-9432, CVE-2016-9433, CVE-2016-9434, CVE-2016-9435, CVE-2016-9436, CVE-2016-9437, CVE-2016-9438, CVE-2016-9439, CVE-2016-9440, CVE-2016-9441, CVE-2016-9442, CVE-2016-9443, CVE-2016-9622, CVE-2016-9623, CVE-2016-9624, CVE-2016-9625, CVE-2016-9626, CVE-2016-9627, CVE-2016-9628, CVE-2016-9629, CVE-2016-9631, CVE-2016-9630, CVE-2016-9632, CVE-2016-9633

And new upstream 20170102 as well