Dear all,
You are kindly invited to the meeting:
EPEL Steering Committee on 2020-08-28 from 21:00:00 to 22:00:00 UTC
At freenode@fedora-meeting
The meeting will be about:
This is the weekly EPEL Steering Committee Meeting.
A general agenda is the following:
#meetingname EPEL
#topic Intros
#topic Old Business
#topic EPEL-6
#topic EPEL-7
#topic EPEL-8
#topic Openfloor
#endmeeting
Source: https://apps.fedoraproject.org/calendar/meeting/9722/
The following builds have been pushed to Fedora EPEL 6 updates-testing
golang-1.15-1.el6
perl-Data-Validate-IP-0.27-13.el6
singularity-3.6.2-1.el6
xrootd-4.12.3-5.el6
Details about builds:
================================================================================
golang-1.15-1.el6 (FEDORA-EPEL-2020-1af9888c22)
The Go Programming Language
--------------------------------------------------------------------------------
Update Information:
* Rebase to go1.15 * Security bugfix for CVE-2020-14040 and CVE-2020-16845
--------------------------------------------------------------------------------
ChangeLog:
* Tue Aug 25 2020 Jakub ��ajka <jcajka(a)redhat.com> - 1.15-1
- Rebase to go1.15
- Security fix for CVE-2020-16845 and CVE-2020-14040
- Resolves BZ#1867100 and BZ#1853654
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1853652 - CVE-2020-14040 golang.org/x/text: possibility to trigger an infinite loop in encoding/unicode could lead to crash
https://bugzilla.redhat.com/show_bug.cgi?id=1853652
[ 2 ] Bug #1867099 - CVE-2020-16845 golang: ReadUvarint and ReadVarint can read an unlimited number of bytes from invalid inputs
https://bugzilla.redhat.com/show_bug.cgi?id=1867099
--------------------------------------------------------------------------------
================================================================================
perl-Data-Validate-IP-0.27-13.el6 (FEDORA-EPEL-2020-4fec85b1f3)
Perl IP address validation routines
--------------------------------------------------------------------------------
Update Information:
Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild
--------------------------------------------------------------------------------
ChangeLog:
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1872870 - perl-Data-Validate-IP build for EPEL7
https://bugzilla.redhat.com/show_bug.cgi?id=1872870
--------------------------------------------------------------------------------
================================================================================
singularity-3.6.2-1.el6 (FEDORA-EPEL-2020-cd5e8276dd)
Application and environment virtualization
--------------------------------------------------------------------------------
Update Information:
Upgrade to upstream 3.6.2.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Aug 26 2020 Dave Dykstra <dwd(a)fedoraproject.org> - 3.6.2-1
- Upgrade to upstream 3.6.2.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1872838 - singularity-3.6.2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1872838
--------------------------------------------------------------------------------
================================================================================
xrootd-4.12.3-5.el6 (FEDORA-EPEL-2020-2d734ca8fa)
Extended ROOT file server
--------------------------------------------------------------------------------
Update Information:
Backport minor fixes from upstream.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Aug 26 2020 Mattias Ellert <mattias.ellert(a)physics.uu.se> - 1:4.12.3-5
- Use new CMake macros where available
- Backport minor fixes from upstream git
- Correct flag reset code for ssq monitor option
- Fix typo in xrootd-config help
- Prevent deadlock in Python bindings
- Fix plugin path in xrootd-http.cfg for 32 bit architectures
* Wed Jul 29 2020 Fedora Release Engineering <releng(a)fedoraproject.org> - 1:4.12.3-4
- Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild
* Fri Jul 24 2020 Mattias Ellert <mattias.ellert(a)physics.uu.se> - 1:4.12.3-3
- Fix one definition rule (ODR) violation for LTO
- Disable LTO for 32 bit architectures due to the POSIX preload code
--------------------------------------------------------------------------------
The following Fedora EPEL 7 Security updates need testing:
Age URL
743 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2018-3c9292b62d condor-8.6.11-1.el7
483 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2019-bc0182548b bubblewrap-0.3.3-2.el7
192 https://bodhi.fedoraproject.org/updates/FEDORA-EPEL-2020-fa8a2e97c6 python-waitress-1.4.3-1.el7
The following builds have been pushed to Fedora EPEL 7 updates-testing
golang-1.15-1.el7
perl-Data-Validate-IP-0.27-13.el7
singularity-3.6.2-1.el7
xrootd-4.12.3-5.el7
Details about builds:
================================================================================
golang-1.15-1.el7 (FEDORA-EPEL-2020-89ad58d02c)
The Go Programming Language
--------------------------------------------------------------------------------
Update Information:
* Rebase to go1.15 * Security bugfix for CVE-2020-14040 and CVE-2020-16845
--------------------------------------------------------------------------------
ChangeLog:
* Tue Aug 25 2020 Jakub ��ajka <jcajka(a)redhat.com> - 1.15-1
- Rebase to go1.15
- Security fix for CVE-2020-16845 and CVE-2020-14040
- Resolves BZ#1867100 and BZ#1853654
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1853652 - CVE-2020-14040 golang.org/x/text: possibility to trigger an infinite loop in encoding/unicode could lead to crash
https://bugzilla.redhat.com/show_bug.cgi?id=1853652
[ 2 ] Bug #1867099 - CVE-2020-16845 golang: ReadUvarint and ReadVarint can read an unlimited number of bytes from invalid inputs
https://bugzilla.redhat.com/show_bug.cgi?id=1867099
--------------------------------------------------------------------------------
================================================================================
perl-Data-Validate-IP-0.27-13.el7 (FEDORA-EPEL-2020-e273f57dc9)
Perl IP address validation routines
--------------------------------------------------------------------------------
Update Information:
Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild
--------------------------------------------------------------------------------
ChangeLog:
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1872870 - perl-Data-Validate-IP build for EPEL7
https://bugzilla.redhat.com/show_bug.cgi?id=1872870
--------------------------------------------------------------------------------
================================================================================
singularity-3.6.2-1.el7 (FEDORA-EPEL-2020-c2106ee357)
Application and environment virtualization
--------------------------------------------------------------------------------
Update Information:
Upgrade to upstream 3.6.2.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Aug 26 2020 Dave Dykstra <dwd(a)fedoraproject.org> - 3.6.2-1
- Upgrade to upstream 3.6.2.
--------------------------------------------------------------------------------
References:
[ 1 ] Bug #1872838 - singularity-3.6.2 is available
https://bugzilla.redhat.com/show_bug.cgi?id=1872838
--------------------------------------------------------------------------------
================================================================================
xrootd-4.12.3-5.el7 (FEDORA-EPEL-2020-a8ee0fc55e)
Extended ROOT file server
--------------------------------------------------------------------------------
Update Information:
Backport minor fixes from upstream.
--------------------------------------------------------------------------------
ChangeLog:
* Wed Aug 26 2020 Mattias Ellert <mattias.ellert(a)physics.uu.se> - 1:4.12.3-5
- Use new CMake macros where available
- Backport minor fixes from upstream git
- Correct flag reset code for ssq monitor option
- Fix typo in xrootd-config help
- Prevent deadlock in Python bindings
- Fix plugin path in xrootd-http.cfg for 32 bit architectures
* Wed Jul 29 2020 Fedora Release Engineering <releng(a)fedoraproject.org> - 1:4.12.3-4
- Rebuilt for https://fedoraproject.org/wiki/Fedora_33_Mass_Rebuild
* Fri Jul 24 2020 Mattias Ellert <mattias.ellert(a)physics.uu.se> - 1:4.12.3-3
- Fix one definition rule (ODR) violation for LTO
- Disable LTO for 32 bit architectures due to the POSIX preload code
--------------------------------------------------------------------------------